[pc infecté par 3 trojans et un virus]
poussinette5
Messages postés
7
Statut
Membre
-
Regis59 Messages postés 21143 Date d'inscription Statut Contributeur sécurité Dernière intervention -
Regis59 Messages postés 21143 Date d'inscription Statut Contributeur sécurité Dernière intervention -
Bonjour mes parents sont régulièrement infectés par des trojans et des virus malgré leur anti-virus et leur pare feu. Perso j'ai le même anti-virus et pas de pare feu or j'ai pas de soucis. D'où celà peut-il venir.
AVAST supprime les virus et trojans ci-dessous mais ils reviennent sans arrêt, peut-on les supprimer définitivement et si oui comment. Merci de vos réponses.
Voilà les infections :
RBOT-CPB et PURITYSCAN
PSKILL-E
BHO-R
ADWARE GEB
VB-FP (Wrm)
Pouvez-vous m'aider car je sais plus quoi faire avec leur pc pour l'immuniser correctement (à savoir que j'ai les mêmes protections et que je n'ai pas de pb personnellement) et supprimer toutes ces infections.
MERCI D'AVANCE POUR VOS REPONSES.
AVAST supprime les virus et trojans ci-dessous mais ils reviennent sans arrêt, peut-on les supprimer définitivement et si oui comment. Merci de vos réponses.
Voilà les infections :
RBOT-CPB et PURITYSCAN
PSKILL-E
BHO-R
ADWARE GEB
VB-FP (Wrm)
Pouvez-vous m'aider car je sais plus quoi faire avec leur pc pour l'immuniser correctement (à savoir que j'ai les mêmes protections et que je n'ai pas de pb personnellement) et supprimer toutes ces infections.
MERCI D'AVANCE POUR VOS REPONSES.
A voir également:
- [pc infecté par 3 trojans et un virus]
- Réinitialiser un pc - Guide
- Pc lent - Guide
- Downloader for pc - Télécharger - Téléchargement & Transfert
- Double ecran pc - Guide
- Forcer demarrage pc - Guide
15 réponses
Salut
Les infections ont des sources differentes...
Surfs sur des sites de hack, crack, sites X, ou alors dans des programmes telechargés, des mails...
télécharge HijackThis ici:
http://telechargement.zebulon.fr/138-hijackthis-1991.html
Dézippe le dans un dossier prévu à cet effet.
Par exemple C:\hijackthis < Enregistre le bien dans c : !
Démo : (Merci a Balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/Hijenr.gif
Lance le puis:
clique sur "do a system scan and save logfile" (cf démo)
faire un copier coller du log entier sur le forum
Démo : (Merci a Balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/demohijack.htm
Bon courage
A+
Les infections ont des sources differentes...
Surfs sur des sites de hack, crack, sites X, ou alors dans des programmes telechargés, des mails...
télécharge HijackThis ici:
http://telechargement.zebulon.fr/138-hijackthis-1991.html
Dézippe le dans un dossier prévu à cet effet.
Par exemple C:\hijackthis < Enregistre le bien dans c : !
Démo : (Merci a Balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/Hijenr.gif
Lance le puis:
clique sur "do a system scan and save logfile" (cf démo)
faire un copier coller du log entier sur le forum
Démo : (Merci a Balltrap34 pour cette réalisation)
http://pageperso.aol.fr/balltrap34/demohijack.htm
Bon courage
A+
Bonjour et merci de ta réponse, actuellement ils sont en train de faire un
> scan avec bitdefender donc ils peuvent pas faire la manip.
>
> Dès qu'ils pourront je mettrais le rapport sur le forum
>
> En tout cas merci.
> scan avec bitdefender donc ils peuvent pas faire la manip.
>
> Dès qu'ils pourront je mettrais le rapport sur le forum
>
> En tout cas merci.
Connais-tu un bon anti virus toi car je viens de lancer le scan bitdefender également chez moi et AVAST disait aucun pb et BIT DEFENDER trouve bcp de virus et bcp de fichiers infectés donc en gros AVAST n'a pas fait son travail correctement.
Est-ce que tu connais un virus qui vaille vraiment le coup à l'heure d'aujourd'hui ?? merci.
Est-ce que tu connais un virus qui vaille vraiment le coup à l'heure d'aujourd'hui ?? merci.
Salut
Avast est un bon antivirus.Garde le.
Fournit moi le rapport de bitdefender et de HijackThis stp
a+
Avast est un bon antivirus.Garde le.
Fournit moi le rapport de bitdefender et de HijackThis stp
a+
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
ok pour AVAST mais pourquoi moi par exemple j'avais pas de soucis et sur BITDEFENDER il a pas fini mais pour le moment il a trouvé 10 trojans et 66 fichiers infectés alors qu'AVAST disait qu'il y avait rien
je pourrais pas laisser les rapports ce soir bitdefender annonce encore 2 heures j'espère qu'on pourra m'aider demain.
Salut
Il n ont pas les memes signatures deja.
De plus, un antivirus ne fait pas tout. Un antivirus peut detecter les virus car c est sa fonction principale, mais en ce qui concerne les autres malwares, c est different.
J'atends les rapports.
a+
Il n ont pas les memes signatures deja.
De plus, un antivirus ne fait pas tout. Un antivirus peut detecter les virus car c est sa fonction principale, mais en ce qui concerne les autres malwares, c est different.
