Se connecter / S'enregistrer
Votre question

iedw.exe

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
1 Septembre 2007 12:02:26

svp aidez moi sinon je suis un homme mort mon père va me destroye comment je peux faire pour enlever iedw.exe
Mon ordi va planter cela empêche d installer tous mes antivirus et de faire fonctionner IE 7

Autres pages sur : iedw exe

1 Septembre 2007 12:27:41

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:25:49, on 01/09/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Controle Parental\bin\optproxy.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\taskswitch.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Dofus\Dofus.exe
C:\Program Files\Dofus\dofus.dll
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Documents and Settings\Administrateur\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.orange.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: PopupSentry Class - {00000000-6C30-11D8-9363-000AE6309657} - C:\Program Files\PopUpSentry.com\Pop-Up Sentry!\PSBHO.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [CoolSwitch] C:\WINDOWS\system32\taskswitch.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\WINDOWS\JM\JMInsIDE.exe
O4 - HKLM\..\Run: [JMB36X Configure] C:\WINDOWS\system32\JMRaidSetup.exe boot
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [Flashget] C:\Program Files\FlashGet\flashget.exe /min
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [PopUpSentry] C:\Program Files\PopUpSentry.com\Pop-Up Sentry!\PSENTRY.EXE
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Lancement rapide de Microsoft Office OneNote 2003.lnk = C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: &Tout télécharger avec FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: &Télécharger avec FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?7b6c6bc85e184fb5b74de2f8e09c6ea8
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?7b6c6bc85e184fb5b74de2f8e09c6ea8
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AVG Anti-Spyware Guard - Unknown owner - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Control Parental (OPTENET_FILTER) - Contrôle Parental - C:\Program Files\Controle Parental\bin\optproxy.exe
O23 - Service: Pop-Up Sentry! Service (SABSVC) - SuperAdBlocker.com - C:\Program Files\PopUpSentry.com\Pop-Up Sentry!\SABSVC.EXE
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe

--
End of file - 10585 bytes


ALORS C BON?????????????????????????
1 Septembre 2007 12:38:12


Relance Hijackthis clique cette fois sur do a system scan only
coche dans les cases à gauche les lignes suivantes ( et uniquement celles-ci ) :

O2 - BHO: PopupSentry Class - {00000000-6C30-11D8-9363-000AE6309657} - C:\Program Files\PopUpSentry.com\Pop-Up Sentry!\PSBHO.dll
O4 - HKCU\..\Run: [PopUpSentry] C:\Program Files\PopUpSentry.com\Pop-Up Sentry!\PSENTRY.EXE


et clique sur Fix checked ( en bas à gauche )

A la demande de confirmation , répond Oui

--------------------------------------------------------------------------------------------------------

Menu Démarrer \ Exécuter , tape Services.msc et valide
Cherche ce service : SABSVC
Double clique dessus
Type de démarrage : Désactivé
Statut du service : Arrêter
puis Appliquer

Relance Hijackthis , clique sur Open the Misc Tools Section
choisis Delete an NT Service
Tape SABSVC et valide

----------------------------------------------------------------------------------------------------------

Télécharge OTMoveIt <- ici

Sauvegarde-le sur ton Bureau

Séléctionne l'encadré ci-dessous , puis Clique droit , puis Copier :

C:\Program Files\PopUpSentry.com\Pop-Up Sentry!\SABSVC.EXE
C:\Program Files\PopUpSentry.com\Pop-Up Sentry!\PSENTRY.EXE
C:\Program Files\PopUpSentry.com\Pop-Up Sentry!\PSBHO.dll
C:\Program Files\PopUpSentry.com\Pop-Up Sentry!
C:\Program Files\PopUpSentry.com


Lance maintenant OTMoveIt en double cliquant sur OTMoveIt.exe

Deux cadres apparaissent , clique droit sur le cadre de gauche , puis Coller
Enfin , clique sur MoveIt![/#f]

[#ff0000]Il est possible qu'il te demande de redemarrer , accepte en cliquant sur YES


Poste le rapport généré ( C:\_OTMoveIt\MovedFiles\ <~~ ici , la date de création ! )
1 Septembre 2007 12:43:31

je ne trouve pas SABSVC
Il n est pas dans les services
T as plus d indiq pour ce fichier
Pourrais tu me dire la définition de ce service
Ca pourrait m aider
1 Septembre 2007 12:52:21


celui là ?

Service: Pop-Up Sentry!
1 Septembre 2007 12:53:35

Menu Démarrer \ Exécuter , tape Services.msc et valide
Cherche ce service : SABSVC
Double clique dessus
Type de démarrage : Désactivé
Statut du service : Arrêter
puis Appliquer
jE NE TROUVE PAS LE SERVICE QUI EST EN ROUGE
1 Septembre 2007 12:57:21

Citation :
jE NE TROUVE PAS LE SERVICE QUI EST EN ROUGE

Citation :
celui là ?

Service: Pop-Up Sentry!
1 Septembre 2007 12:58:59

ah il y est mais ai déjà désactivé donc je continue les manoeuvres comme expliqué au dessus?
1 Septembre 2007 13:10:02

Citation :
ah il y est mais ai déjà désactivé

Supprime le
Citation :
je continue les manoeuvres comme expliqué au dessus?

Oui
1 Septembre 2007 13:24:52

QUAND JE SUIS SUR HIJACKTHIS ET QUE JE TAPE SAVBSVC IL ME DIT EN ANGLAIS
"The service SABSVC is enabled and/or running.Disable it first,using HIJACKTHIS itself or the services.msc windows
mais j ai pourtant désactiver et arrêtter SAVSABC
dois je fermer une application pour pouvoir le supprimer???
1 Septembre 2007 13:30:58

C BON J AI TOUT FAIT VOILA LE RAPPORT OTMoveIt
File/Folder C:\Program Files\PopUpSentry.com\Pop-Up Sentry!\SABSVC.EXE not found.
File/Folder C:\Program Files\PopUpSentry.com\Pop-Up Sentry!\PSENTRY.EXE not found.
File/Folder C:\Program Files\PopUpSentry.com\Pop-Up Sentry!\PSBHO.dll not found.
C:\Program Files\PopUpSentry.com\Pop-Up Sentry!\Quarantine moved successfully.
C:\Program Files\PopUpSentry.com\Pop-Up Sentry! moved successfully.
C:\Program Files\PopUpSentry.com moved successfully.

Created on 09/01/2007 13:30:12
Alors c'est bon je fais quoi maintenant?????????
1 Septembre 2007 13:56:19


Reposte un Hijackthis
1 Septembre 2007 13:57:03

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:56:51, on 01/09/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Controle Parental\bin\optproxy.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\taskswitch.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Dofus\Dofus.exe
C:\Program Files\Dofus\dofus.dll
C:\Documents and Settings\Administrateur\Bureau\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.orange.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [CoolSwitch] C:\WINDOWS\system32\taskswitch.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\WINDOWS\JM\JMInsIDE.exe
O4 - HKLM\..\Run: [JMB36X Configure] C:\WINDOWS\system32\JMRaidSetup.exe boot
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [Flashget] C:\Program Files\FlashGet\flashget.exe /min
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Lancement rapide de Microsoft Office OneNote 2003.lnk = C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: &Tout télécharger avec FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: &Télécharger avec FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?7b6c6bc85e184fb5b74de2f8e09c6ea8
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?7b6c6bc85e184fb5b74de2f8e09c6ea8
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AVG Anti-Spyware Guard - Unknown owner - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Control Parental (OPTENET_FILTER) - Contrôle Parental - C:\Program Files\Controle Parental\bin\optproxy.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe

--
End of file - 10150 bytes

ALORS C'EST BON?????????????????
1 Septembre 2007 14:09:29

Citation :
ALORS C'EST BON?????????????????

Evite les majuscules et pas la peine de mettre 50 points d'interrogation ...

Toujours des problèmes ?
1 Septembre 2007 14:11:16

oui je ne peux toujours pas ouvrir IE 7 et télécharger un antivirus mais je
pense que ca vient du fichier nommé iedw.exe qui se trouve dans le fichier
d IE 7 mais je peux pas le supprimer
Aidez moi
Alors je fais quoi?
1 Septembre 2007 14:21:54


Séléctionne l'encadré ci dessous en entier , puis clique droit , choisis Copier
Commandes éditées !

