Se connecter / S'enregistrer
Votre question

pubs intempestives; drive cleaner ; win antivirus ...[RESOLU]

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
1 Avril 2007 18:26:24

Bonjour,
depuis quelques temps lorsque je suis sur internet j'ai l'apparition de : drive cleaner; win antivirus et pleins d'autres pages publicitaires . De plus mon pc est trés lent.
Pourriez vous m'aider à les supprimer svp.

Voici mon log HijackThis:


Logfile of HijackThis v1.99.1
Scan saved at 18:20:40, on 01/04/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\arservice.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Media Manager\airsvcu.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\UAService7.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\ARPWRMSG.EXE
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
C:\Program Files\AGEIA Technologies\TrayIcon.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE
C:\HP\KBD\KBD.EXE
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
C:\DOCUME~1\!Max!\LOCALS~1\Temp\Rar$EX00.328\YASU.exe
C:\WINDOWS\ehome\EHShell.exe
C:\Program Files\Internet Explorer\iexplore.exe
c:\program files\fichiers communs\installshield\updateservice\isuspm.exe
c:\Program Files\Fichiers communs\InstallShield\UpdateService\agent.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\explorer.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {182B90A3-F372-438A-800C-6814B4DE417B} - C:\WINDOWS\system32\hggefcb.dll
O2 - BHO: (no name) - {454942CE-4EDC-45B6-A800-25A0DB94D5ED} - C:\WINDOWS\system32\geebc.dll
O2 - BHO: (no name) - {57E218E6-5A80-4f0c-AB25-83598F25D7E9} - C:\WINDOWS\system32\atjggrmr.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: (no name) - {D09E3135-AC48-45D5-BC7B-CA057D38A779} - C:\WINDOWS\system32\geebc.dll
O2 - BHO: (no name) - {DFD9C062-2ABC-4FB0-946A-10CB3441EF4E} - C:\WINDOWS\system32\geebc.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [ftutil2] rundll32.exe ftutil2.dll,SetWriteCacheMode
O4 - HKLM\..\Run: [AlwaysReady Power Message APP] ARPWRMSG.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
O4 - HKLM\..\Run: [HPHUPD08] c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
O4 - HKLM\..\Run: [AGEIA PhysX SysTray] C:\Program Files\AGEIA Technologies\TrayIcon.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [PlayerKiosquePlus] C:\Program Files\Lecteur CANALPLAY\PlayerKiosquePlus.exe /iconic
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [SoundService] rundll32.exe "C:\WINDOWS\system32\pygvngtn.dll",setvm
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE
O4 - Startup: Présentation de Media Manager.lnk = C:\Program Files\Fichiers communs\Microsoft Shared\Media Manager\SPLASHA.EXE
O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
O4 - Startup: Y'z ToolBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe
O4 - Global Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Pages liées - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: CANALPLAY Installer - http://www.canalplay.com/cabs/CanalInstaller.CAB
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab312...
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) -
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Contro...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Ap...
O16 - DPF: {A1F2F2CE-06AF-483C-9F12-D3BAA72477D6} (BatchDownloader Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Ap...
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.ca...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - AppInit_DLLs: ????????????????????
????:
O20 - Winlogon Notify: geebc - C:\WINDOWS\system32\geebc.dll
O20 - Winlogon Notify: hggefcb - C:\WINDOWS\SYSTEM32\hggefcb.dll
O20 - Winlogon Notify: jkhfd - C:\WINDOWS\system32\jkhfd.dll (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Service CANALPLAY - Canal+ Active - C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Sony DADC Austria AG. - C:\WINDOWS\system32\UAService7.exe

Autres pages sur : pubs intempestives drive cleaner win antivirus resolu

1 Avril 2007 18:35:19

moi aussi sa me fait chier drive cleaner, systeme doctor ,spyware secure... mais moi jpeux pas t'aider mais j'attends une réponse ac toi alr ;) 
1 Avril 2007 18:43:37

oui il y en a marre de ces pages de pubs et ces virus, mon ordi rame trop maintenant . En tout cas j'espere qu'on pourra nous aider. J'ai essayer de les supprimer avec spybot mais ça revient à chaque fois!
Contenus similaires
1 Avril 2007 18:49:03

moi aussi c pareil .. je démarre spybot quasiment tt le tps il les reconaît à chaque fois mais ils reviennent tout le temps :@
1 Avril 2007 19:12:41

Bonsoir Max611,

1)Télécharger VundoFix.exe (par Atribune) sur votre Bureau.
http://www.atribune.org/ccount/click.php?id=4

* Double-clique VundoFix.exe afin de le lancer.
* Clique sur le bouton Scan for Vundo.
* Lorsque le scan est complété, clique sur le bouton Remove Vundo.
* Une invite te demandera si tu veux supprimer les fichiers, clique YES
* Après avoir cliqué "Yes", le Bureau disparaîtra un moment lors de la suppression des fichiers.
* Tu verras une invite qui t'annonce que ton PC va s'éteindre ("shutdown"); clique OK
* Démarre ton PC à nouveau.
* Copie/colle le contenu du rapport situé dans C:\vundofix.txt

2)Repostes un log hijackthis
1 Avril 2007 19:38:20

dejà merci de m'aider.

voici le rapport vundofix:
VundoFix V6.1.4

Checking Java version...

Java version is 1.5.0.5

Java version is 1.5.0.6

Java version is 1.5.0.9

Scan started at 18:08:21 19/02/2007

Listing files found while scanning....

No infected files were found.


VundoFix V6.3.18

Checking Java version...

Java version is 1.5.0.5
Old versions of java are exploitable and should be removed.

Java version is 1.5.0.6
Old versions of java are exploitable and should be removed.

Java version is 1.5.0.9
Old versions of java are exploitable and should be removed.

Java version is 1.5.0.10

Java version is 1.5.0.11

Scan started at 19:16:32 01/04/2007

Listing files found while scanning....

