[virus] Infecté par winfixer

Résolu
semas Messages postés 53 Statut Membre -  
semas Messages postés 53 Statut Membre -
Salut,

Alors voila depuis quelques jours j'ai mon ordi qui rame quand je suis sur le net.
Lorsque j'ouvre pour la premiere fois une page internet de la journé mon antivirus ouvre une alerte en me disant que winfixer tente de se connecter et que c'est un trojan.
Alors je fais abandonner la conexion.

Ensuite sur internet j'ai un tas de fenetres de pub qui s'ouvrent.

Voila le log de hijackthis:

Logfile of HijackThis v1.99.1
Scan saved at 20:02:15, on 15/07/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\eykepdnx.exe
C:\Documents and Settings\Compaq_Propriétaire\Bureau\Nouveau dossier (3)\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://forum-auto.caradisiac.com/forum/1384-anciennes/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {938A8A03-A938-4019-B764-03FF8D167D79} - C:\WINDOWS\system32\gvtexict.dll
O2 - BHO: (no name) - {941508F8-CCD9-44E0-AC29-4F1E141373F7} - C:\WINDOWS\system32\tuvuvwx.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: (no name) - {F70EE64A-E60D-4561-9B71-45E7EBE0C12C} - C:\WINDOWS\system32\sstts.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] "C:\PROGRA~1\Wanadoo\GestMaj.exe" TaskBarIcon.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [icq.com] rundll32.exe "C:\WINDOWS\system32\ekwuwkdw.dll",forkonce
O4 - HKCU\..\Run: [WOOKIT] "C:\PROGRA~1\Wanadoo\Shell.exe" appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [PopUpStopperFreeEdition] "C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{69D825FF-C895-4B3E-BA25-C2035D71CC3A}: NameServer = 192.168.1.1
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: sstts - C:\WINDOWS\system32\sstts.dll
O20 - Winlogon Notify: tuvuvwx - C:\WINDOWS\SYSTEM32\tuvuvwx.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe

Merci de votre aide.
Configuration: Windows XP service pack 2
Internet Explorer 7.0
antivirus : avast
firewall : kerio

40 réponses

  • 1
  • 2
Résumé de la discussion

Ralentissement du PC et alertes antivirus décrivent une infection présumée après l’ouverture d’une page, avec des pop-ups et des indications que WinFixer serait un cheval de Troie. Le fil partage un log HijackThis et une suite d’exécutables et modules suspects, d’où l’adoption d’un nettoyage en profondeur via ComboFix qui a supprimé des éléments et fichiers malveillants. Des réponses complémentaires évoquent l’échec d’un test en ligne Bitdefender, l’installation de protections recommandées et la nécessité de désinstaller AVG antispyware pour relancer un scan en ligne. Des détails notables indiquent des services Avast, Google Updater et Sunbelt Firewall encore actifs, ce qui peut nécessiter leur révision ou leur mise à jour, afin d’éviter des conflits et des charges système.

Généré automatiquement par IA
sur la base des meilleures réponses
  1. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: (no name) - {938A8A03-A938-4019-B764-03FF8D167D79} - C:\WINDOWS\system32\gvtexict.dll
    O2 - BHO: (no name) - {941508F8-CCD9-44E0-AC29-4F1E141373F7} - C:\WINDOWS\system32\tuvuvwx.dll
    O2 - BHO: (no name) - {F70EE64A-E60D-4561-9B71-45E7EBE0C12C} - C:\WINDOWS\system32\sstts.dll
    O20 - Winlogon Notify: sstts - C:\WINDOWS\system32\sstts.dll
    O20 - Winlogon Notify: tuvuvwx - C:\WINDOWS\SYSTEM32\tuvuvwx.dll

    _________________________________________________________

    slt tu as une infection vundo fait ca:

    désactive la restauration système pour purger les virus qui seraient dedans (dans DEMARRER puis TOUS LES PROGRAMMES puis ACCESSOIRE puis OUTILS SYSTEME puis RESTAURATION SYSTEME puis paramètre)

    scan avec vundo

    Téléchargez VundoFix -> http://www.atribune.org/ccount/click.php?id=4

    Double cliquez VundoFix.exe pour l'exécuter.
    Quand VundoFix s'ouvre, cliquez sur le bouton Scan for Vundo.
    Une fois le scan fini, cliquez sur le bouton Remove Vundo.
    Vous recevrez un avertissement vous demandant si vous voulez effacer ces
    fichiers répondez en cliquant sur YES
    Une fois que vous avez cliqué yes, votre bureau deviendra vide au moment où il
    enlève Vundo.

    Quand c'est fini, il vous sera demandé de redémarrer votre ordinateur, cliquez
    OK.

    puis en mode sans echec les 3 suivants :

    https://www.informatruc.com

    virtumondebegone

    http://secured2k.home.comcast.net/tools/VirtumundoBeGone.exe

    puis Symantec Vundo Remove Tool

    https://www.broadcom.com/support/security-center

    et

    https://www.broadcom.com/support/security-center

    -_____________________________________________________

    combofix (colle le rapport)

    http://mickael.barroux.free.fr/securite/combofix.php

    ____________________________________________________
    utilise aussi pour supprimer tes traces

    CCLEANER: (lance un nettoyage et répare erreurs) sans la barre yahoo

    https://www.01net.com/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/32599.html
    -----------------------

    ensuite:

    scan avec des antiespions (en mode sans échec):

    spybot :

    https://www.01net.com/telecharger/windows/Securite/anti-spyware/fiches/26157.html

    voir demo d utilisation (merci Balltrap)
    http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm

    ____________________________________
    télécharger sur le bureau
    Navilog.zip
    http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe

    = Double-Clic navilog1.zip
    = Extraire tout sur le bureau
    = Double-Clic navilog1 qui est sur le bureau
    = Appuyer sur une touche jusqu' arriver aux options
    = Choisir option 1

    un rapport : fixnavi.txt dans C : va se creer
    le copier/coller dans ton prochain message.

    ________________________________________
    fait un scan en ligne bitdefender
    et
    colle le rapport :

    bitdefender en ligne :
    http://www.bitdefender.fr/scan_fr/scan8/ie.html

    __________________________________________

    recolle hijackthis
    0
  2. semas
     
    Salut,

    J'ai un petit probleme. Quand j'ai suivi le lien pour le mode d'emploi pour le demarrage sans echec la première solution ne fonctionnait pas. C'est a dire que j'arrivais bien à l'invite de commande sans echec mais a chaque l'ordi ne faisait que de rebooter. Alors j'ai testé la 2eme solution et depuis l'ordi ne fait que rebooter et quand j'essai de démarrer en mode normal ben j'ai le logo windows et tout de suite apres j'ai un ecran bleu et l'ordi reboot.

    Alors que faire?
    0
  3. semas Messages postés 53 Statut Membre 2
     
    Alors j'ai desactivé le redemarrage auto lors d'echec pour voir l'ecran bleu.

    Voila l'erreur:

    STOP : 0X0000007B (0XF79C6524, 0XC0000034, 0X00000000, 0X00000000)

    Il me dit de faire aussi un chkdsk alors je vais tenter cela.
    0
    1. semas Messages postés 53 Statut Membre 2
       
      Bon ca y est j'ai réglé le probleme je peux redémarrer normalement mais toujours pas sans echec.
      0
  4. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    fait ce que tu peux en mode normal et colle les rapports
    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. semas Messages postés 53 Statut Membre 2
     
    Voila le rapport de combofix:

    "Compaq_Propri‚taire" - 2007-07-16 17:21:19 - ComboFix 07-07-14.6 - Service Pack 2 NTFS

    ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))

    C:\.protected
    C:\DOCUME~1\COMPAQ~1\APPLIC~1.\hidires
    C:\DOCUME~1\COMPAQ~1\APPLIC~1.\hidires\hidr.exe
    C:\DOCUME~1\COMPAQ~1\APPLIC~1.\hidires\rosa.sys
    C:\DOCUME~1\COMPAQ~1\APPLIC~1.\Ultimate Cleaner
    C:\DOCUME~1\COMPAQ~1\APPLIC~1\Dxcuknwrd.dll
    C:\Program Files\Fichiers communs\Yazzle1122OinUninstaller.exe
    C:\Program Files\printview
    C:\Program Files\printview\chnlist.dat
    C:\Program Files\printview\hotlist.dat
    C:\Program Files\printview\remlist.dat
    C:\Program Files\Ultimate Cleaner
    C:\Program Files\Ultimate Cleaner\IeSafe.exe
    C:\Program Files\Ultimate Cleaner\ucleaner.pkg
    C:\WINDOWS\.protected
    C:\WINDOWS\exefld
    C:\WINDOWS\exefld\505914140.exe
    C:\WINDOWS\system32\bkhuoevm.exe
    C:\WINDOWS\system32\bprteefp.exe
    C:\WINDOWS\system32\drivers\etc\.protected
    C:\WINDOWS\system32\eeuwfhgj.exe
    C:\WINDOWS\system32\hldrrr.exe
    C:\WINDOWS\system32\kutajpep.exe
    C:\WINDOWS\system32\kvlnyjew.exe
    C:\WINDOWS\system32\lowophcy.exe
    C:\WINDOWS\system32\lqdhunbp.exe
    C:\WINDOWS\system32\nnmentdx.exe
    C:\WINDOWS\system32\qwdpifwh.exe
    C:\WINDOWS\system32\rcqbdvre.exe
    C:\WINDOWS\system32\umdwplcu.exe
    C:\WINDOWS\system32\wkntutmw.exe
    C:\WINDOWS\system32\xxkdgtfs.exe

    ((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))

    -------\rosa

    ((((((((((((((((((((((((( Files Created from 2007-06-16 to 2007-07-16 )))))))))))))))))))))))))))))))

    2007-07-16 17:20 51,200 --a------ C:\WINDOWS\nircmd.exe
    2007-07-16 14:52 <REP> d-------- C:\WINDOWS\pss
    2007-07-16 14:44 6,369 ---hs---- C:\WINDOWS\system32\orutv.bak1
    2007-07-16 14:44 266,336 --a------ C:\WINDOWS\system32\vturo.dll.vir
    2007-07-16 14:13 <REP> d-------- C:\VundoFix Backups
    2007-07-13 18:40 8 --a------ C:\WINDOWS\system32\nvModes.dat
    2007-07-13 14:44 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA
    2007-07-13 14:35 208,896 --a------ C:\WINDOWS\system32\NVUNINST.EXE
    2007-07-13 14:34 <REP> d-------- C:\NVIDIA
    2007-07-13 13:56 <REP> d-------- C:\Program Files\Singles2
    2007-07-13 13:19 1,030,621 ---hs---- C:\WINDOWS\system32\sttss.ini2
    2007-07-13 10:13 1,029,649 ---hs---- C:\WINDOWS\system32\sttss.bak2
    2007-07-12 22:22 <REP> d-------- C:\Program Files\Codemasters
    2007-07-12 22:13 6,409 ---hs---- C:\WINDOWS\system32\sttss.bak1
    2007-07-12 22:07 31,254 --a------ C:\WINDOWS\system32\tuvuvwx.dll.vir
    2007-07-12 21:55 <REP> d-------- C:\Program Files\Fichiers communs\BOONTY Shared
    2007-07-12 21:55 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
    2007-07-12 21:06 <REP> d-------- C:\Program Files\Smart Projects
    2007-07-08 15:56 <REP> d-------- C:\Program Files\Player Tool
    2007-07-08 15:56 <REP> d-------- C:\Program Files\Multi_Media
    2007-07-06 20:50 <REP> d-------- C:\Program Files\CCleaner
    2007-07-06 20:10 197,981 --a------ C:\WINDOWS\system32\flec003.exe