Puis , menu Démarrer / Executer , tape cmd et valide par OK

fais un clique droit dans la fenêtre noire et choisis Coller

Colle moi le rapport
1 Septembre 2007 14:24:32

C:\Program Files\Internet Explorer\iedw.exe
C:\WINDOWS\$hf_mig$\KB933566\SP2QFE\iedw.exe
C:\WINDOWS\$hf_mig$\KB937143\SP2QFE\iedw.exe
C:\WINDOWS\$NtUninstallKB933566$\iedw.exe
C:\WINDOWS\$NtUninstallKB937143$\iedw.exe
C:\WINDOWS\$NtUninstallKB937143_0$\iedw.exe
C:\WINDOWS\ie7\iedw.exe
C:\WINDOWS\system32\dllcache\iedw.exe
Alors c'est grave docteur?^^
1 Septembre 2007 14:49:40


Fais un scan en ligne Kaspersky <- ici avec Internet Explorer

Clique sur Demarrer Online-Scanner ( en bas à droite )
Clique sur J'accepte , si necessaire valide l'installation des ActiveX
laisse installer les Mises à jour , choisis l'analyse du Poste de travail

à la fin de l'analyse , Sauvegarde le rapport puis colle le dans ta réponse

Si tu vois ce message : La licence de Kaspersky On-line Scanner est périmée
vas dans Ajout / Suppression de programmes et désinstalle On-Line Scanner
retourne sur le site et retente le scan
1 Septembre 2007 14:51:18

mais je ne peux pas l ouvrir Ie ca bug donc je peux pas faire le scan avec Ie
SI je passe par firefox ça marche pas???
1 Septembre 2007 15:07:38


Séléctionne l'encadré ci dessous en entier , puis clique droit , choisis Copier
cd C:\Program Files\Internet Explorer
ren "iedw.exe" "iedw.exe.vir"
cd C:\WINDOWS\ie7
ren "iedw.exe" "iedw.exe.vir"
cd C:\WINDOWS\system32\dllcache
ren "iedw.exe" "iedw.exe.vir"
exit

Puis , menu Démarrer / Executer , tape cmd et valide par OK

fais un clique droit dans la fenêtre noire et choisis Coller

Et regarde si IE refonctionne
1 Septembre 2007 15:09:35

non toujours pas je dois te faire chier ^^
1 Septembre 2007 15:14:12


Fais les mises à jour d'AVG Antispywares mais ne lance pas de scan tout de suite

Redémarre en mode sans échec ( démarrer / redémarrer / tapotte sur F8 jusqu'a l'apparition du menu / monte avec les fleches sur mode sans echec / choisis ta session )

Relance AVG

Choisis l'onglet Analyse , puis l'onglet Paramètres
Sous la question Comment réagir ? clique sur Actions recommandées et choisis Quarantaine
Reclique sur l'onglet Analyse puis fais Analyse complète du système

a la fin de l'analyse ,si un fichier est infecté clique sur Appliquer toutes les actions

Clique sur Enregistrer le rapport puis sur Enregistrer le rapport sous ( enregistre sur ton Bureau )

Redémarre normalement

Poste le rapport AVG
1 Septembre 2007 15:17:35

mais je peux pas mettre les mises a jour car le virus me bloque les antivirus
j ai beau les réinstaller ca veut pas
Je fais comment?
1 Septembre 2007 15:49:12


On va quand même regarder autre chose ...

Télécharge Blacklight <- ici

Sauvegarde le sur ton Bureau

Double-clique fsbl.exe et accepte la licence
clique Scan puis sur Next

A la fin du scan, NE TOUCHE A RIEN ! et ferme Blacklight

un rapport est généré sur ton Bureau , il se nomme fsbl.*******.log (les ******* sont des chiffres)

Poste ce rapport
1 Septembre 2007 16:22:27

09/01/07 16:21:07 [Info]: BlackLight Engine 1.0.64 initialized
09/01/07 16:21:07 [Info]: OS: 5.1 build 2600 (Service Pack 2)
09/01/07 16:21:07 [Note]: 7019 4
09/01/07 16:21:07 [Note]: 7005 0
09/01/07 16:21:13 [Note]: 7006 0
09/01/07 16:21:13 [Note]: 7011 1176
09/01/07 16:21:13 [Note]: 7026 0
09/01/07 16:21:13 [Note]: 7026 0
09/01/07 16:21:13 [Note]: 7024 3
09/01/07 16:21:13 [Info]: Hidden process: C:\WINDOWS\system32\drivers\hidr.exe
09/01/07 16:21:15 [Note]: FSRAW library version 1.7.1022
09/01/07 16:21:15 [Note]: 2000 1006
09/01/07 16:21:15 [Note]: 2000 1006
09/01/07 16:21:15 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:16 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:17 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:18 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:19 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:20 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:21 [Note]: 2000 1006
09/01/07 16:21:22 [Note]: 2000 1006
09/01/07 16:21:22 [Note]: 2000 1006
09/01/07 16:21:22 [Note]: 2000 1006
09/01/07 16:21:22 [Note]: 2000 1006
09/01/07 16:21:22 [Note]: 2000 1006
09/01/07 16:21:22 [Note]: 2000 1006
09/01/07 16:21:22 [Note]: 2000 1006
09/01/07 16:21:22 [Note]: 2000 1006
09/01/07 16:21:22 [Note]: 2000 1006
09/01/07 16:21:22 [Note]: 2000 1006
09/01/07 16:21:22 [Note]: 2000 1006
09/01/07 16:21:22 [Note]: 2000 1006
09/01/07 16:21:22 [Note]: 2000 1006
09/01/07 16:21:22 [Note]: 2000 1006
09/01/07 16:21:22 [Note]: 2000 1006
09/01/07 16:21:22 [Note]: 2000 1006
09/01/07 16:21:22 [Note]: 2000 1006
09/01/07 16:21:22 [Note]: 2000 1006
09/01/07 16:21:22 [Note]: 2000 1006
09/01/07 16:21:22 [Note]: 2000 1006
09/01/07 16:21:22 [Note]: 2000 1006
09/01/07 16:21:22 [Note]: 2000 1006
09/01/07 16:21:22 [Note]: 2000 1006
09/01/07 16:21:22 [Note]: 2000 1006
09/01/07 16:21:22 [Note]: 2000 1006
09/01/07 16:21:22 [Note]: 2000 1006
Alors c'est bon?

Et vu que je peux pas mettre d antivirus y a pas un moyen d en avoir un qui passerais quand même?(spybot ne marche pas avast non plus et AVG non plus)
1 Septembre 2007 17:58:45


