Virus pop-up interminable..

Résolu

Wizario -
raleuboleu Messages postés 5028 Statut Membre - 30 juil. 2007 à 19:42

Bonjour, depuis au moin 2 semaine je narrête pas de recevoir des pop-up tel que driver controler et des ofre danti verus, et plusieur autre. J'ai deja installer: ad-aware, Spybot, CClearer, bitdeffender et comme anti verus jai Avast (et coté anti verus jen ai essayer des tonne et cest lui le meilleur.. selon moi car avec AVG, voila 1 semaine.. jamais encore plusieurs autre probleme..) A oui autre chose, je sais qui va surment faloir que je telecharge HiJackthis, mais je ne reussis point a le faire, il y a une erreur qui survien quand je linstale, merci.

Pour bitdeffender voici le rapport

//-----------------------------------------------------------------
//
// Product: BitDefender 8 Free Edition
// Version: 8.0
//
// Created on: 13/07/2007 07:31:05
//
//-----------------------------------------------------------------

Statistics

Scan path : C:\WINDOWS\system32\
Folders : 364
Files : 8123
Archives : 13
Packed files : 347
Identified viruses : 3
Infected files : 33
Warnings : 0
Suspect files : 0
Disinfected files : 0
Deleted files : 0
Copied files : 0
Moved files : 32
Renamed files : 0
I/O errors : 12
Scan time : 00:02:04
Scan speed (files/sec) : 65

Virus definitions : 672018
Scan plugins : 14
Archive plugins : 38
Unpack plugins : 6
Mail plugins : 6
System plugins : 1

Scan options

Detection
[X] Scan boot sectors
[X] Scan archives
[X] Scan packed files
[X] Scan email

File mask
[ ] Programs
[X] All files
[ ] User defined extensions:
[ ] Exclude extensions: ;

Action

Infected objects
[ ] Ignore
[X] Disinfect
[ ] Delete
[ ] Copy to quarantine
[ ] Move to quarantine
[ ] Rename
[ ] Prompt user

Second action
[ ] Ignore
[ ] Delete
[ ] Copy to quarantine
[X] Move to quarantine
[ ] Rename
[ ] Prompt user

Scan options
[X] Enable warnings
[X] Enable heuristics
[X] Show all files in log
[X] Report file: vscan.log
[ ] Append to existing report

Summary:

C:\WINDOWS\system32\awtsspq.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\awtsspq.dll Disinfection failed
C:\WINDOWS\system32\awtsspq.dll Moved
C:\WINDOWS\system32\awtuvss.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\awtuvss.dll Disinfection failed
C:\WINDOWS\system32\awtuvss.dll Moved
C:\WINDOWS\system32\byxvvvu.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\byxvvvu.dll Disinfection failed
C:\WINDOWS\system32\byxvvvu.dll Moved
C:\WINDOWS\system32\cbxxywt.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\cbxxywt.dll Disinfection failed
C:\WINDOWS\system32\cbxxywt.dll Moved
C:\WINDOWS\system32\cbxyyay.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\cbxyyay.dll Disinfection failed
C:\WINDOWS\system32\cbxyyay.dll Move failed
C:\WINDOWS\system32\crswvmnt.exe Infected Trojan.Agent.AAOA
C:\WINDOWS\system32\crswvmnt.exe Disinfection failed
C:\WINDOWS\system32\crswvmnt.exe Moved
C:\WINDOWS\system32\ddcbbab.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\ddcbbab.dll Disinfection failed
C:\WINDOWS\system32\ddcbbab.dll Moved
C:\WINDOWS\system32\ddcyyxu.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\ddcyyxu.dll Disinfection failed
C:\WINDOWS\system32\ddcyyxu.dll Moved
C:\WINDOWS\system32\efdcmmsw.exe Infected Trojan.Agent.AAOA
C:\WINDOWS\system32\efdcmmsw.exe Disinfection failed
C:\WINDOWS\system32\efdcmmsw.exe Moved
C:\WINDOWS\system32\gcdpqvqb.dll Infected Trojan.JuanSearch.B
C:\WINDOWS\system32\gcdpqvqb.dll Disinfection failed
C:\WINDOWS\system32\gcdpqvqb.dll Moved
C:\WINDOWS\system32\gcuxcdsl.exe Infected Trojan.Agent.AAOA
C:\WINDOWS\system32\gcuxcdsl.exe Disinfection failed
C:\WINDOWS\system32\gcuxcdsl.exe Moved
C:\WINDOWS\system32\hggdefc.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\hggdefc.dll Disinfection failed
C:\WINDOWS\system32\hggdefc.dll Moved
C:\WINDOWS\system32\hgghihe.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\hgghihe.dll Disinfection failed
C:\WINDOWS\system32\hgghihe.dll Moved
C:\WINDOWS\system32\iifdaax.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\iifdaax.dll Disinfection failed
C:\WINDOWS\system32\iifdaax.dll Moved
C:\WINDOWS\system32\iifefca.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\iifefca.dll Disinfection failed
C:\WINDOWS\system32\iifefca.dll Moved
C:\WINDOWS\system32\iiffcbb.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\iiffcbb.dll Disinfection failed
C:\WINDOWS\system32\iiffcbb.dll Moved
C:\WINDOWS\system32\ljjgggg.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\ljjgggg.dll Disinfection failed
C:\WINDOWS\system32\ljjgggg.dll Moved
C:\WINDOWS\system32\lqechwlk.exe Infected Trojan.Agent.AAOA
C:\WINDOWS\system32\lqechwlk.exe Disinfection failed
C:\WINDOWS\system32\lqechwlk.exe Moved
C:\WINDOWS\system32\nnnmklk.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\nnnmklk.dll Disinfection failed
C:\WINDOWS\system32\nnnmklk.dll Moved
C:\WINDOWS\system32\opnomjg.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\opnomjg.dll Disinfection failed
C:\WINDOWS\system32\opnomjg.dll Moved
C:\WINDOWS\system32\pmnolig.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\pmnolig.dll Disinfection failed
C:\WINDOWS\system32\pmnolig.dll Moved
C:\WINDOWS\system32\qomnnmn.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\qomnnmn.dll Disinfection failed
C:\WINDOWS\system32\qomnnmn.dll Moved
C:\WINDOWS\system32\ssqqomn.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\ssqqomn.dll Disinfection failed
C:\WINDOWS\system32\ssqqomn.dll Moved
C:\WINDOWS\system32\ssqqool.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\ssqqool.dll Disinfection failed
C:\WINDOWS\system32\ssqqool.dll Moved
C:\WINDOWS\system32\tuvtrrp.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\tuvtrrp.dll Disinfection failed
C:\WINDOWS\system32\tuvtrrp.dll Moved
C:\WINDOWS\system32\tuvtsqn.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\tuvtsqn.dll Disinfection failed
C:\WINDOWS\system32\tuvtsqn.dll Moved
C:\WINDOWS\system32\urqnnkh.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\urqnnkh.dll Disinfection failed
C:\WINDOWS\system32\urqnnkh.dll Moved
C:\WINDOWS\system32\urqopnk.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\urqopnk.dll Disinfection failed
C:\WINDOWS\system32\urqopnk.dll Moved
C:\WINDOWS\system32\vtusqpq.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\vtusqpq.dll Disinfection failed
C:\WINDOWS\system32\vtusqpq.dll Moved
C:\WINDOWS\system32\vtuuvst.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\vtuuvst.dll Disinfection failed
C:\WINDOWS\system32\vtuuvst.dll Moved
C:\WINDOWS\system32\vunnbnvm.dll Infected Trojan.JuanSearch.B
C:\WINDOWS\system32\vunnbnvm.dll Disinfection failed
C:\WINDOWS\system32\vunnbnvm.dll Moved
C:\WINDOWS\system32\wlkfmebp.exe Infected Trojan.Agent.AAOA
C:\WINDOWS\system32\wlkfmebp.exe Disinfection failed
C:\WINDOWS\system32\wlkfmebp.exe Moved
C:\WINDOWS\system32\xxyabaa.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\xxyabaa.dll Disinfection failed
C:\WINDOWS\system32\xxyabaa.dll Moved

Scanned files

C:\=>Master Boot Record OK
C:\=>Primary partition 1 (Active) OK
C:\WINDOWS\system32\ OK
C:\WINDOWS\system32\$winnt$.inf OK
C:\WINDOWS\system32\1025\ OK
C:\WINDOWS\system32\1028\ OK
C:\WINDOWS\system32\1031\ OK
C:\WINDOWS\system32\1033\ OK
C:\WINDOWS\system32\1033\dwintl.dll OK
C:\WINDOWS\system32\1036\ OK
C:\WINDOWS\system32\1036\dwintl.dll OK
C:\WINDOWS\system32\1037\ OK
C:\WINDOWS\system32\1041\ OK
C:\WINDOWS\system32\1042\ OK
C:\WINDOWS\system32\1054\ OK
C:\WINDOWS\system32\12520437.cpx OK
C:\WINDOWS\system32\12520850.cpx OK
C:\WINDOWS\system32\2052\ OK
C:\WINDOWS\system32\3076\ OK
C:\WINDOWS\system32\3com_dmi\ OK
C:\WINDOWS\system32\6to4svc.dll OK
C:\WINDOWS\system32\a3d.dll OK
C:\WINDOWS\system32\a3d.dll=>:Zone.Identifier OK
C:\WINDOWS\system32\aaaamon.dll OK
C:\WINDOWS\system32\access.cpl OK
C:\WINDOWS\system32\acctres.dll OK
C:\WINDOWS\system32\accwiz.exe OK
C:\WINDOWS\system32\acelpdec.ax OK
C:\WINDOWS\system32\acledit.dll OK
C:\WINDOWS\system32\aclui.dll OK
C:\WINDOWS\system32\activeds.dll OK
C:\WINDOWS\system32\activeds.tlb OK
C:\WINDOWS\system32\actmovie.exe OK
C:\WINDOWS\system32\actskin4.ocx OK
C:\WINDOWS\system32\actxprxy.dll OK
C:\WINDOWS\system32\admparse.dll OK
C:\WINDOWS\system32\Adobe\ OK
C:\WINDOWS\system32\Adobe\SVG Viewer\ OK
C:\WINDOWS\system32\Adobe\SVG Viewer\AceLite.dll OK
C:\WINDOWS\system32\Adobe\SVG Viewer\Agm.dll OK
C:\WINDOWS\system32\Adobe\SVG Viewer\Bib.dll OK
C:\WINDOWS\system32\Adobe\SVG Viewer\CoolType.dll OK
C:\WINDOWS\system32\Adobe\SVG Viewer\NPSVGVw.dll OK
C:\WINDOWS\system32\Adobe\SVG Viewer\ReadMe.html OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVG Viewer License.txt OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGAbout.svg OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGControl.dll OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGHelp.html OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGRSRC.DLL OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGView.dll OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.dict OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.dict=>(unicode) OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.ini OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/SVGViewer.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/Attr.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/CDATASection.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/CharacterData.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/Comment.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/Document.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/DocumentFragment.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/DocumentType.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/DOMException.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/DOMImplementation.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/Element.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/Entity.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/EntityReference.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/NamedNodeMap.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/Node.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/NodeList.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/Notation.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/ProcessingInstruction.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/Text.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/css/Counter.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/css/CSS2Properties.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/css/CSSCharsetRule.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/css/CSSFontFaceRule.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/css/CSSImportRule.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/css/CSSMediaRule.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/css/CSSPageRule.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/css/CSSPrimitiveValue.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/css/CSSRule.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/css/CSSRuleList.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/css/CSSStyleDeclaration.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/css/CSSStyleRule.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/css/CSSStyleSheet.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/css/CSSUnknownRule.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/css/CSSValue.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/css/CSSValueList.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/css/DocumentCSS.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/css/DOMImplementationCSS.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/css/ElementCSSInlineStyle.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/css/Rect.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/css/RGBColor.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/css/ViewCSS.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/events/DocumentEvent.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/events/Event.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/events/EventException.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/events/EventListener.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/events/EventTarget.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/events/MouseEvent.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/events/UIEvent.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/smil/ElementTimeControl.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/stylesheets/DocumentStyle.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/stylesheets/LinkStyle.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/stylesheets/MediaList.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/stylesheets/StyleSheet.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/stylesheets/StyleSheetList.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/views/AbstractView.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/views/DocumentView.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/GetSVGDocument.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGAElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGAltGlyphDefElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGAltGlyphElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGAltGlyphItemElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGAngle.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGAnimateColorElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGAnimatedAngle.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGAnimatedBoolean.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGAnimatedEnumeration.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGAnimatedInteger.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGAnimatedLength.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGAnimatedLengthList.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGAnimatedNumber.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGAnimatedNumberList.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGAnimatedPathData.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGAnimatedPoints.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGAnimatedPreserveAspectRatio.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGAnimatedRect.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGAnimatedString.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGAnimatedTransformList.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGAnimateElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGAnimateMotionElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGAnimateTransformElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGAnimationElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGCircleElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGClipPathElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGColor.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGColorProfileElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGColorProfileRule.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGComponentTransferFunctionElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGCSSRule.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGCursorElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGDefinitionSrcElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGDefsElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGDescElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGDocument.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGElementInstance.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGElementInstanceList.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGEllipseElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGEvent.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGException.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGExternalResourcesRequired.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFEBlendElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFEColorMatrixElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFEComponentTransferElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFECompositeElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFEConvolveMatrixElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFEDiffuseLightingElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFEDisplacementMapElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFEDistantLightElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFEFloodElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFEFuncAElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFEFuncBElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFEFuncGElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFEFuncRElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFEGaussianBlurElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFEImageElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFEMergeElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFEMergeNodeElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFEMorphologyElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFEOffsetElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFEPointLightElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFESpecularLightingElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFESpotLightElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFETileElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFETurbulenceElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFilterElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFilterPrimitiveStandardAttributes.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFitToViewBox.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFontElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFontFaceElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFontFaceFormatElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFontFaceNameElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFontFaceSrcElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGFontFaceUriElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGForeignObjectElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGGElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGGlyphElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGGlyphRefElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGGradientElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGHKernElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGICCColor.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGImageElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGLangSpace.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGLength.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGLengthList.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGLinearGradientElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGLineElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGLocatable.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGMarkerElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGMaskElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGMatrix.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGMetadataElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGMissingGlyphElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGNumber.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGNumberList.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPaint.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPathElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPathSeg.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPathSegArcAbs.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPathSegArcRel.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPathSegClosePath.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPathSegCurvetoCubicAbs.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPathSegCurvetoCubicRel.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPathSegCurvetoCubicSmoothAbs.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPathSegCurvetoCubicSmoothRel.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPathSegCurvetoQuadraticAbs.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPathSegCurvetoQuadraticRel.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPathSegCurvetoQuadraticSmoothAbs.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPathSegCurvetoQuadraticSmoothRel.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPathSegLinetoAbs.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPathSegLinetoHorizontalAbs.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPathSegLinetoHorizontalRel.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPathSegLinetoRel.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPathSegLinetoVerticalAbs.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPathSegLinetoVerticalRel.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPathSegList.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPathSegMovetoAbs.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPathSegMovetoRel.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPatternElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPoint.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPointList.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPolygonElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPolylineElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGPreserveAspectRatio.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGRadialGradientElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGRect.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGRectElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGRenderingIntent.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGScriptElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGSetElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGStopElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGStringList.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGStylable.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGStyleElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGSVGElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGSwitchElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGSymbolElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGTests.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGTextContentElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGTextElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGTextPathElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGTextPositioningElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGTitleElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGTransform.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGTransformable.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGTransformList.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGTRefElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGTSpanElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGUnitTypes.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGURIReference.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGUseElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGViewElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGViewSpec.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGVKernElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGZoomAndPan.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>org/w3c/dom/svg/SVGZoomEvent.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/JAttr.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/JCDATASection.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/JCharacterData.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/JComment.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/JDocument.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/JDocumentFragment.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/JDocumentType.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/JDOMException.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/JDOMImplementation.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/JElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/JEntity.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/JEntityReference.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/JNamedNodeMap.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/JNode.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/JNodeList.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/JNotation.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/JProcessingInstruction.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/JSVGDocument.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/JSVGElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/JSVGPoint.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/JSVGRect.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/JSVGSVGElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/JSVGTextContentElement.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/JText.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/css/JCSSStyleDeclaration.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/events/JEvent.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/events/JKeyEvent.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/events/JMouseEvent.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/events/JUIEvent.class OK
C:\WINDOWS\system32\Adobe\SVG Viewer\SVGViewer.zip=>com/adobe/svg/events/KeyEvent.class OK
C:\WINDOWS\system32\adptif.dll OK
C:\WINDOWS\system32\adsldp.dll OK
C:\WINDOWS\system32\adsldpc.dll OK
C:\WINDOWS\system32\adsmsext.dll OK
C:\WINDOWS\system32\adsnds.dll OK
C:\WINDOWS\system32\adsnt.dll OK
C:\WINDOWS\system32\adsnw.dll OK
C:\WINDOWS\system32\advapi32.dll OK
C:\WINDOWS\system32\advpack.dll OK
C:\WINDOWS\system32\ahui.exe OK
C:\WINDOWS\system32\alg.exe OK
C:\WINDOWS\system32\alrsvc.dll OK
C:\WINDOWS\system32\amcompat.tlb OK
C:\WINDOWS\system32\amstream.dll OK
C:\WINDOWS\system32\ansi.sys OK
C:\WINDOWS\system32\apcups.dll OK
C:\WINDOWS\system32\append.exe OK
C:\WINDOWS\system32\apphelp.dll OK
C:\WINDOWS\system32\appmgmts.dll OK
C:\WINDOWS\system32\appmgr.dll OK
C:\WINDOWS\system32\appwiz.cpl OK
C:\WINDOWS\system32\arp.exe OK
C:\WINDOWS\system32\asctrls.ocx OK
C:\WINDOWS\system32\asferror.dll OK
C:\WINDOWS\system32\asr_fmt.exe OK
C:\WINDOWS\system32\asr_ldm.exe OK
C:\WINDOWS\system32\asr_pfu.exe OK
C:\WINDOWS\system32\aswBoot.exe OK
C:\WINDOWS\system32\asycfilt.dll OK
C:\WINDOWS\system32\at.exe OK
C:\WINDOWS\system32\atkctrs.dll OK
C:\WINDOWS\system32\atl.dll OK
C:\WINDOWS\system32\atmadm.exe OK
C:\WINDOWS\system32\atmfd.dll OK
C:\WINDOWS\system32\atmlib.dll OK
C:\WINDOWS\system32\atmpvcno.dll OK
C:\WINDOWS\system32\atrace.dll OK
C:\WINDOWS\system32\attrib.exe OK
C:\WINDOWS\system32\audiosrv.dll OK
C:\WINDOWS\system32\auditusr.exe OK
C:\WINDOWS\system32\authz.dll OK
C:\WINDOWS\system32\autochk.exe OK
C:\WINDOWS\system32\autoconv.exe OK
C:\WINDOWS\system32\autodisc.dll OK
C:\WINDOWS\system32\AUTOEXEC.NT OK
C:\WINDOWS\system32\autofmt.exe OK
C:\WINDOWS\system32\autolfn.exe OK
C:\WINDOWS\system32\AvastSS.scr OK
C:\WINDOWS\system32\avicap.dll OK
C:\WINDOWS\system32\avicap32.dll OK
C:\WINDOWS\system32\avifil32.dll OK
C:\WINDOWS\system32\avifile.dll OK
C:\WINDOWS\system32\avmeter.dll OK
C:\WINDOWS\system32\avtapi.dll OK
C:\WINDOWS\system32\avwav.dll OK
C:\WINDOWS\system32\awtsspq.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\awtsspq.dll Disinfection failed
C:\WINDOWS\system32\awtsspq.dll Moved
C:\WINDOWS\system32\awtuvss.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\awtuvss.dll Disinfection failed
C:\WINDOWS\system32\awtuvss.dll Moved
