[resolu]pubs!!!

[flowstylz]

E:\WINDOWS\Tasks\A8723A5C9171AF64.job moved successfully.

E:\Documents and Settings\All Users\Application Data\GamesBar\08-07-05-12-12-22 moved successfully.

E:\Documents and Settings\All Users\Application Data\GamesBar moved successfully.

E:\Documents and Settings\All Users\Application Data\Grid Blue Memo Site moved successfully.

E:\Program Files\AskTBar\bar\History moved successfully.

E:\Program Files\AskTBar\bar moved successfully.

E:\Program Files\AskTBar moved successfully.

File/Folder E:\Program Files\GamesBar not found.

< EmptyTemp >

File delete failed. E:\DOCUME~1\florent\LOCALS~1\Temp\hpodvd09.log scheduled to be deleted on reboot.

File delete failed. E:\DOCUME~1\florent\LOCALS~1\Temp\MPC8.tmp scheduled to be deleted on reboot.

File delete failed. E:\DOCUME~1\florent\LOCALS~1\Temp\~DFF0E6.tmp scheduled to be deleted on reboot.

File delete failed. E:\DOCUME~1\florent\LOCALS~1\Temp\~DFF0F8.tmp scheduled to be deleted on reboot.

Temp folders emptied.

IE temp folders emptied.

 

OTMoveIt2 by OldTimer - Version 1.0.4.3 log created on 07052008_165847

 

Files moved on Reboot...

E:\DOCUME~1\florent\LOCALS~1\Temp\hpodvd09.log moved successfully.

File E:\DOCUME~1\florent\LOCALS~1\Temp\MPC8.tmp not found!

File E:\DOCUME~1\florent\LOCALS~1\Temp\~DFF0E6.tmp not found!

File E:\DOCUME~1\florent\LOCALS~1\Temp\~DFF0F8.tmp not found!

[angelique]

??? relit mon message précedent

[flowstylz]

Deckard's System Scanner v20071014.68

Run by florent on 2008-07-05 17:11:04

Computer is in Normal Mode.

--------------------------------------------------------------------------------

 

Total Physical Memory: 448 MiB (512 MiB recommended).

 

 

-- HijackThis (run as florent.exe) ---------------------------------------------

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 17:11:09, on 05/07/2008

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16674)

Boot mode: Normal

 

Running processes:

E:\WINDOWS\System32\smss.exe

E:\WINDOWS\system32\winlogon.exe

E:\WINDOWS\system32\services.exe

E:\WINDOWS\system32\lsass.exe

E:\WINDOWS\system32\svchost.exe

E:\WINDOWS\System32\svchost.exe

E:\Program Files\Lavasoft\Ad-Aware\aawservice.exe

E:\WINDOWS\system32\spoolsv.exe

E:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe

E:\WINDOWS\Explorer.EXE

E:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe

E:\Program Files\Belkin\Logiciel Bluetooth\bin\btwdins.exe

E:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe

E:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe

E:\Program Files\HP\HP Software Update\HPWuSchd2.exe

E:\WINDOWS\SOUNDMAN.EXE

E:\Program Files\Java\jre1.6.0_06\bin\jusched.exe

E:\Program Files\Orange HSS\Systray\SystrayApp.exe

E:\WINDOWS\system32\nvsvc32.exe

E:\WINDOWS\system32\ctfmon.exe

E:\Program Files\Free Download Manager\fdm.exe

E:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe

E:\WINDOWS\system32\svchost.exe

E:\Program Files\Windows Live\Messenger\msnmsgr.exe

E:\WINDOWS\system32\rundll32.exe

E:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe

E:\Program Files\Belkin\Logiciel Bluetooth\BTTray.exe

E:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

E:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe

E:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe

E:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe

E:\WINDOWS\system32\wuauclt.exe

E:\Documents and Settings\florent\Bureau\dss.exe

E:\DOCUME~1\florent\Bureau\florent.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favoris

R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - E:\Program Files\Orange HSS\SearchURLHook\SearchPageURL.dll

O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - E:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - E:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - E:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - E:\Program Files\Java\jre1.6.0_06\bin\ssv.dll (file missing)

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - E:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - E:\Program Files\Windows Live Toolbar\msntb.dll

O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - E:\Program Files\Windows Live Toolbar\msntb.dll

O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - E:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE E:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [nwiz] nwiz.exe /install

O4 - HKLM\..\Run: [avgnt] "E:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min

O4 - HKLM\..\Run: [HP Software Update] E:\Program Files\HP\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE E:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [sunJavaUpdateSched] "E:\Program Files\Java\jre1.6.0_06\bin\jusched.exe"

O4 - HKLM\..\Run: [systrayORAHSS] "E:\Program Files\Orange HSS\Systray\SystrayApp.exe"

O4 - HKLM\..\Run: [ORAHSSSessionManager] E:\Program Files\Orange HSS\SessionManager\SessionManager.exe

O4 - HKCU\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [Free Download Manager] E:\Program Files\Free Download Manager\fdm.exe -autorun

O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "E:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"

O4 - HKCU\..\Run: [msnmsgr] "E:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-19\..\Run: [Free Download Manager] E:\Program Files\Free Download Manager\fdm.exe -autorun (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-19\..\RunOnce: [TSClientMSIUninstaller] cmd.exe /C "cscript %systemroot%\Installer\TSClientMsiTrans\tscuinst.vbs" (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')

O4 - HKUS\S-1-5-20\..\RunOnce: [TSClientMSIUninstaller] cmd.exe /C "cscript %systemroot%\Installer\TSClientMsiTrans\tscuinst.vbs" (User 'SERVICE RÉSEAU')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\S-1-5-18\..\RunOnce: [TSClientMSIUninstaller] cmd.exe /C "cscript %systemroot%\Installer\TSClientMsiTrans\tscuinst.vbs" (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] E:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O4 - HKUS\.DEFAULT\..\RunOnce: [TSClientMSIUninstaller] cmd.exe /C "cscript %systemroot%\Installer\TSClientMsiTrans\tscuinst.vbs" (User 'Default user')

O4 - Global Startup: BTTray.lnk = ?