J'atends les rapports.
a+
bonjour Régis 59,
voici comme convenu le rapport de HIJACKTHIS et le rapport de BITDEFENDER. Merci encore pour ton aide.
Logfile of HijackThis v1.99.1
Scan saved at 17:21:10, on 22/11/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\System32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Apps\ActivBoard\nhksrv.exe
C:\Program Files\AVAST\aswUpdSv.exe
C:\Program Files\AVAST\ashServ.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\Program Files\AVAST\ashMaiSv.exe
C:\Program Files\AVAST\ashWebSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\htpatch.exe
C:\PROGRA~1\AVAST\ashDisp.exe
C:\Program Files\PACK ANTI TROJIAN\ZONE ALARM\ZoneAlarm\zlclient.exe
C:\Program Files\Microsoft Etudes\Microsoft Encarta 2007 - Études DVD\EDICT.EXE
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\PACK ANTI TROJIAN\SPYBOT\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\apps\Adobe\Acrobat 5.0\Reader\AcroRd32.exe
C:\WINDOWS\explorer.exe
SCAN BITDEFENDER
[General]
App = "BitDefender Online Scanner v8"
Date = 21:11:2006
Time = 23:00:27
Scan Path = A:\;C:\;D:\;E:\;F:\;G:\;H:\;J:\;K:\;L:\;N:\;
[Engines Info]
Virus Definitions = 317313
Engine build = "AVCORE v1.0 (build 2355) (i386) (Sep 25 2006 13:46:24)"
Scan plugins = 13
Archive plugins = 38
Unpack plugins = 6
E-mail plugins = 6
System plugins = 1
[Scan Statistics]
Folders = 7366
Files = 677501
Archives = 9893
Packed files = 33332
Identified viruses = 9
Infected files = 37
Warnings = 0
Suspect files = 0
Disinfected files = 0
Deleted files = 37
Copied files = 0
Moved files = 0
Renamed files = 0
I/O Errors = 43
[Scan Settings]
SecondAction = Delete
FirstAction = Disinfect
Heuristics = 1
Enable Warnings = 1
Exclude Ext =
Extensions = *;
Scan Emails = 1
Scan Archives = 1
Scan Packed = 1
Scan Files = 1
Scan Boot = 1
Verify Memory = 0
[Scan Results]
Line00000110 = "C:\Documents and Settings\Françoise\Application Data\errorsafefrenchnewreleaseinstall[1].exe Infecté par: Trojan.Downloader.Winfixer.O"
Line00000109 = "C:\Documents and Settings\Françoise\Application Data\errorsafefrenchnewreleaseinstall[1].exe Echec de la désinfection"
Line00000108 = "C:\Documents and Settings\Françoise\Application Data\errorsafefrenchnewreleaseinstall[1].exe Supprimé"
Line00000107 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0120798.exe Infecté par: DeepScan:Generic.Sdbot.71ADA9A8"
Line00000106 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0120798.exe Echec de la désinfection"
Line00000105 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0120798.exe Supprimé"
Line00000104 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0120810.exe Infecté par: DeepScan:Generic.Malware.dld!!.F67304D8"
Line00000103 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0120810.exe Echec de la désinfection"
Line00000102 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0120810.exe Supprimé"
Line00000101 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0122808.exe Infecté par: Trojan.Downloader.Small.AO"
Line00000100 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0122808.exe Echec de la désinfection"
Line00000099 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0122808.exe Supprimé"
Line00000098 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0122809.exe Infecté par: Trojan.PurityAd.C"
Line00000097 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0122809.exe Echec de la désinfection"
Line00000096 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0122809.exe Supprimé"
Line00000095 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0126810.exe Infecté par: Trojan.Downloader.Small.AO"
Line00000094 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0126810.exe Echec de la désinfection"
Line00000093 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0126810.exe Supprimé"
Line00000092 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0126811.exe Infecté par: Trojan.PurityAd.C"
Line00000091 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0126811.exe Echec de la désinfection"
Line00000090 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0126811.exe Supprimé"
Line00000089 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0126831.exe Infecté par: Trojan.Downloader.Small.AO"
Line00000088 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0126831.exe Echec de la désinfection"
Line00000087 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0126831.exe Supprimé"
Line00000086 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0126832.exe Infecté par: Trojan.PurityAd.C"
Line00000085 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0126832.exe Echec de la désinfection"
Line00000084 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0126832.exe Supprimé"
Line00000083 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0127840.exe Infecté par: Trojan.Downloader.Small.AO"
Line00000082 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0127840.exe Echec de la désinfection"
Line00000081 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0127840.exe Supprimé"
Line00000080 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0127841.exe Infecté par: Trojan.PurityAd.C"
Line00000079 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0127841.exe Echec de la désinfection"
Line00000078 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0127841.exe Supprimé"
Line00000077 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP376\A0129206.exe Infecté par: Trojan.Downloader.Small.AO"
