Aller au contenu

Spartan

Membres
  • Compteur de contenus

    48
  • Inscription

  • Dernière visite

Autres informations

  • Mes langues
    Francais anglais Persan Espagnol Latin(...)

Spartan's Achievements

Member

Member (4/12)

0

Réputation sur la communauté

  1. voila le resultat : ------------------------------------------------------------------------------- KASPERSKY ONLINE SCANNER REPORT Thursday, August 31, 2006 1:23:27 AM Operating System: Microsoft Windows 2000 Professional, Service Pack 4 (Build 2195) Kaspersky Online Scanner version: 5.0.83.0 Kaspersky Anti-Virus database last update: 30/08/2006 Kaspersky Anti-Virus database records: 206611 ------------------------------------------------------------------------------- Scan Settings: Scan using the following antivirus database: standard Scan Archives: true Scan Mail Bases: true Scan Target - My Computer: A:\ C:\ D:\ E:\ F:\ G:\ H:\ Scan Statistics: Total number of scanned objects: 61270 Number of viruses found: 1 Number of infected objects: 0 / 0 Number of suspicious objects: 2 Duration of the scan process: 04:42:31 Infected Object Name / Virus Name / Last Action C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\ISearchTechISTsvc20.zip/istsvc.exe Suspicious: Password-protected-EXE skipped C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\ISearchTechISTsvc20.zip ZIP: suspicious - 1 skipped C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cert8.db Object is locked skipped C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\formhistory.dat Object is locked skipped C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\googlesafebrowsing.db Object is locked skipped C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\history.dat Object is locked skipped C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\key3.db Object is locked skipped C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\parent.lock Object is locked skipped C:\Documents and Settings\kyan\Cookies\index.dat Object is locked skipped C:\Documents and Settings\kyan\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped C:\Documents and Settings\kyan\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped C:\Documents and Settings\kyan\Local Settings\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\Cache\_CACHE_001_ Object is locked skipped C:\Documents and Settings\kyan\Local Settings\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\Cache\_CACHE_002_ Object is locked skipped C:\Documents and Settings\kyan\Local Settings\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\Cache\_CACHE_003_ Object is locked skipped C:\Documents and Settings\kyan\Local Settings\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\Cache\_CACHE_MAP_ Object is locked skipped C:\Documents and Settings\kyan\Local Settings\Historique\History.IE5\index.dat Object is locked skipped C:\Documents and Settings\kyan\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped C:\Documents and Settings\kyan\NTUSER.DAT Object is locked skipped C:\Documents and Settings\kyan\ntuser.dat.LOG Object is locked skipped C:\Program Files\Pack Securite\backweb\361343\Users\Default\Data\cache.dat Object is locked skipped C:\Program Files\Pack Securite\backweb\361343\Users\Default\Data\chandir.dat Object is locked skipped C:\Program Files\Pack Securite\backweb\361343\Users\Default\Data\chandir.idx Object is locked skipped C:\Program Files\Pack Securite\backweb\361343\Users\Default\Data\chn.dat Object is locked skipped C:\Program Files\Pack Securite\backweb\361343\Users\Default\Data\chn.idx Object is locked skipped C:\Program Files\Pack Securite\backweb\361343\Users\Default\Data\D0000000.FCS Object is locked skipped C:\Program Files\Pack Securite\backweb\361343\Users\Default\Data\fsbwupst.log Object is locked skipped C:\Program Files\Pack Securite\backweb\361343\Users\Default\Data\inuse.txt Object is locked skipped C:\Program Files\Pack Securite\backweb\361343\Users\Default\Data\L0000003.FCS Object is locked skipped C:\Program Files\Pack