Ouvrir C: dans Mon Ordinateur

Résolu
smich -  
salwa5 Messages postés 7552 Statut Contributeur -
Bonjour,

Lorsque je double clique sur 'C:' ou 'D:' dans la fenetre 'Mon Ordinateur' la fenetre 'Ouvrir avec' s'ouvre au lieu d'ouvrir le repertoire 'C: 'normalement....

Si je vais chercher Explorer.exe, il ne memorise pas la reponse...

Comment faire pour que ca s'ouvre normalement???

sous XP
Configuration: Windows XP
Firefox 2.0.0.3

8 réponses

  1. salwa5 Messages postés 7552 Statut Contributeur 1 671
     
    bonjour telecharge ceci

    http://www.monwebperso.info/modules.php?name=Downloads&d_op=getit&lid=16

    double click kill_autorun_vbs.bat laisse le faire son boulot et dit nous ce que ca donne

    a++++
    2
    1. smich
       
      merci, ca a resolu le probleme. merci encore
      0
    2. pilou
       
      bonjour moi j'ai le meme problème et ceci n'a pas resolu mon problème... snif

      lorsque je suis dans poste de travail et que je double click sur C: il ouvre "ouvrir avec" donc je suis obliger de passer par explorer

      Comment dois-je faire ???
      0
  2. salwa5 Messages postés 7552 Statut Contributeur 1 671
     
    bonjour telecharge hijackthis et colle le resultat ici :

    http://www.infos-du-net.com/telecharger/HijackThis.html
    demo :
    http://perso.orange.fr/rginformatique/section%20virus/demohijack.htm

    a+++
    0
    1. pilou
       
      Logfile of Trend Micro HijackThis v2.0.0 (BETA)
      Scan saved at 16:34:50, on 22/05/2007
      Platform: Windows XP SP2 (WinNT 5.01.2600)
      Boot mode: Normal

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\Ati2evxx.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\system32\LEXBCES.EXE
      C:\WINDOWS\system32\spoolsv.exe


      si c'est pas bon n'hesite pas lol je ne suis pas une star lol

      C:\WINDOWS\system32\LEXPPS.EXE
      C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
      C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
      C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
      C:\WINDOWS\System32\snmp.exe
      C:\WINDOWS\system32\svchost.exe
      C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe
      C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WMP54Gv4.exe
      C:\WINDOWS\system32\Ati2evxx.exe
      C:\WINDOWS\Explorer.EXE
      C:\PROGRA~1\Lexmark\PHOTOC~1\LXBLKsk.exe
      C:\Program Files\Microsoft IntelliType Pro\type32.exe
      C:\Program Files\Microsoft IntelliPoint\point32.exe
      C:\WINDOWS\RTHDCPL.EXE
      C:\Program Files\iTunes\iTunesHelper.exe
      C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
      C:\WINDOWS\system32\ctfmon.exe
      C:\Program Files\MSN Messenger\MsnMsgr.Exe
      C:\Program Files\iPod\bin\iPodService.exe
      C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
      C:\Program Files\Microsoft ActiveSync\wcescomm.exe
      C:\Program Files\Windows Media Player\WMPNSCFG.exe
      C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
      C:\PROGRA~1\MI3AA1~1\rapimgr.exe
      C:\Program Files\OFFICE One6.5\OFFICE One Clock\ooneclockv65.exe
      C:\Program Files\MSN Messenger\usnsvc.exe
      C:\Program Files\Internet Explorer\iexplore.exe
      C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
      C:\WINDOWS\system32\tcpsvcs.exe
      C:\WINDOWS\system32\cisvc.exe
      C:\WINDOWS\system32\cidaemon.exe
      C:\WINDOWS\system32\cidaemon.exe
      C:\WINDOWS\system32\wuauclt.exe
      C:\Documents and Settings\Pilou\Local Settings\Temporary Internet Files\Content.IE5\LXI16H7A\HiJackThis_v2[1].exe

      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
      O1 - Hosts: 108.112.42.206 ad.doubleclick.net
      O1 - Hosts: 184.169.44.29 upgrade.bitdefender.com
      O1 - Hosts: 106.62.59.13 report.bitdefender.com
      O1 - Hosts: 178.95.95.213 ad.fastclick.net
      O1 - Hosts: 107.116.117.138 ads.fastclick.net
      O1 - Hosts: 174.15.27.94 ar.atwola.com
      O1 - Hosts: 115.27.183.221 atdmt.com
      O1 - Hosts: 183.97.110.57 avp.ch
      O1 - Hosts: 114.153.7.176 avp.com
      O1 - Hosts: 179.51.181.210 avp.ru
      O1 - Hosts: 108.15.197.227 awaps.net
      O1 - Hosts: 180.66.164.240 banner.fastclick.net
      O1 - Hosts: 112.56.109.230 banners.fastclick.net
      O1 - Hosts: 177.137.61.67 ca.com
      O1 - Hosts: 111.18.29.102 www.ca.com
      O1 - Hosts: 180.140.140.115 click.atdmt.com
      O1 - Hosts: 104.148.31.185 clicks.atdmt.com
      O1 - Hosts: 186.213.124.100 customer.symantec.com
      O1 - Hosts: 100.96.64.129 dispatch.mcafee.com
      O1 - Hosts: 183.2.101.136 download.mcafee.com
      O1 - Hosts: 104.210.98.148 download.microsoft.com
      O1 - Hosts: 181.159.189.68 downloads.microsoft.com
      O1 - Hosts: 112.218.150.78 downloads-eu1.kaspersky-labs.com
      O1 - Hosts: 181.65.170.225 downloads-eu2.kaspersky-labs.com
      O1 - Hosts: 115.202.138.212 downloads-eu3.kaspersky-labs.com
      O1 - Hosts: 185.37.50.218 downloads-us1.kaspersky-labs.com
      O1 - Hosts: 109.114.81.80 downloads-us2.kaspersky-labs.com
      O1 - Hosts: 180.183.191.200 downloads-us3.kaspersky-labs.com
      O1 - Hosts: 111.63.81.72 downloads1.kaspersky-labs.com
      O1 - Hosts: 187.45.123.197 downloads2.kaspersky-labs.com
      O1 - Hosts: 102.48.18.192 downloads3.kaspersky-labs.com
      O1 - Hosts: 180.188.144.114 downloads4.kaspersky-labs.com
      O1 - Hosts: 111.57.62.146 engine.awaps.net
      O1 - Hosts: 179.113.96.3 f-secure.com
      O1 - Hosts: 100.178.73.135 fastclick.net
      O1 - Hosts: 182.38.71.88 ftp.avp.ch
      O1 - Hosts: 107.152.141.111 ftp.downloads2.kaspersky-labs.com
      O1 - Hosts: 186.39.46.12 ftp.f-secure.com
      O1 - Hosts: 106.65.181.226 ftp.kasperskylab.ru
      O1 - Hosts: 174.100.75.218 ftp.sophos.com
      O1 - Hosts: 111.138.97.30 go.microsoft.com
      O1 - Hosts: 174.194.28.31 ids.kaspersky-labs.com
      O1 - Hosts: 110.101.147.64 kaspersky-labs.com
      O1 - Hosts: 182.218.134.18 kaspersky.com
      O1 - Hosts: 110.50.113.133 liveupdate.symantec.com
      O1 - Hosts: 178.160.128.199 liveupdate.symantecliveupdate.com
      O1 - Hosts: 115.84.151.31 mast.mcafee.com
      O1 - Hosts: 185.0.220.131 mcafee.com
      O1 - Hosts: 109.92.142.185 media.fastclick.net
      O1 - Hosts: 176.171.191.233 msdn.microsoft.com
      O1 - Hosts: 103.113.37.211 my-etrust.com
      O1 - Hosts: 180.172.202.29 nai.com
      O1 - Hosts: 115.89.143.98 networkassociates.com
      O1 - Hosts: 174.46.37.27 office.microsoft.com
      O1 - Hosts: 109.188.51.100 phx.corporate-ir.net
      O1 - Hosts: 185.45.204.116 rads.mcafee.com
      O1 - Hosts: 109.120.41.223 secure.nai.com
      O1 - Hosts: 177.7.179.127 securityresponse.symantec.com
      O1 - Hosts: 108.217.74.1 service1.symantec.com
      O1 - Hosts: 183.50.26.181 sophos.com
      O1 - Hosts: 109.170.21.186 spd.atdmt.com
      O1 - Hosts: 187.58.188.136 support.microsoft.com
      O1 - Hosts: 101.13.209.239 symantec.com
      O1 - Hosts: 176.188.88.223 trendmicro.com
      O1 - Hosts: 105.130.169.168 update.symantec.com
      O1 - Hosts: 182.123.36.37 updates.symantec.com
      O1 - Hosts: 108.110.33.59 updates1.kaspersky-labs.com
      O1 - Hosts: 183.59.213.85 updates2.kaspersky-labs.com
      O1 - Hosts: 100.8.14.248 updates3.kaspersky-labs.com
      O1 - Hosts: 177.203.115.101 updates4.kaspersky-labs.com
      O1 - Hosts: 115.99.75.57 updates5.kaspersky-labs.com
      O1 - Hosts: 177.164.21.164 us.mcafee.com
      O1 - Hosts: 104.191.68.232 vil.nai.com
      O1 - Hosts: 178.104.12.229 viruslist.com
      O1 - Hosts: 115.45.29.170 viruslist.ru
      O1 - Hosts: 180.17.225.124 windowsupdate.microsoft.com
      O1 - Hosts: 101.14.104.106 www.avp.ch
      O1 - Hosts: 187.220.183.234 www.avp.com
      O1 - Hosts: 106.32.32.175 www.avp.ru
      O1 - Hosts: 186.54.74.45 www.awaps.net
      O1 - Hosts: 101.143.19.123 www.ca.com
      O1 - Hosts: 174.32.86.13 www.f-secure.com
      O1 - Hosts: 105.116.161.207 www.fastclick.net
      O1 - Hosts: 181.161.67.179 www.grisoft.com
      O1 - Hosts: 112.172.26.189 www.kaspersky-labs.com
      O1 - Hosts: 184.209.149.39 www.kaspersky.com
      O1 - Hosts: 101.182.189.240 www.kaspersky.ru
      O1 - Hosts: 173.37.26.35 www.mcafee.com
      O1 - Hosts: 112.46.139.229 www.my-etrust.com
      O1 - Hosts: 178.225.214.176 www.nai.com
      O1 - Hosts: 108.150.114.26 www.networkassociates.com
      O1 - Hosts: 178.182.181.42 www.sophos.com
      O1 - Hosts: 109.208.204.78 www.symantec.com
      O1 - Hosts: 185.128.102.236 www.trendmicro.com
      O1 - Hosts: 106.65.196.108 www.viruslist.com
      O1 - Hosts: 179.223.125.67 www.viruslist.ru
      O1 - Hosts: 103.38.35.138 www3.ca.com
      O1 - Hosts: 175.24.52.173 avp.ch
      O1 - Hosts: 112.167.176.41 avp.com
      O1 - Hosts: 181.132.72.29 avp.ru
      O1 - Hosts: 108.51.94.92 awaps.net
      O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
      O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
      O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
      O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
      O4 - HKLM\..\Run: [LXBLKsk] C:\PROGRA~1\Lexmark\PHOTOC~1\LXBLKsk.exe
      O4 - HKLM\..\Run: [type32] "C:\Program Files\Microsoft IntelliType Pro\type32.exe"
      O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"
      O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
      O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
      O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
      O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
      O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
      O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
      O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
      O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
      O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
      O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
      O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SERVICE LOCAL')
      O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
      O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
      O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
      O4 - Global Startup: OFFICE One Clock v6.5.lnk = C:\Program Files\OFFICE One6.5\OFFICE One Clock\ooneclockv65.exe
      O4 - Global Startup: OFFICE One Notes v6.5.lnk = C:\Program Files\OFFICE One6.5\OFFICE One Notes\oonotesv65.exe
      O8 - Extra context menu item: E&xport to Microsoft Excel - res://c:\program files\microsoft office\office11\excel.exe/3000
      O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
      O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
      O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
      O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
      O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
      O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
      O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
      O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O16 - DPF: {B79A53C0-1DAC-4636-BACE-FD086A7A79BF} (AdSignerLCContrl Class) - https://static.impots.gouv.fr/tdir/static/adpform/AdSignerADP-1.0.cab
      O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://secure.logmein.com/activex/ractrl.cab?lmi=100
      O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
      O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
      O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
      O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
      O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
      O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
      O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
      O23 - Service: Fax - Unknown owner - C:\WINDOWS\system32\fxssvc.exe
      O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
      O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
      O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
      O23 - Service: Kerberos Key Distribution Centers (kkdc) - Unknown owner - C:\WINDOWS\lsass.exe (file missing)
      O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
      O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
      O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
      O23 - Service: Norman API-hooking helper (NipSvc) - Unknown owner - C:\Program Files\Norman\Nvc\BIN\nipsvc.exe (file missing)
      O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
      O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
      O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
      O23 - Service: Service SNMP (SNMP) - Unknown owner - C:\WINDOWS\System32\snmp.exe
      O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
      O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
      O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe
      O23 - Service: WMP54Gv4SVC - GEMTEKS - C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe
      O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe
      0
    2. pilou
       
