Aller au contenu

boughi

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    14

  • Inscription

  • Dernière visite

Profile Information

  • Sexe
    Female
  • Localisation
    LYON

Autres informations

  • Mes langues
    français

boughi's Achievements

Junior Member

Junior Member (3/12)

0

Réputation sur la communauté

  1. boughi
    ________ voila un second scan ewido car quand j'ai fait l'autre cela m'a mis ERROR!!!!!! qu'ils restaient des virus qui n'ont pu etre supprimés, d'ailleurs meme avec ce second scan il en reste encore deux: un de niveau moyen et un autre avec un risque elevée!! QUE DOIS-JE FAIRE?????? merci ... __________________________________________ ewido anti-spyware online scanner http://www.ewido.net __________________________________________________ Name: TrackingCookie.Atdmt Path: C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\leila@atdmt[2].txt Risk: Medium Name: Backdoor.SdBot.cgz Path: C:\Users\leila\AppData\Local\VirtualStore\Windows\Dance_dec_jpg.zip/www.Dance_dec_jpg_Msn.com Risk: High
  2. boughi
    voila le scan ewido!!!! __________________________________________________ ewido anti-spyware online scanner http://www.ewido.net __________________________________________________ Name: TrackingCookie.Atdmt Path: C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\leila@atdmt[2].txt Risk: Medium Name: TrackingCookie.Atdmt Path: C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@atdmt[2].txt Risk: Medium Name: TrackingCookie.Serving-sys Path: C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@bs.serving-sys[1].txt Risk: Medium Name: TrackingCookie.2o7 Path: C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@msnportal.112.2o7[1].txt Risk: Medium Name: TrackingCookie.Serving-sys Path: C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@serving-sys[2].txt Risk: Medium Name: TrackingCookie.Netflame Path: C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@ssl-hints.netflame[2].txt Risk: Medium Name: TrackingCookie.Weborama Path: C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@weborama[1].txt Risk: Medium Name: Backdoor.SdBot.cgz Path: C:\Users\leila\AppData\Local\VirtualStore\Windows\Dance_dec_jpg.zip/www.Dance_dec_jpg_Msn.com Risk: High
  3. boughi
    Alors est ce les virus sont toujours présents???? et connaissez vous un autre antivirus a part antivir car celui ci fonctionne mais la date n'est pas bonne et je n'arrive pas a la modifier mauellement, on m'a parlé de macAffe ou de kasper quelques chose ????? EN tout cas je vous remercie de m'avoir aidé, j'espere que mon pC ne sera plus infecté j'attends de vos nouvelles avec impatience, MERCI!!!!
  4. boughi
    VOILA CELUI QUE j'ai fait avant et j'ai l'impression que ça ne donne pas le même résultat???? AntiVir PersonalEdition Classic Report file date: dimanche 11 novembre 2007 20:02 Scanning for 1036370 virus strains and unwanted programs. Licensed to: Avira AntiVir PersonalEdition Classic Serial number: 0000149996-ADJIE-0001 Platform: Windows Vista Windows version: (plain) [6.0.6000] Username: SYSTEM Computer name: PC-DE-LEILA Version information: BUILD.DAT : 269 15604 Bytes 10/09/2007 14:31:00 AVSCAN.EXE : 7.0.6.1 290856 Bytes 23/08/2007 13:16:29 AVSCAN.DLL : 7.0.6.0 49192 Bytes 16/08/2007 12:23:51 LUKE.DLL : 7.0.5.3 147496 Bytes 14/08/2007 15:32:47 LUKERES.DLL : 7.0.6.1 10280 Bytes 21/08/2007 12:35:20 ANTIVIR0.VDF : 6.35.0.1 7371264 Bytes 31/05/2006 12:32:40 ANTIVIR1.VDF : 6.39.0.129 7251968 Bytes 10/07/2007 12:32:46 ANTIVIR2.VDF : 6.39.1.43 1542656 Bytes 25/08/2007 17:21:02 ANTIVIR3.VDF : 6.39.1.51 29696 Bytes 28/08/2007 07:22:36 AVEWIN32.DLL : 7.6.0.5 2789888 Bytes 29/08/2007 17:09:10 AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 10:36:26 AVPREF.DLL : 7.0.2.2 25640 Bytes 18/07/2007 07:39:17 AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 13:16:24 AVPACK32.DLL : 7.3.0.15 360488 Bytes 03/08/2007 08:46:00 AVREG.DLL : 7.0.1.6 30760 Bytes 18/07/2007 07:17:06 AVARKT.DLL : 1.0.0.20 278568 Bytes 28/08/2007 12:26:33 AVEVTLOG.DLL : 7.0.0.20 86056 Bytes 18/07/2007 07:10:18 NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 11:09:42 RCIMAGE.DLL : 7.0.1.30 2342952 Bytes 07/08/2007 12:38:13 RCTEXT.DLL : 7.0.62.0 86056 Bytes 21/08/2007 12:50:37 SQLITE3.DLL : 3.3.17.1 339968 Bytes 23/07/2007 09:37:21 Configuration settings for the scan: Jobname..........................: Complete system scan Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp Logging..........................: low Primary action...................: interactive Secondary action.................: ignore Scan master boot sector..........: off Scan boot sector.................: on Boot sectors.....................: D:, Scan memory......................: on Process scan.....................: on Scan registry....................: on Search for rootkits..............: off Scan all files...................: Intelligent file selection Scan archives....................: on Recursion depth..................: 20 Smart extensions.................: on Macro heuristic..................: on File heuristic...................: medium Start of the scan: dimanche 11 novembre 2007 20:02 The scan of running processes will be started Scan process 'avscan.exe' - '1' Module(s) have been scanned Scan process 'taskeng.exe' - '1' Module(s) have been scanned Scan process 'TrustedInstaller.exe' - '1' Module(s) have been scanned Scan process 'WmiPrvSE.exe' - '1' Module(s) have been scanned Scan process 'avcenter.exe' - '1' Module(s) have been scanned Scan process 'avgnt.exe' - '1' Module(s) have been scanned Scan process 'avguard.exe' - '1' Module(s) have been scanned Scan process 'sched.exe' - '1' Module(s) have been scanned Scan process 'kbd.