A voir également:
- Probleme Horse Downloader.Generic_c.AKW
- Google horse - Télécharger - 3D
- My horse - Télécharger - Jeux vidéo
- Jeux virtuels comme lea passion online ou planet horse en ligne - Forum Jeux vidéo
3 réponses
Nic00
Messages postés
1701
Date d'inscription
lundi 25 août 2008
Statut
Membre
Dernière intervention
30 mars 2010
95
23 mai 2009 à 17:36
23 mai 2009 à 17:36
Buenos días señor el brasileño !
>> Télécharge et installe Malawarebytes’Anti-Malware : : http://www.malwarebytes.org/mbam/program/mbam-setup.exe
>> mets le à jour puis lance le en double cliquant dessus.
>> Choisis « Exécuter un examen complet » en cliquant dessus.
>> Clique sur Rechercher
>> Patiente jusqu’à la fin du scan…..une fenêtre s’ouvrira, clique alors sur OK
>> Si MalwareByte's n'a rien détecté, clique sur Ok. Un rapport va apparaître ferme-le.
>> Si MalwareByte's a détecté des infections, clique sur Afficher les résultats puis sur Supprimer la sélection
>> Enregistre le rapport sur ton Bureau pour le trouver plus facilement.
>> Poste ensuite ce rapport.
Note : Si MalwareByte's a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok
Ensuite:
=> Télécharges et installe Hijackthis :
http://www.commentcamarche.net/telecharger/telecharger 159 hijackthis
=> Lances l’application et cliques sur « Do a system scan and save a logfile »
=>A la fin un rapport est généré dans le bloc note, postes le.
>> Télécharge et installe Malawarebytes’Anti-Malware : : http://www.malwarebytes.org/mbam/program/mbam-setup.exe
>> mets le à jour puis lance le en double cliquant dessus.
>> Choisis « Exécuter un examen complet » en cliquant dessus.
>> Clique sur Rechercher
>> Patiente jusqu’à la fin du scan…..une fenêtre s’ouvrira, clique alors sur OK
>> Si MalwareByte's n'a rien détecté, clique sur Ok. Un rapport va apparaître ferme-le.
>> Si MalwareByte's a détecté des infections, clique sur Afficher les résultats puis sur Supprimer la sélection
>> Enregistre le rapport sur ton Bureau pour le trouver plus facilement.
>> Poste ensuite ce rapport.
Note : Si MalwareByte's a besoin de redémarrer pour terminer la suppression, accepte en cliquant sur Ok
Ensuite:
=> Télécharges et installe Hijackthis :
http://www.commentcamarche.net/telecharger/telecharger 159 hijackthis
=> Lances l’application et cliques sur « Do a system scan and save a logfile »
=>A la fin un rapport est généré dans le bloc note, postes le.
Bonjour, j'ai le même problème que Br brasilien!
Pouvez vous m'aider? Voici le rapport que j'ai obtenu avec mb:
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org
Version de la base de données: 5066
Windows 5.1.2600 Service Pack 3 (Safe Mode)
Internet Explorer 7.0.5730.13
07/11/2010 18:15:53
mbam-log-2010-11-07 (18-15-53).txt
Type d'examen: Examen complet (C:\|)
Elément(s) analysé(s): 241664
Temps écoulé: 36 minute(s), 27 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 1
Clé(s) du Registre infectée(s): 15
Valeur(s) du Registre infectée(s): 2
Elément(s) de données du Registre infecté(s): 2
Dossier(s) infecté(s): 8
Fichier(s) infecté(s): 55
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
C:\WINDOWS\system32\mscorier32.dll (Trojan.Tracur) -> No action taken.
Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{04d7cafb-3d9f-4e17-a58c-9a9b57a33007} (Trojan.Vundo.H) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{04d7cafb-3d9f-4e17-a58c-9a9b57a33007} (Trojan.Vundo.H) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{2878de21-1fd0-8c11-57b0-2f01c9289b7e} (Trojan.Tracur) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2878de21-1fd0-8c11-57b0-2f01c9289b7e} (Trojan.Tracur) -> No action taken.
HKEY_CLASSES_ROOT\shopperreports.reporter (Adware.ShopperReports) -> No action taken.
HKEY_CLASSES_ROOT\shopperreports.reporter.1 (Adware.ShopperReports) -> No action taken.
HKEY_CLASSES_ROOT\AppID\{0d82acd6-a652-4496-a298-2bde705f4227} (Adware.ClickPotato) -> No action taken.
HKEY_CLASSES_ROOT\AppID\{7025e484-d4b0-441a-9f0b-69063bd679ce} (Adware.ClickPotato) -> No action taken.
HKEY_CLASSES_ROOT\AppID\{8258b35c-05b8-4c0e-9525-9bccc70f8f2d} (Adware.ClickPotato) -> No action taken.
HKEY_CLASSES_ROOT\AppID\{a89256ad-ec17-4a83-bef5-4b8bc4f39306} (Adware.ClickPotato) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\queryexplorer (Adware.QueryExplorer) -> No action taken.
HKEY_CLASSES_ROOT\.fsharproj (Trojan.BHO) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\QueryExplorer (Adware.QueryExplorer) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_QUERYEXPLORER_SERVICE (Adware.QueryExplorer) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\QueryExplorer Service (Adware.QueryExplorer) -> No action taken.
Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform\srs_it_e8790571b77659553eac91 (Malware.Trace) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\rthdbpl (Trojan.Agent) -> No action taken.
Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: c:\windows\system32\mscorier32.dll -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: system32\mscorier32.dll -> No action taken.
Dossier(s) infecté(s):
C:\Documents and Settings\All Users\Application Data\QueryExplorer (Adware.QueryExplorer) -> No action taken.
C:\Documents and Settings\Anne Bigot\Application Data\SysWin (Trojan.Agent) -> No action taken.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464} (Adware.QueryExplorer) -> No action taken.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\chrome (Adware.QueryExplorer) -> No action taken.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\defaults (Adware.QueryExplorer) -> No action taken.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\defaults\preferences (Adware.QueryExplorer) -> No action taken.
C:\Program Files\QueryExplorer (Adware.QueryExplorer) -> No action taken.
C:\WINDOWS\system32\SysWoW32 (Worm.Archive) -> No action taken.
Fichier(s) infecté(s):
C:\WINDOWS\system32\mscorier32.dll (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP372\A0050770.exe (Adware.QueryExplorer) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP373\A0050841.dll (Adware.ClickPotato) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP373\A0050845.dll (Adware.ClickPotato) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP375\A0050920.dll (Adware.ClickPotato) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP375\A0050921.dll (Adware.ClickPotato) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051472.dll (Adware.ShopperReports) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051473.dll (Adware.ShopperReports) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051474.dll (Adware.ShopperReports) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051477.dll (Adware.ShopperReports) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051479.dll (Adware.ShopperReports) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051480.dll (Adware.ShopperReports) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051481.dll (Adware.ShopperReports) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051482.exe (Adware.ShopperReports) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP403\A0054217.exe (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP403\A0054223.exe (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP404\A0054297.exe (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP404\A0054339.exe (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054662.exe (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054663.exe (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054664.exe (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054665.dll (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054666.exe (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054667.exe (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054668.exe (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054669.exe (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054670.exe (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054671.exe (Adware.QueryExplorer) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054672.exe (Adware.QueryExplorer) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054673.exe (Adware.QueryExplorer) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054674.exe (Trojan.Tracur) -> No action taken.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\chrome.manifest (Adware.QueryExplorer) -> No action taken.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\install.rdf (Adware.QueryExplorer) -> No action taken.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\chrome\queryexplorer.jar (Adware.QueryExplorer) -> No action taken.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\defaults\preferences\prefs.js (Adware.QueryExplorer) -> No action taken.
C:\Program Files\QueryExplorer\uninstall.exe (Adware.QueryExplorer) -> No action taken.
C:\WINDOWS\system32\SysWoW32\mu1584115995v4.kwd (Worm.Archive) -> No action taken.
C:\WINDOWS\system32\SysWoW32\mu1584115995v5.kwd (Worm.Archive) -> No action taken.
C:\WINDOWS\system32\SysWoW32\mu1584115995v6.kwd (Worm.Archive) -> No action taken.
C:\WINDOWS\system32\SysWoW32\mu1584115995v7.kwd (Worm.Archive) -> No action taken.
C:\WINDOWS\system32\SysWoW32\wu1584115995v0 (Worm.Archive) -> No action taken.
C:\WINDOWS\system32\SysWoW32\wu1584115995v0.kwd (Worm.Archive) -> No action taken.
C:\WINDOWS\system32\SysWoW32\wu1584115995v1.kwd (Worm.Archive) -> No action taken.
C:\WINDOWS\system32\SysWoW32\wu1584115995v2.kwd (Worm.Archive) -> No action taken.
C:\WINDOWS\system32\SysWoW32\wu1584115995v3.kwd (Worm.Archive) -> No action taken.
C:\WINDOWS\system32\SysWoW32\_u1584115995v0 (Worm.Archive) -> No action taken.
C:\Documents and Settings\LocalService\Application Data\020000006a0db9fc1058C.manifest (Malware.Trace) -> No action taken.
C:\Documents and Settings\LocalService\Application Data\020000006a0db9fc1058O.manifest (Malware.Trace) -> No action taken.
C:\Documents and Settings\LocalService\Application Data\020000006a0db9fc1058P.manifest (Malware.Trace) -> No action taken.
C:\Documents and Settings\LocalService\Application Data\020000006a0db9fc1058S.manifest (Malware.Trace) -> No action taken.
C:\WINDOWS\system32\020000006a0db9fc1058C.manifest (Malware.Trace) -> No action taken.
C:\WINDOWS\system32\020000006a0db9fc1058O.manifest (Malware.Trace) -> No action taken.
C:\WINDOWS\system32\020000006a0db9fc1058P.manifest (Malware.Trace) -> No action taken.
C:\WINDOWS\system32\020000006a0db9fc1058S.manifest (Malware.Trace) -> No action taken.
C:\WINDOWS\system32\GnuHashes.ini (Trojan.Tracur) -> No action taken.
Pouvez vous m'aider? Voici le rapport que j'ai obtenu avec mb:
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org
Version de la base de données: 5066
Windows 5.1.2600 Service Pack 3 (Safe Mode)
Internet Explorer 7.0.5730.13
07/11/2010 18:15:53
mbam-log-2010-11-07 (18-15-53).txt
Type d'examen: Examen complet (C:\|)
Elément(s) analysé(s): 241664
Temps écoulé: 36 minute(s), 27 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 1
Clé(s) du Registre infectée(s): 15
Valeur(s) du Registre infectée(s): 2
Elément(s) de données du Registre infecté(s): 2
Dossier(s) infecté(s): 8
Fichier(s) infecté(s): 55
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
C:\WINDOWS\system32\mscorier32.dll (Trojan.Tracur) -> No action taken.
Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{04d7cafb-3d9f-4e17-a58c-9a9b57a33007} (Trojan.Vundo.H) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{04d7cafb-3d9f-4e17-a58c-9a9b57a33007} (Trojan.Vundo.H) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{2878de21-1fd0-8c11-57b0-2f01c9289b7e} (Trojan.Tracur) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2878de21-1fd0-8c11-57b0-2f01c9289b7e} (Trojan.Tracur) -> No action taken.
HKEY_CLASSES_ROOT\shopperreports.reporter (Adware.ShopperReports) -> No action taken.
HKEY_CLASSES_ROOT\shopperreports.reporter.1 (Adware.ShopperReports) -> No action taken.
HKEY_CLASSES_ROOT\AppID\{0d82acd6-a652-4496-a298-2bde705f4227} (Adware.ClickPotato) -> No action taken.
HKEY_CLASSES_ROOT\AppID\{7025e484-d4b0-441a-9f0b-69063bd679ce} (Adware.ClickPotato) -> No action taken.
HKEY_CLASSES_ROOT\AppID\{8258b35c-05b8-4c0e-9525-9bccc70f8f2d} (Adware.ClickPotato) -> No action taken.
HKEY_CLASSES_ROOT\AppID\{a89256ad-ec17-4a83-bef5-4b8bc4f39306} (Adware.ClickPotato) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\queryexplorer (Adware.QueryExplorer) -> No action taken.
HKEY_CLASSES_ROOT\.fsharproj (Trojan.BHO) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\QueryExplorer (Adware.QueryExplorer) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_QUERYEXPLORER_SERVICE (Adware.QueryExplorer) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\QueryExplorer Service (Adware.QueryExplorer) -> No action taken.
Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform\srs_it_e8790571b77659553eac91 (Malware.Trace) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\rthdbpl (Trojan.Agent) -> No action taken.
Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: c:\windows\system32\mscorier32.dll -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: system32\mscorier32.dll -> No action taken.
Dossier(s) infecté(s):
C:\Documents and Settings\All Users\Application Data\QueryExplorer (Adware.QueryExplorer) -> No action taken.
C:\Documents and Settings\Anne Bigot\Application Data\SysWin (Trojan.Agent) -> No action taken.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464} (Adware.QueryExplorer) -> No action taken.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\chrome (Adware.QueryExplorer) -> No action taken.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\defaults (Adware.QueryExplorer) -> No action taken.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\defaults\preferences (Adware.QueryExplorer) -> No action taken.
C:\Program Files\QueryExplorer (Adware.QueryExplorer) -> No action taken.
C:\WINDOWS\system32\SysWoW32 (Worm.Archive) -> No action taken.
Fichier(s) infecté(s):
C:\WINDOWS\system32\mscorier32.dll (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP372\A0050770.exe (Adware.QueryExplorer) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP373\A0050841.dll (Adware.ClickPotato) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP373\A0050845.dll (Adware.ClickPotato) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP375\A0050920.dll (Adware.ClickPotato) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP375\A0050921.dll (Adware.ClickPotato) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051472.dll (Adware.ShopperReports) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051473.dll (Adware.ShopperReports) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051474.dll (Adware.ShopperReports) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051477.dll (Adware.ShopperReports) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051479.dll (Adware.ShopperReports) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051480.dll (Adware.ShopperReports) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051481.dll (Adware.ShopperReports) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051482.exe (Adware.ShopperReports) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP403\A0054217.exe (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP403\A0054223.exe (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP404\A0054297.exe (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP404\A0054339.exe (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054662.exe (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054663.exe (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054664.exe (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054665.dll (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054666.exe (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054667.exe (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054668.exe (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054669.exe (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054670.exe (Trojan.Tracur) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054671.exe (Adware.QueryExplorer) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054672.exe (Adware.QueryExplorer) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054673.exe (Adware.QueryExplorer) -> No action taken.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054674.exe (Trojan.Tracur) -> No action taken.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\chrome.manifest (Adware.QueryExplorer) -> No action taken.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\install.rdf (Adware.QueryExplorer) -> No action taken.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\chrome\queryexplorer.jar (Adware.QueryExplorer) -> No action taken.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\defaults\preferences\prefs.js (Adware.QueryExplorer) -> No action taken.
C:\Program Files\QueryExplorer\uninstall.exe (Adware.QueryExplorer) -> No action taken.
C:\WINDOWS\system32\SysWoW32\mu1584115995v4.kwd (Worm.Archive) -> No action taken.
C:\WINDOWS\system32\SysWoW32\mu1584115995v5.kwd (Worm.Archive) -> No action taken.
C:\WINDOWS\system32\SysWoW32\mu1584115995v6.kwd (Worm.Archive) -> No action taken.
C:\WINDOWS\system32\SysWoW32\mu1584115995v7.kwd (Worm.Archive) -> No action taken.
C:\WINDOWS\system32\SysWoW32\wu1584115995v0 (Worm.Archive) -> No action taken.
C:\WINDOWS\system32\SysWoW32\wu1584115995v0.kwd (Worm.Archive) -> No action taken.