C:\WINDOWS\system32\basesrv.dll OK
C:\WINDOWS\system32\BASSMOD.dll OK
C:\WINDOWS\system32\batmeter.dll OK
C:\WINDOWS\system32\batt.dll OK
C:\WINDOWS\system32\bdco1.dll OK
C:\WINDOWS\system32\bdco1.dll=>:Zone.Identifier OK
C:\WINDOWS\system32\bdco1ins.dll OK
C:\WINDOWS\system32\bdco1ins.dll=>:Zone.Identifier OK
C:\WINDOWS\system32\bidispl.dll OK
C:\WINDOWS\system32\bios1.rom OK
C:\WINDOWS\system32\bios4.rom OK
C:\WINDOWS\system32\bios4.rom=>REMOVED_NULLS OK
C:\WINDOWS\system32\bitsprx2.dll OK
C:\WINDOWS\system32\bitsprx3.dll OK
C:\WINDOWS\system32\blackbox.dll OK
C:\WINDOWS\system32\blastcln.exe OK
C:\WINDOWS\system32\bootcfg.exe OK
C:\WINDOWS\system32\bootok.exe OK
C:\WINDOWS\system32\bootvid.dll OK
C:\WINDOWS\system32\bootvrfy.exe OK
C:\WINDOWS\system32\bopomofo.uce OK
C:\WINDOWS\system32\browselc.dll OK
C:\WINDOWS\system32\browser.dll OK
C:\WINDOWS\system32\browseui.dll OK
C:\WINDOWS\system32\browsewm.dll OK
C:\WINDOWS\system32\bthci.dll OK
C:\WINDOWS\system32\bthprops.cpl OK
C:\WINDOWS\system32\bthserv.dll OK
C:\WINDOWS\system32\btpanui.dll OK
C:\WINDOWS\system32\byxvvvu.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\byxvvvu.dll Disinfection failed
C:\WINDOWS\system32\byxvvvu.dll Moved
C:\WINDOWS\system32\cabinet.dll OK
C:\WINDOWS\system32\cabview.dll OK
C:\WINDOWS\system32\cacls.exe OK
C:\WINDOWS\system32\calc.exe OK
C:\WINDOWS\system32\camocx.dll OK
C:\WINDOWS\system32\CapabilityTable.exe OK
C:\WINDOWS\system32\capesnpn.dll OK
C:\WINDOWS\system32\cards.dll OK
C:\WINDOWS\system32\CatRoot\ OK
C:\WINDOWS\system32\CatRoot\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\ OK
C:\WINDOWS\system32\CatRoot\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\TimeStamp OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\ OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\codecs10.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\DRM10.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\FP4.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\HPCRDP.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\IASNT4.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\IMS.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\KB888111WXPSP2.cat OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\MAPIMIG.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\mediactr.cat OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\MPPRE10.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\MSMSGS.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\msn7.cat OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\msn9.cat OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\MSTSWEB.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\MW770.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\netfx.cat OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\NT5.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\NT5IIS.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\NT5INF.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\NTPRINT.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem0.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem1.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem10.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem100.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem101.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem102.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem103.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem104.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem105.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem106.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem107.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem108.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem109.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem11.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem110.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem111.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem112.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem113.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem114.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem115.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem116.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem117.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem118.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem119.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem12.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem120.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem121.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem122.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem123.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem124.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem125.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem126.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem127.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem128.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem129.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem13.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem130.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem131.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem132.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem133.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem134.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem135.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem136.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem137.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem138.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem139.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem14.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem140.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem141.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem142.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem143.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem144.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem145.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem146.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem147.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem148.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem149.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem15.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem150.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem151.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem152.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem153.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem154.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem155.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem156.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem157.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem158.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem159.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem16.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem160.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem161.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem162.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem163.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem164.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem165.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem166.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem167.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem168.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem169.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem17.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem170.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem171.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem172.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem173.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem174.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem175.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem176.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem177.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem178.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem179.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem18.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem180.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem181.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem182.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem183.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem184.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem185.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem186.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem187.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem188.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem189.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem19.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem190.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem191.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem192.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem193.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem194.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem195.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem2.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem2.CAT=>:Zone.Identifier OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem20.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem21.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem22.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem23.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem24.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem25.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem26.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem27.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem28.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem29.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem3.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem3.CAT=>:Zone.Identifier OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem30.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem31.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem32.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem33.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem34.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem35.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem36.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem37.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem38.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem39.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem4.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem4.CAT=>:Zone.Identifier OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem40.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem41.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem42.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem43.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem44.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem45.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem46.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem47.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem48.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem49.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem5.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem5.CAT=>:Zone.Identifier OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem50.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem51.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem52.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem53.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem54.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem55.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem56.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem57.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem58.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem59.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem6.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem6.CAT=>:Zone.Identifier OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem60.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem61.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem62.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem63.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem64.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem65.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem66.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem67.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem68.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem69.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem7.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem70.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem71.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem72.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem73.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem74.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem75.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem76.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem77.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem78.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem79.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem80.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem81.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem82.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem83.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem84.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem85.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem86.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem87.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem88.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem89.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem9.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem90.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem91.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem92.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem93.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem94.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem95.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem96.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem97.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem98.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\oem99.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\OEMBIOS.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\SP2.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\tabletpc.cat OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\TimeStamp OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\WMDM10.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\wmerrenu.cat OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\WMFSDK10.CAT OK
C:\WINDOWS\system32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\WPD10.CAT OK
C:\WINDOWS\system32\CatRoot2\ OK
C:\WINDOWS\system32\CatRoot2\dberr.txt OK
C:\WINDOWS\system32\CatRoot2\edb.chk OK
C:\WINDOWS\system32\CatRoot2\edb.log OK
C:\WINDOWS\system32\CatRoot2\edb00018.log OK
C:\WINDOWS\system32\CatRoot2\edb00019.log OK
C:\WINDOWS\system32\CatRoot2\edb0001A.log OK
C:\WINDOWS\system32\CatRoot2\edb0001B.log OK
C:\WINDOWS\system32\CatRoot2\edb0001C.log OK
C:\WINDOWS\system32\CatRoot2\res1.log OK
C:\WINDOWS\system32\CatRoot2\res2.log OK
C:\WINDOWS\system32\CatRoot2\tmp.edb OK
C:\WINDOWS\system32\CatRoot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\ OK
C:\WINDOWS\system32\CatRoot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb OK
C:\WINDOWS\system32\CatRoot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\TimeStamp OK
C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\ OK
C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb OK
C:\WINDOWS\system32\CatRoot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\TimeStamp OK
C:\WINDOWS\system32\catsrv.dll OK
C:\WINDOWS\system32\catsrvps.dll OK
C:\WINDOWS\system32\catsrvut.dll OK
C:\WINDOWS\system32\cbxxywt.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\cbxxywt.dll Disinfection failed
C:\WINDOWS\system32\cbxxywt.dll Moved
C:\WINDOWS\system32\cbxyyay.dll Detected: Adware.Virtumonde.GFH
C:\WINDOWS\system32\cbxyyay.dll Disinfection failed
C:\WINDOWS\system32\cbxyyay.dll Move failed
C:\WINDOWS\system32\ccfgnt.dll OK
C:\WINDOWS\system32\CDDBControl.dll OK
C:\WINDOWS\system32\CddbLangDE.dll OK
C:\WINDOWS\system32\CddbLangES.dll OK
C:\WINDOWS\system32\CddbLangFR.dll OK
C:\WINDOWS\system32\CddbLangIT.dll OK
C:\WINDOWS\system32\CddbLangJA.dll OK
C:\WINDOWS\system32\CddbLangKO.dll OK
C:\WINDOWS\system32\CddbLangNL.dll OK
C:\WINDOWS\system32\CddbLangPT_BR.dll OK
C:\WINDOWS\system32\CddbLangSV.dll OK
C:\WINDOWS\system32\CddbLangTH.dll OK
C:\WINDOWS\system32\CddbLangZH.dll OK
C:\WINDOWS\system32\CddbLangZT.dll OK
C:\WINDOWS\system32\CDDBUI.dll OK
C:\WINDOWS\system32\cdfview.dll OK
C:\WINDOWS\system32\cdm.dll OK
C:\WINDOWS\system32\cdmodem.dll OK
C:\WINDOWS\system32\cdosys.dll OK
C:\WINDOWS\system32\cdplayer.exe.manifest OK
C:\WINDOWS\system32\certcli.dll OK
C:\WINDOWS\system32\certmgr.dll OK
C:\WINDOWS\system32\certmgr.msc OK
C:\WINDOWS\system32\cewmdm.dll OK
C:\WINDOWS\system32\cfgbkend.dll OK
C:\WINDOWS\system32\cfgmgr32.dll OK
C:\WINDOWS\system32\charmap.exe OK
C:\WINDOWS\system32\Chaînes.scf OK
C:\WINDOWS\system32\chcp.com OK
C:\WINDOWS\system32\chkdsk.exe OK
C:\WINDOWS\system32\chkntfs.exe OK
C:\WINDOWS\system32\ciadmin.dll OK
C:\WINDOWS\system32\ciadv.msc OK
C:\WINDOWS\system32\cic.dll OK
C:\WINDOWS\system32\cidaemon.exe OK
C:\WINDOWS\system32\ciodm.dll OK
C:\WINDOWS\system32\cipher.exe OK
C:\WINDOWS\system32\cisvc.exe OK
C:\WINDOWS\system32\ckcnv.exe OK
C:\WINDOWS\system32\clb.dll OK
C:\WINDOWS\system32\clbcatex.dll OK
C:\WINDOWS\system32\clbcatq.dll OK
C:\WINDOWS\system32\cleanmgr.exe OK
C:\WINDOWS\system32\CleanUp.exe OK
C:\WINDOWS\system32\cliconf.chm OK
C:\WINDOWS\system32\cliconf.chm=>/#SYSTEM OK
C:\WINDOWS\system32\cliconf.chm=>/idh_add_apple.htm OK
C:\WINDOWS\system32\cliconf.chm=>/idh_add_apple.htm=>(JAVASCRIPT 2) OK
C:\WINDOWS\system32\cliconf.chm=>/idh_add_ipxspx1.htm OK
C:\WINDOWS\system32\cliconf.chm=>/idh_add_ipxspx1.htm=>(JAVASCRIPT 2) OK
C:\WINDOWS\system32\cliconf.chm=>/idh_add_ipxspx2.htm OK
C:\WINDOWS\system32\cliconf.chm=>/idh_add_ipxspx2.htm=>(JAVASCRIPT 2) OK
C:\WINDOWS\system32\cliconf.chm=>/idh_add_multi.htm OK
C:\WINDOWS\system32\cliconf.chm=>/idh_add_multi.htm=>(JAVASCRIPT 2) OK
C:\WINDOWS\system32\cliconf.chm=>/idh_add_namedpipes.htm OK
C:\WINDOWS\system32\cliconf.chm=>/idh_add_namedpipes.htm=>(JAVASCRIPT 2) OK
C:\WINDOWS\system32\cliconf.chm=>/idh_add_others.htm OK
C:\WINDOWS\system32\cliconf.chm=>/idh_add_others.htm=>(JAVASCRIPT 2) OK
C:\WINDOWS\system32\cliconf.chm=>/idh_add_tcpip.htm OK
C:\WINDOWS\system32\cliconf.chm=>/idh_add_tcpip.htm=>(JAVASCRIPT 2) OK
C:\WINDOWS\system32\cliconf.chm=>/idh_add_vines.htm OK
C:\WINDOWS\system32\cliconf.chm=>/idh_add_vines.htm=>(JAVASCRIPT 2) OK
C:\WINDOWS\system32\cliconf.chm=>/idh_alias.htm OK
C:\WINDOWS\system32\cliconf.chm=>/idh_alias.htm=>(JAVASCRIPT 2) OK
C:\WINDOWS\system32\cliconf.chm=>/idh_dblib.htm OK
C:\WINDOWS\system32\cliconf.chm=>/idh_dblib.htm=>(JAVASCRIPT 2) OK
C:\WINDOWS\system32\cliconf.chm=>/idh_general.htm OK
C:\WINDOWS\system32\cliconf.chm=>/idh_general.htm=>(JAVASCRIPT 2) OK
C:\WINDOWS\system32\cliconf.chm=>/idh_netlib.htm OK
C:\WINDOWS\system32\cliconf.chm=>/idh_netlib.htm=>(JAVASCRIPT 2) OK
C:\WINDOWS\system32\cliconf.chm=>/_add_(or_edit)_via_library_configuration.htm OK
C:\WINDOWS\system32\cliconf.chm=>/_add_(or_edit)_via_library_configuration.htm=>(JAVASCRIPT 2) OK
C:\WINDOWS\system32\cliconf.chm=>/_appletalk_protocol_default_value_setup.htm OK
C:\WINDOWS\system32\cliconf.chm=>/_appletalk_protocol_default_value_setup.htm=>(JAVASCRIPT 2) OK
C:\WINDOWS\system32\cliconf.chm=>/_banyan_vines_protocol_default_value_setup.htm OK
C:\WINDOWS\system32\cliconf.chm=>/_banyan_vines_protocol_default_value_setup.htm=>(JAVASCRIPT 2) OK
C:\WINDOWS\system32\cliconf.chm=>/_helphow_to_alias_a_client_to_an_alternate_pipe.htm OK
C:\WINDOWS\system32\cliconf.chm=>/_helphow_to_alias_a_client_to_an_alternate_pipe.htm=>(JAVASCRIPT 2) OK
C:\WINDOWS\system32\cliconf.chm=>/_helphow_to_check_the_library_version_numbers.htm OK
C:\WINDOWS\system32\cliconf.chm=>/_helphow_to_check_the_library_version_numbers.htm=>(JAVASCRIPT 2) OK
C:\WINDOWS\system32\cliconf.chm=>/_helphow_to_use_the_windows_socket