Le rapport n'est pas complet , tu es infecté par le virus Bagle

Poste la fin du rapport
1 Septembre 2007 18:15:03

09/01/07 18:13:45 [Info]: BlackLight Engine 1.0.64 initialized
09/01/07 18:13:45 [Info]: OS: 5.1 build 2600 (Service Pack 2)
09/01/07 18:13:45 [Note]: 7019 4
09/01/07 18:13:45 [Note]: 7005 0
09/01/07 18:13:47 [Note]: 7006 0
09/01/07 18:13:47 [Note]: 7011 1176
09/01/07 18:13:47 [Note]: 7026 0
09/01/07 18:13:47 [Note]: 7026 0
09/01/07 18:13:47 [Note]: 7024 3
09/01/07 18:13:47 [Info]: Hidden process: C:\WINDOWS\system32\drivers\hidr.exe
09/01/07 18:13:49 [Note]: FSRAW library version 1.7.1022
09/01/07 18:13:49 [Note]: 2000 1006
09/01/07 18:13:49 [Note]: 2000 1006
09/01/07 18:13:49 [Note]: 2000 1006
09/01/07 18:13:49 [Note]: 2000 1006
09/01/07 18:13:49 [Note]: 2000 1006
09/01/07 18:13:49 [Note]: 2000 1006
09/01/07 18:13:49 [Note]: 2000 1006
09/01/07 18:13:49 [Note]: 2000 1006
09/01/07 18:13:49 [Note]: 2000 1006
09/01/07 18:13:49 [Note]: 2000 1006
09/01/07 18:13:49 [Note]: 2000 1006
09/01/07 18:13:49 [Note]: 2000 1006
09/01/07 18:13:49 [Note]: 2000 1006
09/01/07 18:13:49 [Note]: 2000 1006
09/01/07 18:13:49 [Note]: 2000 1006
09/01/07 18:13:49 [Note]: 2000 1006
09/01/07 18:13:49 [Note]: 2000 1006
09/01/07 18:13:49 [Note]: 2000 1006
09/01/07 18:13:49 [Note]: 2000 1006
09/01/07 18:13:49 [Note]: 2000 1006
09/01/07 18:13:49 [Note]: 2000 1006
09/01/07 18:13:49 [Note]: 2000 1006
09/01/07 18:13:49 [Note]: 2000 1006
09/01/07 18:13:49 [Note]: 2000 1006
09/01/07 18:13:49 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:50 [Note]: 2000 1006
09/01/07 18:13:51 [Note]: 2000 1006
09/01/07 18:13:51 [Note]: 2000 1006
09/01/07 18:13:51 [Note]: 2000 1006
09/01/07 18:13:51 [Note]: 2000 1006
09/01/07 18:13:51 [Note]: 2000 1006
09/01/07 18:13:51 [Note]: 2000 1006
09/01/07 18:13:51 [Note]: 2000 1006
09/01/07 18:13:51 [Note]: 2000 1006
09/01/07 18:13:51 [Note]: 2000 1006
09/01/07 18:13:51 [Note]: 2000 1006
09/01/07 18:13:51 [Note]: 2000 1006
09/01/07 18:13:51 [Note]: 2000 1006
09/01/07 18:13:51 [Note]: 2000 1006
09/01/07 18:13:52 [Note]: 2000 1006
09/01/07 18:13:52 [Note]: 2000 1006
09/01/07 18:13:52 [Note]: 2000 1006
09/01/07 18:13:52 [Note]: 2000 1006
09/01/07 18:13:52 [Note]: 2000 1006
09/01/07 18:13:52 [Note]: 2000 1006
09/01/07 18:13:52 [Note]: 2000 1006
09/01/07 18:13:52 [Note]: 2000 1006
09/01/07 18:13:52 [Note]: 2000 1006
09/01/07 18:13:52 [Note]: 2000 1006
09/01/07 18:13:52 [Note]: 2000 1006
09/01/07 18:13:52 [Note]: 2000 1006
09/01/07 18:13:53 [Note]: 2000 1006
09/01/07 18:13:53 [Note]: 2000 1006
09/01/07 18:13:53 [Note]: 2000 1006
09/01/07 18:13:53 [Note]: 2000 1006
09/01/07 18:13:53 [Note]: 2000 1006
09/01/07 18:13:53 [Note]: 2000 1006
09/01/07 18:13:53 [Note]: 2000 1006
09/01/07 18:13:53 [Note]: 2000 1006
09/01/07 18:13:53 [Note]: 2000 1006
09/01/07 18:13:53 [Note]: 2000 1006
09/01/07 18:13:53 [Note]: 2000 1006
09/01/07 18:13:53 [Note]: 2000 1006
09/01/07 18:13:53 [Note]: 2000 1006
09/01/07 18:13:53 [Note]: 2000 1006
09/01/07 18:13:53 [Note]: 2000 1006
09/01/07 18:13:53 [Note]: 2000 1006
09/01/07 18:13:53 [Note]: 2000 1006
09/01/07 18:13:53 [Note]: 2000 1006
09/01/07 18:13:53 [Note]: 2000 1006
09/01/07 18:13:53 [Note]: 2000 1006
09/01/07 18:13:53 [Note]: 2000 1006
09/01/07 18:13:53 [Note]: 2000 1006
09/01/07 18:13:53 [Note]: 2000 1006
09/01/07 18:13:53 [Note]: 2000 1006
09/01/07 18:13:53 [Note]: 2000 1006
09/01/07 18:13:53 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:54 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:55 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:56 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:57 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:58 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:13:59 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:00 [Note]: 2000 1006
09/01/07 18:14:01 [Note]: 2000 1006
09/01/07 18:14:10 [Note]: 7007 0

Dsl j avais oublié un petit bout est ce que c est grave ce virus?
1 Septembre 2007 18:18:25

Citation :
est ce que c est grave ce virus?

Assez coriace oui et peut causer de serieux domages , il manque toujours la fin ...
1 Septembre 2007 18:31:21

09/01/07 18:30:16 [Info]: BlackLight Engine 1.0.64 initialized
09/01/07 18:30:16 [Info]: OS: 5.1 build 2600 (Service Pack 2)
09/01/07 18:30:16 [Note]: 7019 4
09/01/07 18:30:16 [Note]: 7005 0
09/01/07 18:30:18 [Note]: 7006 0
09/01/07 18:30:18 [Note]: 7011 1176
09/01/07 18:30:18 [Note]: 7026 0
09/01/07 18:30:18 [Note]: 7026 0
09/01/07 18:30:18 [Note]: 7024 3
09/01/07 18:30:18 [Info]: Hidden process: C:\WINDOWS\system32\drivers\hidr.exe
09/01/07 18:30:20 [Note]: FSRAW library version 1.7.1022
09/01/07 18:30:20 [Note]: 2000 1006
09/01/07 18:30:20 [Note]: 2000 1006
09/01/07 18:30:20 [Note]: 2000 1006
09/01/07 18:30:20 [Note]: 2000 1006
09/01/07 18:30:20 [Note]: 2000 1006
09/01/07 18:30:20 [Note]: 2000 1006
09/01/07 18:30:20 [Note]: 2000 1006
09/01/07 18:30:20 [Note]: 2000 1006
09/01/07 18:30:20 [Note]: 2000 1006
09/01/07 18:30:20 [Note]: 2000 1006
09/01/07 18:30:20 [Note]: 2000 1006
09/01/07 18:30:20 [Note]: 2000 1006
09/01/07 18:30:20 [Note]: 2000 1006
09/01/07 18:30:20 [Note]: 2000 1006
09/01/07 18:30:20 [Note]: 2000 1006
09/01/07 18:30:20 [Note]: 2000 1006
09/01/07 18:30:20 [Note]: 2000 1006
09/01/07 18:30:20 [Note]: 2000 1006
09/01/07 18:30:20 [Note]: 2000 1006
09/01/07 18:30:20 [Note]: 2000 1006
09/01/07 18:30:20 [Note]: 2000 1006
09/01/07 18:30:20 [Note]: 2000 1006
09/01/07 18:30:20 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:21 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:22 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:23 [Note]: 2000 1006
09/01/07 18:30:24 [Note]: 2000 1006
09/01/07 18:30:24 [Note]: 2000 1006
09/01/07 18:30:24 [Note]: 2000 1006
09/01/07 18:30:24 [Note]: 2000 1006
09/01/07 18:30:24 [Note]: 2000 1006
09/01/07 18:30:24 [Note]: 2000 1006
09/01/07 18:30:24 [Note]: 2000 1006
09/01/07 18:30:24 [Note]: 2000 1006
09/01/07 18:30:24 [Note]: 2000 1006
09/01/07 18:30:24 [Note]: 2000 1006
09/01/07 18:30:25 [Note]: 2000 1006
09/01/07 18:30:25 [Note]: 2000 1006
09/01/07 18:30:25 [Note]: 2000 1006
09/01/07 18:30:25 [Note]: 2000 1006
09/01/07 18:30:25 [Note]: 2000 1006
09/01/07 18:30:25 [Note]: 2000 1006
09/01/07 18:30:25 [Note]: 2000 1006
09/01/07 18:30:25 [Note]: 2000 1006
09/01/07 18:30:25 [Note]: 2000 1006
09/01/07 18:30:25 [Note]: 2000 1006
09/01/07 18:30:25 [Note]: 2000 1006
09/01/07 18:30:25 [Note]: 2000 1006
09/01/07 18:30:25 [Note]: 2000 1006
09/01/07 18:30:25 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:26 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:27 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:28 [Note]: 2000 1006
09/01/07 18:30:29 [Note]: 2000 1006
09/01/07 18:30:29 [Note]: 2000 1006
09/01/07 18:30:29 [Note]: 2000 1006
09/01/07 18:30:29 [Note]: 2000 1006
09/01/07 18:30:29 [Note]: 2000 1006
09/01/07 18:30:29 [Note]: 2000 1006
09/01/07 18:30:29 [Note]: 2000 1006
09/01/07 18:30:29 [Note]: 2000 1006
09/01/07 18:30:29 [Note]: 2000 1006
09/01/07 18:30:29 [Note]: 2000 1006
09/01/07 18:30:29 [Note]: 2000 1006
09/01/07 18:30:29 [Note]: 2000 1006
09/01/07 18:30:29 [Note]: 2000 1006
09/01/07 18:30:29 [Note]: 2000 1006
09/01/07 18:30:29 [Note]: 2000 1006
09/01/07 18:30:29 [Note]: 2000 1006
09/01/07 18:30:29 [Note]: 2000 1006
09/01/07 18:30:29 [Note]: 2000 1006
09/01/07 18:30:29 [Note]: 2000 1006
09/01/07 18:30:29 [Note]: 2000 1006
09/01/07 18:30:29 [Note]: 2000 1006
09/01/07 18:30:29 [Note]: 2000 1006
09/01/07 18:30:29 [Note]: 2000 1006
09/01/07 18:30:29 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:30 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:31 [Note]: 2000 1006
09/01/07 18:30:32 [Note]: 2000 1006
09/01/07 18:30:32 [Note]: 2000 1006
09/01/07 18:30:32 [Note]: 2000 1006
09/01/07 18:30:32 [Note]: 2000 1006
09/01/07 18:30:32 [Note]: 2000 1006
09/01/07 18:30:32 [Note]: 2000 1006
09/01/07 18:30:32 [Note]: 2000 1006
09/01/07 18:30:32 [Note]: 2000 1006
09/01/07 18:30:32 [Note]: 2000 1006
09/01/07 18:30:32 [Note]: 2000 1006
09/01/07 18:30:32 [Note]: 2000 1006
09/01/07 18:30:32 [Note]: 2000 1006
09/01/07 18:30:32 [Note]: 2000 1006
09/01/07 18:30:32 [Note]: 2000 1006
09/01/07 18:30:32 [Note]: 2000 1006
09/01/07 18:30:32 [Note]: 2000 1006
09/01/07 18:30:32 [Note]: 2000 1006



J ai mis tt séléctionné dans le rapport il y a que ça dsl
A ton avis on va pouvoir s'en débarasser?
1 Septembre 2007 18:38:16


Bizarre ...

