Sujet Précédent Sujet Suivant

Cheval de troie, virus récalcitrant avc avast

Fermé
LaetiPeter13 - 27 avril 2010 à 00:17
johnny la fleur Messages postés 4 Date d'inscription lundi 26 avril 2010 Statut Membre Dernière intervention 28 avril 2010 - 28 avril 2010 à 12:25
Bonjour, j'ai un gros problème avec mon pc portable, je me doutais deja depuis un moment qu'il devais avoir des virus ou autres car pas mal de logiciels, et mon lecteur de cd/dvd ne fonctionne plus. Je ne pouvais donc pas mettre mon antivirus BIT DEFENDER que j'ai acheté pour celui ci et mon pc fixe, j'ai donc mis ma clé 3g afin de télécharger Avast. Depuis hier j'ai du avoir pas mois de 1000 chevaux de troie ou autres, je les ai donc supprimés une fois qu'ils étaient dans la zone de quarantaine mais je ne sais pas si j'ai bien fait. En ce moment je fais un scan minutieux par Avast et également un scan on line par bit defender.
Que faudrai t-il que je fasse de plus? Est-ce suffisant ou faudra t'il formater le pc pour eradiquer complètement ces virus?
Merci de m'aider je n'y connais pas grand chose!
A voir également:

8 réponses

Réponse 1 / 8
johnny la fleur Messages postés 4 Date d'inscription lundi 26 avril 2010 Statut Membre Dernière intervention 28 avril 2010
27 avril 2010 à 00:42
ok
bonsoir mon ami, on ne panique pas
poursuit le scan avec avast, mais attention!
avant de supprimer les virus verifie bien leurs sources car avast detecte souvent certains fichiers systemes comme des virus et generalement sous windows ce sont les fichiers du "systemes32" alors fait tres attention et par la suite analyse egalement ta cle usb.
mais n'oublie pas de fait la mise a jour de ton anti virus.
Merci!
fait moi part de la suite
0
Réponse 2 / 8
LaetiPeter13
27 avril 2010 à 01:07
Desolé je suis pas une pro! ben pour le moment ce qui m'inquiète le plus c'est ce lecteur qui reconnais plus aucun cd ni rien.
La Avast en est a 50°/° et il trouve trois fichiers infectés et ave bit defender quick scan j'ai du le refaire car ma clé 3g est pas super fiable :s
Je recommence et je poste le rapport des que c'est fini
Merci beaucoup!
0
Réponse 3 / 8
LaetiPeter13
27 avril 2010 à 01:39
desolé ca veut pas marcher la copie du rapport, je comprend pas pourquoi.
Bit a trouvé un seul fichier infecté et avast 3 pour le moment.
0
Réponse 4 / 8
LaetiPeter13
27 avril 2010 à 01:57
QuickScan Beta 32-bit v0.9.9.18
-------------------------------

Scan date: Tue Apr 27 00:46:50 2010
Machine ID: 8C6F2E9A



Found 1 infected file!
----------------------

c:\program files\shoppingreport\bin\2.5.0\shoppingreport.dll --> Adware.Generic.29279
--> HKCR\CLSID\{100EB1FD-D03E-47FD-81F3-EE91287F9465}\InprocServer32\(default)



Processes
---------
<unsigned> hp Wireless Assistant 1956 C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
<unsigned> hpqwmi Module 2540 C:\Program Files\hpq\Shared\hpqwmi.exe
<unsigned> Internet 3G+ Bouygues Telecom.exe 3568 C:\Program Files\Internet 3G+ Bouygues Telecom\Internet 3G+ Bouygues Telecom.exe
<unsigned> Microsoft® Windows® Operating System 3456 C:\WINDOWS\system32\ctfmon.exe
<unsigned> Notepad 1980 C:\WINDOWS\system32\NOTEPAD.EXE
<unsigned> Notepad 3104 C:\WINDOWS\system32\NOTEPAD.EXE
<unsigned> SMax4PNP Application 2124 C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
<unsigned> SoundMAX Control Panel 2180 C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
<unsigned> SoundMAX service agent 672 C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
<unsigned> Styler 304 C:\Program Files\styler\Styler.exe
<unsigned> Système d'exploitation Microsoft® Windo 3388 C:\Program Files\Windows Sidebar\sidebar.exe
<unsigned> Système d'exploitation Microsoft® Windo 3140 C:\Program Files\Windows Sidebar\sidebar.exe
<unsigned> Système d'exploitation Microsoft® Windo 1940 C:\WINDOWS\Explorer.EXE
<unsigned> UberIcon Manager.exe 2904 C:\Program Files\UberIcon\UberIcon Manager.exe
<unsigned> Visual Task Tips 2256 C:\Windows\System32\VisualTaskTips.exe

<verified> Agere SoftModem Messaging Applet 1560 C:\WINDOWS\AGRSMMSG.exe
<verified> Alps Pointing-device Driver 1448 C:\Program Files\Apoint2K\Apoint.exe
<verified> Alps Pointing-device Driver for Windows 1472 C:\Program Files\Apoint2K\Apntex.exe
<verified> avast! Antivirus 1788 C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
<verified> avast! Antivirus 3356 C:\Program Files\Alwil Software\Avast5\AvastUI.exe
<verified> CCleaner 1636 C:\Program Files\CCleaner\ccleaner.exe
<verified> DAEMON Tools Lite 3496 C:\Program Files\DAEMON Tools Lite\daemon.exe
<verified> EPSON Status Monitor 3 3520 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICAE.EXE
<verified> Google Chrome 2188 C:\Program Files\Google\Chrome\Application\chrome.exe
<verified> Google Chrome 544 C:\Program Files\Google\Chrome\Application\chrome.exe
<verified> Google Chrome 2104 C:\Program Files\Google\Chrome\Application\chrome.exe
<verified> Google Chrome 3044 C:\Program Files\Google\Chrome\Application\chrome.exe
<verified> Google Chrome 2460 C:\Program Files\Google\Chrome\Application\chrome.exe
<verified> GrooveMonitor Utility 3164 C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
<verified> Intel(R) Common User Interface 432 C:\WINDOWS\system32\hkcmd.exe
<verified> Intel(R) Common User Interface 284 C:\WINDOWS\system32\igfxtray.exe
<verified> Microsoft® .NET Framework 1604 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
<verified> Microsoft® Windows® Operating System 2568 C:\WINDOWS\System32\alg.exe
<verified> Microsoft® Windows® Operating System 776 C:\WINDOWS\system32\csrss.exe
<verified> Microsoft® Windows® Operating System 888 C:\WINDOWS\system32\lsass.exe
<verified> Microsoft® Windows® Operating System 212 C:\WINDOWS\system32\spoolsv.exe
<verified> Microsoft® Windows® Operating System 704 C:\WINDOWS\system32\svchost.exe
<verified> Microsoft® Windows® Operating System 1288 C:\WINDOWS\System32\svchost.exe
<verified> Microsoft® Windows® Operating System 1488 C:\WINDOWS\system32\svchost.exe
<verified> Microsoft® Windows® Operating System 1196 C:\WINDOWS\system32\svchost.exe
<verified> Microsoft® Windows® Operating System 1088 C:\WINDOWS\system32\svchost.exe
<verified> Microsoft® Windows® Operating System 1568 C:\WINDOWS\system32\wbem\wmiprvse.exe
<verified> Microsoft® Windows® Operating System 2528 C:\WINDOWS\system32\wuauclt.exe
<verified> Microsoft® Windows® Operating System 2172 C:\WINDOWS\system32\wuauclt.exe
<verified> Microsoft® Windows® Operating System 1152 C:\WINDOWS\system32\wuauclt.exe
<verified> Services Internet (IIS) 152 C:\WINDOWS\system32\inetsrv\inetinfo.exe
<verified> Système d'exploitation Microsoft® Windo 1008 C:\WINDOWS\SoftwareDistribution\Download\5445df2c8361737abac9095a097e6165\update\update.exe
<verified> Système d'exploitation Microsoft® Windo 876 C:\WINDOWS\system32\services.exe
<verified> Système d'exploitation Microsoft® Windo 588 C:\WINDOWS\System32\smss.exe
<verified> Système d'exploitation Microsoft® Windo 816 C:\WINDOWS\system32\winlogon.exe
<verified> Windows Defender 1972 C:\Program Files\Windows Defender\MSASCui.exe
<verified> Windows Defender 1240 C:\Program Files\Windows Defender\MsMpEng.exe
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 8
LaetiPeter13
27 avril 2010 à 01:59
Network activity
----------------
Process AvastSvc.exe (1788) connected on port 80 (HTTP) --> 88.221.93.89
Process AvastSvc.exe (1788) connected on port 80 (HTTP) --> 88.221.93.96
Process AvastSvc.exe (1788) connected on port 80 (HTTP) --> 88.221.93.98
Process AvastSvc.exe (1788) connected on port 80 (HTTP) --> 88.221.93.120
Process AvastSvc.exe (1788) connected on port 80 (HTTP) --> 64.79.79.115
Process AvastSvc.exe (1788) connected on port 80 (HTTP) --> 64.79.79.115
Process AvastSvc.exe (1788) connected on port 80 (HTTP) --> 64.79.79.115
Process AvastSvc.exe (1788) connected on port 80 (HTTP) --> 64.79.79.115
Process AvastSvc.exe (1788) connected on port 80 (HTTP) --> 74.125.43.101
Process AvastSvc.exe (1788) connected on port 80 (HTTP) --> 74.125.43.101
Process AvastSvc.exe (1788) connected on port 80 (HTTP) --> 74.125.43.138
Process AvastSvc.exe (1788) connected on port 80 (HTTP) --> 91.103.138.62
Process chrome.exe (2104) connected on port 443 (HTTP over SSL) --> 74.125.43.138

Process inetinfo.exe (152) listens on ports: 3024
Process svchost.exe (1196) listens on ports: 135 (RPC)


Autoruns and critical files
---------------------------
<unsigned> Adobe Acrobat C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
<unsigned> DVDCheck Application C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
<unsigned> hp Wireless Assistant C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
<unsigned> Microsoft® Windows® Operating System C:\WINDOWS\system32\ctfmon.exe
<unsigned> Microsoft® Windows® Operating System C:\WINDOWS\system32\wpdshserviceobj.dll
<unsigned> SMax4PNP Application C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
<unsigned> SoundMAX Control Panel C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
<unsigned> Styler C:\Program Files\styler\Styler.exe
<unsigned> Système d'exploitation Microsoft® Windo C:\Program Files\Windows Sidebar\sidebar.exe
<unsigned> Système d'exploitation Microsoft® Windo C:\WINDOWS\system32\logonui.exe
<unsigned> Système d'exploitation Microsoft® Windo C:\WINDOWS\system32\shell32.dll
<unsigned> Système d'exploitation Microsoft® Windo C:\WINDOWS\system32\sti_ci.dll
<unsigned> Système d'exploitation Microsoft® Windo C:\WINDOWS\system32\stobject.dll
<unsigned> UberIcon Manager.exe C:\Program Files\UberIcon\UberIcon Manager.exe
<unsigned> Visual Task Tips C:\Windows\System32\VisualTaskTips.exe
<unsigned> vsdrv.exe C:\WINDOWS\system32\Vistadrive\vsdrv.exe
<unsigned> Windows Genuine Advantage C:\WINDOWS\system32\WgaLogon.dll

<verified> Agere SoftModem Messaging Applet C:\WINDOWS\AGRSMMSG.exe
<verified> Alps Pointing-device Driver C:\Program Files\Apoint2K\Apoint.exe
<verified> avast! Antivirus C:\PROGRA~1\ALWILS~1\Avast5\AvastUI.exe
<verified> DAEMON Tools Lite C:\Program Files\DAEMON Tools Lite\daemon.exe
<verified> EPSON Status Monitor 3 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICAE.EXE
<verified> Google Update C:\Program Files\Google\Update\GoogleUpdate.exe
<verified> GrooveMonitor Utility C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
<verified> GrooveShellExtensions Module c:\program files\microsoft office\office12\grooveshellextensions.dll
<verified> Intel(R) Common User Interface C:\WINDOWS\system32\hkcmd.exe
<verified> Intel(R) Common User Interface C:\WINDOWS\system32\igfxsrvc.dll
<verified> Intel(R) Common User Interface C:\WINDOWS\system32\igfxtray.exe
<verified> Microsoft® Windows® Operating System C:\WINDOWS\system32\apphelp.dll
<verified> Microsoft® Windows® Operating System C:\WINDOWS\system32\cryptnet.dll
<verified> Système d'exploitation Microsoft® Windo C:\WINDOWS\system32\browseui.dll
<verified> Système d'exploitation Microsoft® Windo C:\WINDOWS\system32\crypt32.dll
<verified> Système d'exploitation Microsoft® Windo C:\WINDOWS\system32\cscdll.dll
<verified> Système d'exploitation Microsoft® Windo C:\WINDOWS\system32\sclgntfy.dll
<verified> Système d'exploitation Microsoft® Windo c:\windows\system32\userinit.exe
<verified> Système d'exploitation Microsoft® Windo C:\WINDOWS\system32\wlnotify.dll
<verified> Windows Defender C:\Program Files\Windows Defender\MpCmdRun.exe
<verified> Windows Defender c:\program files\windows defender\mpshhook.dll
<verified> Windows Defender C:\Program Files\Windows Defender\MSASCui.exe
<verified> Windows® Internet Explorer C:\WINDOWS\system32\webcheck.dll


Browser plugins
---------------
<unsigned> Adobe Acrobat C:\Program Files\Internet Explorer\plugins\nppdf32.dll
<unsigned> EPSON Web-To-Page c:\program files\epson\epson web-to-page\epson web-to-page.dll
<unsigned> InstallShield Update Service C:\WINDOWS\Downloaded Program Files\dwusplay.dll
<unsigned> InstallShield Update Service C:\WINDOWS\Downloaded Program Files\dwusplay.exe
<unsigned> InstallShield Update Service C:\WINDOWS\Downloaded Program Files\isusweb.dll
<unsigned> Microsoft® Windows® Operating System C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
<unsigned> nppdf32.FRA C:\Program Files\Internet Explorer\plugins\nppdf32.FRA
<unsigned> RealPlayer Version Plugin C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll
<unsigned> RealPlayer(tm) G2 LiveConnect-Enabled P C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll
<unsigned> StylerTB Module C:\Program Files\Styler\TB\StylerTB.dll

<verified> AcroIEHelper Library C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
<verified> BitDefender QuickScan C:\Documents and Settings\Administrateur.61799DC40C2147D\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\hbaokpefboaljmnibacdomagkkfmhodl\0.9.9.18\npqscan.dll
<verified> BitDefender QuickScan C:\Documents and Settings\Administrateur.61799DC40C2147D\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\hbaokpefboaljmnibacdomagkkfmhodl\0.9.9.18\npqslauncher.dll
<verified> Google Update C:\Program Files\Google\Update\1.2.183.23\npGoogleOneClick8.dll
<verified> GrooveShellExtensions Module c:\program files\microsoft office\office12\grooveshellextensions.dll
<verified> Microsoft® Windows® Operating System C:\WINDOWS\system32\rsvpsp.dll
<verified> Microsoft® Windows® Operating System C:\WINDOWS\system32\winrnr.dll
<verified> NPSWF32.dll C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
<verified> ShopperReports c:\program files\shoppingreport\bin\2.5.0\shoppingreport.dll
<verified> Système d'exploitation Microsoft® Windo C:\WINDOWS\system32\mswsock.dll
<verified> Windows Presentation Foundation C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
<verified> Windows® Internet Explorer C:\WINDOWS\system32\ieframe.dll
<verified> Yahoo! Single Instance for Mail c:\program files\yahoo!\companion\installs\cpn\ytsingleinstance.dll
<verified> Yahoo! Toolbar c:\program files\yahoo!\companion\installs\cpn\yt.dll
0
Réponse 6 / 8
LaetiPeter13
27 avril 2010 à 02:02
Missing files
-------------
File not found: C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
referenced in: HKLM\Software\Microsoft\Windows\CurrentVersion\Run\"MsnMsgr"

File not found: C:\WINDOWS\System32\dimsntfy.dll
referenced in: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy\"DllName"

File not found: C:\WINDOWS\System32\hidserv.dll
referenced in: HKLM\System\ControlSet001\services\HidServ\Parameters\"ServiceDll"


Scan
----
<unsigned> MD5: deb88aef013dd1eefb462d7cad642166 C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
<unsigned> MD5: e2757aa6024b99d07b90a3ac8a1c7002 C:\Program Files\Alwil Software\Avast5\1036\Base.dll
<unsigned> MD5: b9c3606cc100851ab518360b3b143b56 C:\Program Files\Alwil Software\Avast5\Aavm4h.dll
<unsigned> MD5: 9c2de8cc604ca0b9b3159bc1f1f37897 C:\Program Files\Alwil Software\Avast5\AavmRpch.dll
<unsigned> MD5: c050fcf245459d9739d7c9f35c3e6543 C:\Program Files\Alwil Software\Avast5\AhResBhv.dll
<unsigned> MD5: 98b88e4c545bfdf0853be8f0e88b9c25 C:\Program Files\Alwil Software\Avast5\AhResMai.dll
<unsigned> MD5: e79db5e7f8b3093db545d179c4e16840 C:\Program Files\Alwil Software\Avast5\ahResMes.dll
<unsigned> MD5: 9fd4b1af566ec3b687b56ffb80c2d20d C:\Program Files\Alwil Software\Avast5\AhResNS.dll
<unsigned> MD5: 4146cbfe2cbefc6a98489788f81b0562 C:\Program Files\Alwil Software\Avast5\ahResP2P.dll
<unsigned> MD5: f6166797cfa677a1e96d93ca9cbf8f6a C:\Program Files\Alwil Software\Avast5\AhResStd.dll
<unsigned> MD5: 73b68ff32ef2bf35e94351daaeb3641a C:\Program Files\Alwil Software\Avast5\AhResWS.dll
<unsigned> MD5: 2e84f62700e169063eb7d7d2141f8c7e C:\Program Files\Alwil Software\Avast5\ashBase.dll
<unsigned> MD5: 5756f4e7410a6cf9b675f49c03ddcb5d C:\Program Files\Alwil Software\Avast5\ashMaiSv.dll
<unsigned> MD5: b9863dde6b6109d5b2eda2f11bf54d25 C:\Program Files\Alwil Software\Avast5\ashServ.dll
<unsigned> MD5: ac954e4d33cd7e7e6d6f73798d4576c3 C:\Program Files\Alwil Software\Avast5\ashTask.dll
<unsigned> MD5: 5231300f5e0a59a50eac3f93d2b4c95a C:\Program Files\Alwil Software\Avast5\ashTaskEx.dll
<unsigned> MD5: dd07b6633607055b15f643a90b2b90c5 C:\Program Files\Alwil Software\Avast5\ashWebSv.dll
<unsigned> MD5: e9ad62f2cda825b7e1b22169d028c4f8 C:\Program Files\Alwil Software\Avast5\aswAux.dll
<unsigned> MD5: 73b999eb4fcf3f0b0951cb2c7398548d C:\Program Files\Alwil Software\Avast5\aswCmnBS.dll
<unsigned> MD5: 76d0ef658394a209eb5e2dfb248f9df6 C:\Program Files\Alwil Software\Avast5\aswCmnIS.dll
<unsigned> MD5: 7573c4352b667e7da363cf4242ad8329 C:\Program Files\Alwil Software\Avast5\aswCmnOS.dll
<unsigned> MD5: 2dd10103b434f7287ec5714839730f03 C:\Program Files\Alwil Software\Avast5\aswEngLdr.dll
<unsigned> MD5: 583932915ce54c5ed3d5f61bb607f338 C:\Program Files\Alwil Software\Avast5\aswIdle.dll
<unsigned> MD5: 292e1d9c2f36fd93a5247bef8109c8e2 C:\Program Files\Alwil Software\Avast5\aswLog.dll
<unsigned> MD5: 8b21dda956cd984c0e524cd718af9e27 C:\Program Files\Alwil Software\Avast5\aswProperty.dll
<unsigned> MD5: 41a27def802426f74137b7e38e7229ac C:\Program Files\Alwil Software\Avast5\aswSqLt.dll
<unsigned> MD5: 51a0d73c8d65797b3e6293718e139864 C:\Program Files\Alwil Software\Avast5\defs\10042600\algo.dll
<unsigned> MD5: c99e05f54f5738a979829ee9ef4e53f6 C:\Program Files\Alwil Software\Avast5\defs\10042600\aswCleanerDLL.dll
<unsigned> MD5: d441ae465257e57c886761b395888379 C:\Program Files\Alwil Software\Avast5\defs\10042600\aswCmnBS.dll
<unsigned> MD5: 88aa5b7b2fa349f5a4f2a0bb3e719d20 C:\Program Files\Alwil Software\Avast5\defs\10042600\aswCmnIS.dll
<unsigned> MD5: 22957e5bb18a65b5942fed90a45045d4 C:\Program Files\Alwil Software\Avast5\defs\10042600\aswCmnOS.dll
<unsigned> MD5: da3b710bab6f6fa97c1698e83c273920 C:\Program Files\Alwil Software\Avast5\defs\10042600\aswEngin.dll
<unsigned> MD5: a60f58cbf92b231414f8ceac9d628cc7 C:\Program Files\Alwil Software\Avast5\defs\10042600\aswScan.dll
<unsigned> MD5: 3978f082274f723ad5a0a8058c2417dd C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
<unsigned> MD5: a00684fd9e951546e70a1b74bd62703e C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
<unsigned> MD5: c06f1a3ff958a10f828eee828623e193 C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
<unsigned> MD5: 1a1446a35d0ab4d9ca462fcdf51cbf9d C:\Program Files\Analog Devices\SoundMAX\SMWDMIF.dll
<unsigned> MD5: c82c0a448b1677948bf8fa3ab3ebd504 C:\Program Files\DAEMON Tools Lite\Lang\ENU.dll
<unsigned> MD5: 43c70ced4a540510ba8c9d8465f681f2 C:\Program Files\DAEMON Tools Lite\Lang\FRA.dll
<unsigned> MD5: 2e7e20e0f64d2eaea2f52e94430bfd30 C:\Program Files\DAEMON Tools Lite\pfctoc.dll
<unsigned> MD5: e8e41362ec073388a92dd1f6da4523e0 C:\Program Files\DAEMON Tools Lite\Plugins\Images\bw5mount.dll
<unsigned> MD5: 8768efafbbff07621aa35ff2b699a487 C:\Program Files\DAEMON Tools Lite\Plugins\Images\bwtmount.dll
<unsigned> MD5: d36c418c8aeff68e72c3beee52749ae0 C:\Program Files\DAEMON Tools Lite\Plugins\Images\ccdmount.dll
<unsigned> MD5: 254a2cd46d23c0b2692dded53fe58048 C:\Program Files\DAEMON Tools Lite\Plugins\Images\cuemount.dll
<unsigned> MD5: 1a1d726dd6eedfda261b63406874aae4 C:\Program Files\DAEMON Tools Lite\Plugins\Images\iszmount.dll
<unsigned> MD5: 81f898d8b1234806a99e65017ea8d2ab C:\Program Files\DAEMON Tools Lite\Plugins\Images\nrgmount.dll
<unsigned> MD5: 908b345bcc15e955ed2957329202baa4 C:\Program Files\DAEMON Tools Lite\Plugins\Images\pdimount.dll
<unsigned> MD5: d5ae88643391e0788e73cca08e3ed743 C:\Program Files\DAEMON Tools Lite\Plugins\Images\pfcmount.dll
<unsigned> MD5: 01319cf4030b3740ba8261e7024acad1 c:\program files\epson\epson web-to-page\epson web-to-page.dll
<unsigned> MD5: 8b46d5a1d3ef08232c04d0eafb871fb2 C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
<unsigned> MD5: 41a6f7b64eab96fc36e8d0bb37266253 C:\Program Files\Fichiers communs\System\Ole DB\oledb32.dll
<unsigned> MD5: b6fd62ffd2328a5b2597c78f7c8716b2 C:\Program Files\Fichiers communs\System\Ole DB\oledb32r.dll
<unsigned> MD5: a1eff7d2f3e6b46514ab7c4f6f99c253 C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
<unsigned> MD5: e423d1db5eb36e9e7294a50a43919c86 C:\Program Files\hpq\Shared\hpqwmi.exe
<unsigned> MD5: 9ae07ea82cb18839b8d09f17efbbf8ff C:\Program Files\Internet 3G+ Bouygues Telecom\AddrBookPlugin.dll
<unsigned> MD5: b0061edba8ca1d0ef9d3e4588d0676a1 C:\Program Files\Internet 3G+ Bouygues Telecom\atcomm.dll
<unsigned> MD5: c891bafd0d943d3aeac420162a2f2db6 C:\Program Files\Internet 3G+ Bouygues Telecom\ConfigFilePlugin.dll
<unsigned> MD5: 03d48a13560c7e5d7f18c3ddc6af8ea3 C:\Program Files\Internet 3G+ Bouygues Telecom\Container.dll
<unsigned> MD5: d7472c37c7294be31f35b90d52aabd0e C:\Program Files\Internet 3G+ Bouygues Telecom\DetectDev.dll
<unsigned> MD5: 2c27d3ef13059c1882f60ed2c8cc5070 C:\Program Files\Internet 3G+ Bouygues Telecom\DeviceMgrPlugin.dll
<unsigned> MD5: 67883167e586df6e35cef62f34e7fbd5 C:\Program Files\Internet 3G+ Bouygues Telecom\DeviceMgrUIPlugin.dll
<unsigned> MD5: fe77ae2f72bcb54cad00c9e03b5d6ba5 C:\Program Files\Internet 3G+ Bouygues Telecom\DeviceOperate.dll
<unsigned> MD5: 9b22c7dfe876eeaa6571706d63650d8d C:\Program Files\Internet 3G+ Bouygues Telecom\DialUpPlugin.dll
<unsigned> MD5: 0d63c74d91c2e80a2ced63ecc31eefaf C:\Program Files\Internet 3G+ Bouygues Telecom\DialupUIPlugin.dll
<unsigned> MD5: 8636338523933065e547d2c648ae339d C:\Program Files\Internet 3G+ Bouygues Telecom\FileManager.dll
<unsigned> MD5: 1a74a45c960fd493395d9574f21f88b7 C:\Program Files\Internet 3G+ Bouygues Telecom\Internet 3G+ Bouygues Telecom.exe
<unsigned> MD5: 28a5dc01992d01a2006fd72b869e2691 C:\Program Files\Internet 3G+ Bouygues Telecom\isaputrace.dll
<unsigned> MD5: 43ad7471546c8723ad58a92754e6be7b C:\Program Files\Internet 3G+ Bouygues Telecom\LayoutPlugin.dll
<unsigned> MD5: 5d895ecca9de8da774502ae59b757d80 C:\Program Files\Internet 3G+ Bouygues Telecom\LocaleMgrPlugin.dll
<unsigned> MD5: 70e11bdec880e0134f70e97ffc437f51 C:\Program Files\Internet 3G+ Bouygues Telecom\MenuMgrPlugin.dll
<unsigned> MD5: 7b93c623333f121dc9e689ccb1b7a733 C:\Program Files\Internet 3G+ Bouygues Telecom\MFC71u.dll
<unsigned> MD5: 561fa2abb31dfa8fab762145f81667c2 C:\Program Files\Internet 3G+ Bouygues Telecom\msvcp71.dll
<unsigned> MD5: 86f1895ae8c5e8b17d99ece768a70732 C:\Program Files\Internet 3G+ Bouygues Telecom\msvcr71.dll
<unsigned> MD5: 6b4ba74327c401384aed1a3c504e1c11 C:\Program Files\Internet 3G+ Bouygues Telecom\NDISAPI.dll
<unsigned> MD5: f1b866f2e1019dc9b453ae54c9ecd412 C:\Program Files\Internet 3G+ Bouygues Telecom\NDISPlugin.dll
<unsigned> MD5: e8b927c65f5b9d6be15ad54032677887 C:\Program Files\Internet 3G+ Bouygues Telecom\NetConnectPlugin.dll
<unsigned> MD5: 2b1de3e6b457b3f5d838453a268e5291 C:\Program Files\Internet 3G+ Bouygues Telecom\NetInfoPlugin.dll
<unsigned> MD5: a3bf57bd7aa9feb4402fc31d956a40b6 C:\Program Files\Internet 3G+ Bouygues Telecom\NetInfoUIExPlugin.dll
<unsigned> MD5: 16f3205478c3b5f61764f051f8a18106 C:\Program Files\Internet 3G+ Bouygues Telecom\NotifyServicePlugin.dll
<unsigned> MD5: 07bdc7d0a36d3258abac98d4d250baeb C:\Program Files\Internet 3G+ Bouygues Telecom\SkinMagicExU.dll
<unsigned> MD5: 88ce0ab0e202313bc4857c37882746e7 C:\Program Files\Internet 3G+ Bouygues Telecom\SkinMagicU.dll
<unsigned> MD5: 0fdee7d1bfd2b36676b0268560f5ced4 C:\Program Files\Internet 3G+ Bouygues Telecom\SMSPlugin.dll
<unsigned> MD5: d1ae9cfa31852b143f4b4b41ee97eaaa C:\Program Files\Internet 3G+ Bouygues Telecom\SMSUIPlugin.dll
<unsigned> MD5: 99ddf65b67786dca9cbc90399b63ca60 C:\Program Files\Internet 3G+ Bouygues Telecom\StatusBarMgrPlugin.dll
<unsigned> MD5: 0ebb6fd71c2061bccd47ccd9ab0a7441 C:\Program Files\Internet 3G+ Bouygues Telecom\ToolBarMgrPlugin.dll
<unsigned> MD5: bd5ecdcd0c07783e1412ee6cbd702257 C:\Program Files\Internet 3G+ Bouygues Telecom\TracePlugin.dll
<unsigned> MD5: 414b383bbe217babbd58dbd1c330f478 C:\Program Files\Internet 3G+ Bouygues Telecom\USSDUIPlugin.dll
<unsigned> MD5: 636baa3404ce5d997c4b64b866001b99 C:\Program Files\Internet 3G+ Bouygues Telecom\XCodec.dll
<unsigned> MD5: 901a96d086fec9acbe0a9634eaccce22 C:\Program Files\Internet 3G+ Bouygues Telecom\XFramePlugin.dll
<unsigned> MD5: 865250e2742e49c02b0c4307ab042478 C:\Program Files\Internet Explorer\plugins\nppdf32.dll
<unsigned> MD5: ebd688fa928958839696f59f95d7906b C:\Program Files\Internet Explorer\plugins\nppdf32.FRA
<unsigned> MD5: 9eb683d06502d849b0829e7b07d34e0d C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
<unsigned> MD5: 699c563eb0b7428838ca3a796500e2e8 C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll
<unsigned> MD5: 89cfc74dc27d34419bfadddf5d8835df C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll
<unsigned> MD5: d68ae8c031b370538f917af176a947f6 C:\Program Files\styler\Styler.exe
<unsigned> MD5: 370ef27dd974f5cb11494aca329ecfab C:\Program Files\Styler\StylerHelper.dll
<unsigned> MD5: a85310c1bb9f598300209b38eb10ae71 C:\Program Files\Styler\TB\StylerTB.dll
<unsigned> MD5: ffd5011d0060b8c47fab00d7cd0566db C:\Program Files\UberIcon\Plugins\iZoom\fx.dll
<unsigned> MD5: a019a4f68df914ce039b447ddb928a37 C:\Program Files\UberIcon\UberIcon Manager.exe
<unsigned> MD5: 08e088d05b15a7c6121b8ce91d779808 C:\Program Files\UberIcon\UberIcon.dll
<unsigned> MD5: 3cd783e40cda964fd609f60b07fdeba2 C:\Program Files\Windows Defender\MsMpRes.dll
<unsigned> MD5: c9bea742ce225cc993c9465fddae4656 C:\Program Files\Windows Media Player\WMPNetwk.exe
<unsigned> MD5: 3212207001f3fd2c0b9ac6c75831d7c1 C:\Program Files\Windows Sidebar\sidebar.exe
<unsigned> MD5: 19326033cc78c77d949186c6e424017c C:\Program Files\Windows Sidebar\vadvapi32.dll
<unsigned> MD5: 502726dd3d85ef2d7834e848acfee459 C:\Program Files\Windows Sidebar\vcomctl32.dll
<unsigned> MD5: ec46685e6b2a545b753a4c959261adbc C:\Program Files\Windows Sidebar\vdwmapi.dll
<unsigned> MD5: b88b0b57a5f130e98549144d4a303417 C:\Program Files\Windows Sidebar\vkernel32.dll
<unsigned> MD5: 51dc8e1b5cd004211e2a66da4b285fd9 C:\Program Files\Windows Sidebar\vmsvcrt.dll
<unsigned> MD5: 9c61e9c2b4c3e2d07326813f19cf5acd C:\Program Files\Windows Sidebar\vntdll.dll
<unsigned> MD5: 5a60222bb723b018939db1e0dca7e99f C:\Program Files\Windows Sidebar\vshell32.dll
<unsigned> MD5: c9a8324d20c427dc80ce2cd97d792f13 C:\Program Files\Windows Sidebar\vuser32.dll
<unsigned> MD5: 3c8a2788ef2be3ff1126584cc4390967 C:\Program Files\Windows Sidebar\vuxtheme.dll
<unsigned> MD5: fdc7c430f1c3a9cb87003f951d1cf8e2 C:\Program Files\Windows Sidebar\vwlanapi.dll
<unsigned> MD5: 8f281f63e9d416a062fb3a53c170240e C:\PROGRA~1\ALWILS~1\Avast5\1036\uiLangRes.dll
<unsigned> MD5: 4be4d03253a962ca71e69885eaac839b C:\PROGRA~1\ALWILS~1\Avast5\aswData.dll
<unsigned> MD5: 535c946b02fa300ca8c8ef363e154e65 C:\PROGRA~1\ALWILS~1\Avast5\aswUtil.dll
<unsigned> MD5: 1a1afd43645750a8966459be45c9a732 C:\PROGRA~1\ALWILS~1\Avast5\CommonRes.dll
<unsigned> MD5: 744ea281298317e91c3bea70bf3843d4 C:\WINDOWS\AppPatch\acadproc.dll
<unsigned> MD5: 3fea9d2edf23b0283c7a66c8dea380bd C:\WINDOWS\Downloaded Program Files\dwusplay.dll
<unsigned> MD5: cdbe35ea59bc9223e4f800bd1db82d27 C:\WINDOWS\Downloaded Program Files\dwusplay.exe
<unsigned> MD5: 0c78701c6f42345dff2b2b6c3c3d01ef C:\WINDOWS\Downloaded Program Files\isusweb.dll
<unsigned> MD5: addc47dfd517f2143d71e9310e414b50 C:\WINDOWS\Explorer.EXE
<unsigned> MD5: e7cc3aeaed9893a88876744cd439f76c C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
<unsigned> MD5: f9102685f97f9ba85f4a70afcf722cfe C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
<unsigned> MD5: 07e642e4d67e226d5830299b42a60f5f C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
<unsigned> MD5: 4f2ea120ff2d56f3a46aa74008ed92bb C:\WINDOWS\system32\batmeter.dll
<unsigned> MD5: 7f012b860cc1e7476f9e636f96c92278 C:\WINDOWS\system32\clipsrv.exe
<unsigned> MD5: c02cb7d081964a7b4992834d0a736220 C:\WINDOWS\system32\cmd.exe
<unsigned> MD5: c15c964136c994aaab112dd6d4a4cadf C:\WINDOWS\system32\comdlg32.dll
<unsigned> MD5: 22766253b0d7c80a6e642a7271b669e3 C:\WINDOWS\system32\comres.dll
<unsigned> MD5: 4388a85074cda2b83795d57a31f17699 C:\WINDOWS\system32\credui.dll
<unsigned> MD5: 5eb88f1b7f8d443f41f6b9eeb1ec3dc1 C:\WINDOWS\system32\cryptui.dll
<unsigned> MD5: 3c2c2cb032ef14e764e1c66e6f28970a C:\WINDOWS\system32\cscui.dll
<unsigned> MD5: 43836cffabac8d6779e8ee55e308df2c C:\WINDOWS\system32\ctfmon.exe
<unsigned> MD5: 7fbef52800a60f781d2f26059e1ef46f C:\WINDOWS\System32\dmadmin.exe
<unsigned> MD5: bf69af73fd1130f5ff051d95c402593e C:\WINDOWS\system32\drivers\DMBOOT.sys
<unsigned> MD5: 71e276f6d189413266ea22171806597b C:\WINDOWS\system32\drivers\SPTD.sys
<unsigned> MD5: f15feafffbb3644ccc80c5da584e6311 C:\WINDOWS\system32\DRIVERS\WudfPf.sys
<unsigned> MD5: 28b524262bce6de1f7ef9f510ba3985b C:\WINDOWS\system32\DRIVERS\wudfrd.sys
<unsigned> MD5: 2f57f8101c6f3558a81fa9b8446b7150 C:\WINDOWS\system32\inetpp.dll
<unsigned> MD5: f8a77797784cb109c036c83f9e54191e C:\WINDOWS\system32\logonui.exe
<unsigned> MD5: e1f8293b0cdd3febd80a4879ca53b771 C:\WINDOWS\system32\MFC71FRA.DLL
<unsigned> MD5: b06cd248f992fe4d16dcaa6c2e5ab043 C:\WINDOWS\system32\msdtc.exe
<unsigned> MD5: d8b97ccd77ed33f1c1c8a30129d9a990 C:\WINDOWS\system32\msgina.dll
<unsigned> MD5: 1005d797a1fdeed1c5d643f1ccc00eb7 C:\WINDOWS\system32\msi.dll
<unsigned> MD5: 3110189abf823fa2d8d1a101216c32ae C:\WINDOWS\system32\msiexec.exe
<unsigned> MD5: c51b4a5c05a5475708e3c81c7765b71d C:\WINDOWS\system32\mspmsnsv.dll
<unsigned> MD5: 86f1895ae8c5e8b17d99ece768a70732 C:\WINDOWS\system32\msvcr71.dll
<unsigned> MD5: 3592241cf73835ceafb0a08421971c62 C:\WINDOWS\system32\msxml3.dll
<unsigned> MD5: f2bdf01b94da1e2cd12fbff8bd8f95db C:\WINDOWS\system32\mydocs.dll
<unsigned> MD5: 14cda663b4f07fec0475e4bbee0f1715 C:\WINDOWS\system32\netshell.dll
<unsigned> MD5: 5d38f1d12b7cfe51e7ce2b09123ddf40 C:\WINDOWS\system32\newdev.dll
<unsigned> MD5: 68b62217d8f6194b31ac59dd20cbcf7b C:\WINDOWS\system32\NOTEPAD.EXE
<unsigned> MD5: 4206526e44d09f067211956c2f7f30b5 C:\WINDOWS\system32\ntshrui.dll
<unsigned> MD5: 28311d1969e7585e387d1ab7fc8adf34 C:\WINDOWS\system32\odbcint.dll
<unsigned> MD5: afec4b4c6d837cd17ec3f0fccfee4544 C:\WINDOWS\system32\ole32.dll
<unsigned> MD5: 9d45b2201d0ecf9f42136c7b99deb8b2 C:\WINDOWS\system32\portabledeviceapi.dll
<unsigned> MD5: 22358578cb321f3325496a3723029409 C:\WINDOWS\system32\portabledevicetypes.dll
<unsigned> MD5: dbcb5e0b9543eebad24d510933aef2b6 C:\WINDOWS\system32\rasdlg.dll
<unsigned> MD5: 58b06624dce476d4a718fe047a83dcf0 C:\WINDOWS\system32\setupapi.dll
<unsigned> MD5: 21fad683f5d9f1a80d8b49629fb6d6fb C:\WINDOWS\system32\sfc_os.dll
<unsigned> MD5: 2b1980e85a079156e8b508cb9f87afc5 C:\WINDOWS\system32\shell32.dll
<unsigned> MD5: b170736d3371f5bf322a981e6d0526de C:\WINDOWS\system32\shimgvw.dll
<unsigned> MD5: 94e5d1795a0855e5f1fb5bdcf903f9da C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
<unsigned> MD5: 193ba3a65468fcc6ece1b54d79785d7d C:\WINDOWS\system32\srclient.dll
<unsigned> MD5: d6069861c8e3f4c10c95e9723db74930 C:\WINDOWS\system32\sti.dll
<unsigned> MD5: e8a0c629ea1e6311424aa0f39d09441c C:\WINDOWS\system32\sti_ci.dll
<unsigned> MD5: d9b9c508f55f6d35935fe2f57b494ecf C:\WINDOWS\system32\stobject.dll
<unsigned> MD5: 0a91667a4c9d3bf3a995ef7a877eaf89 C:\WINDOWS\system32\sxs.dll
<unsigned> MD5: 0a724a70e419cf01598c0bc616232025 C:\WINDOWS\system32\themeui.dll
<unsigned> MD5: 45086139f6a6d7b13e4a82d97c18f5af C:\WINDOWS\system32\userenv.dll
<unsigned> MD5: 38e7bfd55c6c159e63a7a5d17f98dc45 C:\WINDOWS\system32\uxtheme.dll
<unsigned> MD5: 52c3485c4b181163c13fcc4bd6a4505b C:\WINDOWS\system32\Vistadrive\vsdrv.exe
<unsigned> MD5: 9159d60685710bd87c9c808c7f560bb9 C:\Windows\System32\VisualTaskTips.exe
<unsigned> MD5: 99c5894e91a5a7190a76cb0631c5121a C:\WINDOWS\system32\VttHooks.dll
<unsigned> MD5: aff21cfda93e6d555c8d70c5d1ab154b C:\WINDOWS\system32\WgaLogon.dll
<unsigned> MD5: 1e39800e36faea583334375530a27ea4 C:\WINDOWS\system32\wiaservc.dll
<unsigned> MD5: 4b39dc8215d8f6c0fb15412d645ed2da C:\WINDOWS\system32\winsrv.dll
<unsigned> MD5: adeb66a59f6b626e2ac3393816af5bd9 C:\WINDOWS\system32\wintrust.dll
<unsigned> MD5: 045e228f71c31901084b64be59093499 C:\WINDOWS\system32\wpdshserviceobj.dll
<unsigned> MD5: 05231c04253c5bc30b26cbaae680ed89 C:\WINDOWS\System32\WUDFSvc.dll
<unsigned> MD5: 266ef79a4cd7685c3b255443ee9caa0c C:\WINDOWS\system32\xpsp2res.dll
<unsigned> MD5: 3c7def3cbbca6284867aa4621d5d8a54 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_cbb27474\ATL80.dll