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'VSSVC.exe' - '1' Module(s) have been scanned Scan process 'iPodService.exe' - '1' Module(s) have been scanned Scan process 'NMIndexingService.exe' - '1' Module(s) have been scanned Scan process 'wmpnetwk.exe' - '1' Module(s) have been scanned Scan process 'SearchIndexer.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'LSSrvc.exe' - '1' Module(s) have been scanned Scan process 'guard.exe' - '1' Module(s) have been scanned Scan process 'AppleMobileDeviceService.exe' - '1' Module(s) have been scanned Scan process 'a2service.exe' - '1' Module(s) have been scanned Scan process 'wordpad.exe' - '1' Module(s) have been scanned Scan process 'ehmsas.exe' - '1' Module(s) have been scanned Scan process 'wmpnscfg.exe' - '1' Module(s) have been scanned Scan process 'msnmsgr.exe' - '1' Module(s) have been scanned Scan process 'ehtray.exe' - '1' Module(s) have been scanned Scan process 'sidebar.exe' - '1' Module(s) have been scanned Scan process 'avgas.exe' - '1' Module(s) have been scanned Scan process 'iTunesHelper.exe' - '1' Module(s) have been scanned Scan process 'hpwuSchd2.exe' - '1' Module(s) have been scanned Scan process 'RtHDVCpl.exe' - '1' Module(s) have been scanned Scan process 'rundll32.exe' - '1' Module(s) have been scanned Scan process 'OSD.exe' - '1' Module(s) have been scanned Scan process 'hpsysdrv.exe' - '1' Module(s) have been scanned Scan process 'MSASCui.exe' - '1' Module(s) have been scanned Scan process 'explorer.exe' - '1' Module(s) have been scanned Scan process 'taskeng.exe' - '1' Module(s) have been scanned Scan process 'dwm.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'spoolsv.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'SLsvc.exe' - '1' Module(s) have been scanned Scan process 'audiodg.exe' - '0' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'winlogon.exe' - '1' Module(s) have been scanned Scan process 'lsm.exe' - '1' Module(s) have been scanned Scan process 'lsass.exe' - '1' Module(s) have been scanned Scan process 'services.exe' - '1' Module(s) have been scanned Scan process 'csrss.exe' - '1' Module(s) have been scanned Scan process 'wininit.exe' - '1' Module(s) have been scanned Scan process 'csrss.exe' - '1' Module(s) have been scanned Scan process 'smss.exe' - '1' Module(s) have been scanned 58 processes with 58 modules were scanned Start scanning boot sectors: Boot sector 'C:\' [NOTE] No virus was found! Boot sector 'D:\' [NOTE] No virus was found! Starting to scan the registry. The registry was scanned ( '14' files ). Starting the file scan: Begin scan in 'C:\' <HP> C:\hiberfil.sys [WARNING] The file could not be opened! C:\pagefile.sys [WARNING] The file could not be opened! End of the scan: dimanche 11 novembre 2007 20:02 Used time: 00:14 min The scan has been canceled! 44 Scanning directories 1689 Files were scanned 0 viruses and/or unwanted programs were found 0 Files were classified as suspicious: 0 files were deleted 0 files were repaired 0 files were moved to quarantine 0 files were renamed 2 Files cannot be scanned 1689 Files not concerned 1 Archives were scanned 2 Warnings 0 Notes VOILA UN NOUVEAU HITJAKIS: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 21:23:49, on 11/11/2007 Platform: Windows Vista (WinNT 6.00.1904) MSIE: Internet Explorer v7.00 (7.00.6000.16546) Boot mode: Normal Running processes: C:\Windows\system32\taskeng.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\System32\mobsync.exe C:\Program Files\Windows Defender\MSASCui.exe C:\hp\support\hpsysdrv.exe C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe C:\Windows\RtHDVCpl.exe C:\Windows\System32\rundll32.exe C:\Program Files\HP\HP Software Update\hpwuSchd2.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\ehome\ehmsas.exe C:\hp\kbd\kbd.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\Windows\system32\SearchFilterHost.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O1 - Hosts: ::1 localhost O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: UrlHelper Class - {474597C5-AB09-49d6-A4D5-2E8D7341384E} - C:\Program Files\iMesh Applications\iMesh MediaBar\iMeshIEHelper.dll (file missing) O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KbdStub.EXE O4 - HKLM\..\Run: [OsdMaestro] "C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe" O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [HP Software Update] c:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [LBTWiz.exe] C:\Windows\LBTWiz.exe O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU') O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O13 - Gopher Prefix: O15 - Trusted Zone: http://oisans.univ-savoie.fr O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab56986.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing) O23 - Service: RoxMediaDB9 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe -- End of file - 9169 bytes