O4 - Global Startup: HP Digital Imaging Monitor.lnk = E:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

O8 - Extra context menu item: &Windows Live Search - res://E:\Program Files\Windows Live Toolbar\msntb.dll/search.htm

O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx

O8 - Extra context menu item: Download all with Free Download Manager - file://E:\Program Files\Free Download Manager\dlall.htm

O8 - Extra context menu item: Download selected with Free Download Manager - file://E:\Program Files\Free Download Manager\dlselected.htm

O8 - Extra context menu item: Download web site with Free Download Manager - file://E:\Program Files\Free Download Manager\dlpage.htm

O8 - Extra context menu item: Download with Free Download Manager - file://E:\Program Files\Free Download Manager\dllink.htm

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://E:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - E:\Program Files\Java\jre1.6.0_06\bin\ssv.dll (file missing)

O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - E:\Program Files\Java\jre1.6.0_06\bin\ssv.dll (file missing)

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - E:\Program Files\Belkin\Logiciel Bluetooth\btsendto_ie.htm

O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - E:\Program Files\Belkin\Logiciel Bluetooth\btsendto_ie.htm

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - E:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - E:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe

O15 - Trusted Zone: http://www.orange.fr

O17 - HKLM\System\CCS\Services\Tcpip\..\{428C57B4-15BD-4570-B36A-E56FF8477C09}: NameServer = 80.10.246.2,80.10.246.129

O17 - HKLM\System\CS1\Services\Tcpip\..\{428C57B4-15BD-4570-B36A-E56FF8477C09}: NameServer = 80.10.246.2,80.10.246.129

O17 - HKLM\System\CS2\Services\Tcpip\..\{428C57B4-15BD-4570-B36A-E56FF8477C09}: NameServer = 80.10.246.2,80.10.246.129

O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - E:\Program Files\Lavasoft\Ad-Aware\aawservice.exe

O23 - Service: Avira AntiVir Personal – Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - E:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe

O23 - Service: Avira AntiVir Personal – Free Antivirus Guard (AntiVirService) - Avira GmbH - E:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe

O23 - Service: Boonty Games - BOONTY - E:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe

O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - E:\Program Files\Belkin\Logiciel Bluetooth\bin\btwdins.exe

O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - E:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe

O23 - Service: NBService - Nero AG - E:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe

O23 - Service: NMIndexingService - Nero AG - E:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - E:\WINDOWS\system32\nvsvc32.exe

O23 - Service: Pml Driver HPZ12 - HP - E:\WINDOWS\system32\HPZipm12.exe

 

--

End of file - 10531 bytes

 

-- Files created between 2008-06-05 and 2008-07-05 -----------------------------

 

2008-07-05 17:01:18 0 dr-h----- E:\Documents and Settings\florent\Recent

2008-07-05 13:28:27 0 dr-h----- E:\Documents and Settings\Kevin\Recent

2008-07-01 20:44:53 0 d-------- E:\Documents and Settings\All Users\Application Data\Sandlot Games

2008-07-01 20:44:31 0 d--hs---- E:\WINDOWS\ftpcache

2008-07-01 20:44:15 0 d-a------ E:\Documents and Settings\All Users\Application Data\TEMP

2008-07-01 20:40:43 0 d-------- E:\Program Files\Fichiers communs\Oberon Media

2008-07-01 20:40:42 0 d-------- E:\Program Files\orange

2008-06-30 18:03:28 0 dr-h----- E:\Documents and Settings\Utilisateur1\Recent

2008-06-28 21:59:31 0 d-------- E:\Program Files\seconddoesboob

2008-06-28 18:36:45 0 d-------- E:\Documents and Settings\Kevin\Bluetooth Software

2008-06-28 17:31:48 0 d-------- E:\WINDOWS\system32\LogFiles

2008-06-28 10:56:23 0 d-------- E:\WINDOWS\BDOSCAN8

2008-06-28 10:37:04 0 d-------- E:\Program Files\Panda Security

2008-06-27 20:35:03 0 d-------- E:\WINDOWS\Sof??are????????tio???er????r?ceTe????re?????Tr?@eTe??M?i??Tr?@e????

