Sujet Précédent Sujet Suivant

Wintems.exe manquant

Résolu/Fermé
toto62 - 27 déc. 2008 à 20:35
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 - 29 déc. 2008 à 18:45
Bonjour,et joyeux noel a tous
j'ai un probeme avec mon pc.
une fenetre me dit d'executer l'utilitaire de chkdsd et une fenete me dit egalement que wintems.exe est endomagé.mon antivitrus n'est plus actif et quand je clique deçu ça me dit program file/antivir personal edition n'est pas une application win 32 valide.
pouvez vous m'aider.
mrci d'avance

56 réponses

Réponse 1 / 56
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 291
27 déc. 2008 à 20:36
Salut,

Tu es infecté par Bagle. Pas bien de télécharger...

--> Télécharge FindyKill (par Chiquitine29) sur ton Bureau.

--> Lance l'installation avec les paramètres par défaut.

--> Double-clique sur le raccourci FindyKill sur ton Bureau.

--> Au menu principal, choisis l'option 1 (Recherche).

--> Poste le rapport FindyKill.txt

Note : le rapport FindyKill.txt est sauvegardé à la racine du disque.
0
Réponse 2 / 56
toto62
27 déc. 2008 à 20:47
merci pour les conseils
-------------- FindyKill V4.710 ------------------

* User : la famille - OEM-7VGXBAWMJU1
* Emplacement : C:\Program Files\FindyKill
* Outils Mis a jours le 21/12/08 par Chiquitine29
* Recherche effectuée à 20:40:26 le 27/12/2008
* Windows XP - Internet Explorer 7.0.5730.11

((((((((((((((((( *** Recherche *** ))))))))))))))))))


--------------- [ Processus actifs ] ----------------


C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\system32\CTsvcCDA.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\FixCamera.exe
C:\WINDOWS\tsnp325.exe
C:\WINDOWS\vsnp325.exe
C:\Program Files\EoRezo\EoEngine.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe
C:\documents and settings\la famille\local settings\application data\wgpeo.exe
C:\Documents and Settings\la famille\Application Data\drivers\winupgro.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\Program Files\Internet Explorer\iexplore.exe

--------------- [ Processus infectieux stoppés ] ----------------


"C:\Documents and Settings\la famille\Application Data\drivers\winupgro.exe" (796)


--------------- [ Fichiers/Dossiers infectieux ] ----------------


»»»» Presence des fichiers dans C:


»»»» Presence des fichiers dans C:\WINDOWS


»»»» Presence des fichiers dans C:\WINDOWS\Prefetch

Found ! - C:\WINDOWS\prefetch\1994703.EXE-2EC0942B.pf
Found ! - C:\WINDOWS\prefetch\2380062.EXE-1EC190DE.pf
Found ! - C:\WINDOWS\prefetch\2522828.EXE-37733B2F.pf
Found ! - C:\WINDOWS\prefetch\199703.EXE-053B46D8.pf
Found ! - C:\WINDOWS\prefetch\408109.EXE-34B4B164.pf
Found ! - C:\WINDOWS\prefetch\590218.EXE-04D7433C.pf
Found ! - C:\WINDOWS\prefetch\MDELK.EXE-1D176F91.pf
Found ! - C:\WINDOWS\prefetch\WINTEMS.EXE-2A563F9B.pf
Found ! - C:\WINDOWS\prefetch\FLEC006.EXE-0966C151.pf

»»»» Presence des fichiers dans C:\WINDOWS\system32

Found ! [27/12/2008 19:11] - C:\WINDOWS\system32\mdelk.exe
Found ! [27/12/2008 19:11] - C:\WINDOWS\system32\wintems.exe
Found ! [] - C:\WINDOWS\system32\ban_list.txt

»»»» Presence des fichiers dans C:\WINDOWS\system32\config\systemprofile\AppData\Roaming


»»»» Presence des fichiers dans C:\WINDOWS\system32\drivers


»»»» Presence des fichiers dans C:\Documents and Settings\la famille\Application Data

Found ! [27/12/2008 19:15] - "C:\Documents and Settings\la famille\Application Data\m\flec006.exe"
Found ! [27/12/2008 19:15] - "C:\Documents and Settings\la famille\Application Data\m\list.oct"
Found ! [27/12/2008 19:16] - "C:\Documents and Settings\la famille\Application Data\m\data.oct"
Found ! [27/12/2008 19:16] - "C:\Documents and Settings\la famille\Application Data\m\srvlist.oct"
Found ! [27/12/2008 10:01] - "C:\Documents and Settings\la famille\Application Data\m\shared"
Found ! [27/12/2008 09:17] - "C:\Documents and Settings\la famille\Application Data\m"
Found ! [27/12/2008 09:15] - "C:\Documents and Settings\la famille\Application Data\drivers"
Found ! [27/12/2008 19:09] - "C:\Documents and Settings\la famille\Application Data\drivers\srosa.sys"
Found ! [27/12/2008 19:09] - "C:\Documents and Settings\la famille\Application Data\drivers\srosa2.sys"
Found ! [23/09/2006 07:05] - "C:\Documents and Settings\la famille\Application Data\drivers\winupgro.exe"
Found ! [27/12/2008 09:15] - "C:\Documents and Settings\la famille\Application Data\drivers\downld"
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\39432187.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\39433265.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\39433375.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\39438171.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\39452984.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\39453906.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\39454359.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\39478203.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\270734.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\271359.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\275343.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\289093.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\289968.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\290328.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\343031.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\401343.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\401968.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\402000.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\416937.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\418781.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\419671.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\420687.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\422046.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\423000.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\441812.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\442468.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\442890.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\452531.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\454406.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\455171.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\457078.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\458203.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\459046.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\508796.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\513828.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\514015.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\189734.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\191140.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\191203.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\215234.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\216406.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\217062.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\243031.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\300234.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\300906.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\300921.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\316281.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\317984.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\318765.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\319812.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\321015.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\321640.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\338343.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\338843.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\339218.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\349156.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\350796.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\351375.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\353765.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\355218.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\355906.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\382890.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\398437.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\399468.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\399718.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\571546.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\572671.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\597625.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\598640.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\599156.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\218484.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\219765.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\224296.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\246453.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\247343.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\247687.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\331203.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\385078.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\385734.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\385750.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\403765.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\405453.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\406000.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\406781.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\408000.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\408687.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\424312.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\424890.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\425265.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\433875.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\435687.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\436265.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\438156.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\439171.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\439968.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\465093.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\483687.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\484781.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\484984.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\488796.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\489562.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\489609.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\495515.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\510031.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\511000.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\511500.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\1987312.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\1988781.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\1994703.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\2015312.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\2017234.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\2017734.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\2380062.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\2432171.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\2432796.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\2432828.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\2447984.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\2449687.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\2450718.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\2451984.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\2453421.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\2454203.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\2479734.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\2480265.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\2480640.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\2491203.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\2495062.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\2495687.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\2498250.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\2499453.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\2500562.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\2539000.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\2539812.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\2540031.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\192312.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\195406.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\195437.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\199703.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\216515.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\217656.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\218140.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\408109.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\475000.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\476203.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\476781.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\497968.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\500828.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\502062.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\504000.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\505671.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\507578.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\536281.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\537812.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\538437.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\554921.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\556265.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\558078.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\615468.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\618171.exe
Found ! [27/12/2008 09:15] - C:\Documents and Settings\la famille\Application Data\drivers\downld\618671.exe

»»»» Presence des fichiers dans C:\DOCUME~1\LAFAMI~1\LOCALS~1\Temp
0
Réponse 3 / 56
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 291
27 déc. 2008 à 20:52
--> Branche tes disques amovibles à ton PC (clefs USB, disque dur externe, etc...) sans les ouvrir.