Télécharge EliBaglA <- ici

tu dois télécharger ce fichier sur ton Bureau
Double-clique sur ce fichier pour l'ouvrir

dans le menu déroulant Unidad , vérifie que tu as bien C:\
vérifie aussi que l'option Eliminar Ficheros Automaticamente soit bien cochée ( en bas de la fenêtre )

Maintenant , clique sur le bouton Explorar pour lancer l'analyse
en fin d'analyse , un rapport est généré

poste ce rapport ( c:\infosat.txt )
1 Septembre 2007 18:50:02


Sat Sep 01 18:45:43 2007
EliBagle v10.48 (c)2007 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Acción Directa):
Por favor, envienos una muestra del fichero
C:\Muestras\FLEC006.EXE.Muestra EliBagle v10.48
a "virus@satinfo.es". Gracias.
C:\DOCUMENTS AND SETTINGS\ADMINISTRATEUR\APPLICATION DATA\M\FLEC006.EXE --> Eliminado Bagle
C:\DOCUMENTS AND SETTINGS\ADMINISTRATEUR\APPLICATION DATA\M\LIST.OCT --> Eliminado Bagle
Eliminada Carpeta "%WinDir%\exefld"
Restaurada Clave: "SafeBoot\Minimal y Network"

Sat Sep 01 18:46:06 2007
EliBagle v10.48 (c)2007 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando Unidad C:\

Sat Sep 01 18:49:05 2007
EliBagle v10.48 (c)2007 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Acción Directa):

Sat Sep 01 18:49:09 2007
EliBagle v10.48 (c)2007 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando Unidad C:\


C est ça????
1 Septembre 2007 19:05:59


Séléctionne l'encadré ci-dessous , puis Clique droit , puis Copier :

C:\WINDOWS\system32\drivers\hidr.exe


Lance maintenant OTMoveIt en double cliquant sur OTMoveIt.exe

Deux cadres apparaissent , clique droit sur le cadre de gauche , puis Coller
Enfin , clique sur MoveIt![/#f]

[#ff0000]Il est possible qu'il te demande de redemarrer , accepte en cliquant sur YES


Poste le rapport généré ( C:\_OTMoveIt\MovedFiles\ <~~ ici , la date de création ! )

------------------------------------------------------------

Redémarre ton PC , puis refais un scan Blacklight

1 Septembre 2007 19:16:12

C:\WINDOWS\system32\drivers\hidr.exe moved successfully.

Created on 09/01/2007 19:14:32
Peux tu me mettre un lien pour Black light? Merci de m'aider
1 Septembre 2007 19:27:16

Citation :
Peux tu me mettre un lien pour Black light?

Bah , tu l'a fait avec quoi ton rapport ?

Télécharge Blacklight <- ici

Sauvegarde le sur ton Bureau

Double-clique fsbl.exe et accepte la licence
clique Scan puis sur Next

A la fin du scan, NE TOUCHE A RIEN ! et ferme Blacklight

un rapport est généré sur ton Bureau , il se nomme fsbl.*******.log (les ******* sont des chiffres)

