Craft

Deésolé pour mon temp de reponse, j'etait absent JE fait sa tout de suite et je poste le rapport

Me re-voici Malgrer l'analyse Kaspersky et tous t'es conseil que j'ai appliquer le jeu m'indique que j'ai toujours un virus :'( Kaspersky quand a lui n'a rien a detecté Voila les nouvelles

Merci pour ta reponse repide Pour spyhunter oui c'est moi qui la instalé ( on me la conseiller) j'ai suivi se que tu ma dit avec (coché et desinstalé) et suprimmer l'instalateur dans mes documents Malheuresement je ne c'est pas où se trouve le virus. Aucun anti virus la detecté mais juste le jeu mais il n'indique pas ou il se trouve :s JE suis en train de fair l'analyse Kaspersky et je voie se que sa donne je te tien au courant. Merci beaucoup PS: Desolé je suis pas très bon en orthographe

Voici pour DiagHelp DiagHelp version v1.1.2 - http://www.malekal.com excute le 09/07/2007 à 22:43:04,84 Liste des derniers fichies modifies/crees dans windir\system32 C:\WINDOWS\System32/drivers\hamachi.sys -->19/06/2007 14:39:28 C:\WINDOWS\System32/drivers\symlcbrd.sys -->19/06/2007 14:30:03 C:\WINDOWS\System32/drivers\NSDriver.sys -->04/06/2007 15:18:48 C:\WINDOWS\System32/drivers\AWRTRD.sys -->04/06/2007 15:17:02 C:\WINDOWS\System32/drivers\AWRTPD.sys -->04/06/2007 15:14:56 C:\WINDOWS\System32/drivers\sptd.sys -->13/05/2007 23:01:52 C:\WINDOWS\System32/drivers\alcxwdm.sys -->25/04/2007 16:20:48 C:\WINDOWS\System32\wpa.dbl -->07/07/2007 11:30:06 C:\WINDOWS\System32\perfh00C.dat -->01/07/2007 18:56:02 C:\WINDOWS\System32\perfh009.dat -->01/07/2007 18:56:02 C:\WINDOWS\System32\perfc00C.dat -->01/07/2007 18:56:02 C:\WINDOWS\System32\perfc009.dat -->01/07/2007 18:56:02 C:\WINDOWS\System32\PerfStringBackup.INI -->01/07/2007 18:56:01 C:\WINDOWS\System32\lhacm.acm -->24/06/2007 18:49:29 C:\WINDOWS\System32\CmdLineExt.dll -->19/06/2007 07:29:30 C:\WINDOWS\System32\d3d9caps.dat -->14/06/2007 20:32:16 C:\WINDOWS\System32\FNTCACHE.DAT -->18/05/2007 17:15:59 C:\WINDOWS\System32\rnaph.dll -->11/05/2007 08:18:05 C:\WINDOWS\System32\wups.dll -->16/04/2007 22:47:36 C:\WINDOWS\System32\wuaucpl.cpl.mui -->16/04/2007 22:47:26 C:\WINDOWS\System32\wuapi.dll.mui -->16/04/2007 22:46:54 C:\WINDOWS\System32\wuaueng.dll -->16/04/2007 22:45:54 C:\WINDOWS\System32\wuapi.dll -->16/04/2007 22:45:48 C:\WINDOWS\System32\wucltui.dll -->16/04/2007 22:45:42 C:\WINDOWS\System32\wuaueng.dll.mui -->16/04/2007 22:45:42 C:\WINDOWS\System32\wuaucpl.cpl -->16/04/2007 22:45:40 C:\WINDOWS\System32\wuweb.dll -->16/04/2007 22:45:36 C:\WINDOWS\System32\cdm.dll -->16/04/2007 22:45:28 C:\WINDOWS\System32\wups2.dll -->16/04/2007 22:45:20 C:\WINDOWS\System32\wuauclt.exe -->16/04/2007 22:45:20 C:\WINDOWS\System32\wucltui.dll.mui -->16/04/2007 22:45:06 C:\WINDOWS\System32\lsdelete.exe -->13/04/2007 15:19:52 C:\WINDOWS\WindowsUpdate.log -->09/07/2007 21:20:15 C:\WINDOWS\ntbtlog.txt -->09/07/2007 20:48:05 C:\WINDOWS\setupapi.log -->09/07/2007 19:16:03 C:\WINDOWS.log -->08/07/2007 23:59:42 C:\WINDOWS\bootstat.dat -->08/07/2007 23:59:18 C:\WINDOWS\SchedLgU.Txt -->08/07/2007 22:20:03 C:\WINDOWS\ModemLog_Smart Link 56K Voice Modem.txt -->08/07/2007 09:32:47 C:\WINDOWS\War3Unin.dat -->01/07/2007 22:25:31 C:\WINDOWS\DirectX.log -->01/07/2007 17:52:20 C:\WINDOWS\War3Unin.pif -->01/07/2007 15:27:14 C:\WINDOWS\War3Unin.exe -->01/07/2007 15:27:14 C:\WINDOWS\wmsetup.log -->27/06/2007 09:01:23 C:\WINDOWS\scunin.dat -->21/06/2007 15:31:56 C:\WINDOWS\ScUnin.pif -->21/06/2007 15:31:52 C:\WINDOWS\ScUnin.exe -->21/06/2007 15:31:51 Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est B49C-35C9 Répertoire de C:\WINDOWS\system 17/07/2002 16:22 4 672 wowpost.exe 1 fichier(s) 4 672 octets 0 Rép(s) 183 324 643 328 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est B49C-35C9 Répertoire de C:\WINDOWS\system32 19/08/2004 18:09 6 144 csrss.exe 1 fichier(s) 6 144 octets 0 Rép(s) 183 324 643 328 octets libres Contenu de Downloaded Program Files Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est B49C-35C9 Répertoire de C:\WINDOWS\Downloaded Program Files 09/07/2007 19:16 <REP> . 