Sujet Précédent Sujet Suivant

Problème cheval de troie

Résolu/Fermé
ktherine Messages postés 20 Date d'inscription mardi 10 avril 2007 Statut Membre Dernière intervention 6 juillet 2008 - 10 avril 2007 à 00:43
 Utilisateur anonyme - 20 avril 2007 à 01:19
bonjour j ai des soucis avast me trouve cheval de troie en pagaille ainsi que Generic hst Services, qui me supprime le son..

MERCI DEVOTRE AIDE ET DE VOS CONSEILS....

Logfile of HijackThis v1.99.1
Scan saved at 00:37:07, on 10/04/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\RunDll32.exe
C:\WINDOWS\htpatch.exe
C:\WINDOWS\system32\scwqgny.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\efwuwlum.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://google.icq.com/search/search_frame.php
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://google.icq.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
R3 - URLSearchHook: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\toolbaru.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: ICQ Toolbar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQToolbar\toolbaru.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [HTpatch] C:\WINDOWS\htpatch.exe
O4 - HKLM\..\Run: [IMEKRMIG6.1] C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE
O4 - HKLM\..\Run: [Windows Explorer] C:\WINDOWS\system32\explorer.exe
O4 - HKLM\..\Run: [Advanced DHTML Enable] C:\WINDOWS\system32\efwuwlum.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: &ICQ Toolbar Search - res://C:\Program Files\ICQToolbar\toolbaru.dll/SEARCH.HTML
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedContent/vc/bin/AvSniff.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)

kat

8 réponses

Réponse 1 / 8
balboa Messages postés 2 Date d'inscription mardi 10 avril 2007 Statut Membre Dernière intervention 10 avril 2007
10 avril 2007 à 02:27
slt! je viens d'avoir le meme maudit virus! trojan horse ki ouvre plien de fenétres de pub sur mon ordi! j'ai essayer avaste puis norton puis Mcfee! ils le detectent tts mais ils arrive pa a le supprimer!!!!!!!!! ya une solution sVP?????????????
0
Réponse 2 / 8
Utilisateur anonyme
10 avril 2007 à 02:46
Salut

Télécharge et installe AVG anti-spyware : mets le à jour
Tu fais un scan complet de ton système, dès qu'il a fini.
Si il te trouve des espions,supprime les. Enregistre le rapport et colle le ici stp

AVG anti-spyware : reste gratuit après la période d'essai en français
---->http://www.infos-du-net.com/telecharger/Anti-Spyware-AVG,0301-7063.html

Si tu as besoin d'aide avec Ewido(devenu AVG-antispyware) regarde ce tutoriel:
--> http://www.kachouri.com/tuto/tuto-161-avg-anti-spyware-75-pour-votre-securite.html
0
ktherine
10 avril 2007 à 11:03
merci de votre réponse,

j'ai toujours GENERIC HOST PROSSESS for WIN32 services qui se déclenche au bout de 5 minutes... et il me coupe l'audio et l internet aussi 'serveur introuvable"

pour le reste j ai fait ce que vous m'avez dit et voici le rapport :

---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 10:42:18 10/04/2007

+ Résultat de l'analyse:



D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP17\A0008644.exe -> Backdoor.Hupigon : Nettoyé et sauvegardé (mise en quarantaine).
D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP27\A0015708.exe -> Backdoor.Hupigon : Nettoyé et sauvegardé (mise en quarantaine).
C:\WINDOWS\system32\explorer.exe -> Backdoor.PoeBot.o : Nettoyé et sauvegardé (mise en quarantaine).
C:\WINDOWS\system32\asywup.exe -> Proxy.Agent.mf : Nettoyé et sauvegardé (mise en quarantaine).
C:\WINDOWS\system32\iugrqet.exe -> Proxy.Agent.mf : Nettoyé et sauvegardé (mise en quarantaine).
C:\WINDOWS\system32\tmfpnm.exe -> Proxy.Agent.mf : Nettoyé et sauvegardé (mise en quarantaine).
[1572] C:\WINDOWS\system32\iugrqet.exe -> Proxy.Agent.mf : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\GERMAIN\Cookies\germain@247realmedia[2].txt -> TrackingCookie.247realmedia : Nettoyé.
C:\Documents and Settings\GERMAIN\Cookies\germain@bluestreak[2].txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\GERMAIN\Cookies\germain@com[1].txt -> TrackingCookie.Com : Nettoyé.
C:\Documents and Settings\GERMAIN\Cookies\germain@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé.
C:\Documents and Settings\GERMAIN\Cookies\germain@mediaplex[2].txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\GERMAIN\Cookies\germain@ssl-hints.netflame[2].txt -> TrackingCookie.Netflame : Nettoyé.
C:\Documents and Settings\GERMAIN\Cookies\germain@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\GERMAIN\Cookies\germain@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Nettoyé.
D:\Program Files\eMule\LinkCreator.exe -> Worm.Luder.a : Nettoyé et sauvegardé (mise en quarantaine).


Fin du rapport

merci de votre analyse...

dans cette attente
0
ktherine
10 avril 2007 à 12:57
voici le rapport du scan

AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 12:49:07 10/04/2007

+ Résultat de l'analyse:



C:\System Volume Information\_restore{1C1C8F62-C7DE-4268-A513-606E77B6A9C8}\RP6\A0007561.exe -> Backdoor.PoeBot.o : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{1C1C8F62-C7DE-4268-A513-606E77B6A9C8}\RP6\A0007558.exe -> Proxy.Agent.mf : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{1C1C8F62-C7DE-4268-A513-606E77B6A9C8}\RP6\A0007559.exe -> Proxy.Agent.mf : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{1C1C8F62-C7DE-4268-A513-606E77B6A9C8}\RP6\A0007560.exe -> Proxy.Agent.mf : Nettoyé et sauvegardé (mise en quarantaine).
D:\System Volume Information\_restore{1C1C8F62-C7DE-4268-A513-606E77B6A9C8}\RP6\A0007562.exe -> Worm.Luder.a : Nettoyé et sauvegardé (mise en quarantaine).


Fin du rapport



apparemment c est costaud...
0
Réponse 3 / 8
Utilisateur anonyme
10 avril 2007 à 13:06
Merci.

Rends toi sur se site
http://www.virustotal.com/en/virustotalx.html


En haut à droite clic sur "choisir"
Tu vas dans C:, windows, system32 tu cherches le processus ci-dessous et tu clic sur "ouvrir"

C:\WINDOWS\system32\efwuwlum.exe

dès que c'est fait, clic sur "send"
Tu attends un peu qu'il analyse ton fichier ça peut duré plusieurs minutes et colle le rapport ici une fois qu'il a terminé stp

Fais la même chose avec celui-ci

C:\WINDOWS\system32\scwqgny.exe
0
ktherine
10 avril 2007 à 13:37
voici pour le premier

je ferai le second ce soir je pars au boulot

merci encore

STATUS: FINISHEDComplete scanning result of "efwuwlum.exe", received in VirusTotal at 04.10.2007, 13:26:08 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.4.10.0 04.10.2007 no virus found
AntiVir 7.3.1.48 04.10.2007 HEUR/Crypted
Authentium 4.93.8 04.09.2007 no virus found
Avast 4.7.936.0 04.08.2007 no virus found
AVG 7.5.0.447 04.10.2007 no virus found
BitDefender 7.2 04.10.2007 Trojan.Proxy.Ranky.GH
CAT-QuickHeal 9.00 04.09.2007 (Suspicious) - DNAScan
ClamAV devel-20070312 04.10.2007 no virus found
DrWeb 4.33 04.10.2007 Trojan.DownLoader.19425
eSafe 7.0.15.0 04.09.2007 Suspicious Trojan/Worm
eTrust-Vet 30.7.3557 04.10.2007 no virus found
Ewido 4.0 04.10.2007 no virus found
FileAdvisor 1 04.10.2007 no virus found
Fortinet 2.85.0.0 04.10.2007 W32/Agent.MF!tr
F-Prot 4.3.1.45 04.08.2007 no virus found
F-Secure 6.70.13030.0 04.10.2007 Trojan-Proxy.Win32.Agent.mf
Ikarus T3.1.1.5 04.10.2007 no virus found
Kaspersky 4.0.2.24 04.10.2007 Trojan-Proxy.Win32.Agent.mf
McAfee 5004 04.09.2007 no virus found
Microsoft 1.2405 04.10.2007 no virus found
NOD32v2 2176 04.10.2007 probably a variant of Win32/TrojanProxy.Ranky
Norman 5.80.02 04.10.2007 W32/Malware
Panda 9.0.0.4 04.09.2007 Trj/Ranky.SD
Prevx1 V2 04.10.2007 Polynomial.Code.Exploit
Sophos 4.16.0 04.06.2007 no virus found
Sunbelt 2.2.907.0 04.07.2007 VIPRE.Suspicious
Symantec 10 04.10.2007 Backdoor.Trojan
TheHacker 6.1.6.088 04.09.2007 no virus found
VBA32 3.11.3 04.09.2007 Trojan-Proxy.Win32.Agent.mf
VirusBuster 4.3.7:9 04.09.2007 no virus found
Webwasher-Gateway 6.0.1 04.10.2007 Heuristic.Crypted


Aditional Information
File size: 25600 bytes
MD5: 2baec67f4ab2f57161dc3d0a6f391a97
SHA1: 06dc07aa4ca4f3ef3e7ac386b08d5877fd9ce7ca
packers: PECOMPACT, PEPACK
packers: PecBundle, PECompact
norman sandbox: [ General information ]
* **IMPORTANT: PLEASE SEND THE SCANNED FILE TO: ANALYSIS@NORMAN.NO - REMEMBER TO ENCRYPT IT (E.G. ZIP WITH PASSWORD)**.
* Decompressing PEC2.
* File length: 25600 bytes.

[ Changes to registry ]
* Creates value "Advanced DHTML Enable"="c:sample.exe" in key "HKLMSoftwareMicrosoftWindowsCurrentVersionRun".

[ Security issues ]
* Possible backdoor functionality [UNKNOWN] port 20586.

[ Process/window information ]
* Will automatically restart after boot (I'll be back...).


Prevx info: http://fileinfo.prevx.com/fileinfo.asp?PXC=362b87896723
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.
0
ktherine Messages postés 20 Date d'inscription mardi 10 avril 2007 Statut Membre Dernière intervention 6 juillet 2008
10 avril 2007 à 20:42
voici pour le deuxieme

VirusTotalVirusTotal is a free file analisys service that works using several antivirus engines.


Select file : DistributeSSL

Enter your email, choose the file to be scanned with multiple antivirus engines and click Send.Menu:
News Hot news in the virus/antivirus sector.
Estadisticas Statistics of VirusTotal procesing.
Virustotal More info about Virustotal.


STATUS: FINISHEDComplete scanning result of "scwqgny.exe", received in VirusTotal at 04.10.2007, 20:11:43 (CET).

Antivirus Version Update Result
AhnLab-V3 2007.4.10.0 04.10.2007 Win-Trojan/Xema.variant
AntiVir 7.3.1.48 04.10.2007 TR/Proxy.Agent.MF.25
Authentium 4.93.8 04.09.2007 no virus found
Avast 4.7.936.0 04.10.2007 no virus found
AVG 7.5.0.447 04.10.2007 no virus found
BitDefender 7.2 04.10.2007 Trojan.Proxy.Ranky.GH
CAT-QuickHeal 9.00 04.10.2007 (Suspicious) - DNAScan
ClamAV devel-20070312 04.10.2007 no virus found
DrWeb 4.33 04.10.2007 Trojan.DownLoader.19425
eSafe 7.0.15.0 04.10.2007 Suspicious Trojan/Worm
eTrust-Vet 30.7.3557 04.10.2007 no virus found
Ewido 4.0 04.10.2007 no virus found
FileAdvisor 1 04.10.2007 no virus found
Fortinet 2.85.0.0 04.10.2007 W32/Agent.MF!tr
F-Prot 4.3.1.45 04.08.2007 no virus found
F-Secure 6.70.13030.0 04.10.2007 Trojan-Proxy.Win32.Agent.mf
Ikarus T3.1.1.5 04.10.2007 Trojan-Proxy.Win32.Agent.mf
Kaspersky 4.0.2.24 04.10.2007 Trojan-Proxy.Win32.Agent.mf
McAfee 5005 04.10.2007 no virus found
Microsoft 1.2405 04.10.2007 no virus found
NOD32v2 2176 04.10.2007 probably a variant of Win32/TrojanProxy.Ranky
Norman 5.80.02 04.10.2007 W32/Malware
Panda 9.0.0.4 04.09.2007 Trj/Ranky.SD
Prevx1 V2 04.10.2007 Polynomial.Code.Exploit
Sophos 4.16.0 04.06.2007 no virus found
Sunbelt 2.2.907.0 04.07.2007 VIPRE.Suspicious
Symantec 10 04.10.2007 Backdoor.Trojan
TheHacker 6.1.6.088 04.09.2007 no virus found
VBA32 3.11.3 04.09.2007 Trojan-Proxy.Win32.Agent.mf
VirusBuster 4.3.7:9 04.10.2007 no virus found
Webwasher-Gateway 6.0.1 04.10.2007 Trojan.Proxy.Agent.MF.25


Aditional Information
File size: 25600 bytes
MD5: 2baec67f4ab2f57161dc3d0a6f391a97
SHA1: 06dc07aa4ca4f3ef3e7ac386b08d5877fd9ce7ca
packers: PECOMPACT, PEPACK
packers: PecBundle, PECompact
norman sandbox: [ General information ]
* **IMPORTANT: PLEASE SEND THE SCANNED FILE TO: ANALYSIS@NORMAN.NO - REMEMBER TO ENCRYPT IT (E.G. ZIP WITH PASSWORD)**.
* Decompressing PEC2.
* File length: 25600 bytes.

[ Changes to registry ]
* Creates value "Advanced DHTML Enable"="c:sample.exe" in key "HKLMSoftwareMicrosoftWindowsCurrentVersionRun".

[ Security issues ]
* Possible backdoor functionality [UNKNOWN] port 20586.

[ Process/window information ]
* Will automatically restart after boot (I'll be back...).


Prevx info: http://fileinfo.prevx.com/fileinfo.asp?PXC=362b87896723
Sunbelt info: VIPRE.Suspicious is a generic detection for potential threats that are deemed suspicious through heuristics.

VirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.
> Ir a: Inicio Contactar En Español
--------------------------------------------------------------------------------
www.virustotal.com :: ©Hispasec Sistemas 2004-07:: e-mail info@virustotal.com
0
Réponse 4 / 8
Utilisateur anonyme
11 avril 2007 à 00:12
Merci.

Tu peux fonc les supprimer tous les deux :-)


Ensuite :

Désactive le pare-feu de Windows(SP2) il ne sert à rien puis installe celui ci pour plus de sécurité

Kerio (pare-feu) : reste gratuit après la période d'essai en français
----> http://www.infos-du-net.com/telecharger/Firewall-Kerio-Personal,0301-390.html

Regarde ce tutoriel si tu as besoin d'aide pour l'installation et la configuration de Kerio
--> http://kerio.probb.fr/Systemesd-exploitation-c1/Logiciels-et-tutoriels-gratuits-tries-par-categorie-f6/Tutoriel-pour-Kerio-4-version-gratuite-t201.htm

Plus d'info :
->https://kerio.probb.fr/



¤ Fais ce scan anti-virus en ligne avec Internet Explorer, accepte l'active X; la barre anti-popup du SP2(en haut) va se mettre à clignoter, clique dessus et choisit "accepter l'active X" pour faire fonctionner le scan anti-virus.
Une fois qu'il a terminé colle le rapport ici stp

---> https://www.kaspersky.fr/downloads

- Kaspersky Online Scanner
- Accept
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 8
ktherine
11 avril 2007 à 09:41
merci et voici le rapport kapersky

KASPERSKY ONLINE SCANNER REPORT
Wednesday, April 11, 2007 9:38:29 AM
Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.83.0
Kaspersky Anti-Virus database last update: 11/04/2007
Kaspersky Anti-Virus database records: 277601


Scan Settings
Scan using the following antivirus database standard
Scan Archives true
Scan Mail Bases true

Scan Target My Computer
A:\
C:\
D:\
F:\

Scan Statistics
Total number of scanned objects 59710
Number of viruses found 4
Number of infected objects 9 / 0
Number of suspicious objects 0
Duration of the scan process 00:57:48

Infected Object Name Virus Name Last Action
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped

C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped

C:\Documents and Settings\GERMAIN\Cookies\index.dat Object is locked skipped

C:\Documents and Settings\GERMAIN\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped

C:\Documents and Settings\GERMAIN\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped

C:\Documents and Settings\GERMAIN\Local Settings\Historique\History.IE5\index.dat Object is locked skipped

C:\Documents and Settings\GERMAIN\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped

C:\Documents and Settings\GERMAIN\NTUSER.DAT Object is locked skipped

C:\Documents and Settings\GERMAIN\ntuser.dat.LOG Object is locked skipped

C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped

C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped

C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped

C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\index.dat Object is locked skipped

C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped

C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped

C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped

C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped

C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped

C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped

C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped

C:\Program Files\Alwil Software\Avast4\DATA\aswResp.dat Object is locked skipped

C:\Program Files\Alwil Software\Avast4\DATA\Avast4.db Object is locked skipped

C:\Program Files\Alwil Software\Avast4\DATA\log\AshWebSv.ws Object is locked skipped

C:\Program Files\Alwil Software\Avast4\DATA\log\aswMaiSv.log Object is locked skipped

C:\Program Files\Alwil Software\Avast4\DATA\log\nshield.log Object is locked skipped

C:\Program Files\Alwil Software\Avast4\DATA\report\Protection résidente.txt Object is locked skipped

C:\Program Files\Sunbelt Software\Personal Firewall\logs\debug.log Object is locked skipped

C:\Program Files\Sunbelt Software\Personal Firewall\logs\debug.log.idx Object is locked skipped

C:\Program Files\Sunbelt Software\Personal Firewall\logs\error.log Object is locked skipped

C:\Program Files\Sunbelt Software\Personal Firewall\logs\error.log.idx Object is locked skipped

C:\Program Files\Sunbelt Software\Personal Firewall\logs\hips.log Object is locked skipped

C:\Program Files\Sunbelt Software\Personal Firewall\logs\hips.log.idx Object is locked skipped

C:\Program Files\Sunbelt Software\Personal Firewall\logs\ids.log Object is locked skipped

C:\Program Files\Sunbelt Software\Personal Firewall\logs\ids.log.idx Object is locked skipped

C:\Program Files\Sunbelt Software\Personal Firewall\logs\network.log Object is locked skipped

C:\Program Files\Sunbelt Software\Personal Firewall\logs\network.log.idx Object is locked skipped

C:\Program Files\Sunbelt Software\Personal Firewall\logs\system.log Object is locked skipped

C:\Program Files\Sunbelt Software\Personal Firewall\logs\system.log.idx Object is locked skipped

