Infectée win32:Agent-Aw et win32:Adware-gen
Résolu
chocolat2006
Messages postés
51
Date d'inscription
Statut
Membre
Dernière intervention
-
Utilisateur anonyme -
Utilisateur anonyme -
O secours!! Win32:Agent-AW et win32:Adware-gen.
Bonjour,
Voilà je vous explique le problème, via une fenêtre msn.messenger, j'ai reçu ce lien www.uglyphotos.net/alfa.exe, avec la phrase «lol check», malheureusement une autre personne que moi se servait de mon pc, donc elle a ouvert le lien et là l'horreur: tout ceux qui sont connecté sur hotmail et en ligne (mes contacts) reçoivent de ma part le même lien avec la même phrase et je ne peux pas les prévenir, donc j'ai fermé msn en attendant alors sur votre site, j'ai trouvé cela:
1ere chose, les devoirs :))
Affiche les dossiers système et fichiers cachés
Ouvrir le poste de travail
- Outils --> Options des dossiers
- Affichage --> zone Paramètres avancés
- Cocher : Afficher le contenu des dossiers système
- Cocher : Afficher les fichiers et dossiers cachés
- Décocher : Masquer les extensions des fichiers dont le type est connu
- Décocher : Masquer les fichiers protégés du système d'exploitation (recommandé)
répondre Oui au message
Clique sur "Appliquer à tous les dossiers"
Clique sur OK
chose que j'ai faite, j'ai vérifié mes mises à jours de Ad-Aware et de Avast, et j'ai rescanné, les deux l'ont détecté, j'ai mis en quarantaine, rien, j'ai supprimé via les scan, rien, j'ai regardé votre site mais j'ai trouvé plusieurs solutions, alors ne connaissant rien à l'informatique je ne suis pas aller plus loin sans votre aide, car j'aimerai vraiment éviter le formatage, par pitié aidez-moi, j'ai passé toute la journée la dessus et hônnetement, je craque, j'ai fait le mode «safeboot» avec l'aide d'une personne, rien et restauration du système mais il ne veut pas car le virus et le cheval de troie bloquent tout.
Je vous remercie infiniment pour votre aide et j'espère que cette question va aussi aider d'autres personnes.
Cordialement, choco 2006
Bonjour,
Voilà je vous explique le problème, via une fenêtre msn.messenger, j'ai reçu ce lien www.uglyphotos.net/alfa.exe, avec la phrase «lol check», malheureusement une autre personne que moi se servait de mon pc, donc elle a ouvert le lien et là l'horreur: tout ceux qui sont connecté sur hotmail et en ligne (mes contacts) reçoivent de ma part le même lien avec la même phrase et je ne peux pas les prévenir, donc j'ai fermé msn en attendant alors sur votre site, j'ai trouvé cela:
1ere chose, les devoirs :))
Affiche les dossiers système et fichiers cachés
Ouvrir le poste de travail
- Outils --> Options des dossiers
- Affichage --> zone Paramètres avancés
- Cocher : Afficher le contenu des dossiers système
- Cocher : Afficher les fichiers et dossiers cachés
- Décocher : Masquer les extensions des fichiers dont le type est connu
- Décocher : Masquer les fichiers protégés du système d'exploitation (recommandé)
répondre Oui au message
Clique sur "Appliquer à tous les dossiers"
Clique sur OK
chose que j'ai faite, j'ai vérifié mes mises à jours de Ad-Aware et de Avast, et j'ai rescanné, les deux l'ont détecté, j'ai mis en quarantaine, rien, j'ai supprimé via les scan, rien, j'ai regardé votre site mais j'ai trouvé plusieurs solutions, alors ne connaissant rien à l'informatique je ne suis pas aller plus loin sans votre aide, car j'aimerai vraiment éviter le formatage, par pitié aidez-moi, j'ai passé toute la journée la dessus et hônnetement, je craque, j'ai fait le mode «safeboot» avec l'aide d'une personne, rien et restauration du système mais il ne veut pas car le virus et le cheval de troie bloquent tout.
Je vous remercie infiniment pour votre aide et j'espère que cette question va aussi aider d'autres personnes.
Cordialement, choco 2006
A voir également:
- Infectée win32:Agent-Aw et win32:Adware-gen
- Comment savoir si une clé usb est infectée - Guide
- Puabundler win32 candyopen - Forum Virus
- Win32:miscx-gen ✓ - Forum Linux / Unix
- Puabundler win32 rostpay ✓ - Forum Antivirus
- Puadimanager win32/offercore ✓ - Forum Virus
12 réponses
Salut,
on va regarder ça d'un peu plus près
Télécharge HijackThis:
Téléchargement de HijackThis
Installe le dans son propre dossier:
-clic droit sur le bureau, choisis "nouveau dossier" puis installe le dedans.
Lance le, clic sur "do a system scan and save logfile"
Puis copie et colle le rapport ici stp
on va regarder ça d'un peu plus près
Télécharge HijackThis:
Téléchargement de HijackThis
Installe le dans son propre dossier:
-clic droit sur le bureau, choisis "nouveau dossier" puis installe le dedans.