    (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

    2007-07-16 15:29:06 -------- d-----w C:\Program Files\Wanadoo
    2007-07-16 15:17:04 3,195 ----a-w C:\WINDOWS\system32\drivers\fwdrv.err
    2007-07-15 12:47:06 -------- d-----w C:\Program Files\eMule
    2007-07-13 11:56:17 -------- d--h--w C:\Program Files\InstallShield Installation Information
    2007-06-16 15:16:04 10 ----a-w C:\WINDOWS\popcinfo.dat
    2007-06-15 15:38:51 -------- d-----w C:\Program Files\Zuma Deluxe
    2007-06-15 15:38:02 -------- d-----w C:\Program Files\PopCap Games
    2007-06-12 19:06:55 -------- d-----w C:\Program Files\USBToolbox
    2007-05-17 10:01:31 -------- d-----w C:\Program Files\DivXboX v3
    2007-05-16 15:13:53 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll
    2007-04-30 15:46:10 745,600 ----a-w C:\WINDOWS\system32\aswBoot.exe
    2007-04-30 15:35:28 95,872 ----a-w C:\WINDOWS\system32\AVASTSS.scr
    2007-04-25 14:22:35 144,896 ----a-w C:\WINDOWS\system32\schannel.dll
    2007-04-19 12:14:14 208,896 ----a-w C:\WINDOWS\system32\nvunrm.exe
    2007-04-19 12:14:14 208,896 ----a-w C:\WINDOWS\system32\nvudisp.exe
    2007-04-19 11:26:00 888,832 ----a-w C:\WINDOWS\system32\nvmobls.dll
    2007-04-19 11:26:00 86,016 ----a-w C:\WINDOWS\system32\nvmctray.dll
    2007-04-19 11:26:00 81,920 ----a-w C:\WINDOWS\system32\nvwddi.dll
    2007-04-19 11:26:00 794,624 ----a-w C:\WINDOWS\system32\nvcplui.exe
    2007-04-19 11:26:00 7,700,480 ----a-w C:\WINDOWS\system32\nvcpl.dll
    2007-04-19 11:26:00 581,632 ----a-w C:\WINDOWS\system32\nvhwvid.dll
    2007-04-19 11:26:00 5,644,288 ----a-w C:\WINDOWS\system32\nvoglnt.dll
    2007-04-19 11:26:00 5,619,712 ----a-w C:\WINDOWS\system32\nvdisps.dll
    2007-04-19 11:26:00 5,255,168 ----a-w C:\WINDOWS\system32\nvdispsr.dll
    2007-04-19 11:26:00 466,944 ----a-w C:\WINDOWS\system32\nvshell.dll
    2007-04-19 11:26:00 458,752 ----a-w C:\WINDOWS\system32\nvmccssr.dll
    2007-04-19 11:26:00 45,056 ----a-w C:\WINDOWS\system32\nvmccsrs.dll
    2007-04-19 11:26:00 442,368 ----a-w C:\WINDOWS\system32\nvappbar.exe
    2007-04-19 11:26:00 425,984 ----a-w C:\WINDOWS\system32\keystone.exe
    2007-04-19 11:26:00 4,543,616 ----a-w C:\WINDOWS\system32\nv4_disp.dll
    2007-04-19 11:26:00 35,840 ----a-w C:\WINDOWS\system32\nvcodins.dll
    2007-04-19 11:26:00 35,840 ----a-w C:\WINDOWS\system32\nvcod.dll
    2007-04-19 11:26:00 335,872 ----a-w C:\WINDOWS\system32\nvwrses.dll
    2007-04-19 11:26:00 335,872 ----a-w C:\WINDOWS\system32\nvwrsel.dll
    2007-04-19 11:26:00 327,680 ----a-w C:\WINDOWS\system32\nvwrsfr.dll
    2007-04-19 11:26:00 327,680 ----a-w C:\WINDOWS\system32\nvwrsesm.dll
    2007-04-19 11:26:00 323,584 ----a-w C:\WINDOWS\system32\nvwrspt.dll
    2007-04-19 11:26:00 323,584 ----a-w C:\WINDOWS\system32\nvwrsit.dll
    2007-04-19 11:26:00 323,584 ----a-w C:\WINDOWS\system32\nvrshe.dll
    2007-04-19 11:26:00 323,584 ----a-w C:\WINDOWS\system32\nvrsar.dll
    2007-04-19 11:26:00 319,488 ----a-w C:\WINDOWS\system32\nvwrsptb.dll
    2007-04-19 11:26:00 319,488 ----a-w C:\WINDOWS\system32\nvwrsnl.dll
    2007-04-19 11:26:00 315,392 ----a-w C:\WINDOWS\system32\nvwrsru.dll
    2007-04-19 11:26:00 315,392 ----a-w C:\WINDOWS\system32\nvwrshu.dll
    2007-04-19 11:26:00 311,296 ----a-w C:\WINDOWS\system32\nvwrsde.dll
    2007-04-19 11:26:00 311,296 ----a-w C:\WINDOWS\system32\nvexpbar.dll
    2007-04-19 11:26:00 303,104 ----a-w C:\WINDOWS\system32\nvwrstr.dll
    2007-04-19 11:26:00 303,104 ----a-w C:\WINDOWS\system32\nvwrssl.dll
    2007-04-19 11:26:00 303,104 ----a-w C:\WINDOWS\system32\nvwrsfi.dll
    2007-04-19 11:26:00 3,203,072 ----a-w C:\WINDOWS\system32\nvgamesr.dll
    2007-04-19 11:26:00 3,035,136 ----a-w C:\WINDOWS\system32\nvgames.dll
    2007-04-19 11:26:00 299,008 ----a-w C:\WINDOWS\system32\nvwrssk.dll
    2007-04-19 11:26:00 299,008 ----a-w C:\WINDOWS\system32\nvwrsno.dll
    2007-04-19 11:26:00 294,912 ----a-w C:\WINDOWS\system32\nvwrssv.dll
    2007-04-19 11:26:00 294,912 ----a-w C:\WINDOWS\system32\nvwrspl.dll
    2007-04-19 11:26:00 294,912 ----a-w C:\WINDOWS\system32\nvwrsda.dll
    2007-04-19 11:26:00 286,720 ----a-w C:\WINDOWS\system32\nvwrseng.dll
    2007-04-19 11:26:00 286,720 ----a-w C:\WINDOWS\system32\nvwrscs.dll
    2007-04-19 11:26:00 286,720 ----a-w C:\WINDOWS\system32\nvnt4cpl.dll
    2007-04-19 11:26:00 282,624 ----a-w C:\WINDOWS\system32\nvwrsar.dll
    2007-04-19 11:26:00 278,528 ----a-w C:\WINDOWS\system32\nvwrshe.dll
    2007-04-19 11:26:00 278,528 ----a-w C:\WINDOWS\system32\nvrsfr.dll
    2007-04-19 11:26:00 274,432 ----a-w C:\WINDOWS\system32\nvrsit.dll
    2007-04-19 11:26:00 274,432 ----a-w C:\WINDOWS\system32\nvrses.dll
    2007-04-19 11:26:00 274,432 ----a-w C:\WINDOWS\system32\nvrsel.dll
    2007-04-19 11:26:00 270,336 ----a-w C:\WINDOWS\system32\nvrsde.dll
    2007-04-19 11:26:00 266,240 ----a-w C:\WINDOWS\system32\nvrspt.dll
    2007-04-19 11:26:00 266,240 ----a-w C:\WINDOWS\system32\nvrsnl.dll
    2007-04-19 11:26:00 266,240 ----a-w C:\WINDOWS\system32\nvrsesm.dll
    2007-04-19 11:26:00 262,144 ----a-w C:\WINDOWS\system32\nvrsru.dll
    2007-04-19 11:26:00 262,144 ----a-w C:\WINDOWS\system32\nvrsptb.dll
    2007-04-19 11:26:00 262,144 ----a-w C:\WINDOWS\system32\nvrsja.dll
    2007-04-19 11:26:00 258,048 ----a-w C:\WINDOWS\system32\nvrsko.dll
    2007-04-19 11:26:00 253,952 ----a-w C:\WINDOWS\system32\nvrshu.dll
    2007-04-19 11:26:00 249,856 ----a-w C:\WINDOWS\system32\nvrstr.dll
    2007-04-19 11:26:00 249,856 ----a-w C:\WINDOWS\system32\nvrssl.dll
    2007-04-19 11:26:00 249,856 ----a-w C:\WINDOWS\system32\nvrssk.dll
    2007-04-19 11:26:00 249,856 ----a-w C:\WINDOWS\system32\nvrspl.dll
    2007-04-19 11:26:00 249,856 ----a-w C:\WINDOWS\system32\nvrsno.dll
    2007-04-19 11:26:00 245,760 ----a-w C:\WINDOWS\system32\nvrssv.dll
    2007-04-19 11:26:00 245,760 ----a-w C:\WINDOWS\system32\nvrsda.dll
    2007-04-19 11:26:00 241,664 ----a-w C:\WINDOWS\system32\nvrsfi.dll
    2007-04-19 11:26:00 241,664 ----a-w C:\WINDOWS\system32\nvrseng.dll
    2007-04-19 11:26:00 241,664 ----a-w C:\WINDOWS\system32\nvrscs.dll
    2007-04-19 11:26:00 229,376 ----a-w C:\WINDOWS\system32\nvmccs.dll
    2007-04-19 11:26:00 221,184 ----a-w C:\WINDOWS\system32\nvrszhc.dll
    2007-04-19 11:26:00 212,992 ----a-w C:\WINDOWS\system32\nvwrsja.dll
    2007-04-19 11:26:00 212,992 ----a-w C:\WINDOWS\system32\nvapi.dll
    2007-04-19 11:26:00 2,973,696 ----a-w C:\WINDOWS\system32\nvvitvsr.dll
    2007-04-19 11:26:00 2,924,544 ----a-w C:\WINDOWS\system32\nvvitvs.dll
    2007-04-19 11:26:00 2,859,008 ----a-w C:\WINDOWS\system32\nvmoblsr.dll
    2007-04-19 11:26:00 196,608 ----a-w C:\WINDOWS\system32\nvwrsko.dll
    2007-04-19 11:26:00 188,416 ----a-w C:\WINDOWS\system32\nvmccss.dll
    2007-04-19 11:26:00 167,936 ----a-w C:\WINDOWS\system32\nvwrszht.dll
    2007-04-19 11:26:00 163,840 ----a-w C:\WINDOWS\system32\nvwrszhc.dll
    2007-04-19 11:26:00 159,810 ----a-w C:\WINDOWS\system32\nvsvc32.exe
    2007-04-19 11:26:00 147,456 ----a-w C:\WINDOWS\system32\nvcolor.exe
    2007-04-19 11:26:00 118,784 ----a-w C:\WINDOWS\system32\nvrszht.dll
    2007-04-19 11:26:00 1,732,608 ----a-w C:\WINDOWS\system32\nvwssr.dll
    2007-04-19 11:26:00 1,703,936 ----a-w C:\WINDOWS\system32\nvwdmcpl.dll

    ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))

    *Note* empty entries & legit default entries are not shown

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
    2006-01-12 20:38 63128 --a------ C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3E08F5F7-16A7-46AE-8254-3D4B64F1C2BE}]
    C:\WINDOWS\system32\sstts.dll

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
    2005-05-31 01:04 853672 --a------ C:\Program Files\Spybot - Search & Destroy\SDHelper.dll

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
    2007-03-14 03:43 501400 --a------ C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
    2007-01-20 00:56 2436160 -ra------ c:\program files\google\googletoolbar4.dll

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
    2007-06-26 22:24 325048 --a------ C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "WOOWATCH"="C:\PROGRA~1\Wanadoo\Watch.exe" [2004-08-23 14:49]
    "WOOTASKBARICON"="C:\PROGRA~1\Wanadoo\GestMaj.exe" [2004-10-14 16:55]
    "avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-04-30 17:42]
    "TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [2006-01-02 22:11]
    "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe" [2007-03-14 03:43]
    "nwiz"="nwiz.exe" [2007-04-19 13:26 C:\WINDOWS\system32\nwiz.exe]
    "NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2007-04-19 13:26]

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "WOOKIT"="C:\PROGRA~1\Wanadoo\Shell.exe" [2004-08-23 14:50]
    "PopUpStopperFreeEdition"="C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe" [2005-03-17 11:10]
    "swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-06-26 22:24]
    "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-05 13:00]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    "{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="C:\Program Files\ewido anti-spyware 4.0\shellexecutehook.dll" [2006-06-16 16:38]

    [color=red]SafeBoot registry key needs repairs. This machine cannot enter Safe Mode.[/color]
    ~~\SafeBoot\Minimal\Base
    ~~\SafeBoot\Minimal\Boot Bus Extender
    ~~\SafeBoot\Minimal\Boot file system
    ~~\SafeBoot\Minimal\dmboot.sys
    ~~\SafeBoot\Minimal\dmio.sys
    ~~\SafeBoot\Minimal\dmload.sys
    ~~\SafeBoot\Minimal\dmserver
    ~~\SafeBoot\Minimal\File system
    ~~\SafeBoot\Minimal\Filter
    ~~\SafeBoot\Minimal\PCI Configuration
    ~~\SafeBoot\Minimal\Primary disk
    ~~\SafeBoot\Minimal\RpcSs
    ~~\SafeBoot\Minimal\SCSI Class
    ~~\SafeBoot\Minimal\sermouse.sys
    ~~\SafeBoot\Minimal\System Bus Extender
    ~~\SafeBoot\Minimal\vga.sys
    ~~\SafeBoot\Minimal\vgasave.sys
    ~~\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}
    ~~\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}
    ~~\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}
    ~~\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}
    ~~\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}
    ~~\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}

    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\E]
    AutoRun\command- E:\Eautorun.exe

    **************************************************************************

    catchme 0.3.915 W2K/XP/Vista - rootkit detector by Gmer, http://www.gmer.net
    Rootkit scan 2007-07-16 17:27:32
    Windows 5.1.2600 Service Pack 2 NTFS

    scanning hidden processes ...

    C:\WINDOWS\system32\cmd.exe [3756] 0x85FD0C10

    scanning hidden autostart entries ...

    scanning hidden files ...

    scan completed successfully
    hidden files: 0

    **************************************************************************

    Completion time: 2007-07-16 17:30:51 - machine was rebooted
    C:\ComboFix-quarantined-files.txt ... 2007-07-16 17:30

    --- E O F ---
    0
  7. semas Messages postés 53 Statut Membre 2
     
    Voila le rapport de navilog:

    Search Navipromo version 2.0.5 commencé le 16/07/2007 à 17:54:00,20

    !!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
    !!! Poster ce rapport sur le forum pour le faire analyser !!!
    !!! Ne pas lancer la partie désinfection sans l'avis d'un spécialiste !!!

