Infecté par Vundo.Gen

Résolu
kmelia85 Messages postés 7 Statut Membre -  
jlpjlp Messages postés 52399 Statut Contributeur sécurité -
Bonjour à tous,
Comme le dit le titre de mon message, mon ordinateur est infecté par Vundo.
Mon antivirus (Antivir) détecte Vundo à chaque fois que je démarre mon ordinateur.
J'ai cherché quelques infos sur internet et installé Vundofix, VirtumondoBeGone et Fixvundo mais je n'arrive pas à m'en débarrasser. Peut-être que je ne m'en sert pas comme il faut. J'ai aussi fait un scan avec Bitdefender qui le détecte (C:\Windows\System32\sstrq.dll) mais ne le supprime pas.
Je ne m'y connais pas trop en virus, si quelqu'un pouvait m'aider, ça serait vraiment gentil.

edit: Voilà le rapport de Hijackthis

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:18:43, on 23/02/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16609)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Apoint\Apoint.exe
C:\Program Files\Sony\ISB Utility\ISBMgr.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\system32\taskeng.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Apoint\ApMsgFwd.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe
C:\Program Files\Samsung\Samsung PC Studio 3\Multimedia manager.exe
C:\Windows\explorer.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.club-vaio.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {870e3b1b-d1c6-4b91-864c-90043cf02e56} - (no file)
R3 - URLSearchHook: (no name) - {b69a9db4-d0a1-4722-b56b-f20757a29cdf} - (no file)
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {085DE52F-BF51-4ECE-B128-391434466ABC} - (no file)
O2 - BHO: (no name) - {337153A7-6608-418F-BB6D-EB2639F15AC4} - (no file)
O2 - BHO: (no name) - {3D88759F-3C4D-42ED-92ED-0A2D2BE2D97F} - (no file)
O2 - BHO: (no name) - {3DA4F850-67DB-40AD-ACCA-C4505D802D5F} - (no file)
O2 - BHO: (no name) - {536F4178-3189-4615-B218-AB77AE2DA227} - (no file)
O2 - BHO: (no name) - {69FBC450-0EB0-4649-B414-716EB6077EC4} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {8D4B14E8-7B18-4ED5-A128-79741C69A4FA} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {A57BCA9E-3A65-4C21-94D1-284E260F5F6D} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: (no name) - {BFB630AA-FA04-44C5-B44F-68DD37798367} - (no file)
O2 - BHO: (no name) - {C0218EC9-031B-4905-ABE6-4F2837056CA0} - (no file)
O2 - BHO: (no name) - {C60D03AB-70DF-4ECD-98A4-98C2F466FCF6} - (no file)
O2 - BHO: (no name) - {C8CDF0B6-A3C3-4ABC-BBCA-EA772B562921} - C:\Windows\system32\sstrq.dll
O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\PROGRA~1\GOOGLE~1\BAE.dll
O2 - BHO: (no name) - {D14C0B4C-6117-42D7-9B7F-9D466BCF6088} - (no file)
O2 - BHO: (no name) - {D4A5134A-77DE-4E4E-A275-A7E637D52C39} - (no file)
O2 - BHO: (no name) - {DD6DC20C-897A-44F1-BF8C-E0009081ACF8} - (no file)
O2 - BHO: (no name) - {F2B4079E-3627-46B0-B6C8-82F6C5F08745} - (no file)
O2 - BHO: (no name) - {F5344C91-1112-4336-8933-8B13662BE51A} - (no file)
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: (no name) - {870e3b1b-d1c6-4b91-864c-90043cf02e56} - (no file)
O3 - Toolbar: (no name) - {b69a9db4-d0a1-4722-b56b-f20757a29cdf} - (no file)
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [ISBMgr.exe] "C:\Program Files\Sony\ISB Utility\ISBMgr.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [MSServer] rundll32.exe C:\Windows\system32\sstrq.dll,#1
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\RunOnce: [Delete USB Error Key] "C:\Program Files\Samsung\Samsung PC Studio 3\USB Drivers\SPS3_USB_Driver_Setup.exe"
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: Ajouter un site de support RSS à VAIO Information FLOW - C:\Program Files\Sony\VAIO Information FLOW\aiesc.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Google Desktop Manager 5.7.801.1629 (GoogleDesktopManager-010108-205858) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AvLib\MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AvLib\PACSPTISVR.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AvLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AvLib\SSScsiSV.exe
O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
O23 - Service: VAIO Media Integrated Server (VAIOMediaPlatform-IntegratedServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe
O23 - Service: VAIO Media Integrated Server (HTTP) (VAIOMediaPlatform-IntegratedServer-HTTP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
O23 - Service: VAIO Media Integrated Server (UPnP) (VAIOMediaPlatform-IntegratedServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
O23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe
O23 - Service: VAIO Media Content Collection (VAIOMediaPlatform-UCLS-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\UCLS.exe
O23 - Service: VAIO Media Content Collection (HTTP) (VAIOMediaPlatform-UCLS-HTTP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
O23 - Service: VAIO Media Content Collection (UPnP) (VAIOMediaPlatform-UCLS-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
O23 - Service: VundoFix Service (VundoFixSvc) - Atribune.org - C:\Windows\SYSTEM32\VundoFixSVC.exe
O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
O23 - Service: VAIO Entertainment File Import Service (VzFw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 11502 bytes

Configuration: Windows Vista
Firefox 2.0.0.12

4 réponses

  1. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    slt,

    scan avec vundofix (colle le rapport)

    Téléchargez VundoFix -> http://www.atribune.org/ccount/click.php?id=4

    Double cliquez VundoFix.exe pour l'exécuter.
    Quand VundoFix s'ouvre, cliquez sur le bouton Scan for Vundo.
    Une fois le scan fini, cliquez sur le bouton Remove Vundo.
    Vous recevrez un avertissement vous demandant si vous voulez effacer ces
    fichiers répondez en cliquant sur YES
    Une fois que vous avez cliqué yes, votre bureau deviendra vide au moment où il
    enlève Vundo.