2008-06-23 10:55:54 0 d-------- E:\Program Files\Windows Live Safety Center

2008-06-22 18:09:03 335 --a------ E:\WINDOWS\mozregistry.dat

2008-06-21 16:48:54 0 d-------- E:\327882R2FWJFW

2008-06-17 16:51:36 0 d-------- E:\Program Files\JoWooD

2008-06-14 13:23:54 0 d-------- E:\Program Files\Fichiers communs\Vbox

2008-06-14 13:12:37 0 d-------- E:\Documents and Settings\Kevin\Application Data\WinRAR

2008-06-12 09:11:28 0 d-------- E:\Documents and Settings\Kevin\Application Data\DivX

2008-06-12 09:11:26 0 d-------- E:\Documents and Settings\Kevin\Application Data\Media Player Classic

2008-06-11 22:52:18 0 d-------- E:\Program Files\Copernic Desktop Search 2

 

 

-- Find3M Report ---------------------------------------------------------------

 

2008-07-05 17:08:46 0 d-------- E:\Documents and Settings\florent\Application Data\Free Download Manager

2008-07-05 14:10:11 0 d-------- E:\Program Files\Windows Live Toolbar

2008-07-05 13:02:30 0 d-------- E:\Program Files\eMule

2008-07-01 20:40:43 0 d-------- E:\Program Files\Fichiers communs

2008-06-29 18:11:45 0 d-------- E:\Program Files\BoontyGames

2008-06-28 21:59:08 0 d-------- E:\Program Files\Messenger Plus! Live

2008-06-27 13:56:56 0 d-------- E:\Documents and Settings\florent\Application Data\Mozilla

2008-06-19 20:07:54 0 d-------- E:\Program Files\Malwarebytes' Anti-Malware

2008-06-15 17:22:44 0 d-------- E:\Program Files\Fichiers communs\Adobe

2008-06-15 17:22:23 0 d-------- E:\Documents and Settings\florent\Application Data\Adobe

2008-06-06 23:18:07 0 d-------- E:\Documents and Settings\florent\Application Data\HP

2008-06-02 19:38:49 0 d-------- E:\Documents and Settings\florent\Application Data\Malwarebytes

2008-06-01 22:50:50 0 d-------- E:\Documents and Settings\florent\Application Data\Ahead

2008-05-31 01:25:37 0 d-------- E:\Program Files\ToniArts

2008-05-31 01:25:35 0 d--h----- E:\Program Files\InstallShield Installation Information

2008-05-30 14:36:02 0 d-------- E:\Program Files\Lavasoft

2008-05-30 14:35:15 0 d-------- E:\Program Files\Fichiers communs\Wise Installation Wizard

2008-05-30 00:52:15 1409 --a------ E:\WINDOWS\mozver.dat

2008-05-29 16:29:44 0 d-------- E:\Program Files\PhotoFiltre

2008-05-29 14:03:52 0 d-------- E:\Program Files\Fichiers communs\Ahead

2008-05-29 13:59:36 0 d-------- E:\Program Files\Nero

2008-05-29 03:11:24 0 d-------- E:\Program Files\Belkin

2008-05-28 17:25:22 0 d-------- E:\Program Files\Orange HSS

2008-05-28 17:22:41 0 d-------- E:\Program Files\Fichiers communs\France Telecom

2008-05-28 17:19:15 0 d-------- E:\Program Files\SAGEM

2008-05-28 17:19:04 0 d-------- E:\Documents and Settings\florent\Application Data\InstallShield

2008-05-28 17:18:45 0 d-------- E:\Program Files\Securitoo

2008-05-28 00:28:39 500894 --a------ E:\WINDOWS\system32\perfh00C.dat

2008-05-28 00:28:39 80800 --a------ E:\WINDOWS\system32\perfc00C.dat

2008-05-28 00:28:02 0 d-------- E:\Program Files\Zylom Games

2008-05-25 23:59:08 0 d--hs--c- E:\Program Files\Fichiers communs\WindowsLiveInstaller

2008-05-25 23:58:55 0 d-------- E:\Program Files\Windows Live

2008-05-25 22:05:13 0 d-------- E:\Program Files\CCleaner

2008-05-25 22:05:09 0 d-------- E:\Program Files\Yahoo!

2008-05-25 21:53:37 0 d-------- E:\Program Files\Windows Live Favorites

2008-05-25 12:44:59 0 d-------- E:\Program Files\Java

2008-05-25 12:44:11 0 d-------- E:\Program Files\Fichiers communs\Java

2008-05-25 11:46:02 0 d-------- E:\Program Files\AMD

2008-05-25 11:42:15 0 d-------- E:\Program Files\Realtek Sound Manager

2008-05-25 11:42:15 0 d-------- E:\Program Files\AvRack

2008-05-25 11:42:13 0 d-------- E:\Program Files\Realtek AC97

2008-05-25 11:39:26 0 d-------- E:\Program Files\Fichiers communs\InstallShield

2008-05-24 13:47:59 0 d-------- E:\Program Files\Fichiers communs\BOONTY Shared

2008-05-24 13:46:11 0 d-------- E:\Program Files\Boonty

2008-05-24 11:50:45 0 d-------- E:\Documents and Settings\florent\Application Data\Sun

2008-05-24 10:24:41 0 d-------- E:\Documents and Settings\florent\Application Data\WinRAR

2008-05-24 04:02:41 129310 --a------ E:\WINDOWS\hpoins11.dat

2008-05-24 04:01:57 0 d-------- E:\Program Files\Fichiers communs\HP

2008-05-24 04:01:54 0 d-------- E:\Program Files\HP

2008-05-24 03:57:34 0 d-------- E:\Program Files\Hewlett-Packard

2008-05-24 03:56:53 0 d-------- E:\Program Files\Fichiers communs\Hewlett-Packard

2008-05-24 01:50:28 0 d-------- E:\Program Files\Fichiers communs\Real

2008-05-24 01:50:27 0 d-------- E:\Documents and Settings\florent\Application Data\Real

2008-05-24 01:18:06 0 d-------- E:\Program Files\Avira

2008-05-24 00:29:07 0 d-------- E:\Documents and Settings\florent\Application Data\vlc