Securite\backweb\361343\Users\Default\Data\main.log Object is locked skipped C:\Program Files\Pack Securite\backweb\361343\Users\Default\Data\prs.dat Object is locked skipped C:\Program Files\Pack Securite\backweb\361343\Users\Default\Data\prs.idx Object is locked skipped C:\Program Files\Pack Securite\backweb\361343\Users\Default\Data\prs_die.dat Object is locked skipped C:\Program Files\Pack Securite\backweb\361343\Users\Default\Data\prs_die.idx Object is locked skipped C:\Program Files\Pack Securite\backweb\361343\Users\Default\Data\prs_dnd.dat Object is locked skipped C:\Program Files\Pack Securite\backweb\361343\Users\Default\Data\prs_dnd.idx Object is locked skipped C:\Program Files\Pack Securite\backweb\361343\Users\Default\Data\prs_ext.dat Object is locked skipped C:\Program Files\Pack Securite\backweb\361343\Users\Default\Data\prs_ext.idx Object is locked skipped C:\Program Files\Pack Securite\backweb\361343\Users\Default\Data\prs_rcv.dat Object is locked skipped C:\Program Files\Pack Securite\backweb\361343\Users\Default\Data\prs_rcv.idx Object is locked skipped C:\Program Files\Pack Securite\backweb\361343\Users\Default\Data\storydb.dat Object is locked skipped C:\Program Files\Pack Securite\backweb\361343\Users\Default\Data\storydb.idx Object is locked skipped C:\Program Files\Pack Securite\Common\admin.pub Object is locked skipped C:\Program Files\Pack Securite\Common\policy.bpf Object is locked skipped C:\Program Files\Pack Securite\Common\policy.ipf Object is locked skipped C:\Program Files\Pack Securite\FSPC\csdk\urlcache\domainNames.dat Object is locked skipped C:\Program Files\Pack Securite\FSPC\csdk\urlcache\domainNames.idx Object is locked skipped C:\Program Files\Pack Securite\FSPC\csdk\urlcache\domainNameTokens.dat Object is locked skipped C:\Program Files\Pack Securite\FSPC\csdk\urlcache\domainNameTokens.idx Object is locked skipped C:\Program Files\Pack Securite\FSPC\csdk\urlcache\namesRefCount.dat Object is locked skipped C:\Program Files\Pack Securite\FSPC\csdk\urlcache\namesRefCount.idx Object is locked skipped C:\Program Files\Pack Securite\FSPC\csdk\urlcache\tokensRefCount.dat Object is locked skipped C:\Program Files\Pack Securite\FSPC\csdk\urlcache\tokensRefCount.idx Object is locked skipped C:\Program Files\Pack Securite\FSPC\csdk\urlcache\urlCacheDb.dat Object is locked skipped C:\Program Files\Pack Securite\FSPC\csdk\urlcache\urlCacheDb.idx Object is locked skipped C:\Program Files\Pack Securite\FSPC\statlist\icnStLst.dat Object is locked skipped C:\Program Files\Pack Securite\FSPC\statlist\icnStLst.idx Object is locked skipped C:\Program Files\Pack Securite\FSPC\statlist\ispstlst.dat Object is locked skipped C:\Program Files\Pack Securite\FSPC\statlist\ispstlst.idx Object is locked skipped C:\WINNT\CSC\00000001 Object is locked skipped C:\WINNT\Debug\ipsecpa.log Object is locked skipped C:\WINNT\Debug\oakley.log Object is locked skipped C:\WINNT\Debug\PASSWD.LOG Object is locked skipped C:\WINNT\rnapxs\rnapxs.dat Object is locked skipped C:\WINNT\SchedLgU.Txt Object is locked skipped C:\WINNT\SoftwareDistribution\ReportingEvents.log Object is locked skipped C:\WINNT\Sti_Trace.log Object is locked skipped C:\WINNT\system32\config\AppEvent.Evt Object is locked skipped C:\WINNT\system32\config\default Object is locked skipped C:\WINNT\system32\config\default.LOG Object is locked skipped C:\WINNT\system32\config\SAM Object is locked skipped C:\WINNT\system32\config\SAM.LOG Object is locked skipped C:\WINNT\system32\config\SecEvent.Evt Object is locked skipped C:\WINNT\system32\config\SECURITY Object is locked skipped C:\WINNT\system32\config\SECURITY.LOG Object is locked skipped C:\WINNT\system32\config\software Object is locked skipped C:\WINNT\system32\config\software.LOG Object is locked skipped C:\WINNT\system32\config\SysEvent.Evt Object is locked skipped C:\WINNT\system32\config\system Object is locked skipped C:\WINNT\system32\config\SYSTEM.ALT Object is locked skipped C:\WINNT\WindowsUpdate.log Object is locked skipped Scan process completed.
