Pc infecté ANUMAN LIVE
Résolu/Fermé
libellulelibellule
Messages postés
8
Date d'inscription
mardi 12 janvier 2010
Statut
Membre
Dernière intervention
13 janvier 2010
-
12 janv. 2010 à 13:11
crapoulou Messages postés 28158 Date d'inscription mercredi 28 novembre 2007 Statut Modérateur, Contributeur sécurité Dernière intervention 16 avril 2024 - 15 janv. 2010 à 23:03
crapoulou Messages postés 28158 Date d'inscription mercredi 28 novembre 2007 Statut Modérateur, Contributeur sécurité Dernière intervention 16 avril 2024 - 15 janv. 2010 à 23:03
A voir également:
- Anumanlive
- Benchmark pc - Guide
- Reinitialiser pc - Guide
- Pc lent - Guide
- Whatsapp pc - Télécharger - Messagerie
- Double ecran pc - Guide
13 réponses
omen77fr
Messages postés
150
Date d'inscription
vendredi 14 décembre 2007
Statut
Membre
Dernière intervention
6 janvier 2012
17
12 janv. 2010 à 14:11
12 janv. 2010 à 14:11
Regarde dans le dossier C:\Users\stephanie\AppData\Roaming\Anuman Interactive\AnumanLive\ si tu as un fichier "uninstall.exe". Sinon, lance CCleaner, dans la partie "outils", programmes de désintallation, regarde si le soft y est. S'il n'y est pas c'est que ce logiciel est peut-être déjà désinstallé. Auquel cas, tu peux supprimer le raccourci de ton bureau.
libellulelibellule
Messages postés
8
Date d'inscription
mardi 12 janvier 2010
Statut
Membre
Dernière intervention
13 janvier 2010
1
12 janv. 2010 à 17:36
12 janv. 2010 à 17:36
je n'ai pas reussi a installer SYMANTEC cela pose probleme a priori car il me dit
Impossible de lancer l'analyse antivirus
Pour pouvoir lancer l'analyse antivirus, vous devez utiliser Microsoft Internet Explorer 5.0 ou une version supérieure avec ActiveX et les scripts activés.
je fais donc un scan avec AVIRA ANTIVIR
quen penses tu ?
je viens de regarder il a trouvé des trojan..
Impossible de lancer l'analyse antivirus
Pour pouvoir lancer l'analyse antivirus, vous devez utiliser Microsoft Internet Explorer 5.0 ou une version supérieure avec ActiveX et les scripts activés.
je fais donc un scan avec AVIRA ANTIVIR
quen penses tu ?
je viens de regarder il a trouvé des trojan..
omen77fr
Messages postés
150
Date d'inscription
vendredi 14 décembre 2007
Statut
Membre
Dernière intervention
6 janvier 2012
17
12 janv. 2010 à 13:16
12 janv. 2010 à 13:16
Salut,
Ce n'est pas un virus :
http://www.anuman.fr/anumanlive.html
C'est un truc que tu as téléchargé ou installé lors de l'achat de ton PC. C'est un site d'achats en ligne. Si tu veux t'en débarrasser, va dans le panneau de configuration, ajout/suppression de programmes. Désinstalle ce programme.
Ce n'est pas un virus :
http://www.anuman.fr/anumanlive.html
C'est un truc que tu as téléchargé ou installé lors de l'achat de ton PC. C'est un site d'achats en ligne. Si tu veux t'en débarrasser, va dans le panneau de configuration, ajout/suppression de programmes. Désinstalle ce programme.
libellulelibellule
Messages postés
8
Date d'inscription
mardi 12 janvier 2010
Statut
Membre
Dernière intervention
13 janvier 2010
1
12 janv. 2010 à 13:23
12 janv. 2010 à 13:23
1- oui je veux bien mais je ne le trouve pas
2- sinon comment je fais pour me débarasser de ce qui mapporte des virus ?
jai déjà installé TROJAN REMOVER et jai CCLEANER que jai dejà fait fonctionné
merci
2- sinon comment je fais pour me débarasser de ce qui mapporte des virus ?
jai déjà installé TROJAN REMOVER et jai CCLEANER que jai dejà fait fonctionné
merci
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
omen77fr
Messages postés
150
Date d'inscription
vendredi 14 décembre 2007
Statut
Membre
Dernière intervention
6 janvier 2012
17
12 janv. 2010 à 13:31
12 janv. 2010 à 13:31
Antivir t'indique que tu as des virus ? Si c'est le cas, je te conseille soit de faire un scan en ligne via un autre logiciel (c'est gratuit), comme par exemple symantec :
http://security.symantec.com/sscv6/default.asp?productid=symhome&langid=fr&venid=sym
Il y en a d'autres, mais je le trouve particulièrement efficace et relativement rapide comparé à d'autres.