C:\WINDOWS\system32\abvogvsw.dll
C:\WINDOWS\system32\cbeeg.bak1
C:\WINDOWS\system32\cbeeg.bak2
C:\WINDOWS\system32\cbeeg.ini
C:\WINDOWS\system32\cbeeg.ini2
C:\WINDOWS\system32\cbeeg.tmp
C:\WINDOWS\system32\cbxywvt.dll
C:\WINDOWS\system32\cvdlvevg.exe
C:\WINDOWS\system32\efhkj.ini
C:\WINDOWS\system32\geebc.dll
C:\WINDOWS\system32\gjggiawn.exe
C:\WINDOWS\system32\gkalvofb.dll
C:\WINDOWS\system32\gxamcjej.exe
C:\WINDOWS\system32\gxkvtmlr.exe
C:\WINDOWS\system32\hggeccd.dll
C:\WINDOWS\system32\hggefcb.dll
C:\WINDOWS\system32\iifccca.dll
C:\WINDOWS\system32\imkfiihc.exe
C:\WINDOWS\system32\iyagcypx.exe
C:\WINDOWS\system32\jkhfe.dll
C:\WINDOWS\system32\jkhfg.dll
C:\WINDOWS\system32\jlnmp.ini
C:\WINDOWS\system32\jpdcvaey.exe
C:\WINDOWS\system32\kwsygrqv.exe
C:\WINDOWS\system32\ljjkjhh.dll
C:\WINDOWS\system32\lpssyucg.exe
C:\WINDOWS\system32\mlfocuhr.exe
C:\WINDOWS\system32\mllmm.dll
C:\WINDOWS\system32\mmllm.ini
C:\WINDOWS\system32\mquwrwee.exe
C:\WINDOWS\system32\ndaemhte.exe
C:\WINDOWS\system32\ntgnvgyp.ini
C:\WINDOWS\system32\oaidcovo.exe
C:\WINDOWS\system32\ohraqnsi.exe
C:\WINDOWS\system32\opnolll.dll
C:\WINDOWS\system32\ovnocksk.exe
C:\WINDOWS\system32\pmnlj.dll
C:\WINDOWS\system32\pmnlk.dll
C:\WINDOWS\system32\prpsskpn.exe
C:\WINDOWS\system32\pygvngtn.dll
C:\WINDOWS\system32\rqrstqn.dll
C:\WINDOWS\system32\rtstv.ini
C:\WINDOWS\system32\rydrrgqr.exe
C:\WINDOWS\system32\ssqnkkh.dll
C:\WINDOWS\system32\ssqocibv.exe
C:\WINDOWS\system32\ssqolii.dll
C:\WINDOWS\system32\tlcdcphr.exe
C:\WINDOWS\system32\trdossal.exe
C:\WINDOWS\system32\trqddnqp.dll
C:\WINDOWS\system32\tuvsqro.dll
C:\WINDOWS\system32\tuvuvsr.dll
C:\WINDOWS\system32\tuvvutq.dll
C:\WINDOWS\system32\uedmtydq.exe
C:\WINDOWS\system32\uehmypeu.dll
C:\WINDOWS\system32\uepymheu.ini
C:\WINDOWS\system32\umrnyfhl.exe
C:\WINDOWS\system32\uofltxea.exe
C:\WINDOWS\system32\urpwiouc.dll
C:\WINDOWS\system32\urqnmji.dll
C:\WINDOWS\system32\urqomjh.dll
C:\WINDOWS\system32\urqqpqq.dll
C:\WINDOWS\system32\vdmwjgaj.exe
C:\WINDOWS\system32\vtstr.dll
C:\WINDOWS\system32\wjksjewq.exe
C:\WINDOWS\system32\wjwgsosm.exe
C:\WINDOWS\system32\wugrkgli.exe
C:\WINDOWS\system32\wvursrs.dll
C:\WINDOWS\system32\wyrpkild.exe
C:\WINDOWS\system32\xoalwluc.exe
C:\WINDOWS\system32\yayyxvu.dll
C:\WINDOWS\system32\ynpplobp.exe
C:\WINDOWS\system32\yxqutbtq.dll

Beginning removal...

Attempting to delete C:\WINDOWS\system32\abvogvsw.dll
C:\WINDOWS\system32\abvogvsw.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\cbeeg.bak1
C:\WINDOWS\system32\cbeeg.bak1 Has been deleted!

Attempting to delete C:\WINDOWS\system32\cbeeg.bak2
C:\WINDOWS\system32\cbeeg.bak2 Has been deleted!

Attempting to delete C:\WINDOWS\system32\cbeeg.ini
C:\WINDOWS\system32\cbeeg.ini Has been deleted!

Attempting to delete C:\WINDOWS\system32\cbeeg.ini2
C:\WINDOWS\system32\cbeeg.ini2 Has been deleted!

Attempting to delete C:\WINDOWS\system32\cbeeg.tmp
C:\WINDOWS\system32\cbeeg.tmp Has been deleted!

Attempting to delete C:\WINDOWS\system32\cbxywvt.dll
C:\WINDOWS\system32\cbxywvt.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\cvdlvevg.exe
C:\WINDOWS\system32\cvdlvevg.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\efhkj.ini
C:\WINDOWS\system32\efhkj.ini Has been deleted!

Attempting to delete C:\WINDOWS\system32\geebc.dll
C:\WINDOWS\system32\geebc.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\gjggiawn.exe
C:\WINDOWS\system32\gjggiawn.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\gkalvofb.dll
C:\WINDOWS\system32\gkalvofb.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\gxamcjej.exe
C:\WINDOWS\system32\gxamcjej.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\gxkvtmlr.exe
C:\WINDOWS\system32\gxkvtmlr.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\hggeccd.dll
C:\WINDOWS\system32\hggeccd.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\hggefcb.dll
C:\WINDOWS\system32\hggefcb.dll Could not be deleted.

Attempting to delete C:\WINDOWS\system32\iifccca.dll
C:\WINDOWS\system32\iifccca.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\imkfiihc.exe
C:\WINDOWS\system32\imkfiihc.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\iyagcypx.exe
C:\WINDOWS\system32\iyagcypx.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\jkhfe.dll
C:\WINDOWS\system32\jkhfe.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\jkhfg.dll
C:\WINDOWS\system32\jkhfg.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\jlnmp.ini
C:\WINDOWS\system32\jlnmp.ini Has been deleted!