2008-05-24 00:24:54 0 d-------- E:\Program Files\VideoLAN

2008-05-23 23:58:23 60416 --a------ E:\WINDOWS\ALCFDRTM.EXE <Not Verified; Realtek Semiconductor Corp.; Realtek ALCFDRTM>

2008-05-23 23:45:33 0 d-------- E:\Program Files\DivX

2008-05-23 23:43:00 0 d-------- E:\Documents and Settings\florent\Application Data\Media Player Classic

2008-05-23 23:43:00 0 d-------- E:\Documents and Settings\florent\Application Data\DivX

2008-05-23 23:39:21 0 d-------- E:\Documents and Settings\florent\Application Data\CyberLink

2008-05-23 23:35:55 0 d-------- E:\Documents and Settings\florent\Application Data\Macromedia

2008-05-23 23:19:15 0 d-------- E:\Documents and Settings\florent\Application Data\Talkback

2008-05-23 23:18:02 0 d-------- E:\Documents and Settings\florent\Application Data\Identities

2008-05-23 22:44:14 0 --a------ E:\WINDOWS\nsreg.dat

2008-05-23 21:10:37 0 d-------- E:\Program Files\Fichiers communs\Nero

2008-05-23 20:33:30 0 d-------- E:\Program Files\msn gaming zone

2008-05-23 20:31:13 0 d-------- E:\Program Files\Movie Maker

2008-05-23 20:29:07 23032 --a------ E:\WINDOWS\system32\emptyregdb.dat

2008-05-23 20:28:35 0 d-------- E:\Program Files\Windows NT

2008-05-23 20:19:08 62 --ahs---- E:\Documents and Settings\florent\Application Data\desktop.ini

2008-05-23 18:53:33 0 d-------- E:\Program Files\AVG

2008-05-23 18:41:03 0 d-------- E:\Program Files\Xvid

2008-05-23 16:40:50 0 d-------- E:\Program Files\Fichiers communs\ODBC

2008-05-23 16:40:47 0 d-------- E:\Program Files\Fichiers communs\SpeechEngines

2008-05-23 15:40:56 0 d-------- E:\Program Files\Microsoft Works

2008-05-23 15:40:05 0 d-------- E:\Program Files\Microsoft.NET

2008-05-23 15:34:04 0 d-------- E:\Program Files\MSBuild

2008-05-23 15:28:28 0 d-------- E:\Program Files\Reference Assemblies

2008-05-23 15:12:42 0 d-------- E:\Program Files\microsoft frontpage

2008-05-23 15:12:10 0 d-------- E:\Program Files\Media Player Classic

2008-05-23 15:11:49 0 d-------- E:\Program Files\CyberLink

2008-05-23 15:09:12 0 d-------- E:\Program Files\Free Download Manager

2008-05-23 15:04:40 0 d-------- E:\Program Files\MSXML 6.0

2008-05-23 15:04:25 0 d-------- E:\Program Files\MSXML 4.0

2008-05-23 14:56:30 0 d-------- E:\Program Files\Windows Media Connect 2

2008-05-23 14:51:05 0 d--h----- E:\Program Files\WindowsUpdate

2008-05-23 14:51:00 0 d-------- E:\Program Files\Services en ligne

2008-05-23 14:50:10 0 d-------- E:\Program Files\Fichiers communs\MSSoap

2008-05-23 14:48:29 0 d-------- E:\Program Files\Messenger

2008-05-13 03:53:16 3596288 --a------ E:\WINDOWS\system32\qt-dx331.dll

2008-05-13 03:50:16 196608 --a------ E:\WINDOWS\system32\dtu100.dll <Not Verified; DivX, Inc.; DivX, Inc. dtu100>

2008-05-13 03:50:16 81920 --a------ E:\WINDOWS\system32\dpl100.dll <Not Verified; DivX, Inc.; DivX, Inc. dpl100>

2008-05-13 03:50:08 802816 --a------ E:\WINDOWS\system32\divx_xx11.dll <Not Verified; DivX, Inc.; DivX?>

2008-05-13 03:50:08 823296 --a------ E:\WINDOWS\system32\divx_xx0c.dll <Not Verified; DivX, Inc.; DivX®>

2008-05-13 03:50:08 831488 --a------ E:\WINDOWS\system32\divx_xx0a.dll

2008-05-13 03:50:08 823296 --a------ E:\WINDOWS\system32\divx_xx07.dll <Not Verified; DivX, Inc.; DivX®>

2008-05-13 03:50:06 682496 --a------ E:\WINDOWS\system32\DivX.dll <Not Verified; DivX, Inc.; DivX®>

2008-05-13 03:49:02 12288 --a------ E:\WINDOWS\system32\DivXWMPExtType.dll

 

 

-- Registry Dump ---------------------------------------------------------------

 

*Note* empty entries & legit default entries are not shown

 

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"NvCplDaemon"="E:\WINDOWS\system32\NvCpl.dll" [10/10/2005 15:49]

"nwiz"="nwiz.exe" [10/10/2005 15:49 E:\WINDOWS\system32\nwiz.exe]

"avgnt"="E:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [12/02/2008 10:06]

"HP Software Update"="E:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [19/02/2006 02:41]

"SoundMan"="SOUNDMAN.EXE" [22/09/2005 10:42 E:\WINDOWS\SOUNDMAN.EXE]

"NvMediaCenter"="E:\WINDOWS\system32\NvMcTray.dll" [10/10/2005 15:49]