      c'est grave docteur ???
      0
  3. salwa5 Messages postés 7552 Statut Contributeur 1 671
     
    bonjour

    telecharge et executes ceci

    SmitfraudFix

    http://siri.urz.free.fr/Fix/SmitfraudFix.exe
    Exécute le, Double click sur Smitfraudfix.cmd choisit l’option 1, il va générer un rapport

    Clik send et colle le rapport ici

    a+++
    0
    1. pilou
       
      maintenant il m'ouvre rechercher !!!!


      SmitFraudFix v2.186

      Rapport fait à 17:20:59,39, 22/05/2007
      Executé à partir de C:\Documents and Settings\Pilou\Bureau\SmitfraudFix
      OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
      Le type du système de fichiers est NTFS
      Fix executé en mode normal

      »»»»»»»»»»»»»»»»»»»»»»»» Process

      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\Ati2evxx.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\system32\LEXBCES.EXE
      C:\WINDOWS\system32\spoolsv.exe
      C:\WINDOWS\system32\LEXPPS.EXE
      C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
      C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
      C:\WINDOWS\system32\cisvc.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
      C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
      C:\WINDOWS\system32\tcpsvcs.exe
      C:\WINDOWS\System32\snmp.exe
      C:\WINDOWS\system32\svchost.exe
      C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe
      C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WMP54Gv4.exe
      C:\WINDOWS\system32\Ati2evxx.exe
      C:\WINDOWS\Explorer.EXE
      C:\PROGRA~1\Lexmark\PHOTOC~1\LXBLKsk.exe
      C:\Program Files\Microsoft IntelliType Pro\type32.exe
      C:\Program Files\Microsoft IntelliPoint\point32.exe
      C:\WINDOWS\RTHDCPL.EXE
      C:\Program Files\iTunes\iTunesHelper.exe
      C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
      C:\Program Files\QuickTime\qttask.exe
      C:\WINDOWS\system32\ctfmon.exe
      C:\Program Files\MSN Messenger\MsnMsgr.Exe
      C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
      C:\Program Files\Microsoft ActiveSync\wcescomm.exe
      C:\Program Files\Windows Media Player\WMPNSCFG.exe
      C:\Program Files\iPod\bin\iPodService.exe
      C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
      C:\PROGRA~1\MI3AA1~1\rapimgr.exe
      C:\Program Files\OFFICE One6.5\OFFICE One Clock\ooneclockv65.exe
      C:\Program Files\MSN Messenger\usnsvc.exe
      C:\Program Files\Internet Explorer\iexplore.exe
      C:\WINDOWS\system32\cmd.exe
      C:\WINDOWS\system32\cidaemon.exe
      C:\WINDOWS\system32\cidaemon.exe

      »»»»»»»»»»»»»»»»»»»»»»»» hosts

      Fichier hosts corrompu !

      104.210.98.148 download.microsoft.com
      181.159.189.68 downloads.microsoft.com
      111.138.97.30 go.microsoft.com
      176.171.191.233 msdn.microsoft.com
      174.46.37.27 office.microsoft.com
      187.58.188.136 support.microsoft.com
      180.17.225.124 windowsupdate.microsoft.com
      104.210.98.148 download.microsoft.com
      181.159.189.68 downloads.microsoft.com
      111.138.97.30 go.microsoft.com
      176.171.191.233 msdn.microsoft.com
      174.46.37.27 office.microsoft.com
      187.58.188.136 support.microsoft.com
      180.17.225.124 windowsupdate.microsoft.com
      113.105.150.225 pandasoftware.com
      184.14.192.135 www.pandasoftware.com
      113.105.150.225 pandasoftware.com
      184.14.192.135 www.pandasoftware.com

      »»»»»»»»»»»»»»»»»»»»»»»» C:\


      »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS


      »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system


      »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web


      »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32


      »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles


      »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Pilou


      »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Pilou\Application Data


      »»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer


      »»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\Pilou\Favoris


      »»»»»»»»»»»»»»»»»»»»»»»» Bureau


      »»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files


      »»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues


      »»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau

      [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
      "Source"="About:Home"
      "SubscribedURL"="About:Home"
      "FriendlyName"="Ma page d'accueil"


      »»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
      !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

      SrchSTS.exe by S!Ri
      Search SharedTaskScheduler's .dll


      »»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
      !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
      "AppInit_DLLs"=""


      »»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
      !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
      "System"=""


      »»»»»»»»»»»»»»»»»»»»»»»» pe386-msguard-lzx32-huy32



      »»»»»»»»»»»»»»»»»»»»»»»» DNS

      Description: Linksys Wireless-G PCI Adapter - Miniport d'ordonnancement de paquets
      DNS Server Search Order: 212.27.54.252
      DNS Server Search Order: 212.27.53.252

      HKLM\SYSTEM\CCS\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
      HKLM\SYSTEM\CS1\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
      HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252
      HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252


      »»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll


      »»»»»»»»»»»»»»»»»»»»»»»» Fin
      0
  4. salwa5 Messages postés 7552 Statut Contributeur 1 671
     
    ree :)

    1/ Redémarre en mode Sans Échec
    (au démarrage, tapote immédiatement la touche F8), puis tu verras un écran avec choix de démarrages :
    choisis Mode sans échec avec les flèches du clavier, puis valide avec Entrée.
    Choisis ton compte usuel (et non Administrateur).

    2/ Relances SmitfraudFix et choisis cette fois l’option 2 et réponds oui à tout.

    Redémarres normalement et communiques le deuxième rapport de SmitfraudFix avec un nouveau rapport Hijackthis.

    a+++
    0
    1. lesoleil
       
      SmitFraudFix v2.186

      Rapport fait à 18:19:12,76, 22/05/2007
      Executé à partir de C:\Documents and Settings\Pilou\Bureau\SmitfraudFix
      OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
      Le type du système de fichiers est NTFS
      Fix executé en mode sans echec

      »»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Avant SmitFraudFix
      !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