Ensuite, si tu as des virus détectés, dis-moi leur nom.
http://security.symantec.com/sscv6/default.asp?productid=symhome&langid=fr&venid=sym
Il y en a d'autres, mais je le trouve particulièrement efficace et relativement rapide comparé à d'autres.
Ensuite, si tu as des virus détectés, dis-moi leur nom.
libellulelibellule
Messages postés
8
Date d'inscription
mardi 12 janvier 2010
Statut
Membre
Dernière intervention
13 janvier 2010
1
12 janv. 2010 à 13:38
12 janv. 2010 à 13:38
il est en train de charger symantec ...
en attendant comment je fais pour trouverANUMAN et le supprimer ? je ne le trouve aps dans le panneau de config il ne fait pas partie de la liste de logiciels..
merci
en attendant comment je fais pour trouverANUMAN et le supprimer ? je ne le trouve aps dans le panneau de config il ne fait pas partie de la liste de logiciels..
merci
libellulelibellule
Messages postés
8
Date d'inscription
mardi 12 janvier 2010
Statut
Membre
Dernière intervention
13 janvier 2010
1
12 janv. 2010 à 19:13
12 janv. 2010 à 19:13
voici le rapport de mon antivirus avira, il a detecté plusierus trojan :
quelquun peut il me dire ce que je dois faire maitnenant ? merci
j'ai également lancé a-squared, j'attends quil finisse..
Avira AntiVir Personal
Report file date: mardi 12 janvier 2010 17:35
Scanning for 1521437 virus strains and unwanted programs.
Licensed to: Avira AntiVir Personal - FREE Antivirus
Serial number: 0000149996-ADJIE-0000001
Platform: Windows Vista
Windows version: (Service Pack 2) [6.0.6002]
Boot mode: Normally booted
Username: SYSTEM
Computer name: PC-DE-VALERIE
Version information:
BUILD.DAT : 8.2.0.354 17048 Bytes 23/10/2009 13:15:00
AVSCAN.EXE : 8.1.4.10 315649 Bytes 27/11/2008 18:54:39
AVSCAN.DLL : 8.1.4.0 40705 Bytes 26/05/2008 07:56:40
LUKE.DLL : 8.1.4.5 164097 Bytes 12/06/2008 12:44:19
LUKERES.DLL : 8.1.4.0 12033 Bytes 26/05/2008 07:58:52
ANTIVIR0.VDF : 7.10.0.0 19875328 Bytes 06/11/2009 16:11:44
ANTIVIR1.VDF : 7.10.1.11 1395568 Bytes 19/11/2009 16:12:44
ANTIVIR2.VDF : 7.10.2.166 1959328 Bytes 11/01/2010 06:32:59
ANTIVIR3.VDF : 7.10.2.169 90112 Bytes 11/01/2010 06:33:01
Engineversion : 8.2.1.134
AEVDF.DLL : 8.1.1.2 106867 Bytes 20/09/2009 18:43:31
AESCRIPT.DLL : 8.1.3.7 594296 Bytes 05/01/2010 11:47:45
AESCN.DLL : 8.1.3.0 127348 Bytes 10/12/2009 19:31:47
AESBX.DLL : 8.1.1.1 246132 Bytes 24/11/2009 16:13:26
AERDL.DLL : 8.1.3.4 479605 Bytes 01/12/2009 19:24:42
AEPACK.DLL : 8.2.0.4 422263 Bytes 05/01/2010 11:47:43
AEOFFICE.DLL : 8.1.0.38 196987 Bytes 18/06/2009 10:44:18
AEHEUR.DLL : 8.1.0.194 2228599 Bytes 08/01/2010 19:31:42
AEHELP.DLL : 8.1.9.0 237943 Bytes 17/12/2009 06:51:25
AEGEN.DLL : 8.1.1.83 369014 Bytes 05/01/2010 11:47:34
AEEMU.DLL : 8.1.1.0 393587 Bytes 04/10/2009 14:26:06
AECORE.DLL : 8.1.9.1 180598 Bytes 10/12/2009 19:31:40
AEBB.DLL : 8.1.0.3 53618 Bytes 15/10/2008 17:08:51
AVWINLL.DLL : 1.0.0.12 15105 Bytes 09/07/2008 08:40:05
AVPREF.DLL : 8.0.2.0 38657 Bytes 16/05/2008 09:28:01
AVREP.DLL : 8.0.0.3 155688 Bytes 17/04/2009 17:02:36
AVREG.DLL : 8.0.0.1 33537 Bytes 09/05/2008 11:26:40
AVARKT.DLL : 1.0.0.23 307457 Bytes 12/02/2008 08:29:23
AVEVTLOG.DLL : 8.0.0.16 119041 Bytes 12/06/2008 12:27:49
SQLITE3.DLL : 3.3.17.1 339968 Bytes 22/01/2008 17:28:02
SMTPLIB.DLL : 1.2.0.23 28929 Bytes 12/06/2008 12:49:40
NETNT.DLL : 8.0.0.1 7937 Bytes 25/01/2008 12:05:10
RCIMAGE.DLL : 8.0.0.51 2371841 Bytes 12/06/2008 13:48:07
RCTEXT.DLL : 8.0.52.0 86273 Bytes 27/06/2008 13:34:37
Configuration settings for the scan:
Jobname..........................: Complete system scan
Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: on
Scan boot sector.................: on
Boot sectors.....................: C:,
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: Intelligent file selection
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium
Start of the scan: mardi 12 janvier 2010 17:35
The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'taskeng.exe' - '1' Module(s) have been scanned
Scan process 'iexplore.exe' - '1' Module(s) have been scanned
Scan process 'FlashUtil10d.exe' - '1' Module(s) have been scanned
