A voir également:
- Problem avec le virus win 32 warezov-CRX (Wr
- 32 bits - Guide
- Poweriso 32 bit - Télécharger - Gravure
- Win setup from usb - Télécharger - Utilitaires
- Télécharger windows 7 32 bits usb - Télécharger - Systèmes d'exploitation
- Telecharger win rar - Télécharger - Compression & Décompression
8 réponses
Utilisateur anonyme
19 nov. 2007 à 01:58
19 nov. 2007 à 01:58
Bonjour
Qu'as-tu comme anti-spywares et comme pare-feu ?
*******
Fais ceci
Télécharge HijackThis :
---> http://www.trendsecure.com/portal/en-US/threat_analytics/HiJackThis.exe
Installe le dans son propre dossier :
- clic droit sur le bureau, tu choisis "nouveau dossier" puis installe-le à l'intérieur.
Fais un clic droit sur Hijackthis, choisis "renommer" puis marque ceci : abcde.exe
Double-clic sur HijackThis. Clic sur "I Accept" puis clic sur "do a system scan and save logfile"
Puis copie et colle ici le rapport qu'il va te générer.
Démo pour HijackThis si besoin :
http://pageperso.aol.fr/balltrap34/demohijack.htm
Qu'as-tu comme anti-spywares et comme pare-feu ?
*******
Fais ceci
Télécharge HijackThis :
---> http://www.trendsecure.com/portal/en-US/threat_analytics/HiJackThis.exe
Installe le dans son propre dossier :
- clic droit sur le bureau, tu choisis "nouveau dossier" puis installe-le à l'intérieur.
Fais un clic droit sur Hijackthis, choisis "renommer" puis marque ceci : abcde.exe
Double-clic sur HijackThis. Clic sur "I Accept" puis clic sur "do a system scan and save logfile"
Puis copie et colle ici le rapport qu'il va te générer.
Démo pour HijackThis si besoin :
http://pageperso.aol.fr/balltrap34/demohijack.htm
merci beaucoup de ta reponse je ne suis pas tres doué mais je vais essayé ce que tu ma dis.
jai AVG anti spyware et avast .
a bientot.
jai AVG anti spyware et avast .
a bientot.
ok je lai fait voici le rapport:Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:10:50, on 19/11/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Dell AIO Printer A960\dlbfbmgr.exe
C:\Program Files\Friendly Technologies\BroadbandAccess\fts.exe
C:\Program Files\Dell AIO Printer A960\dlbfbmon.exe
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\USB1.1 PenDrive Series\shwicon.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LVComS.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\MSN Messenger\livecall.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Documents and Settings\Meyer Mikael\Bureau\Nouveau dossier (2)\abcde.exe.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.neuf.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.ca/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.dell.com/en-ca
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.5.19.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\eoRezo\EoAdv\EoRezobho.dll (file missing)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O2 - BHO: IE DevToolbar BHO - {CC7E636D-39AA-49b6-B511-65413DA137A1} - C:\Program Files\Microsoft\Internet Explorer Developer Toolbar\IEDevToolbar.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\System32\\NeroCheck.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Dell AIO Printer A960] "C:\Program Files\Dell AIO Printer A960\dlbfbmgr.exe"
O4 - HKLM\..\Run: [%FP%Friendly fts.exe] "C:\Program Files\Friendly Technologies\BroadbandAccess\fts.exe"
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [ShowIcon_Phison electronics Corp_USB1.1 PenDrive Series v1.19r022] "C:\Program Files\USB1.1 PenDrive Series\shwicon.exe" -t"Phison electronics Corp\USB1.1 PenDrive Series v1.19r022"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [Shareaza] "c:\program files\shareaza\shareaza.exe" -tray
O4 - HKCU\..\Run: [neufbox_reminder] "C:\Program Files\Kit ADSL\Wizard\PostInstall_Checker.exe" -r
O4 - HKCU\..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MSNBuster] C:\Program Files\MSNBuster\MSNBuster.exe -d
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: Download all links using BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Download all videos using BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: Download link using &BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
O9 - Extra button: IE Developer Toolbar - {48FFE35F-36D9-44bd-A6CC-1D34414EAC0D} - C:\Program Files\Microsoft\Internet Explorer Developer Toolbar\IEDevToolbar.dll
O9 - Extra button: EmpirePoker - {77E68763-4284-41d6-B7E7-B6E1F053A9E7} - C:\Program Files\EmpirePoker\EmpirePoker.exe (file missing)