Attempting to delete C:\WINDOWS\system32\jpdcvaey.exe
C:\WINDOWS\system32\jpdcvaey.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\kwsygrqv.exe
C:\WINDOWS\system32\kwsygrqv.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\ljjkjhh.dll
C:\WINDOWS\system32\ljjkjhh.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\lpssyucg.exe
C:\WINDOWS\system32\lpssyucg.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\mlfocuhr.exe
C:\WINDOWS\system32\mlfocuhr.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\mllmm.dll
C:\WINDOWS\system32\mllmm.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\mmllm.ini
C:\WINDOWS\system32\mmllm.ini Has been deleted!

Attempting to delete C:\WINDOWS\system32\mquwrwee.exe
C:\WINDOWS\system32\mquwrwee.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\ndaemhte.exe
C:\WINDOWS\system32\ndaemhte.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\ntgnvgyp.ini
C:\WINDOWS\system32\ntgnvgyp.ini Has been deleted!

Attempting to delete C:\WINDOWS\system32\oaidcovo.exe
C:\WINDOWS\system32\oaidcovo.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\ohraqnsi.exe
C:\WINDOWS\system32\ohraqnsi.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\opnolll.dll
C:\WINDOWS\system32\opnolll.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\ovnocksk.exe
C:\WINDOWS\system32\ovnocksk.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\pmnlj.dll
C:\WINDOWS\system32\pmnlj.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\pmnlk.dll
C:\WINDOWS\system32\pmnlk.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\prpsskpn.exe
C:\WINDOWS\system32\prpsskpn.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\pygvngtn.dll
C:\WINDOWS\system32\pygvngtn.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\rqrstqn.dll
C:\WINDOWS\system32\rqrstqn.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\rtstv.ini
C:\WINDOWS\system32\rtstv.ini Has been deleted!

Attempting to delete C:\WINDOWS\system32\rydrrgqr.exe
C:\WINDOWS\system32\rydrrgqr.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\ssqnkkh.dll
C:\WINDOWS\system32\ssqnkkh.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\ssqocibv.exe
C:\WINDOWS\system32\ssqocibv.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\ssqolii.dll
C:\WINDOWS\system32\ssqolii.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\tlcdcphr.exe
C:\WINDOWS\system32\tlcdcphr.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\trdossal.exe
C:\WINDOWS\system32\trdossal.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\trqddnqp.dll
C:\WINDOWS\system32\trqddnqp.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\tuvsqro.dll
C:\WINDOWS\system32\tuvsqro.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\tuvuvsr.dll
C:\WINDOWS\system32\tuvuvsr.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\tuvvutq.dll
C:\WINDOWS\system32\tuvvutq.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\uedmtydq.exe
C:\WINDOWS\system32\uedmtydq.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\uehmypeu.dll
C:\WINDOWS\system32\uehmypeu.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\uepymheu.ini
C:\WINDOWS\system32\uepymheu.ini Has been deleted!

Attempting to delete C:\WINDOWS\system32\umrnyfhl.exe
C:\WINDOWS\system32\umrnyfhl.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\uofltxea.exe
C:\WINDOWS\system32\uofltxea.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\urqnmji.dll
C:\WINDOWS\system32\urqnmji.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\urqomjh.dll
C:\WINDOWS\system32\urqomjh.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\urqqpqq.dll
C:\WINDOWS\system32\urqqpqq.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\vdmwjgaj.exe
C:\WINDOWS\system32\vdmwjgaj.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\vtstr.dll
C:\WINDOWS\system32\vtstr.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\wjksjewq.exe
C:\WINDOWS\system32\wjksjewq.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\wjwgsosm.exe
C:\WINDOWS\system32\wjwgsosm.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\wugrkgli.exe
C:\WINDOWS\system32\wugrkgli.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\wvursrs.dll
C:\WINDOWS\system32\wvursrs.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\wyrpkild.exe
C:\WINDOWS\system32\wyrpkild.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\xoalwluc.exe
C:\WINDOWS\system32\xoalwluc.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\yayyxvu.dll
C:\WINDOWS\system32\yayyxvu.dll Has been deleted!

Attempting to delete C:\WINDOWS\system32\ynpplobp.exe
C:\WINDOWS\system32\ynpplobp.exe Has been deleted!

Attempting to delete C:\WINDOWS\system32\yxqutbtq.dll
C:\WINDOWS\system32\yxqutbtq.dll Has been deleted!

Performing Repairs to the registry.
Done!



puis voice le log hijackthis:

ogfile of HijackThis v1.99.1
Scan saved at 19:33:43, on 01/04/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\arservice.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Media Manager\airsvcu.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\UAService7.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\ARPWRMSG.EXE
C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
C:\Program Files\AGEIA Technologies\TrayIcon.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE
C:\HP\KBD\KBD.EXE
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {454942CE-4EDC-45B6-A800-25A0DB94D5ED} - C:\WINDOWS\system32\geebc.dll (file missing)
O2 - BHO: (no name) - {57E218E6-5A80-4f0c-AB25-83598F25D7E9} - C:\WINDOWS\system32\atjggrmr.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: (no name) - {D09E3135-AC48-45D5-BC7B-CA057D38A779} - C:\WINDOWS\system32\geebc.dll (file missing)
O2 - BHO: (no name) - {DFD9C062-2ABC-4FB0-946A-10CB3441EF4E} - C:\WINDOWS\system32\geebc.dll (file missing)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [ftutil2] rundll32.exe ftutil2.dll,SetWriteCacheMode
O4 - HKLM\..\Run: [AlwaysReady Power Message APP] ARPWRMSG.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
O4 - HKLM\..\Run: [HPHUPD08] c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
O4 - HKLM\..\Run: [AGEIA PhysX SysTray] C:\Program Files\AGEIA Technologies\TrayIcon.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [PlayerKiosquePlus] C:\Program Files\Lecteur CANALPLAY\PlayerKiosquePlus.exe /iconic
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [SoundService] rundll32.exe "C:\WINDOWS\system32\pygvngtn.dll",setvm
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE
O4 - Startup: Présentation de Media Manager.lnk = C:\Program Files\Fichiers communs\Microsoft Shared\Media Manager\SPLASHA.EXE
O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
O4 - Startup: Y'z ToolBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe
O4 - Global Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Pages liées - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: CANALPLAY Installer - http://www.canalplay.com/cabs/CanalInstaller.CAB
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab312...
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) -
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Contro...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Ap...
O16 - DPF: {A1F2F2CE-06AF-483C-9F12-D3BAA72477D6} (BatchDownloader Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Ap...
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.ca...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - AppInit_DLLs: ????????????????????
????:
O20 - Winlogon Notify: jkhfd - C:\WINDOWS\system32\jkhfd.dll (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Service CANALPLAY - Canal+ Active - C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Sony DADC Austria AG. - C:\WINDOWS\system32\UAService7.exe