C:\WINDOWS\system32\SysWoW32\wu1584115995v1.kwd (Worm.Archive) -> No action taken.
C:\WINDOWS\system32\SysWoW32\wu1584115995v2.kwd (Worm.Archive) -> No action taken.
C:\WINDOWS\system32\SysWoW32\wu1584115995v3.kwd (Worm.Archive) -> No action taken.
C:\WINDOWS\system32\SysWoW32\_u1584115995v0 (Worm.Archive) -> No action taken.
C:\Documents and Settings\LocalService\Application Data\020000006a0db9fc1058C.manifest (Malware.Trace) -> No action taken.
C:\Documents and Settings\LocalService\Application Data\020000006a0db9fc1058O.manifest (Malware.Trace) -> No action taken.
C:\Documents and Settings\LocalService\Application Data\020000006a0db9fc1058P.manifest (Malware.Trace) -> No action taken.
C:\Documents and Settings\LocalService\Application Data\020000006a0db9fc1058S.manifest (Malware.Trace) -> No action taken.
C:\WINDOWS\system32\020000006a0db9fc1058C.manifest (Malware.Trace) -> No action taken.
C:\WINDOWS\system32\020000006a0db9fc1058O.manifest (Malware.Trace) -> No action taken.
C:\WINDOWS\system32\020000006a0db9fc1058P.manifest (Malware.Trace) -> No action taken.
C:\WINDOWS\system32\020000006a0db9fc1058S.manifest (Malware.Trace) -> No action taken.
C:\WINDOWS\system32\GnuHashes.ini (Trojan.Tracur) -> No action taken.
j'ai eu ca aussi :
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org
Version de la base de données: 5066
Windows 5.1.2600 Service Pack 3 (Safe Mode)
Internet Explorer 7.0.5730.13
07/11/2010 18:18:12
mbam-log-2010-11-07 (18-18-12).txt
Type d'examen: Examen complet (C:\|)
Elément(s) analysé(s): 241664
Temps écoulé: 36 minute(s), 27 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 1
Clé(s) du Registre infectée(s): 15
Valeur(s) du Registre infectée(s): 2
Elément(s) de données du Registre infecté(s): 2
Dossier(s) infecté(s): 8
Fichier(s) infecté(s): 55
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
C:\WINDOWS\system32\mscorier32.dll (Trojan.Tracur) -> Delete on reboot.
Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{04d7cafb-3d9f-4e17-a58c-9a9b57a33007} (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{04d7cafb-3d9f-4e17-a58c-9a9b57a33007} (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2878de21-1fd0-8c11-57b0-2f01c9289b7e} (Trojan.Tracur) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2878de21-1fd0-8c11-57b0-2f01c9289b7e} (Trojan.Tracur) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\shopperreports.reporter (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\shopperreports.reporter.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{0d82acd6-a652-4496-a298-2bde705f4227} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{7025e484-d4b0-441a-9f0b-69063bd679ce} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{8258b35c-05b8-4c0e-9525-9bccc70f8f2d} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{a89256ad-ec17-4a83-bef5-4b8bc4f39306} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\queryexplorer (Adware.QueryExplorer) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\.fsharproj (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\QueryExplorer (Adware.QueryExplorer) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_QUERYEXPLORER_SERVICE (Adware.QueryExplorer) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\QueryExplorer Service (Adware.QueryExplorer) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform\srs_it_e8790571b77659553eac91 (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\rthdbpl (Trojan.Agent) -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: c:\windows\system32\mscorier32.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: system32\mscorier32.dll -> Quarantined and deleted successfully.
Dossier(s) infecté(s):
C:\Documents and Settings\All Users\Application Data\QueryExplorer (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\Documents and Settings\Anne Bigot\Application Data\SysWin (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464} (Adware.QueryExplorer) -> Delete on reboot.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\chrome (Adware.QueryExplorer) -> Delete on reboot.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\defaults (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\defaults\preferences (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\Program Files\QueryExplorer (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\SysWoW32 (Worm.Archive) -> Quarantined and deleted successfully.
