TRojan, infection.
raratatayoyo
-
raratatayoyo -
raratatayoyo -
Bonsoir,
J'ai fais un scan avec antivir, il m'a trouvé :
1) Trojan/dropper.gen trojan. Chemin (C\Documents and settings ).
2) Trojan/agent.69632.0. Chemin (C\Documents and settings ).
3) Heur/html.Malware suspicious code.
Je les ai mis en quarantaine ne sachant pas quoi en faire. Mes questions sont :
Faut-il les supprimer tous?
ou alors que les 2 premiers? qui sont des documents.
Le troisiéme je supprime ou pas ?
et si derrière je passe Spybot et qu'il me trouve quelque chose faut-il supprimer aussi ?
derniere questiuon est-ce qu' il y a des dossiers, fichiers, qu'il ne faut pas supprimer ?
Merci a l'aide que vous pouvez m'apporter. :hey:
J'ai fais un scan avec antivir, il m'a trouvé :
1) Trojan/dropper.gen trojan. Chemin (C\Documents and settings ).
2) Trojan/agent.69632.0. Chemin (C\Documents and settings ).
3) Heur/html.Malware suspicious code.
Je les ai mis en quarantaine ne sachant pas quoi en faire. Mes questions sont :
Faut-il les supprimer tous?
ou alors que les 2 premiers? qui sont des documents.
Le troisiéme je supprime ou pas ?
et si derrière je passe Spybot et qu'il me trouve quelque chose faut-il supprimer aussi ?
derniere questiuon est-ce qu' il y a des dossiers, fichiers, qu'il ne faut pas supprimer ?
Merci a l'aide que vous pouvez m'apporter. :hey:
A voir également:
- TRojan, infection.
- Trojan remover - Télécharger - Antivirus & Antimalwares
- Anti trojan - Télécharger - Antivirus & Antimalwares
- Virus trojan al11 ✓ - Forum Virus
- Csrss.exe trojan fr ✓ - Forum Virus
- Trojan win32 - Forum Virus
5 réponses
Il me semble que ces fichiers ne sont pas indispensable a ton PC ( voir même surement inutile et dangereux ^^ ) et je ne vois pas de raisons de les laissés sur ton ordinateur. Mais étant loin d'être un pro de l'ordi je te conseillerai, si tu hésite, d'attendre une réponse de plus avant de te décider.
Supprime tous sauf les programmes légitime que tu connais !
si les dossiers infecté ne te disent rien alors supprime
si les dossiers infecté ne te disent rien alors supprime
bonjour
je veux bien supprimer, je sais que je n'ai pas donné beaucoup d'éléments, mais on ne peut pas supprimer pour supprimer.
Merci.
je veux bien supprimer, je sais que je n'ai pas donné beaucoup d'éléments, mais on ne peut pas supprimer pour supprimer.
Merci.
on ne peut pas supprimer pour supprimer ?
que veux tu dire ?
en tous cas pour les 3 infections qu'antivir t as trouvé , supprime les !
que veux tu dire ?
en tous cas pour les 3 infections qu'antivir t as trouvé , supprime les !
bonjour,lesane662
je t'envoie donc le premier rapport la ou il y avait des problèmes.
Avira AntiVir Personal
Report file date: jeudi 9 avril 2009 11:00
Scanning for 1344762 virus strains and unwanted programs.
Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows XP
Windows version: (Service Pack 3) [5.1.2600]
Boot mode: Normally booted
Username: SYSTEM
Computer name: NOGUES-62A37505
Version information:
BUILD.DAT : 8.2.0.347 16934 Bytes 16/03/2009 14:45:00
AVSCAN.EXE : 8.1.4.10 315649 Bytes 25/11/2008 19:57:14
AVSCAN.DLL : 8.1.4.0 40705 Bytes 05/09/2008 19:23:50
LUKE.DLL : 8.1.4.5 164097 Bytes 05/09/2008 19:23:52
LUKERES.DLL : 8.1.4.0 12033 Bytes 05/09/2008 19:23:52
ANTIVIR0.VDF : 7.1.0.0 15603712 Bytes 27/10/2008 19:10:47
ANTIVIR1.VDF : 7.1.2.12 3336192 Bytes 11/02/2009 16:42:52
ANTIVIR2.VDF : 7.1.3.0 1330176 Bytes 01/04/2009 12:14:42
ANTIVIR3.VDF : 7.1.3.35 137728 Bytes 09/04/2009 08:59:31
Engineversion : 8.2.0.138
AEVDF.DLL : 8.1.1.0 106868 Bytes 01/02/2009 15:00:15
AESCRIPT.DLL : 8.1.1.73 373114 Bytes 05/04/2009 12:46:02
AESCN.DLL : 8.1.1.10 127348 Bytes 05/04/2009 12:46:00
AERDL.DLL : 8.1.1.3 438645 Bytes 07/11/2008 08:03:58
AEPACK.DLL : 8.1.3.12 397687 Bytes 05/04/2009 12:45:58
AEOFFICE.DLL : 8.1.0.36 196987 Bytes 26/02/2009 21:07:24
AEHEUR.DLL : 8.1.0.114 1700214 Bytes 05/04/2009 12:45:54
AEHELP.DLL : 8.1.2.2 119158 Bytes 26/02/2009 21:07:05
AEGEN.DLL : 8.1.1.33 340340 Bytes 05/04/2009 12:45:42
AEEMU.DLL : 8.1.0.9 393588 Bytes 16/10/2008 10:24:29
AECORE.DLL : 8.1.6.7 176502 Bytes 05/04/2009 12:45:39
AEBB.DLL : 8.1.0.3 53618 Bytes 16/10/2008 10:24:24
AVWINLL.DLL : 1.0.0.12 15105 Bytes 05/09/2008 19:23:50
AVPREF.DLL : 8.0.2.0 38657 Bytes 05/09/2008 19:23:50
AVREP.DLL : 8.0.0.2 98344 Bytes 05/09/2008 19:23:56
AVREG.DLL : 8.0.0.1 33537 Bytes 05/09/2008 19:23:50
AVARKT.DLL : 1.0.0.23 307457 Bytes 26/05/2008 21:13:44
AVEVTLOG.DLL : 8.0.0.16 119041 Bytes 05/09/2008 19:23:49
SQLITE3.DLL : 3.3.17.1 339968 Bytes 26/05/2008 21:13:51
SMTPLIB.DLL : 1.2.0.23 28929 Bytes 05/09/2008 19:23:53
NETNT.DLL : 8.0.0.1 7937 Bytes 26/05/2008 21:13:49
RCIMAGE.DLL : 8.0.0.51 2371841 Bytes 05/09/2008 19:23:43
RCTEXT.DLL : 8.0.52.0 86273 Bytes 05/09/2008 19:23:43
Configuration settings for the scan:
Jobname..........................: Complete system scan
Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: on
Scan boot sector.................: on
Boot sectors.....................: C:,
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: Intelligent file selection
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium
Start of the scan: jeudi 9 avril 2009 11:00
The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'alg.exe' - '1' Module(s) have been scanned
Scan process 'wuauclt.exe' - '1' Module(s) have been scanned
Scan process 'soffice.bin' - '1' Module(s) have been scanned
Scan process 'soffice.exe' - '1' Module(s) have been scanned
Scan process 'NMIndexStoreSvr.exe' - '1' Module(s) have been scanned
Scan process 'WLANUTL.exe' - '1' Module(s) have been scanned
Scan process 'AlertModule.exe' - '1' Module(s) have been scanned
Scan process 'msmsgs.exe' - '1' Module(s) have been scanned
Scan process 'NMBgMonitor.exe' - '1' Module(s) have been scanned
Scan process 'hpgs2wnf.exe' - '1' Module(s) have been scanned
Scan process 'TFService.exe' - '1' Module(s) have been scanned
Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
Scan process 'SystrayApp.exe' - '1' Module(s) have been scanned
Scan process 'HpqCmon.exe' - '1' Module(s) have been scanned
Scan process 'hpgs2wnd.exe' - '1' Module(s) have been scanned
Scan process 'SOUNDMAN.EXE' - '1' Module(s) have been scanned
Scan process 'fssui.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'jusched.exe' - '1' Module(s) have been scanned
Scan process 'slserv.exe' - '1' Module(s) have been scanned
Scan process 'TFTray.exe' - '1' Module(s) have been scanned
Scan process 'FTRTSVC.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'fsssvc.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
41 processes with 41 modules were scanned
Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!
Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Starting to scan the registry.
The registry was scanned ( '56' files ).
Starting the file scan:
Begin scan in 'C:\'
C:\hiberfil.sys
[WARNING] The file could not be opened!