Line00000076 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP376\A0129206.exe Echec de la désinfection"
Line00000075 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP376\A0129206.exe Supprimé"
Line00000074 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP376\A0129207.exe Infecté par: Trojan.PurityAd.C"
Line00000073 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP376\A0129207.exe Echec de la désinfection"
Line00000072 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP376\A0129207.exe Supprimé"
Line00000071 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP376\A0130862.exe Infecté par: Trojan.Downloader.Small.AO"
Line00000070 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP376\A0130862.exe Echec de la désinfection"
Line00000069 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP376\A0130862.exe Supprimé"
Line00000068 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP376\A0130863.exe Infecté par: Trojan.PurityAd.C"
Line00000067 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP376\A0130863.exe Echec de la désinfection"
Line00000066 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP376\A0130863.exe Supprimé"
Line00000065 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP384\A0139945.dll Infecté par: Trojan.BHO.G"
Line00000064 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP384\A0139945.dll Echec de la désinfection"
Line00000063 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP384\A0139945.dll Supprimé"
Line00000062 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP388\A0143028.exe Infecté par: Trojan.PurityAd.C"
Line00000061 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP388\A0143028.exe Echec de la désinfection"
Line00000060 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP388\A0143028.exe Supprimé"
Line00000059 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP389\A0143524.exe Infecté par: Generic.Sdbot.F001AFB6"
Line00000058 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP389\A0143524.exe Echec de la désinfection"
Line00000057 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP389\A0143524.exe Supprimé"
Line00000056 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143553.exe Infecté par: DeepScan:Generic.Sdbot.71ADA9A8"
Line00000055 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143553.exe Echec de la désinfection"
Line00000054 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143553.exe Supprimé"
Line00000053 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143554.exe Infecté par: Generic.Sdbot.DF6F8F86"
Line00000052 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143554.exe Echec de la désinfection"
Line00000051 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143554.exe Supprimé"
Line00000050 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143555.exe Infecté par: DeepScan:Generic.Sdbot.71ADA9A8"
Line00000049 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143555.exe Echec de la désinfection"
Line00000048 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143555.exe Supprimé"
Line00000047 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143556.exe Infecté par: Generic.Sdbot.F001AFB6"
Line00000046 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143556.exe Echec de la désinfection"
Line00000045 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143556.exe Supprimé"
Line00000044 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143557.exe Infecté par: DeepScan:Generic.Sdbot.71ADA9A8"
Line00000043 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143557.exe Echec de la désinfection"
Line00000042 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143557.exe Supprimé"
Line00000041 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP391\A0144610.exe Infecté par: Trojan.Downloader.Winfixer.O"
Line00000040 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP391\A0144610.exe Echec de la désinfection"
Line00000039 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP391\A0144610.exe Supprimé"
Line00000038 = "C:\WINDOWS\algs.exe Infecté par: DeepScan:Generic.Malware.dld!!.F67304D8"
Line00000037 = "C:\WINDOWS\algs.exe Echec de la désinfection"
Line00000036 = "C:\WINDOWS\algs.exe Supprimé"
Line00000035 = "C:\WINDOWS\diretx.exe Infecté par: Trojan.Downloader.Small.AO"
Line00000034 = "C:\WINDOWS\diretx.exe Echec de la désinfection"
Line00000033 = "C:\WINDOWS\diretx.exe Supprimé"
Line00000032 = "C:\WINDOWS\Downloaded Program Files\CONFLICT.1\UWA6PV_0001_N91M2107NetInstaller.exe Infecté par: Trojan.Downloader.Winfixer.O"
Line00000031 = "C:\WINDOWS\Downloaded Program Files\CONFLICT.1\UWA6PV_0001_N91M2107NetInstaller.exe Echec de la désinfection"
Line00000030 = "C:\WINDOWS\Downloaded Program Files\CONFLICT.1\UWA6PV_0001_N91M2107NetInstaller.exe Supprimé"
Line00000029 = "C:\WINDOWS\Downloaded Program Files\CONFLICT.1\UWAS6V_0001_N91M2208NetInstaller.exe Infecté par: Trojan.Downloader.Winfixer.O"
Line00000028 = "C:\WINDOWS\Downloaded Program Files\CONFLICT.1\UWAS6V_0001_N91M2208NetInstaller.exe Echec de la désinfection"
Line00000027 = "C:\WINDOWS\Downloaded Program Files\CONFLICT.1\UWAS6V_0001_N91M2208NetInstaller.exe Supprimé"
Line00000026 = "C:\WINDOWS\Downloaded Program Files\CONFLICT.2\UWA6PV_0001_N91M2107NetInstaller.exe Infecté par: Trojan.Downloader.Winfixer.O"
Line00000025 = "C:\WINDOWS\Downloaded Program Files\CONFLICT.2\UWA6PV_0001_N91M2107NetInstaller.exe Echec de la désinfection"
Line00000024 = "C:\WINDOWS\Downloaded Program Files\CONFLICT.2\UWA6PV_0001_N91M2107NetInstaller.exe Supprimé"