--> Double-clique sur le raccourci FindyKill sur ton Bureau.

--> Au menu principal, choisis l'option 2 (Suppression).

/!\ Il y aura 2 redémarrages, laisse travailler l'outil jusqu'à l'apparition du message "nettoyage effectué" /!\

--> Ensuite, poste le rapport FindyKill.txt

Note : le rapport FindyKill.txt est sauvegardé à la racine du disque.
0
Réponse 4 / 56
toto62
27 déc. 2008 à 21:18
FindyKill V4.710 ------------------

* User : la famille - OEM-7VGXBAWMJU1
* executed from : C:\Program Files\FindyKill
* Update on 21/12/08 par Chiquitine29
* Start at 21:07:44 the 27/12/2008
* Windows XP - Internet Explorer 7.0.5730.11


((((((((((((((( *** deleting *** ))))))))))))))))))


--------------- [ Active Processes ] ----------------


C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\logonui.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\system32\CTsvcCDA.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\wudfhost.exe
C:\WINDOWS\system32\userinit.exe
C:\WINDOWS\system32\WgaTray.exe

--------------- [ Infected files / folders ] ----------------


»»»» Supression files in C:


»»»» Supression files in C:\WINDOWS


»»»» Supression files in C:\WINDOWS\Prefetch

Deleted ! - C:\WINDOWS\prefetch\1994703.EXE-2EC0942B.pf
Deleted ! - C:\WINDOWS\prefetch\2380062.EXE-1EC190DE.pf
Deleted ! - C:\WINDOWS\prefetch\2522828.EXE-37733B2F.pf
Deleted ! - C:\WINDOWS\prefetch\199703.EXE-053B46D8.pf
Deleted ! - C:\WINDOWS\prefetch\408109.EXE-34B4B164.pf
Deleted ! - C:\WINDOWS\prefetch\590218.EXE-04D7433C.pf
Deleted ! - C:\WINDOWS\prefetch\MDELK.EXE-1D176F91.pf
Deleted ! - C:\WINDOWS\prefetch\WINTEMS.EXE-2A563F9B.pf
Deleted ! - C:\WINDOWS\prefetch\FLEC006.EXE-0966C151.pf

»»»» Supression files in C:\WINDOWS\system32

Deleted ! - C:\WINDOWS\system32\mdelk.exe
Deleted ! - C:\WINDOWS\system32\wintems.exe

»»»» Supression files in C:\WINDOWS\system32\config\systemprofile\AppData\Roaming


»»»» Supression files in C:\WINDOWS\system32\drivers

Deleted ! - C:\WINDOWS\system32\drivers\srosa.sys
Deleted ! - C:\WINDOWS\system32\drivers\srosa2.sys

