Je ne parviens plus a scanner mon portable avec mon anti virus sa bloque tout

zir253 · Janvier 29, 2009, 2:56

Ce message n’était pas conforme aux règles d’utilisation du nouveau forum :

zir253 · Janvier 29, 2009, 3:16

je ne parvient plus a controler le system integral de mon portable ni avec mon antivirus ni avec les anti malware ca bloque au bout de quelque minute et je dois eteindre mon portable car par la suit tout mes programme son bloquer que faire voici le rapport hijakthis

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:43, on 2009-01-28
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16764)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Windows\System32\wpcumi.exe
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Dell\MediaDirect\PCMService.exe
C:\Windows\System32\WLTRAY.EXE
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Windows\system32\NOTEPAD.EXE

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = go.microsoft.com…
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = partnerpage.google.com…
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = fr.yahoo.com…
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = fr.rd.yahoo.com…
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = us.rd.yahoo.com…
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = fr.rd.yahoo.com…
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = fr.yahoo.com…
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer provided by Dell
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Ask Search Assistant BHO - {0579B4B1-0293-4d73-B02D-5EBB0BA0F0A2} - C:\Program Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll
O2 - BHO: Ask Toolbar BHO - {F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Ask Toolbar - {F0D4B239-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM…\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM…\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM…\Run: [SigmatelSysTrayApp] C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe
O4 - HKLM…\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM…\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM…\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM…\Run: [SunJavaUpdateSched] “C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe”
O4 - HKLM…\Run: [Adobe Reader Speed Launcher] “C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe”
O4 - HKLM…\Run: [WPCUMI] C:\Windows\system32\WpcUmi.exe
O4 - HKLM…\Run: [DellSupportCenter] “C:\Program Files\Dell Support Center\bin\sprtcmd.exe” /P DellSupportCenter
O4 - HKLM…\Run: [dscactivate] “C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe”
O4 - HKLM…\Run: [TkBellExe] “C:\Program Files\Common Files\Real\Update_OB\realsched.exe” -osboot
O4 - HKLM…\Run: [PCMService] “C:\Program Files\Dell\MediaDirect\PCMService.exe”
O4 - HKLM…\Run: [ECenter] C:\Dell\E-Center\EULALauncher.exe
O4 - HKLM…\Run: [Broadcom Wireless Manager UI] C:\Windows\system32\WLTRAY.exe
O4 - HKLM…\Run: [avgnt] “C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe” /min
O4 - HKLM…\Run: [TrojanScanner] C:\Program Files\Trojan Remover\Trjscan.exe /boot
O4 - HKCU…\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19…\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User ‘LOCAL SERVICE’)
O4 - HKUS\S-1-5-19…\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User ‘LOCAL SERVICE’)
O4 - HKUS\S-1-5-20…\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User ‘NETWORK SERVICE’)
O4 - HKUS\S-1-5-18…\Run: [msnmsgr] “C:\Program Files\Windows Live\Messenger\msnmsgr.exe” /background (User ‘SYSTEM’)
O4 - HKUS.DEFAULT…\Run: [msnmsgr] “C:\Program Files\Windows Live\Messenger\msnmsgr.exe” /background (User ‘Default user’)
O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download FLV video content with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra ‘Tools’ menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra ‘Tools’ menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra ‘Tools’ menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O13 - Gopher Prefix:
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O17 - HKLM\System\CCS\Services\Tcpip…{B07F121A-94CC-41E9-B4A4-5AA791743086}: NameServer = 65.162.184.33 195.94.0.34
O23 - Service: Norton2009 Reset (.norton2009Reset) - - (no file)
O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: DellAMBrokerService - Unknown owner - C:\Program Files\DellAutomatedPCTuneUp\brkrsvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Advanced Networking Service (hnmsvc) - SingleClick Systems - C:\Program Files\Dell Network Assistant\hnm_svc.exe
O23 - Service: Jana Server 2 (Janad) - Thomas Hauck, Privat - C:\Program Files\Jana2\Janad.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
O23 - Service: SigmaTel Audio Service (STacSV) - SigmaTel, Inc. - C:\Windows\system32\STacSV.exe
O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\Windows\System32\WLTRYSVC.EXE
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

–
End of file - 10805 bytes

vyger · Janvier 29, 2009, 4:42

Salut
tu peux vérifier cette adresse: 65.162.184.33 195.94.0.34

fait une recherche dans base de registre sur :

B07F121A-94CC-41E9-B4A4-5AA791743086

et regarde quel service l’utilise.

sinon fixe la:
O17 - HKLM\System\CCS\Services\Tcpip…{B07F121A-94CC-41E9-B4A4-5AA791743086}: NameServer = 65.162.184.33 195.94.0.34
a+
Edité le 29/01/2009 à 16:43

guigui14100 · Janvier 29, 2009, 5:36

Salut

Fait un toolbar Sd en mode 1 b
[/b]

zir253 · Janvier 30, 2009, 12:55

merci j ais utiliser toolbar sd et voici le rapport de recherche desoler de vous embeiter mais que faire