  5. boughi
    voila g comme meme tenter un scan meme si je n'arrive toujours pas a rentrer une date manuellement, merci en tout cas pour votre aide!!! AntiVir PersonalEdition Classic Report file date: dimanche 11 novembre 2007 20:19 Scanning for 1036370 virus strains and unwanted programs. Licensed to: Avira AntiVir PersonalEdition Classic Serial number: 0000149996-ADJIE-0001 Platform: Windows Vista Windows version: (plain) [6.0.6000] Username: leila Computer name: PC-DE-LEILA Version information: BUILD.DAT : 269 15604 Bytes 10/09/2007 14:31:00 AVSCAN.EXE : 7.0.6.1 290856 Bytes 23/08/2007 13:16:29 AVSCAN.DLL : 7.0.6.0 49192 Bytes 16/08/2007 12:23:51 LUKE.DLL : 7.0.5.3 147496 Bytes 14/08/2007 15:32:47 LUKERES.DLL : 7.0.6.1 10280 Bytes 21/08/2007 12:35:20 ANTIVIR0.VDF : 6.35.0.1 7371264 Bytes 31/05/2006 12:32:40 ANTIVIR1.VDF : 6.39.0.129 7251968 Bytes 10/07/2007 12:32:46 ANTIVIR2.VDF : 6.39.1.43 1542656 Bytes 25/08/2007 17:21:02 ANTIVIR3.VDF : 6.39.1.51 29696 Bytes 28/08/2007 07:22:36 AVEWIN32.DLL : 7.6.0.5 2789888 Bytes 29/08/2007 17:09:10 AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 10:36:26 AVPREF.DLL : 7.0.2.2 25640 Bytes 18/07/2007 07:39:17 AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 13:16:24 AVPACK32.DLL : 7.3.0.15 360488 Bytes 03/08/2007 08:46:00 AVREG.DLL : 7.0.1.6 30760 Bytes 18/07/2007 07:17:06 AVARKT.DLL : 1.0.0.20 278568 Bytes 28/08/2007 12:26:33 AVEVTLOG.DLL : 7.0.0.20 86056 Bytes 18/07/2007 07:10:18 NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 11:09:42 RCIMAGE.DLL : 7.0.1.30 2342952 Bytes 07/08/2007 12:38:13 RCTEXT.DLL : 7.0.62.0 86056 Bytes 21/08/2007 12:50:37 SQLITE3.DLL : 3.3.17.1 339968 Bytes 23/07/2007 09:37:21 Configuration settings for the scan: Jobname..........................: Complete system scan Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp Logging..........................: low Primary action...................: interactive Secondary action.................: ignore Scan master boot sector..........: off Scan boot sector.................: on Boot sectors.....................: D:, Scan memory......................: on Process scan.....................: on Scan registry....................: on Search for rootkits..............: off Scan all files...................: Intelligent file selection Scan archives....................: on Recursion depth..................: 20 Smart extensions.................: on Macro heuristic..................: on File heuristic...................: medium Start of the scan: dimanche 11 novembre 2007 20:19 The scan of running processes will be started Scan process 'avscan.exe' - '1' Module(s) have been scanned Scan process 'avcenter.exe' - '1' Module(s) have been scanned Scan process 'wordpad.exe' - '1' Module(s) have been scanned Scan process 'explorer.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'guard.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'lsm.exe' - '1' Module(s) have been scanned Scan process 'lsass.exe' - '1' Module(s) have been scanned Scan process 'services.exe' - '1' Module(s) have been scanned Scan process 'winlogon.exe' - '1' Module(s) have been scanned Scan process 'wininit.exe' - '1' Module(s) have been scanned Scan process 'csrss.exe' - '1' Module(s) have been scanned Scan process 'csrss.exe' - '1' Module(s) have been scanned Scan process 'smss.exe' - '1' Module(s) have been scanned 19 processes with 19 modules were scanned Start scanning boot sectors: Boot sector 'C:\' [NOTE] No virus was found! Boot sector 'D:\' [NOTE] No virus was found! Starting to scan the registry. The registry was scanned ( '19' files ). Starting the file scan: Begin scan in 'C:\' <HP> C:\pagefile.sys [WARNING] The file could not be opened! Begin scan in 'D:\' <Recovery> End of the scan: dimanche 11 novembre 2007 20:41 Used time: 22:28 min The scan has been done completely. 12373 Scanning directories 228967 Files were scanned 0 viruses and/or unwanted programs were found 0 Files were classified as suspicious: 0 files were deleted 0 files were repaired 0 files were moved to quarantine 0 files were renamed 1 Files cannot be scanned 228967 Files not concerned 2474 Archives were scanned 1 Warnings 12 Notes
  6. boughi
    ça ne fonctionne toujours pas: a coté de last update , il est écrit not performed et donc encore a coté il ya start update je clique donc dessus pour changer la date manuellement mais il n'y a rien qui vient!!!!!!
  7. boughi
    désolé oui je vais m'appliquer à écrire mieux alors j'ai désinstaller norton correctemment et donc j'ai voulu insateller antivir il s'est donc bien installé mais la date n'est plus bonne j'ai donc suivi les instructions du tutorial qui dit de le faire mauellement mais quand je clique sur l'icone pour le régler il ne se passe rien que dois-je faire, le désinstaller puis le réinstaller, encore merci pour tous ces conseils!!!!