Lance le, clic sur "do a system scan and save logfile"
Puis copie et colle le rapport ici stp
Bonjour boulepate62,
Voici le rapport demandé:
Logfile of HijackThis v1.99.1
Scan saved at 21:38:15, on 2006-09-18
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hkcmd.exe
C:\HP\KBD\KBD.EXE
C:\WINDOWS\ALCXMNTR.EXE
C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Documents and Settings\Compaq_Propriétaire\Xinstall.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\MSN Messenger\msgs.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Documents and Settings\Compaq_Propriétaire\Bureau\crane\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.fr.msn.ca/0SEFRCA/SAOS01
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.infinit.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://fr.rd.yahoo.com/customize/ie/defaults/sb/ymsgr6/fr/*http://www.yahoo.com/ext/search/search.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - Default URLSearchHook is missing
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - (no file)
O2 - BHO: (no name) - {BDF3E430-B101-42AD-A544-FADC6B084872} - (no file)
O3 - Toolbar: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - (no file)
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [IcoSet] c:\hp\bin\cloaker.exe c:\hp\bin\IcoSet\adjust.bat seticon
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [explorer] C:\Documents and Settings\Compaq_Propriétaire\Xinstall.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - https://onedrive.live.com/
O16 - DPF: {88D758A3-D33B-45FD-91E3-67749B4057FA} - http://dm.screensavers.com/dm/installers/si/1/sinstaller.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B160422D-0A48-11D4-BD9B-00A0C9B0AB7B} (Download Class) - http://expressit.broderbund.com/plugin/Download.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
Merci pour ton aide précieuse,
Chocolat2006
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
Voici le rapport demandé:
Logfile of HijackThis v1.99.1
Scan saved at 21:38:15, on 2006-09-18
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hkcmd.exe
C:\HP\KBD\KBD.EXE
C:\WINDOWS\ALCXMNTR.EXE
C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Documents and Settings\Compaq_Propriétaire\Xinstall.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\MSN Messenger\msgs.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Documents and Settings\Compaq_Propriétaire\Bureau\crane\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.fr.msn.ca/0SEFRCA/SAOS01
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.infinit.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://fr.rd.yahoo.com/customize/ie/defaults/sb/ymsgr6/fr/*http://www.yahoo.com/ext/search/search.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - Default URLSearchHook is missing
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - (no file)
O2 - BHO: (no name) - {BDF3E430-B101-42AD-A544-FADC6B084872} - (no file)
O3 - Toolbar: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - (no file)
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [IcoSet] c:\hp\bin\cloaker.exe c:\hp\bin\IcoSet\adjust.bat seticon
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [explorer] C:\Documents and Settings\Compaq_Propriétaire\Xinstall.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - https://onedrive.live.com/
O16 - DPF: {88D758A3-D33B-45FD-91E3-67749B4057FA} - http://dm.screensavers.com/dm/installers/si/1/sinstaller.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B160422D-0A48-11D4-BD9B-00A0C9B0AB7B} (Download Class) - http://expressit.broderbund.com/plugin/Download.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
Merci pour ton aide précieuse,
Chocolat2006
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
Salut Chocolat
Relance HijackThis, choisis "do a scan only" coche la case devant les lignes ci-dessous et clic en bas sur "fix checked"
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.fr.msn.ca/0SEFRCA/SAOS01
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R3 - Default URLSearchHook is missing
O2 - BHO: (no name) - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - (no file)
O2 - BHO: (no name) - {BDF3E430-B101-42AD-A544-FADC6B084872} - (no file)
O3 - Toolbar: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - (no file)
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [explorer] C:\Documents and Settings\Compaq_Propriétaire\Xinstall.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - https://onedrive.live.com/
O16 - DPF: {88D758A3-D33B-45FD-91E3-67749B4057FA} - http://dm.screensavers.com/dm/installers/si/1/sinstaller.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B160422D-0A48-11D4-BD9B-00A0C9B0AB7B} (Download Class) - http://expressit.broderbund.com/plugin/Download.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
Clique sur demarrer, rechercher, cherche et supprime ces fichiers
Xinstall.exe
ALCXMNTR.EXE
**Si un fichier persiste lors de la suppression fais ceci:
-Redemarres ton pc, dès l'allumage de celui-ci tapote la touche F8 (ou F5 si F8 ne fonctionne pas), à l'écran qui va apparaitre choisis "mode sans echec" attends un peu.. puis vas supprimer les fichiers/dossiers qui persistaient, vides ta corbeille et redemarres normalement
Telecharge, installe puis mets à jour ce logiciel(Ewido), une fois que c'est fait, fais un scan complet de ton système, supprime (delete) tout ce qu'il te trouve puis colle le rapport ici avec un nouveau rapport hijackthis
Ewido: (reste gratuit après la période d'essai)
Télécharger Ewido Security Suite
A++
Relance HijackThis, choisis "do a scan only" coche la case devant les lignes ci-dessous et clic en bas sur "fix checked"
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.fr.msn.ca/0SEFRCA/SAOS01
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R3 - Default URLSearchHook is missing
O2 - BHO: (no name) - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - (no file)
O2 - BHO: (no name) - {BDF3E430-B101-42AD-A544-FADC6B084872} - (no file)
O3 - Toolbar: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - (no file)