»»»» Supression files in C:\Documents and Settings\la famille\Application Data

Deleted ! - "C:\Documents and Settings\la famille\Application Data\m\flec006.exe"
Deleted ! - "C:\Documents and Settings\la famille\Application Data\m\list.oct"
Deleted ! - "C:\Documents and Settings\la famille\Application Data\m\data.oct"
Deleted ! - "C:\Documents and Settings\la famille\Application Data\m\srvlist.oct"
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Web Data Extractor 7.1.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\IOSHunter 3.2.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Armenian Screen Saver Pictures1 1.0.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\World News Screensaver 2.0.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Tidy Browser Button 0.1.8.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Ayam 1.13.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Araneae 5.0.0.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Quick Bill System 1.4.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Media Launcher 1.10.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\DBOne 2005 Professional build 2005.6.17.2945.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Planet Uranus 3D Screensaver 1.0.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\TweakRAM 6.3 Build 10.30.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Text Search Tiffs 2.0.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\lumifi 2.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\CD Art Display 1.0 Preview 3 Build 1.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Pocket Video Maker - Palm Edition 2.0.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\AgileTracker 1.0 RC1 Build 0003.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\VEDIT 6.13.1.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\VFSJFileChooser 0.0.2 Beta.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Celebrity Girls 1.0.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\QuidProQuo 1.04.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\PDFViewer OCX 2.4.62.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\The Classified Connection 2.1.2.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\ACE-HIGH MP3 Recorder 1.30.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\DB Vue 1.3.1.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Arum Switcher 1.42.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Go To Selected Text 1.0.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Tab Close Control 1.0.2.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Atomic Popup Wiz 1.0.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\AM Server 1.2.1.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Print Merge Numerator 1.01.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Ken Rename 0.66.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Xilisoft DVD to Zune Converter 5.0.46.1121.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Mouse Explorer 1.2.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\MegaPipe Win32 DLL 2.0.1.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Wav Split Mp3 1.00.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Force Pictures 1.0.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\EasyHtml 2.4.6.456.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Vbuzzer 2.5.194.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Kaspersky.Internet.Security.6.0.Italiano.Licenza.(Jolpe).zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Wooded Areas Screensaver 1.0.6.2634.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Phoenity Reborn 0.8.100.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\TCP Server Deux 1.0.0.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\HomePrint Publisher 1.5.1.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\iPod Video Converter 1.0.0.8.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Star.Wars.The.Empire.Strikes.Back.240x320 Nokia N73.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\2D GhostForest Interactive Saver 06 3.5.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\FlyingBit Hash Calculator 1.0.0.3.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\THOMSON mp3PRO Audio Player 1.1.0 Build 0.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Georgian Before You Know It Lite 3.6.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\VideoVista Standard Edition 2.3.1 Build 301.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Microsoft Silverlight Wallpapers.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Voxengo BMS 1.2.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Avast.Antivirus.Pro.v4.7.844.FR.Incl-Keygen.updated-fixed.06-2006.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Hilbert Neue Condensed Font PostScript 1.31C.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\SoftCollection LCD Module OCX 1.50.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Batch Video Joiner 5.0.4.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Average Color Seeker 0.41.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Label Spirit 2008 Simple 5.0 Build 5.0.3.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\SticksterZ 1.0.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Akeni Jabber Client (XMPP) Corporate IM 1.0.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\4Team Server 1.10.0046.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\AVG.Antivirus.Professional.Edition.v7.5.423.Build.810.Incl.Keygen-ViRiLiTY.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Voxengo Lampthruster 2.5.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\EZ Backup Access Premium 6.1.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Emailsmartz Email Spider 1.01.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Enterra Icon Keeper Deluxe 1.0.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\AC3 Filter 1.51a.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\SmartBarXP 1.0.201.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Acala DivX DVD Player Assist 3.1.0.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\TorrentVolve 1.4 Beta.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\PhotoKit 1.2.4.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Nidesoft DVD to iPhone Converter 5.1.06.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\TuPian 1.0.1.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Business PDF Writer 1.02.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\MaxType PRO Typing Tutor 2.8.28.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\kav.Kapersky.antivirus.6.fr.avec.clǸ.jusqu.a.fin.2008.+.crack.mise.Çÿ.jour.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\AdaptX for Winamp 3.61c.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Macrobject Word-2-Web Converter Standard 2008.0.1105.1735.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Hilary Swank Screensaver1.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\MAIL MANAGER 1.00.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\UpdateIt! 1.4.4324.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\LiveCricket Score 1.0.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Garden Flowers 3D Screensaver 1.1.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\XPressMath 6.52.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\TV Tuner Capture 1.0.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Slide Executive Desktop 2.0.0.37274.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Windows Updates Downloader 2.40 Build 1138.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\NetSetting 1.02.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Tiny SyS Bar 1.0.1.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\JJE-VBRC 1.01.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\ReportBuilder Standard 10.04.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\SeptemSoft Video Converter 2.4.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\VS MRU List Reset 1.0.1995.21630.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\NDRZilla 1.5.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\NitroXP 1.0.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\OrgScheduler Pro 4.4.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Smart Secure 2.0.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\MyMicroBalance 1.0.7.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\XP Registry Cleaner 2.0.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Symantec_Norton_Internet_Security_2006_(Italiano)_+_Istruzioni_+_Serial_By_fire.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Hylafx Printer 1.1.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Maple Reader 7.12.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\TezLink Agent 1.0.1.526.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\TradeTrakker 2.74.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\MSSQL to MySQL Database Converter 2.0.1.5.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Paste to Tab and Go 0.2.1.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Net Shimmer 1.0.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\ctivation_key).zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Easy Applet Builder 1.7.1.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Training Screen Saver 6.51.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Techinfo 1.0.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Nibble Time 1.01.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\ParetoLogic Anti-Virus PLUS 6.1.0.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Minimap Sidebar 0.3.8.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\UPX Graphical 1.38a.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Barcode Label Workshop Standard Edition 6.0.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\LingvoSoft Talking Dictionary 2008 English - Chinese Simplified 4.1.29.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Map&Guide Base 1.2.8.0.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\MB Free Zodiac Spiritual Sign 1.10.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\Vodmail Pro 9.60.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\NetXed Lite 3.0.0.16.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\MegaRadio.Net 1.01.zip
Deleted ! - C:\Documents and Settings\la famille\Application Data\m\shared\desktop.io.us 1.1.2.2.zip
Deleted ! - "C:\Documents and Settings\la famille\Application Data\m\shared"
Deleted ! - "C:\Documents and Settings\la famille\Application Data\m"
Deleted ! - "C:\Documents and Settings\la famille\Application Data\inst.exe"
Deleted ! - "C:\Documents and Settings\la famille\Application Data\drivers\srosa.sys"
Deleted ! - "C:\Documents and Settings\la famille\Application Data\drivers\srosa2.sys"
Deleted ! - "C:\Documents and Settings\la famille\Application Data\drivers\winupgro.exe"
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\39432187.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\39433265.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\39433375.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\39438171.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\39452984.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\39453906.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\39454359.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\39478203.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\270734.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\271359.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\275343.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\289093.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\289968.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\290328.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\343031.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\401343.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\401968.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\402000.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\416937.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\418781.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\419671.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\420687.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\422046.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\423000.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\441812.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\442468.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\442890.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\452531.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\454406.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\455171.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\457078.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\458203.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\459046.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\508796.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\513828.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\514015.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\189734.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\191140.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\191203.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\215234.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\216406.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\217062.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\243031.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\300234.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\300906.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\300921.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\316281.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\317984.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\318765.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\319812.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\321015.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\321640.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\338343.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\338843.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\339218.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\349156.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\350796.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\351375.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\353765.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\355218.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\355906.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\382890.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\398437.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\399468.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\399718.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\571546.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\572671.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\597625.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\598640.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\599156.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\218484.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\219765.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\224296.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\246453.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\247343.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\247687.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\331203.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\385078.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\385734.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\385750.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\403765.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\405453.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\406000.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\406781.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\408000.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\408687.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\424312.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\424890.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\425265.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\433875.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\435687.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\436265.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\438156.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\439171.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\439968.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\465093.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\483687.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\484781.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\484984.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\488796.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\489562.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\489609.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\495515.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\510031.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\511000.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\511500.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\1987312.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\1988781.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\1994703.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\2015312.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\2017234.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\2017734.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\2380062.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\2432171.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\2432796.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\2432828.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\2447984.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\2449687.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\2450718.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\2451984.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\2453421.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\2454203.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\2479734.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\2480265.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\2480640.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\2491203.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\2495062.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\2495687.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\2498250.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\2499453.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\2500562.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\2539000.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\2539812.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\2540031.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\192312.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\195406.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\195437.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\199703.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\216515.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\217656.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\218140.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\408109.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\475000.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\476203.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\476781.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\497968.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\500828.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\502062.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\504000.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\505671.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\507578.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\536281.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\537812.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\538437.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\554921.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\556265.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\558078.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\615468.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\618171.exe
Deleted ! - C:\Documents and Settings\la famille\Application Data\drivers\downld\618671.exe
Deleted ! - "C:\Documents and Settings\la famille\Application Data\drivers\downld"
Deleted ! - "C:\Documents and Settings\la famille\Application Data\drivers"

»»»» Supression files in C:\DOCUME~1\LAFAMI~1\LOCALS~1\Temp
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 56
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 291
27 déc. 2008 à 21:20
---> Réinstalle les applications qui ont été infectés (Comme Antivir).

- Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.

- Double-clique sur RSIT.exe afin de lancer le programme.

- Clique sur Continue à l'écran Disclaimer.

- Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.

- Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).