  2. voila le nouveau scan panda , pas grand chose de changé : Incident Statut Analyse Adware:adware/oemji No Désinfecté Registre Windows Adware:adware/elitebar No Désinfecté Registre Windows Dialer:Dialer.BUU No Désinfecté C:\!KillBox\Ejacs.exe Spyware:Cookie/Weborama No Désinfecté C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\a6py4udo.default\cookies.txt[.weborama.fr/] Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\a6py4udo.default\cookies.txt[.xiti.com/] Spyware:Cookie/Atwola No Désinfecté C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\a6py4udo.default\cookies.txt[.atwola.com/] Spyware:Cookie/DomainSponsor No Désinfecté C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\a6py4udo.default\cookies.txt[landing.domainsponsor.com/] Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Administrateur\Cookies\admin@xiti[1].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[.xiti.com/] Spyware:Cookie/Bluestreak No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[.bluestreak.com/] Spyware:Cookie/Falkag No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[as1.falkag.de/] Spyware:Cookie/Atlas DMT No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[.atdmt.com/] Spyware:Cookie/Valueclick No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[.valueclick.com/] Spyware:Cookie/Comclick No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[fl01.ct2.comclick.com/] Spyware:Cookie/Mediaplex No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[.mediaplex.com/] Spyware:Cookie/YieldManager No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[ad.yieldmanager.com/] Spyware:Cookie/Weborama No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[.weborama.fr/] Spyware:Cookie/Doubleclick No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[.doubleclick.net/] Spyware:Cookie/Com.com No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[.com.com/] Spyware:Cookie/Adtech No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[.adtech.de/] Spyware:Cookie/bravenetA No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[.bravenet.com/] Spyware:Cookie/Searchportal No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[searchportal.information.com/]
  3. Me voila revenu ! après tant d'absence, me revoici ! et voici mon log panda ! Incident Statut Analyse Adware:adware/oemji No Désinfecté Registre Windows Outil indésirable:application/mywebsearch No Désinfecté hkey_classes_root\clsid\{9AFB8248-617F-460d-9366-D71CDEDA3179} Adware:adware/dyfuca No Désinfecté Registre Windows Adware:adware/ist.sidefind No Désinfecté Registre Windows Adware:adware/sqwire No Désinfecté Registre Windows Adware:adware/elitebar No Désinfecté Registre Windows Dialer:Dialer.BUU No Désinfecté C:\!KillBox\Ejacs.exe Spyware:Cookie/Weborama No Désinfecté C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\a6py4udo.default\cookies.txt[.weborama.fr/] Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\a6py4udo.default\cookies.txt[.xiti.com/] Spyware:Cookie/Atwola No Désinfecté C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\a6py4udo.default\cookies.txt[.atwola.com/] Spyware:Cookie/DomainSponsor No Désinfecté C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\a6py4udo.default\cookies.txt[landing.domainsponsor.com/] Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Administrateur\Cookies\admin@xiti[1].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[.xiti.com/] Spyware:Cookie/Bluestreak No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[.bluestreak.com/] Spyware:Cookie/Mediaplex No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[.mediaplex.com/] Spyware:Cookie/YieldManager No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[ad.yieldmanager.com/] Spyware:Cookie/Weborama No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[.weborama.fr/] Spyware:Cookie/Doubleclick No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[.doubleclick.net/] Spyware:Cookie/Atlas DMT No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[.atdmt.com/] Spyware:Cookie/Com.com No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[.com.com/] Spyware:Cookie/Adtech No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[.adtech.de/] Spyware:Cookie/bravenetA No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[.bravenet.com/] Spyware:Cookie/Searchportal No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[searchportal.information.com/]
  4. Salut Duck Psycho sexy ! Je pense que si tu veux faire Analyser tes logs et tes blemes il veux mieux créer ton propre Sujet car mon ordi N'est surment pas identique au tien et tu risque de faire des erreurs ! Voila mon conseil ^^ et pour ma part maintenant que mon probleme est réglé (en partie car il reste encore des trucs ... ) Je peux partir en vacances tranquille ! A+ et je reviens dès que je peux
  5. Mais le problème n'est plus la donc ça reste des Malwares "Mineurs"
  6. Voici le scan Panda (dsl c'est un peu tard mais bon...) Incident Statut Analyse Adware:adware/oemji No Désinfecté Registre Windows Outil indésirable:application/mywebsearch No Désinfecté hkey_classes_root\clsid\{147A976E-EEE1-4377-8EA7-4716E4CDD239} Adware:adware/dyfuca No Désinfecté Registre Windows Adware:adware/ist.sidefind No Désinfecté Registre Windows Adware:adware/sqwire No Désinfecté Registre Windows Adware:adware/elitebar No Désinfecté Registre Windows Spyware:Cookie/Weborama No Désinfecté C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\a6py4udo.default\cookies.txt[.weborama.fr/] Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\a6py4udo.default\cookies.txt[.xiti.com/] Spyware:Cookie/Atwola No Désinfecté C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\a6py4udo.default\cookies.txt[.atwola.com/] Spyware:Cookie/DomainSponsor No Désinfecté C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\a6py4udo.default\cookies.txt[landing.domainsponsor.com/] Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Administrateur\Cookies\admin@xiti[1].txt Spyware:Cookie/Com.com No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[.com.com/] Spyware:Cookie/Adtech No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[.adtech.de/] Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[.xiti.com/] Spyware:Cookie/Bluestreak No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[.bluestreak.com/] Spyware:Cookie/Atlas DMT No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[.atdmt.com/] Spyware:Cookie/bravenetA No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[.bravenet.com/] Spyware:Cookie/Searchportal No Désinfecté C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt[searchportal.information.com/] Dialer:Dialer.BUU No Désinfecté C:\WINNT\Downloaded Program Files\Ejacs.exe En sachant que la derniere fois que j'ai voulu suprimer Ejacs.exe Il n'etait pas présent dans le repertoire ...
  7. A ok mais j'ai fais sans ! Desolé ... bon alors tout d'abord Tout marci bien mieux merci encore ! Ensuite voici les logs D'abord Ewido : --------------------------------------------------------- ewido anti-spyware - Scan Report --------------------------------------------------------- + Created at: 14:00:38 07/31/2006 + Scan result: C:\Program Files\Pack Securite\FWES\program\fsdfwd.exe -> Adware.Gator : Ignored. :mozilla.54:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Adtech : Cleaned. :mozilla.57:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Adtech : Cleaned. :mozilla.37:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.38:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.39:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.20:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned. :mozilla.80:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned. :mozilla.58:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned. :mozilla.84:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned. ::Report end Ensuite hijackthis : Logfile of HijackThis v1.99.1 Scan saved at 14:32:26, on 07/31/2006 Platform: Windows 2000 SP4 (WinNT 5.00.2195) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINNT\System32\smss.exe C:\WINNT\system32\winlogon.exe C:\WINNT\system32\services.exe C:\WINNT\system32\lsass.exe C:\WINNT\system32\svchost.exe C:\WINNT\system32\LEXBCES.EXE C:\WINNT\system32\spoolsv.exe C:\WINNT\system32\LEXPPS.EXE C:\PROGRA~1\PACKSE~1\backweb\361343\Program\SERVIC~1.EXE C:\WINNT\System32\svchost.exe C:\Program Files\ewido anti-spyware 4.0\guard.exe C:\Program Files\Pack Securite\Anti-Virus\fsgk32st.exe C:\Program Files\Pack Securite\Anti-Virus\FSGK32.EXE C:\Program Files\Pack Securite\backweb\361343\program\fsbwsys.exe C:\Program Files\Pack Securite\Common\FSMA32.EXE C:\Program Files\Pack Securite\Anti-Virus\fssm32.exe C:\Program Files\Pack Securite\Common\FSMB32.EXE C:\WINNT\system32\regsvc.exe C:\WINNT\system32\MSTask.exe C:\Program Files\Pack Securite\Common\FCH32.EXE C:\WINNT\system32\stisvc.exe C:\WINNT\System32\WBEM\WinMgmt.exe C:\WINNT\system32\svchost.exe C:\Program Files\Pack Securite\Common\FAMEH32.EXE C:\Program Files\Pack Securite\Anti-Virus\fsrw.exe C:\Program Files\Pack Securite\FSPC\fspc.exe C:\Program Files\Pack Securite\FSPC\fshttps\fshttps.exe C:\Program Files\Pack Securite\FWES\Program\fsdfwd.exe C:\Program Files\Pack Securite\Anti-Virus\fsav32.exe C:\WINNT\Explorer.EXE C:\Program Files\QuickTime\qttask.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\PROMT5\INTEGRAL\pinmenu.exe C:\Program Files\Ulead Systems\Ulead Photo Explorer 8.0 SE Basic\Monitor.exe C:\Program Files\Trust\350SX CRADLE MOUSE WIRELESS OPTICAL\lwbwheel.exe C:\Program Files\MessengerPlus! 3\MsgPlus.exe C:\Program Files\Lexmark 2200 Series\lxbvbmgr.exe C:\Program Files\Lexmark 2200 Series\lxbvbmon.exe C:\Program Files\Pack Securite\Common\FSM32.EXE C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\WINNT\system32\LVCOMSX.EXE C:\Program Files\Logitech\Video\LogiTray.exe C:\Program Files\Pack Securite\backweb\361343\Program\fspex.exe C:\PROGRA~1\PACKSE~1\ANTI-S~1\fsaw.exe C:\Program Files\Pack Securite\FSGUI\fsguidll.exe C:\Program Files\Logitech\Video\FxSvr2.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Dofus\Dofus.exe C:\Program Files\Dofus\dofus.dll C:\Hijackthis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://jakams.skyblog.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://home.neuf.fr R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer fourni par AOL R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O4 - HKLM\..\Run: [synchronization Manager] mobsync.exe /logon O4 - HKLM\..\Run: [hpfsched] C:\WINNT\hpfsched.exe O4 - HKLM\..\Run: [PROMT Integrator] "C:\Program Files\PROMT5\INTEGRAL\PinStart.exe" /autorun O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe O4 - HKLM\..\Run: [ulead AutoDetector] C:\Program Files\Ulead Systems\Ulead Photo Explorer 8.0 SE Basic\Monitor.exe O4 - HKLM\..\Run: [LWBMOUSE] C:\Program Files\Trust\350SX CRADLE MOUSE WIRELESS OPTICAL\lwbwheel.exe O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" O4 - HKLM\..