Version anglaiseVersion espagnoleVersion françaiseInscrivez-vous, c'est gratuit ! (mot de passe oublié)
- Dimanche 27 juillet 2008 - 06:55:02
- inscrits : 891319
- connectés : 5985
- questions/jour : 3949
- Taux de réponse : 84.37%
Analyse automatique hijackthis Analyse log hijackthis Analyser un scan hijackthis Comment analyser un scanne hijackthis Mon ordi est lent Mon ordi est lent a ouvrir la fenetre Mon ordi est lent que faire Mon ordi et lent Mon ordinateur est lent Mon pc est lent pourquoi Mon pc est lent que faire Ordi tres lent 2008 Ordi trope lent a la connexion de ma webcam Ordinateur plus lent avec vista sp1 Ordinateur tres lent Ordinateur trop lent Ordinateur très lent Ordinateur trés lent au démarrage Pc plus lent a s'eteindre comment amelioré Pc super lent Pc tres lent apres formatage Pc tres lent au demarage Pc très lent au démarrage Pc trés lent aprés défrag et nettoyage Pourquoi mon pc et lent Spyware pc hyper lentPlus
Ils ont besoin de votre aide
- 06:50 Probleme avec un ASUS M50SA (Windows)
- 06:44 Comparer plusieurs cellules (Excel) (Bureautique)
- 06:30 target=_blank (Webmastering)
- 06:00 besoin d'aid (Windows)
- 05:56 Probleme psp (Jeux vidéos)
- 05:24 probleme avec lecteur DVD/CD-RW (Matériel/Hardware)
Liste des forumsAidez-lesStatistiquesRechercherCharte
Plateformes d'assistanceDiscussions & Opinions des Communautés
|
|
|
|
Statut : Non résolu
Posté par 
Cyril_lol, le vendredi 28 décembre 2007 à 00:39:39
Ordi assez lent analyse scan hijackthis
Posté par Cyril_lol, le vendredi 28 décembre 2007 à 00:39:39Mon ordi est tres tres lentet c'est pas la ram ou l'espace sur le disque dure
j'espere avoir une aide
Voici le scan:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:16:20, on 27/12/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Spyware Doctor\svcntaux.exe
C:\Program Files\Spyware Doctor\swdsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Inventel\Gateway\wlancfg.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\Softwin\BITDEF~1\bdnagent.exe
C:\Program Files\Spyware Doctor\SDTrayApp.exe
C:\WINDOWS\system32\DrvMon.exe
C:\Documents and Settings\en cas de probelme\Application Data\Microsoft\Windows\jjrks.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\WINDOWS\system32\sistray.exe
C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
C:\WINDOWS\system32\taskmgr.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\OFFICE ONE6.5\OFFICE One Zip v6\OFFICE One Zip v6.exe
C:\Documents and Settings\en cas de probelme\Mes documents\OFFICE One Zip\HiJackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.wanadoo.fr/go/page_recherche/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: IntelligentAdvisor - {6548BF73-58FF-71D5-F97D-17C71E323709} - C:\Program Files\IntelligentAdvisor\IntelligentAdvisor-1.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {8E3FBDE2-7DBD-4040-85D9-29BBC559C129} - C:\WINDOWS\system32\wvuvsqq.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ads_optimizer - {9C8A568E-4201-478a-8536-526CF371D2E2} - C:\WINDOWS\system32\nshB3.dll
O2 - BHO: Barre d'outils MSN Search Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll
O2 - BHO: (no name) - {E2E32BF3-D539-423B-8F8B-85538397870C} - C:\Program Files\MSN Gaming Zone\mefotyjyd.dll (file missing)
O2 - BHO: (no name) - {E7455AC2-7850-4091-9CEF-485987AED043} - C:\WINDOWS\system32\jkhfd.dll
O2 - BHO: e404 helper - {F10587E9-0E47-4CBE-84AE-7DD20B8684BB} - C:\Program Files\Helper\superfinderusa.dll
O3 - Toolbar: Barre d'outils MSN Search - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll
O4 - HKLM\..\Run: [VWLP Agent] C:\WINDOWS\28463\VWLP.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [dyelrxd] c:\windows\system32\dyelrxd.exe dyelrxd
O4 - HKLM\..\Run: [outlook] C:\Program Files\outlook\outlook.exe /auto
O4 - HKLM\..\Run: [Host Process] C:\WINDOWS\Fonts\svchost.exe
O4 - HKLM\..\Run: [BDNewsAgent] "C:\PROGRA~1\Softwin\BITDEF~1\bdnagent.exe"
O4 - HKLM\..\Run: [BDSwitchAgent] "C:\PROGRA~1\Softwin\BITDEF~1\bdswitch.exe"
O4 - HKLM\..\Run: [HTV Agent] C:\Program Files\HTV\HTV.exe
O4 - HKLM\..\Run: [SDTray] "C:\Program Files\Spyware Doctor\SDTrayApp.exe"
O4 - HKLM\..\Run: [689a62fb] rundll32.exe "C:\WINDOWS\system32\qhgikwaj.dll",b
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [Magentic] C:\PROGRA~1\Magentic\bin\Magentic.exe /c
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - HKCU\..\Run: [DriveLog] C:\DOCUME~1\ENCASD~1\APPLIC~1\BIASVC~1\Long Play.exe
O4 - HKCU\..\Run: [DrvMon.exe] C:\WINDOWS\system32\DrvMon.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_7 -reboot 1
O4 - HKCU\..\Run: [SfKg6w] C:\Documents and Settings\en cas de probelme\Application Data\Microsoft\Windows\jjrks.exe
O4 - HKCU\..\Run: [Router] C:\Program Files\Router\Router.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Utility Tray.lnk = C:\WINDOWS\system32\sistray.exe
O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll/search.htm
O8 - Extra context menu item: Add to AMV Converter... - C:\Program Files\MP3 Player Utilities 4.09\AMVConverter\grab.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.09\MediaManager\grab.html
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/229?9cf511efac1f4db68abf61882997d1a6
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/230?9cf511efac1f4db68abf61882997d1a6
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU)
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,101/mcinsctl.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {A13516A3-BE86-4517-813C-B5FF0C8ACDF3} (Toontown Installer ActiveX Control French) - http://downloadtoontown.goa.com/sv1.5.11.7/ttinst-french.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://download.mcafee.com/molbin/shared/mcgdmgr/1,0,0,26/mcgdmgr.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O20 - Winlogon Notify: DateTime - C:\WINDOWS\system32\mvr4l99q1.dll (file missing)
O20 - Winlogon Notify: winhoo32 - C:\WINDOWS\SYSTEM32\winhoo32.dll
O20 - Winlogon Notify: wvuvsqq - C:\WINDOWS\SYSTEM32\wvuvsqq.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: ASP.NET State Service (aspnet_state) - Unknown owner - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (file missing)
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe (file missing)
O23 - Service: EpsonBidirectionalService - Unknown owner - C:\Program Files\Fichiers communs\EPSON\EBAPI\eEBSVC.exe (file missing)
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: PsShutdown (PsShutdownSvc) - Systems Internals - C:\WINDOWS\System32\PSSDNSVC.EXE
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender9\vsserv.exe
O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\Program Files\Inventel\Gateway\wlancfg.exe
O23 - Service: BitDefender Communicator (XCOMM) - Softwin - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
End of file - 11099 bytes
j'espere avoir une aide
Voici le scan:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:16:20, on 27/12/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Spyware Doctor\svcntaux.exe
C:\Program Files\Spyware Doctor\swdsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Inventel\Gateway\wlancfg.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\Softwin\BITDEF~1\bdnagent.exe
C:\Program Files\Spyware Doctor\SDTrayApp.exe
C:\WINDOWS\system32\DrvMon.exe
C:\Documents and Settings\en cas de probelme\Application Data\Microsoft\Windows\jjrks.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\WINDOWS\system32\sistray.exe
C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
C:\WINDOWS\system32\taskmgr.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\OFFICE ONE6.5\OFFICE One Zip v6\OFFICE One Zip v6.exe
C:\Documents and Settings\en cas de probelme\Mes documents\OFFICE One Zip\HiJackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.wanadoo.fr/go/page_recherche/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O2 - BHO: IntelligentAdvisor - {6548BF73-58FF-71D5-F97D-17C71E323709} - C:\Program Files\IntelligentAdvisor\IntelligentAdvisor-1.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {8E3FBDE2-7DBD-4040-85D9-29BBC559C129} - C:\WINDOWS\system32\wvuvsqq.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ads_optimizer - {9C8A568E-4201-478a-8536-526CF371D2E2} - C:\WINDOWS\system32\nshB3.dll
O2 - BHO: Barre d'outils MSN Search Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll
O2 - BHO: (no name) - {E2E32BF3-D539-423B-8F8B-85538397870C} - C:\Program Files\MSN Gaming Zone\mefotyjyd.dll (file missing)
O2 - BHO: (no name) - {E7455AC2-7850-4091-9CEF-485987AED043} - C:\WINDOWS\system32\jkhfd.dll
O2 - BHO: e404 helper - {F10587E9-0E47-4CBE-84AE-7DD20B8684BB} - C:\Program Files\Helper\superfinderusa.dll
O3 - Toolbar: Barre d'outils MSN Search - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll
O4 - HKLM\..\Run: [VWLP Agent] C:\WINDOWS\28463\VWLP.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [dyelrxd] c:\windows\system32\dyelrxd.exe dyelrxd
O4 - HKLM\..\Run: [outlook] C:\Program Files\outlook\outlook.exe /auto
O4 - HKLM\..\Run: [Host Process] C:\WINDOWS\Fonts\svchost.exe
O4 - HKLM\..\Run: [BDNewsAgent] "C:\PROGRA~1\Softwin\BITDEF~1\bdnagent.exe"
O4 - HKLM\..\Run: [BDSwitchAgent] "C:\PROGRA~1\Softwin\BITDEF~1\bdswitch.exe"
O4 - HKLM\..\Run: [HTV Agent] C:\Program Files\HTV\HTV.exe
O4 - HKLM\..\Run: [SDTray] "C:\Program Files\Spyware Doctor\SDTrayApp.exe"
O4 - HKLM\..\Run: [689a62fb] rundll32.exe "C:\WINDOWS\system32\qhgikwaj.dll",b
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [Magentic] C:\PROGRA~1\Magentic\bin\Magentic.exe /c
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - HKCU\..\Run: [DriveLog] C:\DOCUME~1\ENCASD~1\APPLIC~1\BIASVC~1\Long Play.exe
O4 - HKCU\..\Run: [DrvMon.exe] C:\WINDOWS\system32\DrvMon.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_7 -reboot 1
O4 - HKCU\..\Run: [SfKg6w] C:\Documents and Settings\en cas de probelme\Application Data\Microsoft\Windows\jjrks.exe
O4 - HKCU\..\Run: [Router] C:\Program Files\Router\Router.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Utility Tray.lnk = C:\WINDOWS\system32\sistray.exe
O8 - Extra context menu item: &MSN Search - res://C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1105\fr-fr\msntb.dll/search.htm
O8 - Extra context menu item: Add to AMV Converter... - C:\Program Files\MP3 Player Utilities 4.09\AMVConverter\grab.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.09\MediaManager\grab.html
O8 - Extra context menu item: Ouvrir dans un nouvel onglet d'arrière-plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/229?9cf511efac1f4db68abf61882997d1a6
O8 - Extra context menu item: Ouvrir dans un nouvel onglet de premier plan - res://C:\Program Files\MSN Toolbar Suite\TAB\02.05.0000.1105\fr-fr\msntabres.dll/230?9cf511efac1f4db68abf61882997d1a6
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU)
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,101/mcinsctl.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {A13516A3-BE86-4517-813C-B5FF0C8ACDF3} (Toontown Installer ActiveX Control French) - http://downloadtoontown.goa.com/sv1.5.11.7/ttinst-french.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://download.mcafee.com/molbin/shared/mcgdmgr/1,0,0,26/mcgdmgr.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O20 - Winlogon Notify: DateTime - C:\WINDOWS\system32\mvr4l99q1.dll (file missing)
O20 - Winlogon Notify: winhoo32 - C:\WINDOWS\SYSTEM32\winhoo32.dll
O20 - Winlogon Notify: wvuvsqq - C:\WINDOWS\SYSTEM32\wvuvsqq.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: ASP.NET State Service (aspnet_state) - Unknown owner - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (file missing)
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe (file missing)
O23 - Service: EpsonBidirectionalService - Unknown owner - C:\Program Files\Fichiers communs\EPSON\EBAPI\eEBSVC.exe (file missing)
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: PsShutdown (PsShutdownSvc) - Systems Internals - C:\WINDOWS\System32\PSSDNSVC.EXE
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\svcntaux.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\swdsvc.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender9\vsserv.exe
O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\Program Files\Inventel\Gateway\wlancfg.exe
O23 - Service: BitDefender Communicator (XCOMM) - Softwin - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
End of file - 11099 bytes
Configuration: Windows XP Internet Explorer 6.0
Bonjour,
tu es bien infecté. Fixe les lignes: O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {E2E32BF3-D539-423B-8F8B-85538397870C} - C:\Program Files\MSN Gaming Zone\mefotyjyd.dll (file missing)
O2 - BHO: e404 helper - {F10587E9-0E47-4CBE-84AE-7DD20B8684BB} - C:\Program Files\Helper\superfinderusa.dll
O4 - HKLM\..\Run: [outlook] C:\Program Files\outlook\outlook.exe /auto
O4 - HKLM\..\Run: [Host Process] C:\WINDOWS\Fonts\svchost.exe
O4 - HKCU\..\Run: [DriveLog] C:\DOCUME~1\ENCASD~1\APPLIC~1\BIASVC~1\Long Play.exe
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.wanadoo.fr (file missing) (HKCU)
O20 - Winlogon Notify: DateTime - C:\WINDOWS\system32\mvr4l99q1.dll (file missing)
O20 - Winlogon Notify: winhoo32 - C:\WINDOWS\SYSTEM32\winhoo32.dll
O20 - Winlogon Notify: wvuvsqq - C:\WINDOWS\SYSTEM32\wvuvsqq.dllFais un scan en ligne BitDefender à partir d'IE: http://www.bitdefender.com/scan8/
Je me renseigne sur les démarches à suivre. GoOgle est ton ami ;o) |
je te donne ce que le scann a donnée?
|
dans 22min |
zut merde@
Un des probleme de l'ordi es survenue sa a fermer les page internet explorer et maintenant faut attendre encore pour un moment J'ai le temps de faire une game de hockey |
sa donne sa
Statistics Time 01:08:20 Files 234154 Folders 6681 Boot Sectors 2 Archives 9601 Packed Files 12410 Results Identified Viruses 36 Infected Files 89 Suspect Files 9 Warnings 0 Disinfected 0 Deleted Files 101 Engines Info Virus Definitions 884600 Engine build AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36) Scan plugins 14 Archive plugins 38 Unpack plugins 7 E-mail plugins 6 System plugins 1 Scan Settings First Action Disinfect Second Action Delete Heuristics Yes Enable Warnings Yes Scanned Extensions *; Exclude Extensions Scan Emails Yes Scan Archives Yes Scan Packed Yes Scan Files Yes Scan Boot Yes Scanned File Status C:\Documents and Settings\en cas de probelme\Application Data\WinTouch\WTUninstaller.exe Infected with: Trojan.Downloader.Agent.BUO C:\Documents and Settings\en cas de probelme\Application Data\WinTouch\WTUninstaller.exe Disinfection failed C:\Documents and Settings\en cas de probelme\Application Data\WinTouch\WTUninstaller.exe Deleted C:\Documents and Settings\en cas de probelme\Mes documents\Ardamax2.7_www.downlivre.blogspot.com.zip=>install_Ardamax Keylogger 2.7.exe=>(NSIS o)=>lzma_solid_nsis0005 Suspected of: Spyware.Ardamax.27 C:\Documents and Settings\en cas de probelme\Mes documents\Ardamax2.7_www.downlivre.blogspot.com.zip=>install_Ardamax Keylogger 2.7.exe=>(NSIS o)=>lzma_solid_nsis0005 Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\Ardamax2.7_www.downlivre.blogspot.com.zip=>install_Ardamax Keylogger 2.7.exe=>(NSIS o)=>lzma_solid_nsis0005 Deleted C:\Documents and Settings\en cas de probelme\Mes documents\Ardamax2.7_www.downlivre.blogspot.com.zip=>install_Ardamax Keylogger 2.7.exe=>(NSIS o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\Ardamax2.7_www.downlivre.blogspot.com.zip=>install_Ardamax Keylogger 2.7.exe=>(NSIS o)=>lzma_solid_nsis0009 Infected with: Trojan.Dropper.Agent.BCW C:\Documents and Settings\en cas de probelme\Mes documents\Ardamax2.7_www.downlivre.blogspot.com.zip=>install_Ardamax Keylogger 2.7.exe=>(NSIS o)=>lzma_solid_nsis0009 Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\Ardamax2.7_www.downlivre.blogspot.com.zip=>install_Ardamax Keylogger 2.7.exe=>(NSIS o)=>lzma_solid_nsis0009 Deleted C:\Documents and Settings\en cas de probelme\Mes documents\Ardamax2.7_www.downlivre.blogspot.com.zip=>install_Ardamax Keylogger 2.7.exe=>(NSIS o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Ardamax_with_Crack.rar=>Ardamax with Crack\Keygen.zip=>Keygen.exe Infected with: Backdoor.Ciadoor.OC C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Ardamax_with_Crack.rar=>Ardamax with Crack\Keygen.zip=>Keygen.exe Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Ardamax_with_Crack.rar=>Ardamax with Crack\Keygen.zip=>Keygen.exe Deleted C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Ardamax_with_Crack.rar=>Ardamax with Crack\Keygen.zip Updated C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Ardamax_with_Crack.rar Update failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Ardamax_with_Crack.rar=>Ardamax with Crack\setup_akl.exe=>(Sfx File) Infected with: Generic.Ardamax.E9808223 C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Ardamax_with_Crack.rar=>Ardamax with Crack\setup_akl.exe=>(Sfx File) Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Ardamax_with_Crack.rar=>Ardamax with Crack\setup_akl.exe=>(Sfx File) Deleted C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Ardamax_with_Crack.rar=>Ardamax with Crack\setup_akl.exe Update failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Ardamax_with_Crack.rar=>Ardamax with Crack\setup_akl.exe=>(Sfx File) Infected with: Trojan.Rootkit.Hide.B C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Ardamax_with_Crack.rar=>Ardamax with Crack\setup_akl.exe=>(Sfx File) Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Ardamax_with_Crack.rar=>Ardamax with Crack\setup_akl.exe=>(Sfx File) Deleted C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Ardamax_with_Crack.rar=>Ardamax with Crack\setup_akl.exe Update failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Ardamax_with_Crack.rar=>Ardamax