      SrchSTS.exe by S!Ri
      Search SharedTaskScheduler's .dll

      »»»»»»»»»»»»»»»»»»»»»»»» Arret des processus


      »»»»»»»»»»»»»»»»»»»»»»»» hosts


      127.0.0.1 localhost
      108.112.42.206 ad.doubleclick.net
      184.169.44.29 upgrade.bitdefender.com
      106.62.59.13 report.bitdefender.com
      178.95.95.213 ad.fastclick.net
      107.116.117.138 ads.fastclick.net
      174.15.27.94 ar.atwola.com
      115.27.183.221 atdmt.com
      183.97.110.57 avp.ch
      114.153.7.176 avp.com
      179.51.181.210 avp.ru
      108.15.197.227 awaps.net
      180.66.164.240 banner.fastclick.net
      112.56.109.230 banners.fastclick.net
      177.137.61.67 ca.com
      111.18.29.102 www.ca.com
      180.140.140.115 click.atdmt.com
      104.148.31.185 clicks.atdmt.com
      186.213.124.100 customer.symantec.com
      100.96.64.129 dispatch.mcafee.com
      183.2.101.136 download.mcafee.com
      112.218.150.78 downloads-eu1.kaspersky-labs.com
      181.65.170.225 downloads-eu2.kaspersky-labs.com
      115.202.138.212 downloads-eu3.kaspersky-labs.com
      185.37.50.218 downloads-us1.kaspersky-labs.com
      109.114.81.80 downloads-us2.kaspersky-labs.com
      180.183.191.200 downloads-us3.kaspersky-labs.com
      111.63.81.72 downloads1.kaspersky-labs.com
      187.45.123.197 downloads2.kaspersky-labs.com
      102.48.18.192 downloads3.kaspersky-labs.com
      180.188.144.114 downloads4.kaspersky-labs.com
      111.57.62.146 engine.awaps.net
      179.113.96.3 f-secure.com
      100.178.73.135 fastclick.net
      182.38.71.88 ftp.avp.ch
      107.152.141.111 ftp.downloads2.kaspersky-labs.com
      186.39.46.12 ftp.f-secure.com
      106.65.181.226 ftp.kasperskylab.ru
      174.100.75.218 ftp.sophos.com
      174.194.28.31 ids.kaspersky-labs.com
      110.101.147.64 kaspersky-labs.com
      182.218.134.18 kaspersky.com
      110.50.113.133 liveupdate.symantec.com
      178.160.128.199 liveupdate.symantecliveupdate.com
      115.84.151.31 mast.mcafee.com
      185.0.220.131 mcafee.com
      109.92.142.185 media.fastclick.net
      103.113.37.211 my-etrust.com
      180.172.202.29 nai.com
      115.89.143.98 networkassociates.com
      109.188.51.100 phx.corporate-ir.net
      185.45.204.116 rads.mcafee.com
      109.120.41.223 secure.nai.com
      177.7.179.127 securityresponse.symantec.com
      108.217.74.1 service1.symantec.com
      183.50.26.181 sophos.com
      109.170.21.186 spd.atdmt.com
      101.13.209.239 symantec.com
      176.188.88.223 trendmicro.com
      105.130.169.168 update.symantec.com
      182.123.36.37 updates.symantec.com
      108.110.33.59 updates1.kaspersky-labs.com
      183.59.213.85 updates2.kaspersky-labs.com
      100.8.14.248 updates3.kaspersky-labs.com
      177.203.115.101 updates4.kaspersky-labs.com
      115.99.75.57 updates5.kaspersky-labs.com
      177.164.21.164 us.mcafee.com
      104.191.68.232 vil.nai.com
      178.104.12.229 viruslist.com
      115.45.29.170 viruslist.ru
      101.14.104.106 www.avp.ch
      187.220.183.234 www.avp.com
      106.32.32.175 www.avp.ru
      186.54.74.45 www.awaps.net
      101.143.19.123 www.ca.com
      174.32.86.13 www.f-secure.com
      105.116.161.207 www.fastclick.net
      181.161.67.179 www.grisoft.com
      112.172.26.189 www.kaspersky-labs.com
      184.209.149.39 www.kaspersky.com
      101.182.189.240 www.kaspersky.ru
      173.37.26.35 www.mcafee.com
      112.46.139.229 www.my-etrust.com
      178.225.214.176 www.nai.com
      108.150.114.26 www.networkassociates.com
      178.182.181.42 www.sophos.com
      109.208.204.78 www.symantec.com
      185.128.102.236 www.trendmicro.com
      106.65.196.108 www.viruslist.com
      179.223.125.67 www.viruslist.ru
      103.38.35.138 www3.ca.com
      175.24.52.173 avp.ch
      112.167.176.41 avp.com
      181.132.72.29 avp.ru
      108.51.94.92 awaps.net
      184.196.64.44 f-secure.com
      102.35.134.158 fastclick.net
      175.33.199.87 grisoft.com
      105.9.199.125 kaspersky-labs.com
      175.26.38.236 kaspersky.com
      113.214.19.103 kaspersky.ru
      181.92.116.12 mcafee.com
      110.211.91.110 my-etrust.com
      185.156.136.247 nai.com
      113.44.133.254 networkassociates.com
      178.106.76.170 sophos.com
      108.49.35.169 symantec.com
      178.73.132.50 trendmicro.com
      104.152.134.206 viruslist.com
      174.25.193.182 viruslist.ru
      100.58.33.218 www3.ca.com
      102.158.3.18 akamai.net
      186.30.217.102 update.symantec.com
      105.26.14.176 service1.symantec.com
      179.147.199.183 www.antivir.de
      105.108.119.104 antivir.de
      181.87.27.164 drweb.com
      110.60.112.152 www.drweb.com
      173.72.89.247 drweb.ru
      111.44.59.160 www.ravantivirus.com
      177.51.6.174 ravantivirus.com
      105.20.84.201 bitdefender.com
      184.57.115.18 www.bitdefender.com
      111.9.106.84 www.clamav.net
      179.134.219.18 clamav.net
      104.26.34.150 ftpav.ca.com
      178.40.61.175 upgrade.bitdefender.com
      104.145.107.4 www.bitdefender.ru
      186.223.18.161 bitdefender.ru
      100.125.216.116 open.by
      175.210.118.4 vba32.de
      106.43.202.48 www.open.by
      187.158.9.42 lavasoft.com
      176.168.161.132 rs01.avast.com
      113.196.23.53 sm01.avast.com
      173.85.201.82 rs02.avast.com
      100.83.75.234 sm02.avast.com
      178.94.124.98 rs03.avast.com
      115.115.189.31 sm03.avast.com
      179.82.30.213 rs04.avast.com
      108.6.5.208 sm04.avast.com
      184.166.75.163 rs05.avast.com
      109.98.190.168 sm05.avast.com
      185.166.221.212 rs06.avast.com
      101.71.169.118 sm06.avast.com
      183.68.192.179 rs07.avast.com
      113.156.186.65 sm07.avast.com
      173.216.20.157 rs08.avast.com
      115.25.97.195 sm08.avast.com
      185.172.91.117 rs09.avast.com
      103.56.26.4 sm09.avast.com
      187.21.191.24 rs10.avast.com
      106.135.126.37 sm10.avast.com
      186.92.191.182 rs11.avast.com
      101.151.218.40 sm11.avast.com
      182.12.173.157 rs12.avast.com
      102.44.86.6 sm12.avast.com
      187.177.109.41 rs13.avast.com
      100.135.39.7 sm13.avast.com
      183.4.26.28 rs14.avast.com
      109.152.56.132 sm14.avast.com
      174.22.52.47 rs15.avast.com
      112.44.76.101 sm15.avast.com
      176.24.2.108 rs16.avast.com
      104.88.100.68 sm16.avast.com
      175.209.96.55 rs17.avast.com
      108.136.54.58 sm17.avast.com
      182.81.75.62 rs18.avast.com
      100.132.172.31 sm18.avast.com
      183.224.68.115 rs19.avast.com
      103.144.191.113 sm19.avast.com
      184.193.195.14 rs20.avast.com
      103.69.72.110 sm20.avast.com
      176.169.145.194 rs21.avast.com
      105.200.223.248 sm21.avast.com
      176.72.49.72 rs22.avast.com
      105.200.136.24 sm22.avast.com
      184.106.33.253 rs23.avast.com
      112.106.95.4 sm23.avast.com
      176.15.175.146 rs24.avast.com
      115.172.124.52 sm24.avast.com
      174.173.108.253 rs25.avast.com
      111.199.132.183 sm25.avast.com
      181.141.199.236 rs26.avast.com
      108.110.4.67 sm26.avast.com
      187.38.57.188 rs27.avast.com
      110.153.170.218 sm27.avast.com
      184.120.97.180 rs28.avast.com
      104.221.204.97 sm28.avast.com
      184.87.84.126 rs29.avast.com
      113.158.156.12 sm29.avast.com
      175.137.116.58 rs30.avast.com
      106.89.171.42 sm30.avast.com
      181.63.155.14 downloadhosting.core.ignum.cz
      108.171.61.165 download25.avast.com
      180.78.122.242 www.avast.com
      105.94.46.61 avast.com
      177.128.188.27 avira.com
      104.119.33.105 www.avira.com
      100.89.152.164 zak.avira.com
      183.81.157.57 downloads.avira.com
      101.219.196.161 www.clamwin.com
      177.93.131.172 clamwin.com
      113.178.206.30 213.219.245.4
      178.169.49.160 files.referats.net
      104.83.9.105 database.clamav.net
      173.153.208.24 213.248.60.121
      101.135.166.191 gin.ba.euroweb.sk
      187.98.219.21 www2.eset.com
      106.190.161.183 esetsoftware.com
      176.66.89.23 msk4.drweb.com
      101.69.45.112 drweb.com
      173.95.15.84 www.drweb.com
      112.24.167.210 62.146.66.181
      104.147.137.57 www.hbedv.com
      174.131.68.125 hbedv.com
      106.3.47.173 www.hacksoft.com.pe
      177.137.173.100 ikarus-software.at
      114.219.187.247 download.ikarus.at
      178.202.68.47 193.69.114.12
      100.9.1.202 niutwo.norman.no
      183.208.148.247 www.anti-virus.by
      109.60.43.169 anti-virus.by
      185.112.35.70 www.vba32.de
      108.83.215.209 ftpav.ca.com
      108.112.42.206 ad.doubleclick.net
      184.169.44.29 upgrade.bitdefender.com
      106.62.59.13 report.bitdefender.com
      178.95.95.213 ad.fastclick.net
      107.116.117.138 ads.fastclick.net
      174.15.27.94 ar.atwola.com
      115.27.183.221 atdmt.com
      183.97.110.57 avp.ch
      114.153.7.176 avp.com
      179.51.181.210 avp.ru
      108.15.197.227 awaps.net
      180.66.164.240 banner.fastclick.net
      112.56.109.230 banners.fastclick.net
      177.137.61.67 ca.com
      111.18.29.102 www.ca.com
      180.140.140.115 click.atdmt.com
      104.148.31.185 clicks.atdmt.com
      186.213.124.100 customer.symantec.com
      100.96.64.129 dispatch.mcafee.com
      183.2.101.136 download.mcafee.com
      112.218.150.78 downloads-eu1.kaspersky-labs.com
      181.65.170.225 downloads-eu2.kaspersky-labs.com
      115.202.138.212 downloads-eu3.kaspersky-labs.com
      185.37.50.218 downloads-us1.kaspersky-labs.com
      109.114.81.80 downloads-us2.kaspersky-labs.com
      180.183.191.200 downloads-us3.kaspersky-labs.com
      111.63.81.72 downloads1.kaspersky-labs.com
      187.45.123.197 downloads2.kaspersky-labs.com
      102.48.18.192 downloads3.kaspersky-labs.com
      180.188.144.114 downloads4.kaspersky-labs.com
      111.57.62.146 engine.awaps.net
      179.113.96.3 f-secure.com
      100.178.73.135 fastclick.net
      182.38.71.88 ftp.avp.ch
      107.152.141.111 ftp.downloads2.kaspersky-labs.com
      186.39.46.12 ftp.f-secure.com
      106.65.181.226 ftp.kasperskylab.ru
      174.100.75.218 ftp.sophos.com
      174.194.28.31 ids.kaspersky-labs.com
      110.101.147.64 kaspersky-labs.com
      182.218.134.18 kaspersky.com
      110.50.113.133 liveupdate.symantec.com
      178.160.128.199 liveupdate.symantecliveupdate.com
      115.84.151.31 mast.mcafee.com
      185.0.220.131 mcafee.com
      109.92.142.185 media.fastclick.net
      103.113.37.211 my-etrust.com
      180.172.202.29 nai.com
      115.89.143.98 networkassociates.com
      109.188.51.100 phx.corporate-ir.net
      185.45.204.116 rads.mcafee.com
      109.120.41.223 secure.nai.com
      177.7.179.127 securityresponse.symantec.com
      108.217.74.1 service1.symantec.com
      183.50.26.181 sophos.com
      109.170.21.186 spd.atdmt.com
      101.13.209.239 symantec.com
      176.188.88.223 trendmicro.com
      105.130.169.168 update.symantec.com
      182.123.36.37 updates.symantec.com
      108.110.33.59 updates1.kaspersky-labs.com
      183.59.213.85 updates2.kaspersky-labs.com
      100.8.14.248 updates3.kaspersky-labs.com
      177.203.115.101 updates4.kaspersky-labs.com
      115.99.75.57 updates5.kaspersky-labs.com
      177.164.21.164 us.mcafee.com
      104.191.68.232 vil.nai.com
      178.104.12.229 viruslist.com
      115.45.29.170 viruslist.ru
      101.14.104.106 www.avp.ch
      187.220.183.234 www.avp.com
      106.32.32.175 www.avp.ru
      186.54.74.45 www.awaps.net
      101.143.19.123 www.ca.com
      174.32.86.13 www.f-secure.com
      105.116.161.207 www.fastclick.net
      181.161.67.179 www.grisoft.com
      112.172.26.189 www.kaspersky-labs.com
      184.209.149.39 www.kaspersky.com
      101.182.189.240 www.kaspersky.ru
      173.37.26.35 www.mcafee.com
      112.46.139.229 www.my-etrust.com
      178.225.214.176 www.nai.com
      108.150.114.26 www.networkassociates.com
      178.182.181.42 www.sophos.com
      109.208.204.78 www.symantec.com
      185.128.102.236 www.trendmicro.com
      106.65.196.108 www.viruslist.com
      179.223.125.67 www.viruslist.ru
      103.38.35.138 www3.ca.com
      175.24.52.173 avp.ch
      112.167.176.41 avp.com
      181.132.72.29 avp.ru
      108.51.94.92 awaps.net
      184.196.64.44 f-secure.com
      102.35.134.158 fastclick.net
      175.33.199.87 grisoft.com
      105.9.199.125 kaspersky-labs.com
      175.26.38.236 kaspersky.com
      113.214.19.103 kaspersky.ru
      181.92.116.12 mcafee.com
      110.211.91.110 my-etrust.com
      185.156.136.247 nai.com
      113.44.133.254 networkassociates.com
      178.106.76.170 sophos.com
      108.49.35.169 symantec.com
      178.73.132.50 trendmicro.com
      104.152.134.206 viruslist.com
      174.25.193.182 viruslist.ru
      100.58.33.218 www3.ca.com
      102.158.3.18 akamai.net
      186.30.217.102 update.symantec.com
      105.26.14.176 service1.symantec.com
      179.147.199.183 www.antivir.de
      105.108.119.104 antivir.de
      181.87.27.164 drweb.com
      110.60.112.152 www.drweb.com
      173.72.89.247 drweb.ru
      111.44.59.160 www.ravantivirus.com
      177.51.6.174 ravantivirus.com
      105.20.84.201 bitdefender.com
      184.57.115.18 www.bitdefender.com
      111.9.106.84 www.clamav.net
      179.134.219.18 clamav.net
      104.26.34.150 ftpav.ca.com
      178.40.61.175 upgrade.bitdefender.com
      104.145.107.4 www.bitdefender.ru
      186.223.18.161 bitdefender.ru
      100.125.216.116 open.by
      175.210.118.4 vba32.de
      106.43.202.48 www.open.by
      187.158.9.42 lavasoft.com
      176.168.161.132 rs01.avast.com
      113.196.23.53 sm01.avast.com
      173.85.201.82 rs02.avast.com
      100.83.75.234 sm02.avast.com
      178.94.124.98 rs03.avast.com
      115.115.189.31 sm03.avast.com
      179.82.30.213 rs04.avast.com
      108.6.5.208 sm04.avast.com
      184.166.75.163 rs05.avast.com
      109.98.190.168 sm05.avast.com
      185.166.221.212 rs06.avast.com
      101.71.169.118 sm06.avast.com
      183.68.192.179 rs07.avast.com
      113.156.186.65 sm07.avast.com
      173.216.20.157 rs08.avast.com
      115.25.97.195 sm08.avast.com
      185.172.91.117 rs09.avast.com
      103.56.26.4 sm09.avast.com
      187.21.191.24 rs10.avast.com
      106.135.126.37 sm10.avast.com
      186.92.191.182 rs11.avast.com
      101.151.218.40 sm11.avast.com
      182.12.173.157 rs12.avast.com
      102.44.86.6 sm12.avast.com
      187.177.109.41 rs13.avast.com
      100.135.39.7 sm13.avast.com
      183.4.26.28 rs14.avast.com
      109.152.56.132 sm14.avast.com
      174.22.52.47 rs15.avast.com
      112.44.76.101 sm15.avast.com
      176.24.2.108 rs16.avast.com
      104.88.100.68 sm16.avast.com
      175.209.96.55 rs17.avast.com
      108.136.54.58 sm17.avast.com
      182.81.75.62 rs18.avast.com
      100.132.172.31 sm18.avast.com
      183.224.68.115 rs19.avast.com
      103.144.191.113 sm19.avast.com
      184.193.195.14 rs20.avast.com
      103.69.72.110 sm20.avast.com
      176.169.145.194 rs21.avast.com
      105.200.223.248 sm21.avast.com
      176.72.49.72 rs22.avast.com
      105.200.136.24 sm22.avast.com
      184.106.33.253 rs23.avast.com
      112.106.95.4 sm23.avast.com
      176.15.175.146 rs24.avast.com
      115.172.124.52 sm24.avast.com
      174.173.108.253 rs25.avast.com
      111.199.132.183 sm25.avast.com
      181.141.199.236 rs26.avast.com
      108.110.4.67 sm26.avast.com
      187.38.57.188 rs27.avast.com
      110.153.170.218 sm27.avast.com
      184.120.97.180 rs28.avast.com
      104.221.204.97 sm28.avast.com
      184.87.84.126 rs29.avast.com
      113.158.156.12 sm29.avast.com
      175.137.116.58 rs30.avast.com
      106.89.171.42 sm30.avast.com
      181.63.155.14 downloadhosting.core.ignum.cz
      108.171.61.165 download25.avast.com
      180.78.122.242 www.avast.com
      105.94.46.61 avast.com
      177.128.188.27 avira.com
      104.119.33.105 www.avira.com
      100.89.152.164 zak.avira.com
      183.81.157.57 downloads.avira.com
      101.219.196.161 www.clamwin.com
      177.93.131.172 clamwin.com
      113.178.206.30 213.219.245.4
      178.169.49.160 files.referats.net
      104.83.9.105 database.clamav.net
      173.153.208.24 213.248.60.121
      101.135.166.191 gin.ba.euroweb.sk
      187.98.219.21 www2.eset.com
      106.190.161.183 esetsoftware.com
      176.66.89.23 msk4.drweb.com
      101.69.45.112 drweb.com
      173.95.15.84 www.drweb.com
      112.24.167.210 62.146.66.181
      104.147.137.57 www.hbedv.com
      174.131.68.125 hbedv.com
      106.3.47.173 www.hacksoft.com.pe
      177.137.173.100 ikarus-software.at
      114.219.187.247 download.ikarus.at
      178.202.68.47 193.69.114.12
      100.9.1.202 niutwo.norman.no
      183.208.148.247 www.anti-virus.by
      109.60.43.169 anti-virus.by
      185.112.35.70 www.vba32.de
      108.83.215.209 ftpav.ca.com

