Vraiment désolé de m'impatienter autant mais comme je dois travailler sur un logiciel de programmatin (eclipse) et que j'ai un devoir a faire pour mardi,j'étais un peu paniqué...
Donc je n'écris plus rien dans l'autre topic et je vous colle ce que j'ai fait Encore pardon, surtout que votre site est génial donc excusez mon impatience..
Bonjour,
J'ai posté un message hier et je n'ai obtenu aucune réponse lors de mon dernier rapport avec HJT et Combofix.
Voila j'ai exécuter vundofix et j'ai envoyé un rapport vundofix et HJT, on m'a alors recommandé d'exécuter Combofix, ce que j'ai fait mais j'avais oublié de désactiver mes 2 antivirus et mon pare-feu alors j'ai réintérer l'exécution ce matin dont voici le rapport :
ComboFix 08-03-01.3 - Juliette 2008-03-02 10:34:12.2 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.328 [GMT 1:00]
Endroit: C:\Documents and Settings\Juliette\Bureau\ComboFix.exe
[color=red][b]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !!/b/color
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\WINDOWS\Nircmd.exe
C:\WINDOWS\system32\cyoihimv.dll
C:\WINDOWS\system32\wutfntrb.dll
F:\MS32DLL.dll.vbs
.
((((((((((((((((((((((((((((( Fichiers créés 2008-02-02 to 2008-03-02 ))))))))))))))))))))))))))))))))))))
.
2008-03-01 20:15 . 2008-03-01 20:31 <REP> d-------- C:\VundoFix Backups
2008-03-01 20:07 . 2008-03-01 20:07 <REP> d-------- C:\Program Files\Trend Micro
2008-03-01 20:07 . 2008-03-01 20:07 15 --a------ C:\WINDOWS\system32\2c486e72
2008-03-01 19:31 . 2008-03-01 19:31 <REP> d-------- C:\Program Files\Avira
2008-03-01 19:31 . 2008-03-01 19:31 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Avira
2008-02-26 12:23 . 2008-02-26 12:23 26,048 --a------ C:\WINDOWS\system32\byxywxy.dll
2008-02-23 17:53 . 2008-02-28 16:49 147 --a------ C:\WINDOWS\BM2f7b4f60.xml
2008-02-23 17:53 . 2008-03-01 19:22 21 --a------ C:\WINDOWS\pskt.ini
2008-02-22 16:36 . 2008-02-22 16:55 <REP> d-------- C:\Documents and Settings\Juliette\Application Data\U3
2008-02-16 03:54 . 2008-02-16 03:58 19,753,395 --a------ C:\smap.tmp0
2008-02-16 03:54 . 2008-02-16 03:58 11,458,995 --a------ C:\smsk.tmp0
2008-02-16 03:20 . 2008-02-16 03:20 <REP> d-------- C:\Program Files\GameTribe
2008-02-04 21:08 . 2008-02-04 21:08 244 --ah----- C:\sqmnoopt02.sqm
2008-02-04 21:08 . 2008-02-04 21:08 232 --ah----- C:\sqmdata02.sqm
2008-02-02 20:39 . 2008-02-02 20:39 <REP> d-------- C:\Documents and Settings\Juliette\Application Data\Cakewalk
2008-02-02 20:37 . 2008-02-02 20:37 <REP> d-------- C:\Program Files\Cakewalk
2008-02-02 20:37 . 2004-05-05 01:00 180,224 --a------ C:\WINDOWS\system32\ReWire.dll
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-03-02 09:18 --------- d-----w C:\Program Files\ESET
2008-02-29 04:27 --------- d-----w C:\Program Files\eMule
2008-02-26 18:42 --------- d-----w C:\Documents and Settings\All Users\Application Data\DVD Shrink
2008-02-26 16:09 --------- d-----w C:\Documents and Settings\Juliette\Application Data\Azureus
2008-02-24 12:40 --------- d-----w C:\Documents and Settings\Juliette\Application Data\LimeWire
2008-02-23 20:05 --------- d-----w C:\Program Files\FlashGet
2008-02-15 20:05 --------- d-----w C:\Program Files\Fichiers communs\Adobe
2008-02-10 20:07 --------- d-----w C:\Program Files\Steam
2008-01-07 18:29 --------- d-----w C:\Program Files\DVD Shrink
2007-12-22 18:54 460,979 ----a-w C:\Documents and Settings\Juliette\data.bin
2007-11-18 11:30 19,176 ----a-w C:\Documents and Settings\Juliette\Application Data\GDIPFONTCACHEV1.DAT
.
------- Sigcheck -------
de43b7f2d8b37ca03f7794bb7f3275f7 C:\WINDOWS\system32\wininet.dll
----a-w 1,220,096 2004-08-03 22:54:46 C:\WINDOWS\system32\wininet.dll
-c--a-w 1,220,096 2004-08-03 22:54:46 C:\WINDOWS\system32\dllcache\wininet.dll
6a603809f598332dbedd535bdbce313e C:\WINDOWS\system32\drivers\tcpip.sys
-c--a-w 359,040 2004-08-03 21:14:42 C:\WINDOWS\system32\dllcache\tcpip.sys
----a-w 359,040 2004-08-03 21:14:42 C:\WINDOWS\system32\drivers\tcpip.sys
90e794c5d2d368686fe71b4a0354462c C:\WINDOWS\explorer.exe
----a-w 1,884,672 2004-08-03 22:54:50 C:\WINDOWS\explorer.exe
-c--a-w 1,884,672 2004-08-03 22:54:50 C:\WINDOWS\system32\dllcache\explorer.exe
.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{09B46D85-5E69-493A-B8D2-A9C89511479C}]
C:\WINDOWS\system32\jkkll.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{eb241123-01b8-47ee-b829-607346d1e5da}]
C:\WINDOWS\system32\hgpgqiqn.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-03 23:54 15360]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-11-20 20:36 68856]
"SteamKeyFr"="C:\Program Files\SteamKeyFr\SteamKeyFr.exe" [2004-01-28 21:49 212992]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 01:11 132496]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 10:50 155648]
"EPSON Stylus DX4800 Series"="C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIADE.exe" [2005-02-02 05:00 98304]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 22:16 39792]
"BM2f7b4f60"="C:\WINDOWS\system32\nttpfrwi.dll" [ ]
"2c487cfc"="C:\WINDOWS\system32\chosupdy.dll" [ ]
"avgnt"="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-03-01 19:34 249896]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-03 23:54 15360]
C:\Documents and Settings\Juliette\Menu D‚marrer\Programmes\D‚marrage\
Stardock ObjectDock.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe [2005-02-21 14:56:00 1826885]
Y'z ToolBar.lnk - C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe [2002-09-29 14:41:00 90112]
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"C:\\Program Files\\MSN Messenger\\livecall.exe"=
"C:\\Program Files\\eMule\\emule.exe"=
"C:\\Program Files\\Azureus\\Azureus.exe"=
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"C:\\Program Files\\Steam\\steamapps\\kilazur\\counter-strike\\hl.exe"=
"C:\\Program Files\\LimeWire\\LimeWire.exe"=
"C:\\WINDOWS\\system32\\dpvsetup.exe"=
"C:\\Program Files\\Java\\jre1.6.0_03\\bin\\javaw.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"80:TCP"= 80:TCP:tcp azureus
"6112:UDP"= 6112:UDP:udp azureus
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f9eaed4e-e15b-11dc-b51c-0008543eb15d}]
\Shell\AutoRun\command - F:\LaunchU3.exe -a
.
**************************************************************************
catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.net
Rootkit scan 2008-03-02 10:35:51
Windows 5.1.2600 Service Pack 2 NTFS
Balayage processus cachés ...
Balayage caché autostart entries ...
Balayage des fichiers cachés ...
Scan terminé avec succès
Les fichiers cachés: 0
**************************************************************************
.
Temps d'accomplissement: 2008-03-02 10:36:51
ComboFix-quarantined-files.txt 2008-03-02 09:36:43
ComboFix2.txt 2008-03-01 21:02:16
Ensuite j'ai exécuter virtumundobegone qui n'a rien signalé et ensuite le scan d'antivir qui m'a re détecter le virus Vundo.gen et voici le rapport :
AntiVir PersonalEdition Classic
Report file date: dimanche 2 mars 2008 10:41
Scanning for 1129035 virus strains and unwanted programs.
Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows XP
Windows version: (Service Pack 2) [5.1.2600]
Username: SYSTEM
Computer name: PCJULIETTE
Version information:
BUILD.DAT : 270 15603 Bytes 19/09/2007 13:32:00
AVSCAN.EXE : 7.0.6.1 290856 Bytes 23/08/2007 13:16:29
AVSCAN.DLL : 7.0.6.0 49192 Bytes 16/08/2007 12:23:51
LUKE.DLL : 7.0.5.3 147496 Bytes 14/08/2007 15:32:47
LUKERES.DLL : 7.0.6.1 10280 Bytes 21/08/2007 12:35:20
ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 14:27:15
ANTIVIR1.VDF : 7.0.1.95 3367424 Bytes 14/12/2007 18:34:57
ANTIVIR2.VDF : 7.0.2.181 1993728 Bytes 24/02/2008 18:34:57
ANTIVIR3.VDF : 7.0.2.215 117248 Bytes 29/02/2008 18:34:57
AVEWIN32.DLL : 7.6.0.73 3334656 Bytes 01/03/2008 18:34:58
AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 10:36:26
AVPREF.DLL : 7.0.2.2 25640 Bytes 18/07/2007 07:39:17
AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 13:16:24
AVPACK32.DLL : 7.6.0.3 360488 Bytes 01/03/2008 18:34:58
AVREG.DLL : 7.0.1.6 30760 Bytes 18/07/2007 07:17:06
AVARKT.DLL : 1.0.0.20 278568 Bytes 28/08/2007 12:26:33
AVEVTLOG.DLL : 7.0.0.20 86056 Bytes 18/07/2007 07:10:18
NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 11:09:42
RCIMAGE.DLL : 7.0.1.30 2342952 Bytes 07/08/2007 12:38:13
RCTEXT.DLL : 7.0.62.0 86056 Bytes 21/08/2007 12:50:37
SQLITE3.DLL : 3.3.17.1 339968 Bytes 23/07/2007 09:37:21
Configuration settings for the scan:
Jobname..........................: Complete system scan
Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: off
Scan boot sector.................: on
Boot sectors.....................: E:,
Scan memory......................: on
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: Intelligent file selection
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium
Start of the scan: dimanche 2 mars 2008 10:41
The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'wuauclt.exe' - '1' Module(s) have been scanned
Scan process 'alg.exe' - '1' Module(s) have been scanned
Scan process 'devldr32.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'mdm.exe' - '1' Module(s) have been scanned
Scan process 'ObjectDock.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'SteamKeyFr.exe' - '1' Module(s) have been scanned
Scan process 'GoogleToolbarNotifier.exe' - '1' Module(s) have been scanned
Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'E_FATIADE.EXE' - '1' Module(s) have been scanned
Scan process 'jusched.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
28 processes with 28 modules were scanned
Start scanning boot sectors:
Boot sector 'C:\'
[NOTE] No virus was found!
Boot sector 'E:\'
[NOTE] No virus was found!
Starting to scan the registry.
The registry was scanned ( '23' files ).
Starting the file scan:
Begin scan in 'C:\'
C:\hiberfil.sys
[WARNING] The file could not be opened!
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\QooBox\Quarantine\catchme2008-03-01_215947.78.zip
[0] Archive type: ZIP
--> MS32DLL.dll.vbs
[DETECTION] Contains detection pattern of the VBS script virus VBS/IETitle.C
[INFO] The file was moved to '483e7ab7.qua'!
C:\QooBox\Quarantine\C\WINDOWS\system32\cyoihimv.dll.vir
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was deleted!
C:\QooBox\Quarantine\C\WINDOWS\system32\wutfntrb.dll.vir
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was deleted!
C:\QooBox\Quarantine\C\WINDOWS\system32\ygckhiqs.dll.vir
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was deleted!
C:\QooBox\Quarantine\C\WINDOWS\system32\ylsgssdf.dll.vir
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was deleted!
C:\System Volume Information\_restore{6541CB06-8D60-433D-8AEA-037CED5A4059}\RP101\A0019698.dll
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '47fa7ac2.qua'!
C:\System Volume Information\_restore{6541CB06-8D60-433D-8AEA-037CED5A4059}\RP101\A0020698.dll
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[WARNING] The file was ignored!
C:\System Volume Information\_restore{6541CB06-8D60-433D-8AEA-037CED5A4059}\RP103\A0021740.dll
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[WARNING] The file was ignored!
C:\System Volume Information\_restore{6541CB06-8D60-433D-8AEA-037CED5A4059}\RP103\A0021747.dll
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[WARNING] The file was ignored!
