|
|
Auteur
|
Message
|
1
|
|
|
|
Bonjour , je viens de faire un scan avec Spyware Terminator ,je suis infecter par plusieurs Trojans qui font déconner tout le pc
comme bloquer avast et manger toutes les ressources de l'uc .
Voila le rapport : http://img354.imageshack.us/img354/5594/sastitreos6.jpg
Comment faire pour suprimer tout ça svp ? merci
|
|
team sécurité
|
|
|
bonjour
commence par supprimer tous tes cracks!
ensuite fait ça
Télécharge ELIBAGLA en bas de cette page http://www.zonavirus.com/datos/descargas/95/elibagla.asp
Clique sur le bouton Descargar Elibagla.
Cela va télécharger le fichier ; place-le sur ton bureau.
Double-clique dessus pour l'ouvrir
Assures-toi que dans le menu déroulant Unidad, tu as bien C:\
Vérifie aussi que l'option en bas de la fenêtre Eliminar Ficheros Automaticamente
est bien cochée !
Clique sur le bouton Explorar pour lancer l'analyse.
Le rapport est disponible sur disque dur C:\InfoSat
Poste-le.
|
|
|
|
|
Merci de ton aide , voila le rapport :
Sat May 10 17:36:07 2008
EliBagle v11.33 (c)2008 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Acción Directa):
C:\WINDOWS\SYSTEM32\WINTEMS.EXE --> Bagle Acceso Denegado.
C:\WINDOWS\SYSTEM32\BAN_LIST.TXT --> Eliminado Bagle
C:\WINDOWS\SYSTEM32\DRIVERS\SROSA.SYS --> Bagle (rootkit) Acceso Denegado.
Por favor, envienos una muestra del fichero
C:\Muestras\HLDRRR.EXE.Muestra EliBagle v11.33
a "virus@satinfo.es". Gracias.
C:\WINDOWS\SYSTEM32\DRIVERS\HLDRRR.EXE --> Bagle Acceso Denegado.
C:\USERS\KIRA\APPDATA\ROAMING\M\FLEC006.EXE --> Bagle Acceso Denegado.
C:\USERS\KIRA\APPDATA\ROAMING\M\LIST.OCT --> Eliminado Bagle
Sat May 10 18:47:14 2008
EliBagle v11.33 (c)2008 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Acción Directa):
C:\WINDOWS\SYSTEM32\WINTEMS.EXE --> Bagle Acceso Denegado.
C:\WINDOWS\SYSTEM32\BAN_LIST.TXT --> Eliminado Bagle
C:\WINDOWS\SYSTEM32\DRIVERS\SROSA.SYS --> Bagle (rootkit) Acceso Denegado.
Por favor, envienos una muestra del fichero
C:\Muestras\HLDRRR.EXE.Muestra EliBagle v11.33
a "virus@satinfo.es". Gracias.
C:\WINDOWS\SYSTEM32\DRIVERS\HLDRRR.EXE --> Bagle Acceso Denegado.
C:\USERS\KIRA\APPDATA\ROAMING\M\FLEC006.EXE --> Bagle Acceso Denegado.
Reinicie para Completar la Limpieza.
Sat May 10 18:59:04 2008
EliBagle v11.33 (c)2008 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Acción Directa):
C:\WINDOWS\SYSTEM32\WINTEMS.EXE --> Bagle Acceso Denegado.
C:\WINDOWS\SYSTEM32\DRIVERS\SROSA.SYS --> Bagle (rootkit) Acceso Denegado.
Por favor, envienos una muestra del fichero
C:\Muestras\HLDRRR.EXE.Muestra EliBagle v11.33
a "virus@satinfo.es". Gracias.
C:\WINDOWS\SYSTEM32\DRIVERS\HLDRRR.EXE --> Bagle Acceso Denegado.
C:\USERS\KIRA\APPDATA\ROAMING\M\FLEC006.EXE --> Bagle Acceso Denegado.
Reinicie para Completar la Limpieza.
Sat May 10 19:12:29 2008
EliBagle v11.33 (c)2008 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Acción Directa):
C:\WINDOWS\SYSTEM32\WINTEMS.EXE --> Bagle Acceso Denegado.
C:\WINDOWS\SYSTEM32\DRIVERS\SROSA.SYS --> Bagle (rootkit) Acceso Denegado.
Por favor, envienos una muestra del fichero
C:\Muestras\HLDRRR.EXE.Muestra EliBagle v11.33
a "virus@satinfo.es". Gracias.
C:\WINDOWS\SYSTEM32\DRIVERS\HLDRRR.EXE --> Bagle Acceso Denegado.
C:\USERS\KIRA\APPDATA\ROAMING\M\FLEC006.EXE --> Bagle Acceso Denegado.
C:\USERS\KIRA\APPDATA\ROAMING\M\LIST.OCT --> Eliminado Bagle
Reinicie para Completar la Limpieza.
Sat May 10 19:20:53 2008
EliBagle v11.33 (c)2008 S.G.H. / Satinfo S.L.
----------------------------------------------
Lista de Acciones (por Acción Directa):
|
|
team sécurité
|
|
|
Désactive toute protection résidente ! (Antivirus, antispywares..)
Télécharge ComboFix (créé par sUBs) sur ton Bureau
Démarre en mode sans echec
Double clique combofix.exe.
Tape sur la touche Y (Yes) pour démarrer le scan.
Lorsque le scan sera complété, un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse,et nouveau rapport hijackthis
NOTE : Le rapport se trouve également ici : C:\Combofix.txt
tuto ici
|
|
|
|
|
On dirait que ça a tout supprimer , d'après le Spyware Terminator je n'ai plus aucun trojan et mon cpu n'est plus utilisé a fond .
Voici quand même le log du scan :
ComboFix 08-05-09.1 - Kira 2008-05-10 20:38:39.1 - NTFSx86
Running from: C:\Users\Kira\Documents\Mes téléchargements\shit.exe
.
((((((((((((((((((((((((( Files Created from 2008-04-10 to 2008-05-10 )))))))))))))))))))))))))))))))
.
2008-05-10 17:38 . 2008-05-10 19:29 <REP> d-------- C:\Program Files\Navilog1
2008-05-10 17:36 . 2008-05-10 17:36 <REP> d-------- C:\Muestras
2008-05-10 17:32 . 2008-05-10 17:33 <REP> d-------- C:\Users\All Users\PrevxCSI
2008-05-10 17:32 . 2008-05-10 17:32 <REP> d-------- C:\Program Files\PrevxCSI
2008-05-10 17:32 . 2008-05-10 17:33 <REP> d-------- C:\PROGRA~2\PrevxCSI
2008-05-10 17:32 . 2008-05-10 17:32 10,880 --a------ C:\Windows\System32\drivers\pxark.sys
2008-05-10 16:57 . 2008-05-10 18:40 <REP> d-------- C:\Users\Kira\AppData\Roaming\Spyware Terminator
2008-05-10 16:57 . 2008-05-10 17:12 <REP> d-------- C:\Users\All Users\Spyware Terminator
2008-05-10 16:57 . 2008-05-10 17:20 <REP> d-------- C:\Program Files\Spyware Terminator
2008-05-10 16:57 . 2008-05-10 16:58 <REP> d-------- C:\Program Files\Crawler
2008-05-10 16:57 . 2008-05-10 17:12 <REP> d-------- C:\PROGRA~2\Spyware Terminator
2008-05-10 16:57 . 2008-05-10 16:57 141,312 --a------ C:\Windows\System32\drivers\sp_rsdrv2.sys
2008-05-10 16:08 . 2008-05-10 16:08 <REP> d-------- C:\Program Files\Panda Security
2008-05-10 16:08 . 2008-05-10 16:08 1,847 --a------ C:\Windows\mozver.dat
2008-05-10 14:52 . 2008-05-10 14:52 <REP> d-------- C:\Windows\System32\Kaspersky Lab
2008-05-10 12:43 . 2008-05-10 13:17 <REP> d-------- C:\Windows\BDOSCAN8
2008-05-10 12:35 . 2008-05-10 12:35 <REP> d-------- C:\Program Files\CCleaner
2008-05-10 11:52 . 2008-05-10 11:52 <REP> d-------- C:\Users\Kira\.mp3splt-gtk
2008-05-10 11:52 . 2008-05-10 11:52 <REP> d-------- C:\Program Files\mp3splt-gtk
2008-05-09 14:14 . 1997-11-19 14:49 303,616 --a------ C:\Windows\IsUninst.exe
2008-05-09 12:20 . 2008-05-09 12:21 <REP> d-------- C:\Fraps
2008-05-06 20:43 . 2008-05-10 17:23 210,479,375 --a------ C:\Windows\MEMORY.DMP
2008-05-06 12:56 . 2008-05-06 12:56 <REP> d-------- C:\Users\Kira\AppData\Roaming\Ubisoft
2008-05-05 15:58 . 2008-05-05 15:58 <REP> d-------- C:\Program Files\Common Files\SWF Studio
2008-05-05 15:48 . 2008-05-05 15:48 <REP> d-------- C:\Program Files\Eidos
2008-05-04 04:58 . 2008-05-04 04:58 15,600 --a------ C:\Windows\gdrv.sys
2008-04-26 23:21 . 2008-04-26 23:37 <REP> d-------- C:\Program Files\VPLauncher
2008-04-20 19:42 . 2008-04-20 19:42 132 --a------ C:\Windows\kaillera.ini
2008-04-20 12:37 . 2008-04-20 12:46 <REP> d-------- C:\Users\All Users\TrackMania
2008-04-20 12:37 . 2008-04-20 12:46 <REP> d-------- C:\PROGRA~2\TrackMania
2008-04-20 12:31 . 2008-04-20 12:32 <REP> d-------- C:\Program Files\TmNationsForever
2008-04-15 08:27 . 2008-04-15 08:27 <REP> d-------- C:\Program Files\OpenAL
2008-04-14 14:21 . 2008-04-14 14:21 <REP> d-------- C:\Users\Kira\AppData\Roaming\Download Manager
2008-04-14 14:21 . 2008-04-14 14:29 <REP> d-------- C:\Program Files\Okoker All Video Splitter
2008-04-12 12:03 . 2006-02-04 03:50 5,174 --a------ C:\Windows\System32\nppt9x.vxd
2008-04-12 12:03 . 2006-02-04 03:50 4,682 --a------ C:\Windows\System32\npptNT2.sys
2008-04-11 17:23 . 2008-04-11 17:23 38,400 --a------ C:\Windows\System32\SoundSchemes.exe
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-05-10 14:39 --------- d-----w C:\Program Files\Spybot - Search & Destroy
2008-05-10 14:38 --------- d-----w C:\PROGRA~2\Spybot - Search & Destroy
2008-05-10 12:09 --------- d-----w C:\Program Files\SpeedFan
2008-05-10 11:34 --------- d-----w C:\Program Files\BitComet
2008-05-09 12:31 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-05-09 12:15 --------- d-----w C:\Program Files\Rockstar Games
2008-05-09 10:21 --------- d---a-w C:\PROGRA~2\TEMP
2008-05-09 09:42 --------- d-----w C:\Users\Kira\AppData\Roaming\uTorrent
2008-05-06 10:44 --------- d-----w C:\Program Files\Ubisoft
2008-05-05 14:59 --------- d-----w C:\PROGRA~2\Ubisoft
2008-05-05 14:58 66,872 ----a-w C:\Windows\System32\PnkBstrA.exe
2008-05-05 14:58 22,328 ----a-w C:\Windows\system32\drivers\PnkBstrK.sys
2008-05-05 14:58 22,328 ----a-w C:\Users\Kira\AppData\Roaming\PnkBstrK.sys
2008-05-05 14:58 2,337,865 ----a-w C:\Windows\System32\pbsvc.exe
2008-05-05 14:58 107,832 ----a-w C:\Windows\System32\PnkBstrB.exe
2008-05-05 11:28 --------- d-----w C:\Program Files\Microsoft Games
2008-05-03 09:06 --------- d-----w C:\Program Files\ASUS
2008-04-30 09:29 --------- d-----w C:\Program Files\MSN Messenger
2008-04-30 09:29 --------- d-----w C:\Program Files\Messenger Plus! Live
2008-04-15 06:27 413,696 ----a-w C:\Windows\System32\wrap_oal.dll
2008-04-15 06:27 110,592 ----a-w C:\Windows\System32\OpenAL32.dll
2008-04-12 09:45 --------- d-----w C:\Program Files\PMG
2008-04-11 17:46 --------- d-----w C:\Program Files\ATI
2008-04-10 21:46 --------- d-----w C:\Users\Kira\AppData\Roaming\Bioshock
2008-04-09 13:59 --------- d-----w C:\PROGRA~2\Microsoft Help
2008-04-09 13:58 --------- d-----w C:\Program Files\Microsoft Works
2008-04-09 13:56 --------- d-----w C:\Program Files\Microsoft.NET
2008-04-09 08:10 --------- d-----w C:\Program Files\Common Files\Steam
2008-04-08 18:13 --------- d-----w C:\Program Files\Oxin's Style!
2008-03-30 18:10 --------- d-----w C:\Program Files\RivaTuner v2.07
2008-03-30 18:09 --------- d-----w C:\Program Files\RivaTuner v2.06
2008-03-29 16:40 --------- d-----w C:\Users\Kira\AppData\Roaming\atitray
2008-03-29 16:39 --------- d-----w C:\Program Files\Ray Adams
2008-03-29 15:18 --------- d-----w C:\Users\Kira\AppData\Roaming\ATI
2008-03-29 15:18 --------- d-----w C:\PROGRA~2\ATI
2008-03-29 15:14 --------- d-----w C:\Program Files\ATI Technologies
2008-03-29 14:59 --------- d-----w C:\PROGRA~2\NVIDIA
2008-03-24 14:32 5,632 ----a-w C:\Windows\System32\BReWErS.dll
2008-03-17 18:15 --------- d-----w C:\Users\Kira\AppData\Roaming\InstallShield Installation Information
2008-03-13 14:31 278,984 ----a-w C:\Windows\system32\drivers\atksgt.sys
2008-03-12 18:04 --------- d-----w C:\Program Files\Monkey's Audio
2008-03-12 14:11 --------- d-----w C:\PROGRA~2\Test Drive Unlimited
2008-03-12 13:06 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2008-03-12 13:03 --------- d-----w C:\Program Files\Microsoft Silverlight
2008-03-12 12:51 --------- d-----w C:\Program Files\Windows Mail
2008-03-12 01:48 --------- d-----w C:\Users\Kira\AppData\Roaming\Zylom
2008-03-12 01:45 --------- d-----w C:\PROGRA~2\Zylom
2008-03-11 21:00 --------- d-----w C:\Program Files\Java
2008-03-10 08:40 --------- d-----w C:\PROGRA~2\Media Center Programs
2008-02-29 06:51 19,000 ----a-w C:\Windows\System32\kd1394.dll
2008-02-29 06:39 40,960 ----a-w C:\Windows\System32\srclient.dll
2008-02-29 06:39 371,712 ----a-w C:\Windows\System32\srcore.dll
2008-02-29 06:38 313,856 ----a-w C:\Windows\System32\rstrui.exe
2008-02-29 06:38 16,384 ----a-w C:\Windows\System32\srdelayed.exe
2008-02-29 06:35 6,656 ----a-w C:\Windows\System32\kbd106n.dll
2008-02-29 06:34 7,168 ----a-w C:\Windows\System32\f3ahvoas.dll
2008-02-29 04:16 2,027,008 ----a-w C:\Windows\System32\win32k.sys
2008-02-26 03:10 372,736 ----a-w C:\Windows\System32\ATIDEMGX.dll
2008-02-26 03:10 159,744 ----a-w C:\Windows\System32\atitmmxx.dll
2008-02-26 03:09 43,520 ----a-w C:\Windows\System32\ati2edxx.dll
2008-02-26 03:09 315,392 ----a-w C:\Windows\System32\atipdlxx.dll
2008-02-26 03:09 253,952 ----a-w C:\Windows\System32\Ati2evxx.dll
2008-02-26 03:09 245,760 ----a-w C:\Windows\System32\Oemdspif.dll
2008-02-26 03:08 655,360 ----a-w C:\Windows\System32\Ati2evxx.exe
2008-02-26 03:00 1,499,136 ----a-w C:\Windows\System32\atidxx32.dll
2008-02-26 02:55 3,074,048 ----a-w C:\Windows\System32\atiumdag.dll
2008-02-26 02:47 9,662,464 ----a-w C:\Windows\System32\atioglxx.dll
2008-02-26 02:40 4,084,736 ----a-w C:\Windows\System32\atiumdva.dll
2008-02-26 02:29 47,104 ----a-w C:\Windows\System32\amdpcom32.dll
2008-02-21 04:43 826,368 ----a-w C:\Windows\System32\wininet.dll
2008-02-21 04:43 56,320 ----a-w C:\Windows\System32\iesetup.dll
2008-02-21 04:43 52,736 ----a-w C:\Windows\AppPatch\iebrshim.dll
2008-02-21 04:43 296,448 ----a-w C:\Windows\System32\gdi32.dll
2008-02-21 04:43 26,624 ----a-w C:\Windows\System32\ieUnatt.exe
2008-02-19 05:10 620,088 ----a-w C:\Windows\System32\ci.dll
2008-02-14 23:19 944,184 ----a-w C:\Windows\System32\winload.exe
2008-02-13 06:36 194,560 ----a-w C:\Windows\System32\WebClnt.dll
2008-02-13 06:34 3,504,696 ----a-w C:\Windows\System32\ntkrnlpa.exe
2008-02-13 06:34 3,470,392 ----a-w C:\Windows\System32\ntoskrnl.exe
2008-02-13 06:34 24,064 ----a-w C:\Windows\System32\netcfg.exe
2008-02-13 06:34 22,016 ----a-w C:\Windows\System32\netiougc.exe
2008-02-13 06:34 167,424 ----a-w C:\Windows\System32\tcpipcfg.dll
2008-02-13 06:33 537,600 ----a-w C:\Windows\AppPatch\AcLayers.dll
2008-02-13 06:33 449,536 ----a-w C:\Windows\AppPatch\AcSpecfc.dll
2008-02-13 06:33 4,247,552 ----a-w C:\Windows\System32\GameUXLegacyGDFs.dll
2008-02-13 06:33 2,560 ----a-w C:\Windows\AppPatch\AcRes.dll
2008-02-13 06:33 2,144,256 ----a-w C:\Windows\AppPatch\AcGenral.dll
2008-02-13 06:33 173,056 ----a-w C:\Windows\AppPatch\AcXtrnal.dll
2008-02-13 06:33 1,686,528 ----a-w C:\Windows\System32\gameux.dll
2008-02-13 06:32 1,244,672 ----a-w C:\Windows\System32\mcmde.dll
2007-09-15 02:11 174 --sha-w C:\Program Files\desktop.ini
2008-01-03 20:24 16,384 --sha-w C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
2008-01-03 20:24 32,768 --sha-w C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
2008-01-03 20:24 16,384 --sha-w C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
.
------- Sigcheck -------
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSConfig"="C:\Windows\System32\msconfig.exe" [2006-11-02 11:45 222208]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.YV12"= yv12vfw.dll
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
path=C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk
backup=C:\Windows\pss\Adobe Reader Speed Launch.lnk.CommonStartup
backupExtension=.CommonStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtiTrayTools]
--a------ 2007-05-22 11:04 521128 C:\Program Files\Ray Adams\ATI Tray Tools\atitray.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]
--a------ 2007-08-29 17:09 171464 C:\Program Files\DAEMON Tools\daemon.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray.exe]
--a------ 2006-11-02 14:34 125440 C:\Windows\ehome\ehTray.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
--a------ 2008-02-19 14:10 267048 C:\Program Files\iTunes\iTunesHelper.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut]
--a------ 2006-04-13 11:09 49152 C:\Program Files\CyberLink\PowerDVD\Language\Language.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NVIDIA nTune]
--a------ 2007-04-04 15:20 81920 C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
--a------ 2007-05-11 02:08 2512392 C:\Windows\system32\oodtray.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2008-02-01 00:13 385024 C:\Program Files\QuickTime\QTTask.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
--a------ 2005-12-07 22:57 30208 C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RivaTunerStartupDaemon]
--a------ 2008-03-02 19:20 24576 C:\Program Files\RivaTuner v2.07\RivaTunerWrapper.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
--a------ 2008-01-09 02:06 1232896 C:\Program Files\Windows Sidebar\sidebar.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
--a------ 2007-06-06 08:35 1261568 C:\Program Files\Analog Devices\Core\smax4pnp.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundTray]
--a------ 2007-05-21 15:53 49152 C:\Program Files\Analog Devices\SoundMAX\SoundTray.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminator]
--a------ 2008-05-10 16:57 1817600 C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
--a------ 2008-01-21 13:17 61440 C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
--a------ 2008-02-22 05:25 144784 C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
--a------ 2007-11-09 09:03 185632 C:\Program Files\Common Files\Real\Update_OB\realsched.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
--a------ 2005-05-08 10:03 675840 C:\Program Files\Winamp\winampa.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
--a------ 2007-09-15 04:04 1006264 C:\Program Files\Windows Defender\MSASCui.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]
--a------ 2006-11-02 14:33 201728 C:\Program Files\Windows Media Player\WMPNSCFG.exe
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-1770490974-3222413304-2682626772-1000]
"EnableNotificationsRef"=dword:00000005
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{FD67889C-2E3F-45CA-8330-04788942CE70}"= C:\Program Files\MSN Messenger\livecall.exe:Windows Live Messenger 8.1 (Phone)
"{AB417836-9E01-46B5-86C5-D1364874A2B9}"= UDP:C:\Windows\System32\PnkBstrA.exe:PnkBstrA
"{93C6E83F-1D31-4643-9753-E812FB8F4D82}"= TCP:C:\Windows\System32\PnkBstrA.exe:PnkBstrA
"{D9DB706B-7F10-4569-B6A9-62CE9594064E}"= UDP:C:\Windows\System32\PnkBstrB.exe:PnkBstrB
"{19A31D11-72E1-4C55-A707-46556D304A2B}"= TCP:C:\Windows\System32\PnkBstrB.exe:PnkBstrB
"TCP Query User{C9B0E386-1E6B-4C3F-97F1-0DCFC535DA08}C:\\program files\\bitcomet\\bitcomet.exe"= UDP:C:\program files\bitcomet\bitcomet.exe:BitComet - a BitTorrent Client
"UDP Query User{BEC02409-C05F-451E-B304-C87A259B646A}C:\\program files\\bitcomet\\bitcomet.exe"= TCP:C:\program files\bitcomet\bitcomet.exe:BitComet - a BitTorrent Client
"TCP Query User{169EDEC9-1076-41BB-9060-30CF1A829226}C:\\users\\kira\\documents\\jeux pc\\guilty gear xx reload\\ggxx.exe"= UDP:C:\users\kira\documents\jeux pc\guilty gear xx reload\ggxx.exe:ggxx.exe
"UDP Query User{026FD9B8-8542-4FDB-B6DD-E786B2AEB567}C:\\users\\kira\\documents\\jeux pc\\guilty gear xx reload\\ggxx.exe"= TCP:C:\users\kira\documents\jeux pc\guilty gear xx reload\ggxx.exe:ggxx.exe
"TCP Query User{10FE3CFA-4677-4B3C-B2BE-D43C4B8B9853}F:\\nico\\emule\\emule.exe"= UDP:F:\nico\emule\emule.exe:eMule
"UDP Query User{2CC4E624-373D-441F-B2FC-06BF32DAF78B}F:\\nico\\emule\\emule.exe"= TCP:F:\nico\emule\emule.exe:eMule
"TCP Query User{884288C0-6E67-4086-A8C5-D3DDACB42436}C:\\program files\\emule\\emule.exe"= UDP:C:\program files\emule\emule.exe:eMule
"UDP Query User{34111953-1CD2-47AA-9FCA-0587A9E3B4E1}C:\\program files\\emule\\emule.exe"= TCP:C:\program files\emule\emule.exe:eMule
"TCP Query User{E919DDDC-C9F3-48F2-8B2E-233DCCCB364E}C:\\program files\\codemasters\\dirt\\dirt.exe"= UDP:C:\program files\codemasters\dirt\dirt.exe:DiRT Executable
"UDP Query User{AE527F44-D77B-42E1-9795-93E4920DC7BC}C:\\program files\\codemasters\\dirt\\dirt.exe"= TCP:C:\program files\codemasters\dirt\dirt.exe:DiRT Executable
"TCP Query User{07FEFFBE-5E03-46F8-8332-5410FB6208D3}C:\\program files\\atari\\test drive unlimited\\testdriveunlimited.exe"= UDP:C:\program files\atari\test drive unlimited\testdriveunlimited.exe:Test Drive Unlimited
"UDP Query User{3CDD2955-C31C-4DC5-A437-D98ADA3DD647}C:\\program files\\atari\\test drive unlimited\\testdriveunlimited.exe"= TCP:C:\program files\atari\test drive unlimited\testdriveunlimited.exe:Test Drive Unlimited
"TCP Query User{536DC1CA-086A-4E13-9DCB-F2A92C4E56D0}C:\\program files\\k-lite codec pack\\media player classic\\mplayerc.exe"= UDP:C:\program files\k-lite codec pack\media player classic\mplayerc.exe:Media Player Classic
"UDP Query User{11061E32-88A3-451E-B380-79A5EB76D7C3}C:\\program files\\k-lite codec pack\\media player classic\\mplayerc.exe"= TCP:C:\program files\k-lite codec pack\media player classic\mplayerc.exe:Media Player Classic
"TCP Query User{566CBDB7-6BCF-4671-A1FF-7FD83DE1D40E}C:\\program files\\atari\\boiling point\\xenus.exe"= UDP:C:\program files\atari\boiling point\xenus.exe:Xenus
"UDP Query User{579D12A7-7FFD-465D-A859-321F1163B359}C:\\program files\\atari\\boiling point\\xenus.exe"= TCP:C:\program files\atari\boiling point\xenus.exe:Xenus
"TCP Query User{5BF379DD-145A-4810-8363-A032009A4601}C:\\program files\\ubisoft\\tom clancy's splinter cell double agent\\scda-offline\\system\\splintercell4.exe"= UDP:C:\program files\ubisoft\tom clancy's splinter cell double agent\scda-offline\system\splintercell4.exe:SplinterCell4
"UDP Query User{0E4C4CE9-2D9B-4023-9C21-6A89D5534B81}C:\\program files\\ubisoft\\tom clancy's splinter cell double agent\\scda-offline\\system\\splintercell4.exe"= TCP:C:\program files\ubisoft\tom clancy's splinter cell double agent\scda-offline\system\splintercell4.exe:SplinterCell4
"TCP Query User{A6639D93-FBF3-4F2E-8296-A822CF47CCF6}C:\\program files\\midway home entertainment\\stranglehold demo\\binaries\\retail-stranglehold.exe"= UDP:C:\program files\midway home entertainment\stranglehold demo\binaries\retail-stranglehold.exe:Stranglehold
"UDP Query User{5BFF7B21-D78A-4523-AA98-09EC8AB3B219}C:\\program files\\midway home entertainment\\stranglehold demo\\binaries\\retail-stranglehold.exe"= TCP:C:\program files\midway home entertainment\stranglehold demo\binaries\retail-stranglehold.exe:Stranglehold
"{5F26ED53-7DD1-4C60-97B9-7B3E96C7F094}"= UDP:C:\Program Files\Sega\SEGA Rally\SEGA Rally.exe:SEGA Rally
"{486386FB-D031-41C4-A73F-8CD423EB46AC}"= TCP:C:\Program Files\Sega\SEGA Rally\SEGA Rally.exe:SEGA Rally
"{2AE563D0-BDEB-452B-976E-6288E7EC677C}"= UDP:C:\Program Files\Sega\SEGA Rally\SEGA Rally_SSE1.exe:SEGA Rally
"{6C40F592-0CC8-449A-BBEB-1E66BA67F670}"= TCP:C:\Program Files\Sega\SEGA Rally\SEGA Rally_SSE1.exe:SEGA Rally
"{E4686658-691C-4268-B18D-5547F6E5C0C2}"= UDP:C:\Program Files\MSN Messenger\msnmsgr.exe:MSN Messenger 7.5
"{E858877D-C11F-4669-A7A1-9EFDEB32EA32}"= TCP:C:\Program Files\MSN Messenger\msnmsgr.exe:MSN Messenger 7.5
"{E7C3F9CB-C5FE-46CB-85F9-8AFCC4352A3E}"= UDP:C:\Program Files\MSN Messenger\msnmsgr.exe:MSN Messenger 7.5
"{B1840B1B-1970-4A46-BAB2-FED96D64C0BA}"= TCP:C:\Program Files\MSN Messenger\msnmsgr.exe:MSN Messenger 7.5
"{3BA5C38D-207C-47A8-9C94-077DE42B8403}"= UDP:C:\Program Files\Midway Home Entertainment\Stranglehold\Binaries\Retail-Stranglehold.exe:Stranglehold
"{A6909079-7A65-4ED7-8C96-FAD762F1482F}"= TCP:C:\Program Files\Midway Home Entertainment\Stranglehold\Binaries\Retail-Stranglehold.exe:Stranglehold
"TCP Query User{E27DFB3F-916B-4544-895D-B356F3C9962E}C:\\bmw m3 challenge\\bmw.exe"= UDP:C:\bmw m3 challenge\bmw.exe:BMW M3 Challenge
"UDP Query User{35E979CB-B73A-4448-ADFF-5FB01BE339D2}C:\\bmw m3 challenge\\bmw.exe"= TCP:C:\bmw m3 challenge\bmw.exe:BMW M3 Challenge
"TCP Query User{1EF4DCCD-45FE-4FC3-9E9E-D28BF5ADC964}C:\\program files\\real\\realplayer\\realplay.exe"= UDP:C:\program files\real\realplayer\realplay.exe:RealPlayer
"UDP Query User{C3B8E030-DAE5-42CB-ACE7-12EBE8F40C43}C:\\program files\\real\\realplayer\\realplay.exe"= TCP:C:\program files\real\realplayer\realplay.exe:RealPlayer
"TCP Query User{F48BA445-E0B8-44BE-B30B-6655A9F69D6C}C:\\program files\\konami\\pro evolution soccer 2008\\pes2008.exe"= UDP:C:\program files\konami\pro evolution soccer 2008\pes2008.exe:Pro Evolution Soccer 2008
"UDP Query User{53DB8752-8544-4E4A-BC27-7E08D5B47CD2}C:\\program files\\konami\\pro evolution soccer 2008\\pes2008.exe"= TCP:C:\program files\konami\pro evolution soccer 2008\pes2008.exe:Pro Evolution Soccer 2008
"TCP Query User{31EE4251-3B24-457D-8DD1-72A8EAE59C3E}C:\\program files\\sega\\outrun2006 coast 2 coast\\or2006c2c.exe"= UDP:C:\program files\sega\outrun2006 coast 2 coast\or2006c2c.exe:OR2006C2C
"UDP Query User{FF16673B-C0CE-4901-BCCA-91A29DC5D140}C:\\program files\\sega\\outrun2006 coast 2 coast\\or2006c2c.exe"= TCP:C:\program files\sega\outrun2006 coast 2 coast\or2006c2c.exe:OR2006C2C
"TCP Query User{CC272861-6BB8-4A66-9179-4567626EC7D2}C:\\program files\\utorrent\\utorrent.exe"= UDP:C:\program files\utorrent\utorrent.exe:uTorrent
"UDP Query User{6ED8ED50-651D-4C59-851D-4CB5BD1B457E}C:\\program files\\utorrent\\utorrent.exe"= TCP:C:\program files\utorrent\utorrent.exe:uTorrent
"TCP Query User{4D11E449-2E44-44C5-A2CD-C2C2049D1704}C:\\program files\\rockstar games\\gta2\\gta2.exe"= UDP:C:\program files\rockstar games\gta2\gta2.exe:GTA2 main executable
"UDP Query User{81FEC985-60C5-4DA2-8EC0-5322F240B836}C:\\program files\\rockstar games\\gta2\\gta2.exe"= TCP:C:\program files\rockstar games\gta2\gta2.exe:GTA2 main executable
"TCP Query User{F74F8D77-A17B-4932-BE3D-57FA9F514BA2}C:\\windows\\system32\\dplaysvr.exe"= UDP:C:\windows\system32\dplaysvr.exe:Microsoft DirectPlay Helper
"UDP Query User{7CBE04F5-E302-4F1C-ADEF-4BF0F575BF55}C:\\windows\\system32\\dplaysvr.exe"= TCP:C:\windows\system32\dplaysvr.exe:Microsoft DirectPlay Helper
"TCP Query User{43067B24-C242-416A-A902-89507FA9EE52}C:\\users\\kira\\documents\\el2walker\\l2w_all.exe"= UDP:C:\users\kira\documents\el2walker\l2w_all.exe:l2w_all.exe
"UDP Query User{D370E3FA-59FF-402D-A32B-DE1E92296171}C:\\users\\kira\\documents\\el2walker\\l2w_all.exe"= TCP:C:\users\kira\documents\el2walker\l2w_all.exe:l2w_all.exe
"{AB2309F2-CB95-4A07-9CC1-6304036BAC69}"= UDP:C:\Program Files\Electronic Arts\Crytek\Crysis\Bin32\Crysis.exe:Crysis_32
"{CEEC5F0C-301B-4E74-B1E0-6076C0DD97CC}"= TCP:C:\Program Files\Electronic Arts\Crytek\Crysis\Bin32\Crysis.exe:Crysis_32
"{B31E99EC-CAE3-4CDD-BB64-E920AF342922}"= UDP:C:\Program Files\Electronic Arts\Crytek\Crysis\Bin32\CrysisDedicatedServer.exe:CrysisDedicatedServer_32
"{BCEB793F-3D0E-4429-BFD7-420212E6880F}"= TCP:C:\Program Files\Electronic Arts\Crytek\Crysis\Bin32\CrysisDedicatedServer.exe:CrysisDedicatedServer_32
"{F3E5DD32-16D7-4363-84C3-0D9E95014F77}"= UDP:C:\Program Files\THQ\Gas Powered Games\GPGNet\GPG.Multiplayer.Client.exe:GPGNet - Supreme Commander - Forged Alliance
"{14B601CA-B7A9-4FF3-9E8C-01C6A24A5821}"= TCP:C:\Program Files\THQ\Gas Powered Games\GPGNet\GPG.Multiplayer.Client.exe:GPGNet - Supreme Commander - Forged Alliance
"{EBA1BBCC-EAAF-458D-A0ED-E12EA96EF481}"= UDP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2main.exe:Neverwinter Nights 2 Main
"{DCBA0595-B156-49A4-B845-0CFD9587CDFC}"= TCP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2main.exe:Neverwinter Nights 2 Main
"{3DBDFA62-92DF-4C26-9231-0451C3EFDAAA}"= UDP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2main_amdxp.exe:Neverwinter Nights 2 AMD
"{3FAAC30A-1620-4148-8F61-85F9C2D6E2A0}"= TCP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2main_amdxp.exe:Neverwinter Nights 2 AMD
"{C9CEF2FD-79F5-476E-88DA-365785C3E2D1}"= UDP:C:\Program Files\Atari\Neverwinter Nights 2\nwupdate.exe:Neverwinter Nights 2 Updater
"{C9CF85E4-128A-4BB8-9ABE-30922A748C20}"= TCP:C:\Program Files\Atari\Neverwinter Nights 2\nwupdate.exe:Neverwinter Nights 2 Updater
"{433E154D-DCB6-44CE-A6FC-039B3ECB75C2}"= UDP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2server.exe:Neverwinter Nights 2 Server
"{97D4F8BA-7FC4-4CCD-80FD-56E65EDB01C3}"= TCP:C:\Program Files\Atari\Neverwinter Nights 2\nwn2server.exe:Neverwinter Nights 2 Server
"TCP Query User{0C69F764-0B47-4E7F-82DF-118EAA54070D}C:\\program files\\midway home entertainment\\stranglehold\\binaries\\retail-stranglehold.exe"= UDP:C:\program files\midway home entertainment\stranglehold\binaries\retail-stranglehold.exe:Stranglehold
"UDP Query User{9759CFC3-32F1-4BC9-A0E9-B3F1967A90EC}C:\\program files\\midway home entertainment\\stranglehold\\binaries\\retail-stranglehold.exe"= TCP:C:\program files\midway home entertainment\stranglehold\binaries\retail-stranglehold.exe:Stranglehold
"TCP Query User{53417500-31FC-4839-880B-5BE9716E3857}C:\\program files\\codemasters\\dirt\\dirt.exe"= UDP:C:\program files\codemasters\dirt\dirt.exe:DiRT Executable
"UDP Query User{44B478FD-9508-4AFA-9701-B0EE84E1796C}C:\\program files\\codemasters\\dirt\\dirt.exe"= TCP:C:\program files\codemasters\dirt\dirt.exe:DiRT Executable
"TCP Query User{9ED7E1FB-F5CE-49F2-B864-C3B98D359E3E}C:\\program files\\gamespy arcade\\aphex.exe"= UDP:C:\program files\gamespy arcade\aphex.exe:GameSpy Arcade 1.0, Public Beta 4
"UDP Query User{9A341C87-C0C8-4D07-8780-8EBE607B0E0E}C:\\program files\\gamespy arcade\\aphex.exe"= TCP:C:\program files\gamespy arcade\aphex.exe:GameSpy Arcade 1.0, Public Beta 4
"TCP Query User{328908B2-7C48-4D6D-9098-E8912032C9D1}C:\\program files\\anno 1701\\anno1701.exe"= UDP:C:\program files\anno 1701\anno1701.exe:Anno 1701
"UDP Query User{2D515BC6-3B7C-4E0B-9E03-1F2FE0A65456}C:\\program files\\anno 1701\\anno1701.exe"= TCP:C:\program files\anno 1701\anno1701.exe:Anno 1701
"{0984231D-48F4-4878-9AB1-5318467BD3BE}"= UDP:C:\Program Files\iTunes\iTunes.exe:iTunes
"{77F1F5C4-3674-4B29-8D93-C371396B2614}"= TCP:C:\Program Files\iTunes\iTunes.exe:iTunes
"{7A1276F4-6349-40B8-83C1-91CAB92BF09C}"= C:\Program Files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone)
"TCP Query User{99CB6DC2-3ADD-466E-A1D7-B29E48C5736D}C:\\program files\\unreal tournament 3\\binaries\\ut3.exe"= UDP:C:\program files\unreal tournament 3\binaries\ut3.exe:UT3
"UDP Query User{DB6EB52E-35FE-44A8-B932-F8BFA0120B89}C:\\program files\\unreal tournament 3\\binaries\\ut3.exe"= TCP:C:\program files\unreal tournament 3\binaries\ut3.exe:UT3
"TCP Query User{0AE95D1D-2FB2-487E-AB21-BF8D82C24973}C:\\program files\\steam\\steamapps\\kiradu72\\half-life 2 deathmatch\\hl2.exe"= UDP:C:\program files\steam\steamapps\kiradu72\half-life 2 deathmatch\hl2.exe:hl2
"UDP Query User{DA267FF0-9C10-4E0E-837B-51C6673C436A}C:\\program files\\steam\\steamapps\\kiradu72\\half-life 2 deathmatch\\hl2.exe"= TCP:C:\program files\steam\steamapps\kiradu72\half-life 2 deathmatch\hl2.exe:hl2
"{53AC3C3D-8F14-4FFB-85E0-A8DAF577C957}"= TCP:6004|C:\Program Files\Microsoft Office\Office12\outlook.exe:Microsoft Office Outlook
"TCP Query User{FE40AE8B-37AA-4440-B40C-E16F95C1A65A}C:\\program files\\tmnationsforever\\tmforever.exe"= UDP:C:\program files\tmnationsforever\tmforever.exe:TmForever
"UDP Query User{A387CB31-6D4C-4E27-B6AC-4AA7148DA6DA}C:\\program files\\tmnationsforever\\tmforever.exe"= TCP:C:\program files\tmnationsforever\tmforever.exe:TmForever
"{A59F8EFC-7B26-4C82-A4AB-682E70EA4920}"= UDP:C:\Program Files\Ubisoft\Tom Clancy's Rainbow Six Vegas 2\Binaries\R6Vegas2_Game.exe:Tom Clancy's Rainbow Six Vegas 2
"{58867742-5F86-44F9-85F1-E7323D4FA0F6}"= TCP:C:\Program Files\Ubisoft\Tom Clancy's Rainbow Six Vegas 2\Binaries\R6Vegas2_Game.exe:Tom Clancy's Rainbow Six Vegas 2
"{E2B49174-8BC3-40B7-92B4-EFAF9CD39C7C}"= UDP:C:\Program Files\Ubisoft\Tom Clancy's Rainbow Six Vegas 2\Binaries\R6Vegas2_Launcher.exe:Tom Clancy's Rainbow Six Vegas 2 Update
"{026C6BC4-1E69-4A67-8AA9-B62DF85F498E}"= TCP:C:\Program Files\Ubisoft\Tom Clancy's Rainbow Six Vegas 2\Binaries\R6Vegas2_Launcher.exe:Tom Clancy's Rainbow Six Vegas 2 Update
"{AB96EDB1-86CA-4202-B3B6-42EBCAA59D63}"= UDP:C:\Program Files\Ubisoft\Assassin's Creed\AssassinsCreed_Dx9.exe:Assassin's Creed Dx9
"{2A0E08EF-7BDA-447A-8F48-3D2B578E6086}"= TCP:C:\Program Files\Ubisoft\Assassin's Creed\AssassinsCreed_Dx9.exe:Assassin's Creed Dx9
"{3B3DB97E-4A2E-425E-A5E5-1E0C590E2FB2}"= UDP:C:\Program Files\Ubisoft\Assassin's Creed\AssassinsCreed_Dx10.exe:Assassin's Creed Dx10
"{8EEC3C82-166D-4769-BAF3-13392D3C3380}"= TCP:C:\Program Files\Ubisoft\Assassin's Creed\AssassinsCreed_Dx10.exe:Assassin's Creed Dx10
"{33ABE204-437F-49D6-92F5-56A9381B3B03}"= UDP:C:\Program Files\Ubisoft\Assassin's Creed\AssassinsCreed_Launcher.exe:Assassin's Creed Update
"{86DC82F0-828F-4B3C-B6F6-81EE96792F30}"= TCP:C:\Program Files\Ubisoft\Assassin's Creed\AssassinsCreed_Launcher.exe:Assassin's Creed Update
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\RestrictedServices\Static\System]
"DFSR-1"= RPort=5722|UDP:%SystemRoot%\system32\svchost.exe|Svc=DFSR:Allow inbound TCP traffic|
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\D]
\shell\AutoRun\command - D:\.\Bin\ASSETUP.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\E]
\shell\AutoRun\command - E:\Run.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2f250b52-62d0-11dc-81b9-806e6f6e6963}]
\shell\AutoRun\command - D:\Autorun.exe
*Newly Created Service* - CATCHME
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{7070D8E0-650A-46b3-B03C-9497582E6A74}]
%SystemRoot%\system32\soundschemes.exe /AddRegistration
.
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-05-10 20:41:14
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2008-05-10 20:42:43
ComboFix-quarantined-files.txt 2008-05-10 18:42:15
Pre-Run: 65,766,424,576 octets libres
Post-Run: 65,653,252,096 octets libres
318 --- E O F --- 2008-05-08 08:47:44
|
|
team sécurité
|
|
|
Scan en ligne avec Kaspersky :[list]
Ouvre internet explorer Outils Options internet onglet "sécurité" Valide "niveau par défaut".
Toujours sur Internet explorer Outils Options internet onglet "avancé" valide "Paramètres par défaut".
Pour effectuer les scans, ferme toute les pages internet sauf celle du scan, désactive ton antivirus, logiciels de protections et logiciels pouvant bloquer les popups (barres Google, barres Yahoo etc..).
Fais un Scan en ligne sur Kaspersky en utilisant Internet Explorer et pas firefox, ça ne marchera pas!.pour le scan Clique sur  en bas à droite de la page.
Si tu es perdu, tu peux suivre cette aide pour les scans en ligne
Scan le poste de travail
Copie/colle le rapport du scan ici
Note : Si tu reçois le message "La licence de Kaspersky On-line Scanner est périmée", vas dans Ajout/Suppression de programmes et désinstalle On-Line Scanner, reconnecte toi sur le site de Kaspersky pour retenter le scan en ligne.
|
|
|
1
|
|
|
|