09/07/2007 19:16 <REP> .. 07/12/2004 17:07 32 bdcore.dll 25/05/2006 01:21 118 784 bdupd.dll 21/03/2007 22:42 65 desktop.ini 13/04/2007 02:14 382 344 GAME_UNO1.dll 17/01/2007 15:44 316 GAME_UNO1.INF 25/05/2006 01:21 53 248 ipsupd.dll 08/08/2006 11:45 576 kavwebscan.inf 16/03/2005 12:34 7 407 lang.ini 07/12/2004 17:07 32 libfn.dll 14/03/2005 14:38 126 live.ini 22/02/2007 23:41 304 544 MessengerStatsPAClient.dll 01/06/2006 02:57 1 331 oscan8.inf 01/06/2006 02:54 471 040 oscan8.ocx 31/05/2006 04:15 10 oscan81.ocx_x 14/03/2005 14:58 7 073 scanoptions.tsi 15 fichier(s) 1 346 928 octets Total des fichiers listés : 15 fichier(s) 1 346 928 octets 2 Rép(s) 183 324 639 232 octets libres Recherche de rootkit! (Merci S!Ri) Recherche d'infections connues Export des clefs sensibles.. Liste des fichiers en exception sur le pare-feu XP SP2 "%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\\Program Files\\uTorrent\\utorrent.exe"="C:\\Program Files\\uTorrent\\utorrent.exe:*:Enabled:µTorrent" "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:MSN Messenger 7.0" "C:\\Program Files\\Mozilla Firefox\\firefox.exe"="C:\\Program Files\\Mozilla Firefox\\firefox.exe:*:Enabled:Firefox" "C:\\Program Files\\Steam\\steamapps\\craft360\\counter-strike\\hl.exe"="C:\\Program Files\\Steam\\steamapps\\craft360\\counter-strike\\hl.exe:*:Enabled:Half-Life Launcher" "C:\\Program Files\\Starcraft\\StarCraft.exe"="C:\\Program Files\\Starcraft\\StarCraft.exe:*:Enabled:Starcraft" "C:\\Program Files\\BlackBean\\THE HISTORY CHANNEL Great Battles of Rome\\THCGBoR.exe"="C:\\Program Files\\BlackBean\\THE HISTORY CHANNEL Great Battles of Rome\\THCGBoR.exe:*:Enabled:THCGBoR" "C:\\Program Files\\Microsoft Games\\Dungeon Siege\\DSLOA.exe"="C:\\Program Files\\Microsoft Games\\Dungeon Siege\\DSLOA.exe:*:Enabled:Dungeon Siege: Legends of Aranna Game Executable" "C:\\WINDOWS\\system32\\dpnsvr.exe"="C:\\WINDOWS\\system32\\dpnsvr.exe:*:Enabled:Microsoft DirectPlay8 Server" "C:\\Program Files\\EA GAMES\\Battlefield 2\\BF2.exe"="C:\\Program Files\\EA GAMES\\Battlefield 2\\BF2.exe:*:Enabled:Battlefield 2" "C:\\Program Files\\KONAMI\\Pro Evolution Soccer 6\\PES6.exe"="C:\\Program Files\\KONAMI\\Pro Evolution Soccer 6\\PES6.exe:*:Enabled:pes6.exe" "C:\\Program Files\\Hamachi\\hamachi.exe"="C:\\Program Files\\Hamachi\\hamachi.exe:*:Enabled:Hamachi Client" "C:\\Program Files\\Warcraft III\\Warcraft III.exe"="C:\\Program Files\\Warcraft III\\Warcraft III.exe:*:Enabled:Warcraft III" "%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:MSN Messenger 7.0" Export de la clef SharedTaskScheduler [sharedTaskScheduler] "{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui" "{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant" Rechercher adresses sensibles dans le fichier HOSTS... catchme 0.3.914 W2K/XP/Vista - rootkit detector by Gmer, http://www.gmer.net Rootkit scan 2007-07-09 22:43:19 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden services ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden services: 0 hidden files: 0 KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg) Process list by traversal of KiWaitListHead 4 - System 260 - avguard.exe 280 - VProSvc.exe 504 - firefox.exe --[Hidden]-- 508 - firefox.exe 676 - slserv.exe 732 - explorer.exe 960 - csrss.exe 988 - winlogon.exe 1064 - services.exe 1076 - lsass.exe 1260 - svchost.exe 1320 - svchost.exe 1404 - aawservice.exe 1452 - sched.exe 1460 - svchost.exe 1508 - svchost.exe 1540 - CCAPP.EXE 1572 - GhostTray.exe 1640 - svchost.exe 1768 - dragdiag.exe 1868 - CCSETMGR.EXE 2056 - TaskBarIcon.exe 2080 - avgnt.exe 2128 - ctfmon.exe 2300 - msnmsgr.exe 2372 - cmd.exe 2972 - symlcsvc.exe 3600 - alg.exe Total number of processes = 29 NOTE: Under WinXP, this will not show all processes. KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg) Driver/Module list by traversal of PsLoadedModuleList 804D7000 - \WINDOWS\system32\ntkrnlpa.exe 806CE000 - \WINDOWS\system32\hal.dll F7A90000 - \WINDOWS\system32\KDCOM.DLL F79A0000 - \WINDOWS\system32\BOOTVID.dll F73A7000 - sptd.sys F7A92000 - \WINDOWS\System32\Drivers\WMILIB.SYS F738F000 - \WINDOWS\System32\Drivers\SCSIPORT.SYS F7360000 - ACPI.sys F734F000 - pci.sys F7590000 - isapnp.sys F7B58000 - pciide.sys F7810000 - \WINDOWS\system32\DRIVERS\PCIIDEX.SYS F75A0000 - MountMgr.sys F7330000 - ftdisk.sys F7A94000 - dmload.sys F730A000 - dmio.sys F7818000 - PartMgr.sys F75B0000 - VolSnap.sys F72F2000 - atapi.sys F75C0000 - SiSRaid.sys F75D0000 - sisraid1.sys F75E0000 - disk.sys F75F0000 - \WINDOWS\system32\DRIVERS\CLASSPNP.SYS F72D2000 - fltMgr.sys F72C0000 - sr.sys F72AA000 - SymSnap.sys F7293000 - KSecDD.sys F7206000 - Ntfs.sys F71D9000 - NDIS.sys F7600000 - uagp35.sys F79A4000 - RecAgent.sys F71BE000 - Mup.sys F6C2E000 - \SystemRoot\system32\DRIVERS\ati2mtag.sys F6C1A000 - \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS F6D94000 - \SystemRoot\system32\DRIVERS\i8042prt.sys F78C8000 - \SystemRoot\system32\DRIVERS\kbdclass.sys F78D0000 - \SystemRoot\system32\DRIVERS\mouclass.sys F78D8000 - \SystemRoot\system32\DRIVERS\fdc.sys F6C06000 - \SystemRoot\system32\DRIVERS\parport.sys F6BF5000 - \SystemRoot\system32\DRIVERS\serial.sys F7A84000 - \SystemRoot\system32\DRIVERS\serenum.sys F7660000 - \SystemRoot\system32\DRIVERS\imapi.sys F7670000 - \SystemRoot\system32\DRIVERS\cdrom.sys F7680000 - \SystemRoot\system32\DRIVERS\redbook.sys F6BD2000 - \SystemRoot\system32\DRIVERS\ks.sys F78E0000 - \SystemRoot\System32\Drivers\GearAspiWDM.SYS F67FA000 - \SystemRoot\system32\drivers\ALCXWDM.SYS F67D6000 - \SystemRoot\system32\drivers\portcls.sys F7690000 - \SystemRoot\system32\drivers\drmk.sys F78E8000 - \SystemRoot\system32\DRIVERS\usbohci.sys F67B3000 - \SystemRoot\system32\DRIVERS\USBPORT.SYS F78F0000 - \SystemRoot\system32\DRIVERS\usbehci.sys F6750000 - \SystemRoot\system32\DRIVERS\slntamr.sys F7A8C000 - \SystemRoot\system32\DRIVERS\SlWdmSup.sys F6731000 - \SystemRoot\system32\DRIVERS\Mtlmnt5.sys F78F8000 - \SystemRoot\System32\Drivers\Modem.SYS F7900000 - \SystemRoot\system32\DRIVERS\RTL8139.SYS F66A3000 - \SystemRoot\System32\Drivers\av6uhqd2.SYS F76A0000 - \SystemRoot\system32\DRIVERS\intelppm.sys F655F000 - \SystemRoot\system32\drivers\btkrnl.sys F7BE3000 - \SystemRoot\system32\DRIVERS\audstub.sys F76B0000 - \SystemRoot\system32\DRIVERS\rasl2tp.sys F7162000 - \SystemRoot\system32\DRIVERS\ndistapi.sys F6548000 - \SystemRoot\system32\DRIVERS\ndiswan.sys F76C0000 - \SystemRoot\system32\DRIVERS\raspppoe.sys F76D0000 - \SystemRoot\system32\DRIVERS\raspptp.sys F7960000 - \SystemRoot\system32\DRIVERS\TDI.SYS F6537000 - \SystemRoot\system32\DRIVERS\psched.sys F76E0000 - \SystemRoot\system32\DRIVERS\msgpc.sys F7968000 - \SystemRoot\system32\DRIVERS\ptilink.sys F7970000 - \SystemRoot\system32\DRIVERS\raspti.sys F7978000 - \SystemRoot\system32\DRIVERS\hamachi.sys F6506000 - \SystemRoot\system32\DRIVERS\rdpdr.sys F76F0000 - \SystemRoot\system32\DRIVERS\termdd.sys F7ABE000 - \SystemRoot\system32\DRIVERS\swenum.sys F64D2000 - \SystemRoot\system32\DRIVERS\update.sys F7A58000 - \SystemRoot\system32\DRIVERS\mssmbios.sys F7720000 - \SystemRoot\System32\Drivers\NDProxy.SYS F7730000 - \SystemRoot\system32\DRIVERS\usbhub.sys F7AC0000 - \SystemRoot\system32\DRIVERS\USBD.SYS F672D000 - \SystemRoot\system32\drivers\MODEMCSA.sys F7988000 - \SystemRoot\system32\DRIVERS\flpydisk.sys F7AC2000 - \SystemRoot\System32\Drivers\Fs_Rec.SYS F7C8A000 - \SystemRoot\System32\Drivers\Null.SYS F7AC4000 - \SystemRoot\System32\Drivers\Beep.SYS F7998000 - \SystemRoot\System32\drivers\vga.sys F7AC6000 - \SystemRoot\System32\Drivers\mnmdd.SYS F7AC8000 - \SystemRoot\System32\DRIVERS\RDPCDD.sys F7838000 - \SystemRoot\System32\Drivers\Msfs.SYS F7840000 - \SystemRoot\System32\Drivers\Npfs.SYS F670D000 - \SystemRoot\system32\DRIVERS\rasacd.sys BAF7D000 - \SystemRoot\system32\DRIVERS\ipsec.sys BAF25000 - \SystemRoot\system32\DRIVERS\tcpip.sys BAEFD000 - \SystemRoot\system32\DRIVERS\netbt.sys BAEDB000 - \SystemRoot\System32\drivers\afd.sys F7750000 - \SystemRoot\system32\DRIVERS\netbios.sys F7760000 - \SystemRoot\System32\Drivers\V2IMount.SYS F7850000 - \SystemRoot\system32\DRIVERS\ssmdrv.sys BAE69000 - \SystemRoot\system32\DRIVERS\ipnat.sys F7770000 - \SystemRoot\system32\DRIVERS\wanarp.sys BAD9E000 - \SystemRoot\system32\DRIVERS\rdbss.sys BAD07000 - \SystemRoot\system32\DRIVERS\mrxsmb.sys F7780000 - \SystemRoot\System32\Drivers\Fips.SYS F7790000 - \SystemRoot\system32\DRIVERS\avipbb.sys F7ACA000 - \??\C:\Program Files\AntiVir PersonalEdition Classic\avgio.sys F7ACC000 - \SystemRoot\system32\DRIVERS\alcawh.sys F7CBA000 - \SystemRoot\system32\DRIVERS\alcacr.sys F77C0000 - \SystemRoot\System32\Drivers\Cdfs.SYS F7860000 - \SystemRoot\system32\DRIVERS\USBSTOR.SYS BF800000 - \SystemRoot\System32\win32k.sys BAECF000 - \SystemRoot\System32\drivers\Dxapi.sys F7868000 - \SystemRoot\System32\watchdog.sys BF9C2000 - \SystemRoot\System32\drivers\dxg.sys F7CE5000 - \SystemRoot\System32\drivers\dxgthk.sys BF9D4000 - \SystemRoot\System32\ati2dvag.dll BFA16000 - \SystemRoot\System32\ati2cqag.dll BFA50000 - \SystemRoot\System32\atikvmag.dll BFA86000 - \SystemRoot\System32\ati3duag.dll BFCED000 - \SystemRoot\System32\ativvaxx.dll B8BFF000 - \SystemRoot\system32\DRIVERS\ndisuio.sys B881A000 - \SystemRoot\system32\drivers\wdmaud.sys B89E7000 - \SystemRoot\system32\drivers\sysaudio.sys B8591000 - \??\C:\Program Files\AntiVir PersonalEdition Classic\avgntflt.sys B8514000 - \SystemRoot\system32\DRIVERS\mrxdav.sys F7B14000 - \SystemRoot\System32\Drivers\ParVdm.SYS B84A1000 - \SystemRoot\System32\Drivers\Fastfat.SYS B8551000 - \SystemRoot\System32\drivers\aspi32.sys F7920000 - \??\C:\WINDOWS\system32\drivers\btserial.sys B83CF000 - \??\C:\WINDOWS\system32\drivers\btslbcsp.sys B832D000 - \SystemRoot\system32\DRIVERS\srv.sys F7888000 - \??\C:\WINDOWS\system32\drivers\symlcbrd.sys B7D4C000 - \SystemRoot\System32\Drivers\HTTP.sys BADC9000 - \SystemRoot\system32\DRIVERS\alcaudsl.sys B82B5000 - \SystemRoot\system32\DRIVERS\alcan5wn.sys B79A0000 - \SystemRoot\system32\drivers\kmixer.sys F7BEC000 - \SystemRoot\System32\DRIVERS\KProcCheck.sys Total number of drivers = 136 Liste des programmes installes a-squared Free 3.0 Ad-Aware 2007 Adobe Flash Player 9 ActiveX Adobe Flash Player 9 Plugin Adobe Shockwave Player Archiveur WinRAR ATI - Software Uninstall Utility ATI Display Driver µTorrent AutoCAD LT 2000 - Français Avira AntiVir PersonalEdition Classic Battlefield 2 Belkin Bluetooth Software Camtasia Studio 4 CDBurnerXP Pro 3 Civilization III Client Windows Rights Management avec Service Pack 2 DS Legends of Aranna DUNGEONS & DRAGONS ONLINE™: Stormreach™ v05.03.40.160 EasyPHP 1.8 EVEREST Ultimate Edition v4.00 GUILD WARS Haali Media Splitter Hamachi 1.0.2.2 HardwareDetection Java SE Runtime Environment 6 Kaspersky On-line Scanner Kaspersky Online Scanner LiveReg (Symantec Corporation) LiveUpdate 2.6 (Symantec Corporation) Macromedia Dreamweaver 8 Macromedia Extension Manager Matroska Pack Messager Wanadoo Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Microsoft .NET Framework 2.0 Microsoft .NET