Rapport hijackthis

Résolu

neodu50 Messages postés 404 Statut Membre -
ep44 Messages postés 7432 Statut Contributeur - 14 mai 2008 à 21:20

Bonjour,
Je peut me connecter a msn mais quand je demande une recherche il ne s'execute pas quelqun a une idée ??Configuration: Windows XP
Internet Explorer 7.0

rapport de hijackthis :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:02:38, on 11/05/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\system32\imapi.exe
C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
C:\Program Files\Dell\QuickSet\Quickset.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Spyware Doctor\pctsTray.exe
C:\Program Files\SMC\SMC USB Wireless Client Utility\NICServ.exe
C:\WINDOWS\system32\Rundll32.exe
C:\WINDOWS\system32\LXSUPMON.EXE
C:\Program Files\Panicware\Pop-Up Stopper Free Edition\PSFree.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\Program Files\Spyware Doctor\pctsSvc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\SMC\SMC USB Wireless Client Utility\UMCCfg.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\distnoted.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceHelper.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.adobe.com/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: {32125779-ddc7-5078-7d34-51c7744ee680} - {086ee447-7c15-43d7-8705-7cdd97752123} - C:\WINDOWS\system32\qeactlln.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {629CA6AA-86DC-42E7-8603-2C349183E22B} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\Quickset.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [ISTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"
O4 - HKLM\..\Run: [LXSUPMON] C:\WINDOWS\system32\LXSUPMON.EXE RUN
O4 - HKLM\..\Run: [BMf37f4390] Rundll32.exe "C:\WINDOWS\system32\xepavkpn.dll",s
O4 - HKCU\..\Run: [PopUpStopperFreeEdition] "C:\Program Files\Panicware\Pop-Up Stopper Free Edition\PSFree.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: SMC USB Wireless Client Utility.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O9 - Extra button: (no name) - {49783ED4-258D-4f9f-BE11-137C18D3E543} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5) - http://upload.facebook.com/controls/FacebookPhotoUploader5.cab
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/pr02/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {6B75345B-AA36-438A-BBE6-4078B4C6984D} - http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab
O16 - DPF: {A1F2F2CE-06AF-483C-9F12-D3BAA72477D6} (BatchDownloader Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/DigWXMSN.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} (Image Uploader Control) - http://www.mypix.com/fr/fr/importer/ImageUploader4.cab
O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
O23 - Service: a-squared Anti-Malware Service (a2AntiMalware) - Unknown owner - C:\Program Files\a-squared Anti-Malware\a2service.exe (file missing)
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
O23 - Service: NICSer_WUB370L - Unknown owner - C:\Program Files\SMC\SMC USB Wireless Client Utility\NICServ.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE

Afficher la suite

A voir également:

Rapport hijackthis
Hijackthis - Télécharger - Antivirus & Antimalwares
Plan rapport de stage - Guide
Rapport de crash windows - Guide
Impression rapport de stage ✓ - Forum Word
Modifier rapport d'échelle pdf xchange viewer ✓ - Forum PDF

43 réponses

Réponse 21 / 43

neodu50 Messages postés 404 Statut Membre 3

25 % ...

Réponse 22 / 43

neodu50 Messages postés 404 Statut Membre 3

36 % c'est long !!

Je voulais savoir jusqu'as a peu prés quel heure sera tu la ce soir ?

Réponse 23 / 43

neodu50 Messages postés 404 Statut Membre 3

;***********************************************************************************************************************************************************************************
ANALYSIS: 2008-05-12 19:45:14
PROTECTIONS: 1
MALWARE: 27
SUSPECTS: 1
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description Version Active Updated
;===================================================================================================================================================================================
avast! antivirus 4.8.1169 [VPS 080511-0] 4.8.1169 Yes Yes
;===================================================================================================================================================================================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===================================================================================================================================================================================
00139060 Cookie/Casalemedia TrackingCookie No 0 Yes No C:\Documents and Settings\sebastien\Cookies\sebastien@casalemedia[1].txt
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\sebastien\Cookies\sebastien@doubleclick[1].txt
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Documents and Settings\sebastien\Cookies\sebastien@atdmt[1].txt
00139535 Application/Processor HackTools No 0 Yes No C:\Documents and Settings\sebastien\Mes documents\SDFix\apps\Process.exe
00139535 Application/Processor HackTools No 0 Yes No C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip[Logiciel/MSNFix/MSNFix/incl/Process.exe]
00139535 Application/Processor HackTools No 0 No No C:\Documents and Settings\sebastien\Mes documents\SDFix.exe[SDFix\apps\Process.exe]
00139535 Application/Processor HackTools No 0 Yes No C:\Documents and Settings\sebastien\Bureau\Solution a faire 1\SDFix\apps\Process.exe
00139535 Application/Processor HackTools No 0 No No C:\Documents and Settings\sebastien\Bureau\Solution a faire 1\SDFix.exe[SDFix\apps\Process.exe]
00139535 Application/Processor HackTools No 0 Yes No C:\Program Files\Navilog1\Process.exe
00139535 Application/Processor HackTools No 0 Yes No C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip[Logiciel/MSNFix.zip][MSNFix/incl/Process.exe]
00139535 Application/Processor HackTools No 0 Yes No C:\SDFix\apps\Process.exe
00145393 Cookie/Tradedoubler TrackingCookie No 0 Yes No C:\Documents and Settings\sebastien\Cookies\sebastien@tradedoubler[1].txt
00159564 Cookie/WUpd TrackingCookie No 0 Yes No C:\Documents and Settings\sebastien\Cookies\sebastien@revenue[1].txt
00167704 Cookie/Xiti TrackingCookie No 0 Yes No C:\Documents and Settings\sebastien\Cookies\sebastien@xiti[1].txt
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\sebastien\Cookies\sebastien@ad.yieldmanager[1].txt
00168106 Cookie/Weborama TrackingCookie No 0 Yes No C:\Documents and Settings\sebastien\Cookies\sebastien@weborama[1].txt
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\sebastien\Cookies\sebastien@advertising[2].txt
00199984 Cookie/Searchportal TrackingCookie No 0 Yes No C:\Documents and Settings\sebastien\Cookies\sebastien@searchportal.information[1].txt
00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Documents and Settings\sebastien\Cookies\sebastien@smartadserver[1].txt
00329781 Application/ProcKill.A HackTools No 0 No No C:\RECYCLER\S-1-5-21-1454471165-362288127-839522115-1004\Dc68.rar[GameXP 1.6.1.20\GameXP.exe]
01048777 Generic Malware Virus/Trojan No 0 Yes No C:\Program Files\MSN Messenger\All_version.exe
01176994 Bck/VB.XB Virus/Trojan No 0 No No C:\Documents and Settings\sebastien\Bureau\ComboFix.exe[327882R2FWJFW\NirCmdC.cfexe]
01185375 Application/Psexec.A HackTools No 0 Yes No C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP8\A0004765.EXE
02197130 Trj/Rebooter.J Virus/Trojan No 1 Yes No C:\Program Files\Navilog1\reboot.exe
02524870 Trj/Downloader.MDW Virus/Trojan No 1 Yes No C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip[Logiciel/MSNFix/MSNFix/18112007_14061442.zip][backup/3d3t4t8n7l.exe]
02524870 Trj/Downloader.MDW Virus/Trojan No 1 Yes No C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip[Logiciel/MSNFix/MSNFix/18112007_14061442.zip][backup/carlton]
02652859 Trj/MultiDropper.RJJ Virus/Trojan No 1 Yes No C:\Program Files\eMule\Incoming\serial nero 8 Serial + Keygen.zip[wrar371-019.exe]
02690919 Adware/Yazzle Adware No 0 Yes No C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip[Logiciel/MSNFix/MSNFix/18112007_14061442.zip][backup/mrofinu1148.exe.tmp]
02690945 W32/Sdbot.LJF.worm Virus/Trojan No 1 Yes No C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip[Logiciel/MSNFix/MSNFix/18112007_14061442.zip][backup/ccSvcHst.exe]
02690945 W32/Sdbot.LJF.worm Virus/Trojan No 1 Yes No C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip[Logiciel/MSNFix/MSNFix/18112007_14061442.zip][backup/Dance_dec_jpg.zip][www.Dance_dec_jpg_Msn.com]
02691065 Trj/Downloader.RBV Virus/Trojan No 0 Yes No C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip[Logiciel/MSNFix/MSNFix/18112007_14061442.zip][backup/ir-1-1148.exe]
02808136 Trj/Downloader.REM Virus/Trojan No 0 Yes No C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip[Logiciel/MSNFix/MSNFix/18112007_14061442.zip][backup/i1-1148.exe]
02808189 Adware/Yazzle Adware No 0 Yes No C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip[Logiciel/MSNFix/MSNFix/18112007_14061442.zip][backup/mrofinu1148.exe]
02861976 Trj/Agent.HEH Virus/Trojan No 1 Yes No C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip[Logiciel/MSNFix/MSNFix/incl/msnchk.exe]
02861976 Trj/Agent.HEH Virus/Trojan No 1 Yes No C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip[Logiciel/MSNFix.zip][MSNFix/incl/msnchk.exe]
02861976 Trj/Agent.HEH Virus/Trojan No 1 Yes No C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip[Logiciel/MSNFix/MSNFix/msnchk.exe]
02885963 Rootkit/Booto.C Virus/Worm No 0 Yes No C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP8\A0004516.sys
02936814 Trj/Multidropper.RBD Virus/Trojan No 1 Yes No C:\RECYCLER\S-1-5-21-1454471165-362288127-839522115-1004\Dc49.zip[Setup.exe]
;===================================================================================================================================================================================
SUSPECTS
Sent Location
;===================================================================================================================================================================================
No C:\Documents and Settings\sebastien\Local Settings\Temporary Internet Files\Content.IE5\9T389G6G\back_tab_on[1].jpg
;===================================================================================================================================================================================
VULNERABILITIES
Id Severity Description
;===================================================================================================================================================================================
;===================================================================================================================================================================================

Réponse 24 / 43

neodu50 Messages postés 404 Statut Membre 3

Ofete !

Est ce que je doit faire sa désinfectation ? il m'enlevré que :

Medium danger level (6)
Low danger level (5)

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question

Réponse 25 / 43

ep44 Messages postés 7432 Statut Contributeur 3

oui bien sur

Réponse 26 / 43

neodu50 Messages postés 404 Statut Membre 3

Et apres quesque je doit faire ?

Réponse 27 / 43

neodu50 Messages postés 404 Statut Membre 3

Et apres quesque je doit faire ?

Réponse 28 / 43

ep44 Messages postés 7432 Statut Contributeur 3

refais un nouveau hijack stp
et dit moi si tu as encore des soucis

neodu50 Messages postés 404 Statut Membre 3

O.K
enfin faut que je refasse l'analyse car j'ai eu bug bref... je le refait mais le truc c'est que le site panda... ne supprimé pas tout ce qu'il a trouvé sur mon pc !!!!
je te donne le raport de hijack au plus vite ++

Réponse 29 / 43

ep44 Messages postés 7432 Statut Contributeur 3

laisse pour panda

fait un scan en ligne

avec bitdefender et colle le rapport

https://www.bitdefender.com/toolbox/

Scan à faire sous Internet Explorer

un tuto
http://pageperso.aol.fr/rginformatique/mapage/defender.htm
@+

neodu50 Messages postés 404 Statut Membre 3

Donc je coupe panda j'en suis a 14 %

Réponse 30 / 43

igr1 Messages postés 14 Statut Membre

Bonsoir,

j'ai un problème de lenteur anormale sur mon PC.
J'ai accepté une actualisation de realplayer qui ne s'est jamais complétée jusqu'à 100%. Résultat j'ai arrêté le processus et depuis c'est le bazard quelque part. J'ai désinstallé realplayer et reinstallé plusieurs fois en espérant que les fichiers ajoutés seraient retirés. Rien n'y fait, toujours lent au démarrage. J'ai du coup utilisé registry medic pour enlever le bazard, j'ai trouvé plein de poubelle sur le PC mais ça n'a toujours pas réglé le problème de lenteur.
J'ai l'impression aussi d'avoir un des processus svchost.exe qui prend vraiment beaucoup de mémoire (18,6 Mo !!).
Mais là mes compétences s'arrêtent..
donc je joint mon fichier log. est-ce que quelqu'un aurait une idée du problème?
j'ai vu que l'instruction
F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\userinit.exe
n'était pas bonne mais je ne sais pas à quoi ça correspond.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:07:07, on 12/05/2008
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Eset\nod32krn.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Virtual CD v4 SDK\system\vcsplay.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Eset\nod32kui.exe
C:\WINDOWS\CameraFixer.exe
C:\WINDOWS\vsnpstd3.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\RALINK\Common\RaUI.exe
C:\Program Files\CodeStuff\Starter\Starter.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://proxyconf.igr.fr/proxy.pac
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\userinit.exe
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [VCSPlayer] "C:\Program Files\Virtual CD v4 SDK\system\vcsplay.exe"
O4 - HKLM\..\Run: [VTPreset] VTPreset.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [CameraFixer] C:\WINDOWS\CameraFixer.exe
O4 - HKLM\..\Run: [snpstd3] C:\WINDOWS\vsnpstd3.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Ralink Wireless Utility.lnk = C:\Program Files\RALINK\Common\RaUI.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O16 - DPF: {5C6698D9-7BE4-4122-8EC5-291D84DBD4A0} - http://upload.facebook.com/controls/FacebookPhotoUploader2.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{186856B3-A12E-43C3-A384-8BEE25AD18B3}: NameServer = 129.175.34.35,129.175.36.37
O17 - HKLM\System\CCS\Services\Tcpip\..\{F47D903A-BDAF-4521-BAC9-E574E015F96F}: NameServer = 129.175.34.35,129.175.36.37
O17 - HKLM\System\CS1\Services\Tcpip\..\{186856B3-A12E-43C3-A384-8BEE25AD18B3}: NameServer = 129.175.34.35,129.175.36.37
O17 - HKLM\System\CS2\Services\Tcpip\..\{186856B3-A12E-43C3-A384-8BEE25AD18B3}: NameServer = 129.175.34.35,129.175.36.37
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\HPZipm12.exe
O23 - Service: SmartLinkService (SLService) - Smart Link - C:\WINDOWS\SYSTEM32\slserv.exe

Réponse 31 / 43

ep44 Messages postés 7432 Statut Contributeur 3

Bonsoir igr1,

Il faut créer ton propre sujet
Merci

Réponse 32 / 43

neodu50 Messages postés 404 Statut Membre 3

ME voila désolé du retard ...
Bon avant tout je souhaite a te remercier infiniment !!!
Je suis pas la demain mais je revien mercredi ( hé gréve des collegien jeudi )XD
Bref passont donc je t'envoi un mail privé pour te dire si sa fonctionne bien !!
Voila le rapport de bitdefender ... :

<HTML>
<HEAD>
<TITLE>BitDefender Online Scanner -Scan Report</TITLE>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1">
<meta name="generator" content="Namo WebEditor v5.0(Trial)">
</HEAD>
<BODY BGCOLOR=#FFFFFF leftmargin="10" marginwidth="0" topmargin="20" marginheight="0" >

<table align="center" border="0" cellpadding="0" cellspacing="0" width="90%">
<tr>
<td width="458">
BitDefender
Online Scanner
</td>
<td width="40%">
 
</td>
<td width="10%">
 
</td>
</tr>
<tr>
<td colspan="3" width="912">
Scan report generated
at: Mon, May 12, 2008 - 23:30:36
</td>
</tr>

<tr>
<td width="458">
 
</td>
<td width="40%">
 
</td>
<td width="10%">
 
</td>
</tr>

<tr>
<td width="458">
Scan
path: C:\;D:\;E:\;
</td>
<td width="40%">
 
</td>
<td width="10%">
 
</td>
</tr>

<tr>
<td width="458">
 
</td>
<td width="40%">
 
</td>
<td width="10%">
 
</td>
</tr>

<tr>
<td width="458">
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="451" colspan="2" bgcolor="#CCCCCC">
Statistics
</td>
</tr>
<tr>
<td width="57%">
Time
</td>
<td width="43%" align="right">
02:01:12
</td>
</tr>
<tr>
<td width="57%">
Files
</td>
<td width="43%" align="right">
640759
</td>
</tr>
<tr>
<td width="57%">
Folders
</td>
<td width="43%" align="right">
12427
</td>
</tr>
<tr>
<td width="57%">
Boot Sectors
</td>
<td width="43%" align="right">
3
</td>
</tr>
<tr>
<td width="57%">
Archives
</td>
<td width="43%" align="right">
1978
</td>
</tr>
<tr>
<td width="57%">
Packed Files
</td>
<td width="43%" align="right">
42529
</td>
</tr>
</table>
</td>
<td width="40%">
 
</td>
<td width="10%">
 
</td>
</tr>

<tr>
<td width="458">
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="451" colspan="2" bgcolor="#CCCCCC">
Results
</td>
</tr>
<tr>
<td width="57%">
Identified Viruses 
</td>
<td width="43%" align="right">
9
</td>
</tr>
<tr>
<td width="57%">
Infected Files 
</td>
<td width="43%" align="right">
11
</td>
</tr>
<tr>
<td width="57%">
Suspect Files 
</td>
<td width="43%" align="right">
0
</td>
</tr>
<tr>
<td width="57%">
Warnings
</td>
<td width="43%" align="right">
0
</td>
</tr>
<tr>
<td width="57%">
Disinfected
</td>
<td width="43%" align="right">
0
</td>
</tr>
<tr>
<td width="57%">
Deleted Files
</td>
<td width="43%" align="right">
11
</td>
</tr>
</table>
</td>
<td width="40%">
 
</td>
<td width="10%">
 
</td>
</tr>

<tr>
<td width="458">
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="451" colspan="2" bgcolor="#CCCCCC">
Engines Info
</td>
</tr>
<tr>
<td width="57%">
Virus Definitions
</td>
<td width="43%" align="right">
1191352
</td>
</tr>
<tr>
<td width="57%">
Engine build
</td>
<td width="43%" align="right">
AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)
</td>
</tr>
<tr>
<td width="57%">
Scan plugins
</td>
<td width="43%" align="right">
16
</td>
</tr>
<tr>
<td width="57%">
Archive plugins
</td>
<td width="43%" align="right">
42
</td>
</tr>
<tr>
<td width="57%">
Unpack plugins
</td>
<td width="43%" align="right">
7
</td>
</tr>
<tr>
<td width="57%">
E-mail plugins
</td>
<td width="43%" align="right">
6
</td>
</tr>
<tr>
<td width="57%">
System plugins
</td>
<td width="43%" align="right">
5
</td>
</tr>
</table>
</td>
<td width="40%">
 
</td>
<td width="10%">
 
</td>
</tr>

<tr>
<td width="458">
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="451" colspan="2" bgcolor="#CCCCCC">
Scan Settings
</td>
</tr>
<tr>
<td width="57%">
First Action
</td>
<td width="43%" align="right">
Disinfect
</td>
</tr>
<tr>
<td width="57%">
Second Action
</td>
<td width="43%" align="right">
Delete
</td>
</tr>
<tr>
<td width="57%">
Heuristics
</td>
<td width="43%" align="right">
Yes
</td>
</tr>
<tr>
<td width="57%">
Enable Warnings
</td>
<td width="43%" align="right">
Yes
</td>
</tr>
<tr>
<td width="57%">
Scanned Extensions
</td>
<td width="43%" align="right">
*;
</td>
</tr>

<tr>
<td width="57%">
Exclude Extensions
</td>
<td width="43%" align="right">
 
</td>
</tr>
<tr>
<td width="57%">
Scan Emails
</td>
<td width="43%" align="right">
Yes
</td>
</tr>
<tr>
<td width="57%">
Scan Archives
</td>
<td width="43%" align="right">
Yes
</td>
</tr>
<tr>
<td width="57%">
Scan Packed
</td>
<td width="43%" align="right">
Yes
</td>
</tr>
<tr>
<td width="57%">
Scan Files
</td>
<td width="43%" align="right">
Yes
</td>
</tr>
<tr>
<td width="57%">
Scan Boot
</td>
<td width="43%" align="right">
Yes
</td>
</tr>
</table>
</td>
<td width="40%">
 
</td>
<td width="10%">
 
</td>
</tr>

<tr>
<td colspan=2>
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="252" bgcolor="#CCCCCC">
Scanned File
</td>
<td width="195" bgcolor="#CCCCCC" align="right">
 Status
</td>
</tr>
<tr>
<td width="57%">
C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip=>Logiciel/MSNFix/MSNFix/18112007_14061442.zip=>backup/mrofinu1148.exe
</td>
<td width="43%" align="left">
Infected with: Trojan.Downloader.Downloader.DLT
</td>
</tr><tr>
<td width="57%">
C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip=>Logiciel/MSNFix/MSNFix/18112007_14061442.zip=>backup/mrofinu1148.exe
</td>
<td width="43%" align="left">
Deleted
</td>
</tr><tr>
<td width="57%">
C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip=>Logiciel/MSNFix/MSNFix/18112007_14061442.zip
</td>
<td width="43%" align="left">
Updated
</td>
</tr><tr>
<td width="57%">
C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip=>Logiciel/MSNFix/MSNFix/18112007_14061442.zip=>backup/mrofinu1148.exe.tmp
</td>
<td width="43%" align="left">
Infected with: Trojan.Generic.69276
</td>
</tr><tr>
<td width="57%">
C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip=>Logiciel/MSNFix/MSNFix/18112007_14061442.zip=>backup/mrofinu1148.exe.tmp
</td>
<td width="43%" align="left">
Deleted
</td>
</tr><tr>
<td width="57%">
C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip=>Logiciel/MSNFix/MSNFix/18112007_14061442.zip
</td>
<td width="43%" align="left">
Updated
</td>
</tr><tr>
<td width="57%">
C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip
</td>
<td width="43%" align="left">
Updated
</td>
</tr><tr>
<td width="57%">
C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip=>Logiciel/Navilog1.exe
</td>
<td width="43%" align="left">
Infected with: Trojan.Generic.80254
</td>
</tr><tr>
<td width="57%">
C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip=>Logiciel/Navilog1.exe
</td>
<td width="43%" align="left">
Deleted
</td>
</tr><tr>
<td width="57%">
C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip
</td>
<td width="43%" align="left">
Updated
</td>
</tr><tr>
<td width="57%">
C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip=>Logiciel/xanadusetup.exe
</td>
<td width="43%" align="left">
Infected with: Trojan.Generic.199534
</td>
</tr><tr>
<td width="57%">
C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip=>Logiciel/xanadusetup.exe
</td>
<td width="43%" align="left">
Deleted
</td>
</tr><tr>
<td width="57%">
C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip
</td>
<td width="43%" align="left">
Updated
</td>
</tr><tr>
<td width="57%">
C:\Documents and Settings\sebastien\Mes documents\Mes vidéos\PCTools Registry Mechanic 6[1].0.0.780\crack.exe
</td>
<td width="43%" align="left">
Infected with: Trojan.Mezzia.CY
</td>
</tr><tr>
<td width="57%">
C:\Documents and Settings\sebastien\Mes documents\Mes vidéos\PCTools Registry Mechanic 6[1].0.0.780\crack.exe
</td>
<td width="43%" align="left">
Disinfection failed
</td>
</tr><tr>
<td width="57%">
C:\Documents and Settings\sebastien\Mes documents\Mes vidéos\PCTools Registry Mechanic 6[1].0.0.780\crack.exe
</td>
<td width="43%" align="left">
Deleted
</td>
</tr><tr>
<td width="57%">
C:\Documents and Settings\sebastien\Mes documents\Mes vidéos\PCTools Registry Mechanic 6[1].0.0.780.rar=>keygen.exe
</td>
<td width="43%" align="left">
Infected with: Trojan.Vundo.EKW
</td>
</tr><tr>
<td width="57%">
C:\Documents and Settings\sebastien\Mes documents\Mes vidéos\PCTools Registry Mechanic 6[1].0.0.780.rar=>keygen.exe
</td>
<td width="43%" align="left">
Deleted
</td>
</tr><tr>
<td width="57%">
C:\Documents and Settings\sebastien\Mes documents\Mes vidéos\PCTools Registry Mechanic 6[1].0.0.780.rar
</td>
<td width="43%" align="left">
Update failed
</td>
</tr><tr>
<td width="57%">
C:\Documents and Settings\sebastien\Mes documents\Mes vidéos\PCTools Registry Mechanic 6[1].0.0.780.rar=>crack.exe
</td>
<td width="43%" align="left">
Infected with: Trojan.Mezzia.CY
</td>
</tr><tr>
<td width="57%">
C:\Documents and Settings\sebastien\Mes documents\Mes vidéos\PCTools Registry Mechanic 6[1].0.0.780.rar=>crack.exe
</td>
<td width="43%" align="left">
Disinfection failed
</td>
</tr><tr>
<td width="57%">
C:\Documents and Settings\sebastien\Mes documents\Mes vidéos\PCTools Registry Mechanic 6[1].0.0.780.rar=>crack.exe
</td>
<td width="43%" align="left">
Deleted
</td>
</tr><tr>
<td width="57%">
C:\Documents and Settings\sebastien\Mes documents\Mes vidéos\PCTools Registry Mechanic 6[1].0.0.780.rar
</td>
<td width="43%" align="left">
Update failed
</td>
</tr><tr>
<td width="57%">
C:\Program Files\eMule\Incoming\(Serial) nero burning rom v8.1.1.0 keygen by DEViANCE [Full].zip=>Setup.exe
</td>
<td width="43%" align="left">
Infected with: Trojan.Generic.167219
</td>
</tr><tr>
<td width="57%">
C:\Program Files\eMule\Incoming\(Serial) nero burning rom v8.1.1.0 keygen by DEViANCE [Full].zip=>Setup.exe
</td>
<td width="43%" align="left">
Deleted
</td>
</tr><tr>
<td width="57%">
C:\Program Files\eMule\Incoming\(Serial) nero burning rom v8.1.1.0 keygen by DEViANCE [Full].zip
</td>
<td width="43%" align="left">
Updated
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP11\A0006805.exe
</td>
<td width="43%" align="left">
Detected with: Application.Aseye.BEK
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP11\A0006805.exe
</td>
<td width="43%" align="left">
Disinfection failed
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP11\A0006805.exe
</td>
<td width="43%" align="left">
Deleted
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002579.msi=>(Embedded EXE)
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002579.msi=>(Embedded EXE)
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002579.msi=>(Embedded EXE)
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002580.ini
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002582.old
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002582.old=>(unicode)
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002583.cfg
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0000
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0001
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0002
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0003
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0004
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0005
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0006
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0007
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0008
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0009
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0010
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0010=>(NSIS g)
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0010=>(NSIS g)=>lzma_nsis0000
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0010=>(NSIS g)=>lzma_nsis0001
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0011
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002585.lnk
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002586.lnk
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002587.lnk
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002588.lnk
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002589.lnk
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002590.lnk
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002591.lnk
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002592.ini
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002593.RDB
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002594.RDB
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002595.exe
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002596.RDB
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002597.lnk
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002598.dll
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002599.dll
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002600.dll
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002601.exe
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002602.exe
</td>
<td width="43%" align="left">
Clean
</td>
</tr><tr>
<td width="57%">
C:\upload_moi_ORDI_SEB.tar.gz=>upload_moi.tar=>WINDOWS/System32/wuxmxyih.exe
</td>
<td width="43%" align="left">
Infected with: Trojan.PrivacySet.A
</td>
</tr><tr>
<td width="57%">
C:\upload_moi_ORDI_SEB.tar.gz=>upload_moi.tar=>WINDOWS/System32/wuxmxyih.exe
</td>
<td width="43%" align="left">
Disinfection failed
</td>
</tr><tr>
<td width="57%">
C:\upload_moi_ORDI_SEB.tar.gz=>upload_moi.tar=>WINDOWS/System32/wuxmxyih.exe
</td>
<td width="43%" align="left">
Deleted
</td>
</tr><tr>
<td width="57%">
C:\upload_moi_ORDI_SEB.tar.gz=>upload_moi.tar
</td>
<td width="43%" align="left">
Updated
</td>
</tr><tr>
<td width="57%">
C:\upload_moi_ORDI_SEB.tar.gz
</td>
<td width="43%" align="left">
Updated
</td>
</tr><tr>
<td width="57%">
C:\WINDOWS\system32\wuxmxyih.exe
</td>
<td width="43%" align="left">
Infected with: Trojan.PrivacySet.A
</td>
</tr><tr>
<td width="57%">
C:\WINDOWS\system32\wuxmxyih.exe
</td>
<td width="43%" align="left">
Disinfection failed
</td>
</tr><tr>
<td width="57%">
C:\WINDOWS\system32\wuxmxyih.exe
</td>
<td width="43%" align="left">
Deleted
</td>
</tr>
</table>
</td>