Poste ce rapport
1 Septembre 2007 19:32:37

09/01/07 19:29:53 [Info]: BlackLight Engine 1.0.64 initialized
09/01/07 19:29:53 [Info]: OS: 5.1 build 2600 (Service Pack 2)
09/01/07 19:29:53 [Note]: 7019 4
09/01/07 19:29:53 [Note]: 7005 0
09/01/07 19:29:54 [Note]: 7006 0
09/01/07 19:29:54 [Note]: 7011 1176
09/01/07 19:29:55 [Note]: 7026 0
09/01/07 19:29:55 [Note]: 7026 0
09/01/07 19:29:55 [Note]: 7024 3
09/01/07 19:29:55 [Info]: Hidden process: C:\WINDOWS\system32\drivers\hidr.exe
09/01/07 19:29:56 [Note]: FSRAW library version 1.7.1022
09/01/07 19:29:56 [Note]: 2000 1006
09/01/07 19:29:57 [Note]: 2000 1006
09/01/07 19:29:57 [Note]: 2000 1006
09/01/07 19:29:57 [Note]: 2000 1006
09/01/07 19:29:57 [Note]: 2000 1006
09/01/07 19:29:57 [Note]: 2000 1006
09/01/07 19:29:57 [Note]: 2000 1006
09/01/07 19:29:57 [Note]: 2000 1006
09/01/07 19:29:57 [Note]: 2000 1006
09/01/07 19:29:57 [Note]: 2000 1006
09/01/07 19:29:57 [Note]: 2000 1006
09/01/07 19:29:58 [Note]: 2000 1006
09/01/07 19:29:58 [Note]: 2000 1006
09/01/07 19:29:58 [Note]: 2000 1006
09/01/07 19:29:58 [Note]: 2000 1006
09/01/07 19:29:58 [Note]: 2000 1006
09/01/07 19:29:58 [Note]: 2000 1006
09/01/07 19:29:58 [Note]: 2000 1006
09/01/07 19:29:59 [Note]: 2000 1006
09/01/07 19:29:59 [Note]: 2000 1006
09/01/07 19:29:59 [Note]: 2000 1006
09/01/07 19:29:59 [Note]: 2000 1006
09/01/07 19:29:59 [Note]: 2000 1006
09/01/07 19:29:59 [Note]: 2000 1006
09/01/07 19:30:00 [Note]: 2000 1006
09/01/07 19:30:00 [Note]: 2000 1006
09/01/07 19:30:00 [Note]: 2000 1006
09/01/07 19:30:00 [Note]: 2000 1006
09/01/07 19:30:00 [Note]: 2000 1006
09/01/07 19:30:00 [Note]: 2000 1006
09/01/07 19:30:00 [Note]: 2000 1006
09/01/07 19:30:01 [Note]: 2000 1006
09/01/07 19:30:01 [Note]: 2000 1006
09/01/07 19:30:01 [Note]: 2000 1006
09/01/07 19:30:01 [Note]: 2000 1006
09/01/07 19:30:01 [Note]: 2000 1006
09/01/07 19:30:01 [Note]: 2000 1006
09/01/07 19:30:01 [Note]: 2000 1006
09/01/07 19:30:01 [Note]: 2000 1006
09/01/07 19:30:02 [Note]: 2000 1006
09/01/07 19:30:02 [Note]: 2000 1006
09/01/07 19:30:02 [Note]: 2000 1006
09/01/07 19:30:02 [Note]: 2000 1006
09/01/07 19:30:02 [Note]: 2000 1006
09/01/07 19:30:02 [Note]: 2000 1006
09/01/07 19:30:02 [Note]: 2000 1006
09/01/07 19:30:02 [Note]: 2000 1006
09/01/07 19:30:02 [Note]: 2000 1006
09/01/07 19:30:02 [Note]: 2000 1006
09/01/07 19:30:02 [Note]: 2000 1006
09/01/07 19:30:03 [Note]: 2000 1006
09/01/07 19:30:03 [Note]: 2000 1006
09/01/07 19:30:03 [Note]: 2000 1006
09/01/07 19:30:03 [Note]: 2000 1006
09/01/07 19:30:03 [Note]: 2000 1006
09/01/07 19:30:03 [Note]: 2000 1006
09/01/07 19:30:03 [Note]: 2000 1006
09/01/07 19:30:03 [Note]: 2000 1006
09/01/07 19:30:03 [Note]: 2000 1006
09/01/07 19:30:03 [Note]: 2000 1006
09/01/07 19:30:04 [Note]: 2000 1006
09/01/07 19:30:04 [Note]: 2000 1006
09/01/07 19:30:04 [Note]: 2000 1006
09/01/07 19:30:04 [Note]: 2000 1006
09/01/07 19:30:04 [Note]: 2000 1006
09/01/07 19:30:04 [Note]: 2000 1006
09/01/07 19:30:04 [Note]: 2000 1006
09/01/07 19:30:04 [Note]: 2000 1006
09/01/07 19:30:04 [Note]: 2000 1006
09/01/07 19:30:04 [Note]: 2000 1006
09/01/07 19:30:05 [Note]: 2000 1006
09/01/07 19:30:05 [Note]: 2000 1006
09/01/07 19:30:05 [Note]: 2000 1006
09/01/07 19:30:05 [Note]: 2000 1006
09/01/07 19:30:05 [Note]: 2000 1006
09/01/07 19:30:05 [Note]: 2000 1006
09/01/07 19:30:05 [Note]: 2000 1006
09/01/07 19:30:05 [Note]: 2000 1006
09/01/07 19:30:05 [Note]: 2000 1006
09/01/07 19:30:05 [Note]: 2000 1006
09/01/07 19:30:06 [Note]: 2000 1006
09/01/07 19:30:06 [Note]: 2000 1006
09/01/07 19:30:06 [Note]: 2000 1006
09/01/07 19:30:06 [Note]: 2000 1006
09/01/07 19:30:06 [Note]: 2000 1006
09/01/07 19:30:06 [Note]: 2000 1006
09/01/07 19:30:06 [Note]: 2000 1006
09/01/07 19:30:06 [Note]: 2000 1006
09/01/07 19:30:06 [Note]: 2000 1006
09/01/07 19:30:06 [Note]: 2000 1006
09/01/07 19:30:07 [Note]: 2000 1006
09/01/07 19:30:07 [Note]: 2000 1006
09/01/07 19:30:07 [Note]: 2000 1006
09/01/07 19:30:07 [Note]: 2000 1006
09/01/07 19:30:07 [Note]: 2000 1006
09/01/07 19:30:07 [Note]: 2000 1006
09/01/07 19:30:07 [Note]: 2000 1006
09/01/07 19:30:07 [Note]: 2000 1006
09/01/07 19:30:07 [Note]: 2000 1006
09/01/07 19:30:07 [Note]: 2000 1006
09/01/07 19:30:08 [Note]: 2000 1006
09/01/07 19:30:08 [Note]: 2000 1006
09/01/07 19:30:08 [Note]: 2000 1006
09/01/07 19:30:08 [Note]: 2000 1006
09/01/07 19:30:08 [Note]: 2000 1006
09/01/07 19:30:08 [Note]: 2000 1006
09/01/07 19:30:08 [Note]: 2000 1006
09/01/07 19:30:08 [Note]: 2000 1006
09/01/07 19:30:08 [Note]: 2000 1006
09/01/07 19:30:08 [Note]: 2000 1006
09/01/07 19:30:08 [Note]: 2000 1006
09/01/07 19:30:09 [Note]: 2000 1006
09/01/07 19:30:09 [Note]: 2000 1006
09/01/07 19:30:09 [Note]: 2000 1006
09/01/07 19:30:09 [Note]: 2000 1006
09/01/07 19:30:09 [Note]: 2000 1006
09/01/07 19:30:09 [Note]: 2000 1006
09/01/07 19:30:09 [Note]: 2000 1006
09/01/07 19:30:09 [Note]: 2000 1006
09/01/07 19:30:09 [Note]: 2000 1006
09/01/07 19:30:10 [Note]: 2000 1006
09/01/07 19:30:10 [Note]: 2000 1006
09/01/07 19:30:10 [Note]: 2000 1006
09/01/07 19:30:10 [Note]: 2000 1006
09/01/07 19:30:10 [Note]: 2000 1006
09/01/07 19:30:10 [Note]: 2000 1006
09/01/07 19:30:10 [Note]: 2000 1006
09/01/07 19:30:10 [Note]: 2000 1006
09/01/07 19:30:10 [Note]: 2000 1006
09/01/07 19:30:10 [Note]: 2000 1006
09/01/07 19:30:10 [Note]: 2000 1006
09/01/07 19:30:11 [Note]: 2000 1006
09/01/07 19:30:11 [Note]: 2000 1006
09/01/07 19:30:11 [Note]: 2000 1006
09/01/07 19:30:11 [Note]: 2000 1006
09/01/07 19:30:11 [Note]: 2000 1006
09/01/07 19:30:11 [Note]: 2000 1006
09/01/07 19:30:11 [Note]: 2000 1006
09/01/07 19:30:11 [Note]: 2000 1006
09/01/07 19:30:11 [Note]: 2000 1006
09/01/07 19:30:11 [Note]: 2000 1006
09/01/07 19:30:12 [Note]: 2000 1006
09/01/07 19:30:12 [Note]: 2000 1006
09/01/07 19:30:12 [Note]: 2000 1006
09/01/07 19:30:12 [Note]: 2000 1006
09/01/07 19:30:12 [Note]: 2000 1006
09/01/07 19:30:12 [Note]: 2000 1006
09/01/07 19:30:12 [Note]: 2000 1006
09/01/07 19:30:12 [Note]: 2000 1006
09/01/07 19:30:12 [Note]: 2000 1006
09/01/07 19:30:12 [Note]: 2000 1006
09/01/07 19:30:12 [Note]: 2000 1006
09/01/07 19:30:13 [Note]: 2000 1006
09/01/07 19:30:13 [Note]: 2000 1006
09/01/07 19:30:13 [Note]: 2000 1006
09/01/07 19:30:13 [Note]: 2000 1006
09/01/07 19:30:13 [Note]: 2000 1006
09/01/07 19:30:13 [Note]: 2000 1006
09/01/07 19:30:13 [Note]: 2000 1006
09/01/07 19:30:13 [Note]: 2000 1006
09/01/07 19:30:13 [Note]: 2000 1006
09/01/07 19:30:13 [Note]: 2000 1006
09/01/07 19:30:14 [Note]: 2000 1006
09/01/07 19:30:14 [Note]: 2000 1006
09/01/07 19:30:14 [Note]: 2000 1006
09/01/07 19:30:14 [Note]: 2000 1006
09/01/07 19:30:14 [Note]: 2000 1006
09/01/07 19:30:14 [Note]: 2000 1006
09/01/07 19:30:14 [Note]: 2000 1006
09/01/07 19:30:14 [Note]: 2000 1006
09/01/07 19:30:14 [Note]: 2000 1006
09/01/07 19:30:14 [Note]: 2000 1006
09/01/07 19:30:15 [Note]: 2000 1006
09/01/07 19:30:15 [Note]: 2000 1006
09/01/07 19:30:15 [Note]: 2000 1006
09/01/07 19:30:15 [Note]: 2000 1006
09/01/07 19:30:15 [Note]: 2000 1006
09/01/07 19:30:15 [Note]: 2000 1006
09/01/07 19:30:15 [Note]: 2000 1006
09/01/07 19:30:15 [Note]: 2000 1006
09/01/07 19:30:15 [Note]: 2000 1006
09/01/07 19:30:15 [Note]: 2000 1006
09/01/07 19:30:15 [Note]: 2000 1006
09/01/07 19:30:16 [Note]: 2000 1006
09/01/07 19:30:16 [Note]: 2000 1006
09/01/07 19:30:16 [Note]: 2000 1006
09/01/07 19:30:16 [Note]: 2000 1006
09/01/07 19:30:16 [Note]: 2000 1006
09/01/07 19:30:16 [Note]: 2000 1006
09/01/07 19:30:16 [Note]: 2000 1006
09/01/07 19:30:16 [Note]: 2000 1006
09/01/07 19:30:16 [Note]: 2000 1006
09/01/07 19:30:16 [Note]: 2000 1006
09/01/07 19:30:17 [Note]: 2000 1006
09/01/07 19:30:17 [Note]: 2000 1006
09/01/07 19:30:17 [Note]: 2000 1006
09/01/07 19:30:17 [Note]: 2000 1006
09/01/07 19:30:17 [Note]: 2000 1006
09/01/07 19:30:17 [Note]: 2000 1006
09/01/07 19:30:17 [Note]: 2000 1006
09/01/07 19:30:17 [Note]: 2000 1006
09/01/07 19:30:17 [Note]: 2000 1006
09/01/07 19:30:17 [Note]: 2000 1006
09/01/07 19:30:17 [Note]: 2000 1006
09/01/07 19:30:18 [Note]: 2000 1006
09/01/07 19:30:18 [Note]: 2000 1006
09/01/07 19:30:18 [Note]: 2000 1006
09/01/07 19:30:18 [Note]: 2000 1006
09/01/07 19:30:18 [Note]: 2000 1006
09/01/07 19:30:18 [Note]: 2000 1006
09/01/07 19:30:18 [Note]: 2000 1006
09/01/07 19:30:18 [Note]: 2000 1006
09/01/07 19:30:18 [Note]: 2000 1006
09/01/07 19:30:18 [Note]: 2000 1006
09/01/07 19:30:19 [Note]: 2000 1006
09/01/07 19:30:19 [Note]: 2000 1006
09/01/07 19:30:19 [Note]: 2000 1006
09/01/07 19:30:19 [Note]: 2000 1006
09/01/07 19:30:19 [Note]: 2000 1006
09/01/07 19:30:19 [Note]: 2000 1006
09/01/07 19:30:19 [Note]: 2000 1006
09/01/07 19:30:19 [Note]: 2000 1006
09/01/07 19:30:19 [Note]: 2000 1006
09/01/07 19:30:19 [Note]: 2000 1006
09/01/07 19:30:19 [Note]: 2000 1006
09/01/07 19:30:20 [Note]: 2000 1006
09/01/07 19:30:20 [Note]: 2000 1006
09/01/07 19:30:20 [Note]: 2000 1006
09/01/07 19:30:20 [Note]: 2000 1006
09/01/07 19:30:20 [Note]: 2000 1006
09/01/07 19:30:20 [Note]: 2000 1006
09/01/07 19:30:20 [Note]: 2000 1006
09/01/07 19:30:20 [Note]: 2000 1006
09/01/07 19:30:20 [Note]: 2000 1006
09/01/07 19:30:20 [Note]: 2000 1006
09/01/07 19:30:21 [Note]: 2000 1006
09/01/07 19:30:21 [Note]: 2000 1006
09/01/07 19:30:21 [Note]: 2000 1006
09/01/07 19:30:21 [Note]: 2000 1006
09/01/07 19:30:21 [Note]: 2000 1006
09/01/07 19:30:21 [Note]: 2000 1006
09/01/07 19:30:21 [Note]: 2000 1006
09/01/07 19:30:21 [Note]: 2000 1006
09/01/07 19:30:21 [Note]: 2000 1006
09/01/07 19:30:21 [Note]: 2000 1006
09/01/07 19:30:22 [Note]: 2000 1006
09/01/07 19:30:22 [Note]: 2000 1006
09/01/07 19:30:22 [Note]: 2000 1006
09/01/07 19:30:22 [Note]: 2000 1006
09/01/07 19:30:22 [Note]: 2000 1006
09/01/07 19:30:22 [Note]: 2000 1006
09/01/07 19:30:22 [Note]: 2000 1006
09/01/07 19:30:22 [Note]: 2000 1006
09/01/07 19:30:22 [Note]: 2000 1006
09/01/07 19:30:22 [Note]: 2000 1006
09/01/07 19:30:23 [Note]: 2000 1006
09/01/07 19:30:23 [Note]: 2000 1006
09/01/07 19:30:23 [Note]: 2000 1006
09/01/07 19:30:23 [Note]: 2000 1006
09/01/07 19:30:23 [Note]: 2000 1006
09/01/07 19:30:23 [Note]: 2000 1006
09/01/07 19:30:23 [Note]: 2000 1006
09/01/07 19:30:23 [Note]: 2000 1006
09/01/07 19:30:23 [Note]: 2000 1006
09/01/07 19:30:23 [Note]: 2000 1006
09/01/07 19:30:23 [Note]: 2000 1006
09/01/07 19:30:24 [Note]: 2000 1006
09/01/07 19:30:24 [Note]: 2000 1006
09/01/07 19:30:24 [Note]: 2000 1006
09/01/07 19:30:24 [Note]: 2000 1006
09/01/07 19:30:24 [Note]: 2000 1006
09/01/07 19:30:24 [Note]: 2000 1006
09/01/07 19:30:25 [Note]: 2000 1006
09/01/07 19:30:25 [Note]: 2000 1006
09/01/07 19:30:25 [Note]: 2000 1006
09/01/07 19:30:25 [Note]: 2000 1006
09/01/07 19:30:25 [Note]: 2000 1006
09/01/07 19:30:25 [Note]: 2000 1006
09/01/07 19:30:25 [Note]: 2000 1006
09/01/07 19:30:25 [Note]: 2000 1006
09/01/07 19:30:25 [Note]: 2000 1006
09/01/07 19:30:25 [Note]: 2000 1006
09/01/07 19:30:26 [Note]: 2000 1006
09/01/07 19:30:26 [Note]: 2000 1006
09/01/07 19:30:26 [Note]: 2000 1006
09/01/07 19:30:26 [Note]: 2000 1006
09/01/07 19:30:26 [Note]: 2000 1006
09/01/07 19:30:26 [Note]: 2000 1006
09/01/07 19:30:26 [Note]: 2000 1006
09/01/07 19:30:26 [Note]: 2000 1006
09/01/07 19:30:26 [Note]: 2000 1006
09/01/07 19:30:26 [Note]: 2000 1006
09/01/07 19:30:26 [Note]: 2000 1006
09/01/07 19:30:27 [Note]: 2000 1006
09/01/07 19:30:27 [Note]: 2000 1006
09/01/07 19:30:27 [Note]: 2000 1006
09/01/07 19:30:27 [Note]: 2000 1006
09/01/07 19:30:27 [Note]: 2000 1006
09/01/07 19:30:27 [Note]: 2000 1006
09/01/07 19:30:27 [Note]: 2000 1006
09/01/07 19:30:27 [Note]: 2000 1006
09/01/07 19:30:27 [Note]: 2000 1006
09/01/07 19:30:27 [Note]: 2000 1006
09/01/07 19:30:28 [Note]: 2000 1006
09/01/07 19:30:28 [Note]: 2000 1006
09/01/07 19:30:28 [Note]: 2000 1006
09/01/07 19:30:28 [Note]: 2000 1006
09/01/07 19:30:28 [Note]: 2000 1006
09/01/07 19:30:28 [Note]: 2000 1006
09/01/07 19:30:28 [Note]: 2000 1006
09/01/07 19:30:28 [Note]: 2000 1006
09/01/07 19:30:28 [Note]: 2000 1006
09/01/07 19:30:28 [Note]: 2000 1006
09/01/07 19:30:28 [Note]: 2000 1006
09/01/07 19:30:29 [Note]: 2000 1006
09/01/07 19:30:29 [Note]: 2000 1006
09/01/07 19:30:29 [Note]: 2000 1006
09/01/07 19:30:29 [Note]: 2000 1006
09/01/07 19:30:29 [Note]: 2000 1006
09/01/07 19:30:29 [Note]: 2000 1006
09/01/07 19:30:29 [Note]: 2000 1006
09/01/07 19:30:29 [Note]: 2000 1006
09/01/07 19:30:29 [Note]: 2000 1006
09/01/07 19:30:29 [Note]: 7002 0
09/01/07 19:30:29 [Note]: 7003 1
09/01/07 19:30:36 [Note]: 7007 0