Note : Les rapports sont sauvegardés dans le dossier C:\rsit.
0
Réponse 6 / 56
toto62
27 déc. 2008 à 21:34
Logfile of random's system information tool 1.05 (written by random/random)
Run by la famille at 2008-12-27 21:26:26
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 80 GB (70%) free of 114 GB
Total RAM: 511 MB (39% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:26:45, on 27/12/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\system32\CTsvcCDA.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Generic\USB Card Reader Driver v1.9e3\Disk_Monitor.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\FixCamera.exe
C:\WINDOWS\tsnp325.exe
C:\WINDOWS\vsnp325.exe
C:\Program Files\EoRezo\EoEngine.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Java\jre1.6.0_07\bin\jucheck.exe
C:\Documents and Settings\la famille\Local Settings\Temporary Internet Files\Content.IE5\326IMLFF\RSIT[1].exe
C:\Program Files\trend micro\la famille.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://lo.st#home
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: eBay Toolbar Helper - {22D8E815-4A5E-4DFB-845E-AAB64207F5BD} - C:\Program Files\eBay\eBay Toolbar2\eBayTB.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\fr\msntb.dll (file missing)
O2 - BHO: EoBHO - {C7B76B90-3455-4AE6-A752-EAC4D19689E5} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: eBay Toolbar - {92085AD4-F48A-450D-BD93-B28CC7DF67CE} - C:\Program Files\eBay\eBay Toolbar2\eBayTB.dll
O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL (file missing)
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [Disk Monitor] C:\Program Files\Generic\USB Card Reader Driver v1.9e3\Disk_Monitor.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
O4 - HKLM\..\Run: [eBayToolbar] C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [adiras] adiras.exe
O4 - HKLM\..\Run: [FixCamera] C:\WINDOWS\FixCamera.exe
O4 - HKLM\..\Run: [tsnp325] C:\WINDOWS\tsnp325.exe
O4 - HKLM\..\Run: [snp325] C:\WINDOWS\vsnp325.exe
O4 - HKLM\..\Run: [EoEngine] "C:\Program Files\EoRezo\EoEngine.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [AVGCtrl] "C:\Program Files\AVPersonal\AVGNT.EXE" /min
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Creative Detector] "C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe" /R
O4 - HKCU\..\Run: [drvsyskit] C:\Documents and Settings\la famille\Application Data\drivers\winupgro.exe
O4 - HKCU\..\Run: [german.exe] C:\WINDOWS\system32\wintems.exe
O4 - HKCU\..\Run: [mule_st_key] C:\Documents and Settings\la famille\Application Data\m\flec006.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Recherche sur eBay - res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .fpx: C:\\Program Files\\Internet Explorer\\PLUGINS\\NPRVRT32.dll
O12 - Plugin for .ivr: C:\\Program Files\\Internet Explorer\\PLUGINS\\NPRVRT32.dll
O14 - IERESET.INF: START_PAGE_URL=https://www.acer.com/worldwide/selection.html
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://www.creative.com/su/ocx/15026/CTSUEng.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {26522409-8BBF-4C5B-A4D3-CF4B1D6F255B} (UMediaPlayer Class) - http://www.umediaserver.net/bin/UMediaControl5.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/pr02/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://217.169.16.132/activex/AxisCamControl.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab53083.cab
O16 - DPF: {B9940246-4344-4D1B-BD82-DBAF7E657FF9} (AudioClient Control) - http://ciao171170.miemasu.net/SysCamInst.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {C4925E65-7A1E-11D2-8BB4-00A0C9CC72C3} (Virtools WebPlayer Class) - http://a532.g.akamai.net/f/532/6712/4h/player.virtools.com/downloads/player/Install3.0/Installer.exe
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://wwwimages.adobe.com/www.adobe.com/products/acrobat/nos/gp.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/su/ocx/15026/CTPID.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{EC14161D-FF3F-4250-AA25-F76F78850F73}: NameServer = 86.64.145.143 84.103.237.143
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll (file missing)
O23 - Service: AntiVir Scheduler (AntiVirScheduler) - H+BEDV Datentechnik GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Service (AntiVirService) - H+BEDV Datentechnik GmbH - C:\Program Files\AVPersonal\AVGUARD.EXE
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O24 - Desktop Component 0: (no name) - http://www.lesgifsa-bijou.com/hbt.php?rewrite=enfants/fonds-Noel/bonshommes.jpg
0
Réponse 7 / 56
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 291
27 déc. 2008 à 21:38
---> Désinstalle EoEngine.

● Télécharge AD-Remover (de Cyrildu17 / C_XX) sur ton Bureau.

/!\ Déconnecte-toi et ferme toutes applications en cours /!\

● Double-clique sur le programme d'installation, installe-le dans son emplacement par défaut (C:\Program files).
● Double-clique sur l'icône Ad-remover située sur ton Bureau.
● Au menu principal, choisis l'option "A".
● Poste le rapport qui apparaît à la fin.

(Le rapport est sauvegardé aussi sous C:\Ad-report(date).log)

(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)

Note :

"Process.exe", une composante de l'outil, est détectée par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
0
Réponse 8 / 56
toto62
27 déc. 2008 à 21:43
ok j vais essayer (pas évidant)
0
Réponse 9 / 56
toto62
27 déc. 2008 à 22:06
--------- Logfile of AD-Remover 1.0.8.0 by C_XX ---------

# START at: 22:01:42 | Sam 27/12/2008 | Microsoft® Windows XP™ SP3 (v5.1.2600)
# BOOT MODE: Normal

# OPTION: Scan | EXECUTED FROM: C:\Program Files\Ad-remover\AD-Remover.bat

# PC: OEM-7VGXBAWMJU1 | USER: la famille ( Current user is an administrator)

# DRIVE(S):
- C:\ (File System: FAT32)

# Internet Explorer v7.0.5730.11

--------- [ RUNNING PROCESSES: 32 ] ---------

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\system32\CTsvcCDA.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Generic\USB Card Reader Driver v1.9e3\Disk_Monitor.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\FixCamera.exe
C:\WINDOWS\tsnp325.exe
C:\WINDOWS\vsnp325.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe
C:\documents and settings\la famille\local settings\application data\wgpeo.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\Program Files\Java\jre1.6.0_07\bin\jucheck.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\ntvdm.exe

-----------------------------------


+-----------------------| Boonty/Boonty Games Elements found :

"Boonty Games" (service)
.
"HKEY_CLASSES_ROOT\boontybox"
"HKEY_CURRENT_USER\SOFTWARE\Boonty"
"HKEY_LOCAL_MACHINE\Software\Boonty"
"HKEY_LOCAL_MACHINE\Software\Classes\boontybox"
"HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Boonty Games"
"HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BOONTY_GAMES"
"HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Boonty Games"
"HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Boonty Games"
.
[19/10/2006 19:14|d--------] C:\PROGRA~1\BOONTY
[19/10/2006 19:14|d--------] C:\PROGRA~1\BOONTY\COMPON~1
[19/10/2006 19:16|--a------] C:\PROGRA~1\BOONTY\COMPON~1\BOONTY~1.EXE
[13/11/2005 17:36|d--------] C:\PROGRA~1\BOONTY~1
[13/11/2005 17:36|d--------] C:\PROGRA~1\BOONTY~1\COMPON~1
[19/03/2006 14:59|--a------] C:\PROGRA~1\BOONTY~1\asianata.exe
[03/10/2006 16:36|--a------] C:\PROGRA~1\BOONTY~1\COMPON~1\bureau.url
[26/01/2007 19:34|--a------] C:\PROGRA~1\BOONTY~1\COMPON~1\start.url
[27/10/2003 15:07|--a------] C:\PROGRA~1\BOONTY~1\COMPON~1\JOYSTICK.ICO
[19/03/2006 15:03|d--------] C:\PROGRA~1\FICHIE~1\BOONTY~1
[19/03/2006 15:03|d--------] C:\PROGRA~1\FICHIE~1\BOONTY~1\SERVICE
[19/03/2006 15:03|--a------] C:\PROGRA~1\FICHIE~1\BOONTY~1\SERVICE\BOONTY.EXE
[19/03/2006 15:03|d--------] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[19/03/2006 15:03|d--------] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY\LICENSES
[19/10/2006 19:20|-r-------] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY\LICENSES\B3CB3000.dat
[05/11/2006 19:14|-r-------] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY\LICENSES\B4BF5000.dat