      »»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

      GenericRenosFix by S!Ri


      »»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés


      »»»»»»»»»»»»»»»»»»»»»»»» DNS

      HKLM\SYSTEM\CCS\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
      HKLM\SYSTEM\CS1\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
      HKLM\SYSTEM\CS2\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
      HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252
      HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252
      HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252


      »»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires


      »»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
      !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
      "System"=""


      »»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre

      Nettoyage terminé.

      »»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Après SmitFraudFix
      !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

      SrchSTS.exe by S!Ri
      Search SharedTaskScheduler's .dll


      »»»»»»»»»»»»»»»»»»»»»»»» Fin
      0
    2. pilou
       
      j'espère que j'ai bien fait ce que tu m'a demander...


      SmitFraudFix v2.186

      Rapport fait à 18:19:12,76, 22/05/2007
      Executé à partir de C:\Documents and Settings\Pilou\Bureau\SmitfraudFix
      OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
      Le type du système de fichiers est NTFS
      Fix executé en mode sans echec

      »»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Avant SmitFraudFix
      !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

      SrchSTS.exe by S!Ri
      Search SharedTaskScheduler's .dll

      »»»»»»»»»»»»»»»»»»»»»»»» Arret des processus


      »»»»»»»»»»»»»»»»»»»»»»»» hosts


      127.0.0.1 localhost
      108.112.42.206 ad.doubleclick.net
      184.169.44.29 upgrade.bitdefender.com
      106.62.59.13 report.bitdefender.com
      178.95.95.213 ad.fastclick.net
      107.116.117.138 ads.fastclick.net
      174.15.27.94 ar.atwola.com
      115.27.183.221 atdmt.com
      183.97.110.57 avp.ch
      114.153.7.176 avp.com
      179.51.181.210 avp.ru
      108.15.197.227 awaps.net
      180.66.164.240 banner.fastclick.net
      112.56.109.230 banners.fastclick.net
      177.137.61.67 ca.com
      111.18.29.102 www.ca.com
      180.140.140.115 click.atdmt.com
      104.148.31.185 clicks.atdmt.com
      186.213.124.100 customer.symantec.com
      100.96.64.129 dispatch.mcafee.com
      183.2.101.136 download.mcafee.com
      112.218.150.78 downloads-eu1.kaspersky-labs.com
      181.65.170.225 downloads-eu2.kaspersky-labs.com
      115.202.138.212 downloads-eu3.kaspersky-labs.com
      185.37.50.218 downloads-us1.kaspersky-labs.com
      109.114.81.80 downloads-us2.kaspersky-labs.com
      180.183.191.200 downloads-us3.kaspersky-labs.com
      111.63.81.72 downloads1.kaspersky-labs.com
      187.45.123.197 downloads2.kaspersky-labs.com
      102.48.18.192 downloads3.kaspersky-labs.com
      180.188.144.114 downloads4.kaspersky-labs.com
      111.57.62.146 engine.awaps.net
      179.113.96.3 f-secure.com
      100.178.73.135 fastclick.net
      182.38.71.88 ftp.avp.ch
      107.152.141.111 ftp.downloads2.kaspersky-labs.com
      186.39.46.12 ftp.f-secure.com
      106.65.181.226 ftp.kasperskylab.ru
      174.100.75.218 ftp.sophos.com
      174.194.28.31 ids.kaspersky-labs.com
      110.101.147.64 kaspersky-labs.com
      182.218.134.18 kaspersky.com
      110.50.113.133 liveupdate.symantec.com
      178.160.128.199 liveupdate.symantecliveupdate.com
      115.84.151.31 mast.mcafee.com
      185.0.220.131 mcafee.com
      109.92.142.185 media.fastclick.net
      103.113.37.211 my-etrust.com
      180.172.202.29 nai.com
      115.89.143.98 networkassociates.com
      109.188.51.100 phx.corporate-ir.net
      185.45.204.116 rads.mcafee.com
      109.120.41.223 secure.nai.com
      177.7.179.127 securityresponse.symantec.com
      108.217.74.1 service1.symantec.com
      183.50.26.181 sophos.com
      109.170.21.186 spd.atdmt.com
      101.13.209.239 symantec.com
      176.188.88.223 trendmicro.com
      105.130.169.168 update.symantec.com
      182.123.36.37 updates.symantec.com
      108.110.33.59 updates1.kaspersky-labs.com
      183.59.213.85 updates2.kaspersky-labs.com
      100.8.14.248 updates3.kaspersky-labs.com
      177.203.115.101 updates4.kaspersky-labs.com
      115.99.75.57 updates5.kaspersky-labs.com
      177.164.21.164 us.mcafee.com
      104.191.68.232 vil.nai.com
      178.104.12.229 viruslist.com
      115.45.29.170 viruslist.ru
      101.14.104.106 www.avp.ch
      187.220.183.234 www.avp.com
      106.32.32.175 www.avp.ru
      186.54.74.45 www.awaps.net
      101.143.19.123 www.ca.com
      174.32.86.13 www.f-secure.com
      105.116.161.207 www.fastclick.net
      181.161.67.179 www.grisoft.com
      112.172.26.189 www.kaspersky-labs.com
      184.209.149.39 www.kaspersky.com
      101.182.189.240 www.kaspersky.ru
      173.37.26.35 www.mcafee.com
      112.46.139.229 www.my-etrust.com
      178.225.214.176 www.nai.com
      108.150.114.26 www.networkassociates.com
      178.182.181.42 www.sophos.com
      109.208.204.78 www.symantec.com
      185.128.102.236 www.trendmicro.com
      106.65.196.108 www.viruslist.com
      179.223.125.67 www.viruslist.ru
      103.38.35.138 www3.ca.com
      175.24.52.173 avp.ch
      112.167.176.41 avp.com
      181.132.72.29 avp.ru
      108.51.94.92 awaps.net
      184.196.64.44 f-secure.com
      102.35.134.158 fastclick.net
      175.33.199.87 grisoft.com
      105.9.199.125 kaspersky-labs.com
      175.26.38.236 kaspersky.com
      113.214.19.103 kaspersky.ru
      181.92.116.12 mcafee.com
      110.211.91.110 my-etrust.com
      185.156.136.247 nai.com
      113.44.133.254 networkassociates.com
      178.106.76.170 sophos.com
      108.49.35.169 symantec.com
      178.73.132.50 trendmicro.com
      104.152.134.206 viruslist.com
      174.25.193.182 viruslist.ru
      100.58.33.218 www3.ca.com
      102.158.3.18 akamai.net
      186.30.217.102 update.symantec.com
      105.26.14.176 service1.symantec.com
      179.147.199.183 www.antivir.de
      105.108.119.104 antivir.de
      181.87.27.164 drweb.com
      110.60.112.152 www.drweb.com
      173.72.89.247 drweb.ru
      111.44.59.160 www.ravantivirus.com
      177.51.6.174 ravantivirus.com
      105.20.84.201 bitdefender.com
      184.57.115.18 www.bitdefender.com
      111.9.106.84 www.clamav.net
      179.134.219.18 clamav.net
      104.26.34.150 ftpav.ca.com
      178.40.61.175 upgrade.bitdefender.com
      104.145.107.4 www.bitdefender.ru
      186.223.18.161 bitdefender.ru
      100.125.216.116 open.by
      175.210.118.4 vba32.de
      106.43.202.48 www.open.by
      187.158.9.42 lavasoft.com
      176.168.161.132 rs01.avast.com
      113.196.23.53 sm01.avast.com
      173.85.201.82 rs02.avast.com
      100.83.75.234 sm02.avast.com
      178.94.124.98 rs03.avast.com
      115.115.189.31 sm03.avast.com
      179.82.30.213 rs04.avast.com
      108.6.5.208 sm04.avast.com
      184.166.75.163 rs05.avast.com
      109.98.190.168 sm05.avast.com
      185.166.221.212 rs06.avast.com
      101.71.169.118 sm06.avast.com
      183.68.192.179 rs07.avast.com
      113.156.186.65 sm07.avast.com
      173.216.20.157 rs08.avast.com
      115.25.97.195 sm08.avast.com
      185.172.91.117 rs09.avast.com
      103.56.26.4 sm09.avast.com
      187.21.191.24 rs10.avast.com
      106.135.126.37 sm10.avast.com
      186.92.191.182 rs11.avast.com
      101.151.218.40 sm11.avast.com
      182.12.173.157 rs12.avast.com
      102.44.86.6 sm12.avast.com
      187.177.109.41 rs13.avast.com
      100.135.39.7 sm13.avast.com
      183.4.26.28 rs14.avast.com
      109.152.56.132 sm14.avast.com
      174.22.52.47 rs15.avast.com
      112.44.76.101 sm15.avast.com
      176.24.2.108 rs16.avast.com
      104.88.100.68 sm16.avast.com
      175.209.96.55 rs17.avast.com
      108.136.54.58 sm17.avast.com
      182.81.75.62 rs18.avast.com
      100.132.172.31 sm18.avast.com
      183.224.68.115 rs19.avast.com
      103.144.191.113 sm19.avast.com
      184.193.195.14 rs20.avast.com
      103.69.72.110 sm20.avast.com
      176.169.145.194 rs21.avast.com
      105.200.223.248 sm21.avast.com
      176.72.49.72 rs22.avast.com
      105.200.136.24 sm22.avast.com
      184.106.33.253 rs23.avast.com
      112.106.95.4 sm23.avast.com
      176.15.175.146 rs24.avast.com
      115.172.124.52 sm24.avast.com
      174.173.108.253 rs25.avast.com
      111.199.132.183 sm25.avast.com
      181.141.199.236 rs26.avast.com
      108.110.4.67 sm26.avast.com
      187.38.57.188 rs27.avast.com
      110.153.170.218 sm27.avast.com
      184.120.97.180 rs28.avast.com
      104.221.204.97 sm28.avast.com
      184.87.84.126 rs29.avast.com
      113.158.156.12 sm29.avast.com
      175.137.116.58 rs30.avast.com
      106.89.171.42 sm30.avast.com
      181.63.155.14 downloadhosting.core.ignum.cz
      108.171.61.165 download25.avast.com
      180.78.122.242 www.avast.com
      105.94.46.61 avast.com
      177.128.188.27 avira.com
      104.119.33.105 www.avira.com