Sinon en redemarrant l'ordi j'ai eu un message d'erreur comme quoi le module :
c:\windows\system32\pygvngtn.dll est introuvable .
1 Avril 2007 19:50:31

Citation :
c:\windows\system32\pygvngtn.dll est introuvable .
Pas de soucis, on enlève celà de suite. Dis donc tu étais gâté :D 

1)Lances hijackthis, do a scan only. Coches sur la gauche ces lignes :

O2 - BHO: (no name) - {454942CE-4EDC-45B6-A800-25A0DB94D5ED} - C:\WINDOWS\system32\geebc.dll (file missing)
O2 - BHO: (no name) - {57E218E6-5A80-4f0c-AB25-83598F25D7E9} - C:\WINDOWS\system32\atjggrmr.dll (file missing)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {D09E3135-AC48-45D5-BC7B-CA057D38A779} - C:\WINDOWS\system32\geebc.dll (file missing)
O2 - BHO: (no name) - {DFD9C062-2ABC-4FB0-946A-10CB3441EF4E} - C:\WINDOWS\system32\geebc.dll (file missing)
O4 - HKLM\..\Run: [SoundService] rundll32.exe "C:\WINDOWS\system32\pygvngtn.dll",setvm
O20 - AppInit_DLLs: ????????????????????
????:
O20 - Winlogon Notify: jkhfd - C:\WINDOWS\system32\jkhfd.dll (file missing)

Cliques ensuite sur fixchecked et valides.Fermes Hijackthis.

2)Redémarres ton Pc et repostes un log hijackthis. Ton message aura aussi disparu normalement.

3)Fais un scan en ligne avec Internet Explorer :
http://www.bitdefender.fr/bd/site/page.php
(cliques à gauche sur scan online).
A la fin du scan, enregistres le rapport en format texte. Puis copies/colles son contenu ici
1 Avril 2007 20:25:03

merci effectivement le message d'erreur a disparu ;)  !
en attendant la fin du scan en ligne, voici le log hijackthis:Logfile of HijackThis v1.99.1
Scan saved at 20:20:56, on 01/04/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
C:\Program Files\AGEIA Technologies\TrayIcon.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE
C:\HP\KBD\KBD.EXE
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe
C:\WINDOWS\arservice.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Media Manager\airsvcu.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\UAService7.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [ftutil2] rundll32.exe ftutil2.dll,SetWriteCacheMode
O4 - HKLM\..\Run: [AlwaysReady Power Message APP] ARPWRMSG.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe
O4 - HKLM\..\Run: [HPHUPD08] c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
O4 - HKLM\..\Run: [AGEIA PhysX SysTray] C:\Program Files\AGEIA Technologies\TrayIcon.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [LVCOMS] C:\Program Files\Fichiers communs\Logitech\QCDriver\LVCOMS.EXE
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [PlayerKiosquePlus] C:\Program Files\Lecteur CANALPLAY\PlayerKiosquePlus.exe /iconic
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE
O4 - Startup: Présentation de Media Manager.lnk = C:\Program Files\Fichiers communs\Microsoft Shared\Media Manager\SPLASHA.EXE
O4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\ObjectDock\ObjectDock.exe
O4 - Startup: Y'z ToolBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat\YzToolbar\YzToolBar.exe
O4 - Global Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Pages liées - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Aide à la connexion - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: CANALPLAY Installer - http://www.canalplay.com/cabs/CanalInstaller.CAB
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab312...
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8....
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} (ExentInf Class) -
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Contro...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Ap...
O16 - DPF: {A1F2F2CE-06AF-483C-9F12-D3BAA72477D6} (BatchDownloader Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Ap...
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab47946.ca...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Service CANALPLAY - Canal+ Active - C:\Program Files\Lecteur CANALPLAY\CanalPlayService.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Sony DADC Austria AG. - C:\WINDOWS\system32\UAService7.exe

2 Avril 2007 08:44:13

BitDefender Online Scanner



Scan report generated at: Sun, Apr 01, 2007 - 23:32:06





Scan path: C:\;D:\;E:\;F:\;G:\;H:\;I:\;J:\;







Statistics

Time
03:14:41

Files
876237

Folders
12617

Boot Sectors
3

Archives
17300

Packed Files
69309




Results

Identified Viruses
7

Infected Files
126

Suspect Files
0

Warnings
0

Disinfected
0

Deleted Files
126




Engines Info

Virus Definitions
416619

Engine build
AVCORE v1.0 (build 2397) (i386) (Feb 8 2007 14:24:08)

Scan plugins
14

Archive plugins
38

Unpack plugins
6

E-mail plugins
6

System plugins
1




Scan Settings

First Action
Disinfect

Second Action
Delete

Heuristics
Yes

Enable Warnings
Yes

Scanned Extensions
*;

Exclude Extensions


Scan Emails
Yes

Scan Archives
Yes

Scan Packed
Yes

Scan Files
Yes

Scan Boot
Yes




Scanned File
Status

C:\Documents and Settings\HP_Administrateur\Local Settings\Temp\wwhcacfj.exe
Infected with: Trojan.Agent.ACL

C:\Documents and Settings\HP_Administrateur\Local Settings\Temp\wwhcacfj.exe
Disinfection failed

C:\Documents and Settings\HP_Administrateur\Local Settings\Temp\wwhcacfj.exe
Deleted

C:\Documents and Settings\Lucie\Local Settings\Temp\hdttahch.exe
Infected with: Trojan.Agent.ACL

C:\Documents and Settings\Lucie\Local Settings\Temp\hdttahch.exe
Disinfection failed

C:\Documents and Settings\Lucie\Local Settings\Temp\hdttahch.exe
Deleted

C:\Documents and Settings\Lucie\Local Settings\Temp\vialwvet.dll
Infected with: Trojan.Virtumod.EB

C:\Documents and Settings\Lucie\Local Settings\Temp\vialwvet.dll
Disinfection failed

C:\Documents and Settings\Lucie\Local Settings\Temp\vialwvet.dll
Deleted

C:\Documents and Settings\Lucie\Local Settings\Temporary Internet Files\Content.IE5\R4D5RDU3\cr_obj[1].htm
Infected with: Generic.XPL.ADODB.71D635A5

C:\Documents and Settings\Lucie\Local Settings\Temporary Internet Files\Content.IE5\R4D5RDU3\cr_obj[1].htm
Disinfection failed

C:\Documents and Settings\Lucie\Local Settings\Temporary Internet Files\Content.IE5\R4D5RDU3\cr_obj[1].htm
Deleted

C:\Documents and Settings\Lucie\Local Settings\Temporary Internet Files\Content.IE5\YJGDFKE6\saf[1].exx
Infected with: MemScan:Trojan.Vundo.AD

C:\Documents and Settings\Lucie\Local Settings\Temporary Internet Files\Content.IE5\YJGDFKE6\saf[1].exx
Disinfection failed

C:\Documents and Settings\Lucie\Local Settings\Temporary Internet Files\Content.IE5\YJGDFKE6\saf[1].exx
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP391\A0084474.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP391\A0084474.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP391\A0084474.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP391\A0084475.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP391\A0084475.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP391\A0084475.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP391\A0084476.dll
Infected with: Trojan.Virtumod.EB

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP391\A0084476.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP391\A0084476.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP391\A0084477.dll
Infected with: Trojan.Virtumod.EB

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP391\A0084477.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP391\A0084477.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP408\A0092304.dll
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP408\A0092304.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP408\A0092304.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP409\A0093270.dll
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP409\A0093270.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP409\A0093270.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP409\A0093291.dll
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP409\A0093291.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP409\A0093291.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP410\A0093328.dll
Infected with: Trojan.Virtumod.JB

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP410\A0093328.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP410\A0093328.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP410\A0094350.dll
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP410\A0094350.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP410\A0094350.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP411\A0094360.dll
Infected with: MemScan:Trojan.Spy.Agent.NU

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP411\A0094360.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP411\A0094360.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP411\A0094386.dll
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP411\A0094386.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP411\A0094386.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP411\A0095379.dll
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP411\A0095379.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP411\A0095379.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP412\A0095399.dll
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP412\A0095399.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP412\A0095399.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP412\A0095411.dll
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP412\A0095411.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP412\A0095411.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP413\A0095457.dll
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP413\A0095457.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP413\A0095457.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP414\A0095607.dll
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP414\A0095607.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP414\A0095607.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP416\A0095688.dll
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP416\A0095688.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP416\A0095688.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095823.dll
Infected with: Trojan.Virtumod.EB

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095823.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095823.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095825.dll
Infected with: Trojan.Vundo.AD

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095825.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095825.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095826.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095826.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095826.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095829.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095829.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095829.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095830.dll
Infected with: Trojan.Virtumod.EB

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095830.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095830.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095831.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095831.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095831.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095832.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095832.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095832.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095833.dll
Infected with: Trojan.Vundo.AD

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095833.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095833.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095834.dll
Infected with: Trojan.Vundo.AD

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095834.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095834.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095835.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095835.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095835.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095836.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095836.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095836.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095840.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095840.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095840.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095841.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095841.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095841.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095842.dll
Infected with: Trojan.Vundo.AD

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095842.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095842.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095843.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095843.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095843.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095844.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095844.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095844.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095847.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095847.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095847.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095848.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095848.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095848.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095850.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095850.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095850.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095851.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095851.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095851.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095852.dll
Infected with: Trojan.Vundo.AD

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095852.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095852.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095853.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095853.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095853.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095856.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095856.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095856.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095857.dll
Infected with: Trojan.Virtumod.JB

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095857.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095857.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095858.dll
Infected with: Trojan.Vundo.AD

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095858.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095858.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095860.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095860.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095860.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095861.dll
Infected with: Trojan.Vundo.AD

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095861.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095861.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095862.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095862.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095862.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095863.dll
Infected with: Trojan.Vundo.AD

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095863.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095863.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095864.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095864.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095864.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095865.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095865.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095865.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095866.dll
Infected with: Trojan.Virtumod.EB

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095866.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095866.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095867.dll
Infected with: Trojan.Vundo.AD

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095867.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095867.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095868.dll
Infected with: Trojan.Vundo.AD

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095868.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095868.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095869.dll
Infected with: Trojan.Vundo.AD

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095869.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095869.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095870.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095870.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095870.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095871.dll
Infected with: Trojan.Virtumod.JB

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095871.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095871.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095873.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095873.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095873.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095874.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095874.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095874.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095875.dll
Infected with: Trojan.Vundo.AD

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095875.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095875.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095876.dll
Infected with: Trojan.Vundo.AD

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095876.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095876.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095877.dll
Infected with: Trojan.Vundo.AD

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095877.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095877.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095878.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095878.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095878.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095880.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095880.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095880.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095881.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095881.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095881.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095882.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095882.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095882.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095883.dll
Infected with: Trojan.Vundo.AD

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095883.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095883.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095884.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095884.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095884.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095885.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095885.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095885.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095886.dll
Infected with: Trojan.Vundo.AD

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095886.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095886.dll
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095887.exe
Infected with: Trojan.Agent.ACL

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095887.exe
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095887.exe
Deleted

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095888.dll
Infected with: Trojan.Virtumod.EB

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095888.dll
Disinfection failed

C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP417\A0095888.dll
Deleted

C:\VundoFix Backups\abvogvsw.dll.bad
Infected with: Trojan.Virtumod.EB

C:\VundoFix Backups\abvogvsw.dll.bad
Disinfection failed

C:\VundoFix Backups\abvogvsw.dll.bad
Deleted

C:\VundoFix Backups\cbxywvt.dll.bad
Infected with: Trojan.Vundo.AD

C:\VundoFix Backups\cbxywvt.dll.bad
Disinfection failed

C:\VundoFix Backups\cbxywvt.dll.bad
Deleted

C:\VundoFix Backups\cvdlvevg.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\cvdlvevg.exe.bad
Disinfection failed

C:\VundoFix Backups\cvdlvevg.exe.bad
Deleted

C:\VundoFix Backups\gjggiawn.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\gjggiawn.exe.bad
Disinfection failed

C:\VundoFix Backups\gjggiawn.exe.bad
Deleted

C:\VundoFix Backups\gkalvofb.dll.bad
Infected with: Trojan.Virtumod.EB

C:\VundoFix Backups\gkalvofb.dll.bad
Disinfection failed

C:\VundoFix Backups\gkalvofb.dll.bad
Deleted

C:\VundoFix Backups\gxamcjej.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\gxamcjej.exe.bad
Disinfection failed

C:\VundoFix Backups\gxamcjej.exe.bad
Deleted

C:\VundoFix Backups\gxkvtmlr.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\gxkvtmlr.exe.bad
Disinfection failed

C:\VundoFix Backups\gxkvtmlr.exe.bad
Deleted

C:\VundoFix Backups\hggeccd.dll.bad
Infected with: Trojan.Vundo.AD

C:\VundoFix Backups\hggeccd.dll.bad
Disinfection failed

C:\VundoFix Backups\hggeccd.dll.bad
Deleted

C:\VundoFix Backups\iifccca.dll.bad
Infected with: Trojan.Vundo.AD

C:\VundoFix Backups\iifccca.dll.bad
Disinfection failed

C:\VundoFix Backups\iifccca.dll.bad
Deleted

C:\VundoFix Backups\imkfiihc.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\imkfiihc.exe.bad
Disinfection failed

C:\VundoFix Backups\imkfiihc.exe.bad
Deleted

C:\VundoFix Backups\iyagcypx.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\iyagcypx.exe.bad
Disinfection failed

C:\VundoFix Backups\iyagcypx.exe.bad
Deleted

C:\VundoFix Backups\jpdcvaey.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\jpdcvaey.exe.bad
Disinfection failed

C:\VundoFix Backups\jpdcvaey.exe.bad
Deleted

C:\VundoFix Backups\kwsygrqv.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\kwsygrqv.exe.bad
Disinfection failed

C:\VundoFix Backups\kwsygrqv.exe.bad
Deleted

C:\VundoFix Backups\ljjkjhh.dll.bad
Infected with: Trojan.Vundo.AD

C:\VundoFix Backups\ljjkjhh.dll.bad
Disinfection failed

C:\VundoFix Backups\ljjkjhh.dll.bad
Deleted

C:\VundoFix Backups\lpssyucg.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\lpssyucg.exe.bad
Disinfection failed

C:\VundoFix Backups\lpssyucg.exe.bad
Deleted

C:\VundoFix Backups\mlfocuhr.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\mlfocuhr.exe.bad
Disinfection failed

C:\VundoFix Backups\mlfocuhr.exe.bad
Deleted

C:\VundoFix Backups\mquwrwee.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\mquwrwee.exe.bad
Disinfection failed

C:\VundoFix Backups\mquwrwee.exe.bad
Deleted

C:\VundoFix Backups\ndaemhte.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\ndaemhte.exe.bad
Disinfection failed

C:\VundoFix Backups\ndaemhte.exe.bad
Deleted

C:\VundoFix Backups\oaidcovo.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\oaidcovo.exe.bad
Disinfection failed

C:\VundoFix Backups\oaidcovo.exe.bad
Deleted

C:\VundoFix Backups\ohraqnsi.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\ohraqnsi.exe.bad
Disinfection failed

C:\VundoFix Backups\ohraqnsi.exe.bad
Deleted

C:\VundoFix Backups\opnolll.dll.bad
Infected with: Trojan.Vundo.AD

C:\VundoFix Backups\opnolll.dll.bad
Disinfection failed

C:\VundoFix Backups\opnolll.dll.bad
Deleted

C:\VundoFix Backups\ovnocksk.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\ovnocksk.exe.bad
Disinfection failed

C:\VundoFix Backups\ovnocksk.exe.bad
Deleted

C:\VundoFix Backups\prpsskpn.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\prpsskpn.exe.bad
Disinfection failed

C:\VundoFix Backups\prpsskpn.exe.bad
Deleted

C:\VundoFix Backups\pygvngtn.dll.bad
Infected with: Trojan.Virtumod.JB

C:\VundoFix Backups\pygvngtn.dll.bad
Disinfection failed

C:\VundoFix Backups\pygvngtn.dll.bad
Deleted

C:\VundoFix Backups\rqrstqn.dll.bad
Infected with: Trojan.Vundo.AD

C:\VundoFix Backups\rqrstqn.dll.bad
Disinfection failed

C:\VundoFix Backups\rqrstqn.dll.bad
Deleted

C:\VundoFix Backups\rydrrgqr.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\rydrrgqr.exe.bad
Disinfection failed