  8. boughi
    VOICI LE RAPPORT KE G EU AVEC SMITFRAUDFIX SmitFraudFix v2.252 Scan done at 20:37:35,29, 10/11/2007 Run from C:\Users\leila\Downloads\SmitfraudFix OS: Microsoft Windows [version 6.0.6000] - Windows_NT The filesystem type is NTFS Fix run in normal mode »»»»»»»»»»»»»»»»»»»»»»»» Process C:\Windows\system32\csrss.exe C:\Windows\system32\csrss.exe C:\Windows\system32\wininit.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\winlogon.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe C:\Windows\system32\svchost.exe C:\Windows\system32\SLsvc.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\a-squared Free\a2service.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe c:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe C:\Windows\system32\svchost.exe C:\Windows\system32\svchost.exe C:\Windows\System32\svchost.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\WUDFHost.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Windows\system32\taskeng.exe C:\Program Files\Windows Defender\MSASCui.exe C:\hp\support\hpsysdrv.exe C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe C:\Windows\RtHDVCpl.exe C:\Program Files\HP\HP Software Update\hpwuSchd2.exe C:\Program Files\Common Files\Symantec Shared\ccApp.exe C:\Program Files\Alwil Software\Avast4\ashDisp.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\System32\rundll32.exe C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe C:\Program Files\iPod\bin\iPodService.exe C:\hp\kbd\kbd.exe C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe C:\Program Files\Internet Explorer\ieuser.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\Macromed\Flash\FlashUtil9b.exe C:\Windows\system32\conime.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\cmd.exe C:\Windows\system32\wbem\wmiprvse.exe »»»»»»»»»»»»»»»»»»»»»»»» hosts »»»»»»»»»»»»»»»»»»»»»»»» C:\ »»»»»»»»»»»»»»»»»»»»»»»» C:\Windows »»»»»»»»»»»»»»»»»»»»»»»» C:\Windows\system »»»»»»»»»»»»»»»»»»»»»»»» C:\Windows\Web »»»»»»»»»»»»»»»»»»»»»»»» C:\Windows\system32 »»»»»»»»»»»»»»»»»»»»»»»» C:\Windows\system32\LogFiles »»»»»»»»»»»»»»»»»»»»»»»» C:\Users\leila »»»»»»»»»»»»»»»»»»»»»»»» C:\Users\leila\Application Data »»»»»»»»»»»»»»»»»»»»»»»» Start Menu »»»»»»»»»»»»»»»»»»»»»»»» C:\Users\leila\FAVORI~1 »»»»»»»»»»»»»»»»»»»»»»»» Desktop »»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files »»»»»»»»»»»»»»»»»»»»»»»» Corrupted keys »»»»»»»»»»»»»»»»»»»»»»»» Desktop Components »»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler !!!Attention, following keys are not inevitably infected!!! SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll »»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs !!!Attention, following keys are not inevitably infected!!! [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="" "LoadAppInit_DLLs"=dword:00000000 »»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System !!!Attention, following keys are not inevitably infected!!! [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] »»»»»»»»»»»»»»»»»»»»»»»» Rustock »»»»»»»»»»»»»»»»»»»»»»»» DNS Description: Carte réseau Realtek RTL8101 Family PCI-E Fast Ethernet (NDIS 6.0) DNS Server Search Order: 212.198.0.91 DNS Server Search Order: 212.198.2.51 HKLM\SYSTEM\CCS\Services\Tcpip\..\{CC34EAC1-55A2-4863-81A6-847D700F5C0C}: DhcpNameServer=212.198.0.91 212.198.2.51 HKLM\SYSTEM\CS1\Services\Tcpip\..\{CC34EAC1-55A2-4863-81A6-847D700F5C0C}: DhcpNameServer=212.198.0.91 212.198.2.51 HKLM\SYSTEM\CS3\Services\Tcpip\..\{CC34EAC1-55A2-4863-81A6-847D700F5C0C}: DhcpNameServer=212.198.0.91 212.198.2.51 HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=212.198.0.91 212.198.2.51 HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=212.198.0.91 212.198.2.51 HKLM\SYSTEM\CS3\Services\Tcpip\Parameters: DhcpNameServer=212.198.0.91 212.198.2.51 »»»»»»»»»»»»»»»»»»»»»»»» Scanning for wininet.dll infection »»»»»»»»»»»»»»»»»»»»»»»» End
  9. boughi
    MERCI DE ME REPONDRE AUSSI RAPIDEMANT, par contre quand vous parlez du probleme de l'outil vous faites référence au faites ke rien cela ne fonctionne pas kan je suis en mode sans échec et ke je veux mettre en marche runthis.bat?????? sinon merci de me donner un nouvo tuyo en ce ki concerne l'antivirus antivir je vais le télecharger de suite et je vais faire ce ke vous m'avez dit a propos des autres manipulations a faire merci beaucoup en tt cas!!!!!!
  10. boughi
    voila le le résultat avec AVG anti spyware: --------------------------------------------------------- AVG Anti-Spyware - Rapport d'analyse --------------------------------------------------------- + Créé à: 02:02:04 10/11/2007 + Résultat de l'analyse: C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@247realmedia[2].txt -> TrackingCookie.247realmedia : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@network-ca.247realmedia[1].txt -> TrackingCookie.247realmedia : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@2o7[2].txt -> TrackingCookie.2o7 : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@divx.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@fnac.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@gettyimages.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@himedia.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@hotelscom.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@ice.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@incredimailltd.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@msnaccountservices.112.2o7[2].txt -> TrackingCookie.2o7 : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@msnportalintlbeetoffice2007.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@notrefamille.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@realnetworks.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@sfr.122.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\leila@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@adrevolver[1].txt -> TrackingCookie.Adrevolver : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@media.adrevolver[2].txt -> TrackingCookie.Adrevolver : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@adtech[2].txt -> TrackingCookie.Adtech : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@advertising[2].txt -> TrackingCookie.Advertising : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@adviva[1].txt -> TrackingCookie.Adviva : Nettoyé. C:\Users\leila\AppData\Local\Temp\Low\Cookies\leila@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\leila@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé. C:\Users\leila\AppData\Local\Temp\Low\Cookies\leila@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@iv2.bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@burstnet[2].txt -> TrackingCookie.Burstnet : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@casalemedia[1].txt -> TrackingCookie.Casalemedia : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@promo.casinotropez[1].txt -> TrackingCookie.Casinotropez : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@dealtime[1].txt -> TrackingCookie.Dealtime : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@stat.dealtime[2].txt -> TrackingCookie.Dealtime : Nettoyé. C:\Users\leila\AppData\Local\Temp\Low\Cookies\leila@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@estat[1].txt -> TrackingCookie.Estat : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@fastclick[1].txt -> TrackingCookie.Fastclick : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@ehg-foxsports.hitbox[2].txt -> TrackingCookie.Hitbox : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@ehg-psychologies.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@ehg-telecomitalia.