      100.89.152.164 zak.avira.com
      183.81.157.57 downloads.avira.com
      101.219.196.161 www.clamwin.com
      177.93.131.172 clamwin.com
      113.178.206.30 213.219.245.4
      178.169.49.160 files.referats.net
      104.83.9.105 database.clamav.net
      173.153.208.24 213.248.60.121
      101.135.166.191 gin.ba.euroweb.sk
      187.98.219.21 www2.eset.com
      106.190.161.183 esetsoftware.com
      176.66.89.23 msk4.drweb.com
      101.69.45.112 drweb.com
      173.95.15.84 www.drweb.com
      112.24.167.210 62.146.66.181
      104.147.137.57 www.hbedv.com
      174.131.68.125 hbedv.com
      106.3.47.173 www.hacksoft.com.pe
      177.137.173.100 ikarus-software.at
      114.219.187.247 download.ikarus.at
      178.202.68.47 193.69.114.12
      100.9.1.202 niutwo.norman.no
      183.208.148.247 www.anti-virus.by
      109.60.43.169 anti-virus.by
      185.112.35.70 www.vba32.de
      108.83.215.209 ftpav.ca.com
      108.112.42.206 ad.doubleclick.net
      184.169.44.29 upgrade.bitdefender.com
      106.62.59.13 report.bitdefender.com
      178.95.95.213 ad.fastclick.net
      107.116.117.138 ads.fastclick.net
      174.15.27.94 ar.atwola.com
      115.27.183.221 atdmt.com
      183.97.110.57 avp.ch
      114.153.7.176 avp.com
      179.51.181.210 avp.ru
      108.15.197.227 awaps.net
      180.66.164.240 banner.fastclick.net
      112.56.109.230 banners.fastclick.net
      177.137.61.67 ca.com
      111.18.29.102 www.ca.com
      180.140.140.115 click.atdmt.com
      104.148.31.185 clicks.atdmt.com
      186.213.124.100 customer.symantec.com
      100.96.64.129 dispatch.mcafee.com
      183.2.101.136 download.mcafee.com
      112.218.150.78 downloads-eu1.kaspersky-labs.com
      181.65.170.225 downloads-eu2.kaspersky-labs.com
      115.202.138.212 downloads-eu3.kaspersky-labs.com
      185.37.50.218 downloads-us1.kaspersky-labs.com
      109.114.81.80 downloads-us2.kaspersky-labs.com
      180.183.191.200 downloads-us3.kaspersky-labs.com
      111.63.81.72 downloads1.kaspersky-labs.com
      187.45.123.197 downloads2.kaspersky-labs.com
      102.48.18.192 downloads3.kaspersky-labs.com
      180.188.144.114 downloads4.kaspersky-labs.com
      111.57.62.146 engine.awaps.net
      179.113.96.3 f-secure.com
      100.178.73.135 fastclick.net
      182.38.71.88 ftp.avp.ch
      107.152.141.111 ftp.downloads2.kaspersky-labs.com
      186.39.46.12 ftp.f-secure.com
      106.65.181.226 ftp.kasperskylab.ru
      174.100.75.218 ftp.sophos.com
      174.194.28.31 ids.kaspersky-labs.com
      110.101.147.64 kaspersky-labs.com
      182.218.134.18 kaspersky.com
      110.50.113.133 liveupdate.symantec.com
      178.160.128.199 liveupdate.symantecliveupdate.com
      115.84.151.31 mast.mcafee.com
      185.0.220.131 mcafee.com
      109.92.142.185 media.fastclick.net
      103.113.37.211 my-etrust.com
      180.172.202.29 nai.com
      115.89.143.98 networkassociates.com
      109.188.51.100 phx.corporate-ir.net
      185.45.204.116 rads.mcafee.com
      109.120.41.223 secure.nai.com
      177.7.179.127 securityresponse.symantec.com
      108.217.74.1 service1.symantec.com
      183.50.26.181 sophos.com
      109.170.21.186 spd.atdmt.com
      101.13.209.239 symantec.com
      176.188.88.223 trendmicro.com
      105.130.169.168 update.symantec.com
      182.123.36.37 updates.symantec.com
      108.110.33.59 updates1.kaspersky-labs.com
      183.59.213.85 updates2.kaspersky-labs.com
      100.8.14.248 updates3.kaspersky-labs.com
      177.203.115.101 updates4.kaspersky-labs.com
      115.99.75.57 updates5.kaspersky-labs.com
      177.164.21.164 us.mcafee.com
      104.191.68.232 vil.nai.com
      178.104.12.229 viruslist.com
      115.45.29.170 viruslist.ru
      101.14.104.106 www.avp.ch
      187.220.183.234 www.avp.com
      106.32.32.175 www.avp.ru
      186.54.74.45 www.awaps.net
      101.143.19.123 www.ca.com
      174.32.86.13 www.f-secure.com
      105.116.161.207 www.fastclick.net
      181.161.67.179 www.grisoft.com
      112.172.26.189 www.kaspersky-labs.com
      184.209.149.39 www.kaspersky.com
      101.182.189.240 www.kaspersky.ru
      173.37.26.35 www.mcafee.com
      112.46.139.229 www.my-etrust.com
      178.225.214.176 www.nai.com
      108.150.114.26 www.networkassociates.com
      178.182.181.42 www.sophos.com
      109.208.204.78 www.symantec.com
      185.128.102.236 www.trendmicro.com
      106.65.196.108 www.viruslist.com
      179.223.125.67 www.viruslist.ru
      103.38.35.138 www3.ca.com
      175.24.52.173 avp.ch
      112.167.176.41 avp.com
      181.132.72.29 avp.ru
      108.51.94.92 awaps.net
      184.196.64.44 f-secure.com
      102.35.134.158 fastclick.net
      175.33.199.87 grisoft.com
      105.9.199.125 kaspersky-labs.com
      175.26.38.236 kaspersky.com
      113.214.19.103 kaspersky.ru
      181.92.116.12 mcafee.com
      110.211.91.110 my-etrust.com
      185.156.136.247 nai.com
      113.44.133.254 networkassociates.com
      178.106.76.170 sophos.com
      108.49.35.169 symantec.com
      178.73.132.50 trendmicro.com
      104.152.134.206 viruslist.com
      174.25.193.182 viruslist.ru
      100.58.33.218 www3.ca.com
      102.158.3.18 akamai.net
      186.30.217.102 update.symantec.com
      105.26.14.176 service1.symantec.com
      179.147.199.183 www.antivir.de
      105.108.119.104 antivir.de
      181.87.27.164 drweb.com
      110.60.112.152 www.drweb.com
      173.72.89.247 drweb.ru
      111.44.59.160 www.ravantivirus.com
      177.51.6.174 ravantivirus.com
      105.20.84.201 bitdefender.com
      184.57.115.18 www.bitdefender.com
      111.9.106.84 www.clamav.net
      179.134.219.18 clamav.net
      104.26.34.150 ftpav.ca.com
      178.40.61.175 upgrade.bitdefender.com
      104.145.107.4 www.bitdefender.ru
      186.223.18.161 bitdefender.ru
      100.125.216.116 open.by
      175.210.118.4 vba32.de
      106.43.202.48 www.open.by
      187.158.9.42 lavasoft.com
      176.168.161.132 rs01.avast.com
      113.196.23.53 sm01.avast.com
      173.85.201.82 rs02.avast.com
      100.83.75.234 sm02.avast.com
      178.94.124.98 rs03.avast.com
      115.115.189.31 sm03.avast.com
      179.82.30.213 rs04.avast.com
      108.6.5.208 sm04.avast.com
      184.166.75.163 rs05.avast.com
      109.98.190.168 sm05.avast.com
      185.166.221.212 rs06.avast.com
      101.71.169.118 sm06.avast.com
      183.68.192.179 rs07.avast.com
      113.156.186.65 sm07.avast.com
      173.216.20.157 rs08.avast.com
      115.25.97.195 sm08.avast.com
      185.172.91.117 rs09.avast.com
      103.56.26.4 sm09.avast.com
      187.21.191.24 rs10.avast.com
      106.135.126.37 sm10.avast.com
      186.92.191.182 rs11.avast.com
      101.151.218.40 sm11.avast.com
      182.12.173.157 rs12.avast.com
      102.44.86.6 sm12.avast.com
      187.177.109.41 rs13.avast.com
      100.135.39.7 sm13.avast.com
      183.4.26.28 rs14.avast.com
      109.152.56.132 sm14.avast.com
      174.22.52.47 rs15.avast.com
      112.44.76.101 sm15.avast.com
      176.24.2.108 rs16.avast.com
      104.88.100.68 sm16.avast.com
      175.209.96.55 rs17.avast.com
      108.136.54.58 sm17.avast.com
      182.81.75.62 rs18.avast.com
      100.132.172.31 sm18.avast.com
      183.224.68.115 rs19.avast.com
      103.144.191.113 sm19.avast.com
      184.193.195.14 rs20.avast.com
      103.69.72.110 sm20.avast.com
      176.169.145.194 rs21.avast.com
      105.200.223.248 sm21.avast.com
      176.72.49.72 rs22.avast.com
      105.200.136.24 sm22.avast.com
      184.106.33.253 rs23.avast.com
      112.106.95.4 sm23.avast.com
      176.15.175.146 rs24.avast.com
      115.172.124.52 sm24.avast.com
      174.173.108.253 rs25.avast.com
      111.199.132.183 sm25.avast.com
      181.141.199.236 rs26.avast.com
      108.110.4.67 sm26.avast.com
      187.38.57.188 rs27.avast.com
      110.153.170.218 sm27.avast.com
      184.120.97.180 rs28.avast.com
      104.221.204.97 sm28.avast.com
      184.87.84.126 rs29.avast.com
      113.158.156.12 sm29.avast.com
      175.137.116.58 rs30.avast.com
      106.89.171.42 sm30.avast.com
      181.63.155.14 downloadhosting.core.ignum.cz
      108.171.61.165 download25.avast.com
      180.78.122.242 www.avast.com
      105.94.46.61 avast.com
      177.128.188.27 avira.com
      104.119.33.105 www.avira.com
      100.89.152.164 zak.avira.com
      183.81.157.57 downloads.avira.com
      101.219.196.161 www.clamwin.com
      177.93.131.172 clamwin.com
      113.178.206.30 213.219.245.4
      178.169.49.160 files.referats.net
      104.83.9.105 database.clamav.net
      173.153.208.24 213.248.60.121
      101.135.166.191 gin.ba.euroweb.sk
      187.98.219.21 www2.eset.com
      106.190.161.183 esetsoftware.com
      176.66.89.23 msk4.drweb.com
      101.69.45.112 drweb.com
      173.95.15.84 www.drweb.com
      112.24.167.210 62.146.66.181
      104.147.137.57 www.hbedv.com
      174.131.68.125 hbedv.com
      106.3.47.173 www.hacksoft.com.pe
      177.137.173.100 ikarus-software.at
      114.219.187.247 download.ikarus.at
      178.202.68.47 193.69.114.12
      100.9.1.202 niutwo.norman.no
      183.208.148.247 www.anti-virus.by
      109.60.43.169 anti-virus.by
      185.112.35.70 www.vba32.de
      108.83.215.209 ftpav.ca.com