C:\VundoFix Backups\rydrrgqr.exe.bad
Deleted

C:\VundoFix Backups\ssqnkkh.dll.bad
Infected with: Trojan.Vundo.AD

C:\VundoFix Backups\ssqnkkh.dll.bad
Disinfection failed

C:\VundoFix Backups\ssqnkkh.dll.bad
Deleted

C:\VundoFix Backups\ssqocibv.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\ssqocibv.exe.bad
Disinfection failed

C:\VundoFix Backups\ssqocibv.exe.bad
Deleted

C:\VundoFix Backups\ssqolii.dll.bad
Infected with: Trojan.Vundo.AD

C:\VundoFix Backups\ssqolii.dll.bad
Disinfection failed

C:\VundoFix Backups\ssqolii.dll.bad
Deleted

C:\VundoFix Backups\tlcdcphr.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\tlcdcphr.exe.bad
Disinfection failed

C:\VundoFix Backups\tlcdcphr.exe.bad
Deleted

C:\VundoFix Backups\trdossal.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\trdossal.exe.bad
Disinfection failed

C:\VundoFix Backups\trdossal.exe.bad
Deleted

C:\VundoFix Backups\trqddnqp.dll.bad
Infected with: Trojan.Virtumod.EB

C:\VundoFix Backups\trqddnqp.dll.bad
Disinfection failed

C:\VundoFix Backups\trqddnqp.dll.bad
Deleted

C:\VundoFix Backups\tuvsqro.dll.bad
Infected with: Trojan.Vundo.AD

C:\VundoFix Backups\tuvsqro.dll.bad
Disinfection failed

C:\VundoFix Backups\tuvsqro.dll.bad
Deleted

C:\VundoFix Backups\tuvuvsr.dll.bad
Infected with: Trojan.Vundo.AD

C:\VundoFix Backups\tuvuvsr.dll.bad
Disinfection failed

C:\VundoFix Backups\tuvuvsr.dll.bad
Deleted

C:\VundoFix Backups\tuvvutq.dll.bad
Infected with: Trojan.Vundo.AD

C:\VundoFix Backups\tuvvutq.dll.bad
Disinfection failed

C:\VundoFix Backups\tuvvutq.dll.bad
Deleted

C:\VundoFix Backups\uedmtydq.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\uedmtydq.exe.bad
Disinfection failed

C:\VundoFix Backups\uedmtydq.exe.bad
Deleted

C:\VundoFix Backups\uehmypeu.dll.bad
Infected with: Trojan.Virtumod.JB

C:\VundoFix Backups\uehmypeu.dll.bad
Disinfection failed

C:\VundoFix Backups\uehmypeu.dll.bad
Deleted

C:\VundoFix Backups\umrnyfhl.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\umrnyfhl.exe.bad
Disinfection failed

C:\VundoFix Backups\umrnyfhl.exe.bad
Deleted

C:\VundoFix Backups\uofltxea.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\uofltxea.exe.bad
Disinfection failed

C:\VundoFix Backups\uofltxea.exe.bad
Deleted

C:\VundoFix Backups\urqnmji.dll.bad
Infected with: Trojan.Vundo.AD

C:\VundoFix Backups\urqnmji.dll.bad
Disinfection failed

C:\VundoFix Backups\urqnmji.dll.bad
Deleted

C:\VundoFix Backups\urqomjh.dll.bad
Infected with: Trojan.Vundo.AD

C:\VundoFix Backups\urqomjh.dll.bad
Disinfection failed

C:\VundoFix Backups\urqomjh.dll.bad
Deleted

C:\VundoFix Backups\urqqpqq.dll.bad
Infected with: Trojan.Vundo.AD

C:\VundoFix Backups\urqqpqq.dll.bad
Disinfection failed

C:\VundoFix Backups\urqqpqq.dll.bad
Deleted

C:\VundoFix Backups\vdmwjgaj.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\vdmwjgaj.exe.bad
Disinfection failed

C:\VundoFix Backups\vdmwjgaj.exe.bad
Deleted

C:\VundoFix Backups\wjksjewq.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\wjksjewq.exe.bad
Disinfection failed

C:\VundoFix Backups\wjksjewq.exe.bad
Deleted

C:\VundoFix Backups\wjwgsosm.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\wjwgsosm.exe.bad
Disinfection failed

C:\VundoFix Backups\wjwgsosm.exe.bad
Deleted

C:\VundoFix Backups\wugrkgli.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\wugrkgli.exe.bad
Disinfection failed

C:\VundoFix Backups\wugrkgli.exe.bad
Deleted

C:\VundoFix Backups\wvursrs.dll.bad
Infected with: Trojan.Vundo.AD

C:\VundoFix Backups\wvursrs.dll.bad
Disinfection failed

C:\VundoFix Backups\wvursrs.dll.bad
Deleted

C:\VundoFix Backups\wyrpkild.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\wyrpkild.exe.bad
Disinfection failed

C:\VundoFix Backups\wyrpkild.exe.bad
Deleted

C:\VundoFix Backups\xoalwluc.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\xoalwluc.exe.bad
Disinfection failed

C:\VundoFix Backups\xoalwluc.exe.bad
Deleted

C:\VundoFix Backups\yayyxvu.dll.bad
Infected with: Trojan.Vundo.AD

C:\VundoFix Backups\yayyxvu.dll.bad
Disinfection failed

C:\VundoFix Backups\yayyxvu.dll.bad
Deleted

C:\VundoFix Backups\ynpplobp.exe.bad
Infected with: Trojan.Agent.ACL

C:\VundoFix Backups\ynpplobp.exe.bad
Disinfection failed

C:\VundoFix Backups\ynpplobp.exe.bad
Deleted

C:\VundoFix Backups\yxqutbtq.dll.bad
Infected with: Trojan.Virtumod.EB

C:\VundoFix Backups\yxqutbtq.dll.bad
Disinfection failed

C:\VundoFix Backups\yxqutbtq.dll.bad
Deleted













2 Avril 2007 09:44:32

:hello: 

Télécharge sur ton bureau : http://www.malekal.com/download/clean.zip
Une fois sur le bureau, tu fais un clic droit sur ton fichier clean.zip et dans le menu déroulant, tu clics sur extrait tout ou extraire ici.
Cela va créer un dossier clean.
Double-clic sur ce dossier clean, tu y trouveras dedans plusieurs fichiers.
Double-clic sur clean. Cela va ouvrir une fenêtre noire.
Un menu va apparaître, choisis l'option 1 en appuyant sur la touche 1 de ton clavier.
Clean va travailler.
Un rapport Va etre généré, colle le contenu entier ici.