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [explorer] C:\Documents and Settings\Compaq_Propriétaire\Xinstall.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - https://onedrive.live.com/
O16 - DPF: {88D758A3-D33B-45FD-91E3-67749B4057FA} - http://dm.screensavers.com/dm/installers/si/1/sinstaller.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B160422D-0A48-11D4-BD9B-00A0C9B0AB7B} (Download Class) - http://expressit.broderbund.com/plugin/Download.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
Clique sur demarrer, rechercher, cherche et supprime ces fichiers
Xinstall.exe
ALCXMNTR.EXE
**Si un fichier persiste lors de la suppression fais ceci:
-Redemarres ton pc, dès l'allumage de celui-ci tapote la touche F8 (ou F5 si F8 ne fonctionne pas), à l'écran qui va apparaitre choisis "mode sans echec" attends un peu.. puis vas supprimer les fichiers/dossiers qui persistaient, vides ta corbeille et redemarres normalement
Telecharge, installe puis mets à jour ce logiciel(Ewido), une fois que c'est fait, fais un scan complet de ton système, supprime (delete) tout ce qu'il te trouve puis colle le rapport ici avec un nouveau rapport hijackthis
Ewido: (reste gratuit après la période d'essai)
Télécharger Ewido Security Suite
A++
Bonjour Bouleplate,
voici le rapport demandé,
Logfile of HijackThis v1.99.1
Scan saved at 15:14:35, on 2006-09-19
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hkcmd.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\MSN Messenger\msgs.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Documents and Settings\Compaq_Propriétaire\Bureau\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.infinit.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://fr.rd.yahoo.com/customize/ie/defaults/sb/ymsgr6/fr/*http://www.yahoo.com/ext/search/search.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [IcoSet] c:\hp\bin\cloaker.exe c:\hp\bin\IcoSet\adjust.bat seticon
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [explorer] C:\Documents and Settings\Compaq_Propriétaire\Xinstall.exe
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
Mais malgré que j'ai effectué tout ce que vous m'avez dit de faire, Xinstall.EXE est toujours là avec ses petits copains genre Alfa.EXE, alors que ALCXMNTR.EXE a l'air d'avoir disparu. Dites-moi svp qu'on va pas faire de formatage....
Merci, et à très bientôt,
Chocolat.
voici le rapport demandé,
Logfile of HijackThis v1.99.1
Scan saved at 15:14:35, on 2006-09-19
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hkcmd.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\MSN Messenger\msgs.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Documents and Settings\Compaq_Propriétaire\Bureau\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.infinit.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://fr.rd.yahoo.com/customize/ie/defaults/sb/ymsgr6/fr/*http://www.yahoo.com/ext/search/search.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [IcoSet] c:\hp\bin\cloaker.exe c:\hp\bin\IcoSet\adjust.bat seticon
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [explorer] C:\Documents and Settings\Compaq_Propriétaire\Xinstall.exe
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
Mais malgré que j'ai effectué tout ce que vous m'avez dit de faire, Xinstall.EXE est toujours là avec ses petits copains genre Alfa.EXE, alors que ALCXMNTR.EXE a l'air d'avoir disparu. Dites-moi svp qu'on va pas faire de formatage....
Merci, et à très bientôt,
Chocolat.
Bonjour Bouleplate,
voici le rapport demandé,
Logfile of HijackThis v1.99.1
Scan saved at 15:14:35, on 2006-09-19
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hkcmd.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\MSN Messenger\msgs.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Documents and Settings\Compaq_Propriétaire\Bureau\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.infinit.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://fr.rd.yahoo.com/customize/ie/defaults/sb/ymsgr6/fr/*http://www.yahoo.com/ext/search/search.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [IcoSet] c:\hp\bin\cloaker.exe c:\hp\bin\IcoSet\adjust.bat seticon
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [explorer] C:\Documents and Settings\Compaq_Propriétaire\Xinstall.exe
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
Mais malgré que j'ai effectué tout ce que vous m'avez dit de faire, Xinstall.EXE est toujours là avec ses petits copains genre Alfa.EXE, alors que ALCXMNTR.EXE a l'air d'avoir disparu. Dites-moi svp qu'on va pas faire de formatage....
Merci, et à très bientôt,
Chocolat.
voici le rapport demandé,
Logfile of HijackThis v1.99.1
Scan saved at 15:14:35, on 2006-09-19
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hkcmd.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\MSN Messenger\msgs.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Mozilla Thunderbird\thunderbird.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Documents and Settings\Compaq_Propriétaire\Bureau\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.infinit.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://fr.rd.yahoo.com/customize/ie/defaults/sb/ymsgr6/fr/*http://www.yahoo.com/ext/search/search.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [IcoSet] c:\hp\bin\cloaker.exe c:\hp\bin\IcoSet\adjust.bat seticon
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [explorer] C:\Documents and Settings\Compaq_Propriétaire\Xinstall.exe
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\ccleaner.exe" /AUTO
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
Mais malgré que j'ai effectué tout ce que vous m'avez dit de faire, Xinstall.EXE est toujours là avec ses petits copains genre Alfa.EXE, alors que ALCXMNTR.EXE a l'air d'avoir disparu. Dites-moi svp qu'on va pas faire de formatage....
Merci, et à très bientôt,
Chocolat.
Salut Chocolat
ne desespere pas !
tu vas t'en sortir ;-)
Fait ce scan anti-virus en ligne avec Internet Explorer, accepte l'active X; la barre anti-popup du SP2 (en haut) va se mettre à clignoter, clic dessus et choisis "accepter l'active X" pour faire fonctionner le scan anti-virus.