Fichier(s) infecté(s):
C:\WINDOWS\system32\mscorier32.dll (Trojan.Tracur) -> Delete on reboot.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP372\A0050770.exe (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP373\A0050841.dll (Adware.ClickPotato) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP373\A0050845.dll (Adware.ClickPotato) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP375\A0050920.dll (Adware.ClickPotato) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP375\A0050921.dll (Adware.ClickPotato) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051472.dll (Adware.ShopperReports) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051473.dll (Adware.ShopperReports) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051474.dll (Adware.ShopperReports) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051477.dll (Adware.ShopperReports) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051479.dll (Adware.ShopperReports) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051480.dll (Adware.ShopperReports) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051481.dll (Adware.ShopperReports) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051482.exe (Adware.ShopperReports) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP403\A0054217.exe (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP403\A0054223.exe (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP404\A0054297.exe (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP404\A0054339.exe (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054662.exe (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054663.exe (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054664.exe (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054665.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054666.exe (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054667.exe (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054668.exe (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054669.exe (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054670.exe (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054671.exe (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054672.exe (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054673.exe (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054674.exe (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\chrome.manifest (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\install.rdf (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\chrome\queryexplorer.jar (Adware.QueryExplorer) -> Delete on reboot.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\defaults\preferences\prefs.js (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\Program Files\QueryExplorer\uninstall.exe (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\SysWoW32\mu1584115995v4.kwd (Worm.Archive) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\SysWoW32\mu1584115995v5.kwd (Worm.Archive) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\SysWoW32\mu1584115995v6.kwd (Worm.Archive) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\SysWoW32\mu1584115995v7.kwd (Worm.Archive) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\SysWoW32\wu1584115995v0 (Worm.Archive) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\SysWoW32\wu1584115995v0.kwd (Worm.Archive) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\SysWoW32\wu1584115995v1.kwd (Worm.Archive) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\SysWoW32\wu1584115995v2.kwd (Worm.Archive) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\SysWoW32\wu1584115995v3.kwd (Worm.Archive) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\SysWoW32\_u1584115995v0 (Worm.Archive) -> Quarantined and deleted successfully.
C:\Documents and Settings\LocalService\Application Data\020000006a0db9fc1058C.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\Documents and Settings\LocalService\Application Data\020000006a0db9fc1058O.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\Documents and Settings\LocalService\Application Data\020000006a0db9fc1058P.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\Documents and Settings\LocalService\Application Data\020000006a0db9fc1058S.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\020000006a0db9fc1058C.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\020000006a0db9fc1058O.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\020000006a0db9fc1058P.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\020000006a0db9fc1058S.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\GnuHashes.ini (Trojan.Tracur) -> Quarantined and deleted successfully.
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org
Version de la base de données: 5066
Windows 5.1.2600 Service Pack 3 (Safe Mode)
Internet Explorer 7.0.5730.13
07/11/2010 18:18:12
mbam-log-2010-11-07 (18-18-12).txt
Type d'examen: Examen complet (C:\|)
Elément(s) analysé(s): 241664
Temps écoulé: 36 minute(s), 27 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 1
Clé(s) du Registre infectée(s): 15
Valeur(s) du Registre infectée(s): 2
Elément(s) de données du Registre infecté(s): 2
Dossier(s) infecté(s): 8
Fichier(s) infecté(s): 55
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
C:\WINDOWS\system32\mscorier32.dll (Trojan.Tracur) -> Delete on reboot.
Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{04d7cafb-3d9f-4e17-a58c-9a9b57a33007} (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{04d7cafb-3d9f-4e17-a58c-9a9b57a33007} (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2878de21-1fd0-8c11-57b0-2f01c9289b7e} (Trojan.Tracur) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2878de21-1fd0-8c11-57b0-2f01c9289b7e} (Trojan.Tracur) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\shopperreports.reporter (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\shopperreports.reporter.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{0d82acd6-a652-4496-a298-2bde705f4227} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{7025e484-d4b0-441a-9f0b-69063bd679ce} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{8258b35c-05b8-4c0e-9525-9bccc70f8f2d} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{a89256ad-ec17-4a83-bef5-4b8bc4f39306} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\queryexplorer (Adware.QueryExplorer) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\.fsharproj (Trojan.BHO) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\QueryExplorer (Adware.QueryExplorer) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_QUERYEXPLORER_SERVICE (Adware.QueryExplorer) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\QueryExplorer Service (Adware.QueryExplorer) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform\srs_it_e8790571b77659553eac91 (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\rthdbpl (Trojan.Agent) -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: c:\windows\system32\mscorier32.dll -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur) -> Data: system32\mscorier32.dll -> Quarantined and deleted successfully.
Dossier(s) infecté(s):
C:\Documents and Settings\All Users\Application Data\QueryExplorer (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\Documents and Settings\Anne Bigot\Application Data\SysWin (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464} (Adware.QueryExplorer) -> Delete on reboot.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\chrome (Adware.QueryExplorer) -> Delete on reboot.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\defaults (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\defaults\preferences (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\Program Files\QueryExplorer (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\SysWoW32 (Worm.Archive) -> Quarantined and deleted successfully.
Fichier(s) infecté(s):
C:\WINDOWS\system32\mscorier32.dll (Trojan.Tracur) -> Delete on reboot.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP372\A0050770.exe (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP373\A0050841.dll (Adware.ClickPotato) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP373\A0050845.dll (Adware.ClickPotato) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP375\A0050920.dll (Adware.ClickPotato) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP375\A0050921.dll (Adware.ClickPotato) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051472.dll (Adware.ShopperReports) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051473.dll (Adware.ShopperReports) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051474.dll (Adware.ShopperReports) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051477.dll (Adware.ShopperReports) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051479.dll (Adware.ShopperReports) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051480.dll (Adware.ShopperReports) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051481.dll (Adware.ShopperReports) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP377\A0051482.exe (Adware.ShopperReports) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP403\A0054217.exe (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP403\A0054223.exe (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP404\A0054297.exe (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP404\A0054339.exe (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054662.exe (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054663.exe (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054664.exe (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054665.dll (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054666.exe (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054667.exe (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054668.exe (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054669.exe (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054670.exe (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054671.exe (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054672.exe (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054673.exe (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{4A15CF25-4008-4459-8160-D1ABD7B17003}\RP409\A0054674.exe (Trojan.Tracur) -> Quarantined and deleted successfully.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\chrome.manifest (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\install.rdf (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\chrome\queryexplorer.jar (Adware.QueryExplorer) -> Delete on reboot.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\defaults\preferences\prefs.js (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\Program Files\QueryExplorer\uninstall.exe (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\SysWoW32\mu1584115995v4.kwd (Worm.Archive) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\SysWoW32\mu1584115995v5.kwd (Worm.Archive) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\SysWoW32\mu1584115995v6.kwd (Worm.Archive) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\SysWoW32\mu1584115995v7.kwd (Worm.Archive) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\SysWoW32\wu1584115995v0 (Worm.Archive) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\SysWoW32\wu1584115995v0.kwd (Worm.Archive) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\SysWoW32\wu1584115995v1.kwd (Worm.Archive) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\SysWoW32\wu1584115995v2.kwd (Worm.Archive) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\SysWoW32\wu1584115995v3.kwd (Worm.Archive) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\SysWoW32\_u1584115995v0 (Worm.Archive) -> Quarantined and deleted successfully.
C:\Documents and Settings\LocalService\Application Data\020000006a0db9fc1058C.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\Documents and Settings\LocalService\Application Data\020000006a0db9fc1058O.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\Documents and Settings\LocalService\Application Data\020000006a0db9fc1058P.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\Documents and Settings\LocalService\Application Data\020000006a0db9fc1058S.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\020000006a0db9fc1058C.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\020000006a0db9fc1058O.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\020000006a0db9fc1058P.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\020000006a0db9fc1058S.manifest (Malware.Trace) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\GnuHashes.ini (Trojan.Tracur) -> Quarantined and deleted successfully.