Afficher la suite

A voir également:

Virus pop-up interminable..
Mcafee virus pop-up - Accueil - Piratage
Pop corn time - Télécharger - TV & Vidéo
Serveur pop - Guide
Allumer tv avec télécommande freebox pop ✓ - Forum Freebox
Youtube sur freebox pop - Forum Téléviseurs

64 réponses

Réponse 41 / 64

raleuboleu Messages postés 5028 Statut Membre 79

ralallalalala

Va sur ce lien et télécharge Blacklight(de F-Secure) :
< https://www.f-secure.com/en > et sauvegarde le sur ton Bureau
Consulte le tuto de Malekal_morte ici :
< https://www.malekal.com/tutorial-f-secure-blacklight/ >
Tu suis le tuto pour la phase 1 (scan) et tu postes le rapport de blacklight dans ta réponse.

bizoux

Réponse 42 / 64

Wizario

tien

07/17/07 16:44:09 [Info]: BlackLight Engine 1.0.64 initialized
07/17/07 16:44:09 [Info]: OS: 5.1 build 2600 (Service Pack 2)
07/17/07 16:44:09 [Note]: 7019 4
07/17/07 16:44:09 [Note]: 7005 0
07/17/07 16:44:11 [Note]: 7006 0
07/17/07 16:44:11 [Note]: 7011 1648
07/17/07 16:44:11 [Note]: 7026 0
07/17/07 16:44:11 [Note]: 7026 0
07/17/07 16:44:12 [Note]: FSRAW library version 1.7.1022
07/17/07 16:45:47 [Note]: 7007 0

Réponse 43 / 64

Wizario

et puis :S

Réponse 44 / 64

raleuboleu Messages postés 5028 Statut Membre 79

salut

ok tout d'abord desactive le service de spyware doctor

demarrer/executer tapes : services.msc

double cliques sur le service : PC Tools Spyware Doctor (SDhelper),dans type de demarrage choisi desactiver puis clique sur arreter puis sur appliqué / ok

ouvre hijack coches ces lignes puis clic sur fix checked

-O23 - Service: Spyware Doctor Auxiliary Service (sdAuxService) - Unknown owner - C:\Program Files\Spyware Doctor\svcntaux.exe (file missing)
-O23 - Service: Spyware Doctor Service (sdCoreService) - Unknown owner - C:\Program Files\Spyware Doctor\swdsvc.exe (file missing)

redemare en mode sans echec (redemarrage + tapotte sans arret sur la touche F8 desque l'ordi s'allume)

cherches et supprime le dossiers en gras :

C:\Program Files\Spyware Doctor

redemare en mode normal

supprime les fichiers inutiles (fichiers temporaire , cookies .. ) avec ceci:

Ccleaner
https://www.malekal.com/tutoriel-ccleaner/

biz

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question

Réponse 45 / 64

Wizario

Tien, ^^ mercii tout a fonctionner :P meci enormement voila ce que ca donne:

Logfile of HijackThis v1.99.1
Scan saved at 12:47:40, on 2007-07-18
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\Program Files\Logitech\G-series Software\LGDCore.exe
C:\Program Files\Logitech\G-series Software\LCDMon.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Logitech\G-series Software\Applets\LCDPop3\LCDPOP3.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\Program Files\Logitech\G-series Software\Applets\LCDCountdown\LCDCountdown.exe
C:\Program Files\Logitech\G-series Software\Applets\LCDMedia.exe
C:\Program Files\Logitech\G-series Software\Applets\LCDClock.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\NVIDIA~1\NETWOR~1\Apache Group\Apache2\bin\apache.exe
C:\Program Files\Network Associates\Common Framework\FrameworkService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\PROGRA~1\NVIDIA~1\NETWOR~1\Apache Group\Apache2\bin\apache.exe
C:\Program Files\MySQL\MySQL Server 5.0\bin\mysqld-nt.exe
C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nSvcLog.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nSvcAppFlt.exe
C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nSvcIp.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Teamspeak2_RC2\TeamSpeak.exe
C:\Hijackthis Version Française\hijackthis vf.exe

O1 - Hosts: 66.130.197.84 L2authd.lineage2.com
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [Launch LGDCore] "C:\Program Files\Logitech\G-series Software\LGDCore.exe" /SHOWHIDE
O4 - HKLM\..\Run: [Launch LCDMon] "C:\Program Files\Logitech\G-series Software\LCDMon.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nSvcAppFlt.exe
O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Unknown owner - C:\PROGRA~1\NVIDIA~1\NETWOR~1\Apache Group\Apache2\bin\apache.exe" -k runservice (file missing)
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Service Framework McAfee (McAfeeFramework) - Network Associates, Inc. - C:\Program Files\Network Associates\Common Framework\FrameworkService.exe
O23 - Service: MySQL - Unknown owner - C:\Program.exe (file missing)
O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA Corporation - C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nSvcIp.exe
O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA Corporation - C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nSvcLog.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)

si tu voix quelque chose dautre fait moi signe :) merci pour toutt bizz ;)

a oui ds mes processus mon ami ma dit que jai 2 fichier qui srais des "verus" ou trojan tk jaimerais savoir si c vrai: rundll32.exe et jusched.exe

Réponse 46 / 64

raleuboleu Messages postés 5028 Statut Membre 79

re

moi meme j'ai ces processus mais lance ceci pour voir 1 truc

Télécharge SDFix (créé par AndyManchesta) et sauvegarde le sur ton Bureau.
http://downloads.andymanchesta.com/RemovalTools/SDFix.exe
Double clique sur SDFix.exe et choisis Install pour l'extraire dans un dossier dédié sur le Bureau. Redémarre ton ordinateur en mode sans échec en suivant la procédure que voici :
• Redémarre ton ordinateur
• Après avoir entendu l'ordinateur biper lors du démarrage, mais avant que l'icône Windows apparaisse, tapote la touche F8 (une pression par seconde).
• A la place du chargement normal de Windows, un menu avec différentes options devrait apparaître.
• Choisis la première option, pour exécuter Windows en mode sans échec, puis appuie sur "Entrée".
• Choisis ton compte.
Déroule la liste des instructions ci-dessous :
• Ouvre le dossier SDFix qui vient d'être créé dans le répertoire C:\ et double clique sur RunThis.bat pour lancer le scrïpt.
• Appuie sur Y pour commencer le processus de nettoyage.
• Il va supprimer les services et les entrées du Registre de certains trojans trouvés puis te demandera d'appuyer sur une touche pour redémarrer.
• Appuie sur une touche pour redémarrer le PC.
• Ton système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
• Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
• Appuie sur une touche pour finir l'exécution du scrïpt et charger les icônes de ton Bureau.
• Les icônes du Bureau affichées, le rapport SDFix s'ouvrira à l'écran et s'enregistrera aussi dans le dossier SDFix sous le nom Report.txt.
• Enfin, copie/colle le contenu du fichier Report.txt dans ta prochaine réponse sur le forum, avec un nouveau log Hijackthis !

bizoux

Réponse 47 / 64

Wizario

ok ^^ mici tien

Run by Utilisateur on 2007-07-18 at 15:34

Microsoft Windows XP [version 5.1.2600]

Running From: C:\DOCUME~1\UTILIS~1\Bureau\SdFix\SDFix

Safe Mode:
Checking Services:

Restoring Windows Registry Values
Restoring Windows Default Hosts File

Rebooting...

Normal Mode:
Checking Files:

No Trojan Files Found

Removing Temp Files...

ADS Check:

C:\WINDOWS
No streams found.

C:\WINDOWS\system32
No streams found.

C:\WINDOWS\system32\svchost.exe
No streams found.

C:\WINDOWS\system32\ntoskrnl.exe
No streams found.

Final Check:

Remaining Services:
------------------

Authorized Application Key Export:

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\NVIDIA Corporation\\NetworkAccessManager\\Apache Group\\Apache2\\bin\\Apache.exe"="C:\\Program Files\\NVIDIA Corporation\\NetworkAccessManager\\Apache Group\\Apache2\\bin\\Apache.exe:*:Enabled:Apache HTTP Server"
"C:\\Program Files\\Warcraft III\\Frozen Throne.exe"="C:\\Program Files\\Warcraft III\\Frozen Throne.exe:*:Enabled:Warcraft III - The Frozen Throne"
"C:\\Program Files\\Warcraft III\\Warcraft III.exe"="C:\\Program Files\\Warcraft III\\Warcraft III.exe:*:Enabled:Warcraft III"
"C:\\Program Files\\World of Warcraft\\Repair.exe"="C:\\Program Files\\World of Warcraft\\Repair.exe:*:Enabled:Blizzard Repair Utility"
"C:\\Documents and Settings\\Utilisateur\\Bureau\\utorrent.exe"="C:\\Documents and Settings\\Utilisateur\\Bureau\\utorrent.exe:*:Enabled:æTorrent"
"C:\\Program Files\\eMule\\emule.exe"="C:\\Program Files\\eMule\\emule.exe:*:Enabled:eMule"
"C:\\Documents and Settings\\Utilisateur\\Local Settings\\Temp\\Rar$EX00.656\\WoW-BC_Downloader.exe"="C:\\Documents and Settings\\Utilisateur\\Local Settings\\Temp\\Rar$EX00.656\\WoW-BC_Downloader.exe:*:Enabled:Blizzard Downloader"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\\WINDOWS\\system32\\gmcamdpo.exe"="C:\\WINDOWS\\system32\\gmc"
"C:\\WINDOWS\\pchealth\\helpctr\\binaries\\HelpCtr.exe"="C:\\WINDOWS\\pchealth\\helpctr\\binaries\\HelpCtr.exe:*:Enabled:Assistance … distance - Windows Messenger et voix"
"C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes"
"C:\\WINDOWS\\system32\\java.exe"="C:\\WINDOWS\\system32\\java.exe:*:Enabled:Java(TM) Platform SE binary"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

Remaining Files:
---------------

Files with Hidden Attributes:

C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Microsoft\Messenger\whitedeviltiger64@hotmail.com\Sharing Folders\heelflipcool@hotmail.com\Thumbs.db
C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Microsoft\Messenger\whitedeviltiger64@hotmail.com\Sharing Folders\missredish@msn.com\Thumbs.db

Finished

et HijackThis

Logfile of HijackThis v1.99.1
Scan saved at 15:41:49, on 2007-07-18
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\NVIDIA~1\NETWOR~1\Apache Group\Apache2\bin\apache.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\MySQL\MySQL Server 5.0\bin\mysqld-nt.exe
C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nSvcLog.exe
C:\PROGRA~1\NVIDIA~1\NETWOR~1\Apache Group\Apache2\bin\apache.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nSvcAppFlt.exe
C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nSvcIp.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\notepad.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\Program Files\Logitech\G-series Software\LGDCore.exe
C:\Program Files\Logitech\G-series Software\LCDMon.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Logitech\G-series Software\Applets\LCDPop3\LCDPOP3.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\Program Files\Logitech\G-series Software\Applets\LCDCountdown\LCDCountdown.exe
C:\Program Files\Logitech\G-series Software\Applets\LCDMedia.exe
C:\Program Files\Logitech\G-series Software\Applets\LCDClock.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Hijackthis Version Française\hijackthis vf.exe