+-----------------------| Eorezo Elements found :

"HKEY_CURRENT_USER\SOFTWARE\EoRezo"
"HKEY_LOCAL_MACHINE\SOFTWARE\EoRezo"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run" /v "EoEngine"
.
[03/12/2008 14:08|d--------] C:\DOCUME~1\LAFAMI~1\APPLIC~1\EOREZO
[27/12/2008 21:54|--a------] C:\DOCUME~1\LAFAMI~1\APPLIC~1\EOREZO\user.cyp
[27/12/2008 21:54|--a------] C:\DOCUME~1\LAFAMI~1\APPLIC~1\EOREZO\cache
[27/12/2008 12:03|--a------] C:\DOCUME~1\LAFAMI~1\APPLIC~1\EOREZO\host.cyp
[27/12/2008 12:03|--a------] C:\DOCUME~1\LAFAMI~1\APPLIC~1\EOREZO\cmhost.cyp
[03/12/2008 14:08|d--------] C:\DOCUME~1\LAFAMI~1\APPLIC~1\EOREZO\db
[27/12/2008 21:16|--a------] C:\DOCUME~1\LAFAMI~1\APPLIC~1\EOREZO\CONFME~1.CYP
[03/12/2008 14:08|d--------] C:\DOCUME~1\LAFAMI~1\APPLIC~1\EOREZO\EODESK~1
[03/12/2008 14:49|d--------] C:\DOCUME~1\LAFAMI~1\APPLIC~1\EOREZO\EOSTATS
[27/12/2008 21:16|--a------] C:\DOCUME~1\LAFAMI~1\APPLIC~1\EOREZO\db\cat.cyp
[27/12/2008 21:16|--a------] C:\DOCUME~1\LAFAMI~1\APPLIC~1\EOREZO\EODESK~1\config.xml
[27/12/2008 21:16|--a------] C:\DOCUME~1\LAFAMI~1\APPLIC~1\EOREZO\EODESK~1\USERCO~1.XML
[27/12/2008 21:16|--a------] C:\DOCUME~1\LAFAMI~1\APPLIC~1\EOREZO\EODESK~1\EODESK~1.HTM
[27/12/2008 11:05|--a------] C:\DOCUME~1\LAFAMI~1\COOKIES\LAD384~1.TXT
[27/12/2008 20:10|--a------] C:\DOCUME~1\LAFAMI~1\COOKIES\LA4684~1.TXT

+-----------------------| Everest Poker Elements found :

.
[24/12/2007 13:46|d--------] C:\PROGRA~1\EVERES~1
[24/12/2007 13:46|--a------] C:\PROGRA~1\EVERES~1\CSTART.EXE

+-----------------------| FunWebProducts/MyWay/MyWebSearch/MyGlobalSearch Elements found :

.

+-----------------------| It's TV Elements found :

.

+-----------------------| Sweetim Elements found :

.

+-----------------------| ADDED SCAN :

+--[HKEY_CURRENT_USER\..\Run]

CTFMON.EXE REG_SZ C:\WINDOWS\system32\ctfmon.exe
MsnMsgr REG_SZ "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
Creative Detector REG_SZ "C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe" /R
wgpeo REG_SZ "c:\documents and settings\la famille\local settings\application data\wgpeo.exe" wgpeo
drvsyskit REG_SZ C:\Documents and Settings\la famille\Application Data\drivers\winupgro.exe
german.exe REG_SZ C:\WINDOWS\system32\wintems.exe
mule_st_key REG_SZ C:\Documents and Settings\la famille\Application Data\m\flec006.exe

+--[HKEY_LOCAL_MACHINE\..\Run]

SoundMan REG_SZ SOUNDMAN.EXE
Disk Monitor REG_SZ C:\Program Files\Generic\USB Card Reader Driver v1.9e3\Disk_Monitor.exe
SunJavaUpdateSched REG_SZ "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
Easy-PrintToolBox REG_SZ C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
eBayToolbar REG_SZ C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe
Adobe Photo Downloader REG_SZ "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
QuickTime Task REG_SZ "C:\Program Files\QuickTime\qttask.exe" -atboottime
PCSuiteTrayApplication REG_SZ C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
adiras REG_SZ adiras.exe
FixCamera REG_SZ C:\WINDOWS\FixCamera.exe
tsnp325 REG_SZ C:\WINDOWS\tsnp325.exe
snp325 REG_SZ C:\WINDOWS\vsnp325.exe
EoEngine REG_SZ
Adobe Reader Speed Launcher REG_SZ "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
avgnt REG_SZ "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
AVGCtrl REG_SZ "C:\Program Files\AVPersonal\AVGNT.EXE" /min

+--[HKEY_USERS\.DEFAULT\..\Run]

CTFMON.EXE REG_SZ C:\WINDOWS\System32\CTFMON.EXE
Nokia.PCSync REG_SZ C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog

+--[HKEY_CURRENT_USER\..\Internet Explorer\MAIN]

Start Page : hxxp://lo.st#home

+--[HKEY_LOCAL_MACHINE\..\Internet Explorer\MAIN]

Start Page : hxxp://go.microsoft.com/fwlink/?LinkId=69157

+---------------------------------------------------------------------------+

- "C:\AD-report-Scan-27.12.2008.log" (~7329 bytes)

# END at: 22:01:58 | 27/12/2008 - Time elapsed: 16.4 seconds

+---------------------------------------------------------------------------+
+------------------------------- [ E.O.F - 134 lines ]
+---------------------------------------------------------------------------+
0
Réponse 10 / 56
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 291
27 déc. 2008 à 22:07
/!\ Déconnecte-toi et ferme toutes applications en cours /!\

● Double-clique sur AD-Remover pour le lancer : au menu principal, choisis l'option B.

● Coche à l'écran de sélection :
http://sd-1.archive-host.com/membres/up/16506160323759868/Capturer-ADR.JPG

Suppression Boonty/BoontyGames (Si trouvé)
Suppression Eorezo (Si trouvé)
Suppression Everest Poker (Si trouvé)
Suppression Funwebproduct/MyWay/MyWebsearch (Si trouvé)
Suppression Messenger Skinner (Si trouvé)
Suppression Sweetim (Si trouvé)
Suppression It's TV (Si trouvé)

● Puis choisis S, le programme va travailler.

● Poste le rapport qui apparaît à la fin.