O9 - Extra 'Tools' menuitem: EmpirePoker - {77E68763-4284-41d6-B7E7-B6E1F053A9E7} - C:\Program Files\EmpirePoker\EmpirePoker.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O15 - Trusted Zone: http://www.secuser.com
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by131fd.bay131.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{265DA835-1AD0-4707-8338-2BFCA74213B6}: NameServer = 216.254.141.13 209.90.160.220
O20 - AppInit_DLLs: dnsrmsta.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
O23 - Service: Diskeeper - Unknown owner - c:\program files\executive software\diskeeper\dkservice.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O24 - Desktop Component 0: (no name) - http://www.merveilleux.ca/fondecran/disney-fond-ecran-tarzan1.jpg
Scan saved at 16:10:50, on 19/11/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Dell AIO Printer A960\dlbfbmgr.exe
C:\Program Files\Friendly Technologies\BroadbandAccess\fts.exe
C:\Program Files\Dell AIO Printer A960\dlbfbmon.exe
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\USB1.1 PenDrive Series\shwicon.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LVComS.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\MSN Messenger\livecall.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Documents and Settings\Meyer Mikael\Bureau\Nouveau dossier (2)\abcde.exe.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.neuf.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.ca/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.dell.com/en-ca
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.5.19.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\eoRezo\EoAdv\EoRezobho.dll (file missing)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O2 - BHO: IE DevToolbar BHO - {CC7E636D-39AA-49b6-B511-65413DA137A1} - C:\Program Files\Microsoft\Internet Explorer Developer Toolbar\IEDevToolbar.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\System32\\NeroCheck.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Dell AIO Printer A960] "C:\Program Files\Dell AIO Printer A960\dlbfbmgr.exe"
O4 - HKLM\..\Run: [%FP%Friendly fts.exe] "C:\Program Files\Friendly Technologies\BroadbandAccess\fts.exe"
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [ShowIcon_Phison electronics Corp_USB1.1 PenDrive Series v1.19r022] "C:\Program Files\USB1.1 PenDrive Series\shwicon.exe" -t"Phison electronics Corp\USB1.1 PenDrive Series v1.19r022"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [Shareaza] "c:\program files\shareaza\shareaza.exe" -tray
O4 - HKCU\..\Run: [neufbox_reminder] "C:\Program Files\Kit ADSL\Wizard\PostInstall_Checker.exe" -r
O4 - HKCU\..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MSNBuster] C:\Program Files\MSNBuster\MSNBuster.exe -d
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: Download all links using BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Download all videos using BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: Download link using &BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
O9 - Extra button: IE Developer Toolbar - {48FFE35F-36D9-44bd-A6CC-1D34414EAC0D} - C:\Program Files\Microsoft\Internet Explorer Developer Toolbar\IEDevToolbar.dll
O9 - Extra button: EmpirePoker - {77E68763-4284-41d6-B7E7-B6E1F053A9E7} - C:\Program Files\EmpirePoker\EmpirePoker.exe (file missing)
O9 - Extra 'Tools' menuitem: EmpirePoker - {77E68763-4284-41d6-B7E7-B6E1F053A9E7} - C:\Program Files\EmpirePoker\EmpirePoker.exe (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O15 - Trusted Zone: http://www.secuser.com
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by131fd.bay131.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{265DA835-1AD0-4707-8338-2BFCA74213B6}: NameServer = 216.254.141.13 209.90.160.220
O20 - AppInit_DLLs: dnsrmsta.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: C-DillaSrv - C-Dilla Ltd - C:\WINDOWS\system32\DRIVERS\CDANTSRV.EXE
O23 - Service: Diskeeper - Unknown owner - c:\program files\executive software\diskeeper\dkservice.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O24 - Desktop Component 0: (no name) - http://www.merveilleux.ca/fondecran/disney-fond-ecran-tarzan1.jpg
Utilisateur anonyme
19 nov. 2007 à 16:17
19 nov. 2007 à 16:17
Merci de bien vouloir répondra à la question que je t'ai posé, je vais pas y revenir une seconde fois ;-)
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Utilisateur anonyme
19 nov. 2007 à 18:40
19 nov. 2007 à 18:40
Oui, désolé j'ai pas vu ta réponse intermédiaire !
Tu as un anti-virus de trop, mais avant d'en désinstaller un fais ceci, car Avast détecte apparemment ton "virus" donc il devrait être capable de le virer.