C:\System Volume Information\_restore{6541CB06-8D60-433D-8AEA-037CED5A4059}\RP103\A0021748.dll
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '47fa7ae6.qua'!
C:\System Volume Information\_restore{6541CB06-8D60-433D-8AEA-037CED5A4059}\RP103\A0021749.dll
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '47fa7af6.qua'!
C:\System Volume Information\_restore{6541CB06-8D60-433D-8AEA-037CED5A4059}\RP103\A0021750.dll
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '47fa7b12.qua'!
C:\System Volume Information\_restore{6541CB06-8D60-433D-8AEA-037CED5A4059}\RP103\A0021751.dll
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '47fa7b24.qua'!
C:\System Volume Information\_restore{6541CB06-8D60-433D-8AEA-037CED5A4059}\RP103\A0021752.dll
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '47fa7b33.qua'!
C:\System Volume Information\_restore{6541CB06-8D60-433D-8AEA-037CED5A4059}\RP103\A0021753.dll
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '436cdfd4.qua'!
C:\System Volume Information\_restore{6541CB06-8D60-433D-8AEA-037CED5A4059}\RP103\A0021754.dll
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '47fa7b35.qua'!
C:\System Volume Information\_restore{6541CB06-8D60-433D-8AEA-037CED5A4059}\RP103\A0021756.dll
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '47fa7b34.qua'!
C:\System Volume Information\_restore{6541CB06-8D60-433D-8AEA-037CED5A4059}\RP103\A0021757.dll
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '436cdfd5.qua'!
C:\System Volume Information\_restore{6541CB06-8D60-433D-8AEA-037CED5A4059}\RP103\A0021758.dll
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '47fa7b36.qua'!
C:\System Volume Information\_restore{6541CB06-8D60-433D-8AEA-037CED5A4059}\RP104\A0021776.dll
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '436cdfd6.qua'!
C:\System Volume Information\_restore{6541CB06-8D60-433D-8AEA-037CED5A4059}\RP104\A0021777.dll
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '47fa7b37.qua'!
C:\System Volume Information\_restore{6541CB06-8D60-433D-8AEA-037CED5A4059}\RP104\A0021919.dll
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '47fa7b3a.qua'!
C:\System Volume Information\_restore{6541CB06-8D60-433D-8AEA-037CED5A4059}\RP104\A0021920.dll
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '436cdfdb.qua'!
C:\System Volume Information\_restore{6541CB06-8D60-433D-8AEA-037CED5A4059}\RP99\A0017565.dll
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '47fa7b5f.qua'!
C:\System Volume Information\_restore{6541CB06-8D60-433D-8AEA-037CED5A4059}\RP99\A0017566.dll
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '47fa7b60.qua'!
C:\System Volume Information\_restore{6541CB06-8D60-433D-8AEA-037CED5A4059}\RP99\A0018565.dll
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '436cdf81.qua'!
C:\VundoFix Backups\bcmegfgm.dll.bad
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '48377b97.qua'!
C:\VundoFix Backups\bhsmedxf.dll.bad
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '483d7b9d.qua'!
C:\VundoFix Backups\chosupdy.dll.bad
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '48397b9d.qua'!
C:\VundoFix Backups\flwasdhl.dll.bad
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '48417ba1.qua'!
C:\VundoFix Backups\ftreicjq.dll.bad
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '483c7baa.qua'!
C:\VundoFix Backups\hbygvqkn.dll.bad
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '48437b98.qua'!
C:\VundoFix Backups\hgpgqiqn.dll.bad
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '483a7b9d.qua'!
C:\VundoFix Backups\jkkll.dll.bad
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '48357ba2.qua'!
C:\VundoFix Backups\nttpfrwi.dll.bad
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '483e7bab.qua'!
C:\VundoFix Backups\qftlegnu.dll.bad
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '483e7b9d.qua'!
C:\VundoFix Backups\wryudchu.dll.bad
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to '48437baa.qua'!
Begin scan in 'E:\'
End of the scan: dimanche 2 mars 2008 11:21
Used time: 40:06 min
The scan has been done completely.
3649 Scanning directories
251307 Files were scanned
37 viruses and/or unwanted programs were found
0 Files were classified as suspicious:
4 files were deleted
0 files were repaired
30 files were moved to quarantine
0 files were renamed
2 Files cannot be scanned
251270 Files not concerned
1653 Archives were scanned
5 Warnings
1 Notes