(Le rapport est sauvegardé aussi sous C:\Ad-report.log)

/!\ Si le Bureau ne réapparaît pas, presse Ctrl + Alt + Suppr, Onglet "Fichier", "Nouvelle tâche", tape explorer.exe et valide) /!\
0
Réponse 11 / 56
toto62
27 déc. 2008 à 22:33
--------- Logfile of AD-Remover 1.0.8.0 by C_XX ---------

*** Limited to ***

Boonty/BoontyGames
Eorezo
Everest Poker
Funwebproduct/MyWay/MyWebsearch
It's TV
Sweetim

******************

# START at: 22:23:20 | Sam 27/12/2008 | Microsoft® Windows XP™ SP3 (v5.1.2600)
# BOOT MODE: Normal

# OPTION: Clean | EXECUTED FROM: C:\Program Files\Ad-remover\AD-Remover.bat

# PC: OEM-7VGXBAWMJU1 | USER: la famille ( Current user is an administrator)

# DRIVE(S):
- C:\ (File System: FAT32)

# Internet Explorer v7.0.5730.11

--------- [ RUNNING PROCESSES: 32 ] ---------

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\system32\CTsvcCDA.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Generic\USB Card Reader Driver v1.9e3\Disk_Monitor.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\FixCamera.exe
C:\WINDOWS\tsnp325.exe
C:\WINDOWS\vsnp325.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe
C:\documents and settings\la famille\local settings\application data\wgpeo.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\Program Files\Java\jre1.6.0_07\bin\jucheck.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\ntvdm.exe

-----------------------------------

(!) ---- IE start pages reset

+-----------------------| Boonty/Boonty Games Elements Deleted :

"Boonty Games" (service)
.
"HKEY_CLASSES_ROOT\boontybox"
"HKEY_CURRENT_USER\SOFTWARE\Boonty"
"HKEY_LOCAL_MACHINE\Software\Boonty"
"HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BOONTY_GAMES"
"HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Boonty Games"
.
[19/10/2006 19:14|d--------] C:\Program Files\Boonty
[13/11/2005 17:36|d--------] C:\Program Files\BoontyGames
[19/03/2006 15:03|d--------] C:\Program Files\Fichiers communs\BOONTY Shared
[19/03/2006 15:03|d--------] C:\Documents and Settings\All Users\Application Data\BOONTY

+-----------------------| Eorezo Elements Deleted :

"HKEY_CURRENT_USER\SOFTWARE\EoRezo"
"HKEY_LOCAL_MACHINE\SOFTWARE\EoRezo"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run" /v "EoEngine"
.
[03/12/2008 14:08|d--------] C:\Documents and Settings\la famille\Application Data\EoRezo
[27/12/2008 11:05|--a------] C:\DOCUME~1\LAFAMI~1\COOKIES\LAD384~1.TXT
[27/12/2008 20:10|--a------] C:\DOCUME~1\LAFAMI~1\COOKIES\LA4684~1.TXT

+-----------------------| Everest Poker Elements Deleted :

.
[24/12/2007 13:46|d--------] C:\Program Files\Everest Poker

+-----------------------| FunWebProducts/MyWay/MyWebSearch/MyGlobalSearch Elements Deleted :

.

+-----------------------| It's TV Elements Deleted :

.

+-----------------------| Sweetim Elements Deleted :

.
0
Réponse 12 / 56
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 291
27 déc. 2008 à 22:35
Le rapport n'est pas complet.
0
Réponse 13 / 56
toto62
27 déc. 2008 à 22:40
--------- Logfile of AD-Remover 1.0.8.0 by C_XX ---------

*** Limited to ***

Boonty/BoontyGames
Eorezo
Everest Poker
Funwebproduct/MyWay/MyWebsearch
It's TV
Sweetim

******************

# START at: 22:23:20 | Sam 27/12/2008 | Microsoft® Windows XP™ SP3 (v5.1.2600)
# BOOT MODE: Normal

# OPTION: Clean | EXECUTED FROM: C:\Program Files\Ad-remover\AD-Remover.bat

# PC: OEM-7VGXBAWMJU1 | USER: la famille ( Current user is an administrator)

# DRIVE(S):
- C:\ (File System: FAT32)

# Internet Explorer v7.0.5730.11

--------- [ RUNNING PROCESSES: 32 ] ---------

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\system32\CTsvcCDA.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Generic\USB Card Reader Driver v1.9e3\Disk_Monitor.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\FixCamera.exe
C:\WINDOWS\tsnp325.exe
C:\WINDOWS\vsnp325.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe
C:\documents and settings\la famille\local settings\application data\wgpeo.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\Program Files\Java\jre1.6.0_07\bin\jucheck.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\ntvdm.exe

-----------------------------------

(!) ---- IE start pages reset

+-----------------------| Boonty/Boonty Games Elements Deleted :

"Boonty Games" (service)
.
"HKEY_CLASSES_ROOT\boontybox"
"HKEY_CURRENT_USER\SOFTWARE\Boonty"
"HKEY_LOCAL_MACHINE\Software\Boonty"
"HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_BOONTY_GAMES"
"HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\Boonty Games"
.
[19/10/2006 19:14|d--------] C:\Program Files\Boonty
[13/11/2005 17:36|d--------] C:\Program Files\BoontyGames
[19/03/2006 15:03|d--------] C:\Program Files\Fichiers communs\BOONTY Shared
[19/03/2006 15:03|d--------] C:\Documents and Settings\All Users\Application Data\BOONTY

+-----------------------| Eorezo Elements Deleted :

"HKEY_CURRENT_USER\SOFTWARE\EoRezo"
"HKEY_LOCAL_MACHINE\SOFTWARE\EoRezo"
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run" /v "EoEngine"
.
[03/12/2008 14:08|d--------] C:\Documents and Settings\la famille\Application Data\EoRezo
[27/12/2008 11:05|--a------] C:\DOCUME~1\LAFAMI~1\COOKIES\LAD384~1.TXT
[27/12/2008 20:10|--a------] C:\DOCUME~1\LAFAMI~1\COOKIES\LA4684~1.TXT

+-----------------------| Everest Poker Elements Deleted :

.
[24/12/2007 13:46|d--------] C:\Program Files\Everest Poker

+-----------------------| FunWebProducts/MyWay/MyWebSearch/MyGlobalSearch Elements Deleted :

.

+-----------------------| It's TV Elements Deleted :

.

+-----------------------| Sweetim Elements Deleted :

.

(!) ---- Temp files deleted.
(!) ---- Recycle bin emptied in all drives.