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@ehg-youtube.hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@hitbox[1].txt -> TrackingCookie.Hitbox : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@mediaplex[2].txt -> TrackingCookie.Mediaplex : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@ssl-hints.netflame[1].txt -> TrackingCookie.Netflame : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@data2.perf.overture[1].txt -> TrackingCookie.Overture : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@overture[1].txt -> TrackingCookie.Overture : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@perf.overture[1].txt -> TrackingCookie.Overture : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\leila@perf.overture[1].txt -> TrackingCookie.Overture : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@ads.pointroll[2].txt -> TrackingCookie.Pointroll : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\leila@ads.pointroll[2].txt -> TrackingCookie.Pointroll : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@questionmarket[1].txt -> TrackingCookie.Questionmarket : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@real[1].txt -> TrackingCookie.Real : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@realmedia[2].txt -> TrackingCookie.Realmedia : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\leila@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\leila@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\leila@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@statcounter[2].txt -> TrackingCookie.Statcounter : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@tacoda[1].txt -> TrackingCookie.Tacoda : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@tradedoubler[1].txt -> TrackingCookie.Tradedoubler : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@tribalfusion[1].txt -> TrackingCookie.Tribalfusion : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\leila@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@m.webtrends[1].txt -> TrackingCookie.Webtrends : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@statse.webtrendslive[1].txt -> TrackingCookie.Webtrendslive : Nettoyé. C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\Low\leila@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Nettoyé. Fin du rapport et a nouveau un scan avec hitjackis: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 13:37:40, on 09/11/2007 Platform: Windows Vista (WinNT 6.00.1904) MSIE: Internet Explorer v7.00 (7.00.6000.16546) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Windows Defender\MSASCui.exe C:\hp\support\hpsysdrv.exe C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe C:\Windows\System32\rundll32.exe C:\Windows\RtHDVCpl.exe C:\Program Files\HP\HP Software Update\hpwuSchd2.exe C:\Program Files\Common Files\Symantec Shared\ccApp.exe C:\Program Files\Alwil Software\Avast4\ashDisp.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\System32\mobsync.exe C:\hp\kbd\kbd.exe C:\Program Files\Internet Explorer\ieuser.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\taskeng.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe C:\Windows\system32\SearchFilterHost.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.imesh.com/fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\NppBho.dll O2 - BHO: UrlHelper Class - {474597C5-AB09-49d6-A4D5-2E8D7341384E} - C:\Program Files\iMesh Applications\iMesh MediaBar\iMeshIEHelper.dll (file missing) O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\UIBHO.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KbdStub.EXE O4 - HKLM\..\Run: [OsdMaestro] "C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe" O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [HP Software Update] c:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Common Files\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [osCheck] "c:\Program Files\Norton Internet Security\osCheck.exe" O4 - HKLM\..\Run: [symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [LBTWiz.exe] C:\Windows\LBTWiz.exe O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU') O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O13 - Gopher Prefix: O15 - Trusted Zone: http://oisans.univ-savoie.fr O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab56986.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\isPwdSvc.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe -- End of file - 10565 bytes
  11. boughi
    Alors merci et non vous n'étes pas trop long merci alors jai suivi vos conseils dc je me suis mis en mode sans echec mais lorske je veux doucle cliker sur runthis.bat rien ne vient, alors ke dois je faire???? merci d'avance!!!
  12. boughi
    merci pour vos conseils, j'ai suivi vos instructions mais kan je fais MSN.fix ça me met aucune infection détectée, que dois je faire dans ce cas????????? merci d'avance!!!!
  13. boughi
    Alors tout d'abord merci de m'avoir répondu , j'ai donc suivi les instructions que vous m'avez donné et voici ce que cela m'a donné, merci encore , j'attends avec impatience vos autres conseils ..... A+++ je l'espère.... Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 13:32:58, on 09/11/2007 Platform: Windows Vista (WinNT 6.00.1904) MSIE: Internet Explorer v7.00 (7.00.6000.16546) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Windows Defender\MSASCui.exe C:\hp\support\hpsysdrv.exe C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe C:\Windows\System32\rundll32.exe C:\Windows\RtHDVCpl.exe C:\Program Files\HP\HP Software Update\hpwuSchd2.exe C:\Program Files\Common Files\Symantec Shared\ccApp.exe C:\Program Files\Alwil Software\Avast4\ashDisp.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\System32\mobsync.exe C:\hp\kbd\kbd.exe C:\Program Files\Internet Explorer\ieuser.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\SearchFilterHost.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.imesh.com/fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\NppBho.dll O2 - BHO: UrlHelper Class - {474597C5-AB09-49d6-A4D5-2E8D7341384E} - C:\Program Files\iMesh Applications\iMesh MediaBar\iMeshIEHelper.dll (file missing) O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.0\UIBHO.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KbdStub.EXE O4 - HKLM\..\Run: [OsdMaestro] "C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe" O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [HP Software Update] c:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Common Files\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [osCheck] "c:\Program Files\Norton Internet Security\osCheck.exe" O4 - HKLM\..\Run: [symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [LBTWiz.exe] C:\Windows\LBTWiz.exe O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU') O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O13 - Gopher Prefix: O15 - Trusted Zone: http://oisans.univ-savoie.fr O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab56986.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\isPwdSvc.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe -- End of file - 10532 bytes
  14. boughi