    Fix lancé depuis C:\Program Files\navilog1
    Mise a jour le 01.07.2007 a 12h00 by IL-MAFIOSO

    Executé en mode normal

    *** Recherche Programmes installes ***

    *** Recherche dossiers dans C:\WINDOWS ***

    *** Recherche dossiers dans C:\Program Files ***

    *** Recherche dossiers dans C:\Documents and Settings\All Users\Application Data ***

    *** Recherche dossiers dans C:\Documents and Settings\Compaq_Propri‚taire\Application Data ***

    *** Recherche avec BlackLight Engine/F-secure ***
    BlackLight Engine est un produit de F-secure, pour + d'infos :
    https://www.f-secure.com/en

    F-SECURE BLACKLIGHT ROOTKIT ELIMINATOR
    ======================================

    Copyright 2005-2006 F-Secure Corporation. All rights reserved.
    This is a beta version. It will expire on 1st of October, 2007.
    Version information: 2.2.1064.

    [+] Started on 07/16/07 at 17:54:05.
    [+] Initializing ...
    [+] Starting scan, press Ctrl-C to abort.
    [+] Scanning for hidden items ..............................................
    [+] Scan complete.
    [+] Summary: 0 hidden item(s) found, 0 scheduled for renaming.
    [+] Exited on 07/16/07 at 17:57:44 (return code = 0).

    *** Recherche fichiers ***

    *** Recherche cles registre ***

    Recherche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs]

    Recherche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage]

    Recherche Clé Magic Control

    *** Module de Recherche complémentaire ***
    (Recherche fichiers spécifiques)

    1)Recherche fichiers connus:

    C:\WINDOWS\system32\sttss.ini2 trouvé ! infection Vundo possible non traité par cet outil !
    C:\WINDOWS\system32\orutv.bak1 trouvé ! infection Vundo possible non traité par cet outil !
    C:\WINDOWS\system32\sttss.bak1 trouvé ! infection Vundo possible non traité par cet outil !
    C:\WINDOWS\system32\sttss.bak2 trouvé ! infection Vundo possible non traité par cet outil !

    2)Recherche Heuristique :
    *
    **
    ***
    ****
    *****
    ******
    *******
    ********

    3)Recherche Certificats :

    *** Analyse Terminé le 16/07/2007 à 17:58:05,57 ***
    0
  8. semas Messages postés 53 Statut Membre 2
     
    Voila le rapport de bitdefender:

    BitDefender Online Scanner

    Rapport d'analyse généré à: Mon, Jul 16, 2007 - 19:26:29

    Voie d'analyse: C:\;D:\;E:\;F:\;G:\;H:\;I:\;J:\;

    Statistiques

    Temps
    01:02:48

    Fichiers
    423129

    Directoires
    6892

    Secteurs de boot
    5

    Archives
    15656

    Paquets programmes
    33350

    Résultats

    Virus identifiés
    14

    Fichiers infectés
    154

    Fichiers suspects
    0

    Avertissements
    0

    Désinfectés
    0

    Fichiers effacés
    275

    Info sur les moteurs

    Définition virus
    672356

    Version des moteurs
    AVCORE v1.0 (build 2410) (i386) (Jun 12 2007 21:08:27)

    Analyse des plugins
    14

    Archive des plugins
    38

    Unpack des plugins
    6

    E-mail plugins
    6

    Système plugins
    1

    Paramètres d'analyse

    Première action
    Désinfecté

    Seconde Action
    Supprimé

    Heuristique
    Oui

    Acceptez les avertissements
    Oui

    Extensions analysées
    *;

    Excludez les extensions

    Analyse d'emails
    Oui

    Analyse des Archives
    Oui

    Analyser paquets programmes
    Oui

    Analyse des fichiers
    Oui

    Analyse de boot
    Oui

    Fichier analysé
    Statut

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01D603D0.exe=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01D603D0.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01D603D0.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01D603D0.txt=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01D603D0.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\01D603D0.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\043B47FE.exe=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\043B47FE.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\043B47FE.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\04A13E05.exe=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\04A13E05.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\04A13E05.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\04A13E05.txt=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\04A13E05.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\04A13E05.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09EA07F4.exe=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09EA07F4.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\09EA07F4.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0C6D0A87.exe=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Adload.EN