-----------\ ToolBar S&D 1.2.8 XP/Vista

Microsoft® Windows Vista Home Basic ( v6.0.6000 )
X86-based PC ( Multiprocessor Free : Intel® Core™2 Duo CPU T7500 @ 2.20GHz )
BIOS : Phoenix ROM BIOS PLUS Version 1.10 A01
USER : flide ( Not Administrator ! )
BOOT : Normal boot
Antivirus : Kaspersky Anti-Virus 8.0.0.357 (Not Activated)
C:\ (Local Disk) - NTFS - Total:136 Go (Free:91 Go)
D:\ (Local Disk) - NTFS - Total:9 Go (Free:2 Go)
E:\ (CD or DVD)

“C:\ToolBar SD” ( MAJ : 21-12-2008|20:47 )
Option : [1] ( 2009-01-30| 2:49 )

[ UAC => 1 ]

-----------\ Recherche de Fichiers / Dossiers …

-----------\ […\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
“Local Page”=“C:\Windows\system32\blank.htm”
“Search Page”=“http://go.microsoft.com/fwlink/?LinkId=54896”
“Start Page”=“http://partnerpage.google.com/smallbiz.dell.com/en_us?hl=en&client=dell-usuk&channel=us-smb&ibd=2080201”
“Url”=“http://go.microsoft.com/fwlink/?LinkID=68928”
“Url”=“http://go.microsoft.com/fwlink/?LinkID=44406”
“Url”=“http://go.microsoft.com/fwlink/?LinkID=68929”

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
“Start Page”=“http://www.msn.com/”
“Default_Page_URL”=“http://fr.yahoo.com”
“Default_Search_URL”=“http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*http://fr.search.yahoo.com”
“Search Page”=“http://fr.rd.yahoo.com/customize/ie/defaults/sp/msgr8/*http://fr.search.yahoo.com”
“Search Bar”=“http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr8/*http://www.yahoo.com/ext/search/search.html”

--------------------\ Recherche d’autres infections

C:\Users\flide\AppData\Local\skykska.dat.vir
C:\Users\flide\AppData\Local\skykska.exe.vir
C:\Users\flide\AppData\Local\skykska_nav.dat.vir
C:\Users\flide\AppData\Local\skykska_navps.dat.vir
C:\Users\flide\AppData\Local\Application Data\skykska.dat.vir
C:\Users\flide\AppData\Local\Application Data\skykska.exe.vir
C:\Users\flide\AppData\Local\Application Data\skykska_nav.dat.vir
C:\Users\flide\AppData\Local\Application Data\skykska_navps.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\skykska.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\skykska.exe.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\skykska_nav.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\skykska_navps.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\skykska.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\skykska.exe.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\skykska_nav.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\skykska_navps.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\skykska.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\skykska.exe.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\skykska_nav.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\skykska_navps.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\skykska.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\skykska.exe.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\skykska_nav.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\skykska_navps.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska.exe.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska_nav.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska_navps.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska.exe.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska_nav.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska_navps.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska.exe.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska_nav.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska_navps.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska.exe.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska_nav.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska_navps.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska.exe.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska_nav.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska_navps.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska.exe.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska_nav.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska_navps.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska.exe.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska_nav.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska_navps.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska.exe.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska_nav.dat.vir
C:\Users\flide\AppData\Local\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\skykska_navps.dat.vir
==> EGDACCESS <==

C:\Windows\Tasks\At1.job
C:\Windows\Tasks\At10.job
C:\Windows\Tasks\At11.job
C:\Windows\Tasks\At12.job
C:\Windows\Tasks\At13.job
C:\Windows\Tasks\At14.job
C:\Windows\Tasks\At15.job
C:\Windows\Tasks\At16.job
C:\Windows\Tasks\At17.job
C:\Windows\Tasks\At18.job
C:\Windows\Tasks\At19.job
C:\Windows\Tasks\At2.job
C:\Windows\Tasks\At20.job
C:\Windows\Tasks\At21.job
C:\Windows\Tasks\At22.job
C:\Windows\Tasks\At23.job
C:\Windows\Tasks\At24.job
C:\Windows\Tasks\At25.job
C:\Windows\Tasks\At26.job
C:\Windows\Tasks\At27.job
C:\Windows\Tasks\At28.job
C:\Windows\Tasks\At29.job
C:\Windows\Tasks\At3.job
C:\Windows\Tasks\At30.job
C:\Windows\Tasks\At31.job
C:\Windows\Tasks\At32.job
C:\Windows\Tasks\At33.job
C:\Windows\Tasks\At34.job
C:\Windows\Tasks\At35.job
C:\Windows\Tasks\At36.job
C:\Windows\Tasks\At37.job
C:\Windows\Tasks\At38.job
C:\Windows\Tasks\At39.job
C:\Windows\Tasks\At4.job
C:\Windows\Tasks\At40.job
C:\Windows\Tasks\At41.job
C:\Windows\Tasks\At42.job
C:\Windows\Tasks\At43.job
C:\Windows\Tasks\At44.job
C:\Windows\Tasks\At45.job
C:\Windows\Tasks\At46.job
C:\Windows\Tasks\At47.job
C:\Windows\Tasks\At48.job
C:\Windows\Tasks\At5.job
C:\Windows\Tasks\At6.job
C:\Windows\Tasks\At7.job
C:\Windows\Tasks\At8.job
C:\Windows\Tasks\At9.job