    Bonjour, il ya quelques jours mon ordinateur m'a informé la présence de virus (cheval de troie je crois), j'ai essayer de m'informer sur le net ett tt sa mais je serais plus rassurer si kelkun puvait me guider!!! Ainsi, Je voudrais savoir si quelqu'un pourrait m'aider SVP car je ne sais plus quoi faire , je vous en remercie d'avance!!!!! VOILA CE KE LANALYSE MA DONNER!!!!!! Version - a-squared Free 3.0 Dernière mise à jour: 08/11/2007 23:05:28 Réglages Scan: Objets: Mémoire, Traces, Cookies, C:\, D:\ Scan archives: Marche Heuristiques: Marche Scan ADS: Marche Début du scan: 08/11/2007 23:08:02 c:\programdata\microsoft\windows\start menu\programs\imesh Détecter: Trace.Directory.IMesh c:\programdata\microsoft\windows\start menu\programs\imesh\license agreement.lnk Détecter: Trace.File.Gator c:\programdata\microsoft\windows\start menu\programs\imesh\imesh.lnk Détecter: Trace.File.IMesh c:\programdata\microsoft\windows\start menu\programs\imesh\uninstall imesh.lnk Détecter: Trace.File.IMesh Value: HKEY_CLASSES_ROOT\CLSID\{B7D3E479-CC68-42B5-A338-938ECE35F419}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.Eqiso Toolbar Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B7D3E479-CC68-42B5-A338-938ECE35F419}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.Eqiso Toolbar Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar --> {B7D3E479-CC68-42B5-A338-938ECE35F419} Détecter: Trace.Registry.Eqiso Toolbar Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\iMesh --> DisplayName Détecter: Trace.Registry.iMesh 6 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\iMesh --> Publisher Détecter: Trace.Registry.iMesh 6 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\iMesh --> UninstallString Détecter: Trace.Registry.iMesh 6 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\iMesh --> URLInfoAbout Détecter: Trace.Registry.iMesh 6 Key: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\software\imesh Détecter: Trace.Registry.IMesh Key: HKEY_LOCAL_MACHINE\software\imesh Détecter: Trace.Registry.IMesh Key: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\uninstall\imesh Détecter: Trace.Registry.IMesh c:\program files\imesh applications\imesh mediabar Détecter: Trace.Directory.iMesh MediaBar c:\program files\imesh applications\imesh Détecter: Trace.Directory.iMesh c:\program files\imesh applications\imesh\html Détecter: Trace.Directory.iMesh c:\program files\imesh applications\imesh\skins Détecter: Trace.Directory.iMesh c:\program files\imesh applications\imesh\skins\images Détecter: Trace.Directory.iMesh c:\program files\imesh applications\imesh mediabar\basis.xml Détecter: Trace.File.iMesh MediaBar c:\program files\imesh applications\imesh mediabar\version.txt Détecter: Trace.File.iMesh MediaBar c:\users\leila\appdata\roaming\microsoft\internet explorer\quick launch\imesh.lnk Détecter: Trace.File.iMesh c:\users\public\desktop\imesh.lnk Détecter: Trace.File.iMesh c:\program files\imesh applications\imesh\discoveryhelper.dll Détecter: Trace.File.iMesh c:\program files\imesh applications\imesh\html\error.html Détecter: Trace.File.iMesh c:\program files\imesh applications\imesh\html\loading.html Détecter: Trace.File.iMesh c:\program files\imesh applications\imesh\imesh.exe Détecter: Trace.File.iMesh c:\program files\imesh applications\imesh\imwebcontrol.dll Détecter: Trace.File.iMesh c:\program files\imesh applications\imesh\install.log Détecter: Trace.File.iMesh c:\program files\imesh applications\imesh\lame_enc.dll Détecter: Trace.File.iMesh c:\program files\imesh applications\imesh\launcher.exe Détecter: Trace.File.iMesh c:\program files\imesh applications\imesh\license.txt Détecter: Trace.File.iMesh c:\program files\imesh applications\imesh\nctaudiocdwriter2.dll Détecter: Trace.File.iMesh c:\program files\imesh applications\imesh\nctdatacdwriter2.dll Détecter: Trace.File.iMesh c:\program files\imesh applications\imesh\portablemediadevicewrapper.dll Détecter: Trace.File.iMesh c:\program files\imesh applications\imesh\resourcesloc.dll Détecter: Trace.File.iMesh c:\program files\imesh applications\imesh\shw32.dll Détecter: Trace.File.iMesh c:\program files\imesh applications\imesh\skins\default.skn Détecter: Trace.File.iMesh c:\program files\imesh applications\imesh\skins\default.xml Détecter: Trace.File.iMesh c:\program files\imesh applications\imesh\skins\images\defartwork.jpg Détecter: Trace.File.iMesh c:\program files\imesh applications\imesh\skins\images\taflogo.png Détecter: Trace.File.iMesh c:\program files\imesh applications\imesh\skins\images\togologo.png Détecter: Trace.File.iMesh c:\program files\imesh applications\imesh\skins\settings.xml Détecter: Trace.File.iMesh c:\program files\imesh applications\imesh\updateinst.exe Détecter: Trace.File.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Player\Downloaded --> Repeat Détecter: Trace.Registry.iMesh MediaBar Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Player\Library --> Repeat Détecter: Trace.Registry.iMesh MediaBar Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Player\Purchased --> Repeat Détecter: Trace.Registry.iMesh MediaBar Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Player\QuickPlay --> Repeat Détecter: Trace.Registry.iMesh MediaBar Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Player\Top25 --> Repeat Détecter: Trace.Registry.iMesh MediaBar Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Player --> Volume Détecter: Trace.Registry.iMesh MediaBar Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\PortablePlayers --> AutoSync Détecter: Trace.Registry.iMesh MediaBar Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\PortablePlayers --> Name Détecter: Trace.Registry.iMesh MediaBar Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\PortablePlayers --> NoRemove Détecter: Trace.Registry.iMesh MediaBar Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\PortablePlayers --> SerialNumber Détecter: Trace.Registry.iMesh MediaBar Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\PortablePlayers --> Usages Détecter: Trace.Registry.iMesh MediaBar Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\PortablePlayers --> Devices Détecter: Trace.Registry.iMesh MediaBar Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\iMesh MediaBar --> DisplayName Détecter: Trace.Registry.iMesh MediaBar Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\iMesh MediaBar --> UninstallString Détecter: Trace.Registry.iMesh MediaBar Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\General --> AppData Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\General --> DownloadDir Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\General --> DownloadLimit Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\General --> DSUniqueID Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\General --> Home Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\General --> LanguageCode Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\General --> LimitTime Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\General --> Login Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\General --> MNEnabled Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\General --> NetworkPaneShow Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\General --> OKHashes Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\General --> SettingsXML Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\General --> Skin Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\General --> SkinXML Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\General --> StatisticsFileName Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Network\IM2Net --> AccessUploading Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Network\IM2Net --> AntPort Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Network\IM2Net --> ConnectIp Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Network\IM2Net --> ConnectPort Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Network\IM2Net --> EnableLocalConnections Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Network\IM2Net --> MaxConnForFile Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Network\IM2Net --> MaxDownload Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Network\IM2Net --> MaxDownloadSpeed Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Network\IM2Net --> MaxUpload Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Network\IM2Net --> MaxUploadSpeed Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Network\IM2Net --> PreviewPort Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Network\IM2Net --> ReassignSlowSources Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Network\IM2Net --> SmartTraffic Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Network\IM2Net --> StatusUploadPort Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Network\IM2Net --> TimeLibraryReportSent Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Network\IM2Net --> TimeUploadPort Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Network\Proxy --> Enabled Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Network\Proxy --> Password Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Network\Proxy --> ServerAddress Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Network\Proxy --> ServerPort Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Network\Proxy --> Type Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Network\Proxy --> UseAuthentication Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Network\Proxy --> Username Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\Artwork --> ThumbnailArtwork Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\Bubbles --> BMCountArtistPageEntry Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\Bubbles --> BMCountDiscoveryEntry Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\Bubbles --> BMCountDownloadsAdded Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\Bubbles --> BMCountDPShowsUp Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\Bubbles --> BMCountHidingIMWindow Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\Bubbles --> BMCountPeopleHomeEntry Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\Bubbles --> BMCountPlaySong Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\Bubbles --> BMCountPlaySongMN Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\Bubbles --> BMCountProfilePageEntry Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\Bubbles --> BMCountSearch Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\Bubbles --> BMCountSearchEntry Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\Bubbles --> BMCountShownLogin Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\Bubbles --> BMCountUserListOpened Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\Bubbles --> BMDiscoveryGenreEntry Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\Bubbles --> BMDiscoveryMoodsEntry Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\Bubbles --> BMUsedInvite Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\Bubbles --> BMUsedSearch Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\FileList --> DeleteFromDisk Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\FileList --> MediaTypeFilter Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\IEHomepage --> DontShowIEHomepageOffer Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\IEHomepage --> DontShowIEHomepageOfferNever Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\IEHomepage --> IEHomepage Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\IEHomepage --> LastHomepageCheck Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\Invite --> DownloadCount Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\Invite --> InviteShowCount Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\Invite --> PlayCount Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\Search --> MaxResultsCount Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\Search --> MediaTypeFilter Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\Search --> PremiumEnabled Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences\Security --> DoNotShare Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> AUDeclineDate Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> AutoResetPlayCount Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> CopyFromRemovable Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> Crossfade Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IMHistoryFolderPath Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IMPictureFolderPath Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IsAddSongsToQP Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IsAutoVolume Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IsCrossfadeEnable Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IsFitImeshToVideo Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IsIMAlertContacts Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IsIMAlertMessages Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IsIMDontPlayWhenPlaying Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IsIMEveryone Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IsIMPlayWhenSign Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IsIMSpecialAlers Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IsNeedUpdateHisory Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IsNotPresentAnyVideo Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IsNotPresentMusic Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IsNotPresentVideo Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IsNotShowNick Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IsPlayDownloadSound Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IsPlayVideo Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IsResizableVideo Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IsSearchAutoSuggest Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IsSecurityLock Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IsShowCRQDialog Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IsShowDownloadTray Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IsShowDynAdvisory Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IsShowFTPDialog Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IsShowLQDialog Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> IsShowToday Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> ReceiveLooking Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> RootLicenseDate Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> SendLooking Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> ShowNILWarning Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> SubsType Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> UpdaterLocation Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> UsedMNPortable Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> UsedPortable Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> VideoRegime Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> VisualEnabled Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh\Preferences --> VisualRegime Détecter: Trace.Registry.iMesh Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\iMesh --> LastOpenFileDir Détecter: Trace.Registry.iMesh c:\users\leila\appdata\roaming\bsplayer Détecter: Trace.Directory.BSplayer c:\users\leila\appdata\roaming\bsplayer pro Détecter: Trace.Directory.BSplayer c:\users\leila\appdata\roaming\bsplayer\bslib Détecter: Trace.Directory.BSplayer c:\program files\webteh\bsplayer Détecter: Trace.Directory.BSplayer c:\program files\webteh\bsplayer\bslib Détecter: Trace.Directory.BSplayer c:\program files\webteh\bsplayer\doc Détecter: Trace.Directory.BSplayer c:\program files\webteh\bsplayer\insfiles Détecter: Trace.Directory.BSplayer c:\program files\webteh\bsplayer\lang Détecter: Trace.Directory.BSplayer c:\program files\webteh\bsplayer\media Détecter: Trace.Directory.BSplayer c:\program files\webteh\bsplayer\plugins Détecter: Trace.Directory.BSplayer c:\program files\webteh\bsplayer\sdk Détecter: Trace.Directory.BSplayer c:\program files\webteh\bsplayer\sdk\plugins Détecter: Trace.Directory.BSplayer c:\program files\webteh\bsplayer\sdk\plugins\c Détecter: Trace.Directory.BSplayer c:\program files\webteh\bsplayer\sdk\plugins\c\sample Détecter: Trace.Directory.BSplayer c:\program files\webteh\bsplayer\sdk\plugins\c\sample_subtitles Détecter: Trace.Directory.BSplayer c:\program files\webteh\bsplayer\sdk\plugins\delphi Détecter: Trace.Directory.BSplayer c:\program files\webteh\bsplayer\sdk\plugins\delphi\sample Détecter: Trace.Directory.BSplayer c:\program files\webteh\bsplayer\sdk\plugins\delphi\sample_subtitles Détecter: Trace.Directory.BSplayer c:\program files\webteh\bsplayer\skins Détecter: Trace.Directory.BSplayer c:\program files\webteh\bsplayer\skins\base Détecter: Trace.Directory.BSplayer c:\users\leila\appdata\roaming\bsplayer pro\bsplayer.xml Détecter: Trace.File.BSplayer c:\users\leila\appdata\roaming\bsplayer pro\eq.xml Détecter: Trace.File.BSplayer