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [Launch LGDCore] "C:\Program Files\Logitech\G-series Software\LGDCore.exe" /SHOWHIDE
O4 - HKLM\..\Run: [Launch LCDMon] "C:\Program Files\Logitech\G-series Software\LCDMon.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nSvcAppFlt.exe
O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Unknown owner - C:\PROGRA~1\NVIDIA~1\NETWOR~1\Apache Group\Apache2\bin\apache.exe" -k runservice (file missing)
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: MySQL - Unknown owner - C:\Program.exe (file missing)
O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA Corporation - C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nSvcIp.exe
O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA Corporation - C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nSvcLog.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)

Réponse 48 / 64

raleuboleu Messages postés 5028 Statut Membre 79

re

quel souci rencontre tu a ce mom?

bizoux

Réponse 49 / 64

Wizario

hey hey >.<¸je comprend pas pouquoi, mais bon, mon anti verus (avast) a encore trouver des trojans quand que je ne fait presque juste jouer a des jeux video (WoW, warcraft, lineage, bref des jeux rpg) et sur des site de jeux et pour finir sur msn je comprend pas vrmt pk il peut encore en trouver >.<

jai fait un scan avec ad-awre, spy-bot, vundfix,fsbl , sdfix, cclenear et la presentement je fesais un scan (un nouveau pour voir) avec mon antiverus. Si tu peux y reter un oeil et me dire c quoi quil se passe cela serais tres aprecier, merci de ton aide encore pour tout ce que tu as fait bizou

-Raport sdfx

SDFix: Version 1.91

Run by Utilisateur on 2007-07-25 at 20:18

Microsoft Windows XP [version 5.1.2600]

Running From: C:\DOCUME~1\UTILIS~1\Bureau\SdFix\SDFix

Safe Mode:
Checking Services:

Restoring Windows Registry Values
Restoring Windows Default Hosts File

Rebooting...

Normal Mode:
Checking Files:

No Trojan Files Found

Removing Temp Files...

ADS Check:

C:\WINDOWS
No streams found.

C:\WINDOWS\system32
No streams found.

C:\WINDOWS\system32\svchost.exe
No streams found.

C:\WINDOWS\system32\ntoskrnl.exe
No streams found.

Final Check:

Remaining Services:
------------------

Authorized Application Key Export:

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\NVIDIA Corporation\\NetworkAccessManager\\Apache Group\\Apache2\\bin\\Apache.exe"="C:\\Program Files\\NVIDIA Corporation\\NetworkAccessManager\\Apache Group\\Apache2\\bin\\Apache.exe:*:Enabled:Apache HTTP Server"
"C:\\Program Files\\Warcraft III\\Frozen Throne.exe"="C:\\Program Files\\Warcraft III\\Frozen Throne.exe:*:Enabled:Warcraft III - The Frozen Throne"
"C:\\Program Files\\Warcraft III\\Warcraft III.exe"="C:\\Program Files\\Warcraft III\\Warcraft III.exe:*:Enabled:Warcraft III"
"C:\\Program Files\\World of Warcraft\\Repair.exe"="C:\\Program Files\\World of Warcraft\\Repair.exe:*:Enabled:Blizzard Repair Utility"
"C:\\Documents and Settings\\Utilisateur\\Bureau\\utorrent.exe"="C:\\Documents and Settings\\Utilisateur\\Bureau\\utorrent.exe:*:Enabled:æTorrent"
"C:\\Program Files\\eMule\\emule.exe"="C:\\Program Files\\eMule\\emule.exe:*:Enabled:eMule"
"C:\\Documents and Settings\\Utilisateur\\Local Settings\\Temp\\Rar$EX00.656\\WoW-BC_Downloader.exe"="C:\\Documents and Settings\\Utilisateur\\Local Settings\\Temp\\Rar$EX00.656\\WoW-BC_Downloader.exe:*:Enabled:Blizzard Downloader"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\\WINDOWS\\system32\\gmcamdpo.exe"="C:\\WINDOWS\\system32\\gmc"
"C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes"
"C:\\WINDOWS\\system32\\java.exe"="C:\\WINDOWS\\system32\\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\\WINDOWS\\pchealth\\helpctr\\binaries\\HelpCtr.exe"="C:\\WINDOWS\\pchealth\\helpctr\\binaries\\HelpCtr.exe:*:Enabled:Assistance … distance - Windows Messenger et voix"
"C:\\WINDOWS\\system32\\LEXPPS.EXE"="C:\\WINDOWS\\system32\\LEXPPS.EXE:*:Enabled:LEXPPS.EXE"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

Remaining Files:
---------------

Files with Hidden Attributes:

C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Microsoft\Messenger\whitedeviltiger64@hotmail.com\Sharing Folders\heelflipcool@hotmail.com\Thumbs.db
C:\Documents and Settings\Utilisateur\Local Settings\Application Data\Microsoft\Messenger\whitedeviltiger64@hotmail.com\Sharing Folders\missredish@msn.com\Thumbs.db

Finished

-Raport HiJackThis:

Logfile of HijackThis v1.99.1
Scan saved at 20:34:58, on 2007-07-25
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\NVIDIA~1\NETWOR~1\Apache Group\Apache2\bin\apache.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\MySQL\MySQL Server 5.0\bin\mysqld-nt.exe
C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nSvcLog.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\PROGRA~1\NVIDIA~1\NETWOR~1\Apache Group\Apache2\bin\apache.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nSvcAppFlt.exe
C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nSvcIp.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\notepad.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\Program Files\Logitech\G-series Software\LGDCore.exe
C:\Program Files\Logitech\G-series Software\LCDMon.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\Program Files\Logitech\G-series Software\Applets\LCDPop3\LCDPOP3.exe
C:\Program Files\Logitech\G-series Software\Applets\LCDCountdown\LCDCountdown.exe
C:\Program Files\Logitech\G-series Software\Applets\LCDMedia.exe
C:\Program Files\Logitech\G-series Software\Applets\LCDClock.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Alwil Software\Avast4\ashSimpl.exe
C:\Hijackthis Version Française\hijackthis vf.exe

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [Launch LGDCore] "C:\Program Files\Logitech\G-series Software\LGDCore.exe" /SHOWHIDE
O4 - HKLM\..\Run: [Launch LCDMon] "C:\Program Files\Logitech\G-series Software\LCDMon.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nSvcAppFlt.exe
O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Unknown owner - C:\PROGRA~1\NVIDIA~1\NETWOR~1\Apache Group\Apache2\bin\apache.exe" -k runservice (file missing)
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: MySQL - Unknown owner - C:\Program.exe (file missing)
O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA Corporation - C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nSvcIp.exe
O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA Corporation - C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nSvcLog.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)

Rapport CClearer

NETTOYAGE COMPLET - (2,611 secs)
------------------------------------------------------------------------------------------
3,56MB supprimés.
------------------------------------------------------------------------------------------

Détails des fichiers effacés
------------------------------------------------------------------------------------------
Fichiers Temporaires d'Internet Explorer (fichiers 203) 1,51MB
Cookie:utilisateur@atdmt.com/(&H100001) 94 bytes
Cookie:utilisateur@www.commentcamarche.net/(&H100001) 114 bytes
Cookie:utilisateur@xiti.com/(&H100001) 99 bytes
Cookie:utilisateur@sdv.fr/(&H100001) 76 bytes
Cookie:utilisateur@bluestreak.com/(&H100001) 176 bytes
C:\Documents and Settings\Utilisateur\Cookies\utilisateur@h.msn[1].txt 68 bytes
C:\Documents and Settings\Utilisateur\Cookies\utilisateur@hotmail.msn[1].txt 71 bytes
C:\Documents and Settings\Utilisateur\Cookies\utilisateur@live[1].txt 333 bytes
C:\Documents and Settings\Utilisateur\Cookies\utilisateur@login.live[1].txt 268 bytes
C:\Documents and Settings\Utilisateur\Cookies\utilisateur@messenger.msn[1].txt 93 bytes
C:\Documents and Settings\Utilisateur\Cookies\utilisateur@msn[2].txt 332 bytes
C:\Documents and Settings\Utilisateur\Cookies\utilisateur@rad.msn[2].txt 670 bytes
Marqué pour l'effacement: C:\Documents and Settings\Utilisateur\Local Settings\Temporary Internet Files\Content.IE5\index.dat
Marqué pour l'effacement: C:\Documents and Settings\Utilisateur\Cookies\index.dat
Poubelle vidée (1 fichiers) 0,51MB
C:\WINDOWS\MiniDump\Mini072507-01.dmp 88,00KB
C:\WINDOWS\system32\wbem\Logs\wbemess.log 22,95KB
C:\WINDOWS\system32\wbem\Logs\wmiprov.log 134 bytes
C:\WINDOWS\0.log 0 bytes
C:\WINDOWS\setupapi.log 533 bytes
C:\WINDOWS\ntbtlog.txt 0,10MB
C:\WINDOWS\Debug\UserMode\userenv.log 5,74KB
Cache Internet de Firefox/Mozilla (23 fichiers) 1,28MB
C:\Documents and Settings\Utilisateur\Application Data\Mozilla\Firefox\profiles\et8m6oo4.default\history.dat 27,45KB
C:\Documents and Settings\Utilisateur\Application Data\Mozilla\Firefox\profiles\et8m6oo4.default\downloads.rdf 1,77KB
Cookie supprimé: google.fr
Cookie supprimé: qcdndl2.4rumer.com
Cookie supprimé: google.ca
Cookie supprimé: google.com
Cookie supprimé: yahoo.com
Cookie supprimé: 2o7.net
Cookie supprimé: clubic.com
Cookie supprimé: xiti.com
Cookie supprimé: smartadserver.com
Cookie supprimé: clubic.com
Cookie supprimé: doubleclick.net
Cookie supprimé: www.clubic.com
Cookie supprimé: bluestreak.com
Cookie supprimé: smartadserver.com
Cookie supprimé: www.01net.com
Cookie supprimé: weborama.fr
Cookie supprimé: atdmt.com
Cookie supprimé: com.com
Cookie supprimé: download.com
Cookie supprimé: www.download.com
Cookie supprimé: element5.com
Cookie supprimé: revsci.net
Cookie supprimé: download.com
Cookie supprimé: revsci.net
Cookie supprimé: www.download.com
Cookie supprimé: revsci.net
Cookie supprimé: download.com
Cookie supprimé: zedo.com
Cookie supprimé: blizzard.com
Cookie supprimé: www.blizzard.com
Cookie supprimé: blizzard.com
C:\Documents and Settings\Utilisateur\Application Data\Mozilla\Firefox\profiles\et8m6oo4.default\formhistory.dat 991 bytes
C:\Documents and Settings\Utilisateur\Application Data\Macromedia\Flash Player\macromedia.com\support\flashplayer\sys\settings.sol 348 bytes
------------------------------------------------------------------------------------------

-Et pour finir Avast:

pour avast c plus dure.. ca copi cole pas mais c ds c\system volume information\_restor (ak plein de letre et chifre , un fichier exe ca dit infection Wn32 bgucated-BFL (TJR) (etdes BFM a place de BFL) tk je sais pas si tu comprend sinon je tenverai mon e-mail >.<

Réponse 50 / 64

raleuboleu Messages postés 5028 Statut Membre 79

salut

trojan ^^ , avg l'a mis en quarantaine certainenement

bon ben on va commencer par ça :

1/ Télécharge VundoFix.exe (par Atribune) sur ton Bureau.
http://www.atribune.org/ccount/click.php?id=4
Double-clique VundoFix.exe afin de le lancer.