      »»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

      GenericRenosFix by S!Ri


      »»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés


      »»»»»»»»»»»»»»»»»»»»»»»» DNS

      HKLM\SYSTEM\CCS\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
      HKLM\SYSTEM\CS1\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
      HKLM\SYSTEM\CS2\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
      HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252
      HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252
      HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252


      »»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires


      »»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
      !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
      "System"=""


      »»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre

      Nettoyage terminé.

      »»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Après SmitFraudFix
      !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

      SrchSTS.exe by S!Ri
      Search SharedTaskScheduler's .dll


      »»»»»»»»»»»»»»»»»»»»»»»» Fin
      0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. salwa5 Messages postés 7552 Statut Contributeur 1 671
     
    ree :) poste un nouveau raport hijathis stp et en meme temp desinstalle ton antivirus avg7 et installe avast a sa place il est plus performant

    Avast (antivirus)
    https://www.clubic.com/telecharger-fiche11113-avast-antivirus-gratuit.html

    tutorial
    https://forums.cnetfrance.fr

    a+++
    0
    1. pilou
       
      voilà c'est fait et voici le raport :

      SmitFraudFix v2.186

      Rapport fait à 20:35:38,03, 22/05/2007
      Executé à partir de C:\Documents and Settings\Pilou\Bureau\SmitfraudFix
      OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
      Le type du système de fichiers est NTFS
      Fix executé en mode normal

      »»»»»»»»»»»»»»»»»»»»»»»» Process

      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\Ati2evxx.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\system32\LEXBCES.EXE
      C:\WINDOWS\system32\LEXPPS.EXE
      C:\WINDOWS\system32\spoolsv.exe
      C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
      C:\Program Files\Alwil Software\Avast4\ashServ.exe
      C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
      C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
      C:\WINDOWS\system32\cisvc.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
      C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
      C:\WINDOWS\system32\cidaemon.exe
      C:\WINDOWS\system32\tcpsvcs.exe
      C:\WINDOWS\System32\snmp.exe
      C:\WINDOWS\system32\svchost.exe
      C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLService.exe
      C:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WMP54Gv4.exe
      C:\WINDOWS\system32\cidaemon.exe
      C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
      C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
      C:\WINDOWS\system32\Ati2evxx.exe
      C:\WINDOWS\Explorer.EXE
      C:\PROGRA~1\Lexmark\PHOTOC~1\LXBLKsk.exe
      C:\Program Files\Microsoft IntelliType Pro\type32.exe
      C:\Program Files\Microsoft IntelliPoint\point32.exe
      C:\WINDOWS\RTHDCPL.EXE
      C:\Program Files\iTunes\iTunesHelper.exe
      C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
      C:\WINDOWS\system32\ctfmon.exe
      C:\Program Files\iPod\bin\iPodService.exe
      C:\Program Files\MSN Messenger\MsnMsgr.Exe
      C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
      C:\Program Files\Microsoft ActiveSync\wcescomm.exe
      C:\Program Files\Windows Media Player\WMPNSCFG.exe
      C:\PROGRA~1\MI3AA1~1\rapimgr.exe
      C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
      C:\Program Files\OFFICE One6.5\OFFICE One Clock\ooneclockv65.exe
      C:\Program Files\MSN Messenger\usnsvc.exe
      C:\Program Files\Internet Explorer\iexplore.exe
      C:\Program Files\Internet Explorer\IEXPLORE.EXE
      C:\WINDOWS\system32\cmd.exe

      »»»»»»»»»»»»»»»»»»»»»»»» hosts


      »»»»»»»»»»»»»»»»»»»»»»»» C:\


      »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS


      »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system


      »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web


      »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32


      »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles


      »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Pilou


      »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Pilou\Application Data


      »»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer


      »»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\Pilou\Favoris


      »»»»»»»»»»»»»»»»»»»»»»»» Bureau


      »»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files


      »»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues


      »»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau



      »»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
      !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

      SrchSTS.exe by S!Ri
      Search SharedTaskScheduler's .dll


      »»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
      !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
      "AppInit_DLLs"=""


      »»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
      !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
      "System"=""


      »»»»»»»»»»»»»»»»»»»»»»»» pe386-msguard-lzx32-huy32



      »»»»»»»»»»»»»»»»»»»»»»»» DNS

      Description: Linksys Wireless-G PCI Adapter - Miniport d'ordonnancement de paquets
      DNS Server Search Order: 212.27.54.252
      DNS Server Search Order: 212.27.53.252

      HKLM\SYSTEM\CCS\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
      HKLM\SYSTEM\CS1\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
      HKLM\SYSTEM\CS2\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
      HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252
      HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252
      HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252


      »»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll


      »»»»»»»»»»»»»»»»»»»»»»»» Fin
      0
  7. salwa5 Messages postés 7552 Statut Contributeur 1 671
     
    ree en fait je t'avais demandé un raport hijackthis comme celui que tu m'a envoyé sur le message numero 5

    a+++
    0
    1. pilou
       
      j'ai mon copain informaticien qui m'a remis tout en place... Merci quand meme...
      0
  8. pilou
     
    voila c'est fait es ce que c'est ça ?