Line00000023 = "C:\WINDOWS\Downloaded Program Files\CONFLICT.3\UWA6PV_0001_N91M2107NetInstaller.exe Infecté par: Trojan.Downloader.Winfixer.O"
Line00000022 = "C:\WINDOWS\Downloaded Program Files\CONFLICT.3\UWA6PV_0001_N91M2107NetInstaller.exe Echec de la désinfection"
Line00000021 = "C:\WINDOWS\Downloaded Program Files\CONFLICT.3\UWA6PV_0001_N91M2107NetInstaller.exe Supprimé"
Line00000020 = "C:\WINDOWS\Downloaded Program Files\UWA6PV_0001_N91M2107NetInstaller.exe Infecté par: Trojan.Downloader.Winfixer.O"
Line00000019 = "C:\WINDOWS\Downloaded Program Files\UWA6PV_0001_N91M2107NetInstaller.exe Echec de la désinfection"
Line00000018 = "C:\WINDOWS\Downloaded Program Files\UWA6PV_0001_N91M2107NetInstaller.exe Supprimé"
Line00000017 = "C:\WINDOWS\Downloaded Program Files\UWAS6V_0001_N91M2208NetInstaller.exe Infecté par: Trojan.Downloader.Winfixer.O"
Line00000016 = "C:\WINDOWS\Downloaded Program Files\UWAS6V_0001_N91M2208NetInstaller.exe Echec de la désinfection"
Line00000015 = "C:\WINDOWS\Downloaded Program Files\UWAS6V_0001_N91M2208NetInstaller.exe Supprimé"
Line00000014 = "C:\WINDOWS\system32\jpltaaxo.dll Infecté par: Trojan.Spy.VBStat.H"
Line00000013 = "C:\WINDOWS\system32\jpltaaxo.dll Echec de la désinfection"
Line00000012 = "C:\WINDOWS\system32\jpltaaxo.dll Supprimé"
Line00000011 = "C:\WINDOWS\system32\nqhfinss.dll Infecté par: Trojan.Spy.VBStat.H"
Line00000010 = "C:\WINDOWS\system32\nqhfinss.dll Echec de la désinfection"
Line00000009 = "C:\WINDOWS\system32\nqhfinss.dll Supprimé"
Line00000008 = "C:\WINDOWS\system32\tkwgkqqn.dll Infecté par: Trojan.BHO.G"
Line00000007 = "C:\WINDOWS\system32\tkwgkqqn.dll Echec de la désinfection"
Line00000006 = "C:\WINDOWS\system32\tkwgkqqn.dll Supprimé"
Line00000005 = "C:\WINDOWS\system32\vgqaover.dll Infecté par: Trojan.Spy.VBStat.H"
Line00000004 = "C:\WINDOWS\system32\vgqaover.dll Echec de la désinfection"
Line00000003 = "C:\WINDOWS\system32\vgqaover.dll Supprimé"
Line00000002 = "C:\WINDOWS\system32\xccjfsel.dll Infecté par: Trojan.Spy.VBStat.H"
Line00000001 = "C:\WINDOWS\system32\xccjfsel.dll Echec de la désinfection"
Line00000000 = "C:\WINDOWS\system32\xccjfsel.dll Supprimé"
voici comme convenu le rapport de HIJACKTHIS et le rapport de BITDEFENDER. Merci encore pour ton aide.
Logfile of HijackThis v1.99.1
Scan saved at 17:21:10, on 22/11/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\System32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Apps\ActivBoard\nhksrv.exe
C:\Program Files\AVAST\aswUpdSv.exe
C:\Program Files\AVAST\ashServ.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\Program Files\AVAST\ashMaiSv.exe
C:\Program Files\AVAST\ashWebSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\htpatch.exe
C:\PROGRA~1\AVAST\ashDisp.exe
C:\Program Files\PACK ANTI TROJIAN\ZONE ALARM\ZoneAlarm\zlclient.exe
C:\Program Files\Microsoft Etudes\Microsoft Encarta 2007 - Études DVD\EDICT.EXE
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\PACK ANTI TROJIAN\SPYBOT\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\apps\Adobe\Acrobat 5.0\Reader\AcroRd32.exe
C:\WINDOWS\explorer.exe
SCAN BITDEFENDER
[General]
App = "BitDefender Online Scanner v8"
Date = 21:11:2006
Time = 23:00:27
Scan Path = A:\;C:\;D:\;E:\;F:\;G:\;H:\;J:\;K:\;L:\;N:\;
[Engines Info]
Virus Definitions = 317313
Engine build = "AVCORE v1.0 (build 2355) (i386) (Sep 25 2006 13:46:24)"
Scan plugins = 13
Archive plugins = 38
Unpack plugins = 6
E-mail plugins = 6
System plugins = 1
[Scan Statistics]
Folders = 7366
Files = 677501
Archives = 9893
Packed files = 33332
Identified viruses = 9
Infected files = 37
Warnings = 0
Suspect files = 0
Disinfected files = 0
Deleted files = 37
Copied files = 0
Moved files = 0
Renamed files = 0
I/O Errors = 43
[Scan Settings]
SecondAction = Delete
FirstAction = Disinfect
Heuristics = 1
Enable Warnings = 1
Exclude Ext =
Extensions = *;
Scan Emails = 1
Scan Archives = 1
Scan Packed = 1
Scan Files = 1
Scan Boot = 1
Verify Memory = 0
[Scan Results]
Line00000110 = "C:\Documents and Settings\Françoise\Application Data\errorsafefrenchnewreleaseinstall[1].exe Infecté par: Trojan.Downloader.Winfixer.O"
Line00000109 = "C:\Documents and Settings\Françoise\Application Data\errorsafefrenchnewreleaseinstall[1].exe Echec de la désinfection"
Line00000108 = "C:\Documents and Settings\Françoise\Application Data\errorsafefrenchnewreleaseinstall[1].exe Supprimé"
Line00000107 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0120798.exe Infecté par: DeepScan:Generic.Sdbot.71ADA9A8"
Line00000106 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0120798.exe Echec de la désinfection"
Line00000105 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0120798.exe Supprimé"
Line00000104 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0120810.exe Infecté par: DeepScan:Generic.Malware.dld!!.F67304D8"
Line00000103 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0120810.exe Echec de la désinfection"
Line00000102 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0120810.exe Supprimé"
Line00000101 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0122808.exe Infecté par: Trojan.Downloader.Small.AO"
Line00000100 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0122808.exe Echec de la désinfection"
Line00000099 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0122808.exe Supprimé"
Line00000098 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0122809.exe Infecté par: Trojan.PurityAd.C"
Line00000097 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0122809.exe Echec de la désinfection"