Framework 2.0 Microsoft .NET Framework 2.0 Language Pack - FRA Microsoft Motocross Madness 2 Microsoft Office PowerPoint Viewer 2003 Microsoft Windows Media Video 9 VCM Mise à jour de logiciel pour les Dossiers Web Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565) Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA Mozilla Firefox (2.0) Mozilla Firefox (2.0.0.4) MSN Messenger 7.0 MSXML 4.0 SP2 (KB927978) MSXML 6.0 Parser (KB927977) NOD32 FiX Norton Ghost 10.0 OpenOffice.org 2.1 Pharaon Pro Evolution Soccer 6 Pro Evolution Soccer 6 Realtek AC'97 Audio Reverse & Upper 1.0 RGSS de RMXP version 1.0.1 RMXP version 1.01 Ruby 1.8.2-14 (uninstall) SimCity 3000 SpeedTouch USB Software Spybot - Search & Destroy 1.4 SpyHunter Starcraft Steam TeamSpeak 2 RC2 THE HISTORY CHANNEL Great Battles of Rome TomTom HOME VideoLAN VLC media player 0.8.4a Wanadoo WebFldrs XP World of Warcraft Wow Cartographe 1.07 Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est B49C-35C9 Répertoire de C:\Program Files 09/07/2007 18:17 <REP> . 09/07/2007 18:17 <REP> .. 08/07/2007 22:45 <REP> AntiVir PersonalEdition Classic 09/07/2007 19:07 <REP> a-squared Free 14/06/2007 20:33 <REP> ATI Technologies 04/05/2007 19:19 <REP> AutoCAD LT 2000 20/05/2007 14:23 <REP> Belkin 08/06/2007 17:33 <REP> BlackBean 17/05/2007 21:19 <REP> Bodom-Child - RaBBi 28/06/2007 09:45 <REP> CDBurnerXP Pro 3 21/03/2007 22:40 <REP> ComPlus Applications 14/05/2007 06:59 <REP> DAEMON Tools 14/06/2007 08:36 <REP> EA GAMES 22/03/2007 09:25 <REP> EasyPHP1-8 08/07/2007 22:09 <REP> Enigma Software Group 02/07/2007 09:42 <REP> ESET 01/07/2007 20:58 <REP> Fichiers communs 14/05/2007 07:52 <REP> Giants 06/06/2007 07:38 <REP> GUILD WARS 19/06/2007 14:40 <REP> Hamachi 20/05/2007 14:09 <REP> HardwareDetection 01/07/2007 19:10 84 797 howtodo.exe 27/03/2007 18:03 <REP> Infogrames 08/07/2007 21:48 <REP> Internet Explorer 21/03/2007 23:07 <REP> Java 21/03/2007 22:53 <REP> JEUX 19/06/2007 07:27 <REP> KONAMI 25/05/2007 09:30 <REP> Lavalys 01/07/2007 20:58 <REP> Lavasoft 17/05/2007 22:30 <REP> Macromedia 24/05/2007 09:38 <REP> Matroska Pack 03/04/2007 23:00 <REP> Maxis 11/05/2007 08:18 <REP> Messager Wanadoo 21/03/2007 22:44 <REP> microsoft frontpage 13/06/2007 09:07 <REP> Microsoft Games 21/03/2007 23:04 <REP> Microsoft Office 21/03/2007 22:41 <REP> Movie Maker 08/07/2007 21:48 <REP> Mozilla Firefox 21/03/2007 22:40 <REP> MSN Gaming Zone 11/05/2007 08:32 <REP> MSN Messenger 21/03/2007 22:53 <REP> MSXML 4.0 21/03/2007 22:42 <REP> NetMeeting 19/06/2007 15:31 <REP> Norton Ghost 24/03/2007 17:46 <REP> OpenOffice.org 2.1 21/03/2007 22:41 <REP> Outlook Express 13/05/2007 22:59 <REP> Realtek AC97 01/06/2007 18:09 <REP> Reverse & Upper 22/03/2007 09:12 <REP> Settlers 27/03/2007 19:17 <REP> Sierra On-Line 01/07/2007 22:12 <REP> Spybot - Search & Destroy 21/06/2007 15:59 <REP> Starcraft 13/06/2007 08:57 <REP> Steam 19/06/2007 14:25 <REP> Symantec 24/06/2007 18:49 <REP> Teamspeak2_RC2 19/06/2007 08:51 <REP> TechSmith 04/07/2007 12:11 <REP> Thomson 09/04/2007 13:31 <REP> TomTom HOME 01/07/2007 17:34 <REP> Turbine 21/03/2007 22:53 <REP> UTILS 11/05/2007 08:25 <REP> uTorrent 24/05/2007 09:39 <REP> VideoLAN 08/07/2007 22:22 <REP> Wanadoo 09/07/2007 00:29 <REP> Warcraft III 21/03/2007 23:05 <REP> Windows Media Connect 2 21/03/2007 23:06 <REP> Windows Media Player 21/03/2007 22:40 <REP> Windows NT 11/05/2007 08:34 <REP> WinRAR 21/03/2007 23:05 <REP> WMV9_VCM 09/07/2007 19:13 <REP> World of Warcraft 09/06/2007 16:54 <REP> WowCartographe 21/03/2007 22:53 <REP> WSTARTUP 21/03/2007 22:44 <REP> xerox 1 fichier(s) 84 797 octets 71 Rép(s) 183 304 441 856 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est B49C-35C9 Répertoire de C:\Program Files\fichiers communs 01/07/2007 20:58 <REP> . 01/07/2007 20:58 <REP> .. 