    SmitFraudFix v2.186

    Rapport fait à 20:47:40,32, 22/05/2007
    Executé à partir de C:\Documents and Settings\Pilou\Bureau\SmitfraudFix
    OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
    Le type du système de fichiers est NTFS
    Fix executé en mode normal

    »»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Avant SmitFraudFix
    !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

    SrchSTS.exe by S!Ri
    Search SharedTaskScheduler's .dll

    »»»»»»»»»»»»»»»»»»»»»»»» Arret des processus

    »»»»»»»»»»»»»»»»»»»»»»»» hosts

    127.0.0.1 localhost
    108.112.42.206 ad.doubleclick.net
    184.169.44.29 upgrade.bitdefender.com
    106.62.59.13 report.bitdefender.com
    178.95.95.213 ad.fastclick.net
    107.116.117.138 ads.fastclick.net
    174.15.27.94 ar.atwola.com
    115.27.183.221 atdmt.com
    183.97.110.57 avp.ch
    114.153.7.176 avp.com
    179.51.181.210 avp.ru
    108.15.197.227 awaps.net
    180.66.164.240 banner.fastclick.net
    112.56.109.230 banners.fastclick.net
    177.137.61.67 ca.com
    111.18.29.102 www.ca.com
    180.140.140.115 click.atdmt.com
    104.148.31.185 clicks.atdmt.com
    186.213.124.100 customer.symantec.com
    100.96.64.129 dispatch.mcafee.com
    183.2.101.136 download.mcafee.com
    112.218.150.78 downloads-eu1.kaspersky-labs.com
    181.65.170.225 downloads-eu2.kaspersky-labs.com
    115.202.138.212 downloads-eu3.kaspersky-labs.com
    185.37.50.218 downloads-us1.kaspersky-labs.com
    109.114.81.80 downloads-us2.kaspersky-labs.com
    180.183.191.200 downloads-us3.kaspersky-labs.com
    111.63.81.72 downloads1.kaspersky-labs.com
    187.45.123.197 downloads2.kaspersky-labs.com
    102.48.18.192 downloads3.kaspersky-labs.com
    180.188.144.114 downloads4.kaspersky-labs.com
    111.57.62.146 engine.awaps.net
    179.113.96.3 f-secure.com
    100.178.73.135 fastclick.net
    182.38.71.88 ftp.avp.ch
    107.152.141.111 ftp.downloads2.kaspersky-labs.com
    186.39.46.12 ftp.f-secure.com
    106.65.181.226 ftp.kasperskylab.ru
    174.100.75.218 ftp.sophos.com
    174.194.28.31 ids.kaspersky-labs.com
    110.101.147.64 kaspersky-labs.com
    182.218.134.18 kaspersky.com
    110.50.113.133 liveupdate.symantec.com
    178.160.128.199 liveupdate.symantecliveupdate.com
    115.84.151.31 mast.mcafee.com
    185.0.220.131 mcafee.com
    109.92.142.185 media.fastclick.net
    103.113.37.211 my-etrust.com
    180.172.202.29 nai.com
    115.89.143.98 networkassociates.com
    109.188.51.100 phx.corporate-ir.net
    185.45.204.116 rads.mcafee.com
    109.120.41.223 secure.nai.com
    177.7.179.127 securityresponse.symantec.com
    108.217.74.1 service1.symantec.com
    183.50.26.181 sophos.com
    109.170.21.186 spd.atdmt.com
    101.13.209.239 symantec.com
    176.188.88.223 trendmicro.com
    105.130.169.168 update.symantec.com
    182.123.36.37 updates.symantec.com
    108.110.33.59 updates1.kaspersky-labs.com
    183.59.213.85 updates2.kaspersky-labs.com
    100.8.14.248 updates3.kaspersky-labs.com
    177.203.115.101 updates4.kaspersky-labs.com
    115.99.75.57 updates5.kaspersky-labs.com
    177.164.21.164 us.mcafee.com
    104.191.68.232 vil.nai.com
    178.104.12.229 viruslist.com
    115.45.29.170 viruslist.ru
    101.14.104.106 www.avp.ch
    187.220.183.234 www.avp.com
    106.32.32.175 www.avp.ru
    186.54.74.45 www.awaps.net
    101.143.19.123 www.ca.com
    174.32.86.13 www.f-secure.com
    105.116.161.207 www.fastclick.net
    181.161.67.179 www.grisoft.com
    112.172.26.189 www.kaspersky-labs.com
    184.209.149.39 www.kaspersky.com
    101.182.189.240 www.kaspersky.ru
    173.37.26.35 www.mcafee.com
    112.46.139.229 www.my-etrust.com
    178.225.214.176 www.nai.com
    108.150.114.26 www.networkassociates.com
    178.182.181.42 www.sophos.com
    109.208.204.78 www.symantec.com
    185.128.102.236 www.trendmicro.com
    106.65.196.108 www.viruslist.com
    179.223.125.67 www.viruslist.ru
    103.38.35.138 www3.ca.com
    175.24.52.173 avp.ch
    112.167.176.41 avp.com
    181.132.72.29 avp.ru
    108.51.94.92 awaps.net
    184.196.64.44 f-secure.com
    102.35.134.158 fastclick.net
    175.33.199.87 grisoft.com
    105.9.199.125 kaspersky-labs.com
    175.26.38.236 kaspersky.com
    113.214.19.103 kaspersky.ru
    181.92.116.12 mcafee.com
    110.211.91.110 my-etrust.com
    185.156.136.247 nai.com
    113.44.133.254 networkassociates.com
    178.106.76.170 sophos.com
    108.49.35.169 symantec.com
    178.73.132.50 trendmicro.com
    104.152.134.206 viruslist.com
    174.25.193.182 viruslist.ru
    100.58.33.218 www3.ca.com
    102.158.3.18 akamai.net
    186.30.217.102 update.symantec.com
    105.26.14.176 service1.symantec.com
    179.147.199.183 www.antivir.de
    105.108.119.104 antivir.de
    181.87.27.164 drweb.com
    110.60.112.152 www.drweb.com
    173.72.89.247 drweb.ru
    111.44.59.160 www.ravantivirus.com
    177.51.6.174 ravantivirus.com
    105.20.84.201 bitdefender.com
    184.57.115.18 www.bitdefender.com
    111.9.106.84 www.clamav.net
    179.134.219.18 clamav.net
    104.26.34.150 ftpav.ca.com
    178.40.61.175 upgrade.bitdefender.com
    104.145.107.4 www.bitdefender.ru
    186.223.18.161 bitdefender.ru
    100.125.216.116 open.by
    175.210.118.4 vba32.de
    106.43.202.48 www.open.by
    187.158.9.42 lavasoft.com
    176.168.161.132 rs01.avast.com
    113.196.23.53 sm01.avast.com
    173.85.201.82 rs02.avast.com
    100.83.75.234 sm02.avast.com
    178.94.124.98 rs03.avast.com
    115.115.189.31 sm03.avast.com
    179.82.30.213 rs04.avast.com
    108.6.5.208 sm04.avast.com
    184.166.75.163 rs05.avast.com
    109.98.190.168 sm05.avast.com
    185.166.221.212 rs06.avast.com
    101.71.169.118 sm06.avast.com
    183.68.192.179 rs07.avast.com
    113.156.186.65 sm07.avast.com
    173.216.20.157 rs08.avast.com
    115.25.97.195 sm08.avast.com
    185.172.91.117 rs09.avast.com
    103.56.26.4 sm09.avast.com
    187.21.191.24 rs10.avast.com
    106.135.126.37 sm10.avast.com
    186.92.191.182 rs11.avast.com
    101.151.218.40 sm11.avast.com
    182.12.173.157 rs12.avast.com
    102.44.86.6 sm12.avast.com
    187.177.109.41 rs13.avast.com
    100.135.39.7 sm13.avast.com
    183.4.26.28 rs14.avast.com
    109.152.56.132 sm14.avast.com
    174.22.52.47 rs15.avast.com
    112.44.76.101 sm15.avast.com
    176.24.2.108 rs16.avast.com
    104.88.100.68 sm16.avast.com
    175.209.96.55 rs17.avast.com
    108.136.54.58 sm17.avast.com
    182.81.75.62 rs18.avast.com
    100.132.172.31 sm18.avast.com
    183.224.68.115 rs19.avast.com
    103.144.191.113 sm19.avast.com
    184.193.195.14 rs20.avast.com
    103.69.72.110 sm20.avast.com
    176.169.145.194 rs21.avast.com
    105.200.223.248 sm21.avast.com
    176.72.49.72 rs22.avast.com
    105.200.136.24 sm22.avast.com
    184.106.33.253 rs23.avast.com
    112.106.95.4 sm23.avast.com
    176.15.175.146 rs24.avast.com
    115.172.124.52 sm24.avast.com
    174.173.108.253 rs25.avast.com
    111.199.132.183 sm25.avast.com
    181.141.199.236 rs26.avast.com
    108.110.4.67 sm26.avast.com
    187.38.57.188 rs27.avast.com
    110.153.170.218 sm27.avast.com
    184.120.97.180 rs28.avast.com
    104.221.204.97 sm28.avast.com
    184.87.84.126 rs29.avast.com
    113.158.156.12 sm29.avast.com
    175.137.116.58 rs30.avast.com
    106.89.171.42 sm30.avast.com
    181.63.155.14 downloadhosting.core.ignum.cz
    108.171.61.165 download25.avast.com
    180.78.122.242 www.avast.com
    105.94.46.61 avast.com
    177.128.188.27 avira.com
    104.119.33.105 www.avira.com
    100.89.152.164 zak.avira.com
    183.81.157.57 downloads.avira.com
    101.219.196.161 www.clamwin.com
    177.93.131.172 clamwin.com
    113.178.206.30 213.219.245.4
    178.169.49.160 files.referats.net
    104.83.9.105 database.clamav.net
    173.153.208.24 213.248.60.121
    101.135.166.191 gin.ba.euroweb.sk
    187.98.219.21 www2.eset.com
    106.190.161.183 esetsoftware.com
    176.66.89.23 msk4.drweb.com
    101.69.45.112 drweb.com
    173.95.15.84 www.drweb.com
    112.24.167.210 62.146.66.181
    104.147.137.57 www.hbedv.com
    174.131.68.125 hbedv.com
    106.3.47.173 www.hacksoft.com.pe
    177.137.173.100 ikarus-software.at
    114.219.187.247 download.ikarus.at
    178.202.68.47 193.69.114.12
    100.9.1.202 niutwo.norman.no
    183.208.148.247 www.anti-virus.by
    109.60.43.169 anti-virus.by
    185.112.35.70 www.vba32.de
    108.83.215.209 ftpav.ca.com
    108.112.42.206 ad.doubleclick.net
    184.169.44.29 upgrade.bitdefender.com
    106.62.59.13 report.bitdefender.com
    178.95.95.213 ad.fastclick.net
    107.116.117.138 ads.fastclick.net
    174.15.27.94 ar.atwola.com
    115.27.183.221 atdmt.com
    183.97.110.57 avp.ch
    114.153.7.176 avp.com
    179.51.181.210 avp.ru
    108.15.197.227 awaps.net
    180.66.164.240 banner.fastclick.net
    112.56.109.230 banners.fastclick.net