* Mets à jour Avast ; fais un clic droit dessus et choisis "Mise à jour" (je sais pas comment ça fonctionne)
* Redémarre ton PC en mode sans échec*
* Fais un scan minutieux avec Avast
* Mets en quarantaine tout ce qu'il pourrait te trouver
* Redémarre ton PC normalement puis essaye de me fournir un rapport d'Avast ou dis-moi ce qu'il t'a trouvé ;-)
Tu as un anti-virus de trop, mais avant d'en désinstaller un fais ceci, car Avast détecte apparemment ton "virus" donc il devrait être capable de le virer.
* Mets à jour Avast ; fais un clic droit dessus et choisis "Mise à jour" (je sais pas comment ça fonctionne)
* Redémarre ton PC en mode sans échec*
* Fais un scan minutieux avec Avast
* Mets en quarantaine tout ce qu'il pourrait te trouver
* Redémarre ton PC normalement puis essaye de me fournir un rapport d'Avast ou dis-moi ce qu'il t'a trouvé ;-)
Bonsoie
Voila ce que j ai trouvé
16/11/2007 01:41:54 SYSTEM 1504 Sign of "Win32:Warezov-BVI [Wrm]" has been found in "C:\WINDOWS\system32\dnsrmsta.dll" file.
16/11/2007 01:42:33 SYSTEM 1504 Sign of "Win32:Warezov-CLA [Wrm]" has been found in "C:\WINDOWS\system32\dxmavdmr.dll" file.
16/11/2007 01:42:50 SYSTEM 1504 Sign of "Win32:Warezov-ABO [Wrm]" has been found in "C:\WINDOWS\system32\e1.dll" file.
16/11/2007 01:43:14 SYSTEM 1504 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
16/11/2007 02:10:20 SYSTEM 1504 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
16/11/2007 02:36:58 SYSTEM 1504 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
16/11/2007 03:02:12 SYSTEM 1504 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
16/11/2007 03:27:24 SYSTEM 1504 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
16/11/2007 15:30:04 Meyer Mikael 1344 Sign of "Win32:Warezov-BVI [Wrm]" has been found in "C:\WINDOWS\system32\dnsrmsta.dll" file.
16/11/2007 15:30:13 Meyer Mikael 1344 Sign of "Win32:Warezov-BVI [Wrm]" has been found in "C:\WINDOWS\System32\dnsrmsta.dll" file.
16/11/2007 15:31:40 Meyer Mikael 1344 Sign of "Win32:Warezov-CLA [Wrm]" has been found in "C:\WINDOWS\system32\dxmavdmr.dll" file.
16/11/2007 19:13:12 Meyer Mikael 1492 Sign of "Win32:Warezov-CLA [Wrm]" has been found in "C:\windows\system32\dxmavdmr.dll" file.
16/11/2007 19:13:54 Meyer Mikael 1492 Sign of "Win32:Warezov-BVI [Wrm]" has been found in "C:\WINDOWS\system32\dnsrmsta.dll" file.
16/11/2007 19:14:05 Meyer Mikael 1492 Sign of "Win32:Warezov-CLA [Wrm]" has been found in "C:\WINDOWS\system32\dxmavdmr.dll" file.
16/11/2007 19:14:13 Meyer Mikael 1492 Sign of "Win32:Warezov-ABO [Wrm]" has been found in "C:\WINDOWS\system32\e1.dll" file.
16/11/2007 19:14:30 Meyer Mikael 1492 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
16/11/2007 19:39:48 Meyer Mikael 1492 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
16/11/2007 19:40:03 Meyer Mikael 1492 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
16/11/2007 19:46:49 Meyer Mikael 4036 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\SYSTEM32\mcicd3dp.dll" file.
16/11/2007 20:05:23 Meyer Mikael 1492 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
17/11/2007 23:14:50 Meyer Mikael 1476 Sign of "Win32:Warezov-BVI [Wrm]" has been found in "C:\WINDOWS\system32\dnsrmsta.dll" file.
17/11/2007 23:14:59 Meyer Mikael 1476 Sign of "Win32:Warezov-BVI [Wrm]" has been found in "C:\WINDOWS\System32\dnsrmsta.dll" file.
18/11/2007 00:10:15 Meyer Mikael 1476 Sign of "Win32:Warezov-CLA [Wrm]" has been found in "C:\WINDOWS\system32\dxmavdmr.dll" file.
18/11/2007 00:10:22 Meyer Mikael 1476 Sign of "Win32:Warezov-CLA [Wrm]" has been found in "C:\windows\system32\dxmavdmr.dll" file.
18/11/2007 00:10:23 Meyer Mikael 1476 Sign of "Win32:Warezov-ABO [Wrm]" has been found in "C:\WINDOWS\system32\e1.dll" file.
18/11/2007 00:10:40 Meyer Mikael 1476 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 00:26:20 Meyer Mikael 1500 Sign of "Win32:Warezov-CLA [Wrm]" has been found in "C:\windows\system32\dxmavdmr.dll" file.
18/11/2007 00:26:33 Meyer Mikael 1500 Sign of "Win32:Warezov-BVI [Wrm]" has been found in "C:\WINDOWS\system32\dnsrmsta.dll" file.
18/11/2007 00:26:40 Meyer Mikael 1500 Sign of "Win32:Warezov-CLA [Wrm]" has been found in "C:\WINDOWS\system32\dxmavdmr.dll" file.
18/11/2007 00:26:49 Meyer Mikael 1500 Sign of "Win32:Warezov-ABO [Wrm]" has been found in "C:\WINDOWS\system32\e1.dll" file.
18/11/2007 00:27:04 Meyer Mikael 1500 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 00:52:17 Meyer Mikael 1500 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 00:54:46 Meyer Mikael 1500 Sign of "Win32:Warezov-BVI [Wrm]" has been found in "C:\WINDOWS\system32\dnsrmsta.dll" file.
18/11/2007 00:54:54 Meyer Mikael 1500 Sign of "Win32:Warezov-BVI [Wrm]" has been found in "C:\WINDOWS\System32\dnsrmsta.dll" file.
18/11/2007 00:57:23 Meyer Mikael 1500 Sign of "Win32:Warezov-CLA [Wrm]" has been found in "C:\WINDOWS\system32\dxmavdmr.dll" file.
18/11/2007 00:58:05 Meyer Mikael 1500 Sign of "Win32:Warezov-ABO [Wrm]" has been found in "C:\WINDOWS\system32\e1.dll" file.
18/11/2007 00:58:17 Meyer Mikael 1500 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 01:55:49 Meyer Mikael 1500 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 01:59:26 Meyer Mikael 2168 Sign of "Win32:Warezov-CLA [Wrm]" has been found in "C:\System Volume Information\_restore{DE4A529F-98CE-4187-A0F7-08590C3BB5E5}\RP793\A0131050.dll" file.
18/11/2007 01:59:46 Meyer Mikael 2168 Sign of "Win32:Warezov-CLA [Wrm]" has been found in "C:\System Volume Information\_restore{DE4A529F-98CE-4187-A0F7-08590C3BB5E5}\RP795\A0132073.dll" file.
18/11/2007 02:21:54 Meyer Mikael 1500 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 02:47:00 Meyer Mikael 1500 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 03:12:49 Meyer Mikael 1500 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 03:38:55 Meyer Mikael 1500 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 03:53:55 Meyer Mikael 1584 Sign of "Win32:Warezov-BVI [Wrm]" has been found in "C:\WINDOWS\system32\dnsrmsta.dll" file.
18/11/2007 03:57:28 Meyer Mikael 1584 Sign of "Win32:Warezov-BVI [Wrm]" has been found in "C:\WINDOWS\System32\dnsrmsta.dll" file.
18/11/2007 03:58:54 Meyer Mikael 1584 Sign of "Win32:Warezov-CLA [Wrm]" has been found in "C:\WINDOWS\system32\dxmavdmr.dll" file.
18/11/2007 03:59:00 Meyer Mikael 1584 Sign of "Win32:Warezov-CLA [Wrm]" has been found in "C:\windows\system32\dxmavdmr.dll" file.
18/11/2007 03:59:06 Meyer Mikael 1584 Sign of "Win32:Warezov-ABO [Wrm]" has been found in "C:\WINDOWS\system32\e1.dll" file.
18/11/2007 03:59:20 Meyer Mikael 1584 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 04:24:35 Meyer Mikael 1584 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 04:49:44 Meyer Mikael 1584 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 05:14:56 Meyer Mikael 1584 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 05:40:22 Meyer Mikael 1584 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 13:50:46 Meyer Mikael 3136 Function setifaceUpdatePackages() has failed. Return code is 0x000004C7, dwRes is 000004C7.
18/11/2007 15:52:14 Meyer Mikael 2104 Function setifaceUpdatePackages() has failed. Return code is 0x000004C7, dwRes is 000004C7.
18/11/2007 19:48:32 Meyer Mikael 1584 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 20:14:04 Meyer Mikael 1584 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 20:39:12 Meyer Mikael 1584 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
Voila ce que j ai trouvé
16/11/2007 01:41:54 SYSTEM 1504 Sign of "Win32:Warezov-BVI [Wrm]" has been found in "C:\WINDOWS\system32\dnsrmsta.dll" file.
16/11/2007 01:42:33 SYSTEM 1504 Sign of "Win32:Warezov-CLA [Wrm]" has been found in "C:\WINDOWS\system32\dxmavdmr.dll" file.
16/11/2007 01:42:50 SYSTEM 1504 Sign of "Win32:Warezov-ABO [Wrm]" has been found in "C:\WINDOWS\system32\e1.dll" file.
16/11/2007 01:43:14 SYSTEM 1504 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
16/11/2007 02:10:20 SYSTEM 1504 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
16/11/2007 02:36:58 SYSTEM 1504 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
16/11/2007 03:02:12 SYSTEM 1504 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
16/11/2007 03:27:24 SYSTEM 1504 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
16/11/2007 15:30:04 Meyer Mikael 1344 Sign of "Win32:Warezov-BVI [Wrm]" has been found in "C:\WINDOWS\system32\dnsrmsta.dll" file.
16/11/2007 15:30:13 Meyer Mikael 1344 Sign of "Win32:Warezov-BVI [Wrm]" has been found in "C:\WINDOWS\System32\dnsrmsta.dll" file.
16/11/2007 15:31:40 Meyer Mikael 1344 Sign of "Win32:Warezov-CLA [Wrm]" has been found in "C:\WINDOWS\system32\dxmavdmr.dll" file.
16/11/2007 19:13:12 Meyer Mikael 1492 Sign of "Win32:Warezov-CLA [Wrm]" has been found in "C:\windows\system32\dxmavdmr.dll" file.
16/11/2007 19:13:54 Meyer Mikael 1492 Sign of "Win32:Warezov-BVI [Wrm]" has been found in "C:\WINDOWS\system32\dnsrmsta.dll" file.
16/11/2007 19:14:05 Meyer Mikael 1492 Sign of "Win32:Warezov-CLA [Wrm]" has been found in "C:\WINDOWS\system32\dxmavdmr.dll" file.
16/11/2007 19:14:13 Meyer Mikael 1492 Sign of "Win32:Warezov-ABO [Wrm]" has been found in "C:\WINDOWS\system32\e1.dll" file.
16/11/2007 19:14:30 Meyer Mikael 1492 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
16/11/2007 19:39:48 Meyer Mikael 1492 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
16/11/2007 19:40:03 Meyer Mikael 1492 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
16/11/2007 19:46:49 Meyer Mikael 4036 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\SYSTEM32\mcicd3dp.dll" file.
16/11/2007 20:05:23 Meyer Mikael 1492 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
17/11/2007 23:14:50 Meyer Mikael 1476 Sign of "Win32:Warezov-BVI [Wrm]" has been found in "C:\WINDOWS\system32\dnsrmsta.dll" file.
17/11/2007 23:14:59 Meyer Mikael 1476 Sign of "Win32:Warezov-BVI [Wrm]" has been found in "C:\WINDOWS\System32\dnsrmsta.dll" file.
18/11/2007 00:10:15 Meyer Mikael 1476 Sign of "Win32:Warezov-CLA [Wrm]" has been found in "C:\WINDOWS\system32\dxmavdmr.dll" file.
18/11/2007 00:10:22 Meyer Mikael 1476 Sign of "Win32:Warezov-CLA [Wrm]" has been found in "C:\windows\system32\dxmavdmr.dll" file.
18/11/2007 00:10:23 Meyer Mikael 1476 Sign of "Win32:Warezov-ABO [Wrm]" has been found in "C:\WINDOWS\system32\e1.dll" file.
18/11/2007 00:10:40 Meyer Mikael 1476 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 00:26:20 Meyer Mikael 1500 Sign of "Win32:Warezov-CLA [Wrm]" has been found in "C:\windows\system32\dxmavdmr.dll" file.
18/11/2007 00:26:33 Meyer Mikael 1500 Sign of "Win32:Warezov-BVI [Wrm]" has been found in "C:\WINDOWS\system32\dnsrmsta.dll" file.