11/05/2007 08:17 <REP> Adobe 04/05/2007 19:17 <REP> Autodesk Shared 14/05/2007 06:58 <REP> Blizzard Entertainment 17/05/2007 22:29 <REP> InstallShield 21/03/2007 23:07 <REP> Java 17/05/2007 22:32 <REP> Macromedia 01/07/2007 18:53 <REP> Microsoft Shared 21/03/2007 22:41 <REP> MSSoap 21/03/2007 23:21 <REP> ODBC 21/03/2007 22:42 <REP> Services 21/03/2007 23:21 <REP> SpeechEngines 19/06/2007 15:31 <REP> Symantec Shared 21/03/2007 22:41 <REP> System 01/07/2007 20:58 <REP> Wise Installation Wizard 0 fichier(s) 0 octets 16 Rép(s) 183 304 441 856 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est B49C-35C9 Répertoire de C:\Program Files\fichiers communs\Microsoft Shared\Web Folders 21/03/2007 23:10 <REP> . 21/03/2007 23:10 <REP> .. 21/03/2007 22:53 <REP> 1036 17/09/2004 15:43 1 293 008 msonsext.dll 03/06/1999 13:09 122 937 MSOWS409.DLL 07/03/2001 08:00 127 033 MSOWS40c.DLL 17/09/2004 15:43 80 448 pkmws.dll 4 fichier(s) 1 623 426 octets 3 Rép(s) 183 304 441 856 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est B49C-35C9 Répertoire de C:\ 12/05/2007 18:22 68 096 diff.exe 12/05/2007 18:22 103 424 grep.exe 2 fichier(s) 171 520 octets 0 Rép(s) 183 304 441 856 octets libres c:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files\Kaspersky Anti-Virus 7.0.0.124\French\setup.exe c:\Documents and Settings\Craft\Application Data\U3\temp\cleanup.exe c:\Documents and Settings\Craft\Bureau\6-11-pre-r300_xp-2k_dd_ccc_wdm_38185(2).exe c:\Documents and Settings\Craft\Bureau\6-11-pre-r300_xp-2k_dd_ccc_wdm_38185.exe c:\Documents and Settings\Craft\Bureau\antivir_workstation_win7u_en_h.exe c:\Documents and Settings\Craft\Bureau\daemon-tools_daemon_tools_4.0.9.1_anglais_10729.exe c:\Documents and Settings\Craft\Bureau\hamachi_hamachi_1.0.2.2_francais_14515.exe c:\Documents and Settings\Craft\Bureau\pilote_ati_catalyst_5.12_8.192_3025.exe c:\Documents and Settings\Craft\Bureau\pilote_ati_catalyst_7.4_3220.exe c:\Documents and Settings\Craft\Bureau\ruby182-14.exe c:\Documents and Settings\Craft\Bureau\u3 uninstall.exe c:\Documents and Settings\Craft\Bureau\VundoFix.exe c:\Documents and Settings\Craft\Bureau\Warcraft III.exe c:\Documents and Settings\Craft\Bureau\wow-cartographe_wow_cartographe_1.07_francais_14391.exe c:\Documents and Settings\Craft\Bureau\diag\DiagHelp\catchme.exe c:\Documents and Settings\Craft\Bureau\diag\DiagHelp\diff.exe c:\Documents and Settings\Craft\Bureau\diag\DiagHelp\dumphive.exe c:\Documents and Settings\Craft\Bureau\diag\DiagHelp\FilesInfoCmd.exe c:\Documents and Settings\Craft\Bureau\diag\DiagHelp\find2.exe c:\Documents and Settings\Craft\Bureau\diag\DiagHelp\Fport.exe c:\Documents and Settings\Craft\Bureau\diag\DiagHelp\grep.exe c:\Documents and Settings\Craft\Bureau\diag\DiagHelp\KProcCheck.exe c:\Documents and Settings\Craft\Bureau\diag\DiagHelp\LFiles.exe c:\Documents and Settings\Craft\Bureau\diag\DiagHelp\LISTDLLS.exe c:\Documents and Settings\Craft\Bureau\diag\DiagHelp\pslist.exe c:\Documents and Settings\Craft\Bureau\diag\DiagHelp\streams.exe c:\Documents and Settings\Craft\Bureau\diag\DiagHelp\swreg.exe c:\Documents and Settings\Craft\Bureau\War For The life\Game.exe c:\Documents and Settings\Craft\Local Settings\Temp\2cjyv8bm.exe c:\Documents and Settings\Craft\Local Settings\Temp\4fi5ppd9.exe c:\Documents and Settings\Craft\Local Settings\Temp\AtiCimUn.exe c:\Documents and Settings\Craft\Local Settings\Temp\Install_Messenger.exe c:\Documents and Settings\Craft\Local Settings\Temp\war3_Install.exe c:\Documents and Settings\Craft\Local Settings\Temp\wowclient-downloader.exe c:\Documents and Settings\Craft\Local Settings\Temp\pft1E7~tmp\_ISDel.exe c:\Documents and Settings\Craft\Local Settings\Temp\pft1E7~tmp\Setup.exe c:\Documents and Settings\Craft\Local Settings\Temp\pft1E7~tmp\Via4in1.exe