--------------------\ Cracks & Keygens …

C:\Users\flide\Desktop\MovieSoundConverters\No1.CD.Ripper.v1.72.73.Incl.Keygen-EXPLOSiON
C:\Users\flide\Desktop\MovieSoundConverters\AshampooMovieShrink&Burn2\LCD-Keygen.exe
C:\Users\flide\Desktop\MovieSoundConverters\Easyx rm 2 avi converter\easyxrm2aviconverter\Keygen.exe
C:\Users\flide\Desktop\MovieSoundConverters\FairStarsRecorderv2.62\keygen.exe
C:\Users\flide\Desktop\MovieSoundConverters\No1.CD.Ripper.v1.72.73.Incl.Keygen-EXPLOSiON\explosion.nfo
C:\Users\flide\Desktop\MovieSoundConverters\No1.CD.Ripper.v1.72.73.Incl.Keygen-EXPLOSiON\file_id.diz
C:\Users\flide\Desktop\MovieSoundConverters\No1.CD.Ripper.v1.72.73.Incl.Keygen-EXPLOSiON\keygen.exe
C:\Users\flide\Desktop\MovieSoundConverters\No1.CD.Ripper.v1.72.73.Incl.Keygen-EXPLOSiON\no1cdrip.exe
C:\Users\flide\Desktop\MovieSoundConverters\No1.CD.Ripper.v1.72.73.Incl.Keygen-EXPLOSiON\Pirate.ico
C:\Users\flide\Desktop\MovieSoundConverters\TechsmithCamtasiaStudioV2.1.2\keygen.exe

[ UAC => 1 ]

1 - “C:\ToolBar SD\TB_1.txt” - 2009-01-29| 3:54 - Option : [2]
2 - “C:\ToolBar SD\TB_2.txt” - 2009-01-29| 3:58 - Option : [1]
3 - “C:\ToolBar SD\TB_3.txt” - 2009-01-29|16:29 - Option : [2]
4 - “C:\ToolBar SD\TB_4.txt” - 2009-01-30| 2:41 - Option : [2]
5 - “C:\ToolBar SD\TB_5.txt” - 2009-01-30| 2:47 - Option : [1]
6 - “C:\ToolBar SD\TB_6.txt” - 2009-01-30| 2:50 - Option : [1]

-----------\ Fin du rapport a 2:50:43.25

cricri58 · Janvier 30, 2009, 10:05

Salut

tu iras dans ajouter / supprimer des prrogrammes–>Désinstalles–>Ask Toolbar

en plus
telecharges–> malwrebytes–>Malwarebytes

Redémarre en “Mode sans échec” : redémarres ton ordinateur et tapote sur la touche F8 jusqu’à l’affichage du menu des options avancées de Windows, et sélectionne “Mode sans échec”.
Choisis ta session habituelle

Lances–> Malwarebytes (MBAM)

Puis vas dans l’onglet “Recherche”, coche “Exécuter un examen complet” puis “Rechercher”
Sélectionnse tes disques durs" puis clique sur “Lancer lexamen”
A la fin du scan, clique sur Afficher les résultats puis sur Enregistrer le rapport
Suppression des éléments détectés --> cliques sur Supprimer la sélection
S’il t’ es demandé de redémarrer, clique sur Yes

si il n y a plus de détection–> tant mieux !!

aprés
installes Ccleaner
Ccleaner

décohes la case " installer la barre yahoo "–a l installation

cliques–>registre—>analyse -->Sauvegarde–>reparer les erreurs

puis nettoyeur—>analyse—>lancer le nettoyage

Redémarres ton Pc-

guigui14100 · Janvier 30, 2009, 1:43

Fait un toolbar SD en mode 2

Puis fait un [navilog1 [/url]en mode 1 puis 2 [url=http://lasecuritepourtous.free.fr/les-outils-de-desinfections/navilog1.html][b](tutorial)[/b]](http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe)

+1 pour MBAm:super: