Problème avec un virus " SANSUE "

Franzy

Bonjour à tous !!

Alors voila je vais vous expliquez mon problème de virus " SANSUE" !!
Quand je démare mon ordi, une fois que j'ouvre ma session windows, Avira Antivir détecte un virus dans le fichier nommé " Main.dbn" et a deux reprise il me le signale, se fichier se trouve ( pour ma part ) dans C:\Windows\Temp\" Un fichier nommé bizare du genre ==>clamav-7fdf66f6a....."

Donc Antivir me propose soir d'ignoré cette alerte ( Ignore ), de le suprimer ( Delete ) ou encore de bloquer son accés ( Denny acces )
mais je ne peux pas cocher la case réparer ( Repair ) !!

Donc dans un premier temp, vue que se fichier vient Du dossier Windows et que je n'avais pas envie de tout bousillé, je lui est bloqué l'accés, puis ensuite se message d'erreur revené toujours, donc c'est la que j'ai décidé de la suprimé !!

Mais à chaque démarage de mon Ordi, cette Alerte revient toujours, se fichier est toujours là, et c'est la que je me suis penchez vers la solution, que ce fichier ce créé surement automatiquement à chaque lancement de Windows !!

Donc si mon ipothèse est vrai, S'il vous plais aider moi A réparé ce fichier, et à enlever ce virus du fichier !!

Merci !!!

Winx

Salut à toi et bienvenue,

Afin de nous éclairersur la nature précise de tes soucis "infectieux", (ou pas ! )
dans un premier temps fais cette procédure et poste le rapport généré par Diaghelp par
Malekal_morte
-->source ici

Ps:
======
Conseil d'ordre général

ne pas aller sur le Net avec Internet Explorer
télécharger Mozilla-Firefox 3.0 et le mettre comme Navigateur par défaut.
http://www.mozilla-europe.org/fr/firefox/
-->source ici de conseils

Poster les 2 rapports demandés (Hijackthis et resultat.txt)
Si vous ne trouvez pas resultat.txt, il se trouve à la racine du DD en :arrow:

c:\resultat.txt

Important
=======================

Citation:

Durant la phase de désinfection, il est absolument indispensable et primordial de ne pas rajouter de programmes à votre PC, afin de ne pas perturber la décontamination de votre machine. D'autre part, faites-en un
usage minimum durant cette phase, merci .

De plus fais un scan total de ta machine et poste le rapport Antivir

ps:

Citation:

je ne peux pas cocher la case réparer

Normal si c'est un virus.... :shock:

Franzy

par contre j'ai fait une erreur donc je vais réctifier !!

le fichier infecté ne s'apelle pas main.dbn mais ==> main.ndb

et il est dans c:\Windows\Temp\clamav-e4bd35265795b0e6d4aedf9a4440553b.0000088c.clamtmp

voila !!

Donc mainteant je vais faire ce que tu vien de me dire et je poste les rapport !!!

PS: pourquoi tu dit qu'il ne faut pas utiliser IE, mais plutot Mozila ???

Momo07 · **Inscription:** 01 Avr 2007 à 13:48 **Messages:** 552

Salut a toi ! Simplement parceque question securité Mozilla est supérieur a IE ! Bonne chance pour ton soucis !

Franzy

Mozilla intègre quoi de plus que IE ??

Winx

re,

Citation:

Mozilla intègre quoi de plus que IE ??

Il est plus sécurisé au point de vue des infections via les scripts activeX.
De plus tu va te ramasser des fenêtre de type CID assez facilement...et j'en passe.
Donc pour avancer,poste donc tes rapports,A+ :wink:

ps:

-->source info ici

Franzy

t'inquiète les scan sont en court !!

Mais c'est quoi des fenêtres de type CID ??? :oops:

Ps: le lien " blogdeclaude" date quand même de 2005 sa va faire quand même 3 ans, en 3 ans IE c'est amélioré, NON ??

Winx

re,
non pas spécialement, en réalité c'est la cible préférée des pirates...

Franzy

Ok !!

Rapport Antivir ::

Avira AntiVir Personal
Report file date: mardi 26 août 2008 19:07

Scanning for 1575260 virus strains and unwanted programs.

Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows Vista
Windows version: (Service Pack 1) [6.0.6001]
Boot mode: Normally booted
Username: SYSTEM
Computer name: PC-DE-FRANCK

Version information:
BUILD.DAT : 8.1.0.331 16934 Bytes 12/08/2008 11:46:00
AVSCAN.EXE : 8.1.4.7 315649 Bytes 20/08/2008 00:42:24
AVSCAN.DLL : 8.1.4.0 40705 Bytes 20/08/2008 00:42:24
LUKE.DLL : 8.1.4.5 164097 Bytes 20/08/2008 00:42:24
LUKERES.DLL : 8.1.4.0 12033 Bytes 20/08/2008 00:42:24
ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 10:33:34
ANTIVIR1.VDF : 7.0.5.1 8182784 Bytes 24/06/2008 00:42:24
ANTIVIR2.VDF : 7.0.6.60 2802176 Bytes 24/08/2008 11:35:04
ANTIVIR3.VDF : 7.0.6.74 91136 Bytes 26/08/2008 17:06:46
Engineversion : 8.1.1.23
AEVDF.DLL : 8.1.0.5 102772 Bytes 25/02/2008 09:58:21
AESCRIPT.DLL : 8.1.0.68 315770 Bytes 20/08/2008 00:42:25
AESCN.DLL : 8.1.0.23 119156 Bytes 20/08/2008 00:42:25
AERDL.DLL : 8.1.0.20 418165 Bytes 20/08/2008 00:42:25
AEPACK.DLL : 8.1.2.1 364917 Bytes 20/08/2008 00:42:25
AEOFFICE.DLL : 8.1.0.22 192890 Bytes 20/08/2008 00:42:25
AEHEUR.DLL : 8.1.0.50 1388918 Bytes 20/08/2008 00:42:24
AEHELP.DLL : 8.1.0.15 115063 Bytes 20/08/2008 00:42:24
AEGEN.DLL : 8.1.0.36 315764 Bytes 20/08/2008 00:42:24
AEEMU.DLL : 8.1.0.7 430452 Bytes 20/08/2008 00:42:24
AECORE.DLL : 8.1.1.8 172406 Bytes 20/08/2008 00:42:24
AEBB.DLL : 8.1.0.1 53617 Bytes 20/08/2008 00:42:24
AVWINLL.DLL : 1.0.0.12 15105 Bytes 20/08/2008 00:42:24
AVPREF.DLL : 8.0.2.0 38657 Bytes 20/08/2008 00:42:24
AVREP.DLL : 8.0.0.2 98344 Bytes 20/08/2008 00:42:24
AVREG.DLL : 8.0.0.1 33537 Bytes 20/08/2008 00:42:24
AVARKT.DLL : 1.0.0.23 307457 Bytes 12/02/2008 08:29:23
AVEVTLOG.DLL : 8.0.0.16 119041 Bytes 20/08/2008 00:42:23
SQLITE3.DLL : 3.3.17.1 339968 Bytes 22/01/2008 17:28:02
SMTPLIB.DLL : 1.2.0.23 28929 Bytes 20/08/2008 00:42:24
NETNT.DLL : 8.0.0.1 7937 Bytes 25/01/2008 12:05:10
RCIMAGE.DLL : 8.0.0.51 2371841 Bytes 20/08/2008 00:42:21
RCTEXT.DLL : 8.0.52.0 86273 Bytes 20/08/2008 00:42:21

Configuration settings for the scan:
Jobname..........................: Complete system scan
Configuration file...............: C:\program files\avira\antivir personaledition classic\sysscan.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: on
Scan boot sector.................: on
Boot sectors.....................: C:, D:,
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: All files
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Deviating archive types..........: +BSD Mailbox, +Netscape/Mozilla Mailbox, +Eudora Mailbox, +Squid cache, +Pegasus Mailbox, +MS Outlook Mailbox,
Macro heuristic..................: on
File heuristic...................: medium
Deviating risk categories........: +APPL,+GAME,+JOKE,+PCK,+SPR,

Start of the scan: mardi 26 août 2008 19:07

The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'taskeng.exe' - '1' Module(s) have been scanned
Scan process 'kbd.exe' - '1' Module(s) have been scanned
Scan process 'HPHC_Service.exe' - '1' Module(s) have been scanned
Scan process 'WLLoginProxy.exe' - '1' Module(s) have been scanned
Scan process 'CToolbar.exe' - '1' Module(s) have been scanned
Scan process 'iexplore.exe' - '1' Module(s) have been scanned
Scan process 'ieuser.exe' - '1' Module(s) have been scanned
Scan process 'unsecapp.exe' - '1' Module(s) have been scanned
Scan process 'sidebar.exe' - '1' Module(s) have been scanned
Scan process 'wmpnetwk.exe' - '1' Module(s) have been scanned
Scan process 'ehmsas.exe' - '1' Module(s) have been scanned
Scan process 'wmpnscfg.exe' - '1' Module(s) have been scanned
Scan process 'CursorFX.exe' - '1' Module(s) have been scanned
Scan process 'ehtray.exe' - '1' Module(s) have been scanned
Scan process 'sidebar.exe' - '1' Module(s) have been scanned
Scan process 'GoogleToolbarNotifier.exe' - '1' Module(s) have been scanned
Scan process 'zlclient.exe' - '0' Module(s) have been scanned
Scan process 'SpywareTerminatorShield.Exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'hpwuSchd2.exe' - '1' Module(s) have been scanned
Scan process 'hpsysdrv.exe' - '1' Module(s) have been scanned
Scan process 'IAAnotif.exe' - '1' Module(s) have been scanned
Scan process 'issch.exe' - '1' Module(s) have been scanned
Scan process 'rundll32.exe' - '1' Module(s) have been scanned
Scan process 'jusched.exe' - '1' Module(s) have been scanned
Scan process 'OSD.exe' - '1' Module(s) have been scanned
Scan process 'RtHDVCpl.exe' - '1' Module(s) have been scanned
Scan process 'schtasks.exe' - '1' Module(s) have been scanned
Scan process 'wpcumi.exe' - '1' Module(s) have been scanned
Scan process 'mobsync.exe' - '1' Module(s) have been scanned
Scan process 'WmiPrvSE.exe' - '1' Module(s) have been scanned
Scan process 'taskeng.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'taskeng.exe' - '1' Module(s) have been scanned
Scan process 'dwm.exe' - '1' Module(s) have been scanned
Scan process 'WUDFHost.exe' - '1' Module(s) have been scanned
Scan process 'SearchIndexer.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'sp_rsser.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'PnkBstrA.exe' - '1' Module(s) have been scanned
Scan process 'LSSrvc.exe' - '1' Module(s) have been scanned
Scan process 'IAANTmon.exe' - '1' Module(s) have been scanned
Scan process 'mDNSResponder.exe' - '1' Module(s) have been scanned
Scan process 'AppleMobileDeviceService.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'vsmon.exe' - '0' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'rundll32.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'SLsvc.exe' - '1' Module(s) have been scanned
Scan process 'audiodg.exe' - '0' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'LVPrcSrv.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'nvvsvc.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'lsm.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'wininit.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
71 processes with 71 modules were scanned

Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!
Master boot sector HD1
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
[INFO] Please restart the search with Administrator rights
Master boot sector HD2
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
[INFO] Please restart the search with Administrator rights
Master boot sector HD3
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
[INFO] Please restart the search with Administrator rights
Master boot sector HD4
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
[INFO] Please restart the search with Administrator rights

Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Boot sector 'D:\'
[INFO] No virus was found!

Starting to scan the registry.
The registry was scanned ( '52' files ).

Starting the file scan:

Begin scan in 'C:\' <Disque Dur HP>
C:\pagefile.sys
[WARNING] The file could not be opened!
Begin scan in 'D:\' <FACTORY_IMAGE>

End of the scan: mardi 26 août 2008 20:36
Used time: 1:29:43 Hour(s)

The scan has been done completely.

27004 Scanning directories
643707 Files were scanned
0 viruses and/or unwanted programs were found
0 Files were classified as suspicious:
0 files were deleted
0 files were repaired
0 files were moved to quarantine
0 files were renamed
1 Files cannot be scanned
643706 Files not concerned
4654 Archives were scanned
5 Warnings
0 Notes

Rapport HijackThis :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:41:15, on 26/08/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\wpcumi.exe
C:\Windows\system32\schtasks.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe
C:\Windows\System32\rundll32.exe
C:\hp\KBD\KbdStub.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\hp\support\hpsysdrv.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
C:\Windows\system32\jusched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.Exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Stardock\CursorFX\CursorFX.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\System32\mobsync.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Windows\system32\SearchFilterHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Yahoo! ¤u¨ã¦C - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O1 - Hosts: ::1 localhost
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\ctbr.dll
O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - (no file)
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! ¤u¨ã¦C - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll
O3 - Toolbar: Barre d'outils &Crawler - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\ctbr.dll
O4 - HKLM\..\Run: [WPCUMI] C:\Windows\system32\WpcUmi.exe
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SunJavaUpdateReg] "C:\Windows\system32\jureg.exe"
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\VistaCodecPack\QT\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [OsdMaestro] "C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [LGPCSuiteLanucher] "C:\Program Files\LG PC Suite 2\LGPCSuiteLanucher_Setup.exe" /tray
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KbdStub.EXE
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe
O4 - HKLM\..\Run: [HP Software Update] c:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Orb] "C:\Program Files\Winamp Remote\bin\OrbTray.exe" /background
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [CursorFX] "C:\Program Files\Stardock\CursorFX\CursorFX.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Global Startup: E_SPSU01.lnk = C:\Windows\System32\spool\drivers\w32x86\3\E_SPSU01.EXE
O8 - Extra context menu item: &Recherche AOL Toolbar - c:\program files\aol\aol toolbar 5.0\resources\fr-fr\local\search.html
O8 - Extra context menu item: &Winamp Search - C:\ProgramData\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O13 - Gopher Prefix:
O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) - http://acs.pandasoftware.com/activescan ... stubie.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://fichiers.touslesdrivers.com/fich ... _0_2_0.cab
O18 - Protocol: bw+0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\ctbr.dll
O20 - AppInit_DLLs: C:\Windows\system32\guard32.dll
O23 - Service: Avira AntiVir Personal – Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal – Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ares Chatroom server (AresChatServer) - Ares Development Group - C:\Program Files\Ares\chatServer.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - Unknown owner - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe (file missing)
O23 - Service: COMODO Firewall Pro Helper Service (cmdAgent) - Unknown owner - C:\Program Files\COMODO\Firewall\cmdagent.exe (file missing)
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: Start BT in service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Windows\System32\ZoneLabs\vsmon.exe

--
End of file - 24848 bytes

-----------------------------------------------------------------------------------

Par contre DiagHelp ne marche pas, quand je le lance et que je suis la procédure a l'aide du site que tu ma donné, sa me met:

"Run time error "52"
Bad file name or number"