c:\Documents and Settings\Craft\Local Settings\Temp\{D428617B-8C0F-4A9F-8B40-338DC3CB8533}\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}\dxsetup.exe c:\Documents and Settings\Craft\Local Settings\Temporary Internet Files\Content.IE5\52NHEGNZ\dndlauncher[1].exe c:\Documents and Settings\Craft\Local Settings\Temporary Internet Files\Content.IE5\V0RH6FFE\dndclient[1].exe c:\Documents and Settings\Craft\Mes documents\a2FreeSetup.exe c:\Documents and Settings\Craft\Mes documents\aaw2007.exe c:\Documents and Settings\Craft\Mes documents\antivir_workstation_win7u_en_h.exe c:\Documents and Settings\Craft\Mes documents\aswclnr.exe c:\Documents and Settings\Craft\Mes documents\dndsetup_lowers_fr.exe c:\Documents and Settings\Craft\Mes documents\dotnetfx20.exe c:\Documents and Settings\Craft\Mes documents\FirefoxGoogleToolbarSetup.exe c:\Documents and Settings\Craft\Mes documents\Free-SpyHunter-Scanner-Install.exe c:\Documents and Settings\Craft\Mes documents\Install_MSN_Messenger.EXE c:\Documents and Settings\Craft\Mes documents\kav7.0.0.124fr.exe c:\Documents and Settings\Craft\Mes documents\spybotsd14.exe c:\Documents and Settings\Craft\Mes documents\StarCraft2CinematicTrailer_FrenchEU-avi-downloader.exe c:\Documents and Settings\Craft\Mes documents\ts2_client_rc2_2032.exe c:\Documents and Settings\Craft\Mes documents\uTorrent-1.6.1-install.exe c:\Documents and Settings\Craft\Mes documents\wrar362fr.exe c:\Documents and Settings\Craft\Mes documents\ddo_client_install_lowres_Codemasters_FR\Disk1\dndsetup.exe c:\Documents and Settings\Craft\Mes documents\ddo_client_install_lowres_Codemasters_FR\Disk1\Extras\Adobe Reader 7.0.5\AdbeRdr705_enu_full.exe c:\Documents and Settings\Craft\Mes documents\DiagHelp\DiagHelp\catchme.exe c:\Documents and Settings\Craft\Mes documents\DiagHelp\DiagHelp\diff.exe c:\Documents and Settings\Craft\Mes documents\DiagHelp\DiagHelp\dumphive.exe c:\Documents and Settings\Craft\Mes documents\DiagHelp\DiagHelp\FilesInfoCmd.exe c:\Documents and Settings\Craft\Mes documents\DiagHelp\DiagHelp\find2.exe c:\Documents and Settings\Craft\Mes documents\DiagHelp\DiagHelp\Fport.exe c:\Documents and Settings\Craft\Mes documents\DiagHelp\DiagHelp\grep.exe c:\Documents and Settings\Craft\Mes documents\DiagHelp\DiagHelp\KProcCheck.exe c:\Documents and Settings\Craft\Mes documents\DiagHelp\DiagHelp\LFiles.exe c:\Documents and Settings\Craft\Mes documents\DiagHelp\DiagHelp\LISTDLLS.exe c:\Documents and Settings\Craft\Mes documents\DiagHelp\DiagHelp\pslist.exe c:\Documents and Settings\Craft\Mes documents\DiagHelp\DiagHelp\streams.exe c:\Documents and Settings\Craft\Mes documents\DiagHelp\DiagHelp\swreg.exe c:\Documents and Settings\Craft\Mes documents\Downloads\3D Studio Max 9 + Tutorials and Keygen\3dsmax9.exe c:\Documents and Settings\Craft\Mes documents\Downloads\3D Studio Max 9 + Tutorials and Keygen\3dsmax9Tutorials.exe c:\Documents and Settings\Craft\Mes documents\Dungeon Siege\édition\RTC.exe c:\Documents and Settings\Craft\Mes documents\Dungeon Siege\édition\SkritPad.exe c:\Documents and Settings\Craft\Mes documents\Dungeon Siege\édition\TankCreator.exe c:\Documents and Settings\Craft\Mes documents\Dungeon Siege\édition\tankviewer.exe c:\Documents and Settings\Craft\Mes documents\WoW-2.0.0-enUS-Installer\DirectX\dxsetup.exe c:\Documents and Settings\Craft\Mes documents\WoW-BurningCrusade-frFR-Slim-Installer\Installer.exe c:\Documents and Settings\Daniel\Bureau\Openoffice\OOo_2.1.0_Win32Intel_install_fr.exe c:\Documents and Settings\Daniel\Bureau\OpenOffice.org 2.1 Installation Files\instmsia.exe c:\Documents and Settings\Daniel\Bureau\OpenOffice.org 2.1 Installation Files\instmsiw.exe c:\Documents and Settings\Daniel\Bureau\OpenOffice.org 2.1 Installation Files\setup.exe c:\Documents and