Une fois qu'il a terminé colle le rapport ici stp
https://www.bitdefender.com/toolbox/
ne desespere pas !
tu vas t'en sortir ;-)
Fait ce scan anti-virus en ligne avec Internet Explorer, accepte l'active X; la barre anti-popup du SP2 (en haut) va se mettre à clignoter, clic dessus et choisis "accepter l'active X" pour faire fonctionner le scan anti-virus.
Une fois qu'il a terminé colle le rapport ici stp
https://www.bitdefender.com/toolbox/
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Bonjour,
Moi aussi j'ai eu le meme virus et il me reste toujours deux fichiers que je suis incapable de supprimer. J'ai télécharger unlocker et quand j'essaie de supprimer j'ai comme message ** erreur privilège debogage ** et j'ai aussi une foule de mausus de fenetre qui s'ouvre sans cesse genre casino et d'autre cossin.
Avez-vous une solution.
Merci beaucoup
Christiane
Moi aussi j'ai eu le meme virus et il me reste toujours deux fichiers que je suis incapable de supprimer. J'ai télécharger unlocker et quand j'essaie de supprimer j'ai comme message ** erreur privilège debogage ** et j'ai aussi une foule de mausus de fenetre qui s'ouvre sans cesse genre casino et d'autre cossin.
Avez-vous une solution.
Merci beaucoup
Christiane
Bonjour Christiane,
Malheureusement ce n'est pas à moi qu'il faut s'adresser mais à bouleplate62 qui est un géni de l'informatique, moi je ne suis qu'une victime du virus, mais si je le pouvais, j'aurais aimé vous rendre service,
chocolat.
Malheureusement ce n'est pas à moi qu'il faut s'adresser mais à bouleplate62 qui est un géni de l'informatique, moi je ne suis qu'une victime du virus, mais si je le pouvais, j'aurais aimé vous rendre service,
chocolat.
Bah pour Christiane il faut qu'elle créer son propre post en cliquant ci-dessous
index?cat=7#ecrire
Chocolat j'espere que tu as vu mon message au n° 7 ;-)
index?cat=7#ecrire
Chocolat j'espere que tu as vu mon message au n° 7 ;-)
voici le rapport de Bitdefender bouleplate:
BitDefender Online Scanner
Scan report generated at: Tue, Sep 19, 2006 - 19:16:24
Scan path: C:\;D:\;E:\;F:\;G:\;H:\;I:\;
Statistics
Time
01:58:44
Files
605712
Folders
9701
Boot Sectors
4
Archives
24336
Packed Files
54203
Results
Identified Viruses
6
Infected Files
58
Suspect Files
0
Warnings
0
Disinfected
0
Deleted Files
58
Engines Info
Virus Definitions
454984
Engine build
AVCORE v1.0 (build 2310) (i386) (Apr 17 2006 16:24:38)
Scan plugins
13
Archive plugins
38
Unpack plugins
6
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585594.exe
Infected with: Generic.Adload.543A2415
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585594.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585594.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585596.exe
Infected with: Generic.Adload.543A2415
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585596.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585596.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585597.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585597.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585597.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585598.exe
Infected with: Generic.Adload.543A2415
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585598.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585598.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585600.PIF
Infected with: Trojan.Downloader.Obfuscated.V
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585600.PIF
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585600.PIF
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585601.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585601.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585601.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585604.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585604.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585604.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585606.exe
Infected with: Generic.Adload.543A2415
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585606.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585606.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585607.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585607.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585607.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585759.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585759.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585759.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585760.exe
Infected with: Generic.Adload.543A2415
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585760.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585760.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585762.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585762.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585762.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585764.exe
Infected with: Generic.Adload.543A2415
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585764.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585764.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585783.exe
Infected with: Generic.Adload.543A2415
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585783.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585783.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585784.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585784.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585784.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP520\A0585839.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP520\A0585839.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP520\A0585839.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP520\A0585841.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP520\A0585841.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP520\A0585841.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP520\A0585842.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP520\A0585842.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP520\A0585842.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP521\A0585863.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP521\A0585863.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP521\A0585863.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP521\A0585883.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP521\A0585883.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP521\A0585883.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP521\A0585884.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP521\A0585884.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP521\A0585884.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585925.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585925.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585925.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585926.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585926.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585926.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585942.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585942.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585942.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585944.exe
Infected with: Generic.Adload.543A2415
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585944.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585944.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585946.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585946.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585946.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585976.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585976.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585976.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP525\A0585989.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP525\A0585989.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP525\A0585989.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP525\A0585996.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP525\A0585996.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP525\A0585996.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP525\A0585997.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP525\A0585997.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP525\A0585997.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP525\A0585998.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP525\A0585998.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP525\A0585998.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586077.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586077.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586077.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586078.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586078.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586078.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586099.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586099.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586099.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586109.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586109.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586109.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586119.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586119.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586119.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586120.exe
Infected with: Generic.Adload.543A2415
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586120.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586120.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586122.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586122.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586122.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586152.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586152.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586152.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586167.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586167.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586167.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586182.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586182.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586182.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586199.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586199.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586199.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586209.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586209.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586209.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586219.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586219.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586219.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586220.exe
Infected with: Generic.Adload.543A2415
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586220.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586220.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586222.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586222.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586222.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586255.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586255.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586255.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP530\A0586265.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP530\A0586265.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP530\A0586265.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586390.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586390.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586390.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586393.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586393.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586393.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586394.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586394.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586394.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586411.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586411.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586411.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586413.exe
Infected with: Generic.Kelvir.33B10717
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586413.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586413.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP536\A0586469.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP536\A0586469.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP536\A0586469.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP537\A0586505.exe
Infected with: Trojan.Downloader.Obfuscated.V
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP537\A0586505.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP537\A0586505.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP537\A0586506.exe
Infected with: Generic.Adload.543A2415
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP537\A0586506.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP537\A0586506.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP537\A0586507.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP537\A0586507.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP537\A0586507.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP537\A0586508.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP537\A0586508.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP537\A0586508.exe
Deleted
D:\I386\DRIVER.CAB=>nrgaf223.ppd
Clean
D:\I386\DRIVER.CAB=>nrgaf273.ppd
Clean
D:\I386\DRIVER.CAB=>nrgap273.ppd
Clean
D:\I386\DRIVER.CAB=>nrgc7052.ppd
Clean
D:\I386\DRIVER.CAB=>nrp7014.gpd
Clean
D:\I386\DRIVER.CAB=>nrp7016.gpd
Clean
D:\I386\DRIVER.CAB=>nrp7020.gpd
Clean
D:\I386\DRIVER.CAB=>nrp7021.gpd
Clean
D:\I386\DRIVER.CAB=>nrp7026.gpd
Clean
D:\I386\DRIVER.CAB=>nrp7026n.gpd
Clean
D:\I386\DRIVER.CAB=>nrp7027.gpd
Clean
D:\I386\DRIVER.CAB=>nrp7032.gpd
Clean
D:\I386\DRIVER.CAB=>nrp7045.gpd
Clean
D:\I386\DRIVER.CAB=>nsmmc.sys
Clean
D:\I386\DRIVER.CAB=>ntapm.sys
Clean
D:\I386\DRIVER.CAB=>ntgrip.sys
Clean
D:\I386\DRIVER.CAB=>nv3.dll
Clean
D:\I386\DRIVER.CAB=>nv3.sys
Clean
D:\I386\DRIVER.CAB=>o9230s20.ppd
Clean
D:\I386\DRIVER.CAB=>o9230s40.ppd
Clean
D:\I386\DRIVER.CAB=>o9230ss.ppd
Clean
D:\I386\DRIVER.CAB=>o9245s20.ppd
Clean
D:\I386\DRIVER.CAB=>o9245s40.ppd
Clean
D:\I386\DRIVER.CAB=>o9245ss.ppd
Clean
D:\I386\DRIVER.CAB=>o9260ilf.ppd
Clean
D:\I386\DRIVER.CAB=>o9260s20.ppd
Clean
D:\I386\DRIVER.CAB=>o9260s40.ppd
Clean
D:\I386\DRIVER.CAB=>o9260ss.ppd
Clean
D:\I386\DRIVER.CAB=>oc3145u2.ppd
Clean
D:\I386\DRIVER.CAB=>oc3145u3.ppd
Clean
D:\I386\DRIVER.CAB=>oc3145_2.ppd
Clean
D:\I386\DRIVER.CAB=>oc3145_3.ppd
Clean
D:\I386\DRIVER.CAB=>oc3155u2.ppd
Clean
D:\I386\DRIVER.CAB=>oc3155u3.ppd
Clean
D:\I386\DRIVER.CAB=>oc3155_2.ppd
Clean
D:\I386\DRIVER.CAB=>oc3155_3.ppd
Clean
D:\I386\DRIVER.CAB=>oc3165u2.ppd
Clean
D:\I386\DRIVER.CAB=>oc3165u3.ppd
Clean
D:\I386\DRIVER.CAB=>oc3165_2.ppd
Clean
D:\I386\DRIVER.CAB=>oc3165_3.ppd
Clean
D:\I386\DRIVER.CAB=>oc8445_2.ppd
Clean
D:\I386\DRIVER.CAB=>oc8445_3.ppd
Clean
D:\I386\DRIVER.CAB=>oc8465_2.ppd
Clean
D:\I386\DRIVER.CAB=>oc8465_3.ppd
Clean
D:\I386\DRIVER.CAB=>oc9230_2.ppd
Clean
D:\I386\DRIVER.CAB=>oc9245_2.ppd
Clean
D:\I386\DRIVER.CAB=>oc9260_2.ppd
Clean
D:\I386\DRIVER.CAB=>ocdps400.ppd
Clean
D:\I386\DRIVER.CAB=>oce.dll
Clean
D:\I386\DRIVER.CAB=>oce4900p.ppd
Clean
D:\I386\DRIVER.CAB=>oce5120.gpd
Clean
D:\I386\DRIVER.CAB=>oce5200.gpd
Clean
D:\I386\DRIVER.CAB=>oce5200p.ppd
Clean
D:\I386\DRIVER.CAB=>oce9030s.ppd
Clean
D:\I386\DRIVER.CAB=>oce9050s.ppd
Clean
D:\I386\DRIVER.CAB=>oce9300.gpd
Clean
D:\I386\DRIVER.CAB=>oce9300e.ppd
Clean
D:\I386\DRIVER.CAB=>oce9400.gpd
Clean
D:\I386\DRIVER.CAB=>oce9400e.ppd
Clean
D:\I386\DRIVER.CAB=>oce9402e.ppd
Clean
D:\I386\DRIVER.CAB=>oce94ii.gpd
Clean
D:\I386\DRIVER.CAB=>oce9500s.ppd
Clean
D:\I386\DRIVER.CAB=>oce9600.gpd
Clean
D:\I386\DRIVER.CAB=>oce9600b.ppd
Clean
D:\I386\DRIVER.CAB=>oce9800.gpd
Clean
D:\I386\DRIVER.CAB=>oceg300.gpd
Clean
D:\I386\DRIVER.CAB=>oceg360.gpd
Clean
D:\I386\DRIVER.CAB=>oceg400.gpd
Clean
D:\I386\DRIVER.CAB=>oceg600.gpd
Clean
D:\I386\DRIVER.CAB=>od9ibres.dll
Clean
D:\I386\DRIVER.CAB=>ok10i.gpd
Clean
D:\I386\DRIVER.CAB=>ok10x.gpd
Clean
D:\I386\DRIVER.CAB=>ok1200ex.gpd
Clean
D:\I386\DRIVER.CAB=>ok1200x.gpd
Clean
D:\I386\DRIVER.CAB=>ok1200x1.ppd
Clean
D:\I386\DRIVER.CAB=>ok1200_1.ppd
Clean
D:\I386\DRIVER.CAB=>ok12i.gpd
Clean
D:\I386\DRIVER.CAB=>ok16n.gpd
Clean
D:\I386\DRIVER.CAB=>ok182eib.gpd
Clean
D:\I386\DRIVER.CAB=>ok192eib.gpd
Clean
merci bouplate un milliard de fois.
Chocolat.
BitDefender Online Scanner
Scan report generated at: Tue, Sep 19, 2006 - 19:16:24
Scan path: C:\;D:\;E:\;F:\;G:\;H:\;I:\;
Statistics
Time
01:58:44
Files
605712
Folders
9701
Boot Sectors
4
Archives
24336
Packed Files
54203
Results
Identified Viruses
6
Infected Files
58
Suspect Files
0
Warnings
0
Disinfected
0
Deleted Files
58
Engines Info
Virus Definitions
454984
Engine build
AVCORE v1.0 (build 2310) (i386) (Apr 17 2006 16:24:38)
Scan plugins
13
Archive plugins
38
Unpack plugins
6
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585594.exe
Infected with: Generic.Adload.543A2415
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585594.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585594.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585596.exe
Infected with: Generic.Adload.543A2415
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585596.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585596.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585597.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585597.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585597.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585598.exe
Infected with: Generic.Adload.543A2415
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585598.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585598.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585600.PIF
Infected with: Trojan.Downloader.Obfuscated.V
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585600.PIF
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585600.PIF
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585601.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585601.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585601.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585604.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585604.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585604.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585606.exe
Infected with: Generic.Adload.543A2415
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585606.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585606.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585607.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585607.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585607.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585759.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585759.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585759.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585760.exe
Infected with: Generic.Adload.543A2415
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585760.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585760.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585762.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585762.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585762.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585764.exe
Infected with: Generic.Adload.543A2415
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585764.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585764.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585783.exe
Infected with: Generic.Adload.543A2415
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585783.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585783.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585784.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585784.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP518\A0585784.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP520\A0585839.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP520\A0585839.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP520\A0585839.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP520\A0585841.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP520\A0585841.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP520\A0585841.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP520\A0585842.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP520\A0585842.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP520\A0585842.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP521\A0585863.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP521\A0585863.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP521\A0585863.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP521\A0585883.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP521\A0585883.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP521\A0585883.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP521\A0585884.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP521\A0585884.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP521\A0585884.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585925.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585925.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585925.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585926.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585926.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585926.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585942.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585942.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585942.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585944.exe
Infected with: Generic.Adload.543A2415
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585944.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585944.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585946.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585946.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585946.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585976.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585976.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP524\A0585976.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP525\A0585989.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP525\A0585989.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP525\A0585989.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP525\A0585996.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP525\A0585996.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP525\A0585996.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP525\A0585997.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP525\A0585997.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP525\A0585997.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP525\A0585998.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP525\A0585998.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP525\A0585998.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586077.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586077.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586077.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586078.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586078.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586078.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586099.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586099.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586099.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586109.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586109.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586109.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586119.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586119.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586119.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586120.exe
Infected with: Generic.Adload.543A2415
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586120.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586120.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586122.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586122.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586122.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586152.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586152.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP528\A0586152.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586167.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586167.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586167.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586182.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586182.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586182.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586199.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586199.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586199.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586209.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586209.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586209.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586219.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586219.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586219.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586220.exe
Infected with: Generic.Adload.543A2415
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586220.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586220.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586222.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586222.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586222.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586255.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586255.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP529\A0586255.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP530\A0586265.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP530\A0586265.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP530\A0586265.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586390.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586390.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586390.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586393.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586393.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586393.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586394.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586394.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586394.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586411.exe
Infected with: Generic.Adload.C5F7C6C3
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586411.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586411.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586413.exe
Infected with: Generic.Kelvir.33B10717
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586413.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP534\A0586413.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP536\A0586469.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP536\A0586469.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP536\A0586469.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP537\A0586505.exe
Infected with: Trojan.Downloader.Obfuscated.V
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP537\A0586505.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP537\A0586505.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP537\A0586506.exe
Infected with: Generic.Adload.543A2415
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP537\A0586506.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP537\A0586506.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP537\A0586507.exe
Infected with: Generic.Kelvir.300379AA
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP537\A0586507.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP537\A0586507.exe
Deleted
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP537\A0586508.exe
Infected with: Dropped:Trojan.Downloader.Purityscan.U
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP537\A0586508.exe
Disinfection failed
C:\System Volume Information\_restore{FBFFA205-372F-4783-AFB7-643E889803B0}\RP537\A0586508.exe
Deleted
D:\I386\DRIVER.CAB=>nrgaf223.ppd
Clean
D:\I386\DRIVER.CAB=>nrgaf273.ppd
Clean
D:\I386\DRIVER.CAB=>nrgap273.ppd
Clean
D:\I386\DRIVER.CAB=>nrgc7052.ppd
Clean
D:\I386\DRIVER.CAB=>nrp7014.gpd
Clean
D:\I386\DRIVER.CAB=>nrp7016.gpd
Clean
D:\I386\DRIVER.CAB=>nrp7020.gpd
Clean
D:\I386\DRIVER.CAB=>nrp7021.gpd
Clean
D:\I386\DRIVER.CAB=>nrp7026.gpd
Clean
D:\I386\DRIVER.CAB=>nrp7026n.gpd
Clean
D:\I386\DRIVER.CAB=>nrp7027.gpd
Clean
D:\I386\DRIVER.CAB=>nrp7032.gpd
Clean
D:\I386\DRIVER.CAB=>nrp7045.gpd
Clean
D:\I386\DRIVER.CAB=>nsmmc.sys
Clean
D:\I386\DRIVER.CAB=>ntapm.sys
Clean
D:\I386\DRIVER.CAB=>ntgrip.sys
Clean
D:\I386\DRIVER.CAB=>nv3.dll
Clean
D:\I386\DRIVER.CAB=>nv3.sys
Clean
D:\I386\DRIVER.CAB=>o9230s20.ppd
Clean
D:\I386\DRIVER.CAB=>o9230s40.ppd
Clean
D:\I386\DRIVER.CAB=>o9230ss.ppd
Clean
D:\I386\DRIVER.CAB=>o9245s20.ppd
Clean
D:\I386\DRIVER.CAB=>o9245s40.ppd
Clean
D:\I386\DRIVER.CAB=>o9245ss.ppd
Clean
D:\I386\DRIVER.CAB=>o9260ilf.ppd
Clean
D:\I386\DRIVER.CAB=>o9260s20.ppd
Clean
D:\I386\DRIVER.CAB=>o9260s40.ppd
Clean
D:\I386\DRIVER.CAB=>o9260ss.ppd
Clean
D:\I386\DRIVER.CAB=>oc3145u2.ppd
Clean
D:\I386\DRIVER.CAB=>oc3145u3.ppd
Clean
D:\I386\DRIVER.CAB=>oc3145_2.ppd
Clean
D:\I386\DRIVER.CAB=>oc3145_3.ppd
Clean
D:\I386\DRIVER.CAB=>oc3155u2.ppd
Clean
D:\I386\DRIVER.CAB=>oc3155u3.ppd
Clean
D:\I386\DRIVER.CAB=>oc3155_2.ppd
Clean
D:\I386\DRIVER.CAB=>oc3155_3.ppd
Clean
D:\I386\DRIVER.CAB=>oc3165u2.ppd
Clean
D:\I386\DRIVER.CAB=>oc3165u3.ppd
Clean
D:\I386\DRIVER.CAB=>oc3165_2.ppd
Clean
D:\I386\DRIVER.CAB=>oc3165_3.ppd
Clean
D:\I386\DRIVER.CAB=>oc8445_2.ppd
Clean
D:\I386\DRIVER.CAB=>oc8445_3.ppd
Clean
D:\I386\DRIVER.CAB=>oc8465_2.ppd
Clean
D:\I386\DRIVER.CAB=>oc8465_3.ppd
Clean
D:\I386\DRIVER.CAB=>oc9230_2.ppd
Clean
D:\I386\DRIVER.CAB=>oc9245_2.ppd
Clean
D:\I386\DRIVER.CAB=>oc9260_2.ppd
Clean
D:\I386\DRIVER.CAB=>ocdps400.ppd
Clean
D:\I386\DRIVER.CAB=>oce.dll
Clean
D:\I386\DRIVER.CAB=>oce4900p.ppd
Clean
D:\I386\DRIVER.CAB=>oce5120.gpd
Clean
D:\I386\DRIVER.CAB=>oce5200.gpd
Clean
D:\I386\DRIVER.CAB=>oce5200p.ppd
Clean
D:\I386\DRIVER.CAB=>oce9030s.ppd
Clean
D:\I386\DRIVER.CAB=>oce9050s.ppd
Clean
D:\I386\DRIVER.CAB=>oce9300.gpd
Clean
D:\I386\DRIVER.CAB=>oce9300e.ppd
Clean
D:\I386\DRIVER.CAB=>oce9400.gpd
Clean
D:\I386\DRIVER.CAB=>oce9400e.ppd
Clean
D:\I386\DRIVER.CAB=>oce9402e.ppd
Clean
D:\I386\DRIVER.CAB=>oce94ii.gpd
Clean
D:\I386\DRIVER.CAB=>oce9500s.ppd
Clean
D:\I386\DRIVER.CAB=>oce9600.gpd
Clean
D:\I386\DRIVER.CAB=>oce9600b.ppd
Clean
D:\I386\DRIVER.CAB=>oce9800.gpd
Clean
D:\I386\DRIVER.CAB=>oceg300.gpd
Clean
D:\I386\DRIVER.CAB=>oceg360.gpd
Clean
D:\I386\DRIVER.CAB=>oceg400.gpd
Clean
D:\I386\DRIVER.CAB=>oceg600.gpd
Clean
D:\I386\DRIVER.CAB=>od9ibres.dll
Clean
D:\I386\DRIVER.CAB=>ok10i.gpd
Clean
D:\I386\DRIVER.CAB=>ok10x.gpd
Clean
D:\I386\DRIVER.CAB=>ok1200ex.gpd
Clean
D:\I386\DRIVER.CAB=>ok1200x.gpd
Clean
D:\I386\DRIVER.CAB=>ok1200x1.ppd
Clean
D:\I386\DRIVER.CAB=>ok1200_1.ppd
Clean
D:\I386\DRIVER.CAB=>ok12i.gpd
Clean
D:\I386\DRIVER.CAB=>ok16n.gpd
Clean
D:\I386\DRIVER.CAB=>ok182eib.gpd
Clean
D:\I386\DRIVER.CAB=>ok192eib.gpd
Clean
merci bouplate un milliard de fois.