2 Avril 2007 10:52:21

bonjour,
voici le rapport clean:

Rapport clean par Malekal_morte - http://www.malekal.com
Option 1, executee le 02/04/2007 a 10:49:41,60

*** Recherche de fichiers sur C:
C:\StubInstaller.exe FOUND
C:\unwise.exe FOUND

*** Recherche des fichiers dans C:\WINDOWS\

*** Recherche des fichiers dans C:\WINDOWS\system32
C:\WINDOWS\system32\exec1.exe FOUND
C:\WINDOWS\system32\mcrh.tmp FOUND
C:\WINDOWS\system32\Nx.exe FOUND

"C:\Program Files\DaemonTools_WhenUSave_Installer\" FOUND
*** Fin du rapport !
2 Avril 2007 11:37:07

1)Télécharge et installe AVG anti-spyware:
http://downloads.grisoft.cz/softw/70/filedir/inst/avgas...
Tutorial : http://www.malekal.com/tutorial_AVG_AntiSpyware.html
Mets le à jour à partir du menu Mise à jour en haut. C'est tout pour l'instant.

Copies la suite dans ton blocnote

Redémarre en mode sans échec. Si tu sais pas comment regardes le lien ci dessous. Privilégies la méthode avec la touche F8:
https://www.microsoft.com/technet/prodtechnol/windowsse...

2)Ouvre AVG Anti-Spyware et clic sur l'onglet Analyse, puis le sous-onglet Paramètres
- Sélectionne dans Comment Réagir ? Quarantine. (voir l'aide l'aide AVG Anti-Spyware)
- Reviens au sous-onglet Analyser puis clique sur Analyse complète du système.
---> Le scan démarre.
A la fin clique sur Appliquer toutes les actions, les éléments doivent alors être déplacés en quarantaine.
Puis clique sur Enregistrer le rapport d'analyse et enregistre le rapport sur le Bureau.

3)Double-clic sur clean. Cela va ouvrir une fenêtre noire.
Un menu va apparaître, choisis l'option 2 en appuyant sur la touche 2 de ton clavier.
Clean va travailler.
Un rapport Va etre généré. Sauvegardes-le

4)Redémarres normalement et postes le rappor AVG + celui de clean
2 Avril 2007 13:10:03

voila j'ai fait le scan avg :

AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 12:54:19 02/04/2007

+ Résultat de l'analyse:



C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP413\A0095421.exe -> Backdoor.PoisonIvy.j : Nettoyé.
C:\System Volume Information\_restore{512DF77D-45B5-4AE1-9C2A-EC48B0F584C1}\RP393\A0085613.exe -> Backdoor.SdBot.bdy : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Local Settings\Temp\cntmgpnu.dll -> Logger.VBStat.h : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Local Settings\Temp\qsldtucb.dll -> Logger.VBStat.h : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Local Settings\Temp\rkommtpm.dll -> Logger.VBStat.h : Nettoyé.
:mozilla.6:C:\Documents and Settings\!Max!\Application Data\Mozilla\Firefox\Profiles\xn9cdacr.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.7:C:\Documents and Settings\!Max!\Application Data\Mozilla\Firefox\Profiles\xn9cdacr.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@www.abcsearch[1].txt -> TrackingCookie.Abcsearch : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@cpvfeed[2].txt -> TrackingCookie.Cpvfeed : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@enhance[2].txt -> TrackingCookie.Enhance : Nettoyé.
C:\Documents and Settings\!Max!\Cookies\!max!@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\!Max!\Cookies\!max!@mediaplex[2].txt -> TrackingCookie.Mediaplex : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@www.myaffiliateprogram[1].txt -> TrackingCookie.Myaffiliateprogram : Nettoyé.
C:\Documents and Settings\!Max!\Cookies\!max!@www.paypal[2].txt -> TrackingCookie.Paypal : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@www.paypal[1].txt -> TrackingCookie.Paypal : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : Nettoyé.
:mozilla.18:C:\Documents and Settings\!Max!\Application Data\Mozilla\Firefox\Profiles\xn9cdacr.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.19:C:\Documents and Settings\!Max!\Application Data\Mozilla\Firefox\Profiles\xn9cdacr.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.20:C:\Documents and Settings\!Max!\Application Data\Mozilla\Firefox\Profiles\xn9cdacr.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\!Max!\Cookies\!max!@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.11:C:\Documents and Settings\!Max!\Application Data\Mozilla\Firefox\Profiles\xn9cdacr.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.12:C:\Documents and Settings\!Max!\Application Data\Mozilla\Firefox\Profiles\xn9cdacr.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\HP_Administrateur\Cookies\hp_administrateur@m.webtrends[2].txt -> TrackingCookie.Webtrends : Nettoyé.


Fin du rapport

puis voici le rapport clean :

Script execute en mode sans echec
Rapport clean par Malekal_morte - http://www.malekal.com
Option 2, executee le 02/04/2007 a 12:56:23,64

Microsoft Windows XP [version 5.1.2600]

*** Suppression de fichiers sur C:
tentative de suppression de C:\StubInstaller.exe
tentative de suppression de C:\unwise.exe

*** Suppression des fichiers dans C:\WINDOWS\

*** Suppression des fichiers dans C:\WINDOWS\system32
tentative de suppression de C:\WINDOWS\system32\exec1.exe
tentative de suppression de C:\WINDOWS\system32\mcrh.tmp
tentative de suppression de C:\WINDOWS\system32\Nx.exe

tentative de suppression de "C:\Program Files\DaemonTools_WhenUSave_Installer\"

*** Suppression des clefs