Settings\Daniel\Mes documents\Decompression.exe c:\Documents and Settings\Daniel\Mes documents\VirtualExpander.exe c:\Documents and Settings\Daniel\Mes documents\Mes documents\wz100fev.exe c:\Documents and Settings\Daniel\Mes documents\Readme_flashdemo\VirtualExpander_flashdemo.exe c:\Documents and Settings\All Users\Application Data\AntiVir PersonalEdition Classic\BACKUP\FAILSAFE\avewin32.dll c:\Documents and Settings\Craft\Application Data\Macromedia\Dreamweaver 8\Configuration\Flash Player\FlashPlayerW.dll c:\Documents and Settings\Craft\Application Data\Mozilla\Firefox\Profiles\9bf1ivp7.default\extensions\{bb628310-0ab7-11db-9cd8-0800200c9a66}\plugins\nphardwaredetection.dll c:\Documents and Settings\LocalService\Application Data\Microsoft\UPnP Device Host\upnphost\udhisapi.dll ****** Fin du rapport DiagHelp Et voici pour HijackThix Logfile of HijackThis v1.99.1 Scan saved at 23:35:14, on 09/07/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5730.0011) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\Belkin\Logiciel Bluetooth\bin\btwdins.exe C:\WINDOWS\System32\GEARSec.exe C:\Program Files\Norton Ghost\Agent\VProSvc.exe C:\WINDOWS\system32\slserv.exe C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe C:\Program Files\Norton Ghost\Agent\GhostTray.exe C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe C:\PROGRA~1\Wanadoo\TaskbarIcon.exe C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\System32\alg.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe C:\Program Files\a-squared Free\a2service.exe C:\Program Files\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/ie R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/ie R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/search?q=%s R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [Norton Ghost 10.0] "C:\Program Files\Norton Ghost\Agent\GhostTray.exe" O4 - HKLM\..\Run: [speedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\TaskbarIcon.exe O4 - HKLM\..\Run: [spyHunter] C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter.exe O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - Startup: hamachi.lnk = C:\Program Files\Hamachi\hamachi.exe O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\Belkin\Logiciel Bluetooth\btsendto_ie_ctx.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Belkin\Logiciel Bluetooth\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Belkin\Logiciel Bluetooth\btsendto_ie.htm O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU) O11 - Options group: [iNTERNATIONAL] International* O11 - Options group: [TABS] Tabbed Browsing O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{0DFF5958-C045-4990-A702-65AF28371A67}: NameServer = 80.10.246.1 80.10.246.132 O17 - HKLM\System\CS1\Services\Tcpip\..\{0DFF5958-C045-4990-A702-65AF28371A67}: NameServer = 80.10.246.1 80.10.246.132 O17 - HKLM\System\CS2\Services\Tcpip\..\{0DFF5958-C045-4990-A702-65AF28371A67}: NameServer = 80.10.246.1 80.10.246.132 O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Belkin\Logiciel Bluetooth\bin\btwdins.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe O23 - Service: GEARSecurity - GEAR Software - C:\WINDOWS\System32\GEARSec.exe O23 - Service: Norton Ghost - Symantec Corporation - C:\Program Files\Norton Ghost\Agent\VProSvc.exe O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\symlcsvc.exe Voili Voila ^^ Merci a vous

Bonjour, Depuis quelques jours un jeu au quel je joue (WoW)m'indique que le virus Backdoor.win32.bifrose.aej a infécté mon ordinateur. Apres avoir essayer plusieur anti-virus (kaspersky; nod32; antivir; bitdefender...) aucun n'arrive a desinfecter mon ordinateur Je m'en remet donc a vous car je ne mis connait pas enormement en informatique. Je vous en serais reconnaissante de m'aider Merci a vous