" Run time error "75"
Patch/Fille access error "

" Run time error "75"
Patch/Fille access error "

" Run time error "75"
Patch/Fille access error "

Winx

re,

fermes ce processus:
C:\Windows\system32\
jusched.exe

faire ctrl+alt+del
onglet processus
--->aide visuelle, clic ici

desinstall de Desktop Messenger via ajout/suppression de programme

Hijackthis.

cocher + fixer ces lignes, qui sont à l'intérieur du cadre bleu

source du tuto ici

Citation:

O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\ctbr.dll
O3 - Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - (no file)
O3 - Toolbar: Barre d'outils &Crawler - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\ctbr.dll
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\VistaCodecPack\QT\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [LGPCSuiteLanucher] "C:\Program Files\LG PC Suite 2\LGPCSuiteLanucher_Setup.exe" /tray
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [HP Software Update] c:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O8 - Extra context menu item: &Winamp Search - C:\ProgramData\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
O13 - Gopher Prefix:
O18 - Protocol: bw+0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {E598E3C0-2B6C-4B24-B491-64BD54FA0DB1} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\ctbr.dll
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - Unknown owner - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe (file missing)

Tu as des services a stopper:

Attaquons Boonty :

Supprimes :

Notepade.exe

contenu

Citation:

REGEDIT4

[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\boontybox]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_BOONTY_GAMES]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Hardware Profiles\0001\System\CurrentControlSet\Enum\ROOT\LEGACY_BOONTY_GAMES]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Boonty Games]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Enum\Root\LEGACY_BOONTY_GAMES]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Hardware Profiles\0001\System\CurrentControlSet\Enum\ROOT\LEGACY_BOONTY_GAMES]
[-HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Boonty Games]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BOONTY_GAMES]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Hardware Profiles\0001\System\CurrentControlSet\Enum\ROOT\LEGACY_BOONTY_GAMES]
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Boonty Games]

fix.reg

fusionner

EDIT//

Ensuite:

Toolbar-S&D

Team IDN

Bureau

Lance l'installation du programme en exécutant le fichier téléchargé. (double-clic dessus)
Double-clique maintenant sur le raccourci (créé par l'install ) de Toolbar-S&D.
Sélectionne la langue souhaitée (Fr ) en tapant la lettre de ton choix puis en validant avec la touche Entrée.
Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
Poste le rapport généré. (C:\TB.txt)

pour une aide visuelle clic ici

Franzy

par contre je ne comprend pas ==> " Supprimer boonty avec Lop

"%SystemDrive%\Lop SD\LopSD" /boo "

Rapport TB :

-----------\\ ToolBar S&D 1.1.4 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz )
BIOS : BIOS Date: 12/05/07 11:10:18 Ver: 5.11
USER : franck ( Not Administrator ! )
BOOT : Normal boot

"C:\ToolBar SD" ( MAJ : 24-08-2008|14:20 )
Option : [1] ( 26/08/2008|21:56 )

[ UAC => 1 ]

-----------\\ Recherche de Fichiers / Dossiers ...

C:\PROGRA~2\MICROS~1\Windows\STARTM~1\Programs\Barre d'outils Crawler
C:\Users\franck\AppData\Roaming\MICROS~1\Windows\Cookies\franck@dnl.crawler[1].txt
C:\Program Files\Crawler
C:\Program Files\Crawler\adrkeys.dat
C:\Program Files\Crawler\Cache
C:\Program Files\Crawler\confirm.dat
C:\Program Files\Crawler\ctbcomm.dll
C:\Program Files\Crawler\ctbr.dll
C:\Program Files\Crawler\CTConf.dat
C:\Program Files\Crawler\CTipsDef.dll
C:\Program Files\Crawler\CToolbar.exe
C:\Program Files\Crawler\CUpdate.exe
C:\Program Files\Crawler\Download
C:\Program Files\Crawler\Languages
C:\Program Files\Crawler\lookfor.dat
C:\Program Files\Crawler\majorse.dat
C:\Program Files\Crawler\rootmenu.dat
C:\Program Files\Crawler\services.dat
C:\Program Files\Crawler\STWSGLanguageAct
C:\Program Files\Crawler\TBR5LanguageAct
C:\Program Files\Crawler\Update
C:\Program Files\Crawler\WebSecurityGuard.dll
C:\Program Files\Crawler\WSGData

-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://google.fr/"
"Local Page"="C:\\Windows\\system32\\blank.htm"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://www.google.com/ie"
"Url"="http://go.microsoft.com/fwlink/?LinkId=75720"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.ustart.org"
"Default_Page_URL"="http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_fr&c=81&bd=Pavilion&pf=desktop"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\Users\franck\AppData\Local\Microsoft\Messenger\demolisheurs-37@hotmail.fr\Sharing Folders\jul.alex@tiscali.fr\Keygen
C:\Users\franck\AppData\Local\Microsoft\Messenger\demolisheurs-37@hotmail.fr\Sharing Folders\jul.alex@tiscali.fr\Keygen\keygen.exe
C:\Users\franck\AppData\Local\Microsoft\Messenger\demolisheurs-37@hotmail.fr\Sharing Folders\jul.alex@tiscali.fr\Keygen\pfs-setup.exe
C:\Users\franck\Documents\Keygen
C:\Users\franck\Documents\Cl‚ USB Franky\Music\Corona DJ\Move The Sound-Promo CDR-\07 - Corona dj - move the sound (crack dub mix).mp3
C:\Users\franck\Documents\Keygen\keygen.exe
C:\Users\franck\Documents\Keygen\pfs-setup.exe
C:\Users\franck\Documents\LimeWire\Incomplete\T-1-Bluetooth BlueSoleil 3.0 Crack.zip
C:\Users\franck\Downloads\eMule\Incoming\Bitdefender Total Security 2008 Keygen.rar
C:\Users\franck\Downloads\eMule\Incoming\Kaspersky Antivirus And Internet Security 2009 9 Serial Key-File Real Works 8 Keygen Crack Activation 2008.txt
C:\Users\franck\Downloads\eMule\Incoming\Kaspersky Internet Security 2009 v8.0.0.357 + 3 Years Subscription Key crack + serial.rar
C:\Users\franck\Downloads\eMule\Incoming\[BitDefender.2008.???].BitDefender.2008.v11.0.9.AIO.With.KeyGen.-.FC.rar
C:\Users\franck\Downloads\eMule\Incoming\Programe\! !Warcraft 3 crack nocd fr pc + Frozen Throne Patch 1.20C + serial keygen.rar
C:\Users\franck\Downloads\eMule\Incoming\Programe\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples.rar
C:\Users\franck\Downloads\eMule\Incoming\Programe\Atomix VirtualDJ 5.0 Trial + crack (AuDaX T&@M).zip
C:\Users\franck\Downloads\eMule\Incoming\Programe\PC-GAME Need For Speed Pro Street Multi3 DEU FRA ITA Incl. Crack noDVD by Controller Programmi.rar
C:\Users\franck\Downloads\eMule\Incoming\Programe\Virtual DJ 3.2 + Crack-Luc@.rar
C:\Users\franck\Downloads\eMule\Incoming\Programe\Virtual.DJ.Studio.v5.0.Incl.Keygen-SSG.zip
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft 3 Crack Nocd Reign Of Chaos & The Frozen Throne By.rar
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft 3 Frozen Throne - Crack 1.21a Nocd.rar
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft 3 Frozen Throne Patch 1.20 No Cd Crack.zip
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft 3 keygen + Frozen Throne keygen + NO CD v1.12.ace
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft 3 Tft Frozen Throne 1.20 Loader Nocd No-Cd Crack.zip
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft III - The Frozen Throne - Patch 1.20 + NoCD Crack 1.20 + WorldEdit NoCD Crack 1.20.rar
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft III - The Frozen Throne v1.07 Crack NO-CD.zip
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft III Expansion Frozen Throne Crack NoCd + Worldedit + Parche - Patch 1.20d Spanish - Espa¤ol (Comprobado).rar
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft III The Frozen Throne No CD Crack.zip
C:\Users\franck\Music\T½cKtOnIK\07 - Corona dj - move the sound (crack dub mix).mp3
C:\Users\franck\Music\T½cKtOnIK\Tecktonik Vol.3 CD 1\Corona DJ - Move The Sound (Crack Dub Mix).mp3
C:\PROGRA~2\WildTangent\polarpool\Cache\DDS\c%3A%5Cprogram%20files%5Chp%20games%5Cpolar%20pool%5Clevels%5Cice_cave%5Cscene%5Ccrack.jpg.dds
C:\PROGRA~2\WildTangent\polarpool\Cache\DDS\c%3A%5Cprogram%20files%5Chp%20games%5Cpolar%20pool%5Clevels%5Cice_cave%5Cscene%5Ccrack_alpha.jpg.dds

[ UAC => 1 ]

-----------\\ Fin du rapport a 21:56:52,06

----------------------------------------------------------------------------------

-----------\\ ToolBar S&D 1.1.4 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz )
BIOS : BIOS Date: 12/05/07 11:10:18 Ver: 5.11
USER : franck ( Not Administrator ! )
BOOT : Normal boot

"C:\ToolBar SD" ( MAJ : 24-08-2008|14:20 )
Option : [1] ( 27/08/2008| 3:22 )

[ UAC => 1 ]

-----------\\ Recherche de Fichiers / Dossiers ...

C:\PROGRA~2\MICROS~1\Windows\STARTM~1\Programs\Barre d'outils Crawler
C:\Program Files\Crawler
C:\Program Files\Crawler\adrkeys.dat
C:\Program Files\Crawler\Cache
C:\Program Files\Crawler\confirm.dat
C:\Program Files\Crawler\ctbcomm.dll
C:\Program Files\Crawler\ctbr.dll
C:\Program Files\Crawler\CTConf.dat
C:\Program Files\Crawler\CTipsDef.dll
C:\Program Files\Crawler\CToolbar.exe
C:\Program Files\Crawler\CUpdate.exe
C:\Program Files\Crawler\Download
C:\Program Files\Crawler\Languages
C:\Program Files\Crawler\lookfor.dat
C:\Program Files\Crawler\majorse.dat
C:\Program Files\Crawler\rootmenu.dat
C:\Program Files\Crawler\services.dat
C:\Program Files\Crawler\STWSGLanguageAct
C:\Program Files\Crawler\TBR5LanguageAct
C:\Program Files\Crawler\Update
C:\Program Files\Crawler\WebSecurityGuard.dll
C:\Program Files\Crawler\WSGData

-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://google.fr/"
"Local Page"="C:\\Windows\\system32\\blank.htm"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://www.google.com/ie"
"Url"="http://go.microsoft.com/fwlink/?LinkId=75720"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.ustart.org"
"Default_Page_URL"="http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_fr&c=81&bd=Pavilion&pf=desktop"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\Users\franck\AppData\Local\Microsoft\Messenger\demolisheurs-37@hotmail.fr\Sharing Folders\jul.alex@tiscali.fr\Keygen
C:\Users\franck\AppData\Local\Microsoft\Messenger\demolisheurs-37@hotmail.fr\Sharing Folders\jul.alex@tiscali.fr\Keygen\keygen.exe
C:\Users\franck\AppData\Local\Microsoft\Messenger\demolisheurs-37@hotmail.fr\Sharing Folders\jul.alex@tiscali.fr\Keygen\pfs-setup.exe
C:\Users\franck\Documents\Keygen
C:\Users\franck\Documents\Cl‚ USB Franky\Music\Corona DJ\Move The Sound-Promo CDR-\07 - Corona dj - move the sound (crack dub mix).mp3
C:\Users\franck\Documents\Keygen\keygen.exe
C:\Users\franck\Documents\Keygen\pfs-setup.exe
C:\Users\franck\Documents\LimeWire\Incomplete\T-1-Bluetooth BlueSoleil 3.0 Crack.zip
C:\Users\franck\Downloads\eMule\Incoming\Bitdefender Total Security 2008 Keygen.rar
C:\Users\franck\Downloads\eMule\Incoming\Kaspersky Antivirus And Internet Security 2009 9 Serial Key-File Real Works 8 Keygen Crack Activation 2008.txt
C:\Users\franck\Downloads\eMule\Incoming\Kaspersky Internet Security 2009 v8.0.0.357 + 3 Years Subscription Key crack + serial.rar
C:\Users\franck\Downloads\eMule\Incoming\[BitDefender.2008.???].BitDefender.2008.v11.0.9.AIO.With.KeyGen.-.FC.rar
C:\Users\franck\Downloads\eMule\Incoming\Programe\! !Warcraft 3 crack nocd fr pc + Frozen Throne Patch 1.20C + serial keygen.rar
C:\Users\franck\Downloads\eMule\Incoming\Programe\Atomix Virtual DJ 3.2 + crack + 38 skins + 109 effects + 123 samples.rar
C:\Users\franck\Downloads\eMule\Incoming\Programe\Atomix VirtualDJ 5.0 Trial + crack (AuDaX T&@M).zip
C:\Users\franck\Downloads\eMule\Incoming\Programe\PC-GAME Need For Speed Pro Street Multi3 DEU FRA ITA Incl. Crack noDVD by Controller Programmi.rar
C:\Users\franck\Downloads\eMule\Incoming\Programe\Virtual DJ 3.2 + Crack-Luc@.rar
C:\Users\franck\Downloads\eMule\Incoming\Programe\Virtual.DJ.Studio.v5.0.Incl.Keygen-SSG.zip
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft 3 Crack Nocd Reign Of Chaos & The Frozen Throne By.rar
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft 3 Frozen Throne - Crack 1.21a Nocd.rar
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft 3 Frozen Throne Patch 1.20 No Cd Crack.zip
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft 3 keygen + Frozen Throne keygen + NO CD v1.12.ace
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft 3 Tft Frozen Throne 1.20 Loader Nocd No-Cd Crack.zip
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft III - The Frozen Throne - Patch 1.20 + NoCD Crack 1.20 + WorldEdit NoCD Crack 1.20.rar
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft III - The Frozen Throne v1.07 Crack NO-CD.zip
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft III Expansion Frozen Throne Crack NoCd + Worldedit + Parche - Patch 1.20d Spanish - Espa¤ol (Comprobado).rar
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft III The Frozen Throne No CD Crack.zip
C:\Users\franck\Music\T½cKtOnIK\07 - Corona dj - move the sound (crack dub mix).mp3
C:\Users\franck\Music\T½cKtOnIK\Tecktonik Vol.3 CD 1\Corona DJ - Move The Sound (Crack Dub Mix).mp3
C:\PROGRA~2\WildTangent\polarpool\Cache\DDS\c%3A%5Cprogram%20files%5Chp%20games%5Cpolar%20pool%5Clevels%5Cice_cave%5Cscene%5Ccrack.jpg.dds
C:\PROGRA~2\WildTangent\polarpool\Cache\DDS\c%3A%5Cprogram%20files%5Chp%20games%5Cpolar%20pool%5Clevels%5Cice_cave%5Cscene%5Ccrack_alpha.jpg.dds

[ UAC => 1 ]

-----------\\ Fin du rapport a 3:23:24,77

Winx

re,

désinfection
-----------------------

Toolbar-S&D

raccourci

2

Entrée

! Ne ferme pas la fenêtre lors de la suppression !

poste

ici.

NOTE :

Ctrl+Alt+Suppr

Gestionnaire des tâches

Processus

Fichier

Exécuter...

explorer

valide.

Ps:
ton PC est une véritable bombe !
à cause de ceci: (son contenu )
\\ Cracks & Keygens ..
Le désinstall de tous les crack + keygen + logiciel cracké sera la prochaine étape... :pfff:

Franzy

Winx a écrit:

re,

désinfection
-----------------------
[list]Relance Toolbar-S&D en double-cliquant sur le raccourci. Tape sur "2" puis valide en appuyant sur "Entrée".
! Ne ferme pas la fenêtre lors de la suppression !
Un rapport sera généré, poste son contenu ici. (sur le forum )

C'est bon le voici.

Rapport TB :

-----------\\ ToolBar S&D 1.1.4 XP/Vista

Microsoft® Windows Vista™ Édition Familiale Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz )
BIOS : BIOS Date: 12/05/07 11:10:18 Ver: 5.11
USER : franck ( Not Administrator ! )
BOOT : Normal boot

"C:\ToolBar SD" ( MAJ : 24-08-2008|14:20 )
Option : [2] ( 27/08/2008|13:27 )

[ UAC => 1 ]

-----------\\ SUPPRESSION

Supprime! - C:\PROGRA~2\MICROS~1\Windows\STARTM~1\Programs\Barre d'outils Crawler
Supprime! - C:\Program Files\Crawler\adrkeys.dat
Supprime! - C:\Program Files\Crawler\Cache
Supprime! - C:\Program Files\Crawler\confirm.dat
Supprime! - C:\Program Files\Crawler\ctbcomm.dll
Supprime! - C:\Program Files\Crawler\ctbr.dll
Supprime! - C:\Program Files\Crawler\CTConf.dat
Supprime! - C:\Program Files\Crawler\CTipsDef.dll
Supprime! - C:\Program Files\Crawler\CToolbar.exe
Supprime! - C:\Program Files\Crawler\CUpdate.exe
Supprime! - C:\Program Files\Crawler\Download
Supprime! - C:\Program Files\Crawler\Languages
Supprime! - C:\Program Files\Crawler\lookfor.dat
Supprime! - C:\Program Files\Crawler\majorse.dat
Supprime! - C:\Program Files\Crawler\rootmenu.dat
Supprime! - C:\Program Files\Crawler\services.dat
Supprime! - C:\Program Files\Crawler\STWSGLanguageAct
Supprime! - C:\Program Files\Crawler\TBR5LanguageAct
Supprime! - C:\Program Files\Crawler\Update
Supprime! - C:\Program Files\Crawler\WebSecurityGuard.dll
Supprime! - C:\Program Files\Crawler\WSGData
Supprime! - C:\Program Files\Crawler

-----------\\ Recherche de Fichiers / Dossiers ...