    Quand c'est fini, il vous sera demandé de redémarrer votre ordinateur, cliquez
    OK.
    _______________

    combofix (colle le rapport)
    http://download.bleepingcomputer.com/sUBs/ComboFix.exe

    * Démarrer en mode sans echec ( http://service1.symantec.com/support/inter/tsgeninfointl.nsf/fr_docid/20020905112131924

    * Double cliquer combofix.exe.
    * Appuyer sur la touche Y (Yes) pour démarrer le scan
    * Le rapport sera crée dans: C:\Combofix.txt, poste le stp
    ________________

    recolle un rapport hijackthis en le renommant
    , pour contrer une éventuelle infection de Vundo.

    ex:Renomme le fichier HijackThis.exe en eden.exe pour cela, fais un clic droit sur le fichier HijackThis.exe et choisis renommer dans la liste

    Ensuite avec Explorer créer un dossier c:\hijackthis
    Décompresser Hijackthis dans ce dossier.
    C'est important pour les sauvegardes."
    0
    1. kmelia85 Messages postés 7 Statut Membre
       
      Bonjour.

      J'ai fait ce que tu m'as dit.

      Voilà le rapport Vundofix:


      VundoFix V6.7.8

      Checking Java version...

      Scan started at 22:30:14 17/02/2008

      Listing files found while scanning....

      C:\windows\System32\sstqo.dll

      Beginning removal...

      VundoFix V6.7.8

      Checking Java version...

      Scan started at 19:16:37 23/02/2008

      Listing files found while scanning....

      C:\Windows\System32\ssqqq.dll

      Beginning removal...

      VundoFix V6.7.8

      Checking Java version...

      Scan started at 23:58:38 23/02/2008

      Listing files found while scanning....

      C:\Windows\System32\sstrq.dll

      Beginning removal...


      le rapport Combofix (je l'ai fait 2 fois, parcqu'il ne m'a pas affiché de rapport la première fois)

      ComboFix 08-02-24.2 - JONAS 2008-02-24 15:23:22.2 - NTFSx86
      Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6000.0.1252.1.1036.18.1346 [GMT 1:00]
      Endroit: C:\Users\JONAS\Desktop\ComboFix.exe
      .

      (((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      ---- Previous Run -------
      .
      C:\Windows\System32\cffii.ini
      C:\Windows\System32\cffii.ini2
      C:\Windows\System32\llmoq.ini
      C:\Windows\System32\llmoq.ini2
      C:\Windows\system32\pmnnl.dll
      C:\Windows\System32\wwvyb.ini
      C:\Windows\System32\wwvyb.ini2
      C:\Windows\system32\x64
      C:\Windows\System32\xxxbc.ini
      C:\Windows\System32\xxxbc.ini2

      .
      ((((((((((((((((((((((((((((( Fichiers créés 2008-01-24 to 2008-02-24 ))))))))))))))))))))))))))))))))))))
      .

      Pas de nouveau fichier créé dans cet espace de temps

      .
      (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
      .
      2008-02-23 22:48 --------- d-----w C:\Users\JONAS\AppData\Roaming\gtk-2.0
      2008-02-23 19:27 --------- d-----w C:\Users\JONAS\AppData\Roaming\Samsung
      2008-02-23 19:07 --------- d--h--w C:\Program Files\InstallShield Installation Information
      2008-02-23 19:07 --------- d-----w C:\Program Files\Samsung
      2008-02-23 18:13 --------- d-----w C:\Program Files\Trend Micro
      2008-02-22 18:51 --------- d---a-w C:\ProgramData\TEMP
      2008-02-18 15:17 --------- d-----w C:\ProgramData\Yahoo! Companion
      2008-02-18 08:57 0 ----a-w C:\ntuser.dat
      2008-02-18 08:12 --------- d-----w C:\ProgramData\Spybot - Search & Destroy
      2008-02-18 08:12 --------- d-----w C:\Program Files\Spybot - Search & Destroy
      2008-02-17 22:36 --------- d-----w C:\Users\JONAS\AppData\Roaming\Skype
      2008-02-17 22:28 24,576 ----a-w C:\Windows\System32\VundoFixSVC.exe
      2008-02-17 20:17 --------- d-----w C:\Program Files\Google
      2008-02-17 19:03 --------- d-----w C:\ProgramData\Avira
      2008-02-17 19:03 --------- d-----w C:\Program Files\Avira
      2008-02-17 18:45 --------- d-----w C:\Program Files\Yahoo!
      2008-02-17 18:45 --------- d-----w C:\Program Files\CCleaner
      2008-02-17 18:30 --------- d-----w C:\Program Files\InterMute
      2008-02-17 15:53 --------- d-----w C:\ProgramData\Lavasoft
      2008-02-17 15:50 --------- d-----w C:\Program Files\Lavasoft
      2008-02-17 15:49 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
      2008-02-17 02:23 194,560 ----a-w C:\Windows\System32\WebClnt.dll
      2008-02-17 02:23 110,080 ----a-w C:\Windows\system32\drivers\mrxdav.sys
      2008-02-17 02:13 45,112 ----a-w C:\Windows\system32\drivers\pciidex.sys
      2008-02-17 02:13 3,504,696 ----a-w C:\Windows\System32\ntkrnlpa.exe
      2008-02-17 02:13 3,470,392 ----a-w C:\Windows\System32\ntoskrnl.exe
      2008-02-17 02:13 21,560 ----a-w C:\Windows\system32\drivers\atapi.sys
      2008-02-17 02:13 154,624 ----a-w C:\Windows\system32\drivers\nwifi.sys
      2008-02-17 02:13 15,928 ----a-w C:\Windows\system32\drivers\pciide.sys
      2008-02-17 02:13 109,624 ----a-w C:\Windows\system32\drivers\ataport.sys
      2008-02-17 02:11 803,328 ----a-w C:\Windows\system32\drivers\tcpip.sys
      2008-02-17 02:11 24,064 ----a-w C:\Windows\System32\netcfg.exe
      2008-02-17 02:11 22,016 ----a-w C:\Windows\System32\netiougc.exe
      2008-02-17 02:11 216,632 ----a-w C:\Windows\system32\drivers\netio.sys
      2008-02-17 02:11 167,424 ----a-w C:\Windows\System32\tcpipcfg.dll
      2008-02-17 02:10 537,600 ----a-w C:\Windows\AppPatch\AcLayers.dll
      2008-02-17 02:10 449,536 ----a-w C:\Windows\AppPatch\AcSpecfc.dll
      2008-02-17 02:10 4,247,552 ----a-w C:\Windows\System32\GameUXLegacyGDFs.dll
      2008-02-17 02:10 2,144,256 ----a-w C:\Windows\AppPatch\AcGenral.dll
      2008-02-17 02:10 173,056 ----a-w C:\Windows\AppPatch\AcXtrnal.dll
      2008-02-17 02:10 1,686,528 ----a-w C:\Windows\System32\gameux.dll
      2008-02-17 02:06 824,832 ----a-w C:\Windows\System32\wininet.dll
      2008-02-17 02:06 56,320 ----a-w C:\Windows\System32\iesetup.dll
      2008-02-17 02:06 52,736 ----a-w C:\Windows\AppPatch\iebrshim.dll
      2008-02-17 02:06 26,624 ----a-w C:\Windows\System32\ieUnatt.exe
      2008-02-17 02:03 1,244,672 ----a-w C:\Windows\System32\mcmde.dll
      2008-02-16 19:19 7,850 ----a-w C:\Windows\System32\rtutv.ini.vir
      2008-02-16 19:17 7,136 ----a-w C:\Windows\System32\rtutv.ini2.vir
      2008-02-16 18:47 272,173 ----a-w C:\Windows\System32\wybay.ini.vir
      2008-02-16 18:44 271,097 ----a-w C:\Windows\System32\wybay.ini2.vir
      2008-02-14 20:16 331,264 ----a-w C:\Windows\System32\yabyw.dll.vir
      2008-02-14 17:20 --------- d-----w C:\Program Files\GIMP-2.0
      2008-02-13 23:39 --------- d-----w C:\Program Files\Common Files\Adobe
      2008-02-13 14:38 13,736,624 ----a-w C:\Windows\StoryBook4-2.exe
      2008-02-13 14:37 6,605,080 ----a-w C:\Windows\StoryBook4-1.exe
      2008-02-13 14:37 40,960 ----a-w C:\Windows\StoryBook4-2.dll
      2008-02-13 14:37 40,960 ----a-w C:\Windows\StoryBook4-1.dll
      2008-02-13 14:37 184,400 ----a-w C:\Windows\StoryBook4-2.scr
      2008-02-13 14:37 184,400 ----a-w C:\Windows\StoryBook4-1.scr
      2008-02-11 20:22 --------- d-----w C:\ProgramData\eMule
      2008-02-11 20:01 406,595 --sha-w C:\Windows\System32\fefhk.ini.vir
      2008-02-11 20:00 406,595 --sha-w C:\Windows\System32\fefhk.ini2.vir
      2008-02-10 21:48 --------- d-----w C:\Program Files\ReadWrite Korean
      2008-02-10 21:46 --------- d-----w C:\Program Files\Declan's Korean Dictionary
      2008-02-10 21:44 --------- d-----w C:\Users\JONAS\AppData\Roaming\LimeWire
      2008-02-10 18:58 --------- d-----w C:\Program Files\Common Files\Symantec Shared
      2008-02-10 18:57 --------- d-----w C:\ProgramData\Symantec
      2008-02-10 18:29 --------- d-----w C:\Program Files\Alwil Software
      2008-02-10 18:26 --------- d-----w C:\Users\JONAS\AppData\Roaming\Simply Super Software
      2008-02-10 18:26 --------- d-----w C:\ProgramData\Simply Super Software
      2008-02-10 18:26 --------- d-----w C:\Program Files\Trojan Remover
      2008-02-10 18:21 3,338 ----a-w C:\Windows\System32\slyrnisj.ini.vir
      2008-02-10 18:09 3,539 ----a-w C:\Windows\System32\ttsut.ini.vir
      2008-02-10 18:08 3,539 ----a-w C:\Windows\System32\ttsut.ini2.vir
      2008-02-10 16:00 102,664 ----a-w C:\Windows\system32\drivers\tmcomm.sys
      2008-02-10 15:58 --------- d-----w C:\Program Files\Panda Security
      2008-02-10 12:50 --------- d-----w C:\Program Files\Java
      2008-02-10 12:43 --------- d-----w C:\Program Files\LimeWire
      2008-02-10 12:11 --------- d-----w C:\Users\JONAS\AppData\Roaming\eMule
      2008-02-10 11:39 --------- d-----w C:\ProgramData\Messenger Plus!
      2008-02-10 02:08 --------- d-----w C:\Program Files\Microsoft SQL Server
      2008-02-10 02:02 211,000 ----a-w C:\Windows\system32\drivers\volsnap.sys
      2008-02-10 02:02 1,060,920 ----a-w C:\Windows\system32\drivers\ntfs.sys
      2008-02-09 23:46 0 ----a-w C:\Users\JONAS\AppData\Roaming\wklnhst.dat
      2008-02-09 23:46 --------- d-----w C:\Users\JONAS\AppData\Roaming\Template
      2008-02-09 20:40 --------- d-----w C:\Program Files\Messenger Plus! Live
      2008-02-09 19:40 --------- d-----w C:\Program Files\Windows Live
      2008-02-09 19:35 --------- d-----w C:\Program Files\Microsoft SQL Server Compact Edition
      2008-02-09 19:33 --------- d-----w C:\Program Files\Windows Live Toolbar
      2008-02-09 19:33 --------- d-----w C:\Program Files\Windows Live Favorites
      2008-02-09 19:26 --------- dcsh--w C:\Program Files\Common Files\WindowsLiveInstaller
      2008-02-09 19:06 --------- d-----w C:\ProgramData\WLInstaller
      2008-02-08 14:18 174 --sha-w C:\Program Files\desktop.ini
      2008-02-08 14:10 --------- d-----w C:\Program Files\Windows Sidebar
      2008-02-08 14:10 --------- d-----w C:\Program Files\Windows Mail
      2008-02-08 14:10 --------- d-----w C:\Program Files\Windows Defender
      2008-02-08 14:10 --------- d-----w C:\Program Files\Windows Calendar
      2008-02-08 14:07 87,040 ----a-w C:\Windows\System32\msoert2.dll
      2008-02-08 14:07 39,424 ----a-w C:\Windows\System32\ACCTRES.dll
      2008-02-08 14:07 205,824 ----a-w C:\Windows\System32\msoeacct.dll
      .

      ((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
      .
      .
      REGEDIT4
      *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

      [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "ehTray.exe"="C:\Windows\ehome\ehTray.exe" [2006-11-02 13:35 125440]
      "swg"="C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe" [2008-02-10 15:24 171448]
      "Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [2008-02-08 14:15 1232896]

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
      "Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [2008-02-08 15:00 1006264]
      "IgfxTray"="C:\Windows\system32\igfxtray.exe" [2006-11-13 06:20 98304]
      "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" [2006-11-13 06:20 106496]
      "Persistence"="C:\Windows\system32\igfxpers.exe" [2006-11-13 06:20 81920]
      "RtHDVCpl"="RtHDVCpl.exe" [2006-11-09 02:57 3784704 C:\Windows\RtHDVCpl.exe]
      "Apoint"="C:\Program Files\Apoint\Apoint.exe" [2006-09-11 08:23 118784]
      "ISBMgr.exe"="C:\Program Files\Sony\ISB Utility\ISBMgr.exe" [2006-11-11 15:35 43128]
      "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 01:11 132496]
      "avgnt"="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-02-17 20:08 249896]

      [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
      "EnableLUA"= 0 (0x0)

      [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
      "NoBandCustomize"= 0 (0x0)
      "NoMovingBands"= 0 (0x0)
      "NoCloseDragDropBands"= 0 (0x0)

      [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon]
      VESWinlogon.dll 2006-11-10 17:26 73728 C:\Windows\System32\VESWinlogon.dll

      [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
      "AppInit_DLLs"=C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL

      [HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
      "{BF33C4D3-DCA5-4881-84A9-981EF1FA35ED}"= Disabled:UDP:C:\Program Files\Sony\VAIO Media 6.0\Vc.exe:[VAIO Media] VAIO Media
      "{1A7D5A56-F285-467B-BACD-D4A95ED548D6}"= Disabled:TCP:C:\Program Files\Sony\VAIO Media 6.0\Vc.exe:[VAIO Media] VAIO Media
      "{F45EAE14-6DF9-4F8A-82D3-FE75D0FFE67C}"= C:\Program Files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone)|Edge=TRUE|
      "{C7CC14A6-6284-4A7D-B157-F242C22F66A2}"= Disabled:UDP:C:\Program Files\Sony\VAIO Media 6.0\Vc.exe:[VAIO Media] VAIO Media
      "{C5FE3532-7F37-4B4E-9257-3B61C8A58445}"= Disabled:TCP:C:\Program Files\Sony\VAIO Media 6.0\Vc.exe:[VAIO Media] VAIO Media
      "{619DB344-29F1-48EF-AC7E-3D53C690F0FC}"= UDP:C:\Program Files\LimeWire\LimeWire.exe:LimeWire
      "{86909E02-C38F-4512-8494-FDF221DD60AB}"= TCP:C:\Program Files\LimeWire\LimeWire.exe:LimeWire
      "{01B8600D-47BC-4DFC-9150-99DEC749248F}"= UDP:C:\Program Files\Skype\Phone\Skype.exe:Skype
      "{78EE254A-FBA2-45AB-B9A6-6B744DF0AB99}"= TCP:C:\Program Files\Skype\Phone\Skype.exe:Skype
      "{219F7F92-8958-44B6-9F4A-32EFE72FED4A}"= UDP:C:\Program Files\Skype\Phone\Skype.exe:Skype
      "{8BCBFB9A-75AA-4D09-85B2-008BA4C7D2FE}"= TCP:C:\Program Files\Skype\Phone\Skype.exe:Skype

      [HKLM\~\services\sharedaccess\parameters\firewallpolicy\RestrictedServices\Static\System]
      "DFSR-1"= RPort=5722|UDP:%SystemRoot%\system32\svchost.exe|Svc=DFSR:Allow inbound TCP traffic|

      R2 MSSQL$VAIO_VEDB;SQL Server (VAIO_VEDB);"C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" [2007-02-10 05:29]
      R2 SQLWriter;Enregistreur VSS SQL Server;"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe" [2007-02-10 05:29]
      R2 XAudio;XAudio;C:\Windows\system32\DRIVERS\xaudio.sys [2006-08-04 09:39]
      R3 igfx;igfx;C:\Windows\system32\DRIVERS\igdkmd32.sys [2006-11-13 06:20]
      R3 ti21sony;ti21sony;C:\Windows\system32\drivers\ti21sony.sys [2006-11-06 14:56]
      R3 yukonwlh;Pilote miniport NDIS6.0 pour contrôleur Ethernet Marvell Yukon;C:\Windows\system32\DRIVERS\yk60x86.sys [2006-11-02 08:30]
      S3 GoogleDesktopManager-010108-205858;Google Desktop Manager 5.7.801.1629;"C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" [2008-02-17 21:17]
      S3 NETw3v32;Pilote de carte réseau Intel(R) PRO/Wireless 3945ABG pour Windows Vista 32 bits;C:\Windows\system32\DRIVERS\NETw3v32.sys [2006-10-30 01:42]
      S3 VAIOMediaPlatform-UCLS-AppServer;VAIO Media Content Collection;C:\Program Files\Sony\VAIO Media Integrated Server\UCLS.exe [2006-10-11 18:36]
      S3 VAIOMediaPlatform-UCLS-HTTP;VAIO Media Content Collection (HTTP);"C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-UCLS-HTTP /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" []
      S3 VAIOMediaPlatform-UCLS-UPnP;VAIO Media Content Collection (UPnP);C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe [2006-10-11 15:52]

      [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\H]
      \shell\AutoRun\command - H:\Autorun.exe

      .
      Contenu du dossier 'Scheduled Tasks/Tâches planifiées'
      "2008-02-24 14:25:02 C:\Windows\Tasks\User_Feed_Synchronization-{83D40D63-A29F-4EA5-B794-30A9BDA6690A}.job"
      - C:\Windows\system32\msfeedssync.exe
      "2008-02-24 01:59:00 C:\Windows\Tasks\Vérifier les mises à jour de Windows Live Toolbar.job"
      - C:\Program Files\Windows Live Toolbar\MSNTBUP.EXE
      .
      **************************************************************************

      catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
      Rootkit scan 2008-02-24 15:24:56
      Windows 6.0.6000 NTFS

      Balayage processus cachés ...

      Balayage caché autostart entries ...

      Balayage des fichiers cachés ...

      Scan terminé avec succès
      Les fichiers cachés: 0

      **************************************************************************
      .
      Temps d'accomplissement: 2008-02-24 15:26:01
      ComboFix-quarantined-files.txt 2008-02-24 14:25:58
      .
      2008-02-18 01:38:05 --- E O F ---



      et enfin le rapport Hijackthis:

      Logfile of Trend Micro HijackThis v2.0.2
      Scan saved at 15:26:52, on 24/02/2008
      Platform: Windows Vista (WinNT 6.00.1904)
      MSIE: Internet Explorer v7.00 (7.00.6000.16609)
      Boot mode: Normal

      Running processes:
      C:\Windows\system32\Dwm.exe
      C:\Windows\system32\taskeng.exe
      C:\Windows\System32\igfxtray.exe
      C:\Windows\System32\hkcmd.exe
      C:\Windows\System32\igfxpers.exe
      C:\Program Files\Apoint\Apoint.exe
      C:\Program Files\Sony\ISB Utility\ISBMgr.exe
      C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
      C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
      C:\Windows\ehome\ehtray.exe
      C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
      C:\Program Files\Windows Sidebar\sidebar.exe
      C:\Windows\ehome\ehmsas.exe
      C:\Program Files\Apoint\ApMsgFwd.exe
      C:\Program Files\Windows Sidebar\sidebar.exe
      C:\Program Files\Apoint\Apntex.exe
      C:\Windows\System32\mobsync.exe
      C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe
      C:\Windows\system32\conime.exe
      C:\Windows\Explorer.exe
      C:\Windows\system32\SearchFilterHost.exe
      C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.club-vaio.com
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
      R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
      R3 - URLSearchHook: (no name) - {870e3b1b-d1c6-4b91-864c-90043cf02e56} - (no file)
      R3 - URLSearchHook: (no name) - {b69a9db4-d0a1-4722-b56b-f20757a29cdf} - (no file)
      R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
      O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
      O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
      O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
      O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
      O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
      O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
      O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\PROGRA~1\GOOGLE~1\BAE.dll
      O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
      O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
      O3 - Toolbar: (no name) - {870e3b1b-d1c6-4b91-864c-90043cf02e56} - (no file)
      O3 - Toolbar: (no name) - {b69a9db4-d0a1-4722-b56b-f20757a29cdf} - (no file)
      O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
      O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
      O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
      O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
      O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
      O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
      O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
      O4 - HKLM\..\Run: [ISBMgr.exe] "C:\Program Files\Sony\ISB Utility\ISBMgr.exe"
      O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
      O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
      O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
      O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
      O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe
      O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
      O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
      O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
      O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
      O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
      O8 - Extra context menu item: Ajouter un site de support RSS à VAIO Information FLOW - C:\Program Files\Sony\VAIO Information FLOW\aiesc.html
      O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
      O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
      O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
      O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
      O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
      O13 - Gopher Prefix:
      O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
      O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
      O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
      O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
      O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
      O23 - Service: Google Desktop Manager 5.7.801.1629 (GoogleDesktopManager-010108-205858) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
      O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
      O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
      O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AvLib\MSCSPTISRV.exe
      O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AvLib\PACSPTISVR.exe
      O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AvLib\SPTISRV.exe
      O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AvLib\SSScsiSV.exe
      O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe
      O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
      O23 - Service: VAIO Media Integrated Server (VAIOMediaPlatform-IntegratedServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe
      O23 - Service: VAIO Media Integrated Server (HTTP) (VAIOMediaPlatform-IntegratedServer-HTTP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
      O23 - Service: VAIO Media Integrated Server (UPnP) (VAIOMediaPlatform-IntegratedServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
      O23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe
      O23 - Service: VAIO Media Content Collection (VAIOMediaPlatform-UCLS-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\UCLS.exe
      O23 - Service: VAIO Media Content Collection (HTTP) (VAIOMediaPlatform-UCLS-HTTP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe
      O23 - Service: VAIO Media Content Collection (UPnP) (VAIOMediaPlatform-UCLS-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe
      O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
      O23 - Service: VundoFix Service (VundoFixSvc) - Atribune.org - C:\Windows\SYSTEM32\VundoFixSVC.exe
      O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
      O23 - Service: VAIO Entertainment File Import Service (VzFw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
      O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
      0
  2. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    Relance HijackThis, choisis "do a scan only" coche la case devant les lignes ci-dessous et clic en bas sur "fix checked".

    R3 - URLSearchHook: (no name) - {870e3b1b-d1c6-4b91-864c-90043cf02e56} - (no file)
    R3 - URLSearchHook: (no name) - {b69a9db4-d0a1-4722-b56b-f20757a29cdf} - (no file)

    O3 - Toolbar: (no name) - {870e3b1b-d1c6-4b91-864c-90043cf02e56} - (no file)
    O3 - Toolbar: (no name) - {b69a9db4-d0a1-4722-b56b-f20757a29cdf} - (no file)

    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"

    ______________

    colle un rapport avec antivir que tu as
    0
    1. kmelia85 Messages postés 7 Statut Membre
       
      Voilà le rapport du scan Antivir.



      AntiVir PersonalEdition Classic
      Report file date: lundi 25 février 2008 15:43

      Scanning for 1120425 virus strains and unwanted programs.

      Licensed to: Avira AntiVir PersonalEdition Classic
      Serial number: 0000149996-ADJIE-0001
      Platform: Windows Vista
      Windows version: (plain) [6.0.6000]
      Username: SYSTEM
      Computer name: MELANIE