+-----------------------| ADDED SCAN :

+--[HKEY_CURRENT_USER\..\Run]

CTFMON.EXE REG_SZ C:\WINDOWS\system32\ctfmon.exe
MsnMsgr REG_SZ "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
Creative Detector REG_SZ "C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe" /R
wgpeo REG_SZ "c:\documents and settings\la famille\local settings\application data\wgpeo.exe" wgpeo
drvsyskit REG_SZ C:\Documents and Settings\la famille\Application Data\drivers\winupgro.exe
german.exe REG_SZ C:\WINDOWS\system32\wintems.exe
mule_st_key REG_SZ C:\Documents and Settings\la famille\Application Data\m\flec006.exe

+--[HKEY_LOCAL_MACHINE\..\Run]

SoundMan REG_SZ SOUNDMAN.EXE
Disk Monitor REG_SZ C:\Program Files\Generic\USB Card Reader Driver v1.9e3\Disk_Monitor.exe
SunJavaUpdateSched REG_SZ "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
Easy-PrintToolBox REG_SZ C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
eBayToolbar REG_SZ C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe
Adobe Photo Downloader REG_SZ "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
QuickTime Task REG_SZ "C:\Program Files\QuickTime\qttask.exe" -atboottime
PCSuiteTrayApplication REG_SZ C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
adiras REG_SZ adiras.exe
FixCamera REG_SZ C:\WINDOWS\FixCamera.exe
tsnp325 REG_SZ C:\WINDOWS\tsnp325.exe
snp325 REG_SZ C:\WINDOWS\vsnp325.exe
Adobe Reader Speed Launcher REG_SZ "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
avgnt REG_SZ "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
AVGCtrl REG_SZ "C:\Program Files\AVPersonal\AVGNT.EXE" /min

+--[HKEY_USERS\.DEFAULT\..\Run]

CTFMON.EXE REG_SZ C:\WINDOWS\System32\CTFMON.EXE
Nokia.PCSync REG_SZ C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog

+--[HKEY_CURRENT_USER\..\Internet Explorer\MAIN]

Start Page : hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

+--[HKEY_LOCAL_MACHINE\..\Internet Explorer\MAIN]

Start Page : hxxp://fr.msn.com/

+---------------------------------------------------------------------------+

- "C:\AD-report-Scan-27.12.2008.log" (~7664 bytes)

- "C:\AD-report-Clean-27.12.2008.log" (~5678 bytes)

# END at: 22:34:13 | 27/12/2008 - Time elapsed: 10 minutes, 52 seconds

+---------------------------------------------------------------------------+
+------------------------------- [ E.O.F - 116 lines ]
+---------------------------------------------------------------------------+
0
Réponse 14 / 56
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 291
27 déc. 2008 à 22:43
- Télécharge Navilog1 (de IL-MAFIOSO) et enregistre-le sur le Bureau.

- Double-clique sur Navilog1.exe afin de lancer l'installation.

- Si le fix ne se lance pas automatiquement après son installation, double-clique sur Navilog1 présent sur le Bureau.

- Appuie sur F ou f puis valide par Entrée.

- Appuie sur une touche de ton clavier à chaque fois que cela est demandé, tu arriveras au menu des options.

- Choisis l'option 1 et appuie sur la touche Entrée pour valider ton choix.

- Patiente jusqu'au message : *** Analyse terminée le ..... ***

- Le scan fini, le bloc-notes contenant le rapport sera affiché, poste le contenu de ce rapport dans ta prochaine réponse.

- Si le résultat du scan ne s'affiche pas, tu le trouveras dans C:\fixnavi.txt

N'utilise pas l'option 2, 3 et 4 sans notre accord, des fichiers légitimes peuvent être inclus dans ce scan.
0
Réponse 15 / 56
toto62
27 déc. 2008 à 22:55
Search Navipromo version 3.7.0 commencé le 27/12/2008 à 22:51:50,81

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Postez ce rapport sur le forum pour le faire analyser !!!
!!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!!

Outil exécuté depuis C:\Program Files\navilog1

Mise à jour le 10.12.2008 à 21h00 par IL-MAFIOSO

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 2800+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : la famille ( Administrator )
BOOT : Normal boot

Antivirus : AntiVir PersonalEdition Classic Virus Protection 0.0.0.0 (Not Activated)


A:\ (USB)
C:\ (Local Disk) - FAT32 - Total:111 Go (Free:79 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)


Recherche executé en mode normal

*** Recherche Programmes installés ***

Favorit

*** Recherche dossiers dans "C:\WINDOWS" ***


*** Recherche dossiers dans "C:\Program Files" ***

...\InternetGameBox trouvé !

*** Recherche dossiers dans "C:\Documents and Settings\All Users\menudÉ~1\progra~1" ***


*** Recherche dossiers dans "C:\Documents and Settings\All Users\menudÉ~1" ***


*** Recherche dossiers dans "c:\docume~1\alluse~1\applic~1" ***


*** Recherche dossiers dans "C:\Documents and Settings\la famille\applic~1" ***


*** Recherche dossiers dans "C:\Documents and Settings\la famille\locals~1\applic~1" ***


*** Recherche dossiers dans "C:\Documents and Settings\la famille\menud+~1\progra~1" ***


*** Recherche avec Catchme-rootkit/stealth malware detector par gmer ***
pour + d'infos : http://www.gmer.net

Fichier(s) caché(s) :

C:\Documents and Settings\la famille\Local Settings\Application Data\wgpeo.exe 262144 bytes
C:\Documents and Settings\la famille\Local Settings\Application Data\wgpeo_nav.dat 327680 bytes
C:\Documents and Settings\la famille\Local Settings\Application Data\wgpeo.dat 32768 bytes
C:\Documents and Settings\la famille\Local Settings\Application Data\wgpeo_navps.dat 32768 bytes


*** Recherche avec GenericNaviSearch ***
!!! Tous ces résultats peuvent révéler des fichiers légitimes !!!
!!! A vérifier impérativement avant toute suppression manuelle !!!

* Recherche dans "C:\WINDOWS\system32" *

* Recherche dans "C:\Documents and Settings\la famille\locals~1\applic~1" *



*** Recherche fichiers ***



*** Recherche clés spécifiques dans le Registre ***
!! Les clés trouvées ne sont pas forcément infectées !!


[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"wgpeo"="\"c:\\documents and settings\\la famille\\local settings\\application data\\wgpeo.exe\" wgpeo"


*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Recherche nouveaux fichiers Instant Access :


2)Recherche Heuristique :

* Dans "C:\WINDOWS\system32" :


* Dans "C:\Documents and Settings\la famille\locals~1\applic~1" :


3)Recherche Certificats :

Certificat Egroup absent !
Certificat Electronic-Group absent !
Certificat Montorgueil absent !
Certificat OOO-Favorit absent !
Certificat Sunny-Day-Design-Ltd absent !

4)Recherche autres dossiers et fichiers connus :



*** Analyse terminée le 27/12/2008 à 22:53:36,53 ***
0
Réponse 16 / 56
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 291
27 déc. 2008 à 22:57
---> Relance Navilog1, fais l'option 2 et poste le rapport.
0
Réponse 17 / 56
toto62
27 déc. 2008 à 23:13
Clean Navipromo version 3.7.0 commencé le 27/12/2008 à 23:00:04,78

Outil exécuté depuis C:\Program Files\navilog1

Mise à jour le 10.12.2008 à 21h00 par IL-MAFIOSO

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 2800+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : la famille ( Administrator )
BOOT : Normal boot

Antivirus : AntiVir PersonalEdition Classic Virus Protection 0.0.0.0 (Not Activated)


A:\ (USB)
C:\ (Local Disk) - FAT32 - Total:111 Go (Free:79 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)


Mode suppression automatique
avec prise en charge résultats Catchme et GNS


Nettoyage exécuté au redémarrage de l'ordinateur

*** Creation backups fichiers trouvés par Catchme ***

Copie vers "C:\Program Files\navilog1\Backupnavi"


*** Suppression des fichiers trouvés avec Catchme ***


** 2ème passage avec résultats Catchme **

* Dans "C:\WINDOWS\system32" *


C:\WINDOWS\prefetch\wgpeo*.pf trouvé !
Copie C:\WINDOWS\prefetch\wgpeo*.pf réalisée avec succès !
C:\WINDOWS\prefetch\wgpeo*.pf supprimé !