\Run: [Lexmark 2200 Series] "C:\Program Files\Lexmark 2200 Series\lxbvbmgr.exe" O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files\Lexmark Fax Solutions\fm3032.exe" /s O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Pack Securite\Common\FSM32.EXE" /splash O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Pack Securite\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\Pack Securite\FSGUI\FSSW.EXE" /reboot O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [LVCOMSX] C:\WINNT\system32\LVCOMSX.EXE O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - HKCU\..\Run: [TVAgent WiFi] C:\Program Files\Kit ADSL\Wizard\Agent_WiFi.exe O4 - HKCU\..\Run: [RealPlayer] "C:\Program Files\Real\RealPlayer\realplay.exe" /RunUPGToolCommandReBoot O4 - Startup: PowerReg Scheduler.exe O4 - Global Startup: Pack Securite.lnk = C:\Program Files\Pack Securite\backweb\361343\Program\fspex.exe O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\Pack Securite\Anti-Spyware\blockpopups.htm O8 - Extra context menu item: &Recherche AOL Toolbar - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Filtre Web - {200DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\Pack Securite\FSPC\fspcmsie.dll O9 - Extra button: (no name) - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\Pack Securite\FSPC\fspcmsie.dll O9 - Extra 'Tools' menuitem: Filtre Web - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\Pack Securite\FSPC\fspcmsie.dll O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\Pack Securite\Anti-Spyware\ieshield.dll O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\Pack Securite\Anti-Spyware\ieshield.dll O9 - Extra button: Traduction - {7A2EFD41-E6B3-11D2-89E3-00E0292EE574} - C:\Program Files\PROMT5\PROMTIE4\promtie5.htm O9 - Extra 'Tools' menuitem: Traduire - {7A2EFD41-E6B3-11D2-89E3-00E0292EE574} - C:\Program Files\PROMT5\PROMTIE4\promtie5.htm O9 - Extra button: (no name) - {7A2EFD41-E6B3-11D2-89E3-00E0292EE575} - C:\Program Files\PROMT5\PROMTIE4\options.htm O9 - Extra 'Tools' menuitem: Personnaliser les options de traduction - {7A2EFD41-E6B3-11D2-89E3-00E0292EE575} - C:\Program Files\PROMT5\PROMTIE4\options.htm O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file) O10 - Broken Internet access because of LSP provider 'winsflt.dll' missing O12 - Plugin for .UVR: C:\Program Files\Internet Explorer\Plugins\NPUPano.dll O16 - DPF: teleir_cert - https://static.ir.dgi.minefi.gouv.fr/secure...teleir_cert.cab O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.av.fr.aol.com/molbin/share...84/mcinsctl.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://download.av.fr.aol.com/molbin/share...,21/mcgdmgr.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab31267.cab O23 - Service: Pack Securite (BackWeb Plug-in - 361343) - BackWeb Technologies Inc. - C:\PROGRA~1\PACKSE~1\backweb\361343\Program\SERVIC~1.EXE O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corp. - C:\Program Files\Pack Securite\Anti-Virus\fsgk32st.exe O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\Pack Securite\backweb\361343\program\fsbwsys.exe O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Pack Securite\FWES\Program\fsdfwd.exe O23 - Service: F-Secure HTTP Server (fshttps) - F-Secure Corporation - C:\Program Files\Pack Securite\FSPC\fshttps\fshttps.exe O23 - Service: FSMA - F-Secure Corporation - C:\Program Files\Pack Securite\Common\FSMA32.EXE O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINNT\system32\LEXBCES.EXE O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing) Et enfin le dernier Registre clear ... il a pas pu effacé quelque dossier ... Voila lesquels : C:\Documents and Settings\kyan\Local Settings\Temporary Internet Files\Content.IE5 0 Dossier de fichiers 07/24/2006 20:11:36 S C:\Documents and Settings\kyan\Local Settings\Temp\~DFB25C.tmp 512 07/31/2006 11:58:56 A C:\Documents and Settings\kyan\Local Settings\Temp\~DFB6B6.tmp 512 07/31/2006 11:58:58 A C:\Documents and Settings\kyan\Local Settings\Temporary Internet Files\Content.IE5\index.dat 1998848 07/31/2006 11:49:00 A Voila !
