Problème avast et redemarrage ordinateur
nuleninfo98
Messages postés
29
Statut
Membre
-
sherred Messages postés 8605 Statut Membre -
sherred Messages postés 8605 Statut Membre -
Bonjour,
Lorsque j'allume mon ordinateur, la page windows s'ouvre correctement, mais au bout de 30 secondes environ l'ordinateur se relance et cela en boucle.
J'ai démarré en mode sans échec, afin d'acceder à avast et celui ci est deconnecter et impossible de faire les mises a jour ou d'enclencher les protections residentes et avast.
Je suppose qu'il s'agit d'un virus? Quelqu'un connait il ce problème.
Merci d'avance.
Lorsque j'allume mon ordinateur, la page windows s'ouvre correctement, mais au bout de 30 secondes environ l'ordinateur se relance et cela en boucle.
J'ai démarré en mode sans échec, afin d'acceder à avast et celui ci est deconnecter et impossible de faire les mises a jour ou d'enclencher les protections residentes et avast.
Je suppose qu'il s'agit d'un virus? Quelqu'un connait il ce problème.
Merci d'avance.
A voir également:
- Problème avast et redemarrage ordinateur
- Ordinateur qui rame - Guide
- Réinitialiser ordinateur - Guide
- Clavier de l'ordinateur - Guide
- Forcer redemarrage windows - Guide
- Désinstaller avast - Télécharger - Antivirus & Antimalwares
3 réponses
redemarre en mode sans echec (avec prise en charge reseau)
télécharge Malwarebyte's ici http://www.malwarebytes.org/mbam/program/mbam-setup.exe
le programme va se mettre automatiquement a jour.
S'il manque le fichier COMCTL32.OCX, vous pourrez le télécharger ici
https://www.malekal.com/tutorial-aboutbuster/
Une fois a jour, le programme va se lancer; click sur l'onglet paramètre, et coche la case : "Arrêter internet explorer pendant la suppression".
Click maintenant sur l'onglet recherche et coche la case : "executer un examen rapide".
Puis click sur "rechercher".
Laisse le scanner le pc...
Si des éléments on été trouvés > click sur supprimer la sélection.
si il t'es demandé de redémarrer > click sur "yes".
A la fin un rapport va s'ouvrir; sauvegarde le de manière a le retrouver en vu de le poster sur le forum.
Copie et colle le rapport stp.
PS : les rapport sont aussi rangé dans l onglet rapport/log
télécharge Malwarebyte's ici http://www.malwarebytes.org/mbam/program/mbam-setup.exe
le programme va se mettre automatiquement a jour.
S'il manque le fichier COMCTL32.OCX, vous pourrez le télécharger ici
https://www.malekal.com/tutorial-aboutbuster/
Une fois a jour, le programme va se lancer; click sur l'onglet paramètre, et coche la case : "Arrêter internet explorer pendant la suppression".
Click maintenant sur l'onglet recherche et coche la case : "executer un examen rapide".
Puis click sur "rechercher".
Laisse le scanner le pc...
Si des éléments on été trouvés > click sur supprimer la sélection.
si il t'es demandé de redémarrer > click sur "yes".
A la fin un rapport va s'ouvrir; sauvegarde le de manière a le retrouver en vu de le poster sur le forum.
Copie et colle le rapport stp.
PS : les rapport sont aussi rangé dans l onglet rapport/log
Voici le rapport. Merci.
lwarebytes' Anti-Malware 1.46
www.malwarebytes.org
Version de la base de données: 4162
Windows 5.1.2600 Service Pack 3 (Safe Mode)
Internet Explorer 7.0.5730.13
02/06/2010 20:28:02
mbam-log-2010-06-02 (20-28-02).txt
Type d'examen: Examen rapide
Elément(s) analysé(s): 154240
Temps écoulé: 14 minute(s), 1 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 2
Clé(s) du Registre infectée(s): 92
Valeur(s) du Registre infectée(s): 4
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 1
Fichier(s) infecté(s): 14
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
C:\WINDOWS\system32\msxsltsso.dll (Trojan.GootKit) -> Delete on reboot.
C:\WINDOWS\system32\nmklo.dll (Worm.MarioFev) -> Delete on reboot.
Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{28abc5c0-4fcb-11cf-aax5-81cx1c635612} (Generic.Bot.H) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{0194dce8-afe9-41a9-a03d-9b70f8204534} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{06003ff8-4099-4950-ae1d-e84f21b95feb} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{07b8253c-dc91-49c2-a451-78375d92281a} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{0d7487ab-b18a-450c-a7c5-2901fc4a807b} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{0dd80dea-737f-47aa-8d85-bdf9707c0a81} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{119d80b2-f01b-45f5-839b-c73d77ba9ec5} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{126b36ce-eedb-4aa7-9cce-eba92bb275dc} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{15fa98ae-9189-4918-a206-751369a8778c} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{160fcb5b-b18c-46b9-80af-9e24761b57ec} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1a59e842-1df2-4149-9c83-8f709bd4a357} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1f47ff5c-45d8-4006-9fd8-9ad31d8a2008} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{20b529b5-e229-4f9e-9b8d-8be412a62526} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{24a6d570-369b-4683-b479-79045d304d77} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{268ea91c-1efc-4466-93fd-611c5b98251d} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2725aae7-fa74-4dca-9990-d6185b9eb990} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2b1cdd48-e1c4-4ad4-8b4c-3d8acbaecf39} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2f53d1bb-88ed-4528-966f-3e65b69b5c30} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3094858d-1c24-4c1f-8e45-5f4643d48d90} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3259ace0-fe60-406e-9e82-057b0227a041} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{33eb43aa-a3a0-46ea-adcd-b263e746638a} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{345a5a7d-87e1-4951-9d1a-e8b9460c9d35} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3c62c54a-b6bb-42d3-bd31-1f55ae08950d} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{40f296ae-c65e-4c2b-984f-f39048743b8a} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{44f15c0d-9876-416b-a0d0-d82808872b06} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{463d7568-d74a-40da-8e37-67d90911380e} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{48b087ac-41f1-44bc-8533-60ffab6a327b} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4b76e797-74df-4d3f-af75-97d1cfdac203} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4c737f6f-eb3f-460b-8441-19a88b8e86fa} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4ce5b6c3-66df-4732-a2aa-7ce69c438fa0} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4effcbf2-80eb-4e8c-82d5-b37781c7175a} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5c3bdaa1-62fe-405f-8dc1-459dcbaa3046} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5cead710-d9dc-4565-978a-964aba930259} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5d3feef9-6214-4e72-b385-58d0c54df5e3} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{67f69866-9def-4925-9dbb-abb97f1ff568} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{76617363-5796-4ef8-91e6-8eaa86e71046} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{78a9d2eb-67f3-4a0e-991d-bd6a7eb83f93} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{78c0f7d1-f359-47ec-aa06-29695a0ff361} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7bbdf7f7-c2ab-4103-9ecd-553d491c6ceb} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7c1eed59-6204-4091-bb8e-eaea4b922085} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7f59ff4f-88d2-400b-866c-59696a64389f} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{82cde00b-c2b0-49d9-b85a-0fd0e38176ae} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{832bff24-b2ed-4e37-86b2-3ff4b755a4c9} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8764951b-c885-4e4a-95b7-f7a52d14ed8a} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{89491343-6fdc-4189-bd72-61461e4e2638} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8aa0e5e8-9e71-454b-ae79-93de6afcab0c} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8f552a07-4ba5-49e0-b85f-127e97bdb1ca} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{901ad85e-d8b6-44a7-b206-bfe7bcc229e5} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{90fb801e-d80e-4086-9f74-1ed8d69dced2} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9554e2e0-bfe7-461d-b06b-d91a84c912aa} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9798f1cc-b3a2-4089-a268-9ef5200bc684} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9839faa9-d368-48d9-a535-c443657cd821} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a2a9aaaf-e724-49dd-bc94-cc42559a5b07} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a48f2d1c-2dcf-4e0a-a64f-56db201d23da} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a85438a1-c5bf-4481-a236-ea90a3cad425} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a956769b-5162-4202-9a4a-6b03bd44a202} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ab452271-c82e-4e4f-aa37-bfa027c68d24} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{accd3269-dc57-44a1-82c8-3471060ddbb3} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{aecfa52e-dc11-4de6-9c20-b03f1a43ef26} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b045e1e4-ec73-43a4-87d7-bf38e8278206} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b1cd9081-0792-4e36-957d-ada1076629da} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b26259a0-9edd-492e-a234-945bcc5e5af9} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b28ac0c1-5d5d-4bd9-a81b-3d722023b955} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b5fdbf2e-d537-47aa-a02b-a800fa4ec953} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b78b04d5-c800-4d7c-bce9-2c3e5cbf3ab1} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b8a3e60b-ee23-428f-a736-54ff8b9ffdbd} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{bb923b32-9cc2-4b39-9992-76a1afabf8f4} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{bbdc1e9c-7891-4fed-8160-88bbb5369c29} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c345579e-b496-4f7a-bf77-7368bfdfa729} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c3514f46-0b8b-46fc-b6a2-3f03c26ef951} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c539fdec-2c53-4cb3-bf49-653b2e7c5f46} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c6313972-4bf7-4cc1-a940-719816fb6dc3} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d0702efc-8ea9-4ba4-b735-3fc8485b4bfe} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d4311de9-897e-4023-b968-d5849c8b7972} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d480df70-8fab-4193-8c1c-bae4a864af26} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{db0e3e41-ccad-49f8-9d94-14af0fb274b7} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{de528c3d-93c8-4da1-beea-e50ec984abd4} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e0f9b0a5-6337-439e-b31a-864d04738bec} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e695af37-ecfd-4803-a684-3d0df6582275} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e91f0d9b-640b-4472-9f73-fede3b0d53bf} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{eb6a18e9-dc6c-4ac7-8bd0-54395bda3f87} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ebc695e3-fc9b-4e2a-81e5-d7d2b6db78af} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ed61ea39-8a5f-4a3b-8432-351b9dfa23bc} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{edd92c48-71bd-4c59-872d-f2a630fdb273} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ee6cd3bc-0b94-4048-b9e6-6c231540e87b} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f620ab6f-4f26-40a0-9e10-d14b18aa752e} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{fb297b65-0f6b-45f7-a5d0-ea777002a098} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Active Setup\Installed Components\{28abc5c0-4fcb-11cf-aax5-81cx1c635612} (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\zsoqqwdaf9 (Rootkit.Tent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\setup.exe (Rogue.Installer) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Handle (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\kbupdate (Backdoor.Bot) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\appiaet_dlls (Spyware.Agent.H) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\gootkitsso (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\reader_s (Trojan.Downloader) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\reader_s (Malware.Trace) -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
C:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013 (Trojan.Agent) -> Quarantined and deleted successfully.
Fichier(s) infecté(s):
C:\WINDOWS\system32\nmklo.dll (Spyware.Agent.H) -> Delete on reboot.
C:\WINDOWS\system32\msxsltsso.dll (Trojan.GootKit) -> Delete on reboot.
C:\Documents and Settings\NetworkService\reader_s.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\cooper.mine (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\trz8.tmp (Trojan.GootKit) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\nd.sys (Trojan.Ndiswrap) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\zsoqqwdaf9.sys (Rootkit.Tent) -> Quarantined and deleted successfully.
C:\Documents and Settings\ANNELORE\Local Settings\Temp\_7.tmp (Trojan.Lukicsel) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\BNE.tmp (Trojan.Sasfis) -> Quarantined and deleted successfully.
C:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\Desktop.ini (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files\setup.exe (Rogue.Installer) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\h7t.wt (Malware.Trace) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\hgtd.ruy (Malware.Trace) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\kboem32.dat (Backdoor.Bot) -> Quarantined and deleted successfully.
lwarebytes' Anti-Malware 1.46
www.malwarebytes.org
Version de la base de données: 4162
Windows 5.1.2600 Service Pack 3 (Safe Mode)
Internet Explorer 7.0.5730.13
02/06/2010 20:28:02
mbam-log-2010-06-02 (20-28-02).txt
Type d'examen: Examen rapide
Elément(s) analysé(s): 154240
Temps écoulé: 14 minute(s), 1 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 2
Clé(s) du Registre infectée(s): 92
Valeur(s) du Registre infectée(s): 4
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 1
Fichier(s) infecté(s): 14
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
C:\WINDOWS\system32\msxsltsso.dll (Trojan.GootKit) -> Delete on reboot.
C:\WINDOWS\system32\nmklo.dll (Worm.MarioFev) -> Delete on reboot.
Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{28abc5c0-4fcb-11cf-aax5-81cx1c635612} (Generic.Bot.H) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{0194dce8-afe9-41a9-a03d-9b70f8204534} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{06003ff8-4099-4950-ae1d-e84f21b95feb} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{07b8253c-dc91-49c2-a451-78375d92281a} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{0d7487ab-b18a-450c-a7c5-2901fc4a807b} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{0dd80dea-737f-47aa-8d85-bdf9707c0a81} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{119d80b2-f01b-45f5-839b-c73d77ba9ec5} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{126b36ce-eedb-4aa7-9cce-eba92bb275dc} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{15fa98ae-9189-4918-a206-751369a8778c} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{160fcb5b-b18c-46b9-80af-9e24761b57ec} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1a59e842-1df2-4149-9c83-8f709bd4a357} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1f47ff5c-45d8-4006-9fd8-9ad31d8a2008} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{20b529b5-e229-4f9e-9b8d-8be412a62526} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{24a6d570-369b-4683-b479-79045d304d77} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{268ea91c-1efc-4466-93fd-611c5b98251d} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2725aae7-fa74-4dca-9990-d6185b9eb990} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2b1cdd48-e1c4-4ad4-8b4c-3d8acbaecf39} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{2f53d1bb-88ed-4528-966f-3e65b69b5c30} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3094858d-1c24-4c1f-8e45-5f4643d48d90} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3259ace0-fe60-406e-9e82-057b0227a041} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{33eb43aa-a3a0-46ea-adcd-b263e746638a} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{345a5a7d-87e1-4951-9d1a-e8b9460c9d35} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{3c62c54a-b6bb-42d3-bd31-1f55ae08950d} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{40f296ae-c65e-4c2b-984f-f39048743b8a} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{44f15c0d-9876-416b-a0d0-d82808872b06} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{463d7568-d74a-40da-8e37-67d90911380e} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{48b087ac-41f1-44bc-8533-60ffab6a327b} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4b76e797-74df-4d3f-af75-97d1cfdac203} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4c737f6f-eb3f-460b-8441-19a88b8e86fa} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4ce5b6c3-66df-4732-a2aa-7ce69c438fa0} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{4effcbf2-80eb-4e8c-82d5-b37781c7175a} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5c3bdaa1-62fe-405f-8dc1-459dcbaa3046} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5cead710-d9dc-4565-978a-964aba930259} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{5d3feef9-6214-4e72-b385-58d0c54df5e3} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{67f69866-9def-4925-9dbb-abb97f1ff568} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{76617363-5796-4ef8-91e6-8eaa86e71046} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{78a9d2eb-67f3-4a0e-991d-bd6a7eb83f93} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{78c0f7d1-f359-47ec-aa06-29695a0ff361} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7bbdf7f7-c2ab-4103-9ecd-553d491c6ceb} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7c1eed59-6204-4091-bb8e-eaea4b922085} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{7f59ff4f-88d2-400b-866c-59696a64389f} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{82cde00b-c2b0-49d9-b85a-0fd0e38176ae} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{832bff24-b2ed-4e37-86b2-3ff4b755a4c9} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8764951b-c885-4e4a-95b7-f7a52d14ed8a} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{89491343-6fdc-4189-bd72-61461e4e2638} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8aa0e5e8-9e71-454b-ae79-93de6afcab0c} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8f552a07-4ba5-49e0-b85f-127e97bdb1ca} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{901ad85e-d8b6-44a7-b206-bfe7bcc229e5} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{90fb801e-d80e-4086-9f74-1ed8d69dced2} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9554e2e0-bfe7-461d-b06b-d91a84c912aa} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9798f1cc-b3a2-4089-a268-9ef5200bc684} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9839faa9-d368-48d9-a535-c443657cd821} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a2a9aaaf-e724-49dd-bc94-cc42559a5b07} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a48f2d1c-2dcf-4e0a-a64f-56db201d23da} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a85438a1-c5bf-4481-a236-ea90a3cad425} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a956769b-5162-4202-9a4a-6b03bd44a202} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ab452271-c82e-4e4f-aa37-bfa027c68d24} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{accd3269-dc57-44a1-82c8-3471060ddbb3} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{aecfa52e-dc11-4de6-9c20-b03f1a43ef26} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b045e1e4-ec73-43a4-87d7-bf38e8278206} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b1cd9081-0792-4e36-957d-ada1076629da} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b26259a0-9edd-492e-a234-945bcc5e5af9} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b