<td width="10%">
 
</td>
</tr>

<tr>
<td width="458">
 
</td>
<td width="40%">
 
</td>
<td width="10%">
 
</td>
</tr>

<tr>
<td width="458">
 
</td>
<td width="40%">
 
</td>
<td width="10%">
 
</td>
</tr>

</table>
 

</body>
</html>

Réponse 33 / 43

neodu50 Messages postés 404 Statut Membre 3

enfin non
je sais pas comment faire car il me donne
un fichier . html

Réponse 34 / 43

neodu50 Messages postés 404 Statut Membre 3

Statistics

Time
02:01:12

Files
640759

Folders
12427

Boot Sectors
3

Archives
1978

Packed Files
42529

Results

Identified Viruses
9

Infected Files
11

Suspect Files
0

Warnings
0

Disinfected
0

Deleted Files
11

Engines Info

Virus Definitions
1191352

Engine build
AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)

Scan plugins
16

Archive plugins
42

Unpack plugins
7

E-mail plugins
6

System plugins
5

Scan Settings

First Action
Disinfect

Second Action
Delete

Heuristics
Yes

Enable Warnings
Yes

Scanned Extensions
*;

Exclude Extensions

Scan Emails
Yes

Scan Archives
Yes

Scan Packed
Yes

Scan Files
Yes

Scan Boot
Yes

C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip=>Logiciel/MSNFix/MSNFix/18112007_14061442.zip=>backup/mrofinu1148.exe
Infected with: Trojan.Downloader.Downloader.DLT

C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip=>Logiciel/MSNFix/MSNFix/18112007_14061442.zip=>backup/mrofinu1148.exe
Deleted

C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip=>Logiciel/MSNFix/MSNFix/18112007_14061442.zip
Updated

C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip=>Logiciel/MSNFix/MSNFix/18112007_14061442.zip=>backup/mrofinu1148.exe.tmp
Infected with: Trojan.Generic.69276

C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip=>Logiciel/MSNFix/MSNFix/18112007_14061442.zip=>backup/mrofinu1148.exe.tmp
Deleted

C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip=>Logiciel/MSNFix/MSNFix/18112007_14061442.zip
Updated

C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip
Updated

C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip=>Logiciel/Navilog1.exe
Infected with: Trojan.Generic.80254

C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip=>Logiciel/Navilog1.exe
Deleted

C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip
Updated

C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip=>Logiciel/xanadusetup.exe
Infected with: Trojan.Generic.199534

C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip=>Logiciel/xanadusetup.exe
Deleted

C:\Documents and Settings\sebastien\Mes documents\Logiciel.zip
Updated

C:\Documents and Settings\sebastien\Mes documents\Mes vidéos\PCTools Registry Mechanic 6[1].0.0.780\crack.exe
Infected with: Trojan.Mezzia.CY

C:\Documents and Settings\sebastien\Mes documents\Mes vidéos\PCTools Registry Mechanic 6[1].0.0.780\crack.exe
Disinfection failed

C:\Documents and Settings\sebastien\Mes documents\Mes vidéos\PCTools Registry Mechanic 6[1].0.0.780\crack.exe
Deleted

C:\Documents and Settings\sebastien\Mes documents\Mes vidéos\PCTools Registry Mechanic 6[1].0.0.780.rar=>keygen.exe
Infected with: Trojan.Vundo.EKW

C:\Documents and Settings\sebastien\Mes documents\Mes vidéos\PCTools Registry Mechanic 6[1].0.0.780.rar=>keygen.exe
Deleted

C:\Documents and Settings\sebastien\Mes documents\Mes vidéos\PCTools Registry Mechanic 6[1].0.0.780.rar
Update failed

C:\Documents and Settings\sebastien\Mes documents\Mes vidéos\PCTools Registry Mechanic 6[1].0.0.780.rar=>crack.exe
Infected with: Trojan.Mezzia.CY

C:\Documents and Settings\sebastien\Mes documents\Mes vidéos\PCTools Registry Mechanic 6[1].0.0.780.rar=>crack.exe
Disinfection failed

C:\Documents and Settings\sebastien\Mes documents\Mes vidéos\PCTools Registry Mechanic 6[1].0.0.780.rar=>crack.exe
Deleted

C:\Documents and Settings\sebastien\Mes documents\Mes vidéos\PCTools Registry Mechanic 6[1].0.0.780.rar
Update failed

C:\Program Files\eMule\Incoming\(Serial) nero burning rom v8.1.1.0 keygen by DEViANCE [Full].zip=>Setup.exe
Infected with: Trojan.Generic.167219

C:\Program Files\eMule\Incoming\(Serial) nero burning rom v8.1.1.0 keygen by DEViANCE [Full].zip=>Setup.exe
Deleted

C:\Program Files\eMule\Incoming\(Serial) nero burning rom v8.1.1.0 keygen by DEViANCE [Full].zip
Updated