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\Documents and Settings\All Users\Documents\Récupération Ancien Disque dur\didier\Mes fichiers reçus\Install_MessengerSkinner.zip
[0] Archive type: ZIP
--> Msgskinner_setup.exe
[DETECTION] Is the TR/Dropper.Gen Trojan
[NOTE] The file was moved to '4a50ba40.qua'!
C:\Documents and Settings\All Users\Documents\Récupération Ancien Disque dur\LOGICIEL CRICRI\Alcohol 120% v1.9.5.3105 Multilanguage Full Version\patch_3105.exe
[DETECTION] Is the TR/Agent.69632.O Trojan
[NOTE] The file was moved to '4a51ba7c.qua'!
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo11035\Cab\28E70B86.cab
[0] Archive type: CAB (Microsoft)
--> NBCalendar50A8CC5A.ocx
[WARNING] The file could not be written!
--> NBDataBase0ADD264D.dll
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo11035\Cab\A75C16D6.cab
[0] Archive type: CAB (Microsoft)
--> CDROM5C6B3477.dll
[WARNING] The file could not be written!
--> FATImporter1372122A.dll
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo11035\Cab\B1EFF3E9.cab
[0] Archive type: CAB (Microsoft)
--> NMDataServicesFA9ABD74.dll
[WARNING] The file could not be written!
--> NMFirstStart4C0FBCE6.exe
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo11035\Cab\B907AECF.cab
[0] Archive type: CAB (Microsoft)
--> HTMLGalleryBB338A6A.dll
[WARNING] The file could not be written!
--> MMTools366B07E4.dll
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo11035\Cab\C1447997.cab
[0] Archive type: CAB (Microsoft)
--> NMBCInterfacePSAE565723.dll
[WARNING] The file could not be written!
--> NMBCWriterDC0FE966.exe
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo11035\Cab\D6C89E66.cab
[0] Archive type: CAB (Microsoft)
--> KARAOKE3DE180FF.DLL
[WARNING] The file could not be written!
--> nero920D0564.exe
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo11035\Cab\DC682368.cab
[0] Archive type: CAB (Microsoft)
--> DXEnumD7927B84.exe
[WARNING] The file could not be written!
--> VSTBridge02A75A4C.dll
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo11035\Cab\DD3AACFD.cab
[0] Archive type: CAB (Microsoft)
--> gaa87623F1A.bin
[WARNING] The file could not be written!
--> incd1252685369A4.txt
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\1B05D29F.cab
[0] Archive type: CAB (Microsoft)
--> AMCDOM656B2935.dll
[WARNING] The file could not be written!
--> AMCLibE5F56605.dll
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\3D9AC5E4.cab
[0] Archive type: CAB (Microsoft)
--> DVDUI_Fra7AE9381A.nls
[WARNING] The file could not be written!
--> ExpressUI_FraE7F9905B.nls
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\3F26C5A8.cab
[0] Archive type: CAB (Microsoft)
--> DVDUI_ChtF8F43EBC.nls
[WARNING] The file could not be written!
--> ExpressUI_ChtA9565374.nls
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\4D801849.cab
[0] Archive type: CAB (Microsoft)
--> NeroSearchD058B1F2.dll
[WARNING] The file could not be written!
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\8F16CCFD.cab
[0] Archive type: CAB (Microsoft)
--> DVDUI_EllFC69B34F.nls
[WARNING] The file could not be written!
--> ExpressUI_EllFE85E5C7.nls
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\A75C16D6.cab
[0] Archive type: CAB (Microsoft)
--> nero50DEFBE1.txt
[WARNING] The file could not be written!
--> NeroAPI19ACFC67.dll
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\B1EFF3E9.cab
[0] Archive type: CAB (Microsoft)
--> NMAudioCDContentHandlerC8C7063E.dll
[WARNING] The file could not be written!
--> NMBgMonitorB7C6977C.exe
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\B907AECF.cab
[0] Archive type: CAB (Microsoft)
--> AMCDOM5DEF241C.dll
[WARNING] The file could not be written!
--> AMCLib430851B2.dll
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\C65395A1.cab
[0] Archive type: CAB (Microsoft)
--> NSPluginMgr6C72B7AA.dll
[WARNING] The file could not be written!
--> PhotoEffects8A6995F6.dll
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\D6C89E66.cab
[0] Archive type: CAB (Microsoft)
--> KARAOKE3DE180FF.DLL
[WARNING] The file could not be written!
--> nero920D0564.exe
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\DC682368.cab
[0] Archive type: CAB (Microsoft)
--> waveeditC2FD0FA1.dll
[WARNING] The file could not be written!
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\DD3AACFD.cab
[0] Archive type: CAB (Microsoft)
--> gaa87623F1A.bin
[WARNING] The file could not be written!
--> incd1252685369A4.txt
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\E63C3C70.cab
[0] Archive type: CAB (Microsoft)
--> NMSlideShowC0848489.dll
[WARNING] The file could not be written!
--> NMSSContentHandlerF49FD52D.dll
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\F006035A.cab
[0] Archive type: CAB (Microsoft)
--> NMSSEffects480F0071.dll
[WARNING] The file could not be written!
--> NMSVCDContentHandlerB34A94C9.dll
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Nadine\Local Settings\Temporary Internet Files\Content.IE5\VS1Q32Y4\DivXInstaller[1].exe
[0] Archive type: NSIS
--> ProgramFilesDir/[UnknownDir]
[WARNING] No further files can be extracted from this archive. The archive will be closed
End of the scan: jeudi 9 avril 2009 11:54
Used time: 54:36 Minute(s)
The scan has been done completely.
9070 Scanning directories
262475 Files were scanned
2 viruses and/or unwanted programs were found
0 Files were classified as suspicious:
0 files were deleted
0 files were repaired
2 files were moved to quarantine
0 files were renamed
2 Files cannot be scanned
262471 Files not concerned
3194 Archives were scanned
45 Warnings
2 Notes
en fait, c'est l'ordinateur de mon frère et il y connaît encore moins que moi.
Mais je vois que son fils doit arrêter les téléchargements.
Merci et a plus tard.
je t'envoie donc le premier rapport la ou il y avait des problèmes.
Avira AntiVir Personal
Report file date: jeudi 9 avril 2009 11:00
Scanning for 1344762 virus strains and unwanted programs.
Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows XP
Windows version: (Service Pack 3) [5.1.2600]
Boot mode: Normally booted
Username: SYSTEM
Computer name: NOGUES-62A37505
Version information:
BUILD.DAT : 8.2.0.347 16934 Bytes 16/03/2009 14:45:00
AVSCAN.EXE : 8.1.4.10 315649 Bytes 25/11/2008 19:57:14
AVSCAN.DLL : 8.1.4.0 40705 Bytes 05/09/2008 19:23:50
LUKE.DLL : 8.1.4.5 164097 Bytes 05/09/2008 19:23:52
LUKERES.DLL : 8.1.4.0 12033 Bytes 05/09/2008 19:23:52
ANTIVIR0.VDF : 7.1.0.0 15603712 Bytes 27/10/2008 19:10:47
ANTIVIR1.VDF : 7.1.2.12 3336192 Bytes 11/02/2009 16:42:52
ANTIVIR2.VDF : 7.1.3.0 1330176 Bytes 01/04/2009 12:14:42
ANTIVIR3.VDF : 7.1.3.35 137728 Bytes 09/04/2009 08:59:31
Engineversion : 8.2.0.138
AEVDF.DLL : 8.1.1.0 106868 Bytes 01/02/2009 15:00:15
AESCRIPT.DLL : 8.1.1.73 373114 Bytes 05/04/2009 12:46:02
AESCN.DLL : 8.1.1.10 127348 Bytes 05/04/2009 12:46:00
AERDL.DLL : 8.1.1.3 438645 Bytes 07/11/2008 08:03:58
AEPACK.DLL : 8.1.3.12 397687 Bytes 05/04/2009 12:45:58
AEOFFICE.DLL : 8.1.0.36 196987 Bytes 26/02/2009 21:07:24
AEHEUR.DLL : 8.1.0.114 1700214 Bytes 05/04/2009 12:45:54
AEHELP.DLL : 8.1.2.2 119158 Bytes 26/02/2009 21:07:05
AEGEN.DLL : 8.1.1.33 340340 Bytes 05/04/2009 12:45:42
AEEMU.DLL : 8.1.0.9 393588 Bytes 16/10/2008 10:24:29
AECORE.DLL : 8.1.6.7 176502 Bytes 05/04/2009 12:45:39
AEBB.DLL : 8.1.0.3 53618 Bytes 16/10/2008 10:24:24
AVWINLL.DLL : 1.0.0.12 15105 Bytes 05/09/2008 19:23:50
AVPREF.DLL : 8.0.2.0 38657 Bytes 05/09/2008 19:23:50
AVREP.DLL : 8.0.0.2 98344 Bytes 05/09/2008 19:23:56
AVREG.DLL : 8.0.0.1 33537 Bytes 05/09/2008 19:23:50
AVARKT.DLL : 1.0.0.23 307457 Bytes 26/05/2008 21:13:44
AVEVTLOG.DLL : 8.0.0.16 119041 Bytes 05/09/2008 19:23:49
SQLITE3.DLL : 3.3.17.1 339968 Bytes 26/05/2008 21:13:51
SMTPLIB.DLL : 1.2.0.23 28929 Bytes 05/09/2008 19:23:53
NETNT.DLL : 8.0.0.1 7937 Bytes 26/05/2008 21:13:49
RCIMAGE.DLL : 8.0.0.51 2371841 Bytes 05/09/2008 19:23:43
RCTEXT.DLL : 8.0.52.0 86273 Bytes 05/09/2008 19:23:43
Configuration settings for the scan:
Jobname..........................: Complete system scan
Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: on
Scan boot sector.................: on
Boot sectors.....................: C:,
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: Intelligent file selection
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium
Start of the scan: jeudi 9 avril 2009 11:00
The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'alg.exe' - '1' Module(s) have been scanned
Scan process 'wuauclt.exe' - '1' Module(s) have been scanned
Scan process 'soffice.bin' - '1' Module(s) have been scanned
Scan process 'soffice.exe' - '1' Module(s) have been scanned
Scan process 'NMIndexStoreSvr.exe' - '1' Module(s) have been scanned
Scan process 'WLANUTL.exe' - '1' Module(s) have been scanned
Scan process 'AlertModule.exe' - '1' Module(s) have been scanned
Scan process 'msmsgs.exe' - '1' Module(s) have been scanned
Scan process 'NMBgMonitor.exe' - '1' Module(s) have been scanned
Scan process 'hpgs2wnf.exe' - '1' Module(s) have been scanned
Scan process 'TFService.exe' - '1' Module(s) have been scanned
Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
Scan process 'SystrayApp.exe' - '1' Module(s) have been scanned
Scan process 'HpqCmon.exe' - '1' Module(s) have been scanned
Scan process 'hpgs2wnd.exe' - '1' Module(s) have been scanned
Scan process 'SOUNDMAN.EXE' - '1' Module(s) have been scanned
Scan process 'fssui.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'jusched.exe' - '1' Module(s) have been scanned
Scan process 'slserv.exe' - '1' Module(s) have been scanned
Scan process 'TFTray.exe' - '1' Module(s) have been scanned
Scan process 'FTRTSVC.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'fsssvc.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
41 processes with 41 modules were scanned
Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!
Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Starting to scan the registry.
The registry was scanned ( '56' files ).
Starting the file scan:
Begin scan in 'C:\'
C:\hiberfil.sys
[WARNING] The file could not be opened!
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\Documents and Settings\All Users\Documents\Récupération Ancien Disque dur\didier\Mes fichiers reçus\Install_MessengerSkinner.zip
[0] Archive type: ZIP
--> Msgskinner_setup.exe
[DETECTION] Is the TR/Dropper.Gen Trojan
[NOTE] The file was moved to '4a50ba40.qua'!
C:\Documents and Settings\All Users\Documents\Récupération Ancien Disque dur\LOGICIEL CRICRI\Alcohol 120% v1.9.5.3105 Multilanguage Full Version\patch_3105.exe
[DETECTION] Is the TR/Agent.69632.O Trojan
[NOTE] The file was moved to '4a51ba7c.qua'!
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo11035\Cab\28E70B86.cab
[0] Archive type: CAB (Microsoft)
--> NBCalendar50A8CC5A.ocx
[WARNING] The file could not be written!
--> NBDataBase0ADD264D.dll
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo11035\Cab\A75C16D6.cab
[0] Archive type: CAB (Microsoft)
--> CDROM5C6B3477.dll
[WARNING] The file could not be written!
--> FATImporter1372122A.dll
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo11035\Cab\B1EFF3E9.cab
[0] Archive type: CAB (Microsoft)
--> NMDataServicesFA9ABD74.dll
[WARNING] The file could not be written!
--> NMFirstStart4C0FBCE6.exe
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo11035\Cab\B907AECF.cab
[0] Archive type: CAB (Microsoft)
--> HTMLGalleryBB338A6A.dll
[WARNING] The file could not be written!
--> MMTools366B07E4.dll
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo11035\Cab\C1447997.cab
[0] Archive type: CAB (Microsoft)
--> NMBCInterfacePSAE565723.dll
[WARNING] The file could not be written!
--> NMBCWriterDC0FE966.exe
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo11035\Cab\D6C89E66.cab
[0] Archive type: CAB (Microsoft)
--> KARAOKE3DE180FF.DLL
[WARNING] The file could not be written!
--> nero920D0564.exe
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo11035\Cab\DC682368.cab
[0] Archive type: CAB (Microsoft)
--> DXEnumD7927B84.exe
[WARNING] The file could not be written!
--> VSTBridge02A75A4C.dll
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo11035\Cab\DD3AACFD.cab
[0] Archive type: CAB (Microsoft)
--> gaa87623F1A.bin
[WARNING] The file could not be written!
--> incd1252685369A4.txt
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\1B05D29F.cab
[0] Archive type: CAB (Microsoft)
--> AMCDOM656B2935.dll
[WARNING] The file could not be written!
--> AMCLibE5F56605.dll
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\3D9AC5E4.cab
[0] Archive type: CAB (Microsoft)
--> DVDUI_Fra7AE9381A.nls
[WARNING] The file could not be written!
--> ExpressUI_FraE7F9905B.nls
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\3F26C5A8.cab
[0] Archive type: CAB (Microsoft)
--> DVDUI_ChtF8F43EBC.nls
[WARNING] The file could not be written!
--> ExpressUI_ChtA9565374.nls
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\4D801849.cab
[0] Archive type: CAB (Microsoft)
--> NeroSearchD058B1F2.dll
[WARNING] The file could not be written!
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\8F16CCFD.cab
[0] Archive type: CAB (Microsoft)
--> DVDUI_EllFC69B34F.nls
[WARNING] The file could not be written!
--> ExpressUI_EllFE85E5C7.nls
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\A75C16D6.cab
[0] Archive type: CAB (Microsoft)
--> nero50DEFBE1.txt
[WARNING] The file could not be written!
--> NeroAPI19ACFC67.dll
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\B1EFF3E9.cab
[0] Archive type: CAB (Microsoft)
--> NMAudioCDContentHandlerC8C7063E.dll
[WARNING] The file could not be written!
--> NMBgMonitorB7C6977C.exe
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\B907AECF.cab
[0] Archive type: CAB (Microsoft)
--> AMCDOM5DEF241C.dll
[WARNING] The file could not be written!
--> AMCLib430851B2.dll
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\C65395A1.cab
[0] Archive type: CAB (Microsoft)
--> NSPluginMgr6C72B7AA.dll
[WARNING] The file could not be written!
--> PhotoEffects8A6995F6.dll
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\D6C89E66.cab
[0] Archive type: CAB (Microsoft)
--> KARAOKE3DE180FF.DLL
[WARNING] The file could not be written!
--> nero920D0564.exe
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\DC682368.cab
[0] Archive type: CAB (Microsoft)
--> waveeditC2FD0FA1.dll
[WARNING] The file could not be written!
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\DD3AACFD.cab
[0] Archive type: CAB (Microsoft)
--> gaa87623F1A.bin
[WARNING] The file could not be written!
--> incd1252685369A4.txt
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\E63C3C70.cab
[0] Archive type: CAB (Microsoft)
--> NMSlideShowC0848489.dll
[WARNING] The file could not be written!
--> NMSSContentHandlerF49FD52D.dll
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Didier\Local Settings\Temp\NeroDemo9595\Cab\F006035A.cab
[0] Archive type: CAB (Microsoft)
--> NMSSEffects480F0071.dll
[WARNING] The file could not be written!
--> NMSVCDContentHandlerB34A94C9.dll
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\Documents and Settings\Nadine\Local Settings\Temporary Internet Files\Content.IE5\VS1Q32Y4\DivXInstaller[1].exe
[0] Archive type: NSIS
--> ProgramFilesDir/[UnknownDir]
[WARNING] No further files can be extracted from this archive. The archive will be closed
End of the scan: jeudi 9 avril 2009 11:54
Used time: 54:36 Minute(s)
The scan has been done completely.
9070 Scanning directories
262475 Files were scanned
2 viruses and/or unwanted programs were found
0 Files were classified as suspicious:
0 files were deleted
0 files were repaired
2 files were moved to quarantine
0 files were renamed
2 Files cannot be scanned
262471 Files not concerned
3194 Archives were scanned
45 Warnings
2 Notes
en fait, c'est l'ordinateur de mon frère et il y connaît encore moins que moi.
Mais je vois que son fils doit arrêter les téléchargements.
Merci et a plus tard.
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