  8. Ok j'attendrai ^^ en attendent je vais allé jouer a ma Xbox ... Halo 2 en Force !!!
  9. Bonjour Rejis56 ! J'ai terminé tout les log ! Même ewido a fonctionné en mode sans échec ! Voila les logs : D'abord Ewido :--------------------------------------------------------- ewido anti-spyware - Scan Report --------------------------------------------------------- + Created at: 13:28:49 07/30/2006 + Scan result: C:\Program Files\Pack Securite\FWES\program\fsdfwd.exe -> Adware.Gator : Ignored. (Je l'ai fait exprès sinon F-secure ne fonctionne plus ) :mozilla.81:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.247realmedia : Cleaned. :mozilla.199:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.200:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.242:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.82:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.83:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.2o7 : Cleaned. :mozilla.288:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Adserver : Cleaned. :mozilla.289:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Adserver : Cleaned. :mozilla.55:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Adtech : Cleaned. :mozilla.56:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Adtech : Cleaned. :mozilla.34:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.37:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.38:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.39:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Advertising : Cleaned. :mozilla.8:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Bluestreak : Cleaned. :mozilla.103:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Com : Cleaned. :mozilla.313:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Comclick : Cleaned. :mozilla.314:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Comclick : Cleaned. :mozilla.315:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Comclick : Cleaned. :mozilla.11:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\a6py4udo.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned. :mozilla.44:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Doubleclick : Cleaned. :mozilla.125:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Estat : Cleaned. :mozilla.297:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Falkag : Cleaned. :mozilla.298:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Falkag : Cleaned. :mozilla.299:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Falkag : Cleaned. :mozilla.300:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Falkag : Cleaned. :mozilla.301:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Falkag : Cleaned. :mozilla.91:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Falkag : Cleaned. :mozilla.92:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Falkag : Cleaned. :mozilla.93:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Falkag : Cleaned. :mozilla.337:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned. :mozilla.338:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned. :mozilla.45:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Mediaplex : Cleaned. :mozilla.222:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned. :mozilla.223:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned. :mozilla.224:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned. :mozilla.236:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Revenue : Cleaned. :mozilla.72:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. :mozilla.73:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. :mozilla.74:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. :mozilla.75:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. :mozilla.76:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned. :mozilla.366:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned. :mozilla.367:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned. :mozilla.368:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Smartadserver : Cleaned. :mozilla.250:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned. :mozilla.62:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned. :mozilla.63:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Tradedoubler : Cleaned. :mozilla.46:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Weborama : Cleaned. :mozilla.47:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Weborama : Cleaned. :mozilla.48:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Weborama : Cleaned. :mozilla.295:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned. :mozilla.296:C:\Documents and Settings\kyan\Application Data\Mozilla\Firefox\Profiles\poha40x0.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned. ::Report end Ensuite HijackThis : Logfile of HijackThis v1.99.1 Scan saved at 14:28:09, on 07/30/2006 Platform: Windows 2000 SP4 (WinNT 5.00.2195) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINNT\System32\smss.exe C:\WINNT\system32\winlogon.exe C:\WINNT\system32\services.exe C:\WINNT\system32\lsass.exe C:\WINNT\system32\svchost.exe C:\WINNT\system32\LEXBCES.EXE C:\WINNT\system32\spoolsv.exe C:\WINNT\system32\LEXPPS.EXE C:\PROGRA~1\PACKSE~1\backweb\361343\Program\SERVIC~1.EXE C:\WINNT\System32\svchost.exe C:\Program Files\ewido anti-spyware 4.0\guard.exe C:\Program Files\Pack Securite\Anti-Virus\fsgk32st.exe C:\Program Files\Pack Securite\Anti-Virus\FSGK32.EXE C:\Program Files\Pack Securite\backweb\361343\program\fsbwsys.exe C:\Program Files\Pack Securite\Common\FSMA32.EXE C:\Program Files\Pack Securite\Anti-Virus\fssm32.exe C:\Program Files\Pack Securite\Common\FSMB32.EXE C:\WINNT\system32\regsvc.exe C:\WINNT\system32\MSTask.exe C:\Program Files\Pack Securite\Common\FCH32.EXE C:\WINNT\system32\stisvc.exe C:\WINNT\System32\WBEM\WinMgmt.exe C:\Program Files\Pack Securite\Common\FAMEH32.EXE C:\WINNT\system32\svchost.exe C:\Program Files\Pack Securite\Anti-Virus\fsrw.exe C:\Program Files\Pack Securite\FSPC\fspc.exe C:\Program Files\Pack Securite\FSPC\fshttps\fshttps.exe C:\Program Files\Pack Securite\FWES\Program\fsdfwd.exe C:\Program Files\Pack Securite\Anti-Virus\fsav32.exe C:\WINNT\Explorer.EXE C:\Program Files\QuickTime\qttask.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Ulead Systems\Ulead Photo Explorer 8.0 SE Basic\Monitor.exe C:\Program Files\Trust\350SX CRADLE MOUSE WIRELESS OPTICAL\lwbwheel.exe C:\Program Files\PROMT5\INTEGRAL\pinmenu.exe C:\Program Files\MessengerPlus! 3\MsgPlus.exe C:\Program Files\Lexmark 2200 Series\lxbvbmgr.exe C:\Program Files\Lexmark 2200 Series\lxbvbmon.exe C:\Program Files\Pack Securite\Common\FSM32.EXE C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe C:\WINNT\system32\LVCOMSX.EXE C:\Program Files\Logitech\Video\LogiTray.exe C:\Program Files\Pack Securite\backweb\361343\Program\fspex.exe C:\PROGRA~1\PACKSE~1\ANTI-S~1\fsaw.exe C:\Program Files\Pack Securite\FSGUI\fsguidll.exe C:\Program Files\Logitech\Video\FxSvr2.exe C:\Hijackthis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://jakams.skyblog.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://home.neuf.fr R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer fourni par AOL R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O4 - HKLM\..\Run: [synchronization Manager] mobsync.exe /logon O4 - HKLM\..\Run: [hpfsched] C:\WINNT\hpfsched.exe O4 - HKLM\..\Run: [PROMT Integrator] "C:\Program Files\PROMT5\INTEGRAL\PinStart.exe" /autorun O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe O4 - HKLM\..\Run: [ulead AutoDetector] C:\Program Files\Ulead Systems\Ulead Photo Explorer 8.0 SE Basic\Monitor.exe O4 - HKLM\..\Run: [LWBMOUSE] C:\Program Files\Trust\350SX CRADLE MOUSE WIRELESS OPTICAL\lwbwheel.exe O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" O4 - HKLM\..\Run: [Lexmark 2200 Series] "C:\Program Files\Lexmark 2200 Series\lxbvbmgr.exe" O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files\Lexmark Fax Solutions\fm3032.exe" /s O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Pack Securite\Common\FSM32.EXE" /splash O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Pack Securite\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\Pack Securite\FSGUI\FSSW.EXE" /reboot O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe O4 - HKLM\..\Run: [LVCOMSX] C:\WINNT\system32\LVCOMSX.EXE O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - HKCU\..\Run: [TVAgent WiFi] C:\Program Files\Kit ADSL\Wizard\Agent_WiFi.exe O4 - HKCU\..\Run: [RealPlayer] "C:\Program Files\Real\RealPlayer\realplay.exe" /RunUPGToolCommandReBoot O4 - Startup: PowerReg Scheduler.exe O4 - Global Startup: Pack Securite.lnk = C:\Program Files\Pack Securite\backweb\361343\Program\fspex.exe O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\Pack Securite\Anti-Spyware\blockpopups.htm O8 - Extra context menu item: &Recherche AOL Toolbar - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Filtre Web - {200DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\Pack Securite\FSPC\fspcmsie.dll O9 - Extra button: (no name) - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\Pack Securite\FSPC\fspcmsie.dll O9 - Extra 'Tools' menuitem: Filtre Web - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\Pack Securite\FSPC\fspcmsie.dll O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\Pack Securite\Anti-Spyware\ieshield.dll O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\Pack Securite\Anti-Spyware\ieshield.dll O9 - Extra button: Traduction - {7A2EFD41-E6B3-11D2-89E3-00E0292EE574} - C:\Program Files\PROMT5\PROMTIE4\promtie5.htm O9 - Extra 'Tools' menuitem: Traduire - {7A2EFD41-E6B3-11D2-89E3-00E0292EE574} - C:\Program Files\PROMT5\PROMTIE4\promtie5.htm O9 - Extra button: (no name) - {7A2EFD41-E6B3-11D2-89E3-00E0292EE575} - C:\Program Files\PROMT5\PROMTIE4\options.htm O9 - Extra 'Tools' menuitem: Personnaliser les options de traduction - {7A2EFD41-E6B3-11D2-89E3-00E0292EE575} - C:\Program Files\PROMT5\PROMTIE4\options.htm O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file) O10 - Broken Internet access because of LSP provider 'winsflt.dll' missing O12 - Plugin for .UVR: C:\Program Files\Internet Explorer\Plugins\NPUPano.dll O16 - DPF: teleir_cert - https://static.ir.dgi.minefi.gouv.fr/secure...teleir_cert.cab O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.av.fr.aol.com/molbin/share...84/mcinsctl.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://download.av.fr.aol.com/molbin/share...,21/mcgdmgr.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab31267.cab O23 - Service: Pack Securite (BackWeb Plug-in - 361343) - BackWeb Technologies Inc. - C:\PROGRA~1\PACKSE~1\backweb\361343\Program\SERVIC~1.EXE O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corp. - C:\Program Files\Pack Securite\Anti-Virus\fsgk32st.exe O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\Pack Securite\backweb\361343\program\fsbwsys.exe O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Pack Securite\FWES\Program\fsdfwd.exe O23 - Service: F-Secure HTTP Server (fshttps) - F-Secure Corporation - C:\Program Files\Pack Securite\FSPC\fshttps\fshttps.exe O23 - Service: FSMA - F-Secure Corporation - C:\Program Files\Pack Securite\Common\FSMA32.EXE O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINNT\system32\LEXBCES.EXE O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing) Ensuite Blacklight : 07/30/06 14:28:58 [info]: BlackLight Engine 1.0.42 initialized 07/30/06 14:28:58 [info]: OS: 5.0 build 2195 (Service Pack 4) 07/30/06 14:28:59 [Note]: 7019 4 07/30/06 14:28:59 [Note]: 7005 0 07/30/06 14:29:02 [Note]: 7006 0 07/30/06 14:29:02 [Note]: 7011 1836 07/30/06 14:29:02 [Note]: 7026 0 07/30/06 14:29:03 [Note]: 7026 0 07/30/06 14:29:55 [Note]: FSRAW library version 1.7.1019 07/30/06 14:36:42 [Note]: 2000 1006 07/30/06 15:25:58 [Note]: 7007 0 Puis pour finir, Panda : Incident Statut Analyse Adware:adware/oemji No Désinfecté Registre Windows Outil indésirable:application/mywebsearch No Désinfecté hkey_classes_root\clsid\{147A976E-EEE1-4377-8EA7-4716E4CDD239} Adware:adware/dyfuca No Désinfecté Registre Windows Adware:adware/ist.sidefind No Désinfecté Registre Windows Adware:adware/sqwire No Désinfecté Registre Windows Adware:adware/elitebar No Désinfecté Registre Windows Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\a6py4udo.default\cookies.txt[.xiti.com/] Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Administrateur\Cookies\admin@xiti[1].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\kyan\Cookies\kyan@xiti[1].txt Dialer:Dialer.BUU No Désinfecté C:\WINNT\Downloaded Program Files\Ejacs.exe Security Risk:HackTool/Gendel.A No Désinfecté C:\WINNT\gendel32.exe Voila ! merci encore de t'occuper de moi regis A+
  10. oui Ewido marche sur windows mais en mode sans échec, Ewido se lance mais rien n'apparaît (aucune fenêtre )
  11. Euh ya un probleme... Ewido ne fonctionne pas en mode sans echec sur mon ordi ...
×
×
  • Créer...