Cedcol
-
Compteur de contenus
174 -
Inscription
-
Dernière visite
Type de contenu
Profils
Forums
Blogs
Tout ce qui a été posté par Cedcol
-
RESOLU pb de conenxion lié à un virus, possible?
Cedcol a répondu à un(e) sujet de Cedcol dans Analyses et éradication malwares
alors voici la suite : 07:46 a.m.: Removal process completed. Elapsed time 00:03:18 07:46 a.m.: Preparing to restart your computer. Please wait... 07:45 a.m.: Quarantining All Traces: topsearch 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\m.b.locatelli@free.fr\dfsr\staging\cs{6ab3b38e-5547-6a1e-1f7a-f4a6d6a8d33c}1\129-{6ab3b38e-5547-6a1e-1f7a-f4a6d6a8d33c}-v1-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v129-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}1\10-{d67ec1ad-d891-354b-2faa-50333e3041f7}-v1-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v10-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\16\121-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v16-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v121-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\13\13-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v13-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v13-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\20\125-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v20-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v125-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\31\108-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v31-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v108-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\25\102-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v25-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v102-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\11\116-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v11-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v116-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\23\100-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v23-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v100-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\12\117-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v12-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v117-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\34\111-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v34-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v111-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\36\113-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v36-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v113-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\29\29-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v29-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v29-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\24\101-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v24-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v101-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\19\124-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v19-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v124-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\17\127-{4b823a4a-962a-4b8c-9ef7-9228e3a26c63}-v17-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v127-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\15\120-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v15-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v120-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\12\128-{4b823a4a-962a-4b8c-9ef7-9228e3a26c63}-v12-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v128-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\30\107-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v30-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v107-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\14\14-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v14-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v14-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\28\105-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v28-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v105-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\38\115-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v38-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v115-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\32\109-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v32-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v109-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\21\126-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v21-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v126-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\17\122-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v17-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v122-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\37\114-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v37-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v114-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\22\39-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v22-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v39-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\27\104-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v27-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v104-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\33\110-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v33-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v110-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\35\112-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v35-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v112-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\26\103-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v26-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v103-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\18\123-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v18-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v123-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: potentially rootkit-masked files is in use. It will be removed on reboot. 07:43 a.m.: Quarantining All Traces: potentially rootkit-masked files 07:43 a.m.: Removal process initiated Operation: File Access Target: Source: C:\ARCHIVOS DE PROGRAMA\KASPERSKY LAB\KASPERSKY ANTI-VIRUS 6.0\AVP.EXE 06:25 a.m.: Tamper Detection 03:21 p.m.: Traces Found: 34 03:21 p.m.: Full Sweep has completed. Elapsed time 00:24:12 03:21 p.m.: File Sweep Complete, Elapsed Time: 00:19:49 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\m.b.locatelli@free.fr\dfsr\staging\cs{6ab3b38e-5547-6a1e-1f7a-f4a6d6a8d33c}1\129-{6ab3b38e-5547-6a1e-1f7a-f4a6d6a8d33c}-v1-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v129-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}1\10-{d67ec1ad-d891-354b-2faa-50333e3041f7}-v1-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v10-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\16\121-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v16-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v121-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\13\13-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v13-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v13-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\20\125-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v20-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v125-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\31\108-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v31-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v108-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\25\102-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v25-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v102-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\11\116-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v11-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v116-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\23\100-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v23-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v100-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\12\117-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v12-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v117-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\34\111-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v34-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v111-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\36\113-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v36-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v113-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\29\29-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v29-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v29-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\24\101-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v24-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v101-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\19\124-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v19-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v124-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\17\127-{4b823a4a-962a-4b8c-9ef7-9228e3a26c63}-v17-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v127-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\15\120-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v15-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v120-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\12\128-{4b823a4a-962a-4b8c-9ef7-9228e3a26c63}-v12-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v128-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\30\107-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v30-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v107-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\14\14-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v14-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v14-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\28\105-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v28-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v105-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\38\115-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v38-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v115-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\32\109-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v32-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v109-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\21\126-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v21-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v126-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\17\122-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v17-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v122-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\37\114-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v37-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v114-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\22\39-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v22-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v39-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\27\104-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v27-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v104-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\33\110-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v33-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v110-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\35\112-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v35-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v112-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\26\103-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v26-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v103-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\18\123-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v18-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v123-downloaded.frx (ID = 0) 03:11 p.m.: Found System Monitor: potentially rootkit-masked files 03:10 p.m.: Warning: Failed to access drive D: 03:09 p.m.: Warning: Failed to open file "c:\documents and settings\12\datos de programa\skype\elcedo1\profile256.dbb". La operación se ha completado correctamente 03:09 p.m.: Warning: Failed to open file "c:\documents and settings\12\configuración local\temp\~df911e.tmp". La operación se ha completado correctamente 03:09 p.m.: Warning: Failed to open file "c:\documents and settings\12\configuración local\temp\~df8d09.tmp". La operación se ha completado correctamente 03:09 p.m.: Warning: Failed to open file "c:\documents and settings\12\datos de programa\skype\elcedo1\chat256.dbb". La operación se ha completado correctamente 03:01 p.m.: Starting File Sweep 03:01 p.m.: Warning: Failed to access drive A: 03:01 p.m.: Cookie Sweep Complete, Elapsed Time: 00:00:00 03:01 p.m.: Starting Cookie Sweep 03:01 p.m.: Registry Sweep Complete, Elapsed Time:00:00:41 03:00 p.m.: HKCR\typelib\{edd3b3e9-3ffd-4836-a6de-d4a9c473a971}\ (ID = 143930) 03:00 p.m.: HKLM\software\classes\typelib\{edd3b3e9-3ffd-4836-a6de-d4a9c473a971}\ (ID = 143928) 03:00 p.m.: Found Adware: topsearch 03:00 p.m.: Starting Registry Sweep 03:00 p.m.: Memory Sweep Complete, Elapsed Time: 00:03:30 02:56 p.m.: Starting Memory Sweep 02:56 p.m.: Sweep initiated using definitions version 734 02:56 p.m.: Spy Sweeper 5.0.7.1608 started 02:56 p.m.: | Start of Session, Miércoles, 13 de Junio de 2007 | ******** 02:56 p.m.: | End of Session, Miércoles, 13 de Junio de 2007 | Keylogger Shield: Off BHO Shield: On IE Security Shield: On Alternate Data Stream (ADS) Execution Shield: On Startup Shield: On Common Ad Sites Shield: Off Hosts File Shield: On Spy Communication Shield: On ActiveX Shield: On Windows Messenger Service Shield: On IE Favorites Shield: On Spy Installation Shield: On Memory Shield: On IE Hijack Shield: On IE Tracking Cookies Shield: Off 02:54 p.m.: Shield States 02:54 p.m.: Spyware Definitions: 734 02:54 p.m.: Spy Sweeper 5.0.7.1608 started 02:54 p.m.: Spy Sweeper 5.0.7.1608 started 02:54 p.m.: | Start of Session, Miércoles, 13 de Junio de 2007 | ******** et avec ça? Je commence à croire qu'il n'y a pas de virus mais un autre pb et que formater sera la meilleure solution. A plus tard Cédric alors voici la suite : 07:46 a.m.: Removal process completed. Elapsed time 00:03:18 07:46 a.m.: Preparing to restart your computer. Please wait... 07:45 a.m.: Quarantining All Traces: topsearch 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\m.b.locatelli@free.fr\dfsr\staging\cs{6ab3b38e-5547-6a1e-1f7a-f4a6d6a8d33c}1\129-{6ab3b38e-5547-6a1e-1f7a-f4a6d6a8d33c}-v1-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v129-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}1\10-{d67ec1ad-d891-354b-2faa-50333e3041f7}-v1-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v10-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\16\121-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v16-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v121-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\13\13-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v13-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v13-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\20\125-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v20-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v125-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\31\108-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v31-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v108-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\25\102-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v25-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v102-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\11\116-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v11-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v116-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\23\100-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v23-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v100-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\12\117-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v12-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v117-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\34\111-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v34-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v111-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\36\113-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v36-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v113-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\29\29-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v29-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v29-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\24\101-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v24-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v101-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\19\124-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v19-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v124-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\17\127-{4b823a4a-962a-4b8c-9ef7-9228e3a26c63}-v17-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v127-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\15\120-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v15-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v120-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\12\128-{4b823a4a-962a-4b8c-9ef7-9228e3a26c63}-v12-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v128-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\30\107-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v30-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v107-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\14\14-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v14-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v14-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\28\105-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v28-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v105-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\38\115-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v38-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v115-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\32\109-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v32-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v109-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\21\126-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v21-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v126-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\17\122-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v17-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v122-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\37\114-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v37-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v114-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\22\39-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v22-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v39-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\27\104-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v27-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v104-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\33\110-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v33-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v110-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\35\112-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v35-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v112-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\26\103-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v26-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v103-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\18\123-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v18-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v123-downloaded.frx is in use. It will be removed on reboot. 07:45 a.m.: potentially rootkit-masked files is in use. It will be removed on reboot. 07:43 a.m.: Quarantining All Traces: potentially rootkit-masked files 07:43 a.m.: Removal process initiated Operation: File Access Target: Source: C:\ARCHIVOS DE PROGRAMA\KASPERSKY LAB\KASPERSKY ANTI-VIRUS 6.0\AVP.EXE 06:25 a.m.: Tamper Detection 03:21 p.m.: Traces Found: 34 03:21 p.m.: Full Sweep has completed. Elapsed time 00:24:12 03:21 p.m.: File Sweep Complete, Elapsed Time: 00:19:49 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\m.b.locatelli@free.fr\dfsr\staging\cs{6ab3b38e-5547-6a1e-1f7a-f4a6d6a8d33c}1\129-{6ab3b38e-5547-6a1e-1f7a-f4a6d6a8d33c}-v1-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v129-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}1\10-{d67ec1ad-d891-354b-2faa-50333e3041f7}-v1-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v10-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\16\121-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v16-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v121-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\13\13-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v13-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v13-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\20\125-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v20-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v125-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\31\108-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v31-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v108-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\25\102-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v25-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v102-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\11\116-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v11-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v116-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\23\100-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v23-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v100-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\12\117-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v12-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v117-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\34\111-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v34-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v111-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\36\113-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v36-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v113-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\29\29-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v29-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v29-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\24\101-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v24-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v101-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\19\124-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v19-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v124-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\17\127-{4b823a4a-962a-4b8c-9ef7-9228e3a26c63}-v17-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v127-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\15\120-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v15-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v120-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\12\128-{4b823a4a-962a-4b8c-9ef7-9228e3a26c63}-v12-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v128-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\30\107-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v30-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v107-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\14\14-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v14-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v14-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\28\105-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v28-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v105-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\38\115-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v38-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v115-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\32\109-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v32-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v109-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\21\126-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v21-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v126-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\17\122-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v17-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v122-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\37\114-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v37-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v114-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\22\39-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v22-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v39-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\27\104-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v27-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v104-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\33\110-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v33-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v110-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\35\112-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v35-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v112-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\26\103-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v26-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v103-downloaded.frx (ID = 0) 03:11 p.m.: c:\documents and settings\12\configuración local\datos de programa\microsoft\messenger\ced_berger@hotmail.com\sharingmetadata\cristian_medina@hotmail.com\dfsr\staging\cs{d67ec1ad-d891-354b-2faa-50333e3041f7}\18\123-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v18-{add8a414-7383-46c1-8c2f-9d608baae1a8}-v123-downloaded.frx (ID = 0) 03:11 p.m.: Found System Monitor: potentially rootkit-masked files 03:10 p.m.: Warning: Failed to access drive D: 03:09 p.m.: Warning: Failed to open file "c:\documents and settings\12\datos de programa\skype\elcedo1\profile256.dbb". La operación se ha completado correctamente 03:09 p.m.: Warning: Failed to open file "c:\documents and settings\12\configuración local\temp\~df911e.tmp". La operación se ha completado correctamente 03:09 p.m.: Warning: Failed to open file "c:\documents and settings\12\configuración local\temp\~df8d09.tmp". La operación se ha completado correctamente 03:09 p.m.: Warning: Failed to open file "c:\documents and settings\12\datos de programa\skype\elcedo1\chat256.dbb". La operación se ha completado correctamente 03:01 p.m.: Starting File Sweep 03:01 p.m.: Warning: Failed to access drive A: 03:01 p.m.: Cookie Sweep Complete, Elapsed Time: 00:00:00 03:01 p.m.: Starting Cookie Sweep 03:01 p.m.: Registry Sweep Complete, Elapsed Time:00:00:41 03:00 p.m.: HKCR\typelib\{edd3b3e9-3ffd-4836-a6de-d4a9c473a971}\ (ID = 143930) 03:00 p.m.: HKLM\software\classes\typelib\{edd3b3e9-3ffd-4836-a6de-d4a9c473a971}\ (ID = 143928) 03:00 p.m.: Found Adware: topsearch 03:00 p.m.: Starting Registry Sweep 03:00 p.m.: Memory Sweep Complete, Elapsed Time: 00:03:30 02:56 p.m.: Starting Memory Sweep 02:56 p.m.: Sweep initiated using definitions version 734 02:56 p.m.: Spy Sweeper 5.0.7.1608 started 02:56 p.m.: | Start of Session, Miércoles, 13 de Junio de 2007 | ******** 02:56 p.m.: | End of Session, Miércoles, 13 de Junio de 2007 | Keylogger Shield: Off BHO Shield: On IE Security Shield: On Alternate Data Stream (ADS) Execution Shield: On Startup Shield: On Common Ad Sites Shield: Off Hosts File Shield: On Spy Communication Shield: On ActiveX Shield: On Windows Messenger Service Shield: On IE Favorites Shield: On Spy Installation Shield: On Memory Shield: On IE Hijack Shield: On IE Tracking Cookies Shield: Off 02:54 p.m.: Shield States 02:54 p.m.: Spyware Definitions: 734 02:54 p.m.: Spy Sweeper 5.0.7.1608 started 02:54 p.m.: Spy Sweeper 5.0.7.1608 started 02:54 p.m.: | Start of Session, Miércoles, 13 de Junio de 2007 | ******** et avec ça? Je commence à croire qu'il n'y a pas de virus mais un autre pb et que formater sera la meilleure solution. A plus tard Cédric -
RESOLU pb de conenxion lié à un virus, possible?