Line00000096 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0122809.exe Supprimé"
Line00000095 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0126810.exe Infecté par: Trojan.Downloader.Small.AO"
Line00000094 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0126810.exe Echec de la désinfection"
Line00000093 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0126810.exe Supprimé"
Line00000092 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0126811.exe Infecté par: Trojan.PurityAd.C"
Line00000091 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0126811.exe Echec de la désinfection"
Line00000090 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0126811.exe Supprimé"
Line00000089 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0126831.exe Infecté par: Trojan.Downloader.Small.AO"
Line00000088 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0126831.exe Echec de la désinfection"
Line00000087 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0126831.exe Supprimé"
Line00000086 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0126832.exe Infecté par: Trojan.PurityAd.C"
Line00000085 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0126832.exe Echec de la désinfection"
Line00000084 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0126832.exe Supprimé"
Line00000083 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0127840.exe Infecté par: Trojan.Downloader.Small.AO"
Line00000082 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0127840.exe Echec de la désinfection"
Line00000081 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0127840.exe Supprimé"
Line00000080 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0127841.exe Infecté par: Trojan.PurityAd.C"
Line00000079 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0127841.exe Echec de la désinfection"
Line00000078 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP375\A0127841.exe Supprimé"
Line00000077 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP376\A0129206.exe Infecté par: Trojan.Downloader.Small.AO"
Line00000076 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP376\A0129206.exe Echec de la désinfection"
Line00000075 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP376\A0129206.exe Supprimé"
Line00000074 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP376\A0129207.exe Infecté par: Trojan.PurityAd.C"
Line00000073 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP376\A0129207.exe Echec de la désinfection"
Line00000072 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP376\A0129207.exe Supprimé"
Line00000071 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP376\A0130862.exe Infecté par: Trojan.Downloader.Small.AO"
Line00000070 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP376\A0130862.exe Echec de la désinfection"
Line00000069 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP376\A0130862.exe Supprimé"
Line00000068 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP376\A0130863.exe Infecté par: Trojan.PurityAd.C"
Line00000067 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP376\A0130863.exe Echec de la désinfection"
Line00000066 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP376\A0130863.exe Supprimé"
Line00000065 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP384\A0139945.dll Infecté par: Trojan.BHO.G"
Line00000064 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP384\A0139945.dll Echec de la désinfection"
Line00000063 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP384\A0139945.dll Supprimé"
Line00000062 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP388\A0143028.exe Infecté par: Trojan.PurityAd.C"
Line00000061 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP388\A0143028.exe Echec de la désinfection"
Line00000060 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP388\A0143028.exe Supprimé"
Line00000059 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP389\A0143524.exe Infecté par: Generic.Sdbot.F001AFB6"
Line00000058 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP389\A0143524.exe Echec de la désinfection"
Line00000057 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP389\A0143524.exe Supprimé"
Line00000056 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143553.exe Infecté par: DeepScan:Generic.Sdbot.71ADA9A8"
Line00000055 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143553.exe Echec de la désinfection"
Line00000054 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143553.exe Supprimé"
Line00000053 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143554.exe Infecté par: Generic.Sdbot.DF6F8F86"
Line00000052 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143554.exe Echec de la désinfection"
Line00000051 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143554.exe Supprimé"
Line00000050 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143555.exe Infecté par: DeepScan:Generic.Sdbot.71ADA9A8"
Line00000049 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143555.exe Echec de la désinfection"
Line00000048 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143555.exe Supprimé"
Line00000047 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143556.exe Infecté par: Generic.Sdbot.F001AFB6"
Line00000046 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143556.exe Echec de la désinfection"
Line00000045 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143556.exe Supprimé"