C:\Program Files\Sunbelt Software\Personal Firewall\logs\warning.log Object is locked skipped

C:\Program Files\Sunbelt Software\Personal Firewall\logs\warning.log.idx Object is locked skipped

C:\Program Files\Sunbelt Software\Personal Firewall\logs\web.log Object is locked skipped

C:\Program Files\Sunbelt Software\Personal Firewall\logs\web.log.idx Object is locked skipped

C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped

C:\System Volume Information\_restore{1C1C8F62-C7DE-4268-A513-606E77B6A9C8}\RP4\A0006608.exe Infected: Net-Worm.Win32.Allaple.a skipped

C:\System Volume Information\_restore{1C1C8F62-C7DE-4268-A513-606E77B6A9C8}\RP6\A0008746.exe Infected: Trojan-Proxy.Win32.Agent.mf skipped

C:\System Volume Information\_restore{1C1C8F62-C7DE-4268-A513-606E77B6A9C8}\RP6\A0008747.exe Infected: Trojan-Proxy.Win32.Agent.mf skipped

C:\System Volume Information\_restore{1C1C8F62-C7DE-4268-A513-606E77B6A9C8}\RP6\change.log Object is locked skipped

C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped

C:\WINDOWS\SchedLgU.Txt Object is locked skipped

C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped

C:\WINDOWS\Sti_Trace.log Object is locked skipped

C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped

C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped

C:\WINDOWS\system32\config\Antivirus.Evt Object is locked skipped

C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped

C:\WINDOWS\system32\config\default Object is locked skipped

C:\WINDOWS\system32\config\default.LOG Object is locked skipped

C:\WINDOWS\system32\config\SAM Object is locked skipped

C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped

C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped

C:\WINDOWS\system32\config\SECURITY Object is locked skipped

C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped

C:\WINDOWS\system32\config\software Object is locked skipped

C:\WINDOWS\system32\config\software.LOG Object is locked skipped

C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped

C:\WINDOWS\system32\config\system Object is locked skipped

C:\WINDOWS\system32\config\system.LOG Object is locked skipped

C:\WINDOWS\system32\dccvl.exe Infected: Trojan-Proxy.Win32.Agent.mf skipped

C:\WINDOWS\system32\h323log.txt Object is locked skipped

C:\WINDOWS\system32\lzaible.exe Infected: Trojan-Proxy.Win32.Agent.mf skipped

C:\WINDOWS\system32\o Infected: Trojan-Downloader.BAT.Ftp.ab skipped

C:\WINDOWS\system32\rcooqihd.exe Infected: Trojan-Proxy.Win32.Agent.mf skipped

C:\WINDOWS\system32\tgaxy.exe Infected: Trojan-Proxy.Win32.Agent.mf skipped

C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped

C:\WINDOWS\Temp\Perflib_Perfdata_760.dat Object is locked skipped

C:\WINDOWS\Temp\_avast4_\Webshlock.txt Object is locked skipped

C:\WINDOWS\wiadebug.log Object is locked skipped

C:\WINDOWS\wiaservc.log Object is locked skipped

C:\WINDOWS\WindowsUpdate.log Object is locked skipped

D:\setup.exe Infected: Trojan-Proxy.Win32.Horst.xs skipped

D:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003024.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003025.ver Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003026.msi Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003027.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003028.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003029.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003030.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003031.CAT Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003032.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003033.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003034.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003035.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003036.ini Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003037.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003038.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003039.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003040.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003041.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003042.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003043.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003044.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003045.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003046.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003047.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003048.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003049.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003050.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003051.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003052.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003053.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003054.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003055.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003056.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003057.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003058.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003059.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003060.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003061.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003062.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003063.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003064.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003065.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003066.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003067.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003068.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003069.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003070.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003071.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003072.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003073.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003074.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003075.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003076.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003077.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003078.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003079.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003080.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003081.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003082.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003083.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003084.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003085.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003086.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003087.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003088.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003089.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003090.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003091.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003092.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003093.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003094.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003095.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003096.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003097.tlb Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003098.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003099.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003100.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003101.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003102.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003103.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003104.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003105.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003106.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003107.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003108.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003109.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003110.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003111.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003112.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003113.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003114.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003115.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003116.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003117.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003118.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003119.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003120.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003121.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003122.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003123.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003124.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003125.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003126.sys Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003127.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003128.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003129.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003130.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003131.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003132.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003133.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003134.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003135.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003136.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003137.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003138.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003139.cat Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003140.sys Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003141.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003142.com Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003143.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003144.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003145.