    177.137.61.67 ca.com
    111.18.29.102 www.ca.com
    180.140.140.115 click.atdmt.com
    104.148.31.185 clicks.atdmt.com
    186.213.124.100 customer.symantec.com
    100.96.64.129 dispatch.mcafee.com
    183.2.101.136 download.mcafee.com
    112.218.150.78 downloads-eu1.kaspersky-labs.com
    181.65.170.225 downloads-eu2.kaspersky-labs.com
    115.202.138.212 downloads-eu3.kaspersky-labs.com
    185.37.50.218 downloads-us1.kaspersky-labs.com
    109.114.81.80 downloads-us2.kaspersky-labs.com
    180.183.191.200 downloads-us3.kaspersky-labs.com
    111.63.81.72 downloads1.kaspersky-labs.com
    187.45.123.197 downloads2.kaspersky-labs.com
    102.48.18.192 downloads3.kaspersky-labs.com
    180.188.144.114 downloads4.kaspersky-labs.com
    111.57.62.146 engine.awaps.net
    179.113.96.3 f-secure.com
    100.178.73.135 fastclick.net
    182.38.71.88 ftp.avp.ch
    107.152.141.111 ftp.downloads2.kaspersky-labs.com
    186.39.46.12 ftp.f-secure.com
    106.65.181.226 ftp.kasperskylab.ru
    174.100.75.218 ftp.sophos.com
    174.194.28.31 ids.kaspersky-labs.com
    110.101.147.64 kaspersky-labs.com
    182.218.134.18 kaspersky.com
    110.50.113.133 liveupdate.symantec.com
    178.160.128.199 liveupdate.symantecliveupdate.com
    115.84.151.31 mast.mcafee.com
    185.0.220.131 mcafee.com
    109.92.142.185 media.fastclick.net
    103.113.37.211 my-etrust.com
    180.172.202.29 nai.com
    115.89.143.98 networkassociates.com
    109.188.51.100 phx.corporate-ir.net
    185.45.204.116 rads.mcafee.com
    109.120.41.223 secure.nai.com
    177.7.179.127 securityresponse.symantec.com
    108.217.74.1 service1.symantec.com
    183.50.26.181 sophos.com
    109.170.21.186 spd.atdmt.com
    101.13.209.239 symantec.com
    176.188.88.223 trendmicro.com
    105.130.169.168 update.symantec.com
    182.123.36.37 updates.symantec.com
    108.110.33.59 updates1.kaspersky-labs.com
    183.59.213.85 updates2.kaspersky-labs.com
    100.8.14.248 updates3.kaspersky-labs.com
    177.203.115.101 updates4.kaspersky-labs.com
    115.99.75.57 updates5.kaspersky-labs.com
    177.164.21.164 us.mcafee.com
    104.191.68.232 vil.nai.com
    178.104.12.229 viruslist.com
    115.45.29.170 viruslist.ru
    101.14.104.106 www.avp.ch
    187.220.183.234 www.avp.com
    106.32.32.175 www.avp.ru
    186.54.74.45 www.awaps.net
    101.143.19.123 www.ca.com
    174.32.86.13 www.f-secure.com
    105.116.161.207 www.fastclick.net
    181.161.67.179 www.grisoft.com
    112.172.26.189 www.kaspersky-labs.com
    184.209.149.39 www.kaspersky.com
    101.182.189.240 www.kaspersky.ru
    173.37.26.35 www.mcafee.com
    112.46.139.229 www.my-etrust.com
    178.225.214.176 www.nai.com
    108.150.114.26 www.networkassociates.com
    178.182.181.42 www.sophos.com
    109.208.204.78 www.symantec.com
    185.128.102.236 www.trendmicro.com
    106.65.196.108 www.viruslist.com
    179.223.125.67 www.viruslist.ru
    103.38.35.138 www3.ca.com
    175.24.52.173 avp.ch
    112.167.176.41 avp.com
    181.132.72.29 avp.ru
    108.51.94.92 awaps.net
    184.196.64.44 f-secure.com
    102.35.134.158 fastclick.net
    175.33.199.87 grisoft.com
    105.9.199.125 kaspersky-labs.com
    175.26.38.236 kaspersky.com
    113.214.19.103 kaspersky.ru
    181.92.116.12 mcafee.com
    110.211.91.110 my-etrust.com
    185.156.136.247 nai.com
    113.44.133.254 networkassociates.com
    178.106.76.170 sophos.com
    108.49.35.169 symantec.com
    178.73.132.50 trendmicro.com
    104.152.134.206 viruslist.com
    174.25.193.182 viruslist.ru
    100.58.33.218 www3.ca.com
    102.158.3.18 akamai.net
    186.30.217.102 update.symantec.com
    105.26.14.176 service1.symantec.com
    179.147.199.183 www.antivir.de
    105.108.119.104 antivir.de
    181.87.27.164 drweb.com
    110.60.112.152 www.drweb.com
    173.72.89.247 drweb.ru
    111.44.59.160 www.ravantivirus.com
    177.51.6.174 ravantivirus.com
    105.20.84.201 bitdefender.com
    184.57.115.18 www.bitdefender.com
    111.9.106.84 www.clamav.net
    179.134.219.18 clamav.net
    104.26.34.150 ftpav.ca.com
    178.40.61.175 upgrade.bitdefender.com
    104.145.107.4 www.bitdefender.ru
    186.223.18.161 bitdefender.ru
    100.125.216.116 open.by
    175.210.118.4 vba32.de
    106.43.202.48 www.open.by
    187.158.9.42 lavasoft.com
    176.168.161.132 rs01.avast.com
    113.196.23.53 sm01.avast.com
    173.85.201.82 rs02.avast.com
    100.83.75.234 sm02.avast.com
    178.94.124.98 rs03.avast.com
    115.115.189.31 sm03.avast.com
    179.82.30.213 rs04.avast.com
    108.6.5.208 sm04.avast.com
    184.166.75.163 rs05.avast.com
    109.98.190.168 sm05.avast.com
    185.166.221.212 rs06.avast.com
    101.71.169.118 sm06.avast.com
    183.68.192.179 rs07.avast.com
    113.156.186.65 sm07.avast.com
    173.216.20.157 rs08.avast.com
    115.25.97.195 sm08.avast.com
    185.172.91.117 rs09.avast.com
    103.56.26.4 sm09.avast.com
    187.21.191.24 rs10.avast.com
    106.135.126.37 sm10.avast.com
    186.92.191.182 rs11.avast.com
    101.151.218.40 sm11.avast.com
    182.12.173.157 rs12.avast.com
    102.44.86.6 sm12.avast.com
    187.177.109.41 rs13.avast.com
    100.135.39.7 sm13.avast.com
    183.4.26.28 rs14.avast.com
    109.152.56.132 sm14.avast.com
    174.22.52.47 rs15.avast.com
    112.44.76.101 sm15.avast.com
    176.24.2.108 rs16.avast.com
    104.88.100.68 sm16.avast.com
    175.209.96.55 rs17.avast.com
    108.136.54.58 sm17.avast.com
    182.81.75.62 rs18.avast.com
    100.132.172.31 sm18.avast.com
    183.224.68.115 rs19.avast.com
    103.144.191.113 sm19.avast.com
    184.193.195.14 rs20.avast.com
    103.69.72.110 sm20.avast.com
    176.169.145.194 rs21.avast.com
    105.200.223.248 sm21.avast.com
    176.72.49.72 rs22.avast.com
    105.200.136.24 sm22.avast.com
    184.106.33.253 rs23.avast.com
    112.106.95.4 sm23.avast.com
    176.15.175.146 rs24.avast.com
    115.172.124.52 sm24.avast.com
    174.173.108.253 rs25.avast.com
    111.199.132.183 sm25.avast.com
    181.141.199.236 rs26.avast.com
    108.110.4.67 sm26.avast.com
    187.38.57.188 rs27.avast.com
    110.153.170.218 sm27.avast.com
    184.120.97.180 rs28.avast.com
    104.221.204.97 sm28.avast.com
    184.87.84.126 rs29.avast.com
    113.158.156.12 sm29.avast.com
    175.137.116.58 rs30.avast.com
    106.89.171.42 sm30.avast.com
    181.63.155.14 downloadhosting.core.ignum.cz
    108.171.61.165 download25.avast.com
    180.78.122.242 www.avast.com
    105.94.46.61 avast.com
    177.128.188.27 avira.com
    104.119.33.105 www.avira.com
    100.89.152.164 zak.avira.com
    183.81.157.57 downloads.avira.com
    101.219.196.161 www.clamwin.com
    177.93.131.172 clamwin.com
    113.178.206.30 213.219.245.4
    178.169.49.160 files.referats.net
    104.83.9.105 database.clamav.net
    173.153.208.24 213.248.60.121
    101.135.166.191 gin.ba.euroweb.sk
    187.98.219.21 www2.eset.com
    106.190.161.183 esetsoftware.com
    176.66.89.23 msk4.drweb.com
    101.69.45.112 drweb.com
    173.95.15.84 www.drweb.com
    112.24.167.210 62.146.66.181
    104.147.137.57 www.hbedv.com
    174.131.68.125 hbedv.com
    106.3.47.173 www.hacksoft.com.pe
    177.137.173.100 ikarus-software.at
    114.219.187.247 download.ikarus.at
    178.202.68.47 193.69.114.12
    100.9.1.202 niutwo.norman.no
    183.208.148.247 www.anti-virus.by
    109.60.43.169 anti-virus.by
    185.112.35.70 www.vba32.de
    108.83.215.209 ftpav.ca.com

    »»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

    GenericRenosFix by S!Ri

    »»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés

    »»»»»»»»»»»»»»»»»»»»»»»» DNS

    Description: Linksys Wireless-G PCI Adapter - Miniport d'ordonnancement de paquets
    DNS Server Search Order: 212.27.54.252
    DNS Server Search Order: 212.27.53.252

    HKLM\SYSTEM\CCS\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
    HKLM\SYSTEM\CS1\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
    HKLM\SYSTEM\CS2\Services\Tcpip\..\{CA4BD50F-DC67-4FEC-A362-2CA14106A970}: DhcpNameServer=212.27.54.252 212.27.53.252
    HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252
    HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252
    HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: DhcpNameServer=212.27.54.252 212.27.53.252

    »»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires

    »»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
    !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
    "System"=""

    »»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre

    Nettoyage terminé.

    »»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Après SmitFraudFix
    !!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

    SrchSTS.exe by S!Ri
    Search SharedTaskScheduler's .dll

    »»»»»»»»»»»»»»»»»»»»»»»» Fin
    0
  9. salwa5 Messages postés 7552 Statut Contributeur 1 671
     
    ok ca marche

    a+++
    0