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP11\A0006805.exe
Detected with: Application.Aseye.BEK

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP11\A0006805.exe
Disinfection failed

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP11\A0006805.exe
Deleted

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002579.msi=>(Embedded EXE)
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002579.msi=>(Embedded EXE)
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002579.msi=>(Embedded EXE)
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002580.ini
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002582.old
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002582.old=>(unicode)
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002583.cfg
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0000
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0001
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0002
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0003
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0004
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0005
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0006
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0007
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0008
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0009
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0010
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0010=>(NSIS g)
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0010=>(NSIS g)=>lzma_nsis0000
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0010=>(NSIS g)=>lzma_nsis0001
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002584.exe=>(NSIS o)=>lzma_nsis0011
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002585.lnk
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002586.lnk
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002587.lnk
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002588.lnk
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002589.lnk
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002590.lnk
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002591.lnk
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002592.ini
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002593.RDB
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002594.RDB
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002595.exe
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002596.RDB
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002597.lnk
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002598.dll
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002599.dll
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002600.dll
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002601.exe
Clean

C:\System Volume Information\_restore{665644EF-579F-4575-B83B-A77181E4D04E}\RP2\A0002602.exe
Clean

C:\upload_moi_ORDI_SEB.tar.gz=>upload_moi.tar=>WINDOWS/System32/wuxmxyih.exe
Infected with: Trojan.PrivacySet.A

C:\upload_moi_ORDI_SEB.tar.gz=>upload_moi.tar=>WINDOWS/System32/wuxmxyih.exe
Disinfection failed

C:\upload_moi_ORDI_SEB.tar.gz=>upload_moi.tar=>WINDOWS/System32/wuxmxyih.exe
Deleted

C:\upload_moi_ORDI_SEB.tar.gz=>upload_moi.tar
Updated

C:\upload_moi_ORDI_SEB.tar.gz
Updated

C:\WINDOWS\system32\wuxmxyih.exe
Infected with: Trojan.PrivacySet.A

C:\WINDOWS\system32\wuxmxyih.exe
Disinfection failed

C:\WINDOWS\system32\wuxmxyih.exe
Deleted

Réponse 35 / 43

ep44 Messages postés 7432 Statut Contributeur 3

Ferme toutes les applications en cours, puis télécharge ToolsCleaner2 sur ton Bureau.
http://a-rothstein.changelog.fr/TC/ToolsCleaner2.exe

Double clique sur ToolsCleaner2.exe >
puis Recherche
et sur Suppression
Note : ton bureau va disparaître, c'est normal. S'il n'apparaît pas à la fin du scan, fais la manip suivante :

CTRL+ALT+SUPP pour ouvrir le Gestionnaire des tâches.
Puis rends toi à l'onglet "Processus". Clique en haut à gauche sur Fichiers et choisis "Exécuter"

Tape explorer.exe et valide. Cela fera re-apparaître le Bureau

ensuite fait ceci (IMPORTANT)

=démarrer
=panneau de configuration
=système
=onglet Restauration système
=coche la case (Désactiver la restauration système)
=redémarre l'ordinateur
=réactive la ensuite

ensuite tient moi au courant si tout fonctionne correctement
@+

Réponse 36 / 43

neodu50 Messages postés 404 Statut Membre 3

Sa marche Impeccable !!
Une petite derniere question qui a mon avis doit pas etre compliqué pour toi sachant ce que tu vien de faire !!!
alors quand j'allume mon pc j'ai le choix entre 3 meme systeme d'exploitation ...

Comment faire pour en garder qu'un

Réponse 37 / 43

ep44 Messages postés 7432 Statut Contributeur 3

as tu essayer de reinstaller windows

si oui tu as du réiinstaller sans supprimer les partitions
ce qui à créer d'autre os (je pense)

tu vas sur poste de travail et tu fait clique droite et tu vas sur gérer ensuite gestion des disques
regarde combien de partition et combien d'os
@+

Réponse 38 / 43

neodu50 Messages postés 404 Statut Membre 3

je trouve pas gérer ! enfete si Xd g modifier le message

Réponse 39 / 43

ep44 Messages postés 7432 Statut Contributeur 3

alors??

Réponse 40 / 43

neodu50 Messages postés 404 Statut Membre 3

ALors,
deja sur ce windows que j'utilise j'ai partitionné mon DD comme sa g C: le principal & E: pour 3go de mémoire

JE te dis ce que je vois :

a coter de Disque 0 ; 55,88 go ; Connecté
- c'est ecrit 110 mo Non alloué

- (c:) 52,76 go NTFS
Sain (systeme)

- (E:)
3,01 Go NTFS
Sain

Discussions similaires

Impossible d'afficher le rapport de tableau croisé dynamique sur un rapport

écrire un rapport de travail

impossible d'afficher le tableau dynamique sur un rapport existant

Problém affichage du tableau croisé dynamique

Theme de rapport de stage option comptabilité

Rapport hijackthis

43 réponses

Votre réponse

Discussions similaires

Newsletters