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0C6D0A87.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0C6D0A87.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E407E85.exe=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E407E85.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E407E85.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E407E85.htm=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E407E85.htm=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E407E85.htm=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E407E85.txt=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E407E85.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E407E85.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E432881.exe=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E432881.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E432881.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E432881.htm=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E432881.htm=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E432881.htm=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E432881.txt=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E432881.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E432881.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E47527E.exe=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E47527E.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E47527E.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E47527E.txt=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E47527E.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E47527E.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E4A7C7A.exe=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E4A7C7A.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E4A7C7A.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E4A7C7A.txt=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E4A7C7A.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E4A7C7A.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E4D2677.exe=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E4D2677.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E4D2677.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E4D2677.txt=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E4D2677.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E4D2677.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E505073.exe=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E505073.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E505073.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E505073.txt=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E505073.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E505073.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E547A6F.exe=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E547A6F.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E547A6F.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E547A6F.htm=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E547A6F.htm=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E547A6F.htm=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E547A6F.txt=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E547A6F.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E547A6F.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E57246C.exe=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E57246C.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E57246C.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E57246C.txt=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E57246C.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E57246C.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E5A4E68.exe=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E5A4E68.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E5A4E68.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E5A4E68.txt=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E5A4E68.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E5A4E68.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E644C5D.exe=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E644C5D.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E644C5D.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E644C5D.txt=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E644C5D.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E644C5D.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E67765A.exe=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E67765A.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E67765A.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E67765A.txt=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E67765A.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E67765A.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E6B2056.exe=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E6B2056.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E6B2056.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E6E4A53.exe=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E6E4A53.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E6E4A53.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E6E4A53.htm=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E6E4A53.htm=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E6E4A53.htm=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E6E4A53.txt=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E6E4A53.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E6E4A53.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E71744F.exe=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E71744F.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E71744F.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E741E4B.exe=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E741E4B.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E741E4B.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E741E4B.htm=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E741E4B.htm=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E741E4B.htm=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E741E4B.txt=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E741E4B.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E741E4B.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E784848.exe=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E784848.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E784848.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E784848.htm=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E784848.htm=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E784848.htm=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E784848.txt=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E784848.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E784848.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E7B7244.htm=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E7B7244.htm=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E7B7244.htm=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E7B7244.txt=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E7B7244.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E7B7244.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E7E1C41.exe=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E7E1C41.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E7E1C41.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E7E1C41.htm=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E7E1C41.htm=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E7E1C41.htm=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E7E1C41.txt=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E7E1C41.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E7E1C41.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E81463D.exe=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E81463D.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E81463D.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E81463D.htm=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E81463D.htm=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E81463D.htm=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E81463D.txt=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E81463D.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0E81463D.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EA51415.exe=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EA51415.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EA51415.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EA51415.txt=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EA51415.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EA51415.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EA93E12.exe=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EA93E12.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EA93E12.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EA93E12.txt=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EA93E12.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EA93E12.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EAC680E.exe=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EAC680E.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EAC680E.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EAC680E.txt=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EAC680E.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EAC680E.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EAF120B.exe=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EAF120B.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EAF120B.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EAF120B.txt=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EAF120B.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EAF120B.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EB23C07.exe=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EB23C07.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EB23C07.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EB23C07.txt=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EB23C07.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EB23C07.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EC063F9.exe=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EC063F9.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EC063F9.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EC063F9.txt=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EC063F9.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EC063F9.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EC30DF5.exe=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EC30DF5.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EC30DF5.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EC30DF5.txt=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EC30DF5.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EC30DF5.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0ECD0BEA.txt=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0ECD0BEA.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0ECD0BEA.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0ED035E7.exe=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0ED035E7.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0ED035E7.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0ED609E0.exe=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0ED609E0.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0ED609E0.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0ED609E0.txt=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0ED609E0.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0ED609E0.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EDD5DD8.exe=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EDD5DD8.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EDD5DD8.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EE007D5.txt=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EE007D5.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EE007D5.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EED2FC6.exe=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EED2FC6.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EED2FC6.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EED2FC6.txt=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EED2FC6.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EED2FC6.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EFE01B4.exe=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EFE01B4.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EFE01B4.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EFE01B4.htm=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EFE01B4.htm=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EFE01B4.htm=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EFF17ED.txt=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EFF17ED.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0EFF17ED.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F012BB1.exe=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F012BB1.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F012BB1.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F012BB1.htm=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F012BB1.htm=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F012BB1.htm=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F0455AD.htm=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F0455AD.htm=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F0455AD.htm=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F1B7B94.htm=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F1B7B94.htm=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F1B7B94.htm=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F1E2591.exe=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F1E2591.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F1E2591.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F257989.exe=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F257989.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F257989.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F257989.htm=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F257989.htm=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F257989.htm=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F451D65.exe=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F451D65.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F451D65.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F494762.exe=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F494762.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F494762.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F494762.txt=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F494762.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F494762.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F4C715E.exe=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F4C715E.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F4C715E.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F4C715E.txt=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F4C715E.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F4C715E.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F4F1B5B.exe=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F4F1B5B.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F4F1B5B.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F4F1B5B.txt=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F4F1B5B.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\0F4F1B5B.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\10327A04.exe=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\10327A04.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\10327A04.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\10327A04.txt=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\10327A04.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\10327A04.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\11E60141.exe=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\11E60141.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\11E60141.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1AF649F3.exe=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1AF649F3.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1AF649F3.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1B5C3FFB.txt=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1B5C3FFB.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1B5C3FFB.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1D6B04F4.txt=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1D6B04F4.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\1D6B04F4.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\268605F2.exe=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\268605F2.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\268605F2.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\268605F2.txt=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\268605F2.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\268605F2.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\27527201.txt=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\27527201.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\27527201.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\303A78F8.exe=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\303A78F8.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\303A78F8.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\321641F1.exe=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\321641F1.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\321641F1.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\32E32E00.exe=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\32E32E00.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\32E32E00.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\33492407.exe=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\33492407.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\33492407.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\33492407.txt=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\33492407.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\33492407.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3CDB11E0.exe=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3CDB11E0.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3CDB11E0.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3E7369FE.exe=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3E7369FE.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3E7369FE.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3ED96006.exe=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3ED96006.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3ED96006.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3ED96006.txt=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3ED96006.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\3ED96006.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\41516294.exe=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\41516294.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\41516294.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\559461FC.exe=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\559461FC.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\559461FC.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\559461FC.htm=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\559461FC.htm=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\559461FC.htm=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\60BE27F3.exe=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\60BE27F3.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\60BE27F3.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\60BE27F3.txt=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\60BE27F3.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\60BE27F3.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6C4E63F1.txt=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6C4E63F1.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6C4E63F1.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6D1A5000.exe=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6D1A5000.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6D1A5000.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6D814608.exe=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6D814608.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\6D814608.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\71991ED3.exe=>(Quarantine-2)
    Infecté par: Trojan.Dropper.BP

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\71991ED3.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\71991ED3.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79110207.exe=>(Quarantine-2)
    Infecté par: Generic.Malware.SFdldg.68B43E89

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79110207.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79110207.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79110207.txt=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79110207.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\79110207.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7EFC67DE.exe=>(Quarantine-2)
    Infecté par: Trojan.Downloader.Tiny.BK

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7EFC67DE.exe=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7EFC67DE.exe=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7EFC67DE.txt=>(Quarantine-2)
    Infecté par: Trojan.Pws.Sinowal.AX

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7EFC67DE.txt=>(Quarantine-2)
    Echec de la désinfection

    C:\Documents and Settings\All Users\Application Data\Symantec\Norton AntiVirus\Quarantine\7EFC67DE.txt=>(Quarantine-2)
    Supprimé

    C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Downloads\[Morpheus] singles 2 trio d'enfer 1 by Gamerz (Single).zip=>Setup.exe
    Infecté par: Trojan.Dropper.Mudrop.DU

    C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Downloads\[Morpheus] singles 2 trio d'enfer 1 by Gamerz (Single).zip=>Setup.exe
    Echec de la désinfection

    C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Downloads\[Morpheus] singles 2 trio d'enfer 1 by Gamerz (Single).zip=>Setup.exe
    Supprimé

    C:\Documents and Settings\Compaq_Propriétaire\Mes documents\Downloads\[Morpheus] singles 2 trio d'enfer 1 by Gamerz (Single).zip
    Mis à jour

    C:\Program Files\Common Files\cloader\32vegas\logos\cloader_idrpr.exe
    Infecté par: Trojan.Downloader.Msil.Agent.C

    C:\Program Files\Common Files\cloader\32vegas\logos\cloader_idrpr.exe
    Echec de la désinfection

    C:\Program Files\Common Files\cloader\32vegas\logos\cloader_idrpr.exe
    Supprimé

    C:\QooBox\Quarantine\C\DOCUME~1\COMPAQ~1\APPLIC~1\hidires\hidr.exe.vir
    Infecté par: Win32.Worm.Bagle.ZIT

    C:\QooBox\Quarantine\C\DOCUME~1\COMPAQ~1\APPLIC~1\hidires\hidr.exe.vir
    Echec de la désinfection

    C:\QooBox\Quarantine\C\DOCUME~1\COMPAQ~1\APPLIC~1\hidires\hidr.exe.vir
    Supprimé

    C:\QooBox\Quarantine\C\DOCUME~1\COMPAQ~1\APPLIC~1\hidires\rosa.sys.vir
    Infecté par: Trojan.Rootkit.Agent.NBB

    C:\QooBox\Quarantine\C\DOCUME~1\COMPAQ~1\APPLIC~1\hidires\rosa.sys.vir
    Echec de la désinfection

    C:\QooBox\Quarantine\C\DOCUME~1\COMPAQ~1\APPLIC~1\hidires\rosa.sys.vir
    Supprimé