Chocolat.
Je remarque que la fatigue arrive .. "bouleplate", "bouplate" Mdr !
AAlors ceci; C:\System Volume Information\_restore(voir rapport Bitdefender) indique que ta restauration du systeme etait infecté ou est infecté, pour être sûr, nous allons créer un point propre.
Clic sur "demarrer", cliques droit sur "poste de travail", "propriétés", onglet "restauration du systeme"
¤ coches la case "desactiver la Restauration du systéme sur tous les lecteurs", puis clic ur "appliquer"
¤ decoches la case et clic sur "appliquer" puis "ok".
Maintenant, que l'ont à effacés les point infectés, nous allons créer un point propre:
Clic sur "demarrer", "tous les programmes", "accessoires", "outils système", "restauration du système", choisis "créer un point de restauration" nommes le " ccm" par exemple, cliques sur "créer" puis "ok".
Voilà, maintenant le point de restauration est créer si un jour tu décides tu pourra revenir en arriere à la date que tu l'as créer donc à ce jour; en fesant la marche arriére tu pourra remettre ton ordinateur à la date ou l'on à créer ce point de restauration mais tu perdra les modifications que tu aura faites entre deux.
dès que c'est faut tu me dire, ou en est ton probléme ;-)
AAlors ceci; C:\System Volume Information\_restore(voir rapport Bitdefender) indique que ta restauration du systeme etait infecté ou est infecté, pour être sûr, nous allons créer un point propre.
Clic sur "demarrer", cliques droit sur "poste de travail", "propriétés", onglet "restauration du systeme"
¤ coches la case "desactiver la Restauration du systéme sur tous les lecteurs", puis clic ur "appliquer"
¤ decoches la case et clic sur "appliquer" puis "ok".
Maintenant, que l'ont à effacés les point infectés, nous allons créer un point propre:
Clic sur "demarrer", "tous les programmes", "accessoires", "outils système", "restauration du système", choisis "créer un point de restauration" nommes le " ccm" par exemple, cliques sur "créer" puis "ok".
Voilà, maintenant le point de restauration est créer si un jour tu décides tu pourra revenir en arriere à la date que tu l'as créer donc à ce jour; en fesant la marche arriére tu pourra remettre ton ordinateur à la date ou l'on à créer ce point de restauration mais tu perdra les modifications que tu aura faites entre deux.
dès que c'est faut tu me dire, ou en est ton probléme ;-)
voilà c'est fait pour le point de restauration, et après je fais quoi??c'est fini pour les virus et leurs copains??et excuse-moi pour la faute de frappe pour «bouleplate» de toute à l'heure
bonjour Bouleplate,
Alors j'ai fait le tour et tout à l'air d'aller très bien, plus de virus ni de copains polluants, t'es un amour, je te remercie pour cette aide précieuse et je souhaite que Dieu te rende au centuple la gentillesse et la générosité dont tu as fait preuve.
A bientôt, Chocolat
Alors j'ai fait le tour et tout à l'air d'aller très bien, plus de virus ni de copains polluants, t'es un amour, je te remercie pour cette aide précieuse et je souhaite que Dieu te rende au centuple la gentillesse et la générosité dont tu as fait preuve.
A bientôt, Chocolat
Salut Chocolat,
Content que ton probléme soit réglé, j'ai rien de spécial tu sais, jsute un peu de savoir que je met au service des uns et autres qui en ont besoin :-)
Si tu as besoin d'une info, ou si un probléme survenait tu sais où trouver le forum ;-)
Bonne nuit et à plus tard peut-être
Bon surf !
++
Content que ton probléme soit réglé, j'ai rien de spécial tu sais, jsute un peu de savoir que je met au service des uns et autres qui en ont besoin :-)
Si tu as besoin d'une info, ou si un probléme survenait tu sais où trouver le forum ;-)
Bonne nuit et à plus tard peut-être
Bon surf !
++