Clique sur le bouton Scan for Vundo.
Lorsque le scan est complété, clique sur le bouton Remove Vundo.
Une invite te demandera si tu veux supprimer les fichiers, clique YES
Après avoir cliqué "Yes", le Bureau disparaîtra un moment lors de la suppression des fichiers.
Tu verras une invite qui t'annonce que ton PC va s'éteindre ("shutdown") ; clique OK
Démarre ton PC à nouveau.

2/ Télécharge VirtumundoBegone sur le bureau:
http://secured2k.home.comcast.net/tools/VirtumundoBeGone.exe

Double clique ensuite sur VirtumundoBeGone.exe et suis les instructions.
Une fois terminé, redémarre et poste le rapport VBG.TXT créé sur le bureau dans ta prochaine réponse avec un nouveau rapport HijackThis.
Ne t'inquiète pas si tu vois un message Ecran bleu "Erreur fatale", c'est normal et attendu

postes tous rapports stp

bizoux

Réponse 51 / 64

Wizario

[07/26/2007, 12:32:26] - VirtumundoBeGone v1.5 ( "C:\Documents and Settings\Utilisateur\Bureau\VirtumundoBeGone.exe" )
[07/26/2007, 12:32:28] - Detected System Information:
[07/26/2007, 12:32:28] - Windows Version: 5.1.2600, Service Pack 2
[07/26/2007, 12:32:28] - Current Username: Utilisateur (Admin)
[07/26/2007, 12:32:28] - Windows is in NORMAL mode.
[07/26/2007, 12:32:28] - Searching for Browser Helper Objects:
[07/26/2007, 12:32:28] - BHO 1: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} (AcroIEHlprObj Class)
[07/26/2007, 12:32:28] - BHO 2: {53707962-6F74-2D53-2644-206D7942484F} ()
[07/26/2007, 12:32:28] - WARNING: BHO has no default name. Checking for Winlogon reference.
[07/26/2007, 12:32:28] - Checking for HKLM\...\Winlogon\Notify\SDHelper
[07/26/2007, 12:32:28] - Key not found: HKLM\...\Winlogon\Notify\SDHelper, continuing.
[07/26/2007, 12:32:28] - BHO 3: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class)
[07/26/2007, 12:32:28] - BHO 4: {7E853D72-626A-48EC-A868-BA8D5E23E045} ()
[07/26/2007, 12:32:28] - WARNING: BHO has no default name. Checking for Winlogon reference.
[07/26/2007, 12:32:28] - No filename found. Continuing.
[07/26/2007, 12:32:28] - Finished Searching Browser Helper Objects
[07/26/2007, 12:32:28] - Finishing up...
[07/26/2007, 12:32:28] - Nothing found! Exiting...

juste ca? :S et ca pas redemarer rien du tout >.< a oui et moi jai avast en passant :P ^^ avg pour moi je trouve que c.. dla... "shit" sorry :S

Réponse 52 / 64

raleuboleu Messages postés 5028 Statut Membre 79

looool

et spybot ca te va? mdr

bizoux

Réponse 53 / 64

Wizario

Spybot trouve tlt 4 "trojan" bluestreak , doubleclick, fastclick et hitbox en tk >.<

Réponse 54 / 64

raleuboleu Messages postés 5028 Statut Membre 79

grrrrrrrrrrrrrrrr

passe combofix

1 lien interressant:

http://mickael.barroux.free.fr/securite/combofix.php

kiss

Réponse 55 / 64

Wizario

Tien, le resultat >.<

"Utilisateur" - 2007-07-26 23:21:14 - ComboFix 07-07-23.6 - Service Pack 2 NTFS

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))

C:\DOCUME~1\LOCALS~1\APPLIC~1\Install.dat
C:\DOCUME~1\NETWOR~1\APPLIC~1\Install.dat
C:\WINDOWS\ecurit~1
C:\WINDOWS\fnts~1
C:\WINDOWS\system32\umljsgqr.exe
C:\WINDOWS\wnsxs~1

((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))

-------\LEGACY_DOMAINSERVICE
-------\DomainService

((((((((((((((((((((((((( Files Created from 2007-06-27 to 2007-07-27 )))))))))))))))))))))))))))))))

2007-07-26 23:20 51,200 --a------ C:\WINDOWS\nircmd.exe
2007-07-26 14:31 <REP> d-------- C:\Program Files\World of Warcraft
2007-07-26 09:38 <REP> d-------- C:\Program Files\World of Warcraft(2)
2007-07-26 00:33 <REP> d-------- C:\Program Files\No-IP
2007-07-25 21:11 <REP> d-------- C:\wamp
2007-07-25 18:24 <REP> d-------- C:\Program Files\Lavasoft
2007-07-25 18:24 <REP> d-------- C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Lavasoft
2007-07-17 15:06 <REP> d-------- C:\Program Files\splus
2007-07-16 17:45 <REP> d-------- C:\Hijackthis Version Fran‡aise
2007-07-15 22:04 5,410,816 --a------ C:\DOCUME~1\UTILIS~1\ntuser.dat
2007-07-15 22:04 1,110,016 --a------ C:\DOCUME~1\LOCALS~1.AUT\ntuser.dat
2007-07-15 18:54 <REP> d-------- C:\VundoFix Backups
2007-07-15 18:29 <REP> d-------- C:\WINDOWS\ERUNT
2007-07-14 19:03 476,320 --------- C:\WINDOWS\system32\ImagXpr7.dll
2007-07-14 19:03 471,040 --------- C:\WINDOWS\system32\ImagXRA7.dll
2007-07-14 19:03 364,544 --------- C:\WINDOWS\system32\TwnLib4.dll
2007-07-14 19:03 262,144 --------- C:\WINDOWS\system32\ImagXR7.dll
2007-07-14 19:03 155,648 --a------ C:\WINDOWS\system32\NeroCheck.exe
2007-07-14 19:03 106,496 --a------ C:\WINDOWS\system32\TwnLib20.dll
2007-07-14 19:03 1,568,768 --------- C:\WINDOWS\system32\ImagX7.dll
2007-07-14 19:03 <REP> d-------- C:\Program Files\Ahead
2007-07-14 18:10 <REP> d-------- C:\Program Files\StepMania
2007-07-14 17:29 <REP> d-------- C:\WINDOWS\system32\appmgmt
2007-07-14 11:21 <REP> d-------- C:\Program Files\Fichiers communs\3DO Shared
2007-07-14 11:21 <REP> d-------- C:\Program Files\3DO
2007-07-13 19:44 <REP> d-------- C:\Program Files\iTunes
2007-07-13 19:44 <REP> d-------- C:\Program Files\iPod
2007-07-13 19:43 <REP> d-------- C:\Program Files\Fichiers communs\Apple
2007-07-13 19:43 <REP> d-------- C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\Apple
2007-07-13 19:41 <REP> d-------- C:\Program Files\QuickTime
2007-07-13 18:28 14 --a------ C:\DOCUME~1\UTILIS~1\getfile.dat
2007-07-13 07:41 14 --a------ C:\WINDOWS\system32\getfile.dat
2007-07-13 07:27 <REP> d---s---- C:\DOCUME~1\UTILIS~1\UserData
2007-07-13 07:27 <REP> d-------- C:\WINDOWS\BDOSCAN8
2007-07-09 20:25 <REP> d-------- C:\DOCUME~1\UTILIS~1\APPLIC~1\AdobeUM
2007-07-09 16:45 <REP> d-------- C:\DOCUME~1\UTILIS~1\APPLIC~1\CyberLink
2007-07-09 16:45 <REP> d-------- C:\DOCUME~1\ALLUSE~1.WIN\APPLIC~1\CyberLink
2007-07-08 23:33 95,872 --a------ C:\WINDOWS\system32\AvastSS.scr
2007-07-08 23:33 94,552 --a------ C:\WINDOWS\system32\drivers\aswmon2.sys
2007-07-08 23:33 85,952 --a------ C:\WINDOWS\system32\drivers\aswmon.sys
2007-07-08 23:33 745,600 --a------ C:\WINDOWS\system32\aswBoot.exe
2007-07-08 23:33 43,176 --a------ C:\WINDOWS\system32\drivers\aswTdi.sys
2007-07-08 23:33 26,888 --a------ C:\WINDOWS\system32\drivers\aavmker4.sys
2007-07-08 23:33 23,416 --a------ C:\WINDOWS\system32\drivers\aswRdr.sys
2007-07-08 23:33 <REP> d-------- C:\Program Files\Alwil Software
2007-07-08 12:48 1,352,355 ---hs---- C:\WINDOWS\system32\ststv.bak2
2007-07-06 13:37 266,336 --a------ C:\WINDOWS\system32\vtsts.dll.vir
2007-07-06 13:37 1,245,081 ---hs---- C:\WINDOWS\system32\ststv.bak1
2007-07-04 21:43 679,936 --a------ C:\WINDOWS\system32\D3DX81ab.dll
2007-07-04 21:40 <REP> d-------- C:\Program Files\WinPcap
2007-07-04 21:40 <REP> d-------- C:\Program Files\WC3Banlist
2007-07-03 00:01 <REP> d-------- C:\WINDOWS\cache
2007-07-02 09:57 <REP> d-------- C:\Program Files\Common Files
2007-06-30 09:34 1,254,934 ---hs---- C:\WINDOWS\system32\rqstv.bak2
2007-06-29 18:12 <REP> d-------- C:\Program Files\DOWNLOADEXITBOLT
2007-06-28 14:44 1,246,638 ---hs---- C:\WINDOWS\system32\rqstv.bak1
2007-06-28 13:39 <REP> d-------- C:\Program Files\Windows Live
2007-06-28 13:39 <REP> d-------- C:\Program Files\Adverts
2007-06-28 13:38 <REP> d-------- C:\Program Files\MSN Messenger
2007-06-28 12:36 31,254 --a------ C:\WINDOWS\system32\cbxyyay.dll.vir