Voila j'ai mis scan et j ai rien touché puis fermer
1 Septembre 2007 19:36:33


C'est vraiment bizarre ce rapport ...

On va voir autrement

Télécharge ComboFix <- ici

Enregistre le sur ton Bureau

Double clique combofix.exe ( le .exe peut ne pas apparaitre )

Pour démarrer , tape 1 puis valide , attend la fin du scan

Un rapport est généré , Copie / Colle le dans ta réponse

Tu peux aussi trouver ce rapport ici : C:\Combofix.txt
1 Septembre 2007 19:39:58

ComboFix 07-08-30.3 - "Administrateur" 2007-09-01 19:37:51.1 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.1237 [GMT 2:00]
* Created a new restore point

ADS removed - C:\WINDOWS\system32\ntoskrnl.exe: Le fichier spécifié est introuvable.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))


C:\WINDOWS\system32\drivers\srosa.sys


((((((((((((((((((((((((( Files Created from 2007-08-01 to 2007-09-01 )))))))))))))))))))))))))))))))


2007-09-01 19:37 51,200 --a------ C:\WINDOWS\nircmd.exe
2007-09-01 18:45 <REP> d-------- C:\Muestras
2007-09-01 12:10 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\SUPERAntiSpyware.com
2007-09-01 12:09 <REP> d-------- C:\Program Files\SUPERAntiSpyware
2007-09-01 12:09 <REP> d-------- C:\DOCUME~1\ADMINI~1\APPLIC~1\SUPERAntiSpyware.com
2007-09-01 11:15 0 --a------ C:\WINDOWS\nsreg.dat
2007-09-01 11:02 <REP> d-------- C:\DOCUME~1\ADMINI~1\APPLIC~1\PopUpSentry.com
2007-08-31 20:42 <REP> d--h----- C:\DOCUME~1\ADMINI~1\APPLIC~1\m
2007-08-31 20:39 95,608 --a------ C:\WINDOWS\system32\AvastSS.scr
2007-08-31 20:39 42,912 --a------ C:\WINDOWS\system32\drivers\aswTdi.sys
2007-08-31 20:39 26,624 --a------ C:\WINDOWS\system32\drivers\aavmker4.sys
2007-08-31 20:39 23,152 --a------ C:\WINDOWS\system32\drivers\aswRdr.sys
2007-08-31 20:38 94,416 --a------ C:\WINDOWS\system32\drivers\aswmon2.sys
2007-08-31 20:38 92,848 --a------ C:\WINDOWS\system32\drivers\aswmon.sys
2007-08-31 20:38 783,224 --a------ C:\WINDOWS\system32\aswBoot.exe
2007-08-31 19:15 10,872 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2007-08-31 16:54 26,496 --a--c--- C:\WINDOWS\system32\dllcache\usbstor.sys
2007-08-17 10:42 <REP> d-------- C:\DOCUME~1\ADMINI~1\APPLIC~1\My Games
2007-08-17 10:10 <REP> d-------- C:\Program Files\Firaxis Games
2007-08-17 08:13 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
2007-08-16 11:43 <REP> d-------- C:\WINDOWS\system32\fr-fr
2007-08-16 11:34 <REP> d-------- C:\temp
2007-08-16 11:33 <REP> d-------- C:\DOCUME~1\ADMINI~1\APPLIC~1\Media Center Programs
2007-08-16 11:23 <REP> d-------- C:\DOCUME~1\ADMINI~1\APPLIC~1\InstallShield Installation Information
2007-08-16 10:55 <REP> d-------- C:\DOCUME~1\ADMINI~1\APPLIC~1\InstallShield
2007-08-16 09:10 3,426,072 --a------ C:\WINDOWS\system32\d3dx9_32.dll
2007-08-16 09:10 251,672 --a------ C:\WINDOWS\system32\xactengine2_5.dll
2007-08-14 13:23 <REP> d-------- C:\Program Files\Electronic Arts
2007-08-14 13:22 68,888 --a------ C:\WINDOWS\system32\xinput1_3.dll
2007-08-14 13:22 62,744 --a------ C:\WINDOWS\system32\xinput1_2.dll
2007-08-14 13:22 237,848 --a------ C:\WINDOWS\system32\xactengine2_4.dll
2007-08-14 13:22 236,824 --a------ C:\WINDOWS\system32\xactengine2_3.dll
2007-08-14 13:22 2,414,360 --a------ C:\WINDOWS\system32\d3dx9_31.dll
2007-08-14 13:22 15,128 --a------ C:\WINDOWS\system32\x3daudio1_1.dll
2007-08-14 11:22 <REP> d-------- C:\Program Files\DAEMON Tools
2007-08-14 11:16 29,704 --a------ C:\WINDOWS\system32\uxtuneup.dll
2007-08-14 11:16 <REP> d-------- C:\Program Files\Fichiers communs\Wise Installation Wizard
2007-08-14 11:12 <REP> d-------- C:\Program Files\TuneUp Utilities 2007
2007-08-14 11:12 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
2007-08-14 11:12 <REP> d-------- C:\DOCUME~1\ADMINI~1\APPLIC~1\TuneUp Software
2007-08-14 10:40 <REP> dr-h----- C:\DOCUME~1\ADMINI~1\APPLIC~1\SecuROM
2007-08-14 09:17 <REP> d-------- C:\DOCUME~1\ADMINI~1\APPLIC~1\Nici
2007-08-13 19:40 <REP> d-------- C:\Program Files\Alcohol Soft
2007-08-13 19:37 685,816 --a------ C:\WINDOWS\system32\drivers\sptd.sys


(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

2007-09-01 19:28 --------- d-------- C:\Program Files\eMule
2007-09-01 15:53 --------- d-------- C:\Program Files\FlashGet
2007-08-31 22:12 --------- d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
2007-08-31 19:58 --------- d-------- C:\Program Files\Dofus
2007-08-20 21:36 --------- d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
2007-08-17 10:10 --------- d--h----- C:\Program Files\InstallShield Installation Information
2007-08-16 12:19 --------- d-------- C:\Program Files\THQ
2007-07-30 19:19 92504 --a------ C:\WINDOWS\system32\cdm.dll
2007-07-30 19:19 549720 --a------ C:\WINDOWS\system32\wuapi.dll
2007-07-30 19:19 53080 --a------ C:\WINDOWS\system32\wuauclt.exe
2007-07-30 19:19 43352 --a------ C:\WINDOWS\system32\wups2.dll
2007-07-30 19:19 325976 --a------ C:\WINDOWS\system32\wucltui.dll
2007-07-30 19:19 271224 --a------ C:\WINDOWS\system32\mucltui.dll
2007-07-30 19:19 207736 --a------ C:\WINDOWS\system32\muweb.dll
2007-07-30 19:19 203096 --a------ C:\WINDOWS\system32\wuweb.dll
2007-07-30 19:19 1712984 --a------ C:\WINDOWS\system32\wuaueng.dll
2007-07-30 19:18 33624 --a------ C:\WINDOWS\system32\wups.dll
2007-07-26 19:56 127034 -r------- C:\WINDOWS\bwUnin-8.1.1.50-8876480SL.exe
2007-07-21 03:00 --------- d-------- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2007-07-19 20:12 --------- d-------- C:\Program Files\Logitech
2007-07-19 20:12 --------- d-------- C:\Program Files\Fichiers communs\FotoWire
2007-07-19 20:12 --------- d-------- C:\DOCUME~1\ADMINI~1\APPLIC~1\FotoWire
2007-07-19 20:11 --------- d-------- C:\Program Files\Fichiers communs\Logitech
2007-07-19 20:10 81920 -r------- C:\WINDOWS\bwUnin-6.1.4.68-8876480L.exe
2007-07-16 08:50 --------- d-------- C:\Program Files\Focus
2007-07-16 08:48 --------- d-------- C:\Program Files\Fichiers communs\InstallShield
2007-07-16 08:42 --------- d-------- C:\Program Files\Smart Projects
2007-07-15 21:00 --------- d-------- C:\Program Files\Windows Live
2007-07-15 21:00 --------- d-------- C:\Program Files\MSN Messenger
2007-07-15 21:00 --------- d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
2007-07-15 20:44 --------- d-------- C:\Program Files\MessengerDiscovery
2007-07-15 16:03 --------- d-------- C:\DOCUME~1\LOCALS~1\APPLIC~1\Google
2007-07-13 23:46 --------- d-------- C:\DOCUME~1\ADMINI~1\APPLIC~1\Real
2007-07-13 23:45 --------- d-------- C:\Program Files\Real
2007-07-13 23:45 --------- d-------- C:\Program Files\Fichiers communs\xing shared
2007-07-13 23:45 --------- d-------- C:\Program Files\Fichiers communs\Real
2007-07-13 23:42 --------- d-------- C:\Program Files\BlackSunSoft.net
2007-07-13 23:36 --------- d-------- C:\Program Files\RM-X Player V5.0
2007-07-13 23:03 --------- d-------- C:\Program Files\Folder Lock
2007-07-13 17:09 --------- d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
2007-07-13 11:40 --------- d-------- C:\Program Files\Messenger Plus! Live
2007-07-13 11:05 --------- d-------- C:\Program Files\Shareaza
2007-07-13 11:05 --------- d-------- C:\DOCUME~1\ADMINI~1\APPLIC~1\Shareaza
2007-07-13 10:48 --------- d-------- C:\Program Files\Winamp
2007-07-13 10:30 --------- d-------- C:\Program Files\SLD Codec Pack
2007-07-12 17:41 --------- d-------- C:\Program Files\Nvu
2007-07-12 17:41 --------- d-------- C:\DOCUME~1\ADMINI~1\APPLIC~1\Nvu
2007-07-12 17:24 73216 --a------ C:\WINDOWS\ST6UNST.EXE
2007-07-12 17:24 286720 --------- C:\WINDOWS\Setup1.exe
2007-07-12 16:45 --------- d-------- C:\DOCUME~1\ADMINI~1\APPLIC~1\Google
2007-07-12 16:44 --------- d-------- C:\Program Files\Google
2007-07-12 16:44 --------- d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
2007-07-12 12:33 --------- d-------- C:\Program Files\Yahoo!
2007-07-12 08:16 35363 --a------ C:\WINDOWS\system32\windrvNT.sys
2007-07-12 07:40 --------- d-------- C:\Program Files\Programme Windows
2007-07-12 07:19 --------- d-------- C:\Program Files\Windows Media Connect 2
2007-07-11 20:40 81984 --a------ C:\WINDOWS\system32\bdod.bin
2007-07-11 20:26 --------- d-------- C:\Program Files\Alwil Software
2007-07-08 20:36 --------- d-------- C:\Program Files\Fichiers communs\Adobe Systems Shared
2007-06-30 16:46 461 --a------ C:\Program Files\INSTALL.LOG
2007-06-26 08:09 1104896 --a------ C:\WINDOWS\system32\msxml3.dll
2007-06-21 21:22 98304 --a------ C:\WINDOWS\system32\CmdLineExt.dll
2007-06-19 15:32 282112 --a------ C:\WINDOWS\system32\gdi32.dll
2007-06-13 15:22 1037312 --a------ C:\WINDOWS\explorer.exe
2007-06-01 08:20 51568 --a------ C:\WINDOWS\system32\sirenacm.dll
2006-06-23 08:48 32768 -ra------ C:\WINDOWS\inf\UpdateUSB.exe


((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))


*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 10:50]
"CoolSwitch"="C:\WINDOWS\system32\taskswitch.exe" [2002-03-19 17:30]
"SoundMAXPnP"="C:\Program Files\Analog Devices\Core\smax4pnp.exe" [2006-12-18 15:34]
"SoundMAX"="C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" [2006-07-13 07:12]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2007-03-22 04:50]
"nwiz"="nwiz.exe" [2007-03-22 04:50 C:\WINDOWS\system32\nwiz.exe]
"RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" [2004-11-02 20:24]
"JMB36X IDE Setup"="C:\WINDOWS\JM\JMInsIDE.exe" [2006-10-30 14:44]
"JMB36X Configure"="C:\WINDOWS\system32\JMRaidSetup.exe" [2006-10-30 14:44]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2007-03-22 04:50]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" [2007-07-12 04:00]
"TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [2007-07-13 23:45]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-05-11 03:06]
"LVCOMSX"="C:\WINDOWS\system32\LVCOMSX.EXE" [2004-10-08 11:52]
"LogitechVideoRepair"="C:\Program Files\Logitech\Video\ISStart.exe" [2005-01-18 17:47]
"LogitechVideoTray"="C:\Program Files\Logitech\Video\LogiTray.exe" [2005-01-18 17:37]
"Flashget"="C:\Program Files\FlashGet\flashget.exe" [2007-06-29 13:44]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" []
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-11 11:25]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 00:54]
"Shareaza"="C:\Program Files\Shareaza\Shareaza.exe" [2007-02-05 04:05]
"LogitechSoftwareUpdate"="C:\Program Files\Logitech\Video\ManifestEngine.exe" [2005-01-18 17:07]
"AlcoholAutomount"="C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" [2007-07-02 12:27]
"DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" [2007-04-04 00:29]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2007-06-01 08:21]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2005-08-05 10:10]
"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2007-06-21 14:06]
"eMuleAutoStart"="C:\Program Files\eMule\emule.exe" [2007-05-13 16:57]

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"msnmsgr"="C:\Program Files\MSN Messenger\msnmsgr.exe" /background

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2006-12-20 13:55 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll 2007-04-19 13:41 294912 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sglfb.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\tga.sys]
@="Driver"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Flashget"=C:\Program Files\FlashGet\flashget.exe /min

R0 JGOGO;JMicron Hot-Plug Driver;C:\WINDOWS\system32\DRIVERS\JGOGO.sys
R0 JRAID;JRAID;C:\WINDOWS\system32\DRIVERS\jraid.sys
R2 OPTENET_FILTER;Control Parental;C:\Program Files\Controle Parental\bin\optproxy.exe
R2 UxTuneUp;TuneUp Extension de thème;C:\WINDOWS\System32\svchost.exe -k netsvcs
R2 windrvNT;windrvNT;\??\C:\WINDOWS\system32\windrvNT.sys
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller;C:\WINDOWS\system32\DRIVERS\atl01_xp.sys
R3 SenFiltService;SenFilt Service;C:\WINDOWS\system32\drivers\Senfilt.sys
S1 SABKUTIL;SABKUTIL;\??\C:\Program Files\PopUpSentry.com\Pop-Up Sentry!\SABKUTIL.sys

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp


[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2be73dad-1f7e-11dc-83d3-806d6172696f}]
AutoRun\command- D:\Bin\Assetup.exe

*Newly Created Service* - CATCHME

Contents of the 'Scheduled Tasks' folder
2007-08-31 15:15:43 C:\WINDOWS\Tasks\Maintenance en 1 clic.job - C:\Program Files\TuneUp Utilities 2007\SystemOptimizer.exe
2007-09-01 16:47:00 C:\WINDOWS\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job

**************************************************************************

catchme 0.3.1061 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-09-01 19:38:23
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

disk error: C:\WINDOWS\

please note that you need administrator rights to perform deep scan
**************************************************************************

Completion time: 2007-09-01 19:39:12
C:\ComboFix-quarantined-files.txt ... 2007-09-01 19:38

--- E O F ---
1 Septembre 2007 20:21:29

merci grace a toi j ai pu réintégrer un antivirus a mon ordi (avast)
j ai aussi repris AVG antispyware spybot search and destroy
Pour toi quel est le meilleur antivirus gratuit (que je m en équipe)
en fesant un test avast j ai mis en quarantaine:WIN 32 agent AWB
:WIN 32 WPE PRO
:WIN 32 Trojan-gen
1 Septembre 2007 21:01:13

Citation :
Pour toi quel est le meilleur antivirus gratuit

Antivir ;) 

Regarde dans cette page : > Sécuriser son ordinateur <

Puis reposte un Hijackthis

1 Septembre 2007 21:08:24

salut j ai aussi TuneUp Utilities Est ce efficace? je finis mon analyse et je poste mon hijackthis
1 Septembre 2007 21:13:48

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:13:23, on 01/09/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Controle Parental\bin\optproxy.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\taskswitch.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Fichiers communs\Logitech\KHAL\KHALMNPR.EXE
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Administrateur\Bureau\EasyClea.exe
C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\Rar$EX00.578\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.orange.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.615.5858\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [CoolSwitch] C:\WINDOWS\system32\taskswitch.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\WINDOWS\JM\JMInsIDE.exe
O4 - HKLM\..\Run: [JMB36X Configure] C:\WINDOWS\system32\JMRaidSetup.exe boot
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [Flashget] C:\Program Files\FlashGet\flashget.exe /min
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Shareaza] "C:\Program Files\Shareaza\Shareaza.exe" -tray
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [eMuleAutoStart] C:\Program Files\eMule\emule.exe -AutoStart
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Lancement rapide de Microsoft Office OneNote 2003.lnk = C:\Program Files\Microsoft Office\OFFICE11\ONENOTEM.EXE
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: &Tout télécharger avec FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: &Télécharger avec FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/229?7b6c6bc85e184fb5b74de2f8e09c6ea8
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\Windows Live Toolbar\Components\fr-fr\msntabres.dll.mui/230?7b6c6bc85e184fb5b74de2f8e09c6ea8
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Control Parental (OPTENET_FILTER) - Contrôle Parental - C:\Program Files\Controle Parental\bin\optproxy.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe

--
End of file - 11121 bytes
1 Septembre 2007 21:14:04

Citation :
j ai aussi TuneUp Utilities Est ce efficace?

Tu peux le garder :) 

Séléctionne l'encadré ci dessous en entier , puis clique droit , choisis Copier
cd C:\Program Files\Internet Explorer
ren "iedw.exe.vir" "iedw.exe"
cd C:\WINDOWS\ie7
ren "iedw.exe.vir" "iedw.exe"
cd C:\WINDOWS\system32\dllcache
ren "iedw.exe.vir" "iedw.exe"
exit

Puis , menu Démarrer / Executer , tape cmd et valide par OK

fais un clique droit dans la fenêtre noire et choisis Coller

-------------------------------------------------------------------

Télécharge clean <- ici

décompresse-le sur ton bureau ( extraire tous les fichiers) , tu obtient un dossier clean

Ouvre le dossier clean, double-clique sur clean.cmd ( le .cmd peut ne pas apparaitre )

choisis l'option 1 puis patiente

un rapport est généré , poste ce rapport
1 Septembre 2007 21:18:13

et est ce bien utile de garder tune Up Utilities et easycleaner ou ce sont des excutables qui servent a la meme chose?
1 Septembre 2007 21:21:04

Citation :
est ce bien utile

Si tu ne t'en sert pas , tu les suppriment
1 Septembre 2007 21:23:49

ok donc je vais privilégier tuneup que j utilise souvent et virer easycleaner
voila le rapport: 01/09/2007 a 21:22:19,60

*** Recherche des fichiers dans C:

*** Recherche des fichiers dans C:\WINDOWS\

*** Recherche des fichiers dans C:\WINDOWS\system32
C:\WINDOWS\system32\bdod.bin FOUND

*** Recherche des fichiers dans C:\Program Files
*** Fin du rapport !
1 Septembre 2007 21:39:50


Toujours ce problème de IE ?

Tu as essayé de le désinstaller pour repasser à IE 6 ?
1 Septembre 2007 22:17:26

oui mais ca veut pas il dit que nous ne pouvon pas reprendre une version intérieure a IE7 mais je prends firefox
1 Septembre 2007 22:25:42

non avec firefox malheureusement je peux que trend micro
C est bien dommage qu'il ne s'adapte pas à tous les explorateurs
Est ce que avast anti vers est comme les antispywares ou c'est d une autre catégorie????
      • 1 / 2
      • 2
      • Dernier
Tom's guide dans le monde
  • Allemagne
  • Italie
  • Irlande
  • Royaume Uni
  • Etats Unis
Suivre Tom's Guide
Inscrivez-vous à la Newsletter
  • ajouter à twitter
  • ajouter à facebook
  • ajouter un flux RSS