"SunJavaUpdateSched"="E:\Program Files\Java\jre1.6.0_06\bin\jusched.exe" [25/03/2008 04:28]

"SystrayORAHSS"="E:\Program Files\Orange HSS\Systray\SystrayApp.exe" [24/07/2007 19:55]

"ORAHSSSessionManager"="E:\Program Files\Orange HSS\SessionManager\SessionManager.exe" [24/07/2007 19:03]

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="E:\WINDOWS\system32\ctfmon.exe" [05/08/2004 14:00]

"Free Download Manager"="E:\Program Files\Free Download Manager\fdm.exe" [29/04/2006 10:22]

"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="E:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe" [22/01/2008 10:13]

"msnmsgr"="E:\Program Files\Windows Live\Messenger\msnmsgr.exe" [18/10/2007 11:34]

 

[HKEY_USERS\.default\software\microsoft\windows\currentversion\runonce]

"TSClientMSIUninstaller"=cmd.exe /C "cscript %systemroot%\Installer\TSClientMsiTrans\tscuinst.vbs"

"tscuninstall"=%systemroot%\system32\tscupgrd.exe

 

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]

"Free Download Manager"=E:\Program Files\Free Download Manager\fdm.exe -autorun

 

E:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\

BTTray.lnk - E:\Program Files\Belkin\Logiciel Bluetooth\BTTray.exe [24/08/2005 14:06:54]

HP Digital Imaging Monitor.lnk - E:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [19/02/2006 04:21:22]

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]

"NoRecentDocsHistory"=1 (0x1)

"ClearRecentDocsOnExit"=1 (0x1)

"NoRecentDocsMenu"=1 (0x1)

"NoInternetIcon"=1 (0x1)

"ForceClassicControlPanel"=1 (0x1)

 

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]

"NoRecentDocsHistory"=1 (0x1)

"ClearRecentDocsOnExit"=1 (0x1)

"NoRecentDocsMenu"=1 (0x1)

"NoInternetIcon"=1 (0x1)

"ForceClassicControlPanel"=1 (0x1)

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

SecurityProviders msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll,

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

@="Service"

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]

"E:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]

E:\WINDOWS\system32\ctfmon.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Free Download Manager]

E:\Program Files\Free Download Manager\fdm.exe -autorun

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]

"E:\Program Files\iTunes\iTunesHelper.exe"

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut]

"E:\Program Files\CyberLink\PowerDVD\Language\Language.exe"

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]

"E:\Program Files\MSN Messenger\MsnMsgr.Exe" /background

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]

E:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]

RUNDLL32.EXE E:\WINDOWS\system32\NvCpl.dll,NvStartup

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]

RUNDLL32.EXE E:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]

nwiz.exe /install

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]

"E:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]

SOUNDMAN.EXE

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SRFirstRun]

rundll32 srclient.dll,CreateFirstRunRp

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]

"MDM"=2 (0x2)

"odserv"=3 (0x3)

"ose"=3 (0x3)

"idsvc"=3 (0x3)

"NMIndexingService"=3 (0x3)

"Nero BackItUp Scheduler 3"=2 (0x2)

"WMPNetworkSvc"=3 (0x3)

"RichVideo"=2 (0x2)

"NVSvc"=2 (0x2)

"iPod Service"=3 (0x3)

 

 

 

 

-- End of Deckard's System Scanner: finished at 2008-07-05 17:11:29 ------------

[flowstylz]

je fais le scan antivir et je le poste après merci pour ton aide au fait angélique!

[angelique]

ok , pour DSS c'est ok.

 

le dernier scan antivir devrait etre definitif.

[flowstylz]

Malheureusement c'est pas encore fini regarde un peu ça!

 

 

 

Avira AntiVir Personal

Report file date: samedi 5 juillet 2008 17:13

 

Scanning for 1378724 virus strains and unwanted programs.

 

Licensed to: Avira AntiVir PersonalEdition Classic

Serial number: 0000149996-ADJIE-0001

Platform: Windows XP

Windows version: (Service Pack 2) [5.1.2600]

Boot mode: Normally booted

Username: SYSTEM

Computer name: INTEGRA

 

Version information:

BUILD.DAT : 8.1.00.295 16479 Bytes 09/04/2008 16:24:00

AVSCAN.EXE : 8.1.2.12 311553 Bytes 18/03/2008 09:02:56

AVSCAN.DLL : 8.1.1.0 53505 Bytes 07/02/2008 08:43:37

LUKE.DLL : 8.1.2.9 151809 Bytes 28/02/2008 08:41:23

LUKERES.DLL : 8.1.2.1 12033 Bytes 21/02/2008 08:28:40

ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 10:33:34

ANTIVIR1.VDF : 7.0.5.1 8182784 Bytes 24/06/2008 21:42:19

ANTIVIR2.VDF : 7.0.5.51 273408 Bytes 04/07/2008 13:18:49

ANTIVIR3.VDF : 7.0.5.52 2048 Bytes 04/07/2008 13:18:49

Engineversion : 8.1.0.64

AEVDF.DLL : 8.1.0.5 102772 Bytes 25/02/2008 09:58:21

AESCRIPT.DLL : 8.1.0.46 283002 Bytes 03/07/2008 13:18:41

AESCN.DLL : 8.1.0.22 119157 Bytes 20/06/2008 11:59:30

AERDL.DLL : 8.1.0.20 418165 Bytes 24/05/2008 00:30:34

AEPACK.DLL : 8.1.1.6 364918 Bytes 20/06/2008 11:59:30

AEOFFICE.DLL : 8.1.0.20 192891 Bytes 20/06/2008 11:59:29

AEHEUR.DLL : 8.1.0.35 1298806 Bytes 03/07/2008 13:18:40

AEHELP.DLL : 8.1.0.15 115063 Bytes 29/05/2008 23:20:56

AEGEN.DLL : 8.1.0.29 307573 Bytes 20/06/2008 11:59:26

AEEMU.DLL : 8.1.0.6 430451 Bytes 24/05/2008 00:30:28

AECORE.DLL : 8.1.0.32 168311 Bytes 03/07/2008 13:18:36

AVWINLL.DLL : 1.0.0.7 14593 Bytes 23/01/2008 17:07:53

AVPREF.DLL : 8.0.0.1 25857 Bytes 18/02/2008 10:37:50

AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 13:26:47

AVREG.DLL : 8.0.0.0 30977 Bytes 23/01/2008 17:07:49

AVARKT.DLL : 1.0.0.23 307457 Bytes 12/02/2008 08:29:23

AVEVTLOG.DLL : 8.0.0.11 114945 Bytes 28/02/2008 08:31:31

SQLITE3.DLL : 3.3.17.1 339968 Bytes 22/01/2008 17:28:02

SMTPLIB.DLL : 1.2.0.19 28929 Bytes 23/01/2008 17:08:39

NETNT.DLL : 8.0.0.1 7937 Bytes 25/01/2008 12:05:10

RCIMAGE.DLL : 8.0.0.35 2371841 Bytes 10/03/2008 14:37:25

RCTEXT.DLL : 8.0.32.0 86273 Bytes 06/03/2008 12:02:11

 

Configuration settings for the scan:

Jobname..........................: Complete system scan

Configuration file...............: e:\program files\avira\antivir personaledition classic\sysscan.avp

Logging..........................: low

Primary action...................: interactive

Secondary action.................: ignore

Scan master boot sector..........: on

Scan boot sector.................: on

Boot sectors.....................: C:, E:,

Scan memory......................: on

Process scan.....................: on

Scan registry....................: on

Search for rootkits..............: off

Scan all files...................: All files

Scan archives....................: on

Recursion depth..................: 20

Smart extensions.................: on

Deviating archive types..........: +BSD Mailbox, +Netscape/Mozilla Mailbox, +Eudora Mailbox, +Squid cache, +Pegasus Mailbox, +MS Outlook Mailbox,

Macro heuristic..................: on

File heuristic...................: high

Skipped files....................: E:\Documents and Settings\florent\Bureau\EvID4226Patch.exe,

Deviating risk categories........: +APPL,+GAME,+JOKE,+PCK,+SPR,

 

Start of the scan: samedi 5 juillet 2008 17:13

 

The scan of running processes will be started

Scan process 'avscan.exe' - '1' Module(s) have been scanned

Scan process 'avcenter.exe' - '1' Module(s) have been scanned

Scan process 'wuauclt.exe' - '1' Module(s) have been scanned

Scan process 'hpqste08.exe' - '1' Module(s) have been scanned

Scan process 'alg.exe' - '1' Module(s) have been scanned

Scan process 'NMIndexStoreSvr.exe' - '1' Module(s) have been scanned

Scan process 'NMIndexingService.exe' - '1' Module(s) have been scanned

Scan process 'hpqtra08.exe' - '1' Module(s) have been scanned

Scan process 'BTTray.exe' - '1' Module(s) have been scanned

Scan process 'AlertModule.exe' - '1' Module(s) have been scanned

Scan process 'rundll32.exe' - '1' Module(s) have been scanned

Scan process 'msnmsgr.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'NMBgMonitor.exe' - '1' Module(s) have been scanned

Scan process 'fdm.exe' - '1' Module(s) have been scanned

Scan process 'ctfmon.exe' - '1' Module(s) have been scanned

Scan process 'nvsvc32.exe' - '1' Module(s) have been scanned

Scan process 'SystrayApp.exe' - '1' Module(s) have been scanned

Scan process 'jusched.exe' - '1' Module(s) have been scanned

Scan process 'SOUNDMAN.EXE' - '1' Module(s) have been scanned

Scan process 'hpwuSchd2.exe' - '1' Module(s) have been scanned

Scan process 'avgnt.exe' - '1' Module(s) have been scanned

Scan process 'FTRTSVC.exe' - '1' Module(s) have been scanned

Scan process 'btwdins.exe' - '1' Module(s) have been scanned

Scan process 'avguard.exe' - '1' Module(s) have been scanned

Scan process 'explorer.exe' - '1' Module(s) have been scanned

Scan process 'sched.exe' - '1' Module(s) have been scanned

Scan process 'spoolsv.exe' - '1' Module(s) have been scanned

Scan process 'aawservice.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'lsass.exe' - '1' Module(s) have been scanned

Scan process 'services.exe' - '1' Module(s) have been scanned

Scan process 'winlogon.exe' - '1' Module(s) have been scanned

Scan process 'csrss.exe' - '1' Module(s) have been scanned

Scan process 'smss.exe' - '1' Module(s) have been scanned

39 processes with 39 modules were scanned

 

Starting master boot sector scan:

Master boot sector HD0

[iNFO] No virus was found!

 

Start scanning boot sectors:

Boot sector 'C:\'

[iNFO] No virus was found!

Boot sector 'E:\'

[iNFO] No virus was found!