Line00000044 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143557.exe Infecté par: DeepScan:Generic.Sdbot.71ADA9A8"
Line00000043 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143557.exe Echec de la désinfection"
Line00000042 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP390\A0143557.exe Supprimé"
Line00000041 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP391\A0144610.exe Infecté par: Trojan.Downloader.Winfixer.O"
Line00000040 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP391\A0144610.exe Echec de la désinfection"
Line00000039 = "C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP391\A0144610.exe Supprimé"
Line00000038 = "C:\WINDOWS\algs.exe Infecté par: DeepScan:Generic.Malware.dld!!.F67304D8"
Line00000037 = "C:\WINDOWS\algs.exe Echec de la désinfection"
Line00000036 = "C:\WINDOWS\algs.exe Supprimé"
Line00000035 = "C:\WINDOWS\diretx.exe Infecté par: Trojan.Downloader.Small.AO"
Line00000034 = "C:\WINDOWS\diretx.exe Echec de la désinfection"
Line00000033 = "C:\WINDOWS\diretx.exe Supprimé"
Line00000032 = "C:\WINDOWS\Downloaded Program Files\CONFLICT.1\UWA6PV_0001_N91M2107NetInstaller.exe Infecté par: Trojan.Downloader.Winfixer.O"
Line00000031 = "C:\WINDOWS\Downloaded Program Files\CONFLICT.1\UWA6PV_0001_N91M2107NetInstaller.exe Echec de la désinfection"
Line00000030 = "C:\WINDOWS\Downloaded Program Files\CONFLICT.1\UWA6PV_0001_N91M2107NetInstaller.exe Supprimé"
Line00000029 = "C:\WINDOWS\Downloaded Program Files\CONFLICT.1\UWAS6V_0001_N91M2208NetInstaller.exe Infecté par: Trojan.Downloader.Winfixer.O"
Line00000028 = "C:\WINDOWS\Downloaded Program Files\CONFLICT.1\UWAS6V_0001_N91M2208NetInstaller.exe Echec de la désinfection"
Line00000027 = "C:\WINDOWS\Downloaded Program Files\CONFLICT.1\UWAS6V_0001_N91M2208NetInstaller.exe Supprimé"
Line00000026 = "C:\WINDOWS\Downloaded Program Files\CONFLICT.2\UWA6PV_0001_N91M2107NetInstaller.exe Infecté par: Trojan.Downloader.Winfixer.O"
Line00000025 = "C:\WINDOWS\Downloaded Program Files\CONFLICT.2\UWA6PV_0001_N91M2107NetInstaller.exe Echec de la désinfection"
Line00000024 = "C:\WINDOWS\Downloaded Program Files\CONFLICT.2\UWA6PV_0001_N91M2107NetInstaller.exe Supprimé"
Line00000023 = "C:\WINDOWS\Downloaded Program Files\CONFLICT.3\UWA6PV_0001_N91M2107NetInstaller.exe Infecté par: Trojan.Downloader.Winfixer.O"
Line00000022 = "C:\WINDOWS\Downloaded Program Files\CONFLICT.3\UWA6PV_0001_N91M2107NetInstaller.exe Echec de la désinfection"
Line00000021 = "C:\WINDOWS\Downloaded Program Files\CONFLICT.3\UWA6PV_0001_N91M2107NetInstaller.exe Supprimé"
Line00000020 = "C:\WINDOWS\Downloaded Program Files\UWA6PV_0001_N91M2107NetInstaller.exe Infecté par: Trojan.Downloader.Winfixer.O"
Line00000019 = "C:\WINDOWS\Downloaded Program Files\UWA6PV_0001_N91M2107NetInstaller.exe Echec de la désinfection"
Line00000018 = "C:\WINDOWS\Downloaded Program Files\UWA6PV_0001_N91M2107NetInstaller.exe Supprimé"
Line00000017 = "C:\WINDOWS\Downloaded Program Files\UWAS6V_0001_N91M2208NetInstaller.exe Infecté par: Trojan.Downloader.Winfixer.O"
Line00000016 = "C:\WINDOWS\Downloaded Program Files\UWAS6V_0001_N91M2208NetInstaller.exe Echec de la désinfection"
Line00000015 = "C:\WINDOWS\Downloaded Program Files\UWAS6V_0001_N91M2208NetInstaller.exe Supprimé"
Line00000014 = "C:\WINDOWS\system32\jpltaaxo.dll Infecté par: Trojan.Spy.VBStat.H"
Line00000013 = "C:\WINDOWS\system32\jpltaaxo.dll Echec de la désinfection"
Line00000012 = "C:\WINDOWS\system32\jpltaaxo.dll Supprimé"
Line00000011 = "C:\WINDOWS\system32\nqhfinss.dll Infecté par: Trojan.Spy.VBStat.H"
Line00000010 = "C:\WINDOWS\system32\nqhfinss.dll Echec de la désinfection"
Line00000009 = "C:\WINDOWS\system32\nqhfinss.dll Supprimé"
Line00000008 = "C:\WINDOWS\system32\tkwgkqqn.dll Infecté par: Trojan.BHO.G"
Line00000007 = "C:\WINDOWS\system32\tkwgkqqn.dll Echec de la désinfection"
Line00000006 = "C:\WINDOWS\system32\tkwgkqqn.dll Supprimé"
Line00000005 = "C:\WINDOWS\system32\vgqaover.dll Infecté par: Trojan.Spy.VBStat.H"
Line00000004 = "C:\WINDOWS\system32\vgqaover.dll Echec de la désinfection"
Line00000003 = "C:\WINDOWS\system32\vgqaover.dll Supprimé"
Line00000002 = "C:\WINDOWS\system32\xccjfsel.dll Infecté par: Trojan.Spy.VBStat.H"
Line00000001 = "C:\WINDOWS\system32\xccjfsel.dll Echec de la désinfection"
Line00000000 = "C:\WINDOWS\system32\xccjfsel.dll Supprimé"
Logfile of HijackThis v1.99.1
Scan saved at 17:21:10, on 22/11/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\System32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Apps\ActivBoard\nhksrv.exe
C:\Program Files\AVAST\aswUpdSv.exe
C:\Program Files\AVAST\ashServ.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\Program Files\AVAST\ashMaiSv.exe
C:\Program Files\AVAST\ashWebSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\htpatch.exe
C:\PROGRA~1\AVAST\ashDisp.exe
C:\Program Files\PACK ANTI TROJIAN\ZONE ALARM\ZoneAlarm\zlclient.exe
C:\Program Files\Microsoft Etudes\Microsoft Encarta 2007 - Études DVD\EDICT.EXE
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\PACK ANTI TROJIAN\SPYBOT\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\apps\Adobe\Acrobat 5.0\Reader\AcroRd32.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\System32\rsvp.exe
C:\WINDOWS\system32\freecell.exe
C:\Program Files\PACK ANTI TROJIAN\HIJACK THIS\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O4 - HKLM\..\Run: [HTpatch] C:\WINDOWS\htpatch.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\AVAST\ashDisp.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\PACK ANTI TROJIAN\ZONE ALARM\ZoneAlarm\zlclient.exe
O4 - HKCU\..\Run: [L07FXLRD_8855640] "C:\Program Files\Microsoft Etudes\Microsoft Encarta 2007 - Études DVD\EDICT.EXE" -m
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\PACK ANTI TROJIAN\SPYBOT\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyviewer.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {09F1ADAC-76D8-4D0F-99A5-5C907DADB988} - https://www.afternic.com/domains/drivecleaner.com
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O17 - HKLM\System\CCS\Services\Tcpip\..\{523371BC-B4B5-4E8C-A822-C9ED7291F07F}: NameServer = 84.103.237.140,84.103.237.142
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\AVAST\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\AVAST\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\AVAST\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\AVAST\ashWebSv.exe" /service (file missing)
O23 - Service: hpdj - Unknown owner - C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\hpdj.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files\NERO7\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: Netropa NHK Server (nhksrv) - Unknown owner - C:\Apps\ActivBoard\nhksrv.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: ptssvc - Unknown owner - C:\Program Files\KODAK\Logiciel de transfert d'images KODAK\PTSsvc.exe (file missing)
O23 - Service: RDFLabel - Unknown owner - C:\WINDOWS\system\RDFLabel\RDFLabel.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Virtual CD v4 Security service (SDK - Version) (VCSSecS) - H+H Software GmbH - C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
Scan saved at 17:21:10, on 22/11/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\System32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Apps\ActivBoard\nhksrv.exe
C:\Program Files\AVAST\aswUpdSv.exe
C:\Program Files\AVAST\ashServ.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\Program Files\AVAST\ashMaiSv.exe
C:\Program Files\AVAST\ashWebSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\htpatch.exe
C:\PROGRA~1\AVAST\ashDisp.exe
C:\Program Files\PACK ANTI TROJIAN\ZONE ALARM\ZoneAlarm\zlclient.exe
C:\Program Files\Microsoft Etudes\Microsoft Encarta 2007 - Études DVD\EDICT.EXE
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\PACK ANTI TROJIAN\SPYBOT\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\apps\Adobe\Acrobat 5.0\Reader\AcroRd32.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\System32\rsvp.exe
C:\WINDOWS\system32\freecell.exe
C:\Program Files\PACK ANTI TROJIAN\HIJACK THIS\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O4 - HKLM\..\Run: [HTpatch] C:\WINDOWS\htpatch.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\AVAST\ashDisp.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\PACK ANTI TROJIAN\ZONE ALARM\ZoneAlarm\zlclient.exe
O4 - HKCU\..\Run: [L07FXLRD_8855640] "C:\Program Files\Microsoft Etudes\Microsoft Encarta 2007 - Études DVD\EDICT.EXE" -m
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\PACK ANTI TROJIAN\SPYBOT\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyviewer.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {09F1ADAC-76D8-4D0F-99A5-5C907DADB988} - https://www.afternic.com/domains/drivecleaner.com
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O17 - HKLM\System\CCS\Services\Tcpip\..\{523371BC-B4B5-4E8C-A822-C9ED7291F07F}: NameServer = 84.103.237.140,84.103.237.142
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\AVAST\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\AVAST\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\AVAST\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\AVAST\ashWebSv.exe" /service (file missing)
O23 - Service: hpdj - Unknown owner - C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\hpdj.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files\NERO7\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: Netropa NHK Server (nhksrv) - Unknown owner - C:\Apps\ActivBoard\nhksrv.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: ptssvc - Unknown owner - C:\Program Files\KODAK\Logiciel de transfert d'images KODAK\PTSsvc.exe (file missing)
O23 - Service: RDFLabel - Unknown owner - C:\WINDOWS\system\RDFLabel\RDFLabel.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Virtual CD v4 Security service (SDK - Version) (VCSSecS) - H+H Software GmbH - C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
Bonjour,
apparemment ils ont toujours les trojans BHO-R apparemment deux virus encore mais le reste serait parti depuis le scan de BITDEFENDER.
As-tu pu voir les rapports ??
apparemment ils ont toujours les trojans BHO-R apparemment deux virus encore mais le reste serait parti depuis le scan de BITDEFENDER.
As-tu pu voir les rapports ??
Salut
Ou te les detecte t il?
Scan ton pc avec ceci et copie colle le rapport stp
https://www.malekal.com/avg-antivirus-free-antivirus-gratuit-pour-proteger-son-pc-des-virus/
A+
Ou te les detecte t il?
Scan ton pc avec ceci et copie colle le rapport stp
https://www.malekal.com/avg-antivirus-free-antivirus-gratuit-pour-proteger-son-pc-des-virus/
A+
Bonjour,
ils ont commencé le scan avec le lien mais ils ont été obligés de le couper car Panda le logiciel qui permet de faire les scans en ligne contient un virus/ver. Ils m'ont envoyé le rapport d'AVAST qui leur avait conseillé de se déconnecter.
21/11/2006 09:01:19 Françoise 1708 Sign of "Win32:VB-FP [Wrm]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\is-M6IOE.tmp\InternetCheck.exe" file.
21/11/2006 20:24:02 Françoise 1468 Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\TFR140.tmp\Crack\NOD32.FiX.v1.9-nsane.exe" file.
21/11/2006 22:19:48 Françoise 1468 Sign of "Win32:PoeBot-Z [Trj]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmp1" file.
21/11/2006 22:20:08 Françoise 1468 Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmp4" file.
21/11/2006 22:20:13 Françoise 1468 Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmp6" file.
21/11/2006 22:20:17 Françoise 1468 Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmp8" file.
21/11/2006 22:20:21 Françoise 1468 Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmpa" file.
21/11/2006 22:20:48 Françoise 1468 Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmpc" file.
21/11/2006 22:20:55 Françoise 1468 Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmpe" file.
21/11/2006 22:28:30 Françoise 1468 Sign of "Win32:BHO-R [Trj]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmpf" file.
21/11/2006 22:28:45 Françoise 1468 Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmp10" file.
21/11/2006 22:29:34 Françoise 1468 Sign of "Win32:Ircbot-ADJ [Trj]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmp11" file.
21/11/2006 22:29:42 Françoise 1468 Sign of "Win32:PoeBot-Z [Trj]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmp12" file.
21/11/2006 22:29:47 Françoise 1468 Sign of "Win32:Ircbot-ADJ [Trj]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmp13" file.
21/11/2006 22:29:50 Françoise 1468 Sign of "Win32:PoeBot-Z [Trj]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmp14" file.
21/11/2006 22:29:53 Françoise 1468 Sign of "Win32:Ircbot-ADJ [Trj]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmp15" file.
21/11/2006 22:29:55 Françoise 1468 Sign of "Win32:PoeBot-Z [Trj]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmp16" file.
21/11/2006 22:58:38 Françoise 1468 Sign of "Win32:BHO-R [Trj]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmp22" file.
22/11/2006 00:15:11 Françoise 1468 Sign of "Win32:BHO-R [Trj]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\ysjxgtbb.dll" file.
22/11/2006 06:37:49 Françoise 1468 Sign of "Win32:BHO-R [Trj]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\rwmkxcqm.dll" file.
23/11/2006 06:37:57 SYSTEM 1480 Sign of "Win32:BHO-R [Trj]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\bgemuqvc.dll" file.
24/11/2006 00:19:27 SYSTEM 1480 Sign of "Win32:CTX" has been found in "HTTP://acs.pandasoftware.com/activescan/as5free/motor.cab\pskavs.DLL" file.
ils ont commencé le scan avec le lien mais ils ont été obligés de le couper car Panda le logiciel qui permet de faire les scans en ligne contient un virus/ver. Ils m'ont envoyé le rapport d'AVAST qui leur avait conseillé de se déconnecter.
21/11/2006 09:01:19 Françoise 1708 Sign of "Win32:VB-FP [Wrm]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\is-M6IOE.tmp\InternetCheck.exe" file.
21/11/2006 20:24:02 Françoise 1468 Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\TFR140.tmp\Crack\NOD32.FiX.v1.9-nsane.exe" file.
21/11/2006 22:19:48 Françoise 1468 Sign of "Win32:PoeBot-Z [Trj]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmp1" file.
21/11/2006 22:20:08 Françoise 1468 Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmp4" file.
21/11/2006 22:20:13 Françoise 1468 Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmp6" file.
21/11/2006 22:20:17 Françoise 1468 Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmp8" file.
21/11/2006 22:20:21 Françoise 1468 Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmpa" file.
21/11/2006 22:20:48 Françoise 1468 Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmpc" file.
21/11/2006 22:20:55 Françoise 1468 Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmpe" file.
21/11/2006 22:28:30 Françoise 1468 Sign of "Win32:BHO-R [Trj]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmpf" file.
21/11/2006 22:28:45 Françoise 1468 Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmp10" file.
21/11/2006 22:29:34 Françoise 1468 Sign of "Win32:Ircbot-ADJ [Trj]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmp11" file.
21/11/2006 22:29:42 Françoise 1468 Sign of "Win32:PoeBot-Z [Trj]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmp12" file.
21/11/2006 22:29:47 Françoise 1468 Sign of "Win32:Ircbot-ADJ [Trj]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmp13" file.
21/11/2006 22:29:50 Françoise 1468 Sign of "Win32:PoeBot-Z [Trj]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmp14" file.
21/11/2006 22:29:53 Françoise 1468 Sign of "Win32:Ircbot-ADJ [Trj]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmp15" file.
21/11/2006 22:29:55 Françoise 1468 Sign of "Win32:PoeBot-Z [Trj]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmp16" file.
21/11/2006 22:58:38 Françoise 1468 Sign of "Win32:BHO-R [Trj]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\tmp22" file.
22/11/2006 00:15:11 Françoise 1468 Sign of "Win32:BHO-R [Trj]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\ysjxgtbb.dll" file.
22/11/2006 06:37:49 Françoise 1468 Sign of "Win32:BHO-R [Trj]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\rwmkxcqm.dll" file.
23/11/2006 06:37:57 SYSTEM 1480 Sign of "Win32:BHO-R [Trj]" has been found in "C:\DOCUME~1\FRANOI~1\LOCALS~1\Temp\bgemuqvc.dll" file.
24/11/2006 00:19:27 SYSTEM 1480 Sign of "Win32:CTX" has been found in "HTTP://acs.pandasoftware.com/activescan/as5free/motor.cab\pskavs.DLL" file.