Cedcol a répondu à un(e) sujet de Cedcol dans Analyses et éradication malwares
j'ai executé mais rien!!! alors, que faire? c'est vraiment bien compliqué et chi... Merci pour ton aide et ton temps Cédric -
RESOLU pb de conenxion lié à un virus, possible?
Cedcol a répondu à un(e) sujet de Cedcol dans Analyses et éradication malwares
et voici le rapport Hijackthis : Logfile of HijackThis v1.99.1 Scan saved at 09:51:09 a.m., on 13/06/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\LEXBCES.EXE C:\WINDOWS\system32\LEXPPS.EXE C:\WINDOWS\system32\spoolsv.exe C:\Archivos de programa\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe C:\Archivos de programa\Archivos comunes\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\pctspk.exe C:\Archivos de programa\Java\jre1.5.0_05\bin\jusched.exe C:\Archivos de programa\MessengerPlus! 3\MsgPlus.exe C:\Archivos de programa\Google\Gmail Notifier\gnotify.exe C:\Archivos de programa\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe C:\Archivos de programa\Winamp\winampa.exe C:\Archivos de programa\Grisoft\AVG Anti-Spyware 7.5\avgas.exe C:\WINDOWS\system32\ctfmon.exe C:\Archivos de programa\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Archivos de programa\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Archivos de programa\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\archivos de programa\google\googletoolbar2.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\archivos de programa\google\googletoolbar2.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Archivos de programa\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [PCTVOICE] pctspk.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Archivos de programa\Java\jre1.5.0_05\bin\jusched.exe O4 - HKLM\..\Run: [MessengerPlus3] "C:\Archivos de programa\MessengerPlus! 3\MsgPlus.exe" O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Archivos de programa\Google\Gmail Notifier\gnotify.exe O4 - HKLM\..\Run: [AVP] "C:\Archivos de programa\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe" O4 - HKLM\..\Run: [WinampAgent] C:\Archivos de programa\Winamp\winampa.exe O4 - HKLM\..\Run: [iMJPMIG8.2] msime82.exe O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Archivos de programa\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MsServer] msfun80.exe O4 - Global Startup: Inicio rápido de Adobe Reader.lnk = C:\Archivos de programa\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmwordtrans.html O8 - Extra context menu item: E&xport to Microsoft Excel - res://E:\DOCUME~1\12\MISDOC~1\CDRIC~1\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\ARCHIV~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Pages liées - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.5.0_05\bin\npjpi150_05.dll O9 - Extra 'Tools' menuitem: Consola de Sun Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.5.0_05\bin\npjpi150_05.dll O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Archivos de programa\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARCHIV~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe O15 - Trusted Zone: http://www.antivirus-france.com O15 - Trusted Zone: http://www.secuser.com O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.girafoto.fr/uploaders/ImageUploader3.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{96DEF815-EFFB-416A-82EA-8FB572DF068F}: NameServer = 192.168.3.1 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARCHIV~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARCHIV~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\ARCHIV~1\ARCHIV~1\Skype\SKYPE4~1.DLL O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Archivos de programa\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Unknown owner - C:\Archivos de programa\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe" -r (file missing) O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Archivos de programa\Archivos comunes\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE O23 - Service: MSCSPTISRV - Unknown owner - C:\Archivos de programa\Archivos comunes\Sony Shared\AVLib\MSCSPTISRV.exe (file missing) O23 - Service: PACSPTISVR - Unknown owner - C:\Archivos de programa\Archivos comunes\Sony Shared\AVLib\PACSPTISVR.exe (file missing) O23 - Service: Sony SPTI Service (SPTISRV) - Unknown owner - C:\Archivos de programa\Archivos comunes\Sony Shared\AVLib\SPTISRV.exe (file missing) j'attends la suite maintenant Merci Cédric -
RESOLU pb de conenxion lié à un virus, possible?
Cedcol a répondu à un(e) sujet de Cedcol dans Analyses et éradication malwares
Salut Alors voilà le resultat des opérations 1/ la recherche avec AVG Anti-Spyware a été réalisée sans la mise à jour car je n'ai même pas eu accés à la mise à jour. Voici le résultat : + Résultat de l'analyse: C:\AUTORUN.INF -> Trojan.Agent.ao : Nettoyé. E:\AUTORUN.INF -> Trojan.Agent.ao : Nettoyé. Fin du rapport Et b]BlackLight[/b 06/13/07 09:07:12 [info]: BlackLight Engine 1.0.61 initialized 06/13/07 09:07:12 [info]: OS: 5.1 build 2600 (Service Pack 2) 06/13/07 09:07:12 [Note]: 7019 4 06/13/07 09:07:12 [Note]: 7005 0 06/13/07 09:07:57 [Note]: 7006 0 06/13/07 09:07:57 [Note]: 7011 172 06/13/07 09:07:57 [Note]: 7026 0 06/13/07 09:07:58 [Note]: 7026 0 06/13/07 09:08:03 [Note]: FSRAW library version 1.7.1021 06/13/07 09:12:56 [Note]: 7007 0 je n'ai pas le rapport Hijakthis , je te le post très bientôt Chao, Cédric -
Impossible de me connecter à internet !
Cedcol a répondu à un(e) sujet de Cedcol dans Internet & Réseaux
Ok, et bien je vais attendre la suite car je ne suis pas anglophone. Merci -
RESOLU pb de conenxion lié à un virus, possible?
Cedcol a posté un sujet dans Analyses et éradication malwares
Bonjour, j'utilise opera comme navigateur qui fonctionne super bien jusqu'à ce matin. En effet, depuis ce matin, impossible de me connecter sur internet via opera ou tout autre navigateur, IE ou même Firefox. Ce qui est bizarre, c'est que tout le reste focntionne bien, pas de problème avec emule ou Azureus, ni avec Skype, ni même avec le petit prog pour écouter la musique en live. Seuls les navigateurs n'ouvrent rien. Le pare-feu de windows me semble bien configurer (XP, SP2). PAs de virus, le scan de kaspersky n'a rien donné en mode sans échec!!! Pourtant je pense que c'est lié à un virus, alors pour les pro des rapport hijsckthis, voici le mien. Que faire? Et voici le rapport hijackthis : Logfile of HijackThis v1.99.1 Scan saved at 10:54:03 a.m., on 07/06/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Archivos de programa\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe C:\Archivos de programa\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.3.1:3128 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Vínculos O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Archivos de programa\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Archivos de programa\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\archivos de programa\google\googletoolbar2.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\archivos de programa\google\googletoolbar2.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Archivos de programa\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [PCTVOICE] pctspk.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Archivos de programa\Java\jre1.5.0_05\bin\jusched.exe O4 - HKLM\..\Run: [MessengerPlus3] "C:\Archivos de programa\MessengerPlus! 3\MsgPlus.exe" O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Archivos de programa\Google\Gmail Notifier\gnotify.exe O4 - HKLM\..\Run: [AVP] "C:\Archivos de programa\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe " O4 - HKLM\..\Run: [WinampAgent] C:\Archivos de programa\Winamp\winampa.exe O4 - HKLM\..\Run: [iMJPMIG8.2] msime82.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MsServer] msfun80.exe O4 - Global Startup: Inicio rápido de Adobe Reader.lnk = C:\Archivos de programa\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmwordtrans.html O8 - Extra context menu item: E&xport to Microsoft Excel - res://E:\DOCUME~1\12\MISDOC~1\CDRIC~1\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\ARCHIV~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Pages liées - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.5.0_05\bin\npjpi150_05.dll O9 - Extra 'Tools' menuitem: Consola de Sun Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.5.0_05\bin\npjpi150_05.dll O9 - Extra button: Statistiques d'Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Archivos de programa\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARCHIV~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe O15 - Trusted Zone: http://www.antivirus-france.com O15 - Trusted Zone: http://www.secuser.com O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.girafoto.fr/uploaders/ImageUploader3.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{96DEF815-EFFB-416A-82EA-8FB572DF068F}: NameServer = 192.168.3.1 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARCHIV~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARCHIV~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\ARCHIV~1\ARCHIV~1\Skype\SKYPE4~1.DLL O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Unknown owner - C:\Archivos de programa\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe" -r (file missing) O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Archivos de programa\Archivos comunes\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE O23 - Service: MSCSPTISRV - Unknown owner - C:\Archivos de programa\Archivos comunes\Sony Shared\AVLib\MSCSPTISRV.exe (file missing) O23 - Service: PACSPTISVR - Unknown owner - C:\Archivos de programa\Archivos comunes\Sony Shared\AVLib\PACSPTISVR.exe (file missing) O23 - Service: Sony SPTI Service (SPTISRV) - Unknown owner - C:\Archivos de programa\Archivos comunes\Sony Shared\AVLib\SPTISRV.exe (file missing) Merci pour votre aide!!! A bientôt, jespère!!! Cédo -
Impossible de me connecter à internet !
Cedcol a répondu à un(e) sujet de Cedcol dans Internet & Réseaux
Bonjour et merci! Il faut donc que je poste cela dans le forum rapport Hijackthis? Cédric -
Impossible de me connecter à internet !
Cedcol a répondu à un(e) sujet de Cedcol dans Internet & Réseaux
Sauf que ça va aire 1 semaine et rien de nouveau!!! Alors, toujours personne c'est ce que je peux faire pour régler ce pb??? Merci, chao -
Bonjour, j'utilise opera comme navigateur qui fonctionne super bien jusqu'à ce matin. En effet, depuis ce matin, impossible de me connecter sur internet via opera ou tout autre navigateur, IE ou même Firefox. Ce qui est bizarre, c'est que tout le reste focntionne bien, pas de problème avec emule ou Azureus, ni avec Skype, ni même avec le petit prog pour écouter la musique en live. Seuls les navigateurs n'ouvrent rien. Le pare-feu de windows me semble bien configurer (XP, SP2). PAs de virus, le scan de kaspersky n'a rien donné en mode sans échec!!! Que faire? Et voici le rapport hijackthis si ça peut aider : Logfile of HijackThis v1.99.1 Scan saved at 10:54:03 a.m., on 07/06/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Archivos de programa\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe C:\Archivos de programa\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.3.1:3128 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Vínculos O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Archivos de programa\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Archivos de programa\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\archivos de programa\google\googletoolbar2.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\archivos de programa\google\googletoolbar2.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Archivos de programa\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [PCTVOICE] pctspk.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Archivos de programa\Java\jre1.5.0_05\bin\jusched.exe O4 - HKLM\..\Run: [MessengerPlus3] "C:\Archivos de programa\MessengerPlus! 3\MsgPlus.exe" O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Archivos de programa\Google\Gmail Notifier\gnotify.exe O4 - HKLM\..\Run: [AVP] "C:\Archivos de programa\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe " O4 - HKLM\..\Run: [WinampAgent] C:\Archivos de programa\Winamp\winampa.exe O4 - HKLM\..\Run: [iMJPMIG8.2] msime82.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MsServer] msfun80.exe O4 - Global Startup: Inicio rápido de Adobe Reader.lnk = C:\Archivos de programa\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmwordtrans.html O8 - Extra context menu item: E&xport to Microsoft Excel - res://E:\DOCUME~1\12\MISDOC~1\CDRIC~1\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\ARCHIV~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Pages liées - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.5.0_05\bin\npjpi150_05.dll O9 - Extra 'Tools' menuitem: Consola de Sun Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.5.0_05\bin\npjpi150_05.dll O9 - Extra button: Statistiques d'Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Archivos de programa\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARCHIV~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe O15 - Trusted Zone: http://www.antivirus-france.com O15 - Trusted Zone: http://www.secuser.com O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.girafoto.fr/uploaders/ImageUploader3.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{96DEF815-EFFB-416A-82EA-8FB572DF068F}: NameServer = 192.168.3.1 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARCHIV~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARCHIV~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\ARCHIV~1\ARCHIV~1\Skype\SKYPE4~1.DLL O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Unknown owner - C:\Archivos de programa\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe" -r (file missing) O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Archivos de programa\Archivos comunes\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE O23 - Service: MSCSPTISRV - Unknown owner - C:\Archivos de programa\Archivos comunes\Sony Shared\AVLib\MSCSPTISRV.exe (file missing) O23 - Service: PACSPTISVR - Unknown owner - C:\Archivos de programa\Archivos comunes\Sony Shared\AVLib\PACSPTISVR.exe (file missing) O23 - Service: Sony SPTI Service (SPTISRV) - Unknown owner - C:\Archivos de programa\Archivos comunes\Sony Shared\AVLib\SPTISRV.exe (file missing) Merci pour votre aide!!! A bientôt, jespère!!! Cédo
-
Comment ça? A chaque démarrage du pc, il s'ouvre une fenêtre sur le dossier système, comme si j'allais chercher ce dossier. Une fois fermée cette fenêtre, et même sans la fermer l'ordi roule. Et pas de virus trouvé. Problème que je traîne depuis plus d'un an! Alors? Qu'en penses-tu? Chao, Cedcol
-
RESOLU belle infection
Cedcol a répondu à un(e) sujet de Cedcol dans Analyses et éradication malwares
Ok, je classe ça en résolu et vais mettre la tête dans tous tes conseils! Chao et merci Cedcol -
RESOLU belle infection
Cedcol a répondu à un(e) sujet de Cedcol dans Analyses et éradication malwares
Ok, mais j'ai l'impression que Kaspersky ralenti pas mal la machine!!! Cedcol Bonjour Cedcol, En antivirus je te conseille kaspersky (payant) ou avast (gratuit) @+ -
RESOLU belle infection
Cedcol a répondu à un(e) sujet de Cedcol dans Analyses et éradication malwares
Merci pour tout! Je vais donc mettre la question en résolu après lire tes choix pour antivirus. Et oui, maintenant je cherche un antivirus bien dans les payant pour faire une proposition à la boîte et gratuit, AVG ne m'a pas convaincu. (en ce moment je suis sur la version d'eva de Kasperskay 6) J'utilise opéra depuis bien longtemps après avoir utilisé Firefox, IE, je ne sais plus à quoi ça ressemble. Ainsi que Spywaire terminator. Pour le reste je vais lire tout ça. Merci Cedcol Re, content que tu n'es plus de problemes Pense a mettre la question en resolu, pour se faire tu edites ton titre (premier message) et tu mets devant [résolu] *** Pour en savoir plus, consulte la page de Ipl_001 : http://IPL001.free.fr/IT/IT-AM0.html *** 1)- Voici les utilitaires et programmes que tu peux installer pour sécuriser ton PC : Navigateurs => Firefox, un vrai navigateur que tu pourras sécuriser avec les conseils de Megataupe : - Téléchargement : http://www.mozilla-europe.org/fr/products/firefox/ - Tutorial : http://forum.zebulon.fr/index.php?showtopic=69628 Je te le recommande vivement ! => Opera - Téléchargement : http://www.opera.com/download/ - Tutorial par Pitcat : http://speedweb1.ovh.org/forum-tesgaz/view...ae5af52b512dbab - Fonctionnalitées et Astuces par Lordtoniok : http://forum.zebulon.fr/index.php?showtopic=73742 Si tu veux toujours utiliser IE ! : => IE-SPYAD : (ajoute plus de 5000 sites à la zone de restriction pour te protéger lorsque tu atterris sur un site douteux) Pour Internet Explorer uniquement ! (une fois l'utilitaire dézippé dans son dossier, cliquer sur le fichier ie-ads.reg : les modifications ne sont pas visibles mais l'effet est garanti par le message qui suit !) - Téléchargement : http://www.spywarewarrior.com/uiuc/resource.htm Sécurisation des ports => ZebProtect (pour sécuriser les ports de ton PC, très simple) : - Téléchargement : http://telechargement.zebulon.fr/123.html - Tutorial par Tesgaz : http://www.zebulon.fr/articles/zebprotect.php => Si tu veux tester ton firewall : - scanner les ports du PC : http://www.pcflank.com/ Sécurisation de la navigation => SpywareBlaster : - Téléchargement : http://www.javacoolsoftware.com/downloads.html - Tutorial : http://www.ordi-netfr.org/tutorialspywareblaster.php Freeware permettant d'empêcher l'installation de spywares (logiciels espions) et autres adwares (insertion de publicité) sur ton PC. Contrairement à des logiciels comme Spybot - Search & Destroy ou Ad-aware, SpywareBlaster est un logiciel préventif qui est surtout utile pour Internet Explorer => Le fichier Hosts : Souvent négligé par les internautes, il est pourtant très recommandé de savoir l'exploiter. - Télécharger le fichier Hosts de Tesgaz régulièrement mis à jour : http://speedweb1.free.fr/download/secu/hosts.ZIP - Télécharger les listes hosts du forum Assiste.com par Pierre Pinard : http://assiste.forum.free.fr/viewtopic.php?t=11318 - Explications sur le Hosts : http://speedweb1.free.fr/frames2.php?page=securite10 - Conversations sur le Hosts sur Zebulon : http://forum.zebulon.fr/index.php?showtopic=88615 Verifie si ta console Java est à jour: Java Sun et télécharge la dernière version (si ta version actuelle n'est pas à jour) Après installation et redémarrage (toujours si elle n'etait pas à jour), va dans panneau de configuration/Ajouter-Supprimer des programmes afin de désinstaller l'ancienne version, ceci pour récupérer de l'espace disque et éventuellement pour virer les failles présentes dans cette ancienne version. Retourne ensuite chez Java ci-dessus et clique sur le bouton "Vérifier l'installation" pour t'assurer que tout est en ordre. En cas de problèmes chez Sun, tu peux aller télécharger la dernière version chez File Hippo canned fait par liegeois Outils de détection et de désinfection non résidents => Ad-Aware SE de Lavasoft : - Téléchargement : http://www.ordi-netfr.com/adawarese.html - Téléchargement 2 : http://www.lavasoft.de/support/download/#free - Tutorial : http://home.tiscali.be/schouppeguy/adawarese/adawase.htm - Tutorial 2 par Patarien : http://tutopat.hostonet.org/viewtopic.php?t=207 =>AVG anti-spyware : - Téléchargement : http://download.grisoft.cz/softw/70/filedi..._4.0.0.172a.exe - Tutorial par Malekal_morte : <a href="http://www.malekal.com/tutorial_AVG_AntiSpyware.html%5b/url" target="_blank"> AVG anti-spyware est un antimalware très efficace. Certaines fonctions ne sont gratuites que 30 jours, mais il est très performant en analyse en mode sans échec. Contrôleurs d'intégrité - Résidents / pour utilisateurs avancés =>Winpooch projet Opensources : - Téléchargement : http://winpooch.free.fr/page/home.php?lang=fr&page=home</a> - Conversation sur Zebulon par Jack Burton : http://forum.zebulon.fr/index.php?showtopi...amp;hl=Winpooch://http://winpooch.free.fr/page/home.p...amp;hl=Winpooch =>WinPatrol de BillP Studios : - Téléchargement : http://www.winpatrol.com/download.html - Tutorial par Krigou : http://www.libellules.ch/weblog/comments.php?id=46_0_1_0_C =>ProcessGuard de DiamondCS : - Téléchargement : http://www.diamondcs.com.au/processguard/i...p?page=download - Conversation sur Zebulon par Megataupe : http://forum.zebulon.fr/index.php?showtopic=66717 - tutorial par Odsen : http://benoit.aun.free.fr/securite-facile-...rocessguard.php =>Icesword - IDS de la Xfocus Team : - Téléchargement : http://www.open-files.com/forum/index.php?...st&p=459692 - tutorial par Txon : http://www.open-files.com/forum/index.php?showtopic=29383 - Tutorial sur Zebulon par Horus Agressor : http://forum.zebulon.fr/index.php?showtopic=96713 2)- Les utilitaires pour nettoyer le PC : => EasyCleaner de Toni Helenius : - Téléchargement : http://personal.inet.fi/business/toniarts/ecleane.htm - Tutorial - temporaires par DarkBG : http://www.uptoopc.net/nettoyer/temporaires.php - Tutorial - registre : http://www.uptoopc.net/nettoyer/registre.php - Tutorial - autres fonctions : http://www.uptoopc.net/nettoyer/autresfonctions.php Easy cleaner est un utilitaire de nettoyage. => ATF Cleaner de Atribune : - Téléchargement : http://www.atribune.org/ccount/click.php?id=1 - Tutorial par Lomaster : http://lomaster.freehostia.com/atfcleaner.html => JV16 : - Téléchargement : http://telechargement.zebulon.fr/201-jv16-powertools.html - Tutorial par Tesgaz : http://www.zebulon.fr/articles/base-de-registre-3.php 3)- Pour aller plus loin dans l'optimisation et la sécurisation - quelques pistes par Tesgaz : =>Configurez vos services : http://speedweb1.free.fr/frames2.php?page=service3 http://speedweb1.free.fr/frames2.php?page=service4 =>Optimiser la protection de son PC pour Internet en toute sécurité : http://speedweb1.free.fr/frames2.php?page=securite1 =>Autorisation et restriction des Dossiers et fichiers avec NTFS : http://speedweb1.free.fr/frames2.php?page=securite4 =>Améliorer votre sécurité grâce aux restrictions : http://speedweb1.free.fr/frames2.php?page=securite6 =>Les mots de passe : http://speedweb1.free.fr/frames2.php?page=securite7 4)- Pour finir, il y a possibilité de réagir et de faire avancer les choses au niveau de la lutte antimalware : Plus d'info sur le topic d'Ipl_001 ici (merci à Kimberly!!) => http://forum.zebulon.fr/index.php?showtopic=88688 J'espère t'avoir été assez clair, et je reste à ta disposition si tu as une question sur ce que je viens de te recommmander. Tu as beaucoup d'informations d'un coup, prends le temps de les digérer. Zebulon est une mine d'informations concernant l'optimisation, la sécurisation et la prévention, il ne faut pas hésiter à y poser des questions. Pense à éditer ton premier post pour rajouter "Résolu" dans le titre. Pour cela clique sur "Editer" à la gauche de " Citer " et "Répondre " sur le tout premier post du sujet, puis sélectionne "édition complète". Tu pourras alors changer le titre et y rajouter " Résolu". A bientot sur les forums de -
RESOLU belle infection
Cedcol a répondu à un(e) sujet de Cedcol dans Analyses et éradication malwares
Pour l'instant, ça roule de nouveau. Merci et à + Cedcol -
RESOLU belle infection
Cedcol a répondu à un(e) sujet de Cedcol dans Analyses et éradication malwares
Salut Non, ça à l'air d'aller! C'était quoi alors? Mais rien d'autre de superfu sur la machien à desinstaller? Merci vriament pour ton aide! C'est ton boulot ou ton passe temps? Chao, Cedcol -
RESOLU belle infection
Cedcol a répondu à un(e) sujet de Cedcol dans Analyses et éradication malwares
Salut, Alors les nouvelles: J'ai pu installer Kaspersky 6 version evaluation: Après mise à jour et recherche des virus voici le rapport: Protection ---------- Total analysés : 332281 Infectés : 4 Non traités : 0 Lancement : 05/03/2007 08:20:51 a.m. Durée : 01:59:52 Infectés -------- Etat Objet ---- ----- supprimé : virus Virus.Win32.Small.f Le fichier: F:\autorun.inf supprimé : virus Email-Worm.Win32.Bagle.hq Le fichier: C:\Muestras\HIDR.EXE.Muestra EliBagle v10.18//PE_Patch.PEStubOEP supprimé : virus Email-Worm.Win32.Bagle.hq Le fichier: C:\Muestras\M_HOOK.SYS.Muestra EliBagle v10.18 supprimé : virus P2P-Worm.Win32.Kapucen.b Le fichier: E:\Documents and Settings\12\Mis documentos\Incoming\[0] Kaspersky.Anti-Virus.v6.0.0.303.key.rar/setup.exe Question: Faut-il toujours faire les analyses en mode sans échec? Alors, ça y est, mon ordi est guéri? Que me conseille-tu de plus? A plus, et merci encore cedcol Fais un scan en ligne avec http://webscanner.kaspersky.fr/kavwebscan.html dans la nouvelle fenetre qui s'affiche clique sur J'accepte On va te demander de télécharger un ou deux contôle active x, accepte . Laisse le faire les mises à jour puis quand il aura finit clique sur Suivant Dans le menu Choisissez la cible de l'analyse , sélectionne Poste de travail . Le scan va commencer.Poste le rapport qui sera généré stp. Si il y a un problème, assure toi que les contrôles active x soient bien configurés dans les options internet comme décrit sur ce lien=> http://www.inoculer.com/activex.php3 NOTE: le scan est a faire avec Internet Explorer -
RESOLU belle infection
Cedcol a répondu à un(e) sujet de Cedcol dans Analyses et éradication malwares
Salut! Me voilà de retour (rando de 4 jours, le pied) Alors je viens de faire ce que tu m'as dit: Voici le rapport de AVG AS 7.5 : C:\Documents and Settings\12\Datos de programa\Opera\Opera\profile\cache4\opr05VZK.exe -> Heuristic.Win32.AVKiller : Nettoyé et sauvegardé (mise en quarantaine). C:\Documents and Settings\12\Escritorio\EliBaglA.exe -> Heuristic.Win32.AVKiller : Nettoyé et sauvegardé (mise en quarantaine). Fin du rapport et le rapport HijackThis : Logfile of HijackThis v1.99.1 Scan saved at 01:33:17 p.m., on 01/03/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\LEXBCES.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\LEXPPS.EXE C:\Archivos de programa\Archivos comunes\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Archivos de programa\Spyware Terminator\sp_rsser.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\system32\userinit.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\pctspk.exe C:\Archivos de programa\Winamp\winampa.exe C:\Archivos de programa\Java\jre1.5.0_05\bin\jusched.exe C:\Archivos de programa\MessengerPlus! 3\MsgPlus.exe C:\Archivos de programa\Google\Gmail Notifier\gnotify.exe C:\Archivos de programa\Spyware Terminator\SpywareTerminatorShield.exe C:\WINDOWS\system32\ctfmon.exe C:\Archivos de programa\Adobe\Acrobat 7.0\Reader\reader_sl.exe C:\Documents and Settings\12\Escritorio\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.3.1:3128 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Vínculos O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Archivos de programa\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Archivos de programa\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\archivos de programa\google\googletoolbar2.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\archivos de programa\google\googletoolbar2.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Archivos de programa\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [PCTVOICE] pctspk.exe O4 - HKLM\..\Run: [WinampAgent] C:\Archivos de programa\Winamp\winampa.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Archivos de programa\Java\jre1.5.0_05\bin\jusched.exe O4 - HKLM\..\Run: [MessengerPlus3] "C:\Archivos de programa\MessengerPlus! 3\MsgPlus.exe" O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Archivos de programa\Google\Gmail Notifier\gnotify.exe O4 - HKLM\..\Run: [spywareTerminator] "C:\Archivos de programa\Spyware Terminator\SpywareTerminatorShield.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - Global Startup: Inicio rápido de Adobe Reader.lnk = C:\Archivos de programa\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmwordtrans.html O8 - Extra context menu item: E&xport to Microsoft Excel - res://E:\DOCUME~1\12\MISDOC~1\CDRIC~1\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\ARCHIV~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Pages liées - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.5.0_05\bin\npjpi150_05.dll O9 - Extra 'Tools' menuitem: Consola de Sun Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.5.0_05\bin\npjpi150_05.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARCHIV~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe O15 - Trusted Zone: http://www.antivirus-france.com O15 - Trusted Zone: http://www.secuser.com O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/...nst_current.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.girafoto.fr/uploaders/ImageUploader3.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{96DEF815-EFFB-416A-82EA-8FB572DF068F}: NameServer = 192.168.3.1 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARCHIV~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARCHIV~1\MSNMES~1\MSGRAP~1.DLL O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE O23 - Service: MSCSPTISRV - Sony Corporation - C:\Archivos de programa\Archivos comunes\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Archivos de programa\Archivos comunes\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Archivos de programa\Archivos comunes\Sony Shared\AVLib\SPTISRV.exe O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Archivos de programa\Spyware Terminator\sp_rsser.exe Et maintenant? A oui, j'ai pu tout faire sauf la mise à jour d'AVG AS Merci Cédcol -
RESOLU belle infection
Cedcol a répondu à un(e) sujet de Cedcol dans Analyses et éradication malwares
Ok, alors voila ce que ça a donné 1: J'ai pu redémarrer en mode sans echec 2: il a supprimer Bagle 3: voila le rapport : Fri Feb 23 13:57:27 2007 EliBagle v10.18 ©2007 S.G.H. / Satinfo S.L. ---------------------------------------------- Lista de Acciones (por Acción Directa): C:\WINDOWS\SYSTEM32\BAN_LIST.TXT --> Eliminado Bagle Por favor, envienos una muestra del fichero C:\Muestras\HIDR.EXE.Muestra EliBagle v10.18 a "virus@satinfo.es". Gracias. C:\DOCUMENTS AND SETTINGS\12\DATOS DE PROGRAMA\HIDIRES\HIDR.EXE --> Eliminado Bagle Por favor, envienos una muestra del fichero C:\Muestras\M_HOOK.SYS.Muestra EliBagle v10.18 a "virus@satinfo.es". Gracias. C:\DOCUMENTS AND SETTINGS\12\DATOS DE PROGRAMA\HIDIRES\M_HOOK.SYS --> Eliminado Bagle Eliminada Carpeta "%WinDir%\exefld" Restaurada Clave: "SafeBoot\Minimal y Network" Fri Feb 23 13:57:56 2007 EliBagle v10.18 ©2007 S.G.H. / Satinfo S.L. ---------------------------------------------- Lista de Acciones (por Exploración): Explorando Unidad C:\ Que dois-je faire maitenant? A plus, et mercie encore car je vois que ça avance! Cedcol -
RESOLU belle infection
Cedcol a répondu à un(e) sujet de Cedcol dans Analyses et éradication malwares
Hola: Voila le rapport de blbeta : 02/23/07 13:34:08 [info]: BlackLight Engine 1.0.55 initialized 02/23/07 13:34:08 [info]: OS: 5.1 build 2600 (Service Pack 2) 02/23/07 13:34:08 [Note]: 7019 4 02/23/07 13:34:08 [Note]: 7005 0 02/23/07 13:34:11 [Note]: 7006 0 02/23/07 13:34:11 [Note]: 7011 1308 02/23/07 13:34:12 [Note]: 7026 0 02/23/07 13:34:12 [Note]: 7026 0 02/23/07 13:34:33 [Note]: FSRAW library version 1.7.1021 02/23/07 13:35:08 [info]: Hidden file: c:\Archivos de programa\Movie Maker\shared\empty.txt 02/23/07 13:35:08 [Note]: 10002 3 02/23/07 13:35:08 [info]: Hidden file: c:\Archivos de programa\Movie Maker\shared\filters.xml 02/23/07 13:35:08 [Note]: 10002 3 02/23/07 13:35:08 [info]: Hidden file: c:\Archivos de programa\Movie Maker\shared\news.png 02/23/07 13:35:08 [Note]: 10002 3 02/23/07 13:35:08 [info]: Hidden file: c:\Archivos de programa\Movie Maker\shared\paint.png 02/23/07 13:35:08 [Note]: 10002 3 02/23/07 13:35:08 [info]: Hidden file: c:\Archivos de programa\Movie Maker\shared\profiles\blank.txt 02/23/07 13:35:08 [Note]: 10002 3 02/23/07 13:35:08 [info]: Hidden file: c:\Archivos de programa\Movie Maker\shared\sample1.jpg 02/23/07 13:35:08 [Note]: 10002 3 02/23/07 13:35:08 [info]: Hidden file: c:\Archivos de programa\Movie Maker\shared\sample2.jpg 02/23/07 13:35:08 [Note]: 10002 3 02/23/07 13:35:08 [Note]: 10002 2 02/23/07 13:35:08 [Note]: 10002 2 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared7 spy software crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\3ds max 7 crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\3gp converter crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\3gp crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\6.0.9.0 crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\Abakus UIQ3 crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\ableton crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\acronis true image crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\Adobe Acrobat Pro crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\adobe audition crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\adobe captivate crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\adobe illustrator cs2 crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\ADOBE PHOTOSHOP CS 2 crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\adult crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\age of empires 2 crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\Kaspersky AntiVirus 6.0 crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\Kaspersky AntiVirus crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\Kaspersky Internet Security 6.0.1.411 crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\Kaspersky Anti-Virus Personal Pro crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\kaspersky 6.0.0.303 crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\kaspersky 6.0.1.411 crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\keygen nero 7 crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\Limewire Lime Wire Pro 4.12.3.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\luxor amun rising crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\Macromedia Flash 8 crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\magic dvd crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\Magic Photo Editor crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\MagicLines crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\pc cillin crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:20 [info]: Hidden file: c:\Documents and Settings\12\Shared\Perpetual Disco Screen Saver crack.zip 02/23/07 13:35:20 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\pes 6 crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\pes6 crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\Pinball Arcade crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\Pinnacle Studio Plus Titanium Edition v10.6 crack. 