 

Starting to scan the registry.

The registry was scanned ( '37' files ).

 

 

Starting the file scan:

 

Begin scan in 'C:\'

Begin scan in 'E:\'

E:\hiberfil.sys

[WARNING] The file could not be opened!

E:\pagefile.sys

[WARNING] The file could not be opened!

E:\Documents and Settings\Cindy_2\Application Data\seconddoesboob\funkuploadmfcdlog.exe

[DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen

[NOTE] The file was deleted!

E:\Documents and Settings\Cindy_2\Application Data\seconddoesboob\hwdgwpme.exe

[DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen

[NOTE] The file was deleted!

E:\Documents and Settings\Cindy_2\Application Data\seconddoesboob\wcdiqmlx.exe

[DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen

[NOTE] The file was deleted!

E:\System Volume Information\_restore{85CE1B43-63F5-469A-9D90-2B103B807E25}\RP86\A0052374.exe

[DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen

[NOTE] The file was deleted!

E:\System Volume Information\_restore{85CE1B43-63F5-469A-9D90-2B103B807E25}\RP86\A0052405.exe

[DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen

[NOTE] The file was deleted!

E:\System Volume Information\_restore{85CE1B43-63F5-469A-9D90-2B103B807E25}\RP86\A0052406.exe

[DETECTION] Is the Trojan horse TR/Dldr.Swizzor.Gen

[NOTE] The file was deleted!

 

 

End of the scan: samedi 5 juillet 2008 17:49

Used time: 35:44 min

 

The scan has been done completely.

 

8223 Scanning directories

186681 Files were scanned

6 viruses and/or unwanted programs were found

0 Files were classified as suspicious:

6 files were deleted

0 files were repaired

0 files were moved to quarantine

0 files were renamed

2 Files cannot be scanned

186675 Files not concerned

2334 Archives were scanned

2 Warnings

6 Notes

[angelique]

oui je l'avais vu , mais j'avais un doute , donc desormais supprime le dossier en gras:

 

E:\Documents and Settings\Cindy_2\Application Data\seconddoesboob

E:\Program Files\seconddoesboob

 

et refait un dernier scan antivir

 

c'est pas grand chose , c'est pas actif , c'est du reste de LOP, ceci dire tu aurais données suite à ta 1ere desinfection:

http://forum.zebulon.fr/problemes-de-malwares-t141473.html

http://forum.zebulon.fr/pubs-intempestives-t145589.html

 

Ton probleme serait réglé depuis longtime.

[flowstylz]

désolé j'ai compris la leçon! lol

je saurais pour la prochaine fois

 

 

 

Avira AntiVir Personal

Report file date: dimanche 6 juillet 2008 12:33

 

Scanning for 1379598 virus strains and unwanted programs.

 

Licensed to: Avira AntiVir PersonalEdition Classic

Serial number: 0000149996-ADJIE-0001

Platform: Windows XP

Windows version: (Service Pack 2) [5.1.2600]

Boot mode: Normally booted

Username: SYSTEM

Computer name: INTEGRA

 

Version information:

BUILD.DAT : 8.1.00.295 16479 Bytes 09/04/2008 16:24:00

AVSCAN.EXE : 8.1.2.12 311553 Bytes 18/03/2008 09:02:56

AVSCAN.DLL : 8.1.1.0 53505 Bytes 07/02/2008 08:43:37

LUKE.DLL : 8.1.2.9 151809 Bytes 28/02/2008 08:41:23

LUKERES.DLL : 8.1.2.1 12033 Bytes 21/02/2008 08:28:40

ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 10:33:34

ANTIVIR1.VDF : 7.0.5.1 8182784 Bytes 24/06/2008 21:42:19

ANTIVIR2.VDF : 7.0.5.51 273408 Bytes 04/07/2008 13:18:49

ANTIVIR3.VDF : 7.0.5.53 14336 Bytes 05/07/2008 10:32:00

Engineversion : 8.1.0.64

AEVDF.DLL : 8.1.0.5 102772 Bytes 25/02/2008 09:58:21

AESCRIPT.DLL : 8.1.0.46 283002 Bytes 03/07/2008 13:18:41

AESCN.DLL : 8.1.0.22 119157 Bytes 20/06/2008 11:59:30

AERDL.DLL : 8.1.0.20 418165 Bytes 24/05/2008 00:30:34

AEPACK.DLL : 8.1.1.6 364918 Bytes 20/06/2008 11:59:30

AEOFFICE.DLL : 8.1.0.20 192891 Bytes 20/06/2008 11:59:29

AEHEUR.DLL : 8.1.0.35 1298806 Bytes 03/07/2008 13:18:40

AEHELP.DLL : 8.1.0.15 115063 Bytes 29/05/2008 23:20:56

AEGEN.DLL : 8.1.0.29 307573 Bytes 20/06/2008 11:59:26

AEEMU.DLL : 8.1.0.6 430451 Bytes 24/05/2008 00:30:28

AECORE.DLL : 8.1.0.32 168311 Bytes 03/07/2008 13:18:36

AVWINLL.DLL : 1.0.0.7 14593 Bytes 23/01/2008 17:07:53

AVPREF.DLL : 8.0.0.1 25857 Bytes 18/02/2008 10:37:50

AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 13:26:47

AVREG.DLL : 8.0.0.0 30977 Bytes 23/01/2008 17:07:49

AVARKT.DLL : 1.0.0.23 307457 Bytes 12/02/2008 08:29:23

AVEVTLOG.DLL : 8.0.0.11 114945 Bytes 28/02/2008 08:31:31

SQLITE3.DLL : 3.3.17.1 339968 Bytes 22/01/2008 17:28:02

SMTPLIB.DLL : 1.2.0.19 28929 Bytes 23/01/2008 17:08:39

NETNT.DLL : 8.0.0.1 7937 Bytes 25/01/2008 12:05:10

RCIMAGE.DLL : 8.0.0.35 2371841 Bytes 10/03/2008 14:37:25

RCTEXT.DLL : 8.0.32.0 86273 Bytes 06/03/2008 12:02:11

 

Configuration settings for the scan:

Jobname..........................: Complete system scan

Configuration file...............: e:\program files\avira\antivir personaledition classic\sysscan.avp

Logging..........................: low

Primary action...................: interactive

Secondary action.................: ignore

Scan master boot sector..........: on

Scan boot sector.................: on

Boot sectors.....................: C:, E:,

Scan memory......................: on

Process scan.....................: on

Scan registry....................: on

Search for rootkits..............: off

Scan all files...................: All files

Scan archives....................: on

Recursion depth..................: 20

Smart extensions.................: on

Deviating archive types..........: +BSD Mailbox, +Netscape/Mozilla Mailbox, +Eudora Mailbox, +Squid cache, +Pegasus Mailbox, +MS Outlook Mailbox,

Macro heuristic..................: on

File heuristic...................: high

Skipped files....................: E:\Documents and Settings\florent\Bureau\EvID4226Patch.exe,

Deviating risk categories........: +APPL,+GAME,+JOKE,+PCK,+SPR,

 

Start of the scan: dimanche 6 juillet 2008 12:33

 

The scan of running processes will be started

Scan process 'avscan.exe' - '1' Module(s) have been scanned

Scan process 'avcenter.exe' - '1' Module(s) have been scanned

Scan process 'firefox.exe' - '1' Module(s) have been scanned

Scan process 'alg.exe' - '1' Module(s) have been scanned

Scan process 'NMIndexStoreSvr.exe' - '1' Module(s) have been scanned

Scan process 'NMIndexingService.exe' - '1' Module(s) have been scanned

Scan process 'hpqste08.exe' - '1' Module(s) have been scanned

Scan process 'AlertModule.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'rundll32.exe' - '1' Module(s) have been scanned

Scan process 'hpqtra08.exe' - '1' Module(s) have been scanned

Scan process 'BTTray.exe' - '1' Module(s) have been scanned

Scan process 'nvsvc32.exe' - '1' Module(s) have been scanned

Scan process 'FTRTSVC.exe' - '1' Module(s) have been scanned

Scan process 'msnmsgr.exe' - '1' Module(s) have been scanned

Scan process 'NMBgMonitor.exe' - '1' Module(s) have been scanned

Scan process 'fdm.exe' - '1' Module(s) have been scanned

Scan process 'ctfmon.exe' - '1' Module(s) have been scanned

Scan process 'btwdins.exe' - '1' Module(s) have been scanned

Scan process 'avguard.exe' - '1' Module(s) have been scanned

Scan process 'SystrayApp.exe' - '1' Module(s) have been scanned

Scan process 'jusched.exe' - '1' Module(s) have been scanned

Scan process 'SOUNDMAN.EXE' - '1' Module(s) have been scanned

Scan process 'hpwuSchd2.exe' - '1' Module(s) have been scanned

Scan process 'avgnt.exe' - '1' Module(s) have been scanned

Scan process 'explorer.exe' - '1' Module(s) have been scanned

Scan process 'sched.exe' - '1' Module(s) have been scanned

Scan process 'spoolsv.exe' - '1' Module(s) have been scanned

Scan process 'aawservice.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'lsass.exe' - '1' Module(s) have been scanned

Scan process 'services.exe' - '1' Module(s) have been scanned

Scan process 'winlogon.exe' - '1' Module(s) have been scanned

Scan process 'csrss.exe' - '1' Module(s) have been scanned

Scan process 'smss.exe' - '1' Module(s) have been scanned

39 processes with 39 modules were scanned

 

Starting master boot sector scan:

Master boot sector HD0

[iNFO] No virus was found!

 

Start scanning boot sectors:

Boot sector 'C:\'

[iNFO] No virus was found!

Boot sector 'E:\'

[iNFO] No virus was found!

 

Starting to scan the registry.

The registry was scanned ( '37' files ).

 

 

Starting the file scan:

 

Begin scan in 'C:\'

Begin scan in 'E:\'

E:\hiberfil.sys

[WARNING] The file could not be opened!

E:\pagefile.sys

[WARNING] The file could not be opened!

 

 

End of the scan: dimanche 6 juillet 2008 13:10

Used time: 36:54 min

 

The scan has been done completely.

 

7548 Scanning directories

167408 Files were scanned

0 viruses and/or unwanted programs were found

0 Files were classified as suspicious:

0 files were deleted

0 files were repaired

0 files were moved to quarantine

0 files were renamed

2 Files cannot be scanned

167408 Files not concerned

2345 Archives were scanned

2 Warnings

0 Notes

[angelique]

Voila , c'est ok

 

désolé j'ai compris la leçon! lol

je saurais pour la prochaine fois

 

y'aura pas de prochaine fois ^^ ; consulte la mine de Malekal :: http://www.malekal.com/

et son Fofo :: http://forum.malekal.com/

 

@+

[flowstylz]

merci angélique! résolu!