      Version information:
      BUILD.DAT : 270 15603 Bytes 19/09/2007 13:32:00
      AVSCAN.EXE : 7.0.6.1 290856 Bytes 23/08/2007 13:16:29
      AVSCAN.DLL : 7.0.6.0 49192 Bytes 16/08/2007 12:23:51
      LUKE.DLL : 7.0.5.3 147496 Bytes 14/08/2007 15:32:47
      LUKERES.DLL : 7.0.6.1 10280 Bytes 21/08/2007 12:35:20
      ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 14:27:15
      ANTIVIR1.VDF : 7.0.1.95 3367424 Bytes 14/12/2007 19:08:53
      ANTIVIR2.VDF : 7.0.2.113 1673728 Bytes 08/02/2008 19:08:53
      ANTIVIR3.VDF : 7.0.2.180 334848 Bytes 22/02/2008 17:26:53
      AVEWIN32.DLL : 7.6.0.67 3293696 Bytes 17/02/2008 19:08:53
      AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 10:36:26
      AVPREF.DLL : 7.0.2.2 25640 Bytes 18/07/2007 07:39:17
      AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 13:16:24
      AVPACK32.DLL : 7.6.0.3 360488 Bytes 17/02/2008 19:08:53
      AVREG.DLL : 7.0.1.6 30760 Bytes 18/07/2007 07:17:06
      AVARKT.DLL : 1.0.0.20 278568 Bytes 28/08/2007 12:26:33
      AVEVTLOG.DLL : 7.0.0.20 86056 Bytes 18/07/2007 07:10:18
      NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 11:09:42
      RCIMAGE.DLL : 7.0.1.30 2342952 Bytes 07/08/2007 12:38:13
      RCTEXT.DLL : 7.0.62.0 86056 Bytes 21/08/2007 12:50:37
      SQLITE3.DLL : 3.3.17.1 339968 Bytes 23/07/2007 09:37:21

      Configuration settings for the scan:
      Jobname..........................: Complete system scan
      Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp
      Logging..........................: low
      Primary action...................: interactive
      Secondary action.................: ignore
      Scan master boot sector..........: on
      Scan boot sector.................: on
      Boot sectors.....................: C:,
      Scan memory......................: on
      Process scan.....................: on
      Scan registry....................: on
      Search for rootkits..............: on
      Scan all files...................: All files
      Scan archives....................: on
      Recursion depth..................: 20
      Smart extensions.................: on
      Deviating archive types..........: +BSD Mailbox, +Netscape/Mozilla Mailbox, +Eudora Mailbox, +Squid cache, +Pegasus Mailbox, +MS Outlook Mailbox,
      Macro heuristic..................: on
      File heuristic...................: medium

      Start of the scan: lundi 25 février 2008 15:43

      Starting search for hidden objects.
      Error in ARK lib

      The scan of running processes will be started
      Scan process 'mfpmp.exe' - '0' Module(s) have been scanned
      Scan process 'SearchFilterHost.exe' - '1' Module(s) have been scanned
      Scan process 'SearchProtocolHost.exe' - '1' Module(s) have been scanned
      Scan process 'wmplayer.exe' - '1' Module(s) have been scanned
      Scan process 'avscan.exe' - '1' Module(s) have been scanned
      Scan process 'avcenter.exe' - '1' Module(s) have been scanned
      Scan process 'Scan.exe' - '1' Module(s) have been scanned
      Scan process 'SPMgr.exe' - '1' Module(s) have been scanned
      Scan process 'igfxsrvc.exe' - '1' Module(s) have been scanned
      Scan process 'igfxext.exe' - '1' Module(s) have been scanned
      Scan process 'mobsync.exe' - '1' Module(s) have been scanned
      Scan process 'VAIOUpdt.exe' - '1' Module(s) have been scanned
      Scan process 'taskeng.exe' - '1' Module(s) have been scanned
      Scan process 'ApntEx.exe' - '1' Module(s) have been scanned
      Scan process 'VzFw.exe' - '1' Module(s) have been scanned
      Scan process 'VESMgrSub.exe' - '1' Module(s) have been scanned
      Scan process 'VzCdbSvc.exe' - '1' Module(s) have been scanned
      Scan process 'WUDFHost.exe' - '1' Module(s) have been scanned
      Scan process 'XAudio.exe' - '1' Module(s) have been scanned
      Scan process 'SearchIndexer.exe' - '1' Module(s) have been scanned
      Scan process 'svchost.exe' - '1' Module(s) have been scanned
      Scan process 'VCSW.exe' - '1' Module(s) have been scanned
      Scan process 'VESMgr.exe' - '1' Module(s) have been scanned
      Scan process 'svchost.exe' - '1' Module(s) have been scanned
      Scan process 'sqlwriter.exe' - '1' Module(s) have been scanned
      Scan process 'sqlbrowser.exe' - '1' Module(s) have been scanned
      Scan process 'svchost.exe' - '1' Module(s) have been scanned
      Scan process 'sqlservr.exe' - '1' Module(s) have been scanned
      Scan process 'sched.exe' - '1' Module(s) have been scanned
      Scan process 'ApMsgFwd.exe' - '1' Module(s) have been scanned
      Scan process 'sidebar.exe' - '1' Module(s) have been scanned
      Scan process 'svchost.exe' - '1' Module(s) have been scanned
      Scan process 'avguard.exe' - '1' Module(s) have been scanned
      Scan process 'taskeng.exe' - '1' Module(s) have been scanned
      Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
      Scan process 'ehmsas.exe' - '1' Module(s) have been scanned
      Scan process 'VeohClient.exe' - '1' Module(s) have been scanned
      Scan process 'sidebar.exe' - '1' Module(s) have been scanned
      Scan process 'GoogleToolbarNotifier.exe' - '1' Module(s) have been scanned
      Scan process 'ehtray.exe' - '1' Module(s) have been scanned
      Scan process 'avgnt.exe' - '1' Module(s) have been scanned
      Scan process 'ISBMgr.exe' - '1' Module(s) have been scanned
      Scan process 'Apoint.exe' - '1' Module(s) have been scanned
      Scan process 'igfxpers.exe' - '1' Module(s) have been scanned
      Scan process 'hkcmd.exe' - '1' Module(s) have been scanned
      Scan process 'igfxtray.exe' - '1' Module(s) have been scanned
      Scan process 'explorer.exe' - '1' Module(s) have been scanned
      Scan process 'dwm.exe' - '1' Module(s) have been scanned
      Scan process 'aawservice.exe' - '1' Module(s) have been scanned
      Scan process 'svchost.exe' - '1' Module(s) have been scanned
      Scan process 'svchost.exe' - '1' Module(s) have been scanned
      Scan process 'SLsvc.exe' - '1' Module(s) have been scanned
      Scan process 'audiodg.exe' - '0' Module(s) have been scanned
      Scan process 'svchost.exe' - '1' Module(s) have been scanned
      Scan process 'svchost.exe' - '1' Module(s) have been scanned
      Scan process 'svchost.exe' - '1' Module(s) have been scanned
      Scan process 'svchost.exe' - '1' Module(s) have been scanned
      Scan process 'svchost.exe' - '1' Module(s) have been scanned
      Scan process 'winlogon.exe' - '1' Module(s) have been scanned
      Scan process 'lsm.exe' - '1' Module(s) have been scanned
      Scan process 'lsass.exe' - '1' Module(s) have been scanned
      Scan process 'services.exe' - '1' Module(s) have been scanned
      Scan process 'csrss.exe' - '1' Module(s) have been scanned
      Scan process 'wininit.exe' - '1' Module(s) have been scanned
      Scan process 'csrss.exe' - '1' Module(s) have been scanned
      Scan process 'smss.exe' - '1' Module(s) have been scanned
      64 processes with 64 modules were scanned