(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

2007-07-26 15:28:43 -------- d-----w C:\Program Files\Warcraft III
2007-07-26 13:39:35 -------- d-----w C:\Program Files\Fichiers communs\Blizzard Entertainment
2007-07-25 22:23:45 -------- d-----w C:\Program Files\Fichiers communs\Wise Installation Wizard
2007-07-25 22:18:01 -------- d-----w C:\DOCUME~1\UTILIS~1\APPLIC~1\Lavasoft
2007-07-25 18:30:45 -------- d-----w C:\DOCUME~1\UTILIS~1\APPLIC~1\teamspeak2
2007-07-19 01:38:22 -------- d-----w C:\Program Files\eMule
2007-07-15 23:02:26 -------- d-----w C:\Program Files\Lexmark X1100 Series
2007-07-14 23:02:59 -------- d-----w C:\Program Files\CyberLink DVD Solution
2007-07-14 21:34:17 -------- d-----w C:\Program Files\Network Associates
2007-07-14 15:25:58 28,400 ----a-w C:\WINDOWS\system32\drivers\secdrv.sys
2007-07-11 22:23:27 -------- d-----w C:\Program Files\Lineage II
2007-07-02 03:06:07 -------- d-----w C:\DOCUME~1\UTILIS~1\APPLIC~1\DOWNLOADEXITBOLT
2007-06-29 20:02:09 -------- d-----w C:\DOCUME~1\UTILIS~1\APPLIC~1\uTorrent
2007-06-28 17:39:26 -------- d-----w C:\Program Files\Messenger Plus! Live
2007-06-28 17:33:32 -------- d-----w C:\Program Files\Creative
2007-06-23 01:43:28 -------- d-----w C:\Program Files\CCleaner
2007-06-23 01:12:29 -------- d-----w C:\DOCUME~1\UTILIS~1\APPLIC~1\Skype
2007-06-22 20:38:38 -------- d-----w C:\DOCUME~1\UTILIS~1\APPLIC~1\PC Tools
2007-06-21 20:06:36 0 ----a-w C:\WINDOWS\mozver.dat
2007-06-18 19:32:53 -------- d-----w C:\Program Files\Teamspeak2_RC2
2007-06-18 17:38:52 -------- d-----w C:\Program Files\MySQL
2007-06-18 16:47:28 -------- d-----w C:\Program Files\RegCleaner
2007-06-18 16:12:55 -------- d-----w C:\Program Files\PremiumSoft
2007-06-15 22:36:00 -------- d-----w C:\DOCUME~1\UTILIS~1\APPLIC~1\Creative
2007-06-15 22:12:50 -------- d--h--w C:\Program Files\InstallShield Installation Information
2007-06-15 02:49:11 -------- d-----w C:\Program Files\Lavalys
2007-06-14 12:26:49 -------- d-----w C:\Program Files\Skype
2007-06-14 12:26:46 -------- d-----w C:\Program Files\Fichiers communs\Skype
2007-06-13 19:50:45 -------- d-----w C:\Program Files\InterActual
2007-06-13 17:03:09 -------- d-----w C:\Program Files\Apple Software Update
2007-06-13 12:34:17 -------- d-----w C:\DOCUME~1\UTILIS~1\APPLIC~1\InterTrust
2007-06-13 12:29:41 -------- d-----w C:\Program Files\VirtualDJ
2007-06-13 12:26:21 -------- d-----w C:\Program Files\DivX
2007-06-13 12:11:20 -------- d-----w C:\DOCUME~1\UTILIS~1\APPLIC~1\Apple Computer
2007-06-13 12:10:15 -------- d-----w C:\Program Files\QuickZip4
2007-06-12 19:34:39 79,794 ----a-w C:\WINDOWS\War3Unin.dat
2007-06-12 19:22:07 -------- d-----w C:\DOCUME~1\UTILIS~1\APPLIC~1\Teleca
2007-06-12 19:17:45 2,829 ----a-w C:\WINDOWS\War3Unin.pif
2007-06-12 19:17:45 139,264 ----a-w C:\WINDOWS\War3Unin.exe
2007-06-12 18:26:34 -------- d-----w C:\DOCUME~1\UTILIS~1\APPLIC~1\Leadertech
2007-06-12 18:26:33 -------- d-----w C:\Program Files\viewsonic
2007-06-12 18:24:01 -------- d-----w C:\Program Files\Disc2Phone
2007-06-12 18:21:33 63,614 ----a-w C:\WINDOWS\system32\perfc00C.dat
2007-06-12 18:21:33 445,016 ----a-w C:\WINDOWS\system32\perfh00C.dat
2007-06-12 18:17:25 -------- d-----w C:\Program Files\Fichiers communs\Teleca Shared
2007-06-12 18:17:14 -------- d-----w C:\Program Files\Sony Ericsson
2007-06-12 15:47:31 -------- d-----w C:\DOCUME~1\UTILIS~1\APPLIC~1\WinRAR
2007-06-12 13:25:43 1,187 ----a-w C:\WINDOWS\checkip.dat
2007-06-12 01:57:52 -------- d-----w C:\Program Files\TGTSoft
2007-06-08 00:39:39 43,520 ----a-w C:\WINDOWS\system32\CmdLineExt03.dll
2007-06-08 00:26:26 -------- d-----w C:\Program Files\Winamp
2007-06-08 00:18:59 0 ----a-w C:\WINDOWS\nsreg.dat
2007-06-08 00:04:32 -------- d-----w C:\Program Files\ABBYY FineReader 5.0 Sprint
2007-06-07 16:37:17 -------- d-----w C:\Program Files\Microsoft Works
2007-06-07 16:19:51 93,952 ----a-w C:\WINDOWS\system32\drivers\aeaudio.sys
2007-06-07 16:19:51 65,536 ----a-w C:\WINDOWS\system32\a3d.dll
2007-06-07 16:19:51 392,960 ----a-w C:\WINDOWS\system32\drivers\senfilt.sys
2007-06-07 16:19:51 293,888 ----a-w C:\WINDOWS\system32\drivers\ADIHdAud.sys
2007-06-07 16:19:51 28,160 ----a-w C:\WINDOWS\system32\PostProc.dll
2007-06-07 16:17:33 363,008 ----a-w C:\WINDOWS\system32\idecoiins.dll
2007-06-07 16:17:33 363,008 ----a-w C:\WINDOWS\system32\idecoi.dll
2007-06-07 16:17:33 35,840 ----a-w C:\WINDOWS\system32\NVCOI.DLL
2007-06-07 16:17:33 208,896 ------w C:\WINDOWS\system32\nvuide.exe
2007-06-07 16:17:33 105,344 ----a-w C:\WINDOWS\system32\drivers\nvata.sys
2007-06-07 16:17:31 261,632 ----a-w C:\WINDOWS\system32\drivers\nvsnpu.sys
2007-06-07 16:17:31 19,968 ----a-w C:\WINDOWS\system32\drivers\nvnetbus.sys
2007-06-07 16:17:31 110,592 ----a-w C:\WINDOWS\system32\drivers\nvtcp.sys
2007-06-07 16:17:31 1,428 ----a-w C:\WINDOWS\system32\drivers\nvphy.bin
2007-06-07 16:17:31 1,161,088 ----a-w C:\WINDOWS\system32\drivers\nvnrm.sys
2007-06-07 16:17:30 57,856 ----a-w C:\WINDOWS\system32\drivers\NVENETFD.sys
2007-06-07 16:17:30 35,840 ----a-w C:\WINDOWS\system32\nvconrm.dll
2007-06-07 16:17:29 201,728 ----a-w C:\WINDOWS\system32\fdco1.dll
2007-06-07 16:17:29 11,264 ----a-w C:\WINDOWS\system32\bdco1ins.dll
2007-06-07 16:17:29 11,264 ----a-w C:\WINDOWS\system32\bdco1.dll
2007-06-07 15:11:51 21,892 ----a-w C:\WINDOWS\system32\emptyregdb.dat
2007-06-07 15:11:18 -------- d-----w C:\Program Files\Messenger
2007-06-06 18:01:00 -------- d-----w C:\Program Files\lg_fwupdate
2007-06-02 03:17:43 -------- d-----w C:\Program Files\Infogrames Interactive
2007-06-01 21:43:20 -------- d-----w C:\Program Files\Microsoft IntelliType Pro
2007-06-01 21:42:00 -------- d-----w C:\Program Files\Microsoft IntelliPoint
2007-05-31 18:35:50 -------- d-----w C:\Program Files\Logitech
2007-05-31 18:21:43 -------- d-----w C:\Program Files\Fichiers communs\InstallShield
2007-05-31 07:59:15 -------- d-----w C:\Program Files\microsoft frontpage
2007-05-31 07:58:56 0 --sha-r C:\MSDOS.SYS
2007-05-31 07:58:56 0 --sha-r C:\IO.SYS
2007-05-31 07:58:56 0 ----a-w C:\CONFIG.SYS
2007-05-31 07:58:56 0 ----a-w C:\AUTOEXEC.BAT
2007-05-31 07:57:56 -------- d--h--w C:\Program Files\WindowsUpdate
2007-05-31 07:57:53 -------- d-----w C:\Program Files\Services en ligne
2007-05-31 07:57:08 -------- d-----w C:\Program Files\Fichiers communs\MSSoap
2007-05-31 07:56:59 -------- d-----w C:\Program Files\Movie Maker
2007-05-31 07:55:57 -------- d-----w C:\Program Files\Online Services
2007-05-31 07:55:48 -------- d-----w C:\Program Files\MSN Gaming Zone
2007-05-31 07:55:40 -------- d-----w C:\Program Files\Windows NT
2007-05-31 03:48:55 -------- d-----w C:\Program Files\Fichiers communs\ODBC
2007-05-31 03:48:52 -------- d-----w C:\Program Files\Fichiers communs\SpeechEngines
2007-05-30 20:38:59 -------- d-----w C:\Program Files\Fichiers communs\Ahead
2007-05-30 20:34:01 -------- d-----w C:\Program Files\Microsoft.NET
2007-05-30 20:29:41 -------- d-----w C:\Program Files\Fichiers communs\Cisco Systems
2007-05-30 20:27:40 -------- d-----w C:\Program Files\AMD

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))

*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"nwiz"="nwiz.exe" [2007-04-20 06:05 C:\WINDOWS\system32\nwiz.exe]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe" [2007-03-14 03:43]
"Launch LGDCore"="C:\Program Files\Logitech\G-series Software\LGDCore.exe" [2006-03-06 11:31]
"Launch LCDMon"="C:\Program Files\Logitech\G-series Software\LCDMon.exe" [2006-03-06 11:14]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-04-30 11:42]
"Adobe Photo Downloader"="C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe" []
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [2007-06-29 06:24]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2007-07-10 09:18]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2007-04-20 06:05]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-05 08:00]
"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.exe" [2007-01-19 12:55]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-08-04 01:07]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\sdauxservice]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\sdcoreservice]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Utilisateur^Menu Démarrer^Programmes^Démarrage^PowerReg Scheduler.exe]
path=C:\Documents and Settings\Utilisateur\Menu Démarrer\Programmes\Démarrage\PowerReg Scheduler.exe
backup=C:\WINDOWS\pss\PowerReg Scheduler.exeStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Photo Downloader]
"C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\amd_dc_opt]
"C:\Program Files\AMD\amd_dc_opt\amd_dc_opt.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
"C:\Program Files\iTunes\iTunesHelper.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lessgridlinkanti]
C:\Documents and Settings\All Users.WINDOWS\Application Data\forkbagslessgrid\atomnurb.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Lexmark X1100 Series]
"C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\McAfeeUpdaterUI]
"C:\Program Files\Network Associates\Common Framework\UpdaterUI.exe" /StartedFromRunKey

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Network Associates Error Reporting Service]
"C:\Program Files\Fichiers communs\Network Associates\TalkBack\TBMon.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
"C:\Program Files\QuickTime\qttask.exe" -atboottime