-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://google.fr/"
"Local Page"="C:\\Windows\\system32\\blank.htm"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://www.google.com/ie"
"Url"="http://go.microsoft.com/fwlink/?LinkId=75720"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.msn.com/"
"Default_Page_URL"="http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_fr&c=81&bd=Pavilion&pf=desktop"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\Users\franck\AppData\Local\Microsoft\Messenger\demolisheurs-37@hotmail.fr\Sharing Folders\jul.alex@tiscali.fr\Keygen
C:\Users\franck\AppData\Local\Microsoft\Messenger\demolisheurs-37@hotmail.fr\Sharing Folders\jul.alex@tiscali.fr\Keygen\keygen.exe
C:\Users\franck\AppData\Local\Microsoft\Messenger\demolisheurs-37@hotmail.fr\Sharing Folders\jul.alex@tiscali.fr\Keygen\pfs-setup.exe
C:\Users\franck\AppData\Roaming\Microsoft\Windows\Recent\PC-GAME Need For Speed Pro Street Multi3 DEU FRA ITA Incl. Crack noDVD by Controller Programmi.rar.lnk
C:\Users\franck\Documents\Keygen
C:\Users\franck\Documents\Cl‚ USB Franky\Music\Corona DJ\Move The Sound-Promo CDR-\07 - Corona dj - move the sound (crack dub mix).mp3
C:\Users\franck\Documents\Keygen\keygen.exe
C:\Users\franck\Documents\Keygen\pfs-setup.exe
C:\Users\franck\Documents\LimeWire\Incomplete\T-1-Bluetooth BlueSoleil 3.0 Crack.zip
C:\Users\franck\Downloads\eMule\Incoming\Kaspersky Antivirus And Internet Security 2009 9 Serial Key-File Real Works 8 Keygen Crack Activation 2008.txt
C:\Users\franck\Downloads\eMule\Incoming\Programe\! !Warcraft 3 crack nocd fr pc + Frozen Throne Patch 1.20C + serial keygen.rar
C:\Users\franck\Downloads\eMule\Incoming\Programe\PC-GAME Need For Speed Pro Street Multi3 DEU FRA ITA Incl. Crack noDVD by Controller Programmi.rar
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft 3 Crack Nocd Reign Of Chaos & The Frozen Throne By.rar
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft 3 Frozen Throne - Crack 1.21a Nocd.rar
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft 3 Frozen Throne Patch 1.20 No Cd Crack.zip
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft 3 keygen + Frozen Throne keygen + NO CD v1.12.ace
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft 3 Tft Frozen Throne 1.20 Loader Nocd No-Cd Crack.zip
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft III - The Frozen Throne - Patch 1.20 + NoCD Crack 1.20 + WorldEdit NoCD Crack 1.20.rar
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft III - The Frozen Throne v1.07 Crack NO-CD.zip
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft III Expansion Frozen Throne Crack NoCd + Worldedit + Parche - Patch 1.20d Spanish - Espa¤ol (Comprobado).rar
C:\Users\franck\Downloads\eMule\Incoming\Programe\Warcraft III The Frozen Throne No CD Crack.zip
C:\Users\franck\Music\T½cKtOnIK\07 - Corona dj - move the sound (crack dub mix).mp3
C:\Users\franck\Music\T½cKtOnIK\Tecktonik Vol.3 CD 1\Corona DJ - Move The Sound (Crack Dub Mix).mp3
C:\PROGRA~2\WildTangent\polarpool\Cache\DDS\c%3A%5Cprogram%20files%5Chp%20games%5Cpolar%20pool%5Clevels%5Cice_cave%5Cscene%5Ccrack.jpg.dds
C:\PROGRA~2\WildTangent\polarpool\Cache\DDS\c%3A%5Cprogram%20files%5Chp%20games%5Cpolar%20pool%5Clevels%5Cice_cave%5Cscene%5Ccrack_alpha.jpg.dds

[ UAC => 1 ]

-----------\\ Fin du rapport a 13:38:48,96

Winx a écrit:

Ps:
ton PC est une véritable bombe !
à cause de ceci: (son contenu )
\\ Cracks & Keygens ..
Le désinstall de tous les crack + keygen + logiciel cracké sera la prochaine étape... :pfff:

Ha bon mon PC est tan infecté que sa :shock:

Winx

re,
je vais te parler franchement...je me demande , par quel miracle il fonctionne encore !

Je suppose que tu as téléchargés les fichiers Keygen et autres via Emule ou autre...

Voici les informations que je donne dans ce cas là !

Citation:

Un peu de lecture va je pense te faire prendre conscience des risques que tu as fait courir à ta machine, en agissant de la sorte:

De plus j'ai repéré au moins une source potentielle d'infection dans ton PC:

Citation:

""C:\\Program Files\\eMule\\emule.exe"="C:\\Program Files\\eMule\\emule.exe:*:Enabled:eMule"

p2p

nids

à infections

tesgaz

Gof

Liste des logiciels P2P et des infections qu'ils transmettent au PC:

http://kppfree.altervista.org/spylist.html

DANGEREUX

http://secubox.aldria.com/topic-1891.html

Juste pour info-

En outre l'utilisation de cracks et de générateur de clés est interdit par la loi.

Citation juste à titre d'information

Code:

Le fait de porter atteinte sciemment à une mesure technique de protection est sanctionné par 3 750 euros d’amende lorsque cette atteinte résulte d’une manipulation personnelle. De plus, le fait de détenir en vue d’un usage personnel ou d’utiliser un logiciel, dispositif ou service pour porter atteinte à une mesure technique de protection ou d’information est puni d’une amende pouvant s’élever jusqu’à 750 euros (articles R. 335-3 et 4 du Code de la propriété intellectuelle

VideoAccessCodec (VAC)

Zlob/VideoAccess/Trojan.Win32.DNSChanger

de crack et de keygen

naïveté

si je puis dire les deux pieds dedans

est que si vous vous imaginer faire une bonne affaire en téléchargeant des logiciels piratés

fausse idée

En fait vous transformez votre PC en bombe à retardement.

formatage

dangereuses infections...

-->info à ce sujet ici
Une petite nouveauté !
Des MP3 peuvent être infectés
source infos ici --->
http://forum.malekal.com/viewtopic.php?f=66&t=12206

note:

Citation:

Cette dernière infection MP3, sert en fait à subtiliser les mots de passe présent sur le PC. Les MP3 sont toujours lisibles, ce qui fait que l'utilisateur ne se doute de rien.

Franzy

ok je te remercie, promis j'arète de télécharger des programmes piraté, je vien même de spuprimer tout mes programme ( crack et keygen) que j'avais télécharger !!

Je n'été pas au courrant qu'il y avait un tel potentiel de danger pour ma machine !!

Mais s'il te plais tu peu continuez à m'aider a désinfecté mon PC S'IL TE PLAIS :cry:

Règles du forum

Problème avec un virus " SANSUE "

Qui est en ligne