      Starting master boot sector scan:
      Master boot sector HD0
      [NOTE] No virus was found!
      Master boot sector HD1
      [NOTE] No virus was found!
      [WARNING] The boot sector file could not be read!
      [WARNING] Error code: 0x0015
      [NOTE] Please restart the search with Administrator rights
      Master boot sector HD2
      [NOTE] No virus was found!
      [WARNING] The boot sector file could not be read!
      [WARNING] Error code: 0x0015
      [NOTE] Please restart the search with Administrator rights

      Start scanning boot sectors:
      Boot sector 'C:\'
      [NOTE] No virus was found!

      Starting to scan the registry.
      The registry was scanned ( '9' files ).


      Starting the file scan:

      Begin scan in 'C:\'
      C:\hiberfil.sys
      [WARNING] The file could not be opened!
      C:\pagefile.sys
      [WARNING] The file could not be opened!
      C:\$Recycle.Bin\S-1-5-21-3195853605-2721044840-2107055763-1003\$R6TJTD8.exe
      [WARNING] The temporary file could not be opened!


      End of the scan: lundi 25 février 2008 16:40
      Used time: 56:47 min

      The scan has been done completely.

      12486 Scanning directories
      248878 Files were scanned
      0 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
      0 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      2 Files cannot be scanned
      248878 Files not concerned
      1026 Archives were scanned
      3 Warnings
      10 Notes
      69170 Objects were scanned with rootkit scan
      2429 Hidden objects were found
      0
  3. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    utilise pour supprimer tes traces

    CCLEANER: (lance un nettoyage et répare 3 fois le registre) sans installer la barre yahoo

    https://www.01net.com/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/32599.html

    __________________

    recolle un rapport antivir et dis tes soucis actuels
    0
    1. kmelia85
       
      Voilà le rapport Antivir:



      AntiVir PersonalEdition Classic
      Report file date: mardi 26 février 2008 16:37

      Scanning for 1120425 virus strains and unwanted programs.

      Licensed to: Avira AntiVir PersonalEdition Classic
      Serial number: 0000149996-ADJIE-0001
      Platform: Windows Vista
      Windows version: (plain) [6.0.6000]
      Username: SYSTEM
      Computer name: MELANIE

      Version information:
      BUILD.DAT : 270 15603 Bytes 19/09/2007 13:32:00
      AVSCAN.EXE : 7.0.6.1 290856 Bytes 23/08/2007 13:16:29
      AVSCAN.DLL : 7.0.6.0 49192 Bytes 16/08/2007 12:23:51
      LUKE.DLL : 7.0.5.3 147496 Bytes 14/08/2007 15:32:47
      LUKERES.DLL : 7.0.6.1 10280 Bytes 21/08/2007 12:35:20
      ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 14:27:15
      ANTIVIR1.VDF : 7.0.1.95 3367424 Bytes 14/12/2007 19:08:53
      ANTIVIR2.VDF : 7.0.2.113 1673728 Bytes 08/02/2008 19:08:53
      ANTIVIR3.VDF : 7.0.2.180 334848 Bytes 22/02/2008 17:26:53
      AVEWIN32.DLL : 7.6.0.67 3293696 Bytes 17/02/2008 19:08:53
      AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 10:36:26
      AVPREF.DLL : 7.0.2.2 25640 Bytes 18/07/2007 07:39:17
      AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 13:16:24
      AVPACK32.DLL : 7.6.0.3 360488 Bytes 17/02/2008 19:08:53
      AVREG.DLL : 7.0.1.6 30760 Bytes 18/07/2007 07:17:06
      AVARKT.DLL : 1.0.0.20 278568 Bytes 28/08/2007 12:26:33
      AVEVTLOG.DLL : 7.0.0.20 86056 Bytes 18/07/2007 07:10:18
      NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 11:09:42
      RCIMAGE.DLL : 7.0.1.30 2342952 Bytes 07/08/2007 12:38:13
      RCTEXT.DLL : 7.0.62.0 86056 Bytes 21/08/2007 12:50:37
      SQLITE3.DLL : 3.3.17.1 339968 Bytes 23/07/2007 09:37:21

      Configuration settings for the scan:
      Jobname..........................: Complete system scan
      Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp
      Logging..........................: low
      Primary action...................: interactive
      Secondary action.................: ignore
      Scan master boot sector..........: on
      Scan boot sector.................: on
      Boot sectors.....................: C:,
      Scan memory......................: on
      Process scan.....................: on
      Scan registry....................: on
      Search for rootkits..............: on
      Scan all files...................: All files
      Scan archives....................: on
      Recursion depth..................: 20
      Smart extensions.................: on
      Deviating archive types..........: +BSD Mailbox, +Netscape/Mozilla Mailbox, +Eudora Mailbox, +Squid cache, +Pegasus Mailbox, +MS Outlook Mailbox,
      Macro heuristic..................: on
      File heuristic...................: medium

      Start of the scan: mardi 26 février 2008 16:37

      Starting search for hidden objects.
      '76683' objects were checked, '0' hidden objects were found.

