virus étrange

virus étrange - Sécurité - Virus

Recherche Recherche
Règles Règles
Aide Aide

TomsGuide.com : 700 000 inscrits répondent à toutes vos questions high-tech et informatique.
Pour obtenir de l'aide, inscrivez-vous gratuitement !

Se connecter | Inscription

Voir les posts : Par défaut Tous Les bonnes notes Les notes insuffisantes

Mot : Pseudo : Filtrer
Bas de page
Auteur	Sujet : virus étrange

gratt_atitude

Profil : IDNaute

Plus d'informations

03-06-2008 à 16:55:09

Bonsoir , hier une amie m' a envoyé un lien youtube ou il fallait télécharger quelque chose étant donné que c' était une amie je n' ai pas fait le rapprochement avec un virus maintenant le lien s' envoie automatiquement à mes contacts j' ai fait une analyse avec mon antivirus ( antivir ) qui n' a bien entendu rien détecté puis une analyse Malwarebytes qui un coup détecte un trojan.agent ensuite quelque chose du nom de worm-netsky étant pas un génie de l' informatique j' aimerai si possible que quelqu' un me vienne en aide

( je précise qu' il y a peut être deux mois de cela j'ai était infecté par le virus bagle )

serait il possible que bagle soit encore dans le pc malgré l' aide que j' ai recu d' une personne de ce forum ?

en tout cas merci à tous ceux qui voudront bien me venir en aide

Liens sponsorisés

Inscrivez-vous ou connectez-vous pour masquer ceci.

thib5151

Profil : IDNaute

Plus d'informations

03-06-2008 à 17:49:18

Masquer

J'ai eu le même problème hier, j'ai avast qui me repère le virus (a.bat quelquechose...) mais ne peut rien faire...

En espérant que vous ayez une réponse...

Sham_Rock

<@_@>
Profil : Helper

Plus d'informations

03-06-2008 à 17:51:43

Masquer

bonjour

@ gratt_atitude

Télécharge puis installe Hijackthis (Trend Micro)
Poste ensuite un rapport dans ta prochaine réponse.
AIDE : Comment utiliser Hijackthis v2.0.2

@ thib5151
merci de créer ton sujet

---------------
Prévention et protection
/!\Marre de la pub: Firefox sécurisé/!\

gratt_atitude

Profil : IDNaute

Plus d'informations

03-06-2008 à 21:20:17

Masquer

Voila le rapport Hijackthis :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:18:56, on 2008-06-03
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\websvcd.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\VM_STI.EXE
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\sysregi.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\UltimateZip\uzqkst.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
C:\WINDOWS\System32\TuneUpDefragService.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {4596013b-6c31-408b-a266-deae5c086dc2} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O3 - Toolbar: (no name) - {4596013b-6c31-408b-a266-deae5c086dc2} - (no file)
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe irprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [BigDogPath] C:\WINDOWS\VM_STI.EXE VIMICRO USB PC Camera
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [Nod32 Runtime] sysregi.exe
O4 - HKLM\..\RunServices: [Nod32 Runtime] sysregi.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\NPSWF32_FlashUtil.exe -p
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: UltimateZip Quick Start.lnk = C:\Program Files\UltimateZip\uzqkst.exe
O4 - Global Startup: hp psc 1000 series.lnk = ?
O4 - Global Startup: hpoddt01.exe.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: PacificPoker4 - {94EDF7B4-4272-4af3-8F8B-4E2F68E225B7} - C:\PROGRA~1\PACIFI~1\pacificpoker.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/mi [...] 3036466343
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - http://fichiers.touslesdrivers.com [...] 0_4_12.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{2444DE47-1ABA-4E9D-90BE-44DA676FDD39}: NameServer = 84.103.237.143 86.64.145.143
O17 - HKLM\System\CS1\Services\Tcpip\..\{2444DE47-1ABA-4E9D-90BE-44DA676FDD39}: NameServer = 84.103.237.143 86.64.145.143
O20 - Winlogon Notify: tuvUMgfD - tuvUMgfD.dll (file missing)
O23 - Service: Avira AntiVir Personal – Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal – Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe

--
End of file - 6996 bytes

Sham_Rock

<@_@>
Profil : Helper

Plus d'informations

03-06-2008 à 21:58:14

Masquer

re
je supprime ton jeu de poker, regarde ce lien:
http://spywarefiles.prevx.com/RRAF [...] R.EXE.html

~Télécharge OTMoveIt (d'OldTimer). Sauvegarde-le sur ton Bureau.

~Lance Hijackthis “Do a system scan only”.
Coche les lignes qui suivent si encore présentes et uniquement celles-là.

O3 - Toolbar: (no name) - {4596013b-6c31-408b-a266-deae5c086dc2} - (no file)
O4 - HKLM\..\Run: [Nod32 Runtime] sysregi.exe
O4 - HKLM\..\RunServices: [Nod32 Runtime] sysregi.exe
O9 - Extra button: PacificPoker4 - {94EDF7B4-4272-4af3-8F8B-4E2F68E225B7} - C:\PROGRA~1\PACIFI~1\pacificpoker.exe
O20 - Winlogon Notify: tuvUMgfD - tuvUMgfD.dll (file missing)

Clique sur Fix checked (en bas à gauche)

Sélectionne TOUS les emplacements en gras ci-dessous :

C:\WINDOWS\system32\websvcd.exe
C:\WINDOWS\system32\sysregi.exe
C:\Program Files\PACIFI~1

---> Clique-droit puis Copier (ou Ctrl+C)

Double-clique sur OTMoveIt.exe afin de le lancer.
Fais un Clique-droit sur le cadre de gauche puis choisis Coller (ou Ctrl+V).
Clique maintenant sur MoveIt!

Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.

Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log

---------------
Prévention et protection
/!\Marre de la pub: Firefox sécurisé/!\

gratt_atitude

Profil : IDNaute

Plus d'informations

04-06-2008 à 20:43:13

Masquer

Bonsoir alors voila j' ai fait tous ce que vous m' avez demandé de faire et voici le rapport OTMoveIt :

File/Folder not found.
C:\WINDOWS\system32\websvcd.exe moved successfully.
C:\WINDOWS\system32\sysregi.exe moved successfully.
C:\Program Files\PACIFI~1\Utils moved successfully.
C:\Program Files\PACIFI~1\Update moved successfully.
C:\Program Files\PACIFI~1\Settings\Media moved successfully.
C:\Program Files\PACIFI~1\Settings moved successfully.
C:\Program Files\PACIFI~1\PokerLobby\Media moved successfully.
C:\Program Files\PACIFI~1\PokerLobby moved successfully.
C:\Program Files\PACIFI~1\Pokerex\media moved successfully.
C:\Program Files\PACIFI~1\Pokerex moved successfully.
C:\Program Files\PACIFI~1\Poker\OldMedia moved successfully.
C:\Program Files\PACIFI~1\Poker\media moved successfully.
C:\Program Files\PACIFI~1\Poker moved successfully.
C:\Program Files\PACIFI~1\NoFlash moved successfully.
C:\Program Files\PACIFI~1\media moved successfully.
C:\Program Files\PACIFI~1\Login\media moved successfully.
C:\Program Files\PACIFI~1\Login moved successfully.
C:\Program Files\PACIFI~1\Localization moved successfully.
C:\Program Files\PACIFI~1\Icons moved successfully.
C:\Program Files\PACIFI~1\Help_Support\media moved successfully.
C:\Program Files\PACIFI~1\Help_Support moved successfully.
C:\Program Files\PACIFI~1\GameHist\media moved successfully.
C:\Program Files\PACIFI~1\GameHist moved successfully.
C:\Program Files\PACIFI~1\Config moved successfully.
C:\Program Files\PACIFI~1\Chat moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VP\VPRoyalDiamondJP\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VP\VPRoyalDiamondJP moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VP\VPMachine2\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VP\VPMachine2 moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VP\VPMachine1\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VP\VPMachine1 moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VP\VPJokerWild\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VP\VPJokerWild moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VP\VPJackOrBetter\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VP\VPJackOrBetter moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VP\VPDeucesWild\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VP\VPDeucesWild moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VP\VPCommon\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VP\VPCommon\Arena moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VP\VPCommon moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VP\VPBonusPoker\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VP\VPBonusPoker moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VP\VPAcesAndFaces\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VP\VPAcesAndFaces moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VP moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\011VS\sounds moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\011VS\payTable moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\011VS\payLine moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\011VS\Icons moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\011VS\buttons moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\011VS\bg moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\011VS moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\010VS\sounds moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\010VS\payTable moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\010VS\payLine moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\010VS\Icons moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\010VS\Freespins moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\010VS\buttons moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\010VS\bg moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\010VS moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\009VS\sounds moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\009VS\payTable moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\009VS\payLine moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\009VS\Icons moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\009VS\buttons moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\009VS\bg moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\009VS moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\008VS\sounds moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\008VS\payTable moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\008VS\payLine moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\008VS\Icons moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\008VS\Freespins moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\008VS\buttons moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\008VS\bg moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\008VS moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\007VS\sounds moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\007VS\payTable moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\007VS\payLine moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\007VS\Icons moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\007VS\Freespins moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\007VS\buttons moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\007VS\bg moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\007VS moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\006VS\sounds moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\006VS\payTable moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\006VS\payLine moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\006VS\Icons moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\006VS\Freespins moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\006VS\buttons moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\006VS\bg moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\006VS moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\005VS\sounds moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\005VS\payTable moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\005VS\payLine moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\005VS\Icons moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\005VS\Freespins moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\005VS\buttons moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\005VS\bg moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\005VS moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\004VS\sounds moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\004VS\payTable moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\004VS\payLine moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\004VS\Icons moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\004VS\buttons moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\004VS\bg moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\004VS moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\003VS\sounds moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\003VS\payTable moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\003VS\payLine moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\003VS\Icons moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\003VS\Freespins moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\003VS\buttons moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\003VS\bg moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\003VS moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\002VS\sounds moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\002VS\payTable moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\002VS\payLine moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\002VS\Icons moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\002VS\buttons moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\002VS\bg\X_OF_Many moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\002VS\bg\TakeOrDrop\sounds moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\002VS\bg\TakeOrDrop\Screen4 moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\002VS\bg\TakeOrDrop\Screen3 moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\002VS\bg\TakeOrDrop\Screen2 moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\002VS\bg\TakeOrDrop\Screen1 moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\002VS\bg\TakeOrDrop moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\002VS\bg moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\002VS moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\001VS\sounds moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\001VS\payTable moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\001VS\payLine moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\001VS\Icons moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\001VS\Freespins moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\001VS\buttons moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\001VS\bg moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot\001VS moved successfully.
C:\Program Files\PACIFI~1\casinopoker\VideoSlot moved successfully.
C:\Program Files\PACIFI~1\casinopoker\Utils moved successfully.
C:\Program Files\PACIFI~1\casinopoker\Update moved successfully.
C:\Program Files\PACIFI~1\casinopoker\SlotsMedia\WildSpider moved successfully.
C:\Program Files\PACIFI~1\casinopoker\SlotsMedia\TreasureTwirl\Standing_spins moved successfully.
C:\Program Files\PACIFI~1\casinopoker\SlotsMedia\TreasureTwirl\Lying_spins moved successfully.
C:\Program Files\PACIFI~1\casinopoker\SlotsMedia\TreasureTwirl moved successfully.
C:\Program Files\PACIFI~1\casinopoker\SlotsMedia\Thundering888 moved successfully.
C:\Program Files\PACIFI~1\casinopoker\SlotsMedia\SuperThundering888 moved successfully.
C:\Program Files\PACIFI~1\casinopoker\SlotsMedia\standing slot moved successfully.
C:\Program Files\PACIFI~1\casinopoker\SlotsMedia\Slots_Arena moved successfully.
C:\Program Files\PACIFI~1\casinopoker\SlotsMedia\SlotsAhoy moved successfully.
C:\Program Files\PACIFI~1\casinopoker\SlotsMedia\Shared\results moved successfully.
C:\Program Files\PACIFI~1\casinopoker\SlotsMedia\Shared moved successfully.
C:\Program Files\PACIFI~1\casinopoker\SlotsMedia\PyramidsTreasure moved successfully.
C:\Program Files\PACIFI~1\casinopoker\SlotsMedia\Pachislo\results moved successfully.
C:\Program Files\PACIFI~1\casinopoker\SlotsMedia\Pachislo moved successfully.
C:\Program Files\PACIFI~1\casinopoker\SlotsMedia\OleGlory moved successfully.
C:\Program Files\PACIFI~1\casinopoker\SlotsMedia\MillionaireMaker moved successfully.
C:\Program Files\PACIFI~1\casinopoker\SlotsMedia\MegaGoldAndGreen moved successfully.
C:\Program Files\PACIFI~1\casinopoker\SlotsMedia\lying slot moved successfully.
C:\Program Files\PACIFI~1\casinopoker\SlotsMedia\Knockout moved successfully.
C:\Program Files\PACIFI~1\casinopoker\SlotsMedia\GoldAndGreen moved successfully.
C:\Program Files\PACIFI~1\casinopoker\SlotsMedia\5TimesWild moved successfully.
C:\Program Files\PACIFI~1\casinopoker\SlotsMedia\2TimesWild moved successfully.
C:\Program Files\PACIFI~1\casinopoker\SlotsMedia\2TimesExtraWild moved successfully.
C:\Program Files\PACIFI~1\casinopoker\SlotsMedia\10TimesWild moved successfully.
C:\Program Files\PACIFI~1\casinopoker\SlotsMedia moved successfully.
C:\Program Files\PACIFI~1\casinopoker\roulette\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\roulette moved successfully.
C:\Program Files\PACIFI~1\casinopoker\PVP\PVPRoyalDiamondJP\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\PVP\PVPRoyalDiamondJP moved successfully.
C:\Program Files\PACIFI~1\casinopoker\PVP\PVPMachine2\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\PVP\PVPMachine2 moved successfully.
C:\Program Files\PACIFI~1\casinopoker\PVP\PVPJokerWild\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\PVP\PVPJokerWild moved successfully.
C:\Program Files\PACIFI~1\casinopoker\PVP\PVPJackOrBetter\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\PVP\PVPJackOrBetter moved successfully.
C:\Program Files\PACIFI~1\casinopoker\PVP\PVPDeucesWild\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\PVP\PVPDeucesWild moved successfully.
C:\Program Files\PACIFI~1\casinopoker\PVP\PVPCommon\media\Sounds moved successfully.
C:\Program Files\PACIFI~1\casinopoker\PVP\PVPCommon\media\CounterStripes moved successfully.
C:\Program Files\PACIFI~1\casinopoker\PVP\PVPCommon\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\PVP\PVPCommon moved successfully.
C:\Program Files\PACIFI~1\casinopoker\PVP\PVPBonusPoker\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\PVP\PVPBonusPoker moved successfully.
C:\Program Files\PACIFI~1\casinopoker\PVP\PVPArena moved successfully.
C:\Program Files\PACIFI~1\casinopoker\PVP\PVPAcesAndFaces\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\PVP\PVPAcesAndFaces moved successfully.
C:\Program Files\PACIFI~1\casinopoker\PVP moved successfully.
C:\Program Files\PACIFI~1\casinopoker\PGP\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\PGP moved successfully.
C:\Program Files\PACIFI~1\casinopoker\media\Toolbar moved successfully.
C:\Program Files\PACIFI~1\casinopoker\media\SoundsEx moved successfully.
C:\Program Files\PACIFI~1\casinopoker\media\NoShock moved successfully.
C:\Program Files\PACIFI~1\casinopoker\media\Limit moved successfully.
C:\Program Files\PACIFI~1\casinopoker\media\GoTo moved successfully.
C:\Program Files\PACIFI~1\casinopoker\media\FieldBox moved successfully.
C:\Program Files\PACIFI~1\casinopoker\media\Caption moved successfully.
C:\Program Files\PACIFI~1\casinopoker\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\Login\media\ChatPage moved successfully.
C:\Program Files\PACIFI~1\casinopoker\Login\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\Login moved successfully.
C:\Program Files\PACIFI~1\casinopoker\keno\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\keno moved successfully.
C:\Program Files\PACIFI~1\casinopoker\GameHist\media\VS\011 moved successfully.
C:\Program Files\PACIFI~1\casinopoker\GameHist\media\VS\010 moved successfully.
C:\Program Files\PACIFI~1\casinopoker\GameHist\media\VS\009 moved successfully.
C:\Program Files\PACIFI~1\casinopoker\GameHist\media\VS\008 moved successfully.
C:\Program Files\PACIFI~1\casinopoker\GameHist\media\VS\007 moved successfully.
C:\Program Files\PACIFI~1\casinopoker\GameHist\media\VS moved successfully.
C:\Program Files\PACIFI~1\casinopoker\GameHist\media\PowerPokerRes moved successfully.
C:\Program Files\PACIFI~1\casinopoker\GameHist\media\depCash moved successfully.
C:\Program Files\PACIFI~1\casinopoker\GameHist\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\GameHist moved successfully.
C:\Program Files\PACIFI~1\casinopoker\Craps\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\Craps moved successfully.
C:\Program Files\PACIFI~1\casinopoker\Cash\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\Cash moved successfully.
C:\Program Files\PACIFI~1\casinopoker\CaribPoker\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\CaribPoker moved successfully.
C:\Program Files\PACIFI~1\casinopoker\Bj\media\Crazy moved successfully.
C:\Program Files\PACIFI~1\casinopoker\Bj\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\Bj moved successfully.
C:\Program Files\PACIFI~1\casinopoker\Baccarat\media moved successfully.
C:\Program Files\PACIFI~1\casinopoker\Baccarat moved successfully.
C:\Program Files\PACIFI~1\casinopoker\Arena\vs moved successfully.
C:\Program Files\PACIFI~1\casinopoker\Arena\vp moved successfully.
C:\Program Files\PACIFI~1\casinopoker\Arena\slot moved successfully.
C:\Program Files\PACIFI~1\casinopoker\Arena\poker moved successfully.
C:\Program Files\PACIFI~1\casinopoker\Arena\other moved successfully.
C:\Program Files\PACIFI~1\casinopoker\Arena\lobby moved successfully.
C:\Program Files\PACIFI~1\casinopoker\Arena\Favorite\FavPick moved successfully.
C:\Program Files\PACIFI~1\casinopoker\Arena\Favorite moved successfully.
C:\Program Files\PACIFI~1\casinopoker\Arena\bj moved successfully.
C:\Program Files\PACIFI~1\casinopoker\Arena\ArCommon moved successfully.
C:\Program Files\PACIFI~1\casinopoker\Arena moved successfully.
C:\Program Files\PACIFI~1\casinopoker moved successfully.
C:\Program Files\PACIFI~1\Cash\media moved successfully.
C:\Program Files\PACIFI~1\Cash moved successfully.
C:\Program Files\PACIFI~1 moved successfully.

OTMoveIt2 by OldTimer - Version 1.0.4.2 log created on 06042008_203907

Sham_Rock

<@_@>
Profil : Helper

Plus d'informations

04-06-2008 à 23:50:22

Masquer

re

~Fais une analyse antivirus en ligne sur le site de Kaspersky
http://webscanner.kaspersky.fr/

~ Clique sur Online Scanner.
~Accepte l'installation du contrôle ActiveX en cliquant sur le bouton Install.

~Sélectionne le poste de travail comme analyse.

~Enregistre le rapport en cliquant sur le bouton "Enregistrer rapport sous". Nomme-le, tu feras un copier/coller dans ta prochaine réponse.

Tuto du scan en ligne

---------------
Prévention et protection
/!\Marre de la pub: Firefox sécurisé/!\

gratt_atitude

Profil : IDNaute

Plus d'informations

05-06-2008 à 20:13:59

Masquer

Bonsoir Sham_Rock voila le rapport kapersky je pense que c' est mauvais :sarcastic:

-------------------------------------------------------------------------------
KASPERSKY ON-LINE SCANNER REPORT
Thursday, June 05, 2008 8:12:04 PM
Système d'exploitation : Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
Kaspersky On-line Scanner version : 5.0.83.0
Dernière mise à jour de la base antivirus Kaspersky : 5/06/2008
Enregistrements dans la base antivirus Kaspersky : 739067
-------------------------------------------------------------------------------

Paramètres d'analyse:
Analyser avec la base antivirus suivante: standard
Analyser les archives: vrai
Analyser les bases de messagerie: vrai

Cible de l'analyse - Poste de travail:
C:\
D:\
E:\
F:\

Statistiques de l'analyse:
Total d'objets analysés: 56696
Nombre de virus trouvés: 1
Nombre d'objets infectés: 10 / 0
Nombre d'objets suspects: 0
Durée de l'analyse: 02:13:23

Nom de l'objet infecté / Nom du virus / Dernière action
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat L'objet est verrouillé ignoré
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Cookies\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\orlando da silva\Application Data\Mozilla\Firefox\Profiles\qhnr5ffw.default\cert8.db L'objet est verrouillé ignoré
C:\Documents and Settings\orlando da silva\Application Data\Mozilla\Firefox\Profiles\qhnr5ffw.default\formhistory.dat L'objet est verrouillé ignoré
C:\Documents and Settings\orlando da silva\Application Data\Mozilla\Firefox\Profiles\qhnr5ffw.default\history.dat L'objet est verrouillé ignoré
C:\Documents and Settings\orlando da silva\Application Data\Mozilla\Firefox\Profiles\qhnr5ffw.default\key3.db L'objet est verrouillé ignoré
C:\Documents and Settings\orlando da silva\Application Data\Mozilla\Firefox\Profiles\qhnr5ffw.default\parent.lock L'objet est verrouillé ignoré
C:\Documents and Settings\orlando da silva\Application Data\Mozilla\Firefox\Profiles\qhnr5ffw.default\search.sqlite L'objet est verrouillé ignoré
C:\Documents and Settings\orlando da silva\Application Data\Mozilla\Firefox\Profiles\qhnr5ffw.default\urlclassifier2.sqlite L'objet est verrouillé ignoré
C:\Documents and Settings\orlando da silva\Bureau\MSNFix\2002-12-31_23021043.zip/backup/scvhost.exe Infecté : Trojan.Win32.VB.ddg ignoré
C:\Documents and Settings\orlando da silva\Bureau\MSNFix\2002-12-31_23021043.zip ZIP: infecté - 1 ignoré
C:\Documents and Settings\orlando da silva\Bureau\Upload_Me.zip/DOCUME~1/ORLAND~1/Bureau/Upload_Me/scvhost.exe Infecté : Trojan.Win32.VB.ddg ignoré
C:\Documents and Settings\orlando da silva\Bureau\Upload_Me.zip/DOCUME~1/ORLAND~1/Bureau/Upload_Me/Windows.exe Infecté : Trojan.Win32.VB.ddg ignoré
C:\Documents and Settings\orlando da silva\Bureau\Upload_Me.zip ZIP: infecté - 2 ignoré
C:\Documents and Settings\orlando da silva\Cookies\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\orlando da silva\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\orlando da silva\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\orlando da silva\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\orlando da silva\Local Settings\Application Data\Mozilla\Firefox\Profiles\qhnr5ffw.default\Cache\_CACHE_001_ L'objet est verrouillé ignoré
C:\Documents and Settings\orlando da silva\Local Settings\Application Data\Mozilla\Firefox\Profiles\qhnr5ffw.default\Cache\_CACHE_002_ L'objet est verrouillé ignoré
C:\Documents and Settings\orlando da silva\Local Settings\Application Data\Mozilla\Firefox\Profiles\qhnr5ffw.default\Cache\_CACHE_003_ L'objet est verrouillé ignoré
C:\Documents and Settings\orlando da silva\Local Settings\Application Data\Mozilla\Firefox\Profiles\qhnr5ffw.default\Cache\_CACHE_MAP_ L'objet est verrouillé ignoré
C:\Documents and Settings\orlando da silva\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\orlando da silva\Local Settings\Historique\History.IE5\MSHist012008060520080606\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\orlando da silva\Local Settings\Temp\fla281.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\orlando da silva\Local Settings\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat L'objet est verrouillé ignoré
C:\Documents and Settings\orlando da silva\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\orlando da silva\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\orlando da silva\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Program Files\eMule\Temp\007.part L'objet est verrouillé ignoré
C:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré
C:\System Volume Information\_restore{6789B9FA-1078-47EE-8AE8-5B6C1F4F1581}\RP1\A0000004.exe Infecté : Trojan.Win32.VB.ddg ignoré
C:\System Volume Information\_restore{6789B9FA-1078-47EE-8AE8-5B6C1F4F1581}\RP1\A0001015.exe Infecté : Trojan.Win32.VB.ddg ignoré
C:\System Volume Information\_restore{6789B9FA-1078-47EE-8AE8-5B6C1F4F1581}\RP3\change.log L'objet est verrouillé ignoré
C:\WINDOWS\Debug\PASSWD.LOG L'objet est verrouillé ignoré
C:\WINDOWS\SchedLgU.Txt L'objet est verrouillé ignoré
C:\WINDOWS\scvhost.MSNFix Infecté : Trojan.Win32.VB.ddg ignoré
C:\WINDOWS\sshost.exe Infecté : Trojan.Win32.VB.ddg ignoré
C:\WINDOWS\Sti_Trace.log L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\AppEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\default L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\default.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\Internet.evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SAM L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SAM.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SecEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SECURITY L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SECURITY.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\software L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\software.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SysEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\system L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\system.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\h323log.txt L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP L'objet est verrouillé ignoré
C:\WINDOWS\wiadebug.log L'objet est verrouillé ignoré
C:\WINDOWS\wiaservc.log L'objet est verrouillé ignoré
C:\Windows.exe Infecté : Trojan.Win32.VB.ddg ignoré

Analyse terminée.

Sham_Rock

<@_@>
Profil : Helper

Plus d'informations

05-06-2008 à 21:23:28

Masquer

Messages similaires

Dans l'actualité

Atak : le virus intelligent ?

Le retour des virus antipiratage

Un virus Windows-Linux

200 000 virus aujourd'hui 400 000 en 2008

Les téléchargements

Ressources relatives

Albums

Les derniers dossiers

Logiciels gratuits : les meilleurs converters audios

Upgrader son portable en 9 leçons

Les logiciels indispensables après un formatage

Que choisir ? Home Cinema 5.1 ou projecteur de son ?