with Crack\setup_akl.exe=>(Sfx File) Infected with: Trojan.Spy.Agent.OL C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Ardamax_with_Crack.rar=>Ardamax with Crack\setup_akl.exe=>(Sfx File) Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Ardamax_with_Crack.rar=>Ardamax with Crack\setup_akl.exe=>(Sfx File) Deleted C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Ardamax_with_Crack.rar=>Ardamax with Crack\setup_akl.exe Update failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Ardamax_with_Crack.rar=>Ardamax with Crack\setup_akl.exe=>(Sfx File) Infected with: Trojan.Spy.Ardamax.B C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Ardamax_with_Crack.rar=>Ardamax with Crack\setup_akl.exe=>(Sfx File) Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Ardamax_with_Crack.rar=>Ardamax with Crack\setup_akl.exe=>(Sfx File) Deleted C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Ardamax_with_Crack.rar=>Ardamax with Crack\setup_akl.exe Update failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>bpk.exe Infected with: Generic.Keylogger.392D2A35 C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>bpk.exe Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>bpk.exe Deleted C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>bpkun.exe Infected with: Generic.Perfloger.769934F5 C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>bpkun.exe Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>bpkun.exe Deleted C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>bpkvw.exe Infected with: Generic.Perfloger.4DA74D2B C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>bpkvw.exe Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>bpkvw.exe Deleted C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>Setup.exe Infected with: Generic.Perfloger.098C2A32 C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>Setup.exe Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>Setup.exe Deleted C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>bpkhk.dll Infected with: Generic.Perfloger.F820D235 C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>bpkhk.dll Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>bpkhk.dll Deleted C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>bpki.dll Infected with: Trojan.Peflog.30 C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>bpki.dll Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>bpki.dll Deleted C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>bpkwb.dll Infected with: Generic.Perfloger.95DBD4B7 C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>bpkwb.dll Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>bpkwb.dll Deleted C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>bpkr.exe Infected with: Trojan.Spy.Perfloger.AB C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>bpkr.exe Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>bpkr.exe Deleted C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>inst.bin Infected with: Trojan.Perflog.Mod.RAR C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>inst.bin Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o)=>inst.bin Deleted C:\Documents and Settings\en cas de probelme\Mes documents\leroi\i_bpk2007.exe=>(RAR Sfx o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\setup_akl.exe=>(NSIS o)=>lzma_solid_nsis0005 Infected with: Trojan.Keylog.Ardamax.NAH C:\Documents and Settings\en cas de probelme\Mes documents\leroi\setup_akl.exe=>(NSIS o)=>lzma_solid_nsis0005 Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\setup_akl.exe=>(NSIS o)=>lzma_solid_nsis0005 Deleted C:\Documents and Settings\en cas de probelme\Mes documents\leroi\setup_akl.exe=>(NSIS o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\setup_akl.exe=>(NSIS o)=>lzma_solid_nsis0006 Infected with: Trojan.Keylog.Ardamax.NAH C:\Documents and Settings\en cas de probelme\Mes documents\leroi\setup_akl.exe=>(NSIS o)=>lzma_solid_nsis0006 Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\setup_akl.exe=>(NSIS o)=>lzma_solid_nsis0006 Deleted C:\Documents and Settings\en cas de probelme\Mes documents\leroi\setup_akl.exe=>(NSIS o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\setup_akl.exe=>(NSIS o)=>lzma_solid_nsis0007 Infected with: Trojan.Keylog.Ardamax.NAH C:\Documents and Settings\en cas de probelme\Mes documents\leroi\setup_akl.exe=>(NSIS o)=>lzma_solid_nsis0007 Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\setup_akl.exe=>(NSIS o)=>lzma_solid_nsis0007 Deleted C:\Documents and Settings\en cas de probelme\Mes documents\leroi\setup_akl.exe=>(NSIS o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\setup_akl.exe=>(NSIS o)=>lzma_solid_nsis0008 Infected with: Trojan.Keylog.Ardamax.NAJ C:\Documents and Settings\en cas de probelme\Mes documents\leroi\setup_akl.exe=>(NSIS o)=>lzma_solid_nsis0008 Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\setup_akl.exe=>(NSIS o)=>lzma_solid_nsis0008 Deleted C:\Documents and Settings\en cas de probelme\Mes documents\leroi\setup_akl.exe=>(NSIS o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\setup_akl.exe=>(NSIS o)=>lzma_solid_nsis0009 Infected with: Trojan.Keylog.Ardamax.NAI C:\Documents and Settings\en cas de probelme\Mes documents\leroi\setup_akl.exe=>(NSIS o)=>lzma_solid_nsis0009 Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\setup_akl.exe=>(NSIS o)=>lzma_solid_nsis0009 Deleted C:\Documents and Settings\en cas de probelme\Mes documents\leroi\setup_akl.exe=>(NSIS o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\setup_akl.exe=>(NSIS o)=>lzma_solid_nsis0010 Infected with: Trojan.Keylog.Ardamax.NAH C:\Documents and Settings\en cas de probelme\Mes documents\leroi\setup_akl.exe=>(NSIS o)=>lzma_solid_nsis0010 Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\setup_akl.exe=>(NSIS o)=>lzma_solid_nsis0010 Deleted C:\Documents and Settings\en cas de probelme\Mes documents\leroi\setup_akl.exe=>(NSIS