Sujet Précédent Sujet Suivant

Méthode préliminaire de désinfection-rapport

Florian -  
 Utilisateur anonyme -
Bonjour,
j'ai effectué la méthode préliminaire de désinfection décrite sur http://www.commentcamarche.net/faq/sujet 3174 virus methode preliminaire de desinfection version fr
Voici les rapports dans l'ordre. J'ai l'impression d'avoir nettoyé quelques trucs mais j'aimerai avoir votre avis.
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 22:03:56 26/02/2008

+ Résultat de l'analyse:

C:\Documents and Settings\Compaq_Propriétaire\Cookies\compaq_propriétaire@ssl-hints.netflame[2].txt -> TrackingCookie.Netflame : Nettoyé.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107488.bat -> Trojan.OnLineGames.rdh : Nettoyé.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107502.bat -> Trojan.OnLineGames.rdh : Nettoyé.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107557.bat -> Trojan.OnLineGames.rdh : Nettoyé.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107571.bat -> Trojan.OnLineGames.rdh : Nettoyé.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107588.bat -> Trojan.OnLineGames.rdh : Nettoyé.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107602.bat -> Trojan.OnLineGames.rdh : Nettoyé.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107616.bat -> Trojan.OnLineGames.rdh : Nettoyé.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107632.bat -> Trojan.OnLineGames.rdh : Nettoyé.
C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107638.exe -> Trojan.OnLineGames.rdh : Nettoyé.
C:\q83iwmgf.bat -> Trojan.OnLineGames.rdh : Nettoyé.
D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107490.bat -> Trojan.OnLineGames.rdh : Nettoyé.
D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107504.bat -> Trojan.OnLineGames.rdh : Nettoyé.
D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107559.bat -> Trojan.OnLineGames.rdh : Nettoyé.
D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107573.bat -> Trojan.OnLineGames.rdh : Nettoyé.
D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107590.bat -> Trojan.OnLineGames.rdh : Nettoyé.
D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107604.bat -> Trojan.OnLineGames.rdh : Nettoyé.
D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107618.bat -> Trojan.OnLineGames.rdh : Nettoyé.
D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107634.bat -> Trojan.OnLineGames.rdh : Nettoyé.
D:\q83iwmgf.bat -> Trojan.OnLineGames.rdh : Nettoyé.
K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107492.bat -> Trojan.OnLineGames.rdh : Nettoyé.
K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107506.bat -> Trojan.OnLineGames.rdh : Nettoyé.
K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107561.bat -> Trojan.OnLineGames.rdh : Nettoyé.
K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107575.bat -> Trojan.OnLineGames.rdh : Nettoyé.
K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107592.bat -> Trojan.OnLineGames.rdh : Nettoyé.
K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107606.bat -> Trojan.OnLineGames.rdh : Nettoyé.
K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107620.bat -> Trojan.OnLineGames.rdh : Nettoyé.
K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107636.bat -> Trojan.OnLineGames.rdh : Nettoyé.
K:\q83iwmgf.bat -> Trojan.OnLineGames.rdh : Nettoyé.

Fin du rapport

BitDefender Online Scanner

Scan report generated at: Wed, Feb 27, 2008 - 00:09:25

Scan path: C:\;D:\;E:\;G:\;H:\;I:\;J:\;K:\;

Statistics

Time
02:01:37

Files
536654

Folders
9810

Boot Sectors
5

Archives
55161

Packed Files
23722

Results

Identified Viruses
11

Infected Files
113

Suspect Files
0

Warnings
0

Disinfected
0

Deleted Files
114

Engines Info

Virus Definitions
983885

Engine build
AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)

Scan plugins
16

Archive plugins
41

Unpack plugins
7

E-mail plugins
6

System plugins
5

Scan Settings

First Action
Disinfect

Second Action
Delete

Heuristics
Yes

Enable Warnings
Yes

Scanned Extensions
*;

Exclude Extensions

Scan Emails
Yes

Scan Archives
Yes

Scan Packed
Yes

Scan Files
Yes

Scan Boot
Yes

Scanned File
Status

C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Identities\{03089365-441A-4383-BA8D-4736B9AC7834}\Microsoft\Outlook Express\Boîte de réception.dbx=>(message 2316)
Infected with: Generic.Trojan.Phish.0BEB9960

C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Identities\{03089365-441A-4383-BA8D-4736B9AC7834}\Microsoft\Outlook Express\Boîte de réception.dbx=>(message 2316)
Disinfection failed

C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Identities\{03089365-441A-4383-BA8D-4736B9AC7834}\Microsoft\Outlook Express\Boîte de réception.dbx=>(message 2316)
Deleted

C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Application Data\Identities\{03089365-441A-4383-BA8D-4736B9AC7834}\Microsoft\Outlook Express\Boîte de réception.dbx
Update failed

C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Temp\ig.dll
Infected with: Packer.Malware.NSAnti.N

C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Temp\ig.dll
Disinfection failed

C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Temp\ig.dll
Deleted

C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Temp\smz.dll
Infected with: Trojan.PWS.OnlineGames.QZU

C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Temp\smz.dll
Disinfection failed

C:\Documents and Settings\Compaq_Propriétaire\Local Settings\Temp\smz.dll
Deleted

C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\08D021D0.tmp=>(Quarantine-2)=>[Subject: Re: Hello][Date: Thu, 01 Jan 1998 00:37:35 +0100]=>(MIME part)=>Joke.cpl
Infected with: Win32.Bagle.AX@mm

C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\08D021D0.tmp=>(Quarantine-2)=>[Subject: Re: Hello][Date: Thu, 01 Jan 1998 00:37:35 +0100]=>(MIME part)=>Joke.cpl
Deleted

C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\08D021D0.tmp=>(Quarantine-2)=>[Subject: Re: Hello][Date: Thu, 01 Jan 1998 00:37:35 +0100]=>(MIME part)
Updated

C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\08D021D0.tmp=>(Quarantine-2)
Updated

C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\08D021D0.tmp
Update failed

C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6EDB0733.DLL=>(Quarantine-2)
Infected with: Packer.Malware.NSAnti.K

C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6EDB0733.DLL=>(Quarantine-2)
Disinfection failed

C:\Program Files\Norton Internet Security\Norton AntiVirus\Quarantine\6EDB0733.DLL=>(Quarantine-2)
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP508\A0107119.bat
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP508\A0107119.bat
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP508\A0107119.bat
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107147.bat
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107147.bat
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107147.bat
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107173.dll
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107173.dll
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107173.dll
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107174.bat
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107174.bat
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107174.bat
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107180.exe
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107180.exe
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107180.exe
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107237.bat
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107237.bat
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107237.bat
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107259.dll
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107259.dll
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107259.dll
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107260.bat
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107260.bat
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107260.bat
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107267.bat
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107267.bat
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107267.bat
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107289.dll
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107289.dll
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107289.dll
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107290.bat
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107290.bat
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107290.bat
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107301.dll
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107301.dll
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107301.dll
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107304.bat
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107304.bat
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107304.bat
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107332.dll
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107332.dll
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107332.dll
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107333.bat
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107333.bat
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107333.bat
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107423.dll
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107423.dll
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107423.dll
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107424.bat
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107424.bat
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107424.bat
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107474.exe
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107474.exe
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107474.exe
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107475.dll
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107475.dll
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107475.dll
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107487.dll
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107487.dll
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107487.dll
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107501.dll
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107501.dll
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107501.dll
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107555.dll
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107555.dll
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107555.dll
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107570.dll
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107570.dll
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107570.dll
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107601.dll
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107601.dll
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107601.dll
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107615.dll
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107615.dll
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107615.dll
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107631.dll
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107631.dll
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107631.dll
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107666.dll
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107666.dll
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107666.dll
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107668.com
Infected with: Packer.Malware.NSAnti.N

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107668.com
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107668.com
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107692.dll
Infected with: Packer.Malware.NSAnti.N

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107692.dll
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107692.dll
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107693.com
Infected with: Packer.Malware.NSAnti.N

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107693.com
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107693.com
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107706.dll
Infected with: Packer.Malware.NSAnti.N

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107706.dll
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107706.dll
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107707.com
Infected with: Packer.Malware.NSAnti.N

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107707.com
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107707.com
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107720.dll
Infected with: Packer.Malware.NSAnti.N

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107720.dll
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107720.dll
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107721.com
Infected with: Packer.Malware.NSAnti.N

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107721.com
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107721.com
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107727.exe
Infected with: Packer.Malware.NSAnti.N

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107727.exe
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107727.exe
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107742.com
Infected with: Packer.Malware.NSAnti.N

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107742.com
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107742.com
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107750.exe
Infected with: Packer.Malware.NSAnti.N

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107750.exe
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107750.exe
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107751.dll
Infected with: Packer.Malware.NSAnti.N

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107751.dll
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107751.dll
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107772.dll
Infected with: Packer.Malware.NSAnti.N

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107772.dll
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107772.dll
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107773.com
Infected with: Packer.Malware.NSAnti.N

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107773.com
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107773.com
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107788.dll
Infected with: Packer.Malware.NSAnti.N

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107788.dll
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107788.dll
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107789.com
Infected with: Packer.Malware.NSAnti.N

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107789.com
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107789.com
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107797.com
Infected with: Packer.Malware.NSAnti.N

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107797.com
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107797.com
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107816.dll
Infected with: Packer.Malware.NSAnti.N

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107816.dll
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107816.dll
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107817.com
Infected with: Packer.Malware.NSAnti.N

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107817.com
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107817.com
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107830.dll
Infected with: Packer.Malware.NSAnti.N

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107830.dll
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107830.dll
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107831.com
Infected with: Packer.Malware.NSAnti.N

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107831.com
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107831.com
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107850.dll
Infected with: Packer.Malware.NSAnti.N

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107850.dll
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107850.dll
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107852.com
Infected with: Packer.Malware.NSAnti.N

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107852.com
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107852.com
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107858.exe
Infected with: Packer.Malware.NSAnti.N

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107858.exe
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107858.exe
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107859.dll
Infected with: Packer.Malware.NSAnti.N

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107859.dll
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107859.dll
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0107860.com
Infected with: Trojan.PWS.OnlineGames.QZU

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0107860.com
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0107860.com
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0107890.dll
Infected with: Packer.Malware.NSAnti.N

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0107890.dll
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0107890.dll
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0107891.com
Infected with: Trojan.PWS.OnlineGames.QZU

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0107891.com
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0107891.com
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0108441.bat
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0108441.bat
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0108441.bat
Deleted

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0108444.DLL=>(Quarantine-2)
Infected with: Packer.Malware.NSAnti.K

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0108444.DLL=>(Quarantine-2)
Disinfection failed

C:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0108444.DLL=>(Quarantine-2)
Deleted

C:\tmf3w3g0.com
Infected with: Trojan.PWS.OnlineGames.QZU

C:\tmf3w3g0.com
Disinfection failed

C:\tmf3w3g0.com
Deleted

C:\WINDOWS\system32\kavo.exe
Infected with: Trojan.PWS.OnlineGames.QZU

C:\WINDOWS\system32\kavo.exe
Disinfection failed

C:\WINDOWS\system32\kavo.exe
Deleted

C:\WINDOWS\system32\kavo0.dll
Infected with: Trojan.PWS.OnlineGames.QZU

C:\WINDOWS\system32\kavo0.dll
Disinfection failed

C:\WINDOWS\system32\kavo0.dll
Delete failed

C:\WINDOWS\system32\kavo1.dll
Infected with: Trojan.PWS.OnlineGames.QZU

C:\WINDOWS\system32\kavo1.dll
Disinfection failed

C:\WINDOWS\system32\kavo1.dll
Deleted

C:\WINDOWS\system32\kavo2.dll
Infected with: Packer.Malware.NSAnti.K

C:\WINDOWS\system32\kavo2.dll
Disinfection failed

C:\WINDOWS\system32\kavo2.dll
Deleted

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP508\A0107121.bat
Infected with: Packer.Malware.NSAnti.K

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP508\A0107121.bat
Disinfection failed

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP508\A0107121.bat
Deleted

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107799.com
Infected with: Packer.Malware.NSAnti.N

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107799.com
Disinfection failed

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107799.com
Deleted

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107819.com
Infected with: Packer.Malware.NSAnti.N

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107819.com
Disinfection failed

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107819.com
Deleted

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107833.com
Infected with: Packer.Malware.NSAnti.N

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107833.com
Disinfection failed

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107833.com
Deleted

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107854.com
Infected with: Packer.Malware.NSAnti.N

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107854.com
Disinfection failed

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107854.com
Deleted

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107670.com
Infected with: Packer.Malware.NSAnti.N

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107670.com
Disinfection failed

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107670.com
Deleted

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107695.com
Infected with: Packer.Malware.NSAnti.N

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107695.com
Disinfection failed

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107695.com
Deleted

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107709.com
Infected with: Packer.Malware.NSAnti.N

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107709.com
Disinfection failed

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107709.com
Deleted

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107723.com
Infected with: Packer.Malware.NSAnti.N

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107723.com
Disinfection failed

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107723.com
Deleted

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107149.bat
Infected with: Packer.Malware.NSAnti.K

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107149.bat
Disinfection failed

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107149.bat
Deleted

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107176.bat
Infected with: Packer.Malware.NSAnti.K

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107176.bat
Disinfection failed

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107176.bat
Deleted

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107239.bat
Infected with: Packer.Malware.NSAnti.K

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107239.bat
Disinfection failed

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107239.bat
Deleted

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107262.bat
Infected with: Packer.Malware.NSAnti.K

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107262.bat
Disinfection failed

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107262.bat
Deleted

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107269.bat
Infected with: Packer.Malware.NSAnti.K

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107269.bat
Disinfection failed

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107269.bat
Deleted

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107292.bat
Infected with: Packer.Malware.NSAnti.K

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107292.bat
Disinfection failed

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107292.bat
Deleted

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107306.bat
Infected with: Packer.Malware.NSAnti.K

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107306.bat
Disinfection failed

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107306.bat
Deleted

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107335.bat
Infected with: Packer.Malware.NSAnti.K

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107335.bat
Disinfection failed

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107335.bat
Deleted

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107426.bat
Infected with: Packer.Malware.NSAnti.K

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107426.bat
Disinfection failed

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107426.bat
Deleted

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107744.com
Infected with: Packer.Malware.NSAnti.N

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107744.com
Disinfection failed

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107744.com
Deleted

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107775.com
Infected with: Packer.Malware.NSAnti.N

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107775.com
Disinfection failed

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107775.com
Deleted

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107791.com
Infected with: Packer.Malware.NSAnti.N

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107791.com
Disinfection failed

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107791.com
Deleted

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0107862.com
Infected with: Trojan.PWS.OnlineGames.QZU

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0107862.com
Disinfection failed

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0107862.com
Deleted

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0107893.com
Infected with: Trojan.PWS.OnlineGames.QZU

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0107893.com
Disinfection failed

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0107893.com
Deleted

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0108442.bat
Infected with: Packer.Malware.NSAnti.K

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0108442.bat
Disinfection failed

D:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0108442.bat
Deleted

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP508\A0107124.bat
Infected with: Packer.Malware.NSAnti.K

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP508\A0107124.bat
Disinfection failed

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP508\A0107124.bat
Deleted

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107151.bat
Infected with: Packer.Malware.NSAnti.K

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107151.bat
Disinfection failed

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107151.bat
Deleted

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107178.bat
Infected with: Packer.Malware.NSAnti.K

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107178.bat
Disinfection failed

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107178.bat
Deleted

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107241.bat
Infected with: Packer.Malware.NSAnti.K

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107241.bat
Disinfection failed

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP509\A0107241.bat
Deleted

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107274.bat
Infected with: Packer.Malware.NSAnti.K

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107274.bat
Disinfection failed

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107274.bat
Deleted

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107294.bat
Infected with: Packer.Malware.NSAnti.K

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107294.bat
Disinfection failed

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107294.bat
Deleted

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107308.bat
Infected with: Packer.Malware.NSAnti.K

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107308.bat
Disinfection failed

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107308.bat
Deleted

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107337.bat
Infected with: Packer.Malware.NSAnti.K

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107337.bat
Disinfection failed

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP510\A0107337.bat
Deleted

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107428.bat
Infected with: Packer.Malware.NSAnti.K

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107428.bat
Disinfection failed

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP511\A0107428.bat
Deleted

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107672.com
Infected with: Packer.Malware.NSAnti.N

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107672.com
Disinfection failed

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107672.com
Deleted

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107697.com
Infected with: Packer.Malware.NSAnti.N

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107697.com
Disinfection failed

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107697.com
Deleted

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107711.com
Infected with: Packer.Malware.NSAnti.N

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107711.com
Disinfection failed

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107711.com
Deleted

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107725.com
Infected with: Packer.Malware.NSAnti.N

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107725.com
Disinfection failed

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP512\A0107725.com
Deleted

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107746.com
Infected with: Packer.Malware.NSAnti.N

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107746.com
Disinfection failed

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107746.com
Deleted

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107777.com
Infected with: Packer.Malware.NSAnti.N

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107777.com
Disinfection failed

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107777.com
Deleted

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107793.com
Infected with: Packer.Malware.NSAnti.N

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107793.com
Disinfection failed

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP513\A0107793.com
Deleted

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107801.com
Infected with: Packer.Malware.NSAnti.N

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107801.com
Disinfection failed

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107801.com
Deleted

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107821.com
Infected with: Packer.Malware.NSAnti.N

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107821.com
Disinfection failed

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107821.com
Deleted

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107835.com
Infected with: Packer.Malware.NSAnti.N

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107835.com
Disinfection failed

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107835.com
Deleted

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107856.com
Infected with: Packer.Malware.NSAnti.N

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107856.com
Disinfection failed

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP514\A0107856.com
Deleted

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0107864.com
Infected with: Trojan.PWS.OnlineGames.QZU

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0107864.com
Disinfection failed

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0107864.com
Deleted

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0107895.com
Infected with: Trojan.PWS.OnlineGames.QZU

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0107895.com
Disinfection failed

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0107895.com
Deleted

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0108443.bat
Infected with: Packer.Malware.NSAnti.K

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0108443.bat
Disinfection failed

K:\System Volume Information\_restore{F75EEC69-6E97-419B-93B4-6A3A275301C4}\RP515\A0108443.bat
Deleted

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 08:01:07, on 27/02/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
c:\Program Files\Norton Internet Security\ISSVC.exe
c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Winamp\Winampa.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9BE.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Fichiers communs\LogiShrd\LComMgr\LVComSX.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\Program Files\Nikon\NkView6\NkvMon.exe
C:\Program Files\Microsoft Office\Office\OSA.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
N3 - Netscape 7: user_pref("browser.search.defaultengine", "engine://C%3A%5CProgram%20Files%5CNetscape%5CNetscape%206%5Csearchplugins%5CNetscape_France.src"); (C:\Documents and Settings\COMPAQ_PROPRIÉTAIRE\Application Data\Mozilla\Profiles\default\m52gbfcd.slt\prefs.js)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [Reminder] "C:\Windows\Creator\Remind_XP.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\Winampa.exe"
O4 - HKLM\..\Run: [EPSON Stylus CX3600 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9BE.EXE /P26 "EPSON Stylus CX3600 Series" /O6 "USB002" /M "Stylus CX3600"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [LVCOMSX] "C:\Program Files\Fichiers communs\LogiShrd\LComMgr\LVComSX.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [kava] C:\WINDOWS\system32\kavo.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - Startup: Démarrage d'Office.lnk = C:\Program Files\Microsoft Office\Office\OSA.EXE
O4 - Startup: Microsoft Recherche accélérée.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: NkvMon.exe.lnk = C:\Program Files\Nikon\NkView6\NkvMon.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra button: Net2Phone - {4B30061A-5B39-11D3-80F8-0090276F843F} - C:\Program Files\Net2Phone\Net2fone.exe
O9 - Extra 'Tools' menuitem: Net2Phone - {4B30061A-5B39-11D3-80F8-0090276F843F} - C:\Program Files\Net2Phone\Net2fone.exe
O9 - Extra button: EmpirePoker - {77E68763-4284-41d6-B7E7-B6E1F053A9E7} - C:\Program Files\EmpirePoker\EmpirePoker.exe (file missing)
O9 - Extra 'Tools' menuitem: EmpirePoker - {77E68763-4284-41d6-B7E7-B6E1F053A9E7} - C:\Program Files\EmpirePoker\EmpirePoker.exe (file missing)
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1F83CD9E-505E-4F87-BECE-0832A763E36F} (Image Uploader 3.0 Control) - http://www.mypixmania.com/importer/MypixUploader.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://wisup.net/_plateforme/Upload/Aurigma/AurigmaActiveX/ImageUploader4.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class) - http://www.pixdiscount.fr/clients/uploader_uni_dd_final.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweep

3 réponses

Réponse 1 / 3
Utilisateur anonyme
 
Salutr,
ton hijackthis n'est pas complet refait le ;)
0
Florian
 
Salut Dorgan,
En fait, il était complet mais nombre de caractères limité. Je te le remets ci-dessous.
D'autre part, j'ai des soucis pour ouvrir/explorer mes disques durs (doubleclick/click droit). On me demande quel programme je veux utiliser. J'aurai pas viré un truc dans le registre ?

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 08:01:07, on 27/02/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
c:\Program Files\Norton Internet Security\ISSVC.exe
c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Winamp\Winampa.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9BE.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Fichiers communs\LogiShrd\LComMgr\LVComSX.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\Program Files\Nikon\NkView6\NkvMon.exe
C:\Program Files\Microsoft Office\Office\OSA.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
N3 - Netscape 7: user_pref("browser.search.defaultengine", "engine://C%3A%5CProgram%20Files%5CNetscape%5CNetscape%206%5Csearchplugins%5CNetscape_France.src"); (C:\Documents and Settings\COMPAQ_PROPRIÉTAIRE\Application Data\Mozilla\Profiles\default\m52gbfcd.slt\prefs.js)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe
O4 - HKLM\..\Run: [Reminder] "C:\Windows\Creator\Remind_XP.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\Winampa.exe"
O4 - HKLM\..\Run: [EPSON Stylus CX3600 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9BE.EXE /P26 "EPSON Stylus CX3600 Series" /O6 "USB002" /M "Stylus CX3600"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [LVCOMSX] "C:\Program Files\Fichiers communs\LogiShrd\LComMgr\LVComSX.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [kava] C:\WINDOWS\system32\kavo.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - Startup: Démarrage d'Office.lnk = C:\Program Files\Microsoft Office\Office\OSA.EXE
O4 - Startup: Microsoft Recherche accélérée.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: NkvMon.exe.lnk = C:\Program Files\Nikon\NkView6\NkvMon.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra button: Net2Phone - {4B30061A-5B39-11D3-80F8-0090276F843F} - C:\Program Files\Net2Phone\Net2fone.exe
O9 - Extra 'Tools' menuitem: Net2Phone - {4B30061A-5B39-11D3-80F8-0090276F843F} - C:\Program Files\Net2Phone\Net2fone.exe
O9 - Extra button: EmpirePoker - {77E68763-4284-41d6-B7E7-B6E1F053A9E7} - C:\Program Files\EmpirePoker\EmpirePoker.exe (file missing)
O9 - Extra 'Tools' menuitem: EmpirePoker - {77E68763-4284-41d6-B7E7-B6E1F053A9E7} - C:\Program Files\EmpirePoker\EmpirePoker.exe (file missing)
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1F83CD9E-505E-4F87-BECE-0832A763E36F} (Image Uploader 3.0 Control) - http://www.mypixmania.com/importer/MypixUploader.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://wisup.net/_plateforme/Upload/Aurigma/AurigmaActiveX/ImageUploader4.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class) - http://www.pixdiscount.fr/clients/uploader_uni_dd_final.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{75DCF8F8-054C-465C-934D-A2209FBEEE1A}: NameServer = 84.103.237.144 86.64.145.144
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: ISSvc (ISSVC) - Symantec Corporation - c:\Program Files\Norton Internet Security\ISSVC.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LVSrvLauncher - Labtec Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: SAVScan - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - c:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
O24 - Desktop Component 0: (no name) - http://alainmadelin.com/OCDE/photo2br.jpg
0
Réponse 2 / 3
Utilisateur anonyme
 
Salut,

on verra après ca,
Je connais pas Net2fone, je doutd e sa légitimité je les inclu dans les fix.
Si tu le connais fix pas les 2 ligne le concernant ci-dessous et pour ce qui est de otmoveit après aussi
Fix :

O4 - HKCU\..\Run: [kava] C:\WINDOWS\system32\kavo.exe
O9 - Extra button: Net2Phone - {4B30061A-5B39-11D3-80F8-0090276F843F} - C:\Program Files\Net2Phone\Net2fone.exe
O9 - Extra 'Tools' menuitem: Net2Phone - {4B30061A-5B39-11D3-80F8-0090276F843F} - C:\Program Files\Net2Phone\Net2fone.exe
O9 - Extra button: EmpirePoker - {77E68763-4284-41d6-B7E7-B6E1F053A9E7} - C:\Program Files\EmpirePoker\EmpirePoker.exe (file missing)
O9 - Extra 'Tools' menuitem: EmpirePoker - {77E68763-4284-41d6-B7E7-B6E1F053A9E7} - C:\Program Files\EmpirePoker\EmpirePoker.exe (file missing)

ensuite
Télécharge
http://download.bleepingcomputer.com/oldtimer/OTMoveIt2.exe
sur ton Bureau et lance le.

Assure toi que la case "Unregister Dll's and Ocx's" soit bien cochée.

Copie et colle les ligne ci-dessous dans l'encadré bleue de OTMoveIt nommé Paste Standard List of Files/Folders to move.

C:\WINDOWS\system32\kavo.exe
C:\Program Files\Net2Phone\Net2fone.exe

Clique sur MoveIt! pour lancer la suppression.
Si OTMoveIt propose de redémarrer ton PC, accepte !
Lorsque un résultat apparaît dans le cadre Results, clique sur Exit.

Dans ta future réponse, envoie le rapport de OTMoveIt situé sur C:\_OTMoveIt\MovedFiles.
0
k_lot Messages postés 58 Statut Membre 9
 
Merci Dorgane,
je fais les manips' dès ce soir et te renvoie le rapport.
Bonne journée.
0
Florian
 
Bonjour,
Voilà le rapport :

File/Folder C:\WINDOWS\system32\kavo.exe not found.
C:\Program Files\Net2Phone\Net2fone.exe moved successfully.

OTMoveIt2 v1.0.20 log created on 02292008_085019
0
Réponse 3 / 3
Utilisateur anonyme
 
ok, reemt un rapport hijackthis
0

Discussions similaires

Impossible d'afficher le rapport de tableau croisé dynamique sur un rapport
Utilisateur anonyme -
TomH. -

13 réponses
écrire un rapport de travail
asi -
REGINALD -

3 réponses
impossible d'afficher le tableau dynamique sur un rapport existant
Pierre -
Adrien71 -

3 réponses
Theme de rapport de stage option comptabilité
sana saydou -
Raymond PENTIER -

2 réponses
Problém affichage du tableau croisé dynamique
BK -
Raymond PENTIER -

2 réponses