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
"C:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ShStatEXE]
"C:\Program Files\Network Associates\VirusScan\SHSTAT.EXE" /STANDALONE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
"C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite]
"C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAX]
"C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
C:\Program Files\Analog Devices\Core\smax4pnp.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe

R1 mnmdd;mnmdd;C:\WINDOWS\system32\drivers\mnmdd.sys
R1 Npfs;Npfs;C:\WINDOWS\system32\drivers\Npfs.sys
R1 NVTCP;NVIDIA TCP/IP Protocol Driver;C:\WINDOWS\system32\DRIVERS\NVTcp.sys
R2 ForceWare Intelligent Application Manager (IAM);ForceWare Intelligent Application Manager (IAM);C:\PROGRA~1\NVIDIA~1\NETWOR~1\bin\nSvcAppFlt.exe
R2 lanmanserver;Serveur;C:\WINDOWS\system32\svchost.exe -k netsvcs
R2 lanmanworkstation;Station de travail;C:\WINDOWS\system32\svchost.exe -k netsvcs
R2 winmgmt;Infrastructure de gestion Windows;C:\WINDOWS\system32\svchost.exe -k netsvcs
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service;C:\WINDOWS\system32\drivers\ADIHdAud.sys
R3 AmdTools;AMD Special Tools Driver;C:\WINDOWS\system32\DRIVERS\AmdTools.sys
R3 P0630VID;Creative WebCam Live!;C:\WINDOWS\system32\DRIVERS\P0630Vid.sys
R3 SenFiltService;SenFilt Service;C:\WINDOWS\system32\drivers\Senfilt.sys
R3 wdmaud;Pilote WINMM de compatibilit‚ audio WDM Microsoft;C:\WINDOWS\system32\drivers\wdmaud.sys
S3 IKFileFlt;File Filter Driver;C:\WINDOWS\system32\drivers\ikfileflt.sys
S3 IKFileSec;File Security Driver;C:\WINDOWS\system32\drivers\ikfilesec.sys
S3 IkSysFlt;System Filter Driver;C:\WINDOWS\system32\drivers\iksysflt.sys
S3 IKSysSec;System Security Driver;C:\WINDOWS\system32\drivers\iksyssec.sys
S3 mnmsrvc;Partage de Bureau … distance NetMeeting;C:\WINDOWS\system32\mnmsrvc.exe
S3 nm;Pilote du Moniteur r‚seau;C:\WINDOWS\system32\DRIVERS\NMnt.sys
S3 NPF;NetGroup Packet Filter Driver;C:\WINDOWS\system32\drivers\npf.sys
S3 NPPTNT2;NPPTNT2;\??\C:\WINDOWS\system32\npptNT2.sys
S3 w300bus;Sony Ericsson W300 Driver driver (WDM);C:\WINDOWS\system32\DRIVERS\w300bus.sys
S3 w300mdfl;Sony Ericsson W300 USB WMC Modem Filter;C:\WINDOWS\system32\DRIVERS\w300mdfl.sys
S3 w300mdm;Sony Ericsson W300 USB WMC Modem Driver;C:\WINDOWS\system32\DRIVERS\w300mdm.sys
S3 w300mgmt;Sony Ericsson W300 USB WMC Device Management Drivers (WDM);C:\WINDOWS\system32\DRIVERS\w300mgmt.sys
S3 w300obex;Sony Ericsson W300 USB WMC OBEX Interface;C:\WINDOWS\system32\DRIVERS\w300obex.sys

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\D]
AutoRun\command- D:\autoplay.exe

Contents of the 'Scheduled Tasks' folder
2007-07-26 18:00:00 C:\WINDOWS\tasks\A244CC6391974B53.job
2007-07-20 23:40:00 C:\WINDOWS\tasks\AppleSoftwareUpdate.job

**************************************************************************

catchme 0.3.1061 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-07-26 23:24:36
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden registry entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\MySQL]
"ImagePath"="\"C:\Program Files\MySQL\MySQL Server 5.0\bin\mysqld-nt\" --defaults-file=\"C:\Program Files\MySQL\MySQL Server 5.0\my.ini\" MySQL"

Completion time: 2007-07-26 23:25:26 - machine was rebooted
C:\ComboFix-quarantined-files.txt ... 2007-07-26 23:25

--- E O F ---

Réponse 56 / 64

raleuboleu Messages postés 5028 Statut Membre 79

salut

peux tu me remettre 1 hijack stp mais avant fais ceci:

rend toi sur ce lien :
http://www.gmer.net

tu pourras y telecharger Gmer et tout est expliqué comme il faut et en images

bizoux

Réponse 57 / 64

Wizario

salut, >.< jai quelque probleme de mon coté presentement je suis chez lun de mes amis, jai fait.. sauter ma carte mère sans vrmt le vouloir alors.. cela va me prendre 1 semaine pour que je retrouve mon ordinateur, merci de ton aide, (comment je lai fait sauter, c en essayant dinstaller une nouvelle fan sur mes carte ram.. mais comme un "con" :P jai pas fermer lordi et... cour circuit >.< "vive les garanties XD :)")

mici bcp biz! t la meilleure :P ^^

Réponse 58 / 64

raleuboleu Messages postés 5028 Statut Membre 79

re

ah bah bravo lol ^^ te dis bon courrage alors

la meilleure euhhhhhhhhhhhhhhhhh nan pourtant mais je suis pas contre les compliments lol

a bientot alors

bizoux a toi

Réponse 59 / 64

Wizario

Salut salut ^^, la je suis chez ma couzine, et elle a un probleme avec son ordi, elle est slow comme tout, (avant lancien proprietaire telechargais plein de chose inutilement , comme des anti-verus en pop-up -.- (le con)) tk, jvousllais savoir si tu pourrais maider a aranger cela, jai fait un scan avec hijackthis, jai installer dessus comme sur la mienne ad-aware, avast et spybot. Jai essayer deja de faire un petit menage, mais defois cetais sans succès si tu peut cela serais tres aprecier, en tk merci si tu peux, et sinon c pas grave :P ca reste toi la meilleure :D:P ^^

biz

Logfile of HijackThis v1.99.1
Scan saved at 11:14:35, on 2007-07-28
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\PROGRA~1\ASSIST~1\SMARTB~1\MotiveSB.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Accélérateur du service de base Sympatico\slipaccel.exe
C:\Program Files\Compaq Connections\5577497\Program\Compaq Connections.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\Motive\Common\MOTIVE~1.EXE
C:\Program Files\Assistant Internet\bin\mad.exe
C:\Program Files\Assistant Internet\bin\mpbtn.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Compaq_Propriétaire\Bureau\iTunesSetup.exe
C:\WINDOWS\system32\msiexec.exe
C:\WINDOWS\system32\msiexec.exe
C:\WINDOWS\system32\MsiExec.exe
C:\Hijackthis Version Française\hijackthis vf.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?setlang=fr-CA&FORM=LTHP&mkt=en-ca&toHttps=1&redig=D6D8D433A98846CB9E77BF900682D2BE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.ca/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
O4 - HKLM\..\Run: [OM_Monitor] C:\Documents and Settings\Compaq_Propriétaire\Mes documents\FirstStart.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [SpySpotter System Defender] C:\Program Files\SpySpotter3\Defender.exe -startup
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\ASSIST~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [MotiveReportAgent] "C:\Program Files\Fichiers communs\Motive\McciBootStrapper.exe" /url="-url=file://C:\Program Files\Fichiers communs\Motive\ReportAgent.html" /browsertype=CustomMSIE /browserpath="C:\Program Files\Common Files\Motive\motivebrowser.exe" /hidden
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [OM_Monitor] C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Monitor.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - Global Startup: Accélérateur du service de base.lnk = ?
O4 - Global Startup: Assistant Internet.lnk = C:\Program Files\Assistant Internet\bin\matcli.exe
O4 - Global Startup: Compaq Connections.lnk = C:\Program Files\Compaq Connections\5577497\Program\Compaq Connections.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Symantec Settings Manager (ccSetMgr) - Unknown owner - c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: ISSvc (ISSVC) - Unknown owner - c:\Program Files\Norton Internet Security\ISSVC.exe (file missing)
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Unknown owner - c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe (file missing)
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Unknown owner - c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe (file missing)

Réponse 60 / 64

Wizario

jai refait un scan de hijackthis et jai sais un sd fix p-e cela pourrait etre plus utile :s mais durent le sdfix il y avait un probleme avec symantec (nortun -.- )je sais pas pk yavais sa sur lordi .. c tlm pas bon :S tk... jai essayer de mon mieu pour le desinstaller mais je crois quil reste encore quelque fichier >

bizz

SDFix: Version 1.94

Run by Compaq_Propri‚taire on 2007-07-28 at 20:15

Microsoft Windows XP [version 5.1.2600]

Running From: C:\SDFix

Safe Mode:
Checking Services:

Restoring Windows Registry Values
Restoring Windows Default Hosts File
Restoring Missing Security Center Service
Restoring Missing SharedAccess Service

Rebooting...

Normal Mode:
Checking Files:

No Trojan Files Found

Removing Temp Files...

ADS Check:

C:\WINDOWS
No streams found.

C:\WINDOWS\system32
No streams found.

C:\WINDOWS\system32\svchost.exe
No streams found.

C:\WINDOWS\system32\ntoskrnl.exe
No streams found.

Final Check:

Remaining Services:
------------------

Authorized Application Key Export:

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

Remaining Files:
---------------

Files with Hidden Attributes:

Finished

Logfile of HijackThis v1.99.1
Scan saved at 20:27:28, on 2007-07-28
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\PROGRA~1\ASSIST~1\SMARTB~1\MotiveSB.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Compaq Connections\5577497\Program\Compaq Connections.exe
C:\Program Files\Assistant Internet\bin\mpbtn.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Hijackthis Version Française\hijackthis vf.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?setlang=fr-CA&FORM=LTHP&mkt=en-ca&toHttps=1&redig=D6D8D433A98846CB9E77BF900682D2BE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.ca/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [OM_Monitor] C:\Documents and Settings\Compaq_Propriétaire\Mes documents\FirstStart.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\ASSIST~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [MotiveReportAgent] "C:\Program Files\Fichiers communs\Motive\McciBootStrapper.exe" /url="-url=file://C:\Program Files\Fichiers communs\Motive\ReportAgent.html" /browsertype=CustomMSIE /browserpath="C:\Program Files\Common Files\Motive\motivebrowser.exe" /hidden
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKCU\..\Run: [OM_Monitor] C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Monitor.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Accélérateur du service de base.lnk = ?
O4 - Global Startup: Assistant Internet.lnk = C:\Program Files\Assistant Internet\bin\matcli.exe
O4 - Global Startup: Compaq Connections.lnk = C:\Program Files\Compaq Connections\5577497\Program\Compaq Connections.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: ISSvc (ISSVC) - Unknown owner - c:\Program Files\Norton Internet Security\ISSVC.exe (file missing)
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Unknown owner - c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe (file missing)
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Unknown owner - c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe (file missing)

Discussions similaires

Comment désactiver le mode sécurisé de la Freebox POP.

Comment lire un DVD avec un pop-up mobile external DVD-RW

Softonic,est-ce un virus ?

Freebox pop

Notifications pop UP sous Android 14

Virus pop-up interminable..

64 réponses

Votre réponse

Discussions similaires

Newsletters