o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Spyware_doctor_V3_3.0_serial_number.txt.exe=>(RAR Sfx o)=>patch.exe Infected with: Trojan.Mezzia.CY C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Spyware_doctor_V3_3.0_serial_number.txt.exe=>(RAR Sfx o)=>patch.exe Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Spyware_doctor_V3_3.0_serial_number.txt.exe=>(RAR Sfx o)=>patch.exe Deleted C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Spyware_doctor_V3_3.0_serial_number.txt.exe=>(RAR Sfx o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Spyware_doctor_V3_3.0_serial_number.txt.exe=>(RAR Sfx o)=>crack.exe Infected with: Trojan.Downloader.LoadAdv.XXA C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Spyware_doctor_V3_3.0_serial_number.txt.exe=>(RAR Sfx o)=>crack.exe Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Spyware_doctor_V3_3.0_serial_number.txt.exe=>(RAR Sfx o)=>crack.exe Deleted C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Spyware_doctor_V3_3.0_serial_number.txt.exe=>(RAR Sfx o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Spyware_Doctor_v3_serial_number.txt.exe=>(RAR Sfx o)=>patch.exe Infected with: Trojan.Mezzia.CY C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Spyware_Doctor_v3_serial_number.txt.exe=>(RAR Sfx o)=>patch.exe Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Spyware_Doctor_v3_serial_number.txt.exe=>(RAR Sfx o)=>patch.exe Deleted C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Spyware_Doctor_v3_serial_number.txt.exe=>(RAR Sfx o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Spyware_Doctor_v3_serial_number.txt.exe=>(RAR Sfx o)=>crack.exe Infected with: Trojan.Downloader.LoadAdv.XXA C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Spyware_Doctor_v3_serial_number.txt.exe=>(RAR Sfx o)=>crack.exe Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Spyware_Doctor_v3_serial_number.txt.exe=>(RAR Sfx o)=>crack.exe Deleted C:\Documents and Settings\en cas de probelme\Mes documents\leroi\Spyware_Doctor_v3_serial_number.txt.exe=>(RAR Sfx o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\mes photos pour le gloire.Zip=>inst_svt.exe=>(RAR Sfx o)=>lolhk.dll=>(Quarantine-PE) Infected with: Generic.Perfloger.F820D235 C:\Documents and Settings\en cas de probelme\Mes documents\mes photos pour le gloire.Zip=>inst_svt.exe=>(RAR Sfx o)=>lolhk.dll=>(Quarantine-PE) Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\mes photos pour le gloire.Zip=>inst_svt.exe=>(RAR Sfx o)=>lolhk.dll=>(Quarantine-PE) Deleted C:\Documents and Settings\en cas de probelme\Mes documents\mes photos pour le gloire.Zip=>inst_svt.exe=>(RAR Sfx o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\mes photos pour le gloire.Zip=>inst_svt.exe=>(RAR Sfx o)=>lolwb.dll=>(Quarantine-PE) Infected with: Generic.Perfloger.95DBD4B7 C:\Documents and Settings\en cas de probelme\Mes documents\mes photos pour le gloire.Zip=>inst_svt.exe=>(RAR Sfx o)=>lolwb.dll=>(Quarantine-PE) Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\mes photos pour le gloire.Zip=>inst_svt.exe=>(RAR Sfx o)=>lolwb.dll=>(Quarantine-PE) Deleted C:\Documents and Settings\en cas de probelme\Mes documents\mes photos pour le gloire.Zip=>inst_svt.exe=>(RAR Sfx o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\mes photos pour le gloire.Zip=>inst_svt.exe=>(RAR Sfx o)=>lol.exe=>(Quarantine-PE) Infected with: Generic.Keylogger.392D2A35 C:\Documents and Settings\en cas de probelme\Mes documents\mes photos pour le gloire.Zip=>inst_svt.exe=>(RAR Sfx o)=>lol.exe=>(Quarantine-PE) Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\mes photos pour le gloire.Zip=>inst_svt.exe=>(RAR Sfx o)=>lol.exe=>(Quarantine-PE) Deleted C:\Documents and Settings\en cas de probelme\Mes documents\mes photos pour le gloire.Zip=>inst_svt.exe=>(RAR Sfx o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\mes photos pour le gloire.Zip=>inst_svt.exe=>(RAR Sfx o)=>rinst.exe Infected with: Trojan.Spy.Perfloger.AB C:\Documents and Settings\en cas de probelme\Mes documents\mes photos pour le gloire.Zip=>inst_svt.exe=>(RAR Sfx o)=>rinst.exe Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\mes photos pour le gloire.Zip=>inst_svt.exe=>(RAR Sfx o)=>rinst.exe Deleted C:\Documents and Settings\en cas de probelme\Mes documents\mes photos pour le gloire.Zip=>inst_svt.exe=>(RAR Sfx o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\OFFICE One Zip\Ardamax2.7_www.downlivre.blogspot.com\install_Ardamax Keylogger 2.7.exe=>(NSIS o)=>lzma_solid_nsis0005 Suspected of: Spyware.Ardamax.27 C:\Documents and Settings\en cas de probelme\Mes documents\OFFICE One Zip\Ardamax2.7_www.downlivre.blogspot.com\install_Ardamax Keylogger 2.7.exe=>(NSIS o)=>lzma_solid_nsis0005 Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\OFFICE One Zip\Ardamax2.7_www.downlivre.blogspot.com\install_Ardamax Keylogger 2.7.exe=>(NSIS o)=>lzma_solid_nsis0005 Deleted C:\Documents and Settings\en cas de probelme\Mes documents\OFFICE One Zip\Ardamax2.7_www.downlivre.blogspot.com\install_Ardamax Keylogger 2.7.exe=>(NSIS o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\OFFICE One Zip\Ardamax2.7_www.downlivre.blogspot.com\install_Ardamax Keylogger 2.7.exe=>(NSIS o)=>lzma_solid_nsis0009 Infected with: Trojan.Dropper.Agent.BCW C:\Documents and Settings\en cas de probelme\Mes documents\OFFICE One Zip\Ardamax2.7_www.downlivre.blogspot.com\install_Ardamax Keylogger 2.7.exe=>(NSIS o)=>lzma_solid_nsis0009 Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\OFFICE One Zip\Ardamax2.7_www.downlivre.blogspot.com\install_Ardamax Keylogger 2.7.exe=>(NSIS o)=>lzma_solid_nsis0009 Deleted C:\Documents and Settings\en cas de probelme\Mes documents\OFFICE One Zip\Ardamax2.7_www.downlivre.blogspot.com\install_Ardamax Keylogger 2.7.exe=>(NSIS o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\OFFICE One Zip\mes photos pour le gloire\inst_svt.exe=>(RAR Sfx o)=>lolhk.dll=>(Quarantine-PE) Infected with: Generic.Perfloger.F820D235 