18/11/2007 00:26:40 Meyer Mikael 1500 Sign of "Win32:Warezov-CLA [Wrm]" has been found in "C:\WINDOWS\system32\dxmavdmr.dll" file.
18/11/2007 00:26:49 Meyer Mikael 1500 Sign of "Win32:Warezov-ABO [Wrm]" has been found in "C:\WINDOWS\system32\e1.dll" file.
18/11/2007 00:27:04 Meyer Mikael 1500 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 00:52:17 Meyer Mikael 1500 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 00:54:46 Meyer Mikael 1500 Sign of "Win32:Warezov-BVI [Wrm]" has been found in "C:\WINDOWS\system32\dnsrmsta.dll" file.
18/11/2007 00:54:54 Meyer Mikael 1500 Sign of "Win32:Warezov-BVI [Wrm]" has been found in "C:\WINDOWS\System32\dnsrmsta.dll" file.
18/11/2007 00:57:23 Meyer Mikael 1500 Sign of "Win32:Warezov-CLA [Wrm]" has been found in "C:\WINDOWS\system32\dxmavdmr.dll" file.
18/11/2007 00:58:05 Meyer Mikael 1500 Sign of "Win32:Warezov-ABO [Wrm]" has been found in "C:\WINDOWS\system32\e1.dll" file.
18/11/2007 00:58:17 Meyer Mikael 1500 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 01:55:49 Meyer Mikael 1500 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 01:59:26 Meyer Mikael 2168 Sign of "Win32:Warezov-CLA [Wrm]" has been found in "C:\System Volume Information\_restore{DE4A529F-98CE-4187-A0F7-08590C3BB5E5}\RP793\A0131050.dll" file.
18/11/2007 01:59:46 Meyer Mikael 2168 Sign of "Win32:Warezov-CLA [Wrm]" has been found in "C:\System Volume Information\_restore{DE4A529F-98CE-4187-A0F7-08590C3BB5E5}\RP795\A0132073.dll" file.
18/11/2007 02:21:54 Meyer Mikael 1500 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 02:47:00 Meyer Mikael 1500 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 03:12:49 Meyer Mikael 1500 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 03:38:55 Meyer Mikael 1500 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 03:53:55 Meyer Mikael 1584 Sign of "Win32:Warezov-BVI [Wrm]" has been found in "C:\WINDOWS\system32\dnsrmsta.dll" file.
18/11/2007 03:57:28 Meyer Mikael 1584 Sign of "Win32:Warezov-BVI [Wrm]" has been found in "C:\WINDOWS\System32\dnsrmsta.dll" file.
18/11/2007 03:58:54 Meyer Mikael 1584 Sign of "Win32:Warezov-CLA [Wrm]" has been found in "C:\WINDOWS\system32\dxmavdmr.dll" file.
18/11/2007 03:59:00 Meyer Mikael 1584 Sign of "Win32:Warezov-CLA [Wrm]" has been found in "C:\windows\system32\dxmavdmr.dll" file.
18/11/2007 03:59:06 Meyer Mikael 1584 Sign of "Win32:Warezov-ABO [Wrm]" has been found in "C:\WINDOWS\system32\e1.dll" file.
18/11/2007 03:59:20 Meyer Mikael 1584 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 04:24:35 Meyer Mikael 1584 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 04:49:44 Meyer Mikael 1584 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 05:14:56 Meyer Mikael 1584 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 05:40:22 Meyer Mikael 1584 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 13:50:46 Meyer Mikael 3136 Function setifaceUpdatePackages() has failed. Return code is 0x000004C7, dwRes is 000004C7.
18/11/2007 15:52:14 Meyer Mikael 2104 Function setifaceUpdatePackages() has failed. Return code is 0x000004C7, dwRes is 000004C7.
18/11/2007 19:48:32 Meyer Mikael 1584 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 20:14:04 Meyer Mikael 1584 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
18/11/2007 20:39:12 Meyer Mikael 1584 Sign of "Win32:Warezov-CRX [Wrm]" has been found in "C:\WINDOWS\system32\mcicd3dp.dll" file.
En fait j ai fait plusieurs scans avec Avast (et Antivir que j ai récement installé) je suis aussi aller sur inaculer .com et j ai scanner avec Bitdefender (qq chose comme ca) et pour finir j ai fait un scan sur inoculer.com et bien entendu apres chaque scan, tous les virus été placés en quarantaine puis ensuite suprimmer.....
Mais ca continu de revenir...
A+
Mais ca continu de revenir...
A+