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003146.ocx Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003147.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003148.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003149.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003150.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003151.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003152.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003153.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003154.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003155.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003156.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003157.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003158.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003159.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003160.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003161.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003162.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003163.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003164.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003165.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003166.tlb Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003167.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003168.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003169.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003170.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003171.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003172.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003173.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003174.msc Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003175.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003176.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003177.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003178.cmd Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003179.mof Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003180.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003181.sys Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003182.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003183.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003184.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003185.msi Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003186.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003187.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003188.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003189.sif Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003190.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003191.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003192.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003193.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003194.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003195.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003196.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003197.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003198.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003199.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003200.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003201.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003202.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003203.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003204.cat Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003205.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003206.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003207.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003208.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003209.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003210.msi Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003211.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003212.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003213.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003214.sif Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003215.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003216.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003217.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003218.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003219.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003220.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003221.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003222.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003223.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003224.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003225.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003226.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003227.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003228.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003229.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003230.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003231.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003232.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003233.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003234.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003235.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003236.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003237.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003238.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003239.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003240.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003241.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003242.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003243.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003244.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003245.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003246.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003247.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003248.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003249.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003250.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003251.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003252.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003253.sdb Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003254.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003255.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003256.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003257.ini Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003258.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003259.inf Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003260.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003261.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003262.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003263.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003264.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003265.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003266.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003267.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003268.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003269.ini Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003270.ini Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003271.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003272.cat Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003273.cat Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003274.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003275.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003276.cat Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003277.cat Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003278.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003279.cat Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003280.cat Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003281.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003282.cat Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003283.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003284.cat Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003285.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003286.cat Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003287.cat Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003288.cat Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003289.cat Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003290.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003291.cat Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003292.exe Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003293.dll Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003294.wa_ Object is locked skipped

D:\System Volume Information\_restore{405E2933-30D9-47B9-B4C0-078E4920FA35}\RP2\A0003295.wa_ Object is locked skipped

Scan process completed.

merci de votre aide

par contre dans kerio j'ai dans apercu : generic Host process for win 32 services.. est ce normal ?
0
Réponse 6 / 8
Utilisateur anonyme
11 avril 2007 à 15:08
Pour Kerio, oui c'est normal regarde l'aide que je t'ai mise avec ça pourrait te servir.


Supprime ce processus qui est à la racine de ton disque dur :

D:\setup.exe <--

**Si un fichier/dossier persiste lors de la suppression fait ceci:
- Redémarre ton PC. Dès l'allumage de celui-ci tapote la touche F8 (ou F5 si F8 ne fonctionne pas), à l'écran qui va apparaître choisis "mode sans echec" attends un peu..
Puis va supprimer les fichiers/dossiers, vide ta corbeille et redémarre ton PC normalement.



Alors ceci : C:\System Volume Information\_restore (voir rapport Kaspersky)
indique que ta restauration du système etait infecté ou est infecté, pour être sûr, nous allons créer un point propre.

Clic sur "demarrer", cliques droit sur "poste de travail", "propriétés", onglet "restauration du système"

¤ coches la case "desactiver la restauration du systéme sur tous les lecteurs", puis clic ur "appliquer"
¤ décoches la case et clic sur "appliquer" puis "ok".