C:\Documents and Settings\en cas de probelme\Mes documents\OFFICE One Zip\mes photos pour le gloire\inst_svt.exe=>(RAR Sfx o)=>lolhk.dll=>(Quarantine-PE) Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\OFFICE One Zip\mes photos pour le gloire\inst_svt.exe=>(RAR Sfx o)=>lolhk.dll=>(Quarantine-PE) Deleted C:\Documents and Settings\en cas de probelme\Mes documents\OFFICE One Zip\mes photos pour le gloire\inst_svt.exe=>(RAR Sfx o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\OFFICE One Zip\mes photos pour le gloire\inst_svt.exe=>(RAR Sfx o)=>lolwb.dll=>(Quarantine-PE) Infected with: Generic.Perfloger.95DBD4B7 C:\Documents and Settings\en cas de probelme\Mes documents\OFFICE One Zip\mes photos pour le gloire\inst_svt.exe=>(RAR Sfx o)=>lolwb.dll=>(Quarantine-PE) Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\OFFICE One Zip\mes photos pour le gloire\inst_svt.exe=>(RAR Sfx o)=>lolwb.dll=>(Quarantine-PE) Deleted C:\Documents and Settings\en cas de probelme\Mes documents\OFFICE One Zip\mes photos pour le gloire\inst_svt.exe=>(RAR Sfx o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\OFFICE One Zip\mes photos pour le gloire\inst_svt.exe=>(RAR Sfx o)=>lol.exe=>(Quarantine-PE) Infected with: Generic.Keylogger.392D2A35 C:\Documents and Settings\en cas de probelme\Mes documents\OFFICE One Zip\mes photos pour le gloire\inst_svt.exe=>(RAR Sfx o)=>lol.exe=>(Quarantine-PE) Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\OFFICE One Zip\mes photos pour le gloire\inst_svt.exe=>(RAR Sfx o)=>lol.exe=>(Quarantine-PE) Deleted C:\Documents and Settings\en cas de probelme\Mes documents\OFFICE One Zip\mes photos pour le gloire\inst_svt.exe=>(RAR Sfx o) Update failed C:\Documents and Settings\en cas de probelme\Mes documents\OFFICE One Zip\mes photos pour le gloire\inst_svt.exe=>(RAR Sfx o)=>rinst.exe Infected with: Trojan.Spy.Perfloger.AB C:\Documents and Settings\en cas de probelme\Mes documents\OFFICE One Zip\mes photos pour le gloire\inst_svt.exe=>(RAR Sfx o)=>rinst.exe Disinfection failed C:\Documents and Settings\en cas de probelme\Mes documents\OFFICE One Zip\mes photos pour le gloire\inst_svt.exe=>(RAR Sfx o)=>rinst.exe Deleted C:\Documents and Settings\en cas de probelme\Mes documents\OFFICE One Zip\mes photos pour le gloire\inst_svt.exe=>(RAR Sfx o) Update failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP544\A0178775.exe Infected with: Trojan.Keylog.Ardamax.NAF C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP544\A0178775.exe Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP544\A0178775.exe Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP544\A0178784.exe Suspected of: BehavesLike:Win32.Malware C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP544\A0178784.exe Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP544\A0178784.exe Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP544\A0178785.exe Infected with: Trojan.Vundo.DSF C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP544\A0178785.exe Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP544\A0178785.exe Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP545\A0179790.dll Infected with: Trojan.Vundo.DRQ C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP545\A0179790.dll Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP545\A0179790.dll Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP545\A0179801.dll Infected with: Trojan.Vundo.DSF C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP545\A0179801.dll Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP545\A0179801.dll Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP545\A0180832.exe Infected with: Trojan.Downloader.Agent.YWO C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP545\A0180832.exe Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP545\A0181813.exe Suspected of: BehavesLike:Win32.Malware C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP545\A0181813.exe Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP545\A0181813.exe Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP545\A0181815.exe Suspected of: BehavesLike:Win32.Malware C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP545\A0181815.exe Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP545\A0181815.exe Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP545\A0181816.exe Infected with: Trojan.Downloader.Agent.YXR C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP545\A0181816.exe Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP545\A0181816.exe Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP545\A0183808.exe Infected with: Trojan.Downloader.Agent.YXR C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP545\A0183808.exe Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP545\A0183808.exe Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP547\A0184837.dll Infected with: Trojan.Vundo.DRQ C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP547\A0184837.dll Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP547\A0184837.dll Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP548\A0185847.exe Infected with: Trojan.Downloader.Agent.YXR C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP548\A0185847.exe Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP548\A0185847.exe Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP548\A0185860.exe Infected with: Trojan.Agent.AFSZ C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP548\A0185860.exe Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP548\A0185860.exe Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP548\A0185862.exe Infected with: Trojan.Keylog.Ardamax.NAH C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP548\A0185862.exe Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP548\A0185862.exe Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP549\A0186837.dll Infected with: Trojan.Vundo.DRQ C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP549\A0186837.dll Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP549\A0186837.dll Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP549\A0189837.dll Infected with: Trojan.Vundo.DRQ C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP549\A0189837.dll Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP549\A0189837.dll Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP553\A0190327.dll Infected with: Trojan.Vundo.DRQ C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP553\A0190327.dll Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP553\A0190327.dll Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP553\A0190367.exe Infected with: Trojan.Downloader.Agent.YXR C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP553\A0190367.exe Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP553\A0190367.exe Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP553\A0190373.dll Infected with: MemScan:Trojan.Mezzia.XC C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP553\A0190373.dll Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP554\A0190390.exe Suspected of: BehavesLike:Win32.Malware C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP554\A0190390.exe Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP554\A0190390.exe Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP554\A0190395.dll Infected with: Trojan.Vundo.DRQ C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP554\A0190395.dll Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP554\A0190395.dll Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP554\A0190403.exe Infected with: Trojan.Downloader.Agent.YXR C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP554\A0190403.exe Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP554\A0190403.exe Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP554\A0190411.exe Infected with: Trojan.Agent.AFSZ C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP554\A0190411.exe Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP554\A0190411.exe Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP554\A0190413.exe Infected with: Trojan.Keylog.Ardamax.NAH C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP554\A0190413.exe Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP554\A0190413.exe Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP554\A0190427.dll Infected with: Trojan.Vundo.DRQ C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP554\A0190427.dll Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP554\A0190427.dll Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP555\A0190929.exe Infected with: Trojan.Generic.73311 C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP555\A0190929.exe Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP555\A0190929.exe Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP555\A0190936.exe Infected with: Trojan.Downloader.Purityscan.EN C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP555\A0190936.exe Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP555\A0190936.exe Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191327.dll Infected with: Trojan.Vundo.DRQ C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191327.dll Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191327.dll Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191429.dll Infected with: Trojan.Vundo.DRQ C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191429.dll Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191429.dll Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191430.dll Infected with: Trojan.Vundo.DRQ C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191430.dll Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191430.dll Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191439.exe Infected with: Trojan.Downloader.Agent.BUO C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191439.exe Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191439.exe Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191441.exe Infected with: Generic.Keylogger.392D2A35 C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191441.exe Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191441.exe Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191442.dll Infected with: Generic.Perfloger.F820D235 C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191442.dll Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191442.dll Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191443.dll Infected with: Trojan.Peflog.30 C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191443.dll Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191443.dll Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191444.exe Infected with: Generic.Perfloger.769934F5 C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191444.exe Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191444.exe Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191445.exe Infected with: Generic.Perfloger.4DA74D2B C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191445.exe Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191445.exe Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191446.dll Infected with: Generic.Perfloger.95DBD4B7 C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191446.dll Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191446.dll Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191447.config Suspected of: Trojan.Downloader.MSIL.B C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191447.config Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191447.config Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191448.exe Infected with: Trojan.Keylog.Ardamax.NAH C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191448.exe Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191448.exe Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191449.exe Infected with: Trojan.Generic.78149 