No file uploaded.

Scan finished - communication took 28 sec
Total traffic - 0.09 MB sent, 3.08 KB recvd
Scanned 1197 files and modules - 1420 seconds
0
Réponse 7 / 8
sherred Messages postés 8346 Date d'inscription samedi 26 janvier 2008 Statut Membre Dernière intervention 25 mars 2024 350
27 avril 2010 à 07:15
bonjour

on reprend tout a zero

en 1
>>Télécharge random's system information tool (RSIT) http://images.malwareremoval.com/random/RSIT.exe par random/random
>>sauvegarde-le sur le Bureau.
>>Double-clique sur RSIT.exe Clic Continue à l'écran Disclaimer.
>>Si l'outil HIjackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera et tu devras accepter la licence.
>>Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. log.txt qui sera affiché ..ainsi que de info.txt qui sera réduit dans la Barre des Tâches.

Fait un copié / collé sur ta prochaine reponse
0
Réponse 8 / 8
johnny la fleur Messages postés 4 Date d'inscription lundi 26 avril 2010 Statut Membre Dernière intervention 28 avril 2010
28 avril 2010 à 12:25
salut LaetiPeter, j'ai vu le rapport du scan de BetDefender , envoi moi le rapport d'avast en procedant ainsi:

1- double clique sur l'icone d'avast
2- clique sur maintenance
3- vas dans la zone de quarantaines, tu verras tous les fichiers infectés alors
copie tous envoi moi pour verification.
Merci
0

Discussions similaires

Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
Hameçonnage ce soir 499 euros pour abonnement Avast
Colette34 -
Gerper -

2 réponses
4 virus en raison d’un porno ????
valou -
Bello040420 -

9 réponses
Prélèvement dri Avast software
Ml -
dadout -

2 réponses