c:\users\leila\appdata\roaming\bsplayer\bslib\bspmlib.dat Détecter: Trace.File.BSplayer c:\users\leila\appdata\roaming\bsplayer\bsplayer.xml Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\bplay.exe Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\bslib\bslib.dll Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\bslib\gds32.dll Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\bslib\icudt30.dll Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\bslib\icuin30.dll Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\bslib\icuuc30.dll Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\bspfilters.sam Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\bsplay.exe Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\bsplayer.exe Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\bsplayer.exe.manifest Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\bsrendv2.dll Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\changes.txt Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\doc\cmdline.txt Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\doc\ini_files.html Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\insfiles\bsplayer.xml Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\insfiles\bspmlib.dat Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\insfiles\eq.xml Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\media\siddharta_-_play_with_me.mp3 Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\plugins\oldskin.dll Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\sdk\bsp.h Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\sdk\bsp.pas Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\sdk\plugins\bspplg.h Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\sdk\plugins\bspplg.pas Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\sdk\plugins\c\sample\sample_plugin.def Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\sdk\plugins\c\sample\sample_plugin.dsp Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\sdk\plugins\c\sample\sample_plugin.dsw Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\sdk\plugins\c\sample\sampleplugin.c Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\sdk\plugins\c\sample_subtitles\sample_sub.c Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\sdk\plugins\c\sample_subtitles\sample_sub.def Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\sdk\plugins\c\sample_subtitles\sample_subtitles.dsp Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\sdk\plugins\c\sample_subtitles\sample_subtitles.dsw Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\sdk\plugins\delphi\sample\sample_plugin.dpr Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\sdk\plugins\delphi\sample_subtitles\sample_sub.dpr Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\skins\base\plist.ini Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\skins\base\prevd.bmp Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\skins\base\rgn.dat Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\skins\base\rgnfs.dat Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\skins\base\skin.ini Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\skins\base\skinfs.ini Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\skins\bat lite.bsz Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\skins\bsplayer.v1.bsz Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\skins\mediabox v-1.bsz Détecter: Trace.File.BSplayer c:\program files\webteh\bsplayer\skins\mediabox v-2.bsz Détecter: Trace.File.BSplayer Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\BST\bsplayerv1 --> AppPath Détecter: Trace.Registry.BSplayer Value: HKEY_USERS\S-1-5-21-699024692-760161385-519567493-1000\Software\BST\bsplayerv1 --> AppVer Détecter: Trace.Registry.BSplayer Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\EventHandlers\PlayCDAudioOnArrival --> BSplayerCDDA Détecter: Trace.Registry.BSplayer Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\BSplayerCDDA --> Action Détecter: Trace.Registry.BSplayer Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\BSplayerCDDA --> DefaultIcon Détecter: Trace.Registry.BSplayer Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\BSplayerCDDA --> InvokeProgID Détecter: Trace.Registry.BSplayer Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\BSplayerCDDA --> InvokeVerb Détecter: Trace.Registry.BSplayer Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\BSplayerCDDA --> Provider Détecter: Trace.Registry.BSplayer Value: HKEY_CLASSES_ROOT\CLSID\{8C11E411-860C-4BAE-A0F4-CBE8DAE6B84C}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.Blubster Value: HKEY_CLASSES_ROOT\CLSID\{9583E033-1CCC-446E-A858-317A0620EE66}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.Blubster Value: HKEY_CLASSES_ROOT\CLSID\{9E6A5B24-1FBC-42D9-870D-07D5C5738075}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.Blubster Value: HKEY_CLASSES_ROOT\CLSID\{EA6DA0D5-1021-4F55-ACBA-D1D8BA7EAB2C}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.Blubster Value: HKEY_CLASSES_ROOT\CLSID\{EE12598F-BD9F-4BAD-BB13-D49829A024FE}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.Blubster Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8C11E411-860C-4BAE-A0F4-CBE8DAE6B84C}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.Blubster Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9583E033-1CCC-446E-A858-317A0620EE66}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.Blubster Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9E6A5B24-1FBC-42D9-870D-07D5C5738075}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.Blubster Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EA6DA0D5-1021-4F55-ACBA-D1D8BA7EAB2C}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.Blubster Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EE12598F-BD9F-4BAD-BB13-D49829A024FE}\InprocServer32 --> ThreadingModel Détecter: Trace.Registry.Blubster C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\leila@2o7[1].txt Détecter: Trace.TrackingCookie C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\leila@atdmt[2].txt Détecter: Trace.TrackingCookie C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\leila@bluestreak[2].txt Détecter: Trace.TrackingCookie C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\leila@bs.serving-sys[2].txt Détecter: Trace.TrackingCookie C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\leila@community.imesh[2].txt Détecter: Trace.TrackingCookie C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\leila@serving-sys[2].txt Détecter: Trace.TrackingCookie C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\leila@smartadserver[1].txt Détecter: Trace.TrackingCookie C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\leila@weborama[2].txt Détecter: Trace.TrackingCookie C:\Users\leila\AppData\Roaming\Microsoft\Windows\Cookies\leila@zedo[1].txt Détecter: Trace.TrackingCookie C:\$Recycle.Bin\S-1-5-21-699024692-760161385-519567493-1000\$RH65RH9.zip/www.Nokia_19_jpg-msn.com Détecter: Backdoor.Win32.SdBot.bzy C:\Program Files\PC-Doctor 5 for Windows\pcdrmodem.p5x Détecter: Heuristic.Dialer.RAS C:\Users\leila\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4N86PKH0\wr-1-1148[1].exe Détecter: Trojan-Downloader.Win32.Small.gll C:\Users\leila\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\US50RFQC\dual[1].jpg Détecter: Dialer C:\Users\leila\AppData\Local\Temp\NERO13356\Toolbar.exe Détecter: Adware.Win32.MyWebSearch C:\Users\leila\AppData\Local\Temp\Temp1_Nokia_19_jpg.zip\www.Nokia_19_jpg-msn.com Détecter: Backdoor.Win32.SdBot.bzy C:\Users\leila\AppData\Local\VirtualStore\Windows\Nokia_19_jpg.zip/www.Nokia_19_jpg-msn.com Détecter: Backdoor.Win32.SdBot.bzy C:\Windows\LBTWiz.exe Détecter: Backdoor.Win32.SdBot.bzy Scanné Fichiers: 149431 Traces: 272746 Cookies: 71 Processus: 61 Trouver Fichiers: 8 Traces: 256 Cookies: 9 Processus: 0 Clés de Registre: 0 Fin du Scan: 09/11/2007 00:20:42 Temps du Scan: 01:12:40
×
×
  • Créer...