    C:\QooBox\Quarantine\C\WINDOWS\exefld\505914140.exe.vir
    Infecté par: Win32.Worm.Bagle.ZIT

    C:\QooBox\Quarantine\C\WINDOWS\exefld\505914140.exe.vir
    Echec de la désinfection

    C:\QooBox\Quarantine\C\WINDOWS\exefld\505914140.exe.vir
    Supprimé

    C:\QooBox\Quarantine\C\WINDOWS\system32\bkhuoevm.exe.vir
    Infecté par: Trojan.Agent.AAOA

    C:\QooBox\Quarantine\C\WINDOWS\system32\bkhuoevm.exe.vir
    Echec de la désinfection

    C:\QooBox\Quarantine\C\WINDOWS\system32\bkhuoevm.exe.vir
    Supprimé

    C:\QooBox\Quarantine\C\WINDOWS\system32\bprteefp.exe.vir
    Infecté par: Trojan.Agent.AAOA

    C:\QooBox\Quarantine\C\WINDOWS\system32\bprteefp.exe.vir
    Echec de la désinfection

    C:\QooBox\Quarantine\C\WINDOWS\system32\bprteefp.exe.vir
    Supprimé

    C:\QooBox\Quarantine\C\WINDOWS\system32\eeuwfhgj.exe.vir
    Infecté par: Trojan.Agent.AAOA

    C:\QooBox\Quarantine\C\WINDOWS\system32\eeuwfhgj.exe.vir
    Echec de la désinfection

    C:\QooBox\Quarantine\C\WINDOWS\system32\eeuwfhgj.exe.vir
    Supprimé

    C:\QooBox\Quarantine\C\WINDOWS\system32\hldrrr.exe.vir
    Infecté par: Win32.Worm.Bagle.ZIU

    C:\QooBox\Quarantine\C\WINDOWS\system32\hldrrr.exe.vir
    Echec de la désinfection

    C:\QooBox\Quarantine\C\WINDOWS\system32\hldrrr.exe.vir
    Supprimé

    C:\QooBox\Quarantine\C\WINDOWS\system32\kutajpep.exe.vir
    Infecté par: Trojan.Agent.AAOA

    C:\QooBox\Quarantine\C\WINDOWS\system32\kutajpep.exe.vir
    Echec de la désinfection

    C:\QooBox\Quarantine\C\WINDOWS\system32\kutajpep.exe.vir
    Supprimé

    C:\QooBox\Quarantine\C\WINDOWS\system32\kvlnyjew.exe.vir
    Infecté par: Trojan.Agent.AAOA

    C:\QooBox\Quarantine\C\WINDOWS\system32\kvlnyjew.exe.vir
    Echec de la désinfection

    C:\QooBox\Quarantine\C\WINDOWS\system32\kvlnyjew.exe.vir
    Supprimé

    C:\QooBox\Quarantine\C\WINDOWS\system32\lowophcy.exe.vir
    Infecté par: Trojan.Agent.AAOA

    C:\QooBox\Quarantine\C\WINDOWS\system32\lowophcy.exe.vir
    Echec de la désinfection

    C:\QooBox\Quarantine\C\WINDOWS\system32\lowophcy.exe.vir
    Supprimé

    C:\QooBox\Quarantine\C\WINDOWS\system32\lqdhunbp.exe.vir
    Infecté par: Trojan.Agent.AAOA

    C:\QooBox\Quarantine\C\WINDOWS\system32\lqdhunbp.exe.vir
    Echec de la désinfection

    C:\QooBox\Quarantine
    0
  9. semas Messages postés 53 Statut Membre 2
     
    Et enfin le rapport de hijackthis:

    Logfile of HijackThis v1.99.1
    Scan saved at 20:02:48, on 16/07/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16473)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
    C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
    C:\Program Files\ewido anti-spyware 4.0\guard.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
    C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
    C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
    C:\WINDOWS\system32\rundll32.exe
    C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
    C:\Program Files\MSN Messenger\usnsvc.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\Program Files\MSN Messenger\msnmsgr.exe
    C:\Documents and Settings\Compaq_Propriétaire\Bureau\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://forum-auto.caradisiac.com/forum/1384-anciennes/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {3E08F5F7-16A7-46AE-8254-3D4B64F1C2BE} - C:\WINDOWS\system32\sstts.dll (file missing)
    O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
    O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
    O4 - HKLM\..\Run: [WOOTASKBARICON] "C:\PROGRA~1\Wanadoo\GestMaj.exe" TaskBarIcon.exe
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKCU\..\Run: [WOOKIT] "C:\PROGRA~1\Wanadoo\Shell.exe" appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
    O4 - HKCU\..\Run: [PopUpStopperFreeEdition] "C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe"
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
    O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
    O11 - Options group: [INTERNATIONAL] International*
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    O17 - HKLM\System\CCS\Services\Tcpip\..\{69D825FF-C895-4B3E-BA25-C2035D71CC3A}: NameServer = 192.168.1.1
    O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
    O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
    O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
    O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
    O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
    O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
    O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
    O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
    0
  10. semas Messages postés 53 Statut Membre 2
     
    Est ce normal que le site de CCM rame beaucoup?
    0
  11. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    https://www.informatruc.com

    pour les redemarrage tu fait la meme procedure mais tu decoche safeboot (dans demarrer puis executer et tape msconfig et decoche saffeboot)
    0
  12. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    O2 - BHO: (no name) - {3E08F5F7-16A7-46AE-8254-3D4B64F1C2BE} - C:\WINDOWS\system32\sstts.dll (file missing)

    fix cette ligne
    _______________

    oui vers 20h beaucoup de monde se connecte et ca ramme CCM!!!

    ______________

    Télécharger Blacklight (de F-Secure)

    https://www.f-secure.com/en

    Sauvegardez-le sur le Bureau.
    Double-cliquez sur blbeta.exe et acceptez la licence
    Cliquez sur Scan puis Next
    Vous verrez une liste de fichiers détectés apparaître

    Vous verrez également un rapport, sur le Bureau , ouvrez-le :

    tuto : (Merci à Malekal pour cette réalisation)
    https://www.malekal.com/tutorial-f-secure-blacklight/#mozTocId411175

    _____________________

    encore des pubs? ou autres pb?

    _______________________

    vire ce qui est en quarantaine dans norton

    _______________________

    AVG antispyxare

    https://www.01net.com/telecharger/

    Tuto :
    http://www.kachouri.com/tuto/tuto-161-avg-anti-spyware-75-pour-votre-securite.html

    ->Relance AVG AS -> "Analyse" ->"Paramètres"

    Sous la question "Comment réagir ?" :

    -> clique sur "Actions recommandées" et choisis "Quarantaines"
    -> Re-clique sur l'onglet "Analyse" puis réalise une "Analyse complète du système"

    Si un fichier est infecté en fin d'analyse

    ->Clique sur "Appliquer toutes les actions "

    ->Clique sur "Enregistrer le rapport" puis sur "Enregistrer le rapport sous".

    ->Enregistre ce fichier texte sur ton bureau ensuite colle le rapport ici
    0
  13. semas Messages postés 53 Statut Membre 2
     
    Alors j'ai fais l'analyse avec AVG et il a detecté que des cookies. Donc je n'ai pas eu de rapport à enregistrer.

    Sinon c'est ok quand je me connecte sur le net je n'ai plus d'alerte avast et je n'ai plus de pub.

    Par contre je trouve que le net rame sur n'importe quel sitealors qu'avant ces problemes ca ne ramait pas du tout.
    0
  14. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    desinstalle avg antispyware

    recolle un scan en ligne
    0
  15. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    refait ccleaner et repare les erreurs plusieurs fois

    pour protéger gratos ton ordi

    securite

    mettre un antivirus

    AVAST en français ou ANTIVIR (en anglais mais très efficace)
    https://www.malekal.com/avira-free-security-antivirus-gratuit/ (merci Malekal)
    -------------
    des anti-espions:

    AD AWARE + SPYBOT + WINDOWS DEFENDER

    +/-
    SPYWAREBLASTER pour immuniser le système contre vundo notamment mais en anglais (mais facile d'utilisation : il suffit de faire "update" pour mettre à jour tous les mois et ensuite" enable all protection" pour immuniser)...

    --------
    un pare feu :
    celui de Windows ou mieux KERIO ou JETICO ou ZONE ALARM (mettre que le parefeu gratuit)
    https://manuelsdaide.com/contact/
    http://www.open-files.com/forum/index.php?showtopic=29277
    zonealarm

    -----------

    CCLEANER pour effacer les traces de surf
    0
  16. semas Messages postés 53 Statut Membre 2
     
    Le test en ligne avec bitdefender me fait une erreur et me ferme ma fenetre alors je n'ai pas pu aller jusqu'au bout de l'analyse.

    Sinon j'ai installé les programmes que tu m'as dit pour protéger mon ordi.
    0
  17. semas Messages postés 53 Statut Membre 2
     
    Désolé de répondre que maintenant mais j'etais en deplacement.

    Alors les tests en ligne ne marche pas.

    J'ai analysé avec le prog bitdefender.

    Voila le rapport:

    //-----------------------------------------------------------------
    //
    // Product: BitDefender 8 Free Edition
    // Version: 8.0
    //
    // Created on: 19/07/2007 12:34:47
    //
    //-----------------------------------------------------------------

    Statistics

    Scan path : C:\
    D:\
    J:\
    Folders : 6439
    Files : 415843
    Archives : 15505
    Packed files : 32936
    Identified viruses : 2
    Infected files : 2
    Warnings : 0
    Suspect files : 0
    Disinfected files : 0
    Deleted files : 0
    Copied files : 0
    Moved files : 2
    Renamed files : 0
    I/O errors : 29
    Scan time : 00:53:17
    Scan speed (files/sec) : 130

    Virus definitions : 639372
    Scan plugins : 14
    Archive plugins : 38
    Unpack plugins : 6
    Mail plugins : 6
    System plugins : 1

    Scan options

    Detection
    [X] Scan boot sectors
    [X] Scan archives
    [X] Scan packed files
    [X] Scan email

    File mask
    [ ] Programs
    [X] All files
    [ ] User defined extensions:
    [ ] Exclude extensions: ;

    Action

    Infected objects
    [ ] Ignore
    [X] Disinfect
    [ ] Delete
    [ ] Copy to quarantine
    [ ] Move to quarantine
    [ ] Rename
    [ ] Prompt user

    Second action
    [ ] Ignore
    [ ] Delete
    [ ] Copy to quarantine
    [X] Move to quarantine
    [ ] Rename
    [ ] Prompt user

    Scan options
    [X] Enable warnings
    [X] Enable heuristics
    [ ] Show all files in log
    [X] Report file: vscan.log
    [ ] Append to existing report

    Summary:

    C:\VundoFix Backups\sstts.dll.bad Infected DeepScan:Generic.Virtumonde.1.62EAE307
    C:\VundoFix Backups\sstts.dll.bad Disinfection failed
    C:\VundoFix Backups\sstts.dll.bad Moved
    C:\WINDOWS\system32\vturo.dll.vir Infected DeepScan:Generic.Virtumonde.1.5C24BECE
    C:\WINDOWS\system32\vturo.dll.vir Disinfection failed
    C:\WINDOWS\system32\vturo.dll.vir Moved
    0
  18. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    ok recolle hijackthis et vire ce qui est en quarantaine dans bit defender

    je regarderai demain, dis moi si tu as des pubs...
    0
  19. semas Messages postés 53 Statut Membre 2
     
    Ca y est j'ai vider le dossier de quarantaine de bitdefender. Je n'ai plus de pub mais par contre j'ai toujours internet qui rame beaucoup.

    Voila le rapport de hijackthis:

    Logfile of HijackThis v1.99.1
    Scan saved at 20:03:16, on 19/07/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16473)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\Explorer.EXE
    C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
    C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Softwin\BitDefender8\bdnagent.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\WINDOWS\system32\rundll32.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
    C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
    C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
    C:\Program Files\internet explorer\iexplore.exe
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
    C:\Documents and Settings\Compaq_Propriétaire\Bureau\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://forum-auto.caradisiac.com/forum/1384-anciennes/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
    O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
    O4 - HKLM\..\Run: [WOOTASKBARICON] "C:\PROGRA~1\Wanadoo\GestMaj.exe" TaskBarIcon.exe
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
    O4 - HKLM\..\Run: [BDMCon] "C:\Program Files\Softwin\BitDefender8\bdmcon.exe"
    O4 - HKLM\..\Run: [BDNewsAgent] "C:\Program Files\Softwin\BitDefender8\bdnagent.exe"
    O4 - HKCU\..\Run: [WOOKIT] "C:\PROGRA~1\Wanadoo\Shell.exe" appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
    O4 - HKCU\..\Run: [PopUpStopperFreeEdition] "C:\PROGRA~1\PANICW~1\POP-UP~1\PSFree.exe"
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
    O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
    O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - https://www.orange.fr/portail (file missing) (HKCU)
    O11 - Options group: [INTERNATIONAL] International*
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
    O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    O17 - HKLM\System\CCS\Services\Tcpip\..\{69D825FF-C895-4B3E-BA25-C2035D71CC3A}: NameServer = 192.168.1.1
    O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
    O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
    O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
    O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
    O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe" /service (file missing)
    O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
    O23 - Service: BitDefender Communicator (XCOMM) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe" /service (file missing)
    0
  20. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    tu as avast et bitdefender en antivirus?

    si c'est le cas vire un des deux
    0
  • 1
  • 2