      The scan of running processes will be started
      Scan process 'SearchFilterHost.exe' - '1' Module(s) have been scanned
      Scan process 'avscan.exe' - '1' Module(s) have been scanned
      Scan process 'avcenter.exe' - '1' Module(s) have been scanned
      Scan process 'msnmsgr.exe' - '1' Module(s) have been scanned
      Scan process 'UI0Detect.exe' - '1' Module(s) have been scanned
      Scan process 'mfpmp.exe' - '0' Module(s) have been scanned
      Scan process 'SearchProtocolHost.exe' - '1' Module(s) have been scanned
      Scan process 'svchost.exe' - '1' Module(s) have been scanned
      Scan process 'svchost.exe' - '1' Module(s) have been scanned
      Scan process 'emule.exe' - '1' Module(s) have been scanned
      Scan process 'wmplayer.exe' - '1' Module(s) have been scanned
      Scan process 'SPMgr.exe' - '1' Module(s) have been scanned
      Scan process 'igfxsrvc.exe' - '1' Module(s) have been scanned
      Scan process 'igfxext.exe' - '1' Module(s) have been scanned
      Scan process 'VAIOUpdt.exe' - '1' Module(s) have been scanned
      Scan process 'taskeng.exe' - '1' Module(s) have been scanned
      Scan process 'VzFw.exe' - '1' Module(s) have been scanned
      Scan process 'VzCdbSvc.exe' - '1' Module(s) have been scanned
      Scan process 'VESMgrSub.exe' - '1' Module(s) have been scanned
      Scan process 'WUDFHost.exe' - '1' Module(s) have been scanned
      Scan process 'XAudio.exe' - '1' Module(s) have been scanned
      Scan process 'SearchIndexer.exe' - '1' Module(s) have been scanned
      Scan process 'svchost.exe' - '1' Module(s) have been scanned
      Scan process 'VCSW.exe' - '1' Module(s) have been scanned
      Scan process 'VESMgr.exe' - '1' Module(s) have been scanned
      Scan process 'svchost.exe' - '1' Module(s) have been scanned
      Scan process 'sqlwriter.exe' - '1' Module(s) have been scanned
      Scan process 'sqlbrowser.exe' - '1' Module(s) have been scanned
      Scan process 'svchost.exe' - '1' Module(s) have been scanned
      Scan process 'sqlservr.exe' - '1' Module(s) have been scanned
      Scan process 'sched.exe' - '1' Module(s) have been scanned
      Scan process 'sidebar.exe' - '1' Module(s) have been scanned
      Scan process 'ApntEx.exe' - '1' Module(s) have been scanned
      Scan process 'ApMsgFwd.exe' - '1' Module(s) have been scanned
      Scan process 'ehmsas.exe' - '1' Module(s) have been scanned
      Scan process 'sidebar.exe' - '1' Module(s) have been scanned
      Scan process 'GoogleToolbarNotifier.exe' - '1' Module(s) have been scanned
      Scan process 'ehtray.exe' - '1' Module(s) have been scanned
      Scan process 'avgnt.exe' - '1' Module(s) have been scanned
      Scan process 'ISBMgr.exe' - '1' Module(s) have been scanned
      Scan process 'Apoint.exe' - '1' Module(s) have been scanned
      Scan process 'igfxpers.exe' - '1' Module(s) have been scanned
      Scan process 'hkcmd.exe' - '1' Module(s) have been scanned
      Scan process 'igfxtray.exe' - '1' Module(s) have been scanned
      Scan process 'svchost.exe' - '1' Module(s) have been scanned
      Scan process 'avguard.exe' - '1' Module(s) have been scanned
      Scan process 'taskeng.exe' - '1' Module(s) have been scanned
      Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
      Scan process 'explorer.exe' - '1' Module(s) have been scanned
      Scan process 'dwm.exe' - '1' Module(s) have been scanned
      Scan process 'aawservice.exe' - '1' Module(s) have been scanned
      Scan process 'svchost.exe' - '1' Module(s) have been scanned
      Scan process 'svchost.exe' - '1' Module(s) have been scanned
      Scan process 'SLsvc.exe' - '1' Module(s) have been scanned
      Scan process 'audiodg.exe' - '0' Module(s) have been scanned
      Scan process 'svchost.exe' - '1' Module(s) have been scanned
      Scan process 'svchost.exe' - '1' Module(s) have been scanned
      Scan process 'svchost.exe' - '1' Module(s) have been scanned
      Scan process 'svchost.exe' - '1' Module(s) have been scanned
      Scan process 'svchost.exe' - '1' Module(s) have been scanned
      Scan process 'winlogon.exe' - '1' Module(s) have been scanned
      Scan process 'lsm.exe' - '1' Module(s) have been scanned
      Scan process 'lsass.exe' - '1' Module(s) have been scanned
      Scan process 'services.exe' - '1' Module(s) have been scanned
      Scan process 'csrss.exe' - '1' Module(s) have been scanned
      Scan process 'wininit.exe' - '1' Module(s) have been scanned
      Scan process 'csrss.exe' - '1' Module(s) have been scanned
      Scan process 'smss.exe' - '1' Module(s) have been scanned
      66 processes with 66 modules were scanned

      Starting master boot sector scan:
      Master boot sector HD0
      [NOTE] No virus was found!
      Master boot sector HD1
      [NOTE] No virus was found!
      [WARNING] The boot sector file could not be read!
      [WARNING] Error code: 0x0015
      [NOTE] Please restart the search with Administrator rights
      Master boot sector HD2
      [NOTE] No virus was found!
      [WARNING] The boot sector file could not be read!
      [WARNING] Error code: 0x0015
      [NOTE] Please restart the search with Administrator rights
      Master boot sector HD3
      [NOTE] No virus was found!
      [WARNING] The boot sector file could not be read!
      [WARNING] Error code: 0x0015
      [NOTE] Please restart the search with Administrator rights

      Start scanning boot sectors:
      Boot sector 'C:\'
      [NOTE] No virus was found!

      Starting to scan the registry.
      The registry was scanned ( '9' files ).


      Starting the file scan:

      Begin scan in 'C:\'
      C:\hiberfil.sys
      [WARNING] The file could not be opened!
      C:\pagefile.sys
      [WARNING] The file could not be opened!


      End of the scan: mardi 26 février 2008 17:24
      Used time: 46:50 min

      The scan has been done completely.

      12489 Scanning directories
      251648 Files were scanned
      0 viruses and/or unwanted programs were found
      0 Files were classified as suspicious:
      0 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      2 Files cannot be scanned
      251648 Files not concerned
      1172 Archives were scanned
      2 Warnings
      10 Notes
      76683 Objects were scanned with rootkit scan
      0 Hidden objects were found



      Mon ordinateur marche parfaitement bien maintenant.
      Merci beaucoup de m'avoir aidé. ^^
      0
  4. jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 041
     
    ok c'est bon . Bon surf!
    0