* Dans "C:\Documents and Settings\la famille\locals~1\applic~1" *


wgpeo.exe trouvé !
Copie wgpeo.exe réalisée avec succès !
wgpeo.exe supprimé !

wgpeo.dat trouvé !
Copie wgpeo.dat réalisée avec succès !
wgpeo.dat supprimé !

wgpeo_nav.dat trouvé !
Copie wgpeo_nav.dat réalisée avec succès !
wgpeo_nav.dat supprimé !

wgpeo_navps.dat trouvé !
Copie wgpeo_navps.dat réalisée avec succès !
wgpeo_navps.dat supprimé !


*** Suppression avec sauvegardes résultats GenericNaviSearch ***

* Suppression dans "C:\WINDOWS\System32" *


* Suppression dans "C:\Documents and Settings\la famille\locals~1\applic~1" *



*** Suppression dossiers dans "C:\WINDOWS" ***


*** Suppression dossiers dans "C:\Program Files" ***

...\InternetGamebox ...suppression...
...\InternetGamebox supprimé !


*** Suppression dossiers dans "C:\Documents and Settings\All Users\menudÉ~1\progra~1" ***


*** Suppression dossiers dans "C:\Documents and Settings\All Users\menudÉ~1" ***


*** Suppression dossiers dans "c:\docume~1\alluse~1\applic~1" ***


*** Suppression dossiers dans "C:\Documents and Settings\la famille\applic~1" ***


*** Suppression dossiers dans "C:\Documents and Settings\la famille\locals~1\applic~1" ***


*** Suppression dossiers dans "C:\Documents and Settings\la famille\menud+~1\progra~1" ***



*** Suppression fichiers ***


*** Suppression fichiers temporaires ***

Nettoyage contenu C:\WINDOWS\Temp effectué !
Nettoyage contenu C:\Documents and Settings\la famille\locals~1\Temp effectué !

*** Traitement Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Suppression avec sauvegardes nouveaux fichiers Instant Access :

2)Recherche, création sauvegardes et suppression Heuristique :


* Dans "C:\WINDOWS\system32" *



* Dans "C:\Documents and Settings\la famille\locals~1\applic~1" *



*** Sauvegarde du Registre vers dossier Safebackup ***

sauvegarde du Registre réalisée avec succès !

*** Nettoyage Registre ***

Nettoyage Registre Ok


*** Certificats ***

Certificat Egroup absent !
Certificat Electronic-Group absent !
Certificat Montorgueil absent !
Certificat OOO-Favorit absent !
Certificat Sunny-Day-Design-Ltdt absent !

*** Recherche autres dossiers et fichiers connus ***



*** Nettoyage terminé le 27/12/2008 à 23:08:46,67 ***
0
Réponse 18 / 56
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 291
27 déc. 2008 à 23:17
---> Désinstalle Navilog1 et AD-Remover.

---> Télécharge Malwarebytes' Anti-Malware (MBAM) sur ton Bureau.
---> Double-clique sur le fichier téléchargé pour lancer le processus d'installation.
---> Dans l'onglet Mise à jour, clique sur le bouton Recherche de mise à jour : si le pare-feu demande l'autorisation à MBAM de se connecter à Internet, accepte.
---> Une fois la mise à jour terminée, rends-toi dans l'onglet Recherche.
---> Sélectionne Exécuter un examen rapide.
---> Clique sur Rechercher. L'analyse démarre.

A la fin de l'analyse, un message s'affiche :

L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.

---> Clique sur OK pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
---> Ferme tes navigateurs.
Si des malwares ont été détectés, clique sur Afficher les résultats.
---> Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre infectés et en mettre une copie dans la quarantaine.
---> MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport dans ta prochaine réponse.
0
Réponse 19 / 56
toto62
27 déc. 2008 à 23:30
Malwarebytes' Anti-Malware 1.31
Version de la base de données: 1550
Windows 5.1.2600 Service Pack 3

27/12/2008 23:29:26
mbam-log-2008-12-27 (23-29-26).txt

Type de recherche: Examen rapide
Eléments examinés: 50344
Temps écoulé: 2 minute(s), 38 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 3
Valeur(s) du Registre infectée(s): 1
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 5

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\MediaHoldings (Adware.PlayMP3Z) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Mirar (Adware.Mirar) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\PlayMP3 (Adware.PlayMP3Z) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\mule_st_key (Trojan.Agent) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
C:\WINDOWS\system32\cmd.com (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ping.com (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\tasklist.com (Worm.Alcra) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\tracert.com (Worm.Alcra) -> Quarantined and deleted successfully.
C:\Documents (Trojan.Agent) -> Quarantined and deleted successfully.
0
Réponse 20 / 56
Destrio5 Messages postés 85985 Date d'inscription dimanche 11 juillet 2010 Statut Modérateur Dernière intervention 17 février 2023 10 291
27 déc. 2008 à 23:35
---> Télécharge JavaRa.zip de Paul 'Prm753' McLain et Fred de Vries sur ton Bureau :
* Décompresse le fichier sur le Bureau (Clic droit > Extraire tout).
* Double-clique sur le répertoire JavaRa.
* Puis double-clique sur le fichier JavaRa.exe (le exe peut ne pas s'afficher).
* Clique sur Search For Updates.
* Sélectionne Update Using jucheck.exe puis clique sur Search.
* Autorise le processus à se connecter s'il le demande, clique sur Install et suis les instructions d'installation qui prennent quelques minutes.
* L'installation est terminée, reviens à l'écran de JavaRa et clique sur Remove Older Versions.
* Clique sur Oui pour confirmer. Laisse travailler et clique ensuite sur Ok, puis une deuxième fois sur Ok.
* Un rapport va s'ouvrir. Poste-le dans ta prochaine réponse.
* Ferme l'application.
Note : le rapport se trouve aussi dans C:\ sous le nom JavaRa.log.
0

Discussions similaires

Manque un article
Lucie -
Panth33ra -

2 réponses
Impression PDF incomplète
le-tux -
toin - toin -

5 réponses
Accèssoire manquant dans article reçu
dan -
tribun -

1 réponse
XINPUT1_3.dll manquant (missing)
Maxirugue -
dan -

39 réponses
Souci avec ma commande shein
alisiaanna998 -
Afrikarnak -

2 réponses