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\plesk crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\Poker Superstars 2 crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\Poker Superstars crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\power DVD 7.0 crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\privacy guardian crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\pro crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\EasyBoot crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\easy cd-da crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\Easyrecovery Professional crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\eltima crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\EMPIRE EARTH 2 crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\Excel Password Recovery Master crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\far cry crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\fastsatfinder crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\FinePrint crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\FLASHFXP crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\fruity loops 6 crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\garmin crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\GT Legends crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\holiday lights crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\Sothink SWF Decompiler 3.4 build 60912 crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\speed up my pc crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\spin it again crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\Steganos Security Suite 2007 crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\Stripsaver2 crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\super ad blocker crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\swf decompiler crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\switch crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\switch v 1.11 crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\System Doctor 2006 crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\System Mechanic 6.0u crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\System Mechanic 7 Pro crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\system mechanic 7 professional crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\agile crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\autodesk inventor crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\Butterfly Escape crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\cuteftp 8 crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\divx pro 5.2.1 crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\MagicMatch crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\milkshape crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\noadware crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\pc-cillin 2007 crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\Quick time crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\sims 2 pets crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\VirusRescue crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\morpheus ultra crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\Mpeg crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\ms office 2007 crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\MS OFFICE crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\mystery crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\Mystic Inn crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\n-track studio v5.0.2 crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\nero 6 crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\nero 7 ultra crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\nero 7.5.9 crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\neverwinter crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\avira crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\BEARFLIX crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\bejeweled 2 crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\betrapped crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\black crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\boris crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\boson crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\BT Engine crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\bullguard crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\Talismania Deluxe crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\tally crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\TMPGEnc XPress crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\toast crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\tuneup utilities2006 crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\uninstall tool crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\Universal Shield crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\vegas crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\Video Edit Magic 4.24 crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\Video Edit Magic v4.21 crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\viewletcam crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\virus-busters 6.3 crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\R-Studio crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\rainbow mystery crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\real player crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\Realplayer crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\red alert crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\regsweep crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\Restorer2000 Pro crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\route 66 crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\runic crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\scrabble crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:21 [info]: Hidden file: c:\Documents and Settings\12\Shared\security task manager crack.zip 02/23/07 13:35:21 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\setup factory crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\simcity 3000 crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\Simply Calenders crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\cyberlink powerDVD crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\Dap 8 crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\DAP 8.1 crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\Deep Freeze crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\diablo II crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\digitando crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\Diner Dash Flo On The Go crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\diskkeeper crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\Hollywood FX crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\ice clock 3d crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\icoo crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\illustrator crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\IM+ crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\IMPlus crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\intel audio studio crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\internet download manager 5.05 crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\intervideo windvr crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\Jewel Quest Solitaire crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\karu crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\magix music maker crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\mahjong quest crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\mathcad crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\Mathieu Chedid - Sergent Garcia - Amor pa'mi.mp3 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\media center crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\memoriesontv crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\microsoft office small business edition 2003 crack 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\NORTON INTERNET crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\Numark Cue crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\office 2003 small business crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\Office password remover crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\operation flashpoint crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\Outpost Firewall Pro crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\paraworld crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\partition manager crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\whizlabs crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\WIN ZIP crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\winamp 5.32 crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\Windows Media Player 11 crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\windows xp pro sp2 crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\winrar 3.62 crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\winrar 361 crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\winxp crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\winzip 11.0 crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\wm recorder 11 crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\agnitum crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\all sound recorder xp crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\antivir crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\antivirus golden crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\any crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\Any DVD 6.0.9.0 crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\Anydvd 6.0.9.2 crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\anydvd 6.0.9.5 crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\anydvd crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\anyplace control 3.2 crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\aperture crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\arcsoft crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\Atlantis Quest crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\AusLogics BoostSpeed crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\CamStudio crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\canopus crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\Captivate crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\Cash Cow crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\chicken invaders 3 crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\Chicken Invaders crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\christmas eve 3d crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\Christmas Eve 3D Screensaver crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\clone dvd 2.9.0.1 crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\convert movie crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\Corel Paint Shop Pro X crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\counterspy crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\dreamweaver 6 crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\DriveCleaner 2006 crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\Driverguide Toolkit crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\DVD Cloner IV crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\dvd region crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\dvd-cloner crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [info]: Hidden file: c:\Documents and Settings\12\Shared\Dynasty crack.zip 02/23/07 13:35:22 [Note]: 10002 3 02/23/07 13:35:22 [Note]: 10002 2 02/23/07 13:35:22 [Note]: 10002 2 02/23/07 13:35:23 [info]: Hidden file: c:\Documents and Settings\12\Datos de programa\hidires\hidr.exe 02/23/07 13:35:23 [Note]: 10002 2 02/23/07 13:35:23 [info]: Hidden file: c:\Documents and Settings\12\Datos de programa\hidires\m_hook.sys 02/23/07 13:35:23 [Note]: 10002 2 02/23/07 13:35:24 [Note]: 10002 3 02/23/07 13:35:24 [Note]: 10002 3 02/23/07 13:35:24 [Note]: 10002 2 02/23/07 13:35:24 [Note]: 10002 2 02/23/07 13:35:40 [Note]: 10002 2 02/23/07 13:35:40 [Note]: 10002 2 02/23/07 13:37:41 [Note]: 7007 0 et voici aussi le rapport de DialHelp (j'avais essayer ça) Service Pack 212 2 2006 14:06:09.500 Loaded driver \WINDOWS\system32\ntoskrnl.exe Loaded driver \WINDOWS\system32\hal.dll Loaded driver \WINDOWS\system32\KDCOM.DLL Loaded driver \WINDOWS\system32\BOOTVID.dll Loaded driver ACPI.sys Loaded driver \WINDOWS\system32\DRIVERS\WMILIB.SYS Loaded driver pci.sys Loaded driver isapnp.sys Loaded driver compbatt.sys Loaded driver \WINDOWS\system32\DRIVERS\BATTC.SYS Loaded driver intelide.sys Loaded driver \WINDOWS\system32\DRIVERS\PCIIDEX.SYS Loaded driver MountMgr.sys Loaded driver ftdisk.sys Loaded driver dmload.sys Loaded driver dmio.sys Loaded driver PartMgr.sys Loaded driver VolSnap.sys Loaded driver atapi.sys Loaded driver vmscsi.sys Loaded driver \WINDOWS\system32\DRIVERS\SCSIPORT.SYS Loaded driver disk.sys Loaded driver \WINDOWS\system32\DRIVERS\CLASSPNP.SYS Loaded driver fltMgr.sys Loaded driver sr.sys Loaded driver KSecDD.sys Loaded driver Ntfs.sys Loaded driver NDIS.sys Loaded driver Mup.sys Loaded driver agp440.sys Loaded driver \SystemRoot\system32\DRIVERS\amdk7.sys Loaded driver \SystemRoot\system32\DRIVERS\i8042prt.sys Loaded driver \SystemRoot\system32\DRIVERS\kbdclass.sys Loaded driver \SystemRoot\system32\DRIVERS\vmmouse.sys Loaded driver \SystemRoot\system32\DRIVERS\mouclass.sys Loaded driver \SystemRoot\system32\DRIVERS\parport.sys Loaded driver \SystemRoot\system32\DRIVERS\serial.sys Loaded driver \SystemRoot\system32\DRIVERS\serenum.sys Loaded driver \SystemRoot\system32\DRIVERS\fdc.sys Loaded driver \SystemRoot\system32\DRIVERS\cdrom.sys Loaded driver \SystemRoot\system32\DRIVERS\redbook.sys Loaded driver \SystemRoot\system32\DRIVERS\vmx_svga.sys Loaded driver \SystemRoot\system32\DRIVERS\vmxnet.sys Loaded driver \SystemRoot\system32\DRIVERS\CmBatt.sys Loaded driver \SystemRoot\system32\DRIVERS\audstub.sys Loaded driver \SystemRoot\system32\DRIVERS\rasl2tp.sys Loaded driver \SystemRoot\system32\DRIVERS\ndistapi.sys Loaded driver \SystemRoot\system32\DRIVERS\ndiswan.sys Loaded driver \SystemRoot\system32\DRIVERS\raspppoe.sys Loaded driver \SystemRoot\system32\DRIVERS\raspptp.sys Loaded driver \SystemRoot\system32\DRIVERS\msgpc.sys Loaded driver \SystemRoot\system32\DRIVERS\psched.sys Loaded driver \SystemRoot\system32\DRIVERS\ptilink.sys Loaded driver \SystemRoot\system32\DRIVERS\raspti.sys Loaded driver \SystemRoot\system32\DRIVERS\rdpdr.sys Loaded driver \SystemRoot\system32\DRIVERS\termdd.sys Loaded driver \SystemRoot\system32\DRIVERS\swenum.sys Loaded driver \SystemRoot\system32\DRIVERS\update.sys Loaded driver \SystemRoot\system32\DRIVERS\mssmbios.sys Loaded driver \SystemRoot\System32\Drivers\NDProxy.SYS Did not load driver \SystemRoot\System32\Drivers\NDProxy.SYS Loaded driver \SystemRoot\system32\DRIVERS\flpydisk.sys Did not load driver \SystemRoot\System32\Drivers\lbrtfdc.SYS Did not load driver \SystemRoot\System32\Drivers\Sfloppy.SYS Did not load driver \SystemRoot\System32\Drivers\i2omgmt.SYS Did not load driver \SystemRoot\System32\Drivers\Changer.SYS Did not load driver \SystemRoot\System32\Drivers\Cdaudio.SYS Loaded driver \SystemRoot\System32\Drivers\Fs_Rec.SYS Loaded driver \SystemRoot\System32\Drivers\Null.SYS Loaded driver \SystemRoot\System32\Drivers\Beep.SYS Loaded driver \SystemRoot\System32\drivers\vga.sys Loaded driver \SystemRoot\System32\Drivers\mnmdd.SYS Loaded driver \SystemRoot\System32\DRIVERS\RDPCDD.sys Loaded driver \SystemRoot\System32\Drivers\Msfs.SYS Loaded driver \SystemRoot\System32\Drivers\Npfs.SYS Loaded driver \SystemRoot\system32\DRIVERS\rasacd.sys Loaded driver \SystemRoot\system32\DRIVERS\ipsec.sys Loaded driver \SystemRoot\system32\DRIVERS\tcpip.sys Loaded driver \SystemRoot\system32\DRIVERS\netbt.sys Loaded driver \SystemRoot\System32\drivers\afd.sys Loaded driver \SystemRoot\system32\DRIVERS\netbios.sys Did not load driver \SystemRoot\System32\Drivers\PCIDump.SYS Loaded driver \SystemRoot\system32\DRIVERS\rdbss.sys Loaded driver \SystemRoot\system32\DRIVERS\mrxsmb.sys Did not load driver \SystemRoot\system32\DRIVERS\imapi.sys Loaded driver \SystemRoot\system32\DRIVERS\wanarp.sys Loaded driver \SystemRoot\System32\Drivers\Fips.SYS Loaded driver \SystemRoot\System32\Drivers\Cdfs.SYS Loaded driver \SystemRoot\system32\DRIVERS\ndisuio.sys Did not load driver \SystemRoot\system32\DRIVERS\rdbss.sys Did not load driver \SystemRoot\system32\DRIVERS\mrxsmb.sys Loaded driver \SystemRoot\System32\Drivers\Fastfat.SYS Loaded driver \SystemRoot\system32\DRIVERS\mrxdav.sys Loaded driver \SystemRoot\System32\Drivers\ParVdm.SYS Loaded driver \SystemRoot\system32\DRIVERS\srv.sys Loaded driver \SystemRoot\System32\Drivers\HTTP.sys Et que faire avec ça? Je sens d'ou ça vient mais ... Ah oui, impossible d'activer voir les fichiers cachés! J'attends ton aide, Merci -
Bonjour, Voila mon pb: Je ne peux plus installer d'antivirus. Je sais que l'ordi est infecté mais je ne m'en sors pas. J'ai utilisé 10 000 trucs (AVAST, aVG, Kaspersky evaluation, CCLEENER, Regsseker, blbeta ...) Mais rien à faire! Je ne peux pas démarrer en mode sans échec non plus. Et je précise c'est l'ordi du boulot avec contrôle d'internet donc je ne peux pas aller sur toutes les pages tellement cette protection est mal configurée! Alors voilà le fichier log de HijackThis : Logfile of HijackThis v1.99.1 Scan saved at 05:20:53 p.m., on 22/02/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\LEXBCES.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\LEXPPS.EXE C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\pctspk.exe C:\Archivos de programa\Winamp\winampa.exe C:\Archivos de programa\Java\jre1.5.0_05\bin\jusched.exe C:\Archivos de programa\MessengerPlus! 3\MsgPlus.exe C:\Archivos de programa\Google\Gmail Notifier\gnotify.exe C:\WINDOWS\system32\ctfmon.exe C:\Archivos de programa\Archivos comunes\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\System32\svchost.exe C:\Archivos de programa\Opera\Opera.exe C:\Archivos de programa\Spyware Terminator\SpywareTerminator.exe C:\Archivos de programa\Spyware Terminator\SpywareTerminatorShield.exe C:\Archivos de programa\Spyware Terminator\sp_rsser.exe C:\Archivos de programa\Grisoft\AVG Anti-Spyware 7.5\avgas.exe C:\Documents and Settings\12\Escritorio\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.3.1:3128 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Vínculos O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Archivos de programa\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Archivos de programa\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\archivos de programa\google\googletoolbar2.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\archivos de programa\google\googletoolbar2.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Archivos de programa\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [PCTVOICE] pctspk.exe O4 - HKLM\..\Run: [WinampAgent] C:\Archivos de programa\Winamp\winampa.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Archivos de programa\Java\jre1.5.0_05\bin\jusched.exe O4 - HKLM\..\Run: [MessengerPlus3] "C:\Archivos de programa\MessengerPlus! 3\MsgPlus.exe" O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Archivos de programa\Google\Gmail Notifier\gnotify.exe O4 - HKLM\..\Run: [spywareTerminator] "C:\Archivos de programa\Spyware Terminator\SpywareTerminatorShield.exe" O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Archivos de programa\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - Global Startup: Inicio rápido de Adobe Reader.lnk = C:\Archivos de programa\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: &Search - http://kq.bar.need2find.com/KQ/menusearch.html?p=KQ O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmwordtrans.html O8 - Extra context menu item: E&xport to Microsoft Excel - res://E:\DOCUME~1\12\MISDOC~1\CDRIC~1\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\ARCHIV~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Pages liées - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.5.0_05\bin\npjpi150_05.dll O9 - Extra 'Tools' menuitem: Consola de Sun Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.5.0_05\bin\npjpi150_05.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARCHIV~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe O15 - Trusted Zone: http://www.antivirus-france.com O15 - Trusted Zone: http://www.secuser.com O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/...nst_current.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.girafoto.fr/uploaders/ImageUploader3.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{96DEF815-EFFB-416A-82EA-8FB572DF068F}: NameServer = 192.168.3.1 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARCHIV~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARCHIV~1\MSNMES~1\MSGRAP~1.DLL O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE O23 - Service: MSCSPTISRV - Sony Corporation - C:\Archivos de programa\Archivos comunes\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Archivos de programa\Archivos comunes\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Archivos de programa\Archivos comunes\Sony Shared\AVLib\SPTISRV.exe O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Archivos de programa\Spyware Terminator\sp_rsser.exe Que faire avec ça? Comment sortir de là? A oui, je peux tout de même lancer le scan en ligne de Bitdefender! Mais pas suffisant! Merci pour votre aide! à +
-
hola Je vais virer spywaire terminatore1 Voici le rapport DiagHelp C:\WINDOWS\System32\FNTCACHE.DAT -->22/02/2007 05:46:46 p.m. C:\WINDOWS\System32\VQW -->22/02/2007 05:44:08 p.m. C:\WINDOWS\System32\ban_list.txt -->22/02/2007 05:41:43 p.m. C:\WINDOWS\System32\CONFIG.NT -->22/02/2007 04:23:50 p.m. C:\WINDOWS\System32\wpa.dbl -->20/02/2007 11:37:46 a.m. C:\WINDOWS\System32\sirenacm.dll -->19/01/2007 12:53:04 p.m. C:\WINDOWS\System32\aswBoot.exe -->15/01/2007 12:32:07 p.m. C:\WINDOWS\System32\SIntfNT.dll -->27/09/2006 02:42:09 p.m. C:\WINDOWS\System32\SIntf32.dll -->27/09/2006 02:42:09 p.m. C:\WINDOWS\System32\SIntf16.dll -->27/09/2006 02:42:09 p.m. C:\WINDOWS\System32\QuickTime.qtp -->22/09/2006 08:43:13 a.m. C:\WINDOWS\System32\cncs32.dll -->01/06/2006 07:50:29 a.m. C:\WINDOWS\System32\FM20FRA.DLL -->26/04/2006 09:09:54 a.m. C:\WINDOWS\System32\FM20ENU.DLL -->25/04/2006 08:41:04 p.m. C:\WINDOWS\System32\FM20.DLL -->25/04/2006 08:41:04 p.m. C:\WINDOWS\System32\jupdate-1.5.0_05-b05.log -->24/10/2005 12:37:01 p.m. C:\WINDOWS\System32\javaws.exe -->26/08/2005 06:14:46 p.m. C:\WINDOWS\System32\jpicpl32.cpl -->26/08/2005 06:14:42 p.m. C:\WINDOWS\System32\javaw.exe -->26/08/2005 03:55:58 p.m. C:\WINDOWS\System32\java.exe -->26/08/2005 03:55:46 p.m. C:\WINDOWS\System32\uxtheme.dll -->23/08/2005 01:01:53 p.m. C:\WINDOWS\System32\divxdec.ax -->09/08/2005 05:14:00 p.m. C:\WINDOWS\System32\divxsm.tlb -->09/08/2005 05:13:59 p.m. C:\WINDOWS\System32\DivXsm.exe -->09/08/2005 05:13:59 p.m. C:\WINDOWS\System32\DivX.dll -->09/08/2005 05:13:59 p.m. C:\WINDOWS\LEXSTAT.INI -->23/02/2007 10:40:17 a.m. C:\WINDOWS.log -->22/02/2007 05:47:21 p.m. C:\WINDOWS\wiaservc.log -->22/02/2007 05:47:09 p.m. C:\WINDOWS\wiadebug.log -->22/02/2007 05:47:08 p.m. C:\WINDOWS\bootstat.dat -->22/02/2007 05:46:47 p.m. C:\WINDOWS\SchedLgU.Txt -->22/02/2007 05:45:47 p.m. C:\WINDOWS\WindowsUpdate.log -->22/02/2007 05:45:42 p.m. C:\WINDOWS\winamp.ini -->22/02/2007 01:44:05 p.m. C:\WINDOWS\ODBC.INI -->06/02/2007 11:36:38 a.m. C:\WINDOWS\win.ini -->31/01/2007 02:16:55 p.m. C:\WINDOWS\Graphex3.ini -->31/01/2007 10:38:05 a.m. C:\WINDOWS\procad.ini -->13/12/2006 11:27:34 a.m. C:\WINDOWS\Schoolhouse.ini -->27/09/2006 02:48:49 p.m. C:\WINDOWS\QTW.INI -->25/09/2006 03:55:26 p.m. C:\WINDOWS\Lecture GS.ini -->25/09/2006 03:49:01 p.m. C:\WINDOWS\bdoscandel.exe |25/05/2006 01:22:06 C:\WINDOWS\IsUn040a.exe |21/02/2004 20:51:20 C:\WINDOWS\IsUn040c.exe |17/01/2006 13:20:42 C:\WINDOWS\IsUninst.exe |21/02/2004 20:49:39 C:\WINDOWS\PLAY32.EXE |26/08/1996 02:12:00 C:\WINDOWS\QT32INST.EXE |26/08/1996 02:12:00 C:\WINDOWS\QTW32DEL.EXE |26/08/1996 02:12:00 C:\WINDOWS\slrundll.exe |14/02/2003 04:29:05 C:\WINDOWS\twunk_16.exe |24/08/2001 11:00:00 C:\WINDOWS\twunk_32.exe |24/08/2001 11:00:00 C:\WINDOWS\unin040c.exe |13/03/2006 09:36:15 C:\WINDOWS\uninst.exe |22/09/2004 13:49:41 C:\WINDOWS\UninstFrankSchool.exe |22/09/2006 08:38:12 C:\WINDOWS\VIEW32.EXE |26/08/1996 02:12:00 C:\WINDOWS\snymsico.dll |16/02/2006 07:59:52 C:\WINDOWS\twain.dll |24/08/2001 11:00:00 C:\WINDOWS\twain_32.dll |24/08/2001 11:00:00 C:\WINDOWS\system32\append.exe |24/08/2001 11:00:00 C:\WINDOWS\system32\aswBoot.exe |20/02/2007 11:28:38 C:\WINDOWS\system32\debug.exe |24/08/2001 11:00:00 C:\WINDOWS\system32\DivXsm.exe |09/08/2005 17:13:59 C:\WINDOWS\system32\dosx.exe |24/08/2001 11:00:00 C:\WINDOWS\system32\dvdplay.exe |22/08/2001 17:15:30 C:\WINDOWS\system32\edlin.exe |24/08/2001 11:00:00 C:\WINDOWS\system32\exe2bin.exe |24/08/2001 11:00:00 C:\WINDOWS\system32\fastopen.exe |24/08/2001 11:00:00 C:\WINDOWS\system32\java.exe |24/10/2005 12:37:03 C:\WINDOWS\system32\javaw.exe |24/10/2005 12:37:03 C:\WINDOWS\system32\javaws.exe |24/10/2005 12:37:03 C:\WINDOWS\system32\LEXBCES.EXE |25/02/2003 00:52:00 C:\WINDOWS\system32\LEXPPS.EXE |25/02/2003 00:50:00 C:\WINDOWS\system32\mem.exe |24/08/2001 11:00:00 C:\WINDOWS\system32\mscdexnt.exe |24/08/2001 11:00:00 C:\WINDOWS\system32\nlsfunc.exe |24/08/2001 11:00:00 C:\WINDOWS\system32\nw16.exe |24/08/2001 11:00:00 C:\WINDOWS\system32\pctspk.exe |04/10/2001 09:48:08 C:\WINDOWS\system32\ptuninst.exe |21/02/2004 20:50:45 C:\WINDOWS\system32\pxcpya64.exe |20/09/2005 15:02:09 C:\WINDOWS\system32\pxcpyi64.exe |20/09/2005 15:02:09 C:\WINDOWS\system32\pxhpinst.exe |20/09/2005 15:02:09 C:\WINDOWS\system32\pxinsa64.exe |20/09/2005 15:02:09 C:\WINDOWS\system32\pxinsi64.exe |20/09/2005 15:02:09 C:\WINDOWS\system32\redir.exe |28/08/2002 20:24:18 C:\WINDOWS\system32\S3uninst.exe |21/02/2004 20:51:33 C:\WINDOWS\system32\setver.exe |24/08/2001 11:00:00 C:\WINDOWS\system32\share.exe |24/08/2001 11:00:00 C:\WINDOWS\system32\slrundll.exe |14/02/2003 04:29:08 C:\WINDOWS\system32\slserv.exe |14/02/2003 04:29:08 C:\WINDOWS\system32\usrmlnka.exe |22/08/2001 17:15:42 C:\WINDOWS\system32\usrprbda.exe |22/08/2001 17:15:42 C:\WINDOWS\system32\usrshuta.exe |22/08/2001 17:15:42 C:\WINDOWS\system32\vwipxspx.exe |24/08/2001 11:00:00 C:\WINDOWS\system32\amstream.dll |24/08/2001 11:00:00 C:\WINDOWS\system32\ati2cqag.dll |14/02/2003 04:29:14 C:\WINDOWS\system32\ati2dvaa.dll |14/02/2003 04:29:14 C:\WINDOWS\system32\ati2dvag.dll |14/02/2003 04:29:14 C:\WINDOWS\system32\ati3d1ag.dll |14/02/2003 04:29:13 C:\WINDOWS\system32\ati3duag.dll |14/02/2003 04:29:13 C:\WINDOWS\system32\ativtmxx.dll |14/02/2003 04:29:13 C:\WINDOWS\system32\ativvaxx.dll |14/02/2003 04:29:13 C:\WINDOWS\system32\atmfd.dll |24/08/2001 11:00:00 C:\WINDOWS\system32\atmlib.dll |24/08/2001 11:00:00 C:\WINDOWS\system32\CDDBControl.dll |16/02/2006 07:59:18 C:\WINDOWS\system32\CddbLangES.dll |16/02/2006 07:59:18 C:\WINDOWS\system32\CDDBUI.dll |16/02/2006 07:59:18 C:\WINDOWS\system32\CMGR32.DLL |26/08/1996 02:12:00 C:\WINDOWS\system32\cncs32.dll |04/10/2005 14:28:50 C:\WINDOWS\system32\compatui.dll |09/09/2002 12:50:28 C:\WINDOWS\system32\dgrpsetu.dll |21/02/2004 14:32:35 C:\WINDOWS\system32\dgsetup.dll |21/02/2004 14:32:35 C:\WINDOWS\system32\DivX.dll |09/08/2005 17:13:59 C:\WINDOWS\system32\divx_xx07.dll |09/08/2005 17:13:52 C:\WINDOWS\system32\divx_xx0c.dll |09/08/2005 17:13:51 C:\WINDOWS\system32\divx_xx11.dll |09/08/2005 17:13:51 C:\WINDOWS\system32\dpl100.dll |09/08/2005 17:12:28 C:\WINDOWS\system32\dpu11.dll |09/08/2005 17:12:27 C:\WINDOWS\system32\dpuGUI11.dll |09/08/2005 17:12:28 C:\WINDOWS\system32\dpus11.dll |09/08/2005 17:12:27 C:\WINDOWS\system32\dpv11.dll |09/08/2005 17:12:27 C:\WINDOWS\system32\dtu100.dll |09/08/2005 17:12:28 C:\WINDOWS\system32\encdec.dll |09/09/2002 12:50:34 C:\WINDOWS\system32\EqnClass.Dll |21/02/2004 14:32:35 C:\WINDOWS\system32\HNDLR32.DLL |26/08/1996 02:12:00 C:\WINDOWS\system32\hsfcisp2.dll |14/02/2003 04:29:11 C:\WINDOWS\system32\hticons.dll |21/02/2004 20:39:09 C:\WINDOWS\system32\hypertrm.dll |21/02/2004 20:39:09 C:\WINDOWS\system32\iccvid.dll |24/08/2001 11:00:00 C:\WINDOWS\system32\ieencode.dll |14/02/2003 04:29:11 C:\WINDOWS\system32\ir32_32.dll |24/08/2001 11:00:00 C:\WINDOWS\system32\ir41_qc.dll |14/02/2003 04:29:11 C:\WINDOWS\system32\ir41_qcx.dll |14/02/2003 04:29:11 C:\WINDOWS\system32\ir50_32.dll |14/02/2003 04:29:11 C:\WINDOWS\system32\ir50_qc.dll |14/02/2003 04:29:11 C:\WINDOWS\system32\ir50_qcx.dll |14/02/2003 04:29:11 C:\WINDOWS\system32\isrdbg32.dll |21/02/2004 20:40:58 C:\WINDOWS\system32\jgaw400.dll |24/08/2001 11:00:00 C:\WINDOWS\system32\jgdw400.dll |24/08/2001 11:00:00 C:\WINDOWS\system32\jgmd400.dll |24/08/2001 11:00:00 C:\WINDOWS\system32\jgpl400.dll |24/08/2001 11:00:00 C:\WINDOWS\system32\jgsd400.dll |24/08/2001 11:00:00 C:\WINDOWS\system32\jgsh400.dll |24/08/2001 11:00:00 C:\WINDOWS\system32\LEX2KUSB.DLL |25/02/2003 00:54:00 C:\WINDOWS\system32\LEXBCE.DLL |25/02/2003 00:51:00 C:\WINDOWS\system32\lexlmpm.dll |25/02/2003 01:10:00 C:\WINDOWS\system32\LEXP2P32.DLL |25/02/2003 00:49:00 C:\WINDOWS\system32\libeay32.dll |09/08/2005 17:13:31 C:\WINDOWS\system32\lxbcpwr.dll |05/03/2003 12:06:00 C:\WINDOWS\system32\mdmxsdk.dll |14/02/2003 04:29:10 C:\WINDOWS\system32\mdwmdmsp.dll |22/08/2001 17:15:14 C:\WINDOWS\system32\msdmo.dll |24/08/2001 11:00:00 C:\WINDOWS\system32\msencode.dll |24/08/2001 11:00:00 C:\WINDOWS\system32\mtxparhd.dll |14/02/2003 04:29:10 C:\WINDOWS\system32\nbicdnt.dll |21/02/2004 20:51:32 C:\WINDOWS\system32\nv4_disp.dll |14/02/2003 04:29:09 C:\WINDOWS\system32\paqsp.dll |22/08/2001 17:15:20 C:\WINDOWS\system32\ptsetup.dll |21/02/2004 20:50:45 C:\WINDOWS\system32\px.dll |20/09/2005 15:02:09 C:\WINDOWS\system32\pxdrv.dll |20/09/2005 15:02:09 C:\WINDOWS\system32\pxmas.dll |20/09/2005 15:02:09 C:\WINDOWS\system32\pxwave.dll |20/09/2005 15:02:09 C:\WINDOWS\system32\pxwma.dll |20/09/2005 15:02:09 C:\WINDOWS\system32\qedwipes.dll |24/08/2001 11:00:00 C:\WINDOWS\system32\qt-dx331.dll |09/08/2005 17:12:28 C:\WINDOWS\system32\QTIM32.DLL |26/08/1996 02:12:00 C:\WINDOWS\system32\QTOLE32.DLL |26/08/1996 02:12:00 C:\WINDOWS\system32\QTWMCI32.DLL |26/08/1996 02:12:00 C:\WINDOWS\system32\S3Disply.dll |21/02/2004 20:51:32 C:\WINDOWS\system32\S3Gamma2.dll |21/02/2004 20:51:33 C:\WINDOWS\system32\S3gNB.dll |21/02/2004 20:51:32 C:\WINDOWS\system32\S3Info2.dll |21/02/2004 20:51:33 C:\WINDOWS\system32\S3Ovrlay.dll |21/02/2004 20:51:34 C:\WINDOWS\system32\sbe.dll |09/09/2002 12:51:08 C:\WINDOWS\system32\scriptpw.dll |24/08/2001 11:00:00 C:\WINDOWS\system32\SIntf16.dll |08/09/2006 07:49:25 C:\WINDOWS\system32\SIntf32.dll |08/09/2006 07:49:25 C:\WINDOWS\system32\SIntfNT.dll |08/09/2006 07:49:25 C:\WINDOWS\system32\slbcsp.dll |24/08/2001 11:00:00 C:\WINDOWS\system32\slbiop.dll |24/08/2001 11:00:00 C:\WINDOWS\system32\slbrccsp.dll |24/08/2001 11:00:00 C:\WINDOWS\system32\slcoinst.dll |14/02/2003 04:29:08 C:\WINDOWS\system32\slextspk.dll |14/02/2003 04:29:08 C:\WINDOWS\system32\slgen.dll |14/02/2003 04:29:08 C:\WINDOWS\system32\spnike.dll |22/08/2001 17:15:22 C:\WINDOWS\system32\sprio600.dll |22/08/2001 17:15:22 C:\WINDOWS\system32\sprio800.dll |22/08/2001 17:15:22 C:\WINDOWS\system32\spxcoins.dll |21/02/2004 14:32:35 C:\WINDOWS\system32\ssleay32.dll |09/08/2005 17:13:31 C:\WINDOWS\system32\TDI-SonyOMG.dll |24/10/2001 16:00:40 C:\WINDOWS\system32\tsd32.dll |24/08/2001 11:00:00 C:\WINDOWS\system32\UnAudioNT.dll |21/02/2004 20:51:22 C:\WINDOWS\system32\usrcntra.dll |22/08/2001 17:15:24 C:\WINDOWS\system32\usrcoina.dll |22/08/2001 17:15:24 C:\WINDOWS\system32\usrdpa.dll |22/08/2001 17:15:24 C:\WINDOWS\system32\usrdtea.dll |22/08/2001 17:15:24 C:\WINDOWS\system32\usrfaxa.dll |22/08/2001 17:15:24 C:\WINDOWS\system32\usrlbva.dll |22/08/2001 17:15:24 C:\WINDOWS\system32\usrrtosa.dll |22/08/2001 17:15:24 C:\WINDOWS\system32\usrsdpia.dll |22/08/2001 17:15:24 C:\WINDOWS\system32\usrsvpia.dll |22/08/2001 17:15:24 C:\WINDOWS\system32\usrv42a.dll |22/08/2001 17:15:24 C:\WINDOWS\system32\usrv80a.dll |22/08/2001 17:15:24 C:\WINDOWS\system32\usrvoica.dll |22/08/2001 17:15:24 C:\WINDOWS\system32\usrvpa.dll |22/08/2001 17:15:24 C:\WINDOWS\system32\vusetup.dll |21/02/2004 20:52:25 C:\WINDOWS\system32\vxblock.dll |20/09/2005 15:02:09 C:\WINDOWS\system32\win87em.dll |24/08/2001 11:00:00 El volumen de la unidad C no tiene etiqueta. El número de serie del volumen es: A8BE-6BEE Directorio de C:\WINDOWS\system32 19/08/2004 03:42 p.m. 6.144 csrss.exe 1 archivos 6.144 bytes 0 dirs 4.840.452.096 bytes libres Contenu de Downloaded Program Files El volumen de la unidad C no tiene etiqueta. El número de serie del volumen es: A8BE-6BEE Directorio de C:\WINDOWS\Downloaded Program Files 22/02/2007 07:55 a.m. <DIR> . 22/02/2007 07:55 a.m. <DIR> .. 07/12/2004 05:07 p.m. 32 bdcore.dll 25/05/2006 01:21 a.m. 118.784 bdupd.dll 21/02/2004 08:42 p.m. 65 desktop.ini 14/10/1997 06:52 p.m. 697 DirectAnimation Java Classes.osd 26/08/2005 06:39 p.m. 379 ImageUploader3.inf 26/08/2005 06:39 p.m. 1.893.912 ImageUploader3.ocx 25/05/2006 01:21 a.m. 53.248 ipsupd.dll 16/03/2005 12:34 p.m. 7.407 lang.ini 07/12/2004 05:07 p.m. 32 libfn.dll 14/03/2005 02:38 p.m. 126 live.ini 20/01/2000 03:25 p.m. 1.162 Microsoft XML Parser for Java.osd 01/06/2006 02:57 a.m. 1.331 oscan8.inf 01/06/2006 02:54 a.m. 471.040 oscan8.ocx 31/05/2006 04:15 a.m. 10 oscan81.ocx_x 14/03/2005 02:58 p.m. 7.073 scanoptions.tsi 08/12/2003 01:58 p.m. 3.759 swflash.inf 07/11/2004 03:29 p.m. 1.206 yinst.inf 07/11/2004 03:29 p.m. 173.168 yinsthelper.dll 18 archivos 2.733.431 bytes Total de archivos en la lista: 18 archivos 2.733.431 bytes 2 dirs 4.840.448.000 bytes libres Recherche de rootkit! (Merci S!Ri) Recherche d'infections connues Liste des programmes installes 1000 mots pour apprendre à lire V 2.0 Adobe Reader 7.0.5 - Español Apple Software Update Archiveur WinRAR Audacity 1.2.4 AutoUpdate AVG Anti-Spyware 7.5 Azureus Barra Yahoo! con bloqueador de ventanas emergentes CCleaner (remove only) CDex extraction audio DivX DivX Player eMule EuroThink Lune Franklin va à l'école Google Gmail Notifier Google Toolbar for Internet Explorer HijackThis 1.99.1 HSP56 MR Drivers J2SE Runtime Environment 5.0 Update 5 Lecto Lexmark Z600 Series Messenger Plus! 3 Microsoft Office Professional Edition 2003 Microsoft Office Standard Edition 2003 OpenMG Limited Patch 4.1-05-14-24-01 OpenMG Secure Module 4.1.00 OpenMG Secure Module 4.1.00 Opera 9.10 Pack Longhorn Inspirat 1.0 ProSavageDDR and Utilities QuickTime for Windows (32-bit) Radio Fr Solo 1.8 Revisión de Windows XP - KB887472 S3Display S3Gamma2 S3Info2 S3Overlay Spyware Terminator Tibili VIA Audio Driver Setup Program VideoLAN VLC media player 0.8.5 WebFldrs XP Winamp (remove only) Windows Live Messenger Windows Live Sign-in Assistant Windows XP Service Pack 2 Yahoo! Install Manager Yahoo! Toolbar El volumen de la unidad C no tiene etiqueta. El número de serie del volumen es: A8BE-6BEE Directorio de C:\Archivos de programa 22/02/2007 05:41 p.m. <DIR> . 22/02/2007 05:41 p.m. <DIR> .. 30/01/2006 10:48 a.m. 2.855.080 ad-aware-se-personal_ad-aware_se_personal_1.6_anglais_12797.exe 30/01/2006 10:49 a.m. 468.577 ad-aware-se-personal_ad-aware_se_personal_langage_pack_francais_12797.exe 25/01/2006 01:39 p.m. <DIR> Adobe 25/09/2006 02:33 p.m. <DIR> Apple Software Update 22/02/2007 05:43 p.m. <DIR> Archivos comunes 30/01/2006 10:44 a.m. 385.648 aswclnr.exe 10/10/2006 11:50 a.m. <DIR> Audacity 05/10/2006 11:49 a.m. 2.327.233 audacity-win-1.2.4b.exe 01/07/2005 01:24 p.m. 12.298.536 avg70free_323a539.exe 26/10/2006 01:16 p.m. <DIR> Azureus 25/10/2006 11:36 a.m. <DIR> BitTorrent 02/10/2006 01:28 p.m. 6.344.395 BitTorrent-4.22.4.exe 26/01/2007 02:26 p.m. <DIR> CCleaner 06/12/2006 07:53 a.m. <DIR> CDex_170b2 21/02/2004 08:39 p.m. <DIR> ComPlus Applications 20/10/2005 12:15 p.m. <DIR> DivX 23/02/2007 03:57 a.m. <DIR> eMule 31/01/2006 11:38 a.m. 2.606.057 eMule0.47a.zip 30/08/2006 12:00 p.m. <DIR> Google 14/12/2006 03:50 p.m. <DIR> Graphex3 22/02/2007 05:42 p.m. <DIR> Grisoft 24/10/2005 01:01 p.m. <DIR> Home 13/12/2005 02:00 p.m. 294.595 imageenhance.zip 25/09/2006 02:34 p.m. <DIR> Internet Explorer 24/10/2005 12:37 p.m. <DIR> Java 10/10/2006 11:49 a.m. 525.012 lame3.97.zip 22/02/2003 04:41 a.m. <DIR> Messenger 24/04/2006 08:40 a.m. <DIR> MessengerPlus! 3 21/02/2004 08:43 p.m. <DIR> microsoft frontpage 06/02/2007 11:33 a.m. <DIR> Microsoft Office 09/03/2004 11:16 a.m. <DIR> Microsoft Visual Studio 27/11/2006 02:06 p.m. <DIR> Microsoft Works 14/02/2003 04:29 a.m. <DIR> Movie Maker 21/02/2004 08:39 p.m. <DIR> MSN 21/02/2004 08:39 p.m. <DIR> MSN Gaming Zone 06/02/2007 10:29 a.m. <DIR> MSN Messenger 14/02/2003 04:26 a.m. <DIR> NetMeeting 01/02/2007 04:26 p.m. <DIR> Opera 23/08/2005 09:51 a.m. 3.831.580 opera_opera_8.01_sans_java_francais_9491.exe 23/08/2005 01:19 p.m. <DIR> Outlook Express 27/11/2006 01:28 p.m. <DIR> QuickTime 25/09/2006 02:20 p.m. 19.666.504 QuickTimeInstaller.exe 31/05/2006 01:39 p.m. <DIR> Radio Fr Solo 23/08/2005 10:06 a.m. 1.775.108 radio-fr-amp_1.8_solo_francais_11078.exe 21/02/2004 08:51 p.m. <DIR> S3Inc 21/02/2004 08:41 p.m. <DIR> Servicios en línea 22/02/2007 04:38 p.m. <DIR> Spyware Terminator 23/08/2005 12:36 p.m. <DIR> TClockEx 21/02/2004 08:51 p.m. <DIR> VIA Technologies, Inc 10/10/2005 10:52 a.m. <DIR> VideoLAN 02/10/2006 02:50 p.m. <DIR> Webteh 31/10/2005 12:07 p.m. <DIR> Winamp 20/09/2005 02:54 p.m. 6.224.432 winamp51_full_emusic-7plus.exe 18/09/2006 02:34 p.m. <DIR> Windows Live Safety Center 23/08/2005 01:19 p.m. <DIR> Windows Media Player 14/02/2003 04:25 a.m. <DIR> Windows NT 13/10/2005 12:15 p.m. <DIR> WinRAR 13/10/2005 12:14 p.m. 1.106.812 wrar350fr.exe 21/02/2004 08:43 p.m. <DIR> xerox 26/01/2007 02:25 p.m. <DIR> Yahoo! 14 archivos 60.709.569 bytes 48 dirs 4.840.443.904 bytes libres El volumen de la unidad C no tiene etiqueta. El número de serie del volumen es: A8BE-6BEE Directorio de C:\ 11/11/2001 12:00 a.m. 68.096 diff.exe 27/08/2006 02:10 p.m. 103.424 grep.exe 21/09/2006 07:49 a.m. 359.112 LimeWireWin.exe 04/01/1980 08:28 a.m. 356.352 putty.exe 4 archivos 886.984 bytes 0 dirs 4.840.443.904 bytes libres c:\Documents and Settings\12\.limewire\.NetworkShare\LimeWireWin4.12.6-nopack2.exe c:\Documents and Settings\12\.limewire\.NetworkShare\LimeWireWinInstaller.exe c:\Documents and Settings\12\Configuración local\Temp\~118.exe c:\Documents and Settings\12\Configuración local\Temp\~119.exe c:\Documents and Settings\12\Configuración local\Temp\~11A.exe c:\Documents and Settings\12\Configuración local\Temp\~11B.exe c:\Documents and Settings\12\Configuración local\Temp\~1C.exe c:\Documents and Settings\12\Configuración local\Temp\~1D.exe c:\Documents and Settings\12\Configuración local\Temp\~1F.exe c:\Documents and Settings\12\Configuración local\Temp\~20.exe c:\Documents and Settings\12\Configuración local\Temp\~28.exe c:\Documents and Settings\12\Configuración local\Temp\~29.exe c:\Documents and Settings\12\Configuración local\Temp\~2A.exe c:\Documents and Settings\12\Configuración local\Temp\~2C.exe c:\Documents and Settings\12\Configuración local\Temp\~2D.exe c:\Documents and Settings\12\Configuración local\Temp\~2F.exe c:\Documents and Settings\12\Configuración local\Temp\~30.exe c:\Documents and Settings\12\Configuración local\Temp\~32.exe c:\Documents and Settings\12\Configuración local\Temp\~33.exe c:\Documents and Settings\12\Configuración local\Temp\~35.exe c:\Documents and Settings\12\Configuración local\Temp\~3C.exe c:\Documents and Settings\12\Configuración local\Temp\~3D.exe c:\Documents and Settings\12\Configuración local\Temp\~3F.exe c:\Documents and Settings\12\Configuración local\Temp\~40.exe c:\Documents and Settings\12\Configuración local\Temp\~43.exe c:\Documents and Settings\12\Configuración local\Temp\~44.exe c:\Documents and Settings\12\Configuración local\Temp\~45.exe c:\Documents and Settings\12\Configuración local\Temp\~8B.exe c:\Documents and Settings\12\Configuración local\Temp\~8C.exe c:\Documents and Settings\12\Configuración local\Temp\~8E.exe c:\Documents and Settings\12\Configuración local\Temp\~8F.exe c:\Documents and Settings\12\Configuración local\Temp\~91.exe c:\Documents and Settings\12\Configuración local\Temp\~92.exe c:\Documents and Settings\12\Configuración local\Temp\~94.exe c:\Documents and Settings\12\Configuración local\Temp\~95.exe c:\Documents and Settings\12\Configuración local\Temp\~98.exe c:\Documents and Settings\12\Configuración local\Temp\~99.exe c:\Documents and Settings\12\Configuración local\Temp\~9A.exe c:\Documents and Settings\12\Configuración local\Temp\~9B.exe c:\Documents and Settings\12\Configuración local\Temp\~9E.exe c:\Documents and Settings\12\Configuración local\Temp\~9F.exe c:\Documents and Settings\12\Configuración local\Temp\~A0.exe c:\Documents and Settings\12\Configuración local\Temp\~A1.exe c:\Documents and Settings\12\Configuración local\Temp\~F2.exe c:\Documents and Settings\12\Configuración local\Temp\~F3.exe c:\Documents and Settings\12\Configuración local\Temp\~F5.exe c:\Documents and Settings\12\Configuración local\Temp\~F6.exe c:\Documents and Settings\12\Configuración