Scan process 'iexplore.exe' - '1' Module(s) have been scanned
Scan process 'iexplore.exe' - '1' Module(s) have been scanned
Scan process 'wltuser.exe' - '1' Module(s) have been scanned
Scan process 'iexplore.exe' - '1' Module(s) have been scanned
Scan process 'LogonUI.exe' - '1' Module(s) have been scanned
Scan process 'wlcomm.exe' - '1' Module(s) have been scanned
Scan process 'COCIManager.exe' - '1' Module(s) have been scanned
Scan process 'soffice.bin' - '1' Module(s) have been scanned
Scan process 'soffice.exe' - '1' Module(s) have been scanned
Scan process 'ehmsas.exe' - '1' Module(s) have been scanned
Scan process 'sidebar.exe' - '1' Module(s) have been scanned
Scan process 'LimeWire.exe' - '1' Module(s) have been scanned
Scan process 'AnumanLive.exe' - '1' Module(s) have been scanned
Scan process 'ehtray.exe' - '1' Module(s) have been scanned
Scan process 'wmpnetwk.exe' - '1' Module(s) have been scanned
Scan process 'CPSHelpRunner.exe' - '1' Module(s) have been scanned
Scan process 'TeaTimer.exe' - '1' Module(s) have been scanned
Scan process 'wmpnscfg.exe' - '1' Module(s) have been scanned
Scan process 'iPodService.exe' - '1' Module(s) have been scanned
Scan process 'SmpSys.exe' - '1' Module(s) have been scanned
Scan process 'msnmsgr.exe' - '1' Module(s) have been scanned
Scan process 'sidebar.exe' - '1' Module(s) have been scanned
Scan process 'eorezo.exe' - '1' Module(s) have been scanned
Scan process 'EoEngine.exe' - '1' Module(s) have been scanned
Scan process 'SiteRankTray.exe' - '1' Module(s) have been scanned
Scan process 'ie3sh.exe' - '1' Module(s) have been scanned
Scan process 'BtTray.exe' - '1' Module(s) have been scanned
Scan process 'TimounterMonitor.exe' - '1' Module(s) have been scanned
Scan process 'rundll32.exe' - '1' Module(s) have been scanned
Scan process 'iTunesHelper.exe' - '1' Module(s) have been scanned
Scan process 'jusched.exe' - '1' Module(s) have been scanned
Scan process 'rundll32.exe' - '1' Module(s) have been scanned
Scan process 'Quickcam.exe' - '1' Module(s) have been scanned
Scan process 'Communications_Helper.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'RoxWatchTray9.exe' - '1' Module(s) have been scanned
Scan process 'RtHDVCpl.exe' - '1' Module(s) have been scanned
Scan process 'MSASCui.exe' - '1' Module(s) have been scanned
Scan process 'SoftwareUpdateHP.exe' - '1' Module(s) have been scanned
Scan process 'RoxMediaDB9.exe' - '1' Module(s) have been scanned
Scan process 'BsHelpCS.exe' - '1' Module(s) have been scanned
Scan process 'WUDFHost.exe' - '1' Module(s) have been scanned
Scan process 'SearchIndexer.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'SeaPort.exe' - '1' Module(s) have been scanned
Scan process 'RoxWatch9.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'LVComSer.exe' - '1' Module(s) have been scanned
Scan process 'LVComSer.exe' - '1' Module(s) have been scanned
Scan process 'BsMobileCS.exe' - '1' Module(s) have been scanned
Scan process 'mDNSResponder.exe' - '1' Module(s) have been scanned
Scan process 'BlueSoleilCS.exe' - '1' Module(s) have been scanned
Scan process 'AppleMobileDeviceService.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'schedul2.exe' - '1' Module(s) have been scanned
Scan process 'a2service.exe' - '1' Module(s) have been scanned
Scan process 'taskeng.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'SearchGuardPlus.exe' - '1' Module(s) have been scanned
Scan process 'taskeng.exe' - '1' Module(s) have been scanned
Scan process 'dwm.exe' - '1' Module(s) have been scanned
Scan process 'taskeng.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'SLsvc.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'audiodg.exe' - '0' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'LVPrcSrv.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'lsm.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'wininit.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
90 processes with 90 modules were scanned
Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!
Master boot sector HD1
[INFO] No virus was found!
Master boot sector HD2
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
[INFO] Please restart the search with Administrator rights
Master boot sector HD3
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
[INFO] Please restart the search with Administrator rights
Master boot sector HD4
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
[INFO] Please restart the search with Administrator rights
Master boot sector HD5
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
[INFO] Please restart the search with Administrator rights
Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Starting to scan the registry.
The registry was scanned ( '55' files ).
Starting the file scan:
Begin scan in 'C:\' <HDD>
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\Program Files\Fast Browser Search\IE\uninstall.exe
[DETECTION] Is the TR/Agent.178048 Trojan
[NOTE] The file was moved to '4bb5a68b.qua'!
C:\Program Files\Fast Browser Search\IE\uninstalSGP.exe
[DETECTION] Is the TR/Agent.95104 Trojan
[NOTE] The file was moved to '4bb5a68d.qua'!
C:\Program Files\Fast Browser Search\IE\uninstalSGPU.exe
[DETECTION] Is the TR/Agent.89984 Trojan
[NOTE] The file was moved to '4bb5a691.qua'!
C:\Program Files\Search Guard Plus\uninstalSGP.exe
[DETECTION] Is the TR/Agent.95104 Trojan
[NOTE] The file was moved to '4bb5aad0.qua'!
C:\Program Files\Search Guard PlusU\uninstalSGPU.exe
[DETECTION] Is the TR/Agent.89984 Trojan
[NOTE] The file was moved to '4bb5aad3.qua'!
End of the scan: mardi 12 janvier 2010 18:47
Used time: 1:11:39 Hour(s)
The scan has been done completely.
23631 Scanning directories
574156 Files were scanned
5 viruses and/or unwanted programs were found
0 Files were classified as suspicious:
0 files were deleted
0 files were repaired
5 files were moved to quarantine
0 files were renamed
1 Files cannot be scanned
574150 Files not concerned
3760 Archives were scanned
5 Warnings
5 Notes
quelquun peut il me dire ce que je dois faire maitnenant ? merci
j'ai également lancé a-squared, j'attends quil finisse..
Avira AntiVir Personal
Report file date: mardi 12 janvier 2010 17:35
Scanning for 1521437 virus strains and unwanted programs.
Licensed to: Avira AntiVir Personal - FREE Antivirus
Serial number: 0000149996-ADJIE-0000001
Platform: Windows Vista
Windows version: (Service Pack 2) [6.0.6002]
Boot mode: Normally booted
Username: SYSTEM
Computer name: PC-DE-VALERIE
Version information:
BUILD.DAT : 8.2.0.354 17048 Bytes 23/10/2009 13:15:00
AVSCAN.EXE : 8.1.4.10 315649 Bytes 27/11/2008 18:54:39
AVSCAN.DLL : 8.1.4.0 40705 Bytes 26/05/2008 07:56:40
LUKE.DLL : 8.1.4.5 164097 Bytes 12/06/2008 12:44:19
LUKERES.DLL : 8.1.4.0 12033 Bytes 26/05/2008 07:58:52
ANTIVIR0.VDF : 7.10.0.0 19875328 Bytes 06/11/2009 16:11:44
ANTIVIR1.VDF : 7.10.1.11 1395568 Bytes 19/11/2009 16:12:44
ANTIVIR2.VDF : 7.10.2.166 1959328 Bytes 11/01/2010 06:32:59
ANTIVIR3.VDF : 7.10.2.169 90112 Bytes 11/01/2010 06:33:01
Engineversion : 8.2.1.134
AEVDF.DLL : 8.1.1.2 106867 Bytes 20/09/2009 18:43:31
AESCRIPT.DLL : 8.1.3.7 594296 Bytes 05/01/2010 11:47:45
AESCN.DLL : 8.1.3.0 127348 Bytes 10/12/2009 19:31:47
AESBX.DLL : 8.1.1.1 246132 Bytes 24/11/2009 16:13:26
AERDL.DLL : 8.1.3.4 479605 Bytes 01/12/2009 19:24:42
AEPACK.DLL : 8.2.0.4 422263 Bytes 05/01/2010 11:47:43
AEOFFICE.DLL : 8.1.0.38 196987 Bytes 18/06/2009 10:44:18
AEHEUR.DLL : 8.1.0.194 2228599 Bytes 08/01/2010 19:31:42
AEHELP.DLL : 8.1.9.0 237943 Bytes 17/12/2009 06:51:25
AEGEN.DLL : 8.1.1.83 369014 Bytes 05/01/2010 11:47:34
AEEMU.DLL : 8.1.1.0 393587 Bytes 04/10/2009 14:26:06
AECORE.DLL : 8.1.9.1 180598 Bytes 10/12/2009 19:31:40
AEBB.DLL : 8.1.0.3 53618 Bytes 15/10/2008 17:08:51
AVWINLL.DLL : 1.0.0.12 15105 Bytes 09/07/2008 08:40:05
AVPREF.DLL : 8.0.2.0 38657 Bytes 16/05/2008 09:28:01
AVREP.DLL : 8.0.0.3 155688 Bytes 17/04/2009 17:02:36
AVREG.DLL : 8.0.0.1 33537 Bytes 09/05/2008 11:26:40
AVARKT.DLL : 1.0.0.23 307457 Bytes 12/02/2008 08:29:23
AVEVTLOG.DLL : 8.0.0.16 119041 Bytes 12/06/2008 12:27:49
SQLITE3.DLL : 3.3.17.1 339968 Bytes 22/01/2008 17:28:02
SMTPLIB.DLL : 1.2.0.23 28929 Bytes 12/06/2008 12:49:40
NETNT.DLL : 8.0.0.1 7937 Bytes 25/01/2008 12:05:10
RCIMAGE.DLL : 8.0.0.51 2371841 Bytes 12/06/2008 13:48:07
RCTEXT.DLL : 8.0.52.0 86273 Bytes 27/06/2008 13:34:37
Configuration settings for the scan:
Jobname..........................: Complete system scan
Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: on
Scan boot sector.................: on
Boot sectors.....................: C:,
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: Intelligent file selection
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium
Start of the scan: mardi 12 janvier 2010 17:35
The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'taskeng.exe' - '1' Module(s) have been scanned
Scan process 'iexplore.exe' - '1' Module(s) have been scanned
Scan process 'FlashUtil10d.exe' - '1' Module(s) have been scanned
Scan process 'iexplore.exe' - '1' Module(s) have been scanned
Scan process 'iexplore.exe' - '1' Module(s) have been scanned
Scan process 'wltuser.exe' - '1' Module(s) have been scanned
Scan process 'iexplore.exe' - '1' Module(s) have been scanned
Scan process 'LogonUI.exe' - '1' Module(s) have been scanned
Scan process 'wlcomm.exe' - '1' Module(s) have been scanned
Scan process 'COCIManager.exe' - '1' Module(s) have been scanned
Scan process 'soffice.bin' - '1' Module(s) have been scanned
Scan process 'soffice.exe' - '1' Module(s) have been scanned
Scan process 'ehmsas.exe' - '1' Module(s) have been scanned
Scan process 'sidebar.exe' - '1' Module(s) have been scanned
Scan process 'LimeWire.exe' - '1' Module(s) have been scanned
Scan process 'AnumanLive.exe' - '1' Module(s) have been scanned
Scan process 'ehtray.exe' - '1' Module(s) have been scanned
Scan process 'wmpnetwk.exe' - '1' Module(s) have been scanned
Scan process 'CPSHelpRunner.exe' - '1' Module(s) have been scanned
Scan process 'TeaTimer.exe' - '1' Module(s) have been scanned
Scan process 'wmpnscfg.exe' - '1' Module(s) have been scanned
Scan process 'iPodService.exe' - '1' Module(s) have been scanned
Scan process 'SmpSys.exe' - '1' Module(s) have been scanned
Scan process 'msnmsgr.exe' - '1' Module(s) have been scanned
Scan process 'sidebar.exe' - '1' Module(s) have been scanned
Scan process 'eorezo.exe' - '1' Module(s) have been scanned
Scan process 'EoEngine.exe' - '1' Module(s) have been scanned
Scan process 'SiteRankTray.exe' - '1' Module(s) have been scanned
Scan process 'ie3sh.exe' - '1' Module(s) have been scanned
Scan process 'BtTray.exe' - '1' Module(s) have been scanned
Scan process 'TimounterMonitor.exe' - '1' Module(s) have been scanned
Scan process 'rundll32.exe' - '1' Module(s) have been scanned
Scan process 'iTunesHelper.exe' - '1' Module(s) have been scanned
Scan process 'jusched.exe' - '1' Module(s) have been scanned
Scan process 'rundll32.exe' - '1' Module(s) have been scanned
Scan process 'Quickcam.exe' - '1' Module(s) have been scanned
Scan process 'Communications_Helper.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'RoxWatchTray9.exe' - '1' Module(s) have been scanned
Scan process 'RtHDVCpl.exe' - '1' Module(s) have been scanned
Scan process 'MSASCui.exe' - '1' Module(s) have been scanned
Scan process 'SoftwareUpdateHP.exe' - '1' Module(s) have been scanned
Scan process 'RoxMediaDB9.exe' - '1' Module(s) have been scanned
Scan process 'BsHelpCS.exe' - '1' Module(s) have been scanned
Scan process 'WUDFHost.exe' - '1' Module(s) have been scanned
Scan process 'SearchIndexer.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'SeaPort.exe' - '1' Module(s) have been scanned
Scan process 'RoxWatch9.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'LVComSer.exe' - '1' Module(s) have been scanned
Scan process 'LVComSer.exe' - '1' Module(s) have been scanned
Scan process 'BsMobileCS.exe' - '1' Module(s) have been scanned
Scan process 'mDNSResponder.exe' - '1' Module(s) have been scanned
Scan process 'BlueSoleilCS.exe' - '1' Module(s) have been scanned
Scan process 'AppleMobileDeviceService.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'schedul2.exe' - '1' Module(s) have been scanned
Scan process 'a2service.exe' - '1' Module(s) have been scanned
Scan process 'taskeng.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'SearchGuardPlus.exe' - '1' Module(s) have been scanned
Scan process 'taskeng.exe' - '1' Module(s) have been scanned
Scan process 'dwm.exe' - '1' Module(s) have been scanned
Scan process 'taskeng.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'SLsvc.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'audiodg.exe' - '0' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'LVPrcSrv.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'lsm.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'wininit.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
90 processes with 90 modules were scanned
Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!
Master boot sector HD1
[INFO] No virus was found!
Master boot sector HD2
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
[INFO] Please restart the search with Administrator rights
Master boot sector HD3
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
[INFO] Please restart the search with Administrator rights
Master boot sector HD4
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
[INFO] Please restart the search with Administrator rights
Master boot sector HD5
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
[INFO] Please restart the search with Administrator rights
Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Starting to scan the registry.
The registry was scanned ( '55' files ).
Starting the file scan:
Begin scan in 'C:\' <HDD>
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\Program Files\Fast Browser Search\IE\uninstall.exe
[DETECTION] Is the TR/Agent.178048 Trojan
[NOTE] The file was moved to '4bb5a68b.qua'!
C:\Program Files\Fast Browser Search\IE\uninstalSGP.exe
[DETECTION] Is the TR/Agent.95104 Trojan
[NOTE] The file was moved to '4bb5a68d.qua'!
C:\Program Files\Fast Browser Search\IE\uninstalSGPU.exe
[DETECTION] Is the TR/Agent.89984 Trojan
[NOTE] The file was moved to '4bb5a691.qua'!
C:\Program Files\Search Guard Plus\uninstalSGP.exe
[DETECTION] Is the TR/Agent.95104 Trojan
[NOTE] The file was moved to '4bb5aad0.qua'!
C:\Program Files\Search Guard PlusU\uninstalSGPU.exe
[DETECTION] Is the TR/Agent.89984 Trojan
[NOTE] The file was moved to '4bb5aad3.qua'!
End of the scan: mardi 12 janvier 2010 18:47
Used time: 1:11:39 Hour(s)
The scan has been done completely.
23631 Scanning directories
574156 Files were scanned
5 viruses and/or unwanted programs were found
0 Files were classified as suspicious:
0 files were deleted
0 files were repaired
5 files were moved to quarantine
0 files were renamed
1 Files cannot be scanned
574150 Files not concerned
3760 Archives were scanned
5 Warnings
5 Notes
libellulelibellule
Messages postés
8
Date d'inscription
mardi 12 janvier 2010
Statut
Membre
Dernière intervention
13 janvier 2010
1
13 janv. 2010 à 07:02
13 janv. 2010 à 07:02
bonjour,
quelquun peut il me répondre ?
merci beaucoup
quelquun peut il me répondre ?
merci beaucoup
omen77fr
Messages postés
150
Date d'inscription
vendredi 14 décembre 2007
Statut
Membre
Dernière intervention
6 janvier 2012
17
13 janv. 2010 à 16:05
13 janv. 2010 à 16:05
OK. Alors, ton antivirus met les fichiers infectés en quarantaine, mais n'arrive pas à les supprimer.
Telécharge Malwarebytes :
https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
Installe-le, et à la première exécution, fais la mise à jour.
Lance un scan, et supprime tout ce qu'il trouve. Il te demandera si tu veux sauvegarder la sélection, enregistre ça quelque part.
Normalement, ton PC sera totalement désinfecté.
Si ça ne fonctionne pas, lance un scan, et copie/colle le rapport sur le forum.
Bon courage !
Telécharge Malwarebytes :
https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
Installe-le, et à la première exécution, fais la mise à jour.
Lance un scan, et supprime tout ce qu'il trouve. Il te demandera si tu veux sauvegarder la sélection, enregistre ça quelque part.
Normalement, ton PC sera totalement désinfecté.
Si ça ne fonctionne pas, lance un scan, et copie/colle le rapport sur le forum.
Bon courage !
voici le rapport
Malwarebytes' Anti-Malware 1.44
Version de la base de données: 3554
Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.18865
13/01/2010 20:03:10
mbam-log-2010-01-13 (20-03-10).txt
Type de recherche: Examen complet (C:\|)
Eléments examinés: 220447
Temps écoulé: 46 minute(s), 59 second(s)
Processus mémoire infecté(s): 3
Module(s) mémoire infecté(s): 3
Clé(s) du Registre infectée(s): 16
Valeur(s) du Registre infectée(s): 3
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 7
Processus mémoire infecté(s):
C:\Users\stephanie\AppData\Roaming\EoRezo\SoftwareUpdate\SoftwareUpdateHP.exe (Rogue.Eorezo) -> Unloaded process successfully.
C:\Program Files\EoRezo\EoEngine.exe (Rogue.Eorezo) -> Unloaded process successfully.
C:\Program Files\EoRezo\eorezo.exe (Rogue.Eorezo) -> Unloaded process successfully.
Module(s) mémoire infecté(s):
C:\Program Files\EoRezo\EoAdv\EoAdv.dll (Rogue.Eorezo) -> Delete on reboot.
C:\Program Files\EoRezo\EoRezoBHO.dll (Rogue.Eorezo) -> Delete on reboot.
C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (Rogue.Eorezo) -> Delete on reboot.
Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\TypeLib\{18af7201-4f14-4bcf-93fe-45617cf259ff} (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{df76e9b7-35ec-46fc-af56-5b79ded9d64f} (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c10dc1f4-ccdf-4224-a24d-b23afc3573c8} (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{c10dc1f4-ccdf-4224-a24d-b23afc3573c8} (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{c10dc1f4-ccdf-4224-a24d-b23afc3573c8} (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c10dc1f4-ccdf-4224-a24d-b23afc3573c8} (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{b6acb3f1-6a83-432c-b854-3e1056f87f4e} (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{819db72d-1c28-4387-9778-e2ff3dc86f74} (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c7b76b90-3455-4ae6-a752-eac4d19689e5} (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{c7b76b90-3455-4ae6-a752-eac4d19689e5} (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{c7b76b90-3455-4ae6-a752-eac4d19689e5} (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c7b76b90-3455-4ae6-a752-eac4d19689e5} (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\urlsearchhook.toolbarurlsearchhook (Adware.Ecobar) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\urlsearchhook.toolbarurlsearchhook.1 (Adware.Ecobar) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ca3eb689-8f09-4026-aa10-b9534c691ce0} (Adware.Ecobar) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\EoRezo (Rogue.Eorezo) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\softwarehelper (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\eoengine (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\eorezo (Rogue.Eorezo) -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
C:\Users\stephanie\AppData\Roaming\EoRezo\SoftwareUpdate\SoftwareUpdateHP.exe (Rogue.Eorezo) -> Quarantined and deleted successfully.
C:\Program Files\EoRezo\EoEngine.exe (Rogue.Eorezo) -> Quarantined and deleted successfully.
C:\Program Files\EoRezo\EoAdv\EoAdv.dll (Rogue.Eorezo) -> Quarantined and deleted successfully.
C:\Program Files\EoRezo\eorezo.exe (Rogue.Eorezo) -> Quarantined and deleted successfully.
C:\Program Files\EoRezo\EoRezoBHO.dll (Rogue.Eorezo) -> Delete on reboot.
C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (Rogue.Eorezo) -> Delete on reboot.
C:\Users\stephanie\AppData\Roaming\EoRezo\SoftwareUpdate\SoftwareUpdate.exe (Rogue.Eorezo) -> Quarantined and deleted successfully.
Malwarebytes' Anti-Malware 1.44
Version de la base de données: 3554
Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.18865
13/01/2010 20:03:10
mbam-log-2010-01-13 (20-03-10).txt
Type de recherche: Examen complet (C:\|)
Eléments examinés: 220447
Temps écoulé: 46 minute(s), 59 second(s)
Processus mémoire infecté(s): 3
Module(s) mémoire infecté(s): 3
Clé(s) du Registre infectée(s): 16
Valeur(s) du Registre infectée(s): 3
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 7
Processus mémoire infecté(s):
C:\Users\stephanie\AppData\Roaming\EoRezo\SoftwareUpdate\SoftwareUpdateHP.exe (Rogue.Eorezo) -> Unloaded process successfully.
C:\Program Files\EoRezo\EoEngine.exe (Rogue.Eorezo) -> Unloaded process successfully.
C:\Program Files\EoRezo\eorezo.exe (Rogue.Eorezo) -> Unloaded process successfully.
Module(s) mémoire infecté(s):
C:\Program Files\EoRezo\EoAdv\EoAdv.dll (Rogue.Eorezo) -> Delete on reboot.
C:\Program Files\EoRezo\EoRezoBHO.dll (Rogue.Eorezo) -> Delete on reboot.
C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (Rogue.Eorezo) -> Delete on reboot.
Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\TypeLib\{18af7201-4f14-4bcf-93fe-45617cf259ff} (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{df76e9b7-35ec-46fc-af56-5b79ded9d64f} (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c10dc1f4-ccdf-4224-a24d-b23afc3573c8} (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{c10dc1f4-ccdf-4224-a24d-b23afc3573c8} (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{c10dc1f4-ccdf-4224-a24d-b23afc3573c8} (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c10dc1f4-ccdf-4224-a24d-b23afc3573c8} (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{b6acb3f1-6a83-432c-b854-3e1056f87f4e} (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{819db72d-1c28-4387-9778-e2ff3dc86f74} (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c7b76b90-3455-4ae6-a752-eac4d19689e5} (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{c7b76b90-3455-4ae6-a752-eac4d19689e5} (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{c7b76b90-3455-4ae6-a752-eac4d19689e5} (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{c7b76b90-3455-4ae6-a752-eac4d19689e5} (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\urlsearchhook.toolbarurlsearchhook (Adware.Ecobar) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\urlsearchhook.toolbarurlsearchhook.1 (Adware.Ecobar) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ca3eb689-8f09-4026-aa10-b9534c691ce0} (Adware.Ecobar) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\EoRezo (Rogue.Eorezo) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\softwarehelper (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\eoengine (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\eorezo (Rogue.Eorezo) -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
C:\Users\stephanie\AppData\Roaming\EoRezo\SoftwareUpdate\SoftwareUpdateHP.exe (Rogue.Eorezo) -> Quarantined and deleted successfully.
C:\Program Files\EoRezo\EoEngine.exe (Rogue.Eorezo) -> Quarantined and deleted successfully.
C:\Program Files\EoRezo\EoAdv\EoAdv.dll (Rogue.Eorezo) -> Quarantined and deleted successfully.
C:\Program Files\EoRezo\eorezo.exe (Rogue.Eorezo) -> Quarantined and deleted successfully.
C:\Program Files\EoRezo\EoRezoBHO.dll (Rogue.Eorezo) -> Delete on reboot.
C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (Rogue.Eorezo) -> Delete on reboot.
C:\Users\stephanie\AppData\Roaming\EoRezo\SoftwareUpdate\SoftwareUpdate.exe (Rogue.Eorezo) -> Quarantined and deleted successfully.
omen77fr
Messages postés
150
Date d'inscription
vendredi 14 décembre 2007
Statut
Membre
Dernière intervention
6 janvier 2012
17
15 janv. 2010 à 15:14
15 janv. 2010 à 15:14
D'après le résultat de l'analyse, tout à l'air clean. On voit bien dans le rapport 'unloaded successfully', 'delete on reboot' et 'Quarantine and deleted successfully'. Refais un autre scan pour voir s'il ne reste pas de cochonneries sur ton PC.
crapoulou
Messages postés
28158
Date d'inscription
mercredi 28 novembre 2007
Statut
Modérateur, Contributeur sécurité
Dernière intervention
16 avril 2024
7 990
15 janv. 2010 à 23:03
15 janv. 2010 à 23:03
Bonsoir,
Il faut t'authentifier sur le site.
Rappel :
https://www.commentcamarche.net/infos/25917-marquer-un-fil-de-discussion-comme-etant-resolu/
Je lai fait cette pour toi. ;-)
******
Je te conseille de vider la quarantaine de Malwarebytes' Anti Malware.
Bonne continuation.
Il faut t'authentifier sur le site.
Rappel :
https://www.commentcamarche.net/infos/25917-marquer-un-fil-de-discussion-comme-etant-resolu/
Je lai fait cette pour toi. ;-)
******
Je te conseille de vider la quarantaine de Malwarebytes' Anti Malware.
Bonne continuation.