Maintenant, que l'ont à effacés les point infectés, nous allons créer un point propre :

Clic sur "demarrer", "tous les programmes", "accessoires", "outils système", "restauration du système", choisis "créer un point de restauration" nommes le " ccm" par exemple, clic sur "créer" puis "ok".
Voilà, maintenant le point de restauration est créé
Si un jour tu le décides, tu pourras revenir en arrière à la date que tu as créé ce point de restauration.
En exécutant la restauration du système tu pourras remettre ton ordinateur à la date ou l'on à créé ce point de restauration mais tu perdras les modifications que tu auras fait entre deux.
0
ktherine
12 avril 2007 à 11:03
bonjour

bon apparemment je ne suis plus embétée mais il y a ce fichier qui arrive constamment par kerio smss.exe

ca me sort du jeu ou d'ou je suis

voici le message de kerio

Détails techniques sur l'intrusion :

Application injectrice : C:\WINDOWS\system\smss.exe(new line)
Description : smss(new line)
Version du fichier : (new line)
Produit : (new line)
Version du produit : (new line)
Créé le : 2007/4/11, 22:03:19(new line)
Modifié le : 2007/1/2, 12:18:34(new line)
Dernier accès le : 2007/4/12, 08:57:24

Application cible : C:\WINDOWS\system32\svchost.exe(new line)
Description : Generic Host Process for Win32 Services(new line)
Version du fichier : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)(new line)
Produit : Microsoft® Windows® Operating System(new line)
Version du produit : 5.1.2600.2180(new line)
Créé le : 2001/8/28, 12:00:00(new line)
Modifié le : 2004/8/19, 14:10:04(new line)
Dernier accès le : 2007/4/12, 08:57:32

Adresse de l'injection : 0x00409576

par contre je joue à rose online et quand kerio est connecté je ne peux pas rentrer dans le jeu... merci de me dire comment débloquer l autorisation

merci encore devotre aide
0
Réponse 7 / 8
Utilisateur anonyme
12 avril 2007 à 17:12
Hello

Donc clic sur démarrer, rechercher, tous les fichiers et dossiers, cherche et supprime celui-ci :

- smss.exe

ATTENTION, ne supprime pas celui qui est présent dans le dossier system32 mais bien celui qui ets présent dans le dossier system.

**Si un fichier/dossier persiste lors de la suppression fait ceci:
- Redémarre ton PC. Dès l'allumage de celui-ci tapote la touche F8 (ou F5 si F8 ne fonctionne pas), à l'écran qui va apparaître choisis "mode sans echec" attends un peu..
Puis va supprimer les fichiers/dossiers, vide ta corbeille et redémarre ton PC normalement.


Concernant, ton jeu il faut que je me renseigne, en attendant ferme Kerio tant pis.
Si tu as une notice de jeu, regarde quels ports il faut ouvrir apparement c'est vers les 19000 mais je suis pas sûr

A plus tard
0
ktherine
19 avril 2007 à 11:05
merci pour tes conseils, je n ai plus de message d erreur

par contre quand kerio aura fini la période d essai est ce qu'il fera quand meme un peu son boulot de blocus ?

merci
0
Réponse 8 / 8
Utilisateur anonyme
20 avril 2007 à 01:19
Pour Kerio, si tu te poses des questions :
https://kerio.probb.fr/f2-sunbelt-kerio-personal-firewall

Le tutoriel pour Kerio, concernant la version que tu as :
https://kerio.probb.fr/t250-tuto-sunbelt-personal-firewall-4-6


Pour répondre à ta question, oui il te protégera encore comme il le faut pas de souci ;-)
0

Discussions similaires

L'antivirus ESET NOD32 bloque UPTOBOX ( HTML/ScrInject.B ).
Logan -
Snoopyx -

10 réponses
Présence ou non de cheval de troie ?
hunter55 -
Malekal_morte- -

14 réponses
windows defender cheval de troie
dplonguet -
Faarid.31 -

3 réponses
Cheval de Troie et ordi bloqué!!!
Bouillouck -
Speed-Air -

3 réponses
expressions francaises
bifaka -
lanonyme -

4 réponses