local\Temp\AutoDL%3FBundleId=10878_b197838c.exe c:\Documents and Settings\12\Configuración local\Temp\Rar$EX00.219\RegSeeker.exe c:\Documents and Settings\12\Configuración local\Temp\Rar$EX00.453\RootkitRevealer.exe c:\Documents and Settings\12\Datos de programa\Microsoft\Installer\{750B9AD1-4C63-4143-94C5-6FB304199BAD}\ARPPRODUCTICON.exe c:\Documents and Settings\12\Datos de programa\U3\temp\cleanup.exe c:\Documents and Settings\12\Escritorio\antivir_workstation_win7u_en_h.exe c:\Documents and Settings\12\Escritorio\aswclear.exe c:\Documents and Settings\12\Escritorio\avg-anti-spyware_avg_anti-spyware_francais_27645.exe c:\Documents and Settings\12\Escritorio\avg-antivirus_avg_antivirus_7.5.441_version_gratuite_anglais_10997.exe c:\Documents and Settings\12\Escritorio\bitdefender_free_edition_bitdefender_free_edition_7.2_francais_11128.exe c:\Documents and Settings\12\Escritorio\blbeta.exe c:\Documents and Settings\12\Escritorio\HijackThis.exe c:\Documents and Settings\12\Escritorio\ImageEnhance.exe c:\Documents and Settings\12\Escritorio\internet-explorer-7-0_internet_explorer_7.0_finale_francais_18706.exe c:\Documents and Settings\12\Escritorio\kasp1.8.180_anti-hackerfr.exe c:\Documents and Settings\12\Escritorio\kaspersky-antivirus_kaspersky_antivirus_6.0.2.614_francais_10479.exe c:\Documents and Settings\12\Escritorio\setupfre.exe c:\Documents and Settings\12\Escritorio\spyware-terminator_spyware_terminator_1.8.1.951_francais_28354.exe c:\Documents and Settings\12\Escritorio\Diaghelp\diff.exe c:\Documents and Settings\12\Escritorio\Diaghelp\FilesInfoCmd.exe c:\Documents and Settings\12\Escritorio\Diaghelp\Fport.exe c:\Documents and Settings\12\Escritorio\Diaghelp\grep.exe c:\Documents and Settings\12\Escritorio\Diaghelp\LFiles.exe c:\Documents and Settings\12\Escritorio\Diaghelp\LISTDLLS.exe c:\Documents and Settings\12\Escritorio\Diaghelp\pslist.exe c:\Documents and Settings\12\Escritorio\Diaghelp\streams.exe c:\Documents and Settings\12\Escritorio\Diaghelp\swreg.exe c:\Documents and Settings\12\Escritorio\Rootkit\RootkitRevealer.exe c:\Documents and Settings\All Users\Datos de programa\Spyware Terminator\sp_rsdel.exe Liste des drivers... < Service Pack 2 2 23 2007 10:58:44.500 < Controlador cargado \WINDOWS\system32\ntoskrnl.exe < Controlador cargado \WINDOWS\system32\hal.dll < Controlador cargado \WINDOWS\system32\KDCOM.DLL < Controlador cargado \WINDOWS\system32\BOOTVID.dll < Controlador cargado ACPI.sys < Controlador cargado \WINDOWS\System32\DRIVERS\WMILIB.SYS < Controlador cargado pci.sys < Controlador cargado isapnp.sys < Controlador cargado viaide.sys < Controlador cargado \WINDOWS\System32\DRIVERS\PCIIDEX.SYS < Controlador cargado MountMgr.sys < Controlador cargado ftdisk.sys < Controlador cargado dmload.sys < Controlador cargado dmio.sys < Controlador cargado PartMgr.sys < Controlador cargado VolSnap.sys < Controlador cargado atapi.sys < Controlador cargado disk.sys < Controlador cargado \WINDOWS\System32\DRIVERS\CLASSPNP.SYS < Controlador cargado fltmgr.sys < Controlador cargado PxHelp20.sys < Controlador cargado KSecDD.sys < Controlador cargado Ntfs.sys < Controlador cargado NDIS.sys < Controlador cargado vvoice.sys < Controlador cargado vpctcom.sys < Controlador cargado vmodem.sys < Controlador cargado viaagp.sys < Controlador cargado viaagp1.sys < Controlador cargado Mup.sys < Controlador cargado \SystemRoot\System32\DRIVERS\intelppm.sys < Controlador cargado \SystemRoot\System32\DRIVERS\s3gnbm.sys < Controlador cargado \SystemRoot\System32\Drivers\vulfnth.sys < Controlador cargado \SystemRoot\System32\DRIVERS\usbuhci.sys < Controlador cargado \SystemRoot\System32\DRIVERS\usbehci.sys < Controlador cargado \SystemRoot\System32\DRIVERS\cdrom.sys < Controlador cargado \SystemRoot\System32\DRIVERS\redbook.sys < Controlador cargado \SystemRoot\system32\drivers\viaudio.sys < Controlador cargado \SystemRoot\System32\DRIVERS\ptserial.sys < Controlador cargado \SystemRoot\System32\Drivers\Modem.SYS < Controlador cargado \SystemRoot\System32\DRIVERS\fetnd5b.sys < Controlador cargado \SystemRoot\System32\DRIVERS\fdc.sys < Controlador cargado \SystemRoot\System32\DRIVERS\serial.sys < Controlador cargado \SystemRoot\System32\DRIVERS\serenum.sys < Controlador cargado \SystemRoot\System32\DRIVERS\parport.sys < Controlador cargado \SystemRoot\System32\DRIVERS\i8042prt.sys < Controlador cargado \SystemRoot\System32\DRIVERS\mouclass.sys < Controlador cargado \SystemRoot\System32\DRIVERS\kbdclass.sys < Controlador cargado \SystemRoot\system32\drivers\msmpu401.sys < Controlador cargado \SystemRoot\System32\DRIVERS\gameenum.sys < Controlador cargado \SystemRoot\System32\DRIVERS\audstub.sys < Controlador cargado \SystemRoot\System32\DRIVERS\rasl2tp.sys < Controlador cargado \SystemRoot\System32\DRIVERS\ndistapi.sys < Controlador cargado \SystemRoot\System32\DRIVERS\ndiswan.sys < Controlador cargado \SystemRoot\System32\DRIVERS\raspppoe.sys < Controlador cargado \SystemRoot\System32\DRIVERS\raspptp.sys < Controlador cargado \SystemRoot\System32\DRIVERS\ptilink.sys < Controlador cargado \SystemRoot\System32\DRIVERS\raspti.sys < Controlador cargado \SystemRoot\System32\DRIVERS\rdpdr.sys < Controlador cargado \SystemRoot\System32\DRIVERS\termdd.sys < Controlador cargado \SystemRoot\System32\DRIVERS\swenum.sys < Controlador cargado \SystemRoot\System32\DRIVERS\update.sys < Controlador cargado \SystemRoot\System32\DRIVERS\mssmbios.sys < Controlador cargado \SystemRoot\System32\Drivers\NDProxy.SYS < No se ha cargado el controlador \SystemRoot\System32\Drivers\NDProxy.SYS < Controlador cargado \SystemRoot\System32\Drivers\vulfntr.sys < Controlador cargado \SystemRoot\System32\DRIVERS\usbhub.sys < Controlador cargado \SystemRoot\system32\drivers\MODEMCSA.sys < Controlador cargado \SystemRoot\System32\DRIVERS\flpydisk.sys < No se ha cargado el controlador \SystemRoot\System32\Drivers\lbrtfdc.SYS < No se ha cargado el controlador \SystemRoot\System32\Drivers\Sfloppy.SYS < No se ha cargado el controlador \SystemRoot\System32\Drivers\i2omgmt.SYS < No se ha cargado el controlador \SystemRoot\System32\Drivers\Changer.SYS < No se ha cargado el controlador \SystemRoot\System32\Drivers\Cdaudio.SYS < Controlador cargado \SystemRoot\System32\Drivers\Fs_Rec.SYS < Controlador cargado \SystemRoot\System32\Drivers\Null.SYS < Controlador cargado \SystemRoot\System32\Drivers\Beep.SYS < Controlador cargado \SystemRoot\System32\DRIVERS\AvgAsCln.sys < Controlador cargado \SystemRoot\System32\drivers\vga.sys < Controlador cargado \SystemRoot\System32\Drivers\mnmdd.SYS < Controlador cargado \SystemRoot\System32\DRIVERS\RDPCDD.sys < Controlador cargado \SystemRoot\System32\Drivers\Msfs.SYS < Controlador cargado \SystemRoot\System32\Drivers\Npfs.SYS < Controlador cargado \SystemRoot\System32\DRIVERS\rasacd.sys < Controlador cargado \SystemRoot\System32\DRIVERS\msgpc.sys < Controlador cargado \SystemRoot\System32\DRIVERS\ipsec.sys < Controlador cargado \SystemRoot\System32\DRIVERS\tcpip.sys < Controlador cargado \SystemRoot\System32\DRIVERS\netbt.sys < Controlador cargado \SystemRoot\System32\DRIVERS\wanarp.sys < Controlador cargado \SystemRoot\System32\drivers\afd.sys < Controlador cargado \SystemRoot\System32\DRIVERS\netbios.sys < No se ha cargado el controlador \SystemRoot\System32\DRIVERS\processr.sys < No se ha cargado el controlador \SystemRoot\System32\Drivers\PCIDump.SYS < Controlador cargado \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys < Controlador cargado \SystemRoot\System32\DRIVERS\rdbss.sys < Controlador cargado \SystemRoot\System32\DRIVERS\mrxsmb.sys < No se ha cargado el controlador \SystemRoot\System32\DRIVERS\imapi.sys < Controlador cargado \SystemRoot\System32\Drivers\Fips.SYS < Controlador cargado \SystemRoot\system32\DRIVERS\usbprint.sys < Controlador cargado \SystemRoot\System32\Drivers\Cdfs.SYS < No se ha cargado el controlador \SystemRoot\System32\DRIVERS\rdbss.sys < No se ha cargado el controlador \SystemRoot\System32\DRIVERS\mrxsmb.sys < Controlador cargado \SystemRoot\system32\drivers\wdmaud.sys < Controlador cargado \SystemRoot\system32\drivers\sysaudio.sys < Controlador cargado \SystemRoot\system32\drivers\splitter.sys < Controlador cargado \SystemRoot\system32\drivers\aec.sys < Controlador cargado \SystemRoot\system32\drivers\swmidi.sys < Controlador cargado \SystemRoot\system32\drivers\DMusic.sys < Controlador cargado \SystemRoot\system32\drivers\kmixer.sys < Controlador cargado \SystemRoot\system32\drivers\drmkaud.sys Je n'ai plus le rapport de Bitdefender Et maintenant?
-
Bonjour, Voila mon pb: Je ne peux plus installer d'antivirus. Je sais que l'ordi est infecté mais je ne m'en sors pas. J'ai utilisé 10 000 trucs (AVAST, aVG, Kaspersky evaluation, CCLEENER, Regsseker, blbeta ...) Mais rien à faire! Je ne peux pas démarrer en mode sans échec non plus. Et je précise c'est l'ordi du boulot avec contrôle d'internet donc je ne peux pas aller sur toutes les pages tellement cette protection est mal configurée! Alors voilà le fichier log de HijackThis : Logfile of HijackThis v1.99.1 Scan saved at 05:20:53 p.m., on 22/02/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\LEXBCES.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\LEXPPS.EXE C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\pctspk.exe C:\Archivos de programa\Winamp\winampa.exe C:\Archivos de programa\Java\jre1.5.0_05\bin\jusched.exe C:\Archivos de programa\MessengerPlus! 3\MsgPlus.exe C:\Archivos de programa\Google\Gmail Notifier\gnotify.exe C:\WINDOWS\system32\ctfmon.exe C:\Archivos de programa\Archivos comunes\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\System32\svchost.exe C:\Archivos de programa\Opera\Opera.exe C:\Archivos de programa\Spyware Terminator\SpywareTerminator.exe C:\Archivos de programa\Spyware Terminator\SpywareTerminatorShield.exe C:\Archivos de programa\Spyware Terminator\sp_rsser.exe C:\Archivos de programa\Grisoft\AVG Anti-Spyware 7.5\avgas.exe C:\Documents and Settings\12\Escritorio\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 192.168.3.1:3128 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Vínculos O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Archivos de programa\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Archivos de programa\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\archivos de programa\google\googletoolbar2.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\archivos de programa\google\googletoolbar2.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Archivos de programa\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [PCTVOICE] pctspk.exe O4 - HKLM\..\Run: [WinampAgent] C:\Archivos de programa\Winamp\winampa.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Archivos de programa\Java\jre1.5.0_05\bin\jusched.exe O4 - HKLM\..\Run: [MessengerPlus3] "C:\Archivos de programa\MessengerPlus! 3\MsgPlus.exe" O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Archivos de programa\Google\Gmail Notifier\gnotify.exe O4 - HKLM\..\Run: [spywareTerminator] "C:\Archivos de programa\Spyware Terminator\SpywareTerminatorShield.exe" O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Archivos de programa\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - Global Startup: Inicio rápido de Adobe Reader.lnk = C:\Archivos de programa\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: &Search - http://kq.bar.need2find.com/KQ/menusearch.html?p=KQ O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmwordtrans.html O8 - Extra context menu item: E&xport to Microsoft Excel - res://E:\DOCUME~1\12\MISDOC~1\CDRIC~1\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\ARCHIV~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Pages liées - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\archivos de programa\google\GoogleToolbar1.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.5.0_05\bin\npjpi150_05.dll O9 - Extra 'Tools' menuitem: Consola de Sun Java - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Archivos de programa\Java\jre1.5.0_05\bin\npjpi150_05.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARCHIV~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe O15 - Trusted Zone: http://www.antivirus-france.com O15 - Trusted Zone: http://www.secuser.com O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/...nst_current.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.girafoto.fr/uploaders/ImageUploader3.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{96DEF815-EFFB-416A-82EA-8FB572DF068F}: NameServer = 192.168.3.1 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARCHIV~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\ARCHIV~1\MSNMES~1\MSGRAP~1.DLL O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE O23 - Service: MSCSPTISRV - Sony Corporation - C:\Archivos de programa\Archivos comunes\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: PACSPTISVR - Sony Corporation - C:\Archivos de programa\Archivos comunes\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Archivos de programa\Archivos comunes\Sony Shared\AVLib\SPTISRV.exe O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Archivos de programa\Spyware Terminator\sp_rsser.exe Que faire avec ça? Comment sortir de là? A oui, je peux tout de même lancer le scan en ligne de Bitdefender! Mais pas suffisant! Merci pour votre aide! à +