28ac0c1-5d5d-4bd9-a81b-3d722023b955} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b5fdbf2e-d537-47aa-a02b-a800fa4ec953} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b78b04d5-c800-4d7c-bce9-2c3e5cbf3ab1} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b8a3e60b-ee23-428f-a736-54ff8b9ffdbd} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{bb923b32-9cc2-4b39-9992-76a1afabf8f4} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{bbdc1e9c-7891-4fed-8160-88bbb5369c29} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c345579e-b496-4f7a-bf77-7368bfdfa729} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c3514f46-0b8b-46fc-b6a2-3f03c26ef951} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c539fdec-2c53-4cb3-bf49-653b2e7c5f46} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c6313972-4bf7-4cc1-a940-719816fb6dc3} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d0702efc-8ea9-4ba4-b735-3fc8485b4bfe} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d4311de9-897e-4023-b968-d5849c8b7972} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d480df70-8fab-4193-8c1c-bae4a864af26} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{db0e3e41-ccad-49f8-9d94-14af0fb274b7} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{de528c3d-93c8-4da1-beea-e50ec984abd4} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e0f9b0a5-6337-439e-b31a-864d04738bec} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e695af37-ecfd-4803-a684-3d0df6582275} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e91f0d9b-640b-4472-9f73-fede3b0d53bf} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{eb6a18e9-dc6c-4ac7-8bd0-54395bda3f87} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ebc695e3-fc9b-4e2a-81e5-d7d2b6db78af} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ed61ea39-8a5f-4a3b-8432-351b9dfa23bc} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{edd92c48-71bd-4c59-872d-f2a630fdb273} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{ee6cd3bc-0b94-4048-b9e6-6c231540e87b} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f620ab6f-4f26-40a0-9e10-d14b18aa752e} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{fb297b65-0f6b-45f7-a5d0-ea777002a098} (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Active Setup\Installed Components\{28abc5c0-4fcb-11cf-aax5-81cx1c635612} (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\zsoqqwdaf9 (Rootkit.Tent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\setup.exe (Rogue.Installer) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Handle (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\kbupdate (Backdoor.Bot) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\appiaet_dlls (Spyware.Agent.H) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\gootkitsso (Trojan.GootKit) -> Quarantined and deleted successfully.
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\reader_s (Trojan.Downloader) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\reader_s (Malware.Trace) -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
C:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013 (Trojan.Agent) -> Quarantined and deleted successfully.
Fichier(s) infecté(s):
C:\WINDOWS\system32\nmklo.dll (Spyware.Agent.H) -> Delete on reboot.
C:\WINDOWS\system32\msxsltsso.dll (Trojan.GootKit) -> Delete on reboot.
C:\Documents and Settings\NetworkService\reader_s.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\cooper.mine (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\trz8.tmp (Trojan.GootKit) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\nd.sys (Trojan.Ndiswrap) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\zsoqqwdaf9.sys (Rootkit.Tent) -> Quarantined and deleted successfully.
C:\Documents and Settings\ANNELORE\Local Settings\Temp\_7.tmp (Trojan.Lukicsel) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\BNE.tmp (Trojan.Sasfis) -> Quarantined and deleted successfully.
C:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\Desktop.ini (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files\setup.exe (Rogue.Installer) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\h7t.wt (Malware.Trace) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\hgtd.ruy (Malware.Trace) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\kboem32.dat (Backdoor.Bot) -> Quarantined and deleted successfully.
ouf he bien y reviens de loin ton pc
essaie de redemarrer en mode normal
Télécharge combofix.exe
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
clique combofix.exe.
touche 1 (Yes) pour démarrer le scan.
une fois fini un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse.
Le rapport se trouve également ici : C:\Combofix.txt
Déconnecte toi d'internet ferme les fenêtres de tous les programmes en cours.et provisoirement
arrete les anti virus et autres protection pendand l'analyse
Pendant la durée de l'analyse ne te sert pas de ton pc
une fois l'analyse terminé ,remet toute tes protections antivirus et antispywares
si tu a toujours des problemes hesite pas a le dire
essaie de redemarrer en mode normal
Télécharge combofix.exe
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
clique combofix.exe.
touche 1 (Yes) pour démarrer le scan.
une fois fini un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse.
Le rapport se trouve également ici : C:\Combofix.txt
Déconnecte toi d'internet ferme les fenêtres de tous les programmes en cours.et provisoirement
arrete les anti virus et autres protection pendand l'analyse
Pendant la durée de l'analyse ne te sert pas de ton pc
une fois l'analyse terminé ,remet toute tes protections antivirus et antispywares
si tu a toujours des problemes hesite pas a le dire