C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191449.exe Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191449.exe Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191450.exe Suspected of: BehavesLike:Win32.Malware C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191450.exe Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191450.exe Deleted C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191451.exe Detected with: Application.PWCrack.Brutus.A C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191451.exe Disinfection failed C:\System Volume Information\_restore{A6AB8BA9-9C3E-426A-BD2C-2365A869643C}\RP557\A0191451.exe Deleted C:\WINDOWS\28463\VWLP.006 Infected with: Trojan.Keylog.Ardamax.NAF C:\WINDOWS\28463\VWLP.006 Disinfection failed C:\WINDOWS\28463\VWLP.006 Deleted C:\WINDOWS\b138.exe Infected with: Trojan.Downloader.Agent.BHU C:\WINDOWS\b138.exe Disinfection failed C:\WINDOWS\b138.exe Deleted C:\WINDOWS\csrss.exe Infected with: Trojan.Agent.AGAP C:\WINDOWS\csrss.exe Disinfection failed C:\WINDOWS\csrss.exe Deleted C:\WINDOWS\Fonts\'\00jj99uuii66ddxxqqq.zip=>Crack.exe Infected with: Trojan.Agent.AFSZ C:\WINDOWS\Fonts\'\00jj99uuii66ddxxqqq.zip=>Crack.exe Disinfection failed C:\WINDOWS\Fonts\'\00jj99uuii66ddxxqqq.zip=>Crack.exe Deleted C:\WINDOWS\Fonts\'\00jj99uuii66ddxxqqq.zip Updated C:\WINDOWS\Fonts\a.zip=>Crack.exe Infected with: Trojan.Agent.AFSZ C:\WINDOWS\Fonts\a.zip=>Crack.exe Disinfection failed C:\WINDOWS\Fonts\a.zip=>Crack.exe Deleted C:\WINDOWS\Fonts\a.zip Updated C:\WINDOWS\Fonts\Crack.exe Infected with: Trojan.Agent.AFSZ C:\WINDOWS\Fonts\Crack.exe Disinfection failed C:\WINDOWS\Fonts\Crack.exe Deleted C:\WINDOWS\Fonts\svchost.exe~ Infected with: Trojan.Agent.AFSZ C:\WINDOWS\Fonts\svchost.exe~ Disinfection failed C:\WINDOWS\Fonts\svchost.exe~ Deleted C:\WINDOWS\mrofinu1188.exe Infected with: Trojan.Downloader.Agent.YXR C:\WINDOWS\mrofinu1188.exe Disinfection failed C:\WINDOWS\mrofinu1188.exe Deleted C:\WINDOWS\mrofinu1188.exe.tmp Infected with: Trojan.Downloader.Agent.YXR C:\WINDOWS\mrofinu1188.exe.tmp Disinfection failed C:\WINDOWS\mrofinu1188.exe.tmp Deleted C:\WINDOWS\system32\byxvsqr.dll Infected with: Trojan.Vundo.DSF C:\WINDOWS\system32\byxvsqr.dll Disinfection failed C:\WINDOWS\system32\byxvsqr.dll Deleted C:\WINDOWS\system32\fyjobgjp.dll Infected with: Trojan.Vundo.DRQ C:\WINDOWS\system32\fyjobgjp.dll Disinfection failed C:\WINDOWS\system32\fyjobgjp.dll Delete failed C:\WINDOWS\system32\iiffdcb.dll Infected with: Trojan.Vundo.DSF C:\WINDOWS\system32\iiffdcb.dll Disinfection failed C:\WINDOWS\system32\iiffdcb.dll Deleted C:\WINDOWS\system32\pmnllki.dll Infected with: Trojan.Vundo.DSF C:\WINDOWS\system32\pmnllki.dll Disinfection failed C:\WINDOWS\system32\pmnllki.dll Deleted C:\WINDOWS\system32\setup.exe.tmp Infected with: Trojan.Downloader.Vb.ABH C:\WINDOWS\system32\setup.exe.tmp Disinfection failed C:\WINDOWS\system32\setup.exe.tmp Deleted C:\WINDOWS\system32\Sys32\YTBS.exe Suspected of: Spyware.Ardamax.27 C:\WINDOWS\system32\Sys32\YTBS.exe Disinfection failed C:\WINDOWS\system32\Sys32\YTBS.exe Deleted C:\WINDOWS\system32\thhdcucs.dll Infected with: Trojan.Vundo.DRQ C:\WINDOWS\system32\thhdcucs.dll Disinfection failed C:\WINDOWS\system32\thhdcucs.dll Deleted C:\WINDOWS\system32\winhoo32.dll Infected with: MemScan:Trojan.Mezzia.XC C:\WINDOWS\system32\winhoo32.dll Disinfection failed C:\WINDOWS\system32\winhoo32.dll Delete failed C:\WINDOWS\system32\wvuvsqq.dll Infected with: Trojan.Vundo.DSF C:\WINDOWS\system32\wvuvsqq.dll Disinfection failed C:\WINDOWS\system32\wvuvsqq.dll Delete failed C:\WINDOWS\uninstall_nmon.vbs Infected with: Trojan.Small.WY C:\WINDOWS\uninstall_nmon.vbs Disinfection failed C:\WINDOWS\uninstall_nmon.vbs Deleted |
|
Bonjour Cyril
BitDefender on line a fait du ménage, mais je ne pense pas qu'il suffira pour détruire Vundo / Coonhook qui sont sur ton PC : Je te conseille d'enregistrer la page en sélectionnant toutes les lignes puis de copier cette sélection dans un fichier texte sur ton PC pour pouvoir appliquer la procédure correctement. (Note: tu n'auras pas accès à Internet à partir du moment ou te redémarreras en mode sans échec) Il faut exécuter toutes les étapes, sans interruption, dans l'ordre exact indiqué ci-dessous. Si un élément te paraît obscur, demande des explications avant de commencer la désinfection 1) Télécharge * Combofix.exe de sUBs sur ton Bureau --> http://download.bleepingcomputer.com/sUBs/ComboFix.exe N'y touche pas pour le moment. * VundoFix.exe par Atribune --> http://www.atribune.org/content/view/24/2/ sur ton Bureau. 2) VundoFix.exe par Atribune * Double-clique sur VundoFix.exe afin de le lancer * Clique sur le bouton Scan for Vundo * Lorsque le scan est terminé, clique sur le bouton Remove Vundo * Une invite te demandera si tu veux supprimer les fichiers, clique YES * Après avoir cliqué "Yes", le Bureau disparaîtra un moment lors de la suppression des fichiers * Tu verras une invite qui t'annonce que ton PC va redémarrer; clique sur OK Note: Il est possible que VundoFix soit confronté à un fichier qu'il ne peut supprimer. Si tel est le cas, l'outil se lancera au prochain redémarrage; il faut simplement suivre les instructions ci-haut, à partir de "clique sur le bouton Scan for Vundo". 3) Combofix.exe de sUBs Déconnecte toi du net et désactive ton antivirus pour que Combofix puisse s'exécuter normalement Double clique sur Combofix.exe Mets le en langue française F Tape sur la touche 1 (Yes) pour démarrer le scan Lorsque le scan sera terminé, un rapport apparaîtra. 4) Rapports : Poste en réponse : * Le rapport VundoFix situé dans C:\vundofix.txt * Le rapport de ComboFix qui se se trouve là : C:\Combofix.txt+ * Un nouveau rapport HijackThis. @ suivre |
ouais arreter de vous battre mais j'utilisent la methode a qui? |
bonsoir c'est regle ! lol suis post 7 mes amities |
ma tenter celui du sioux
DSL on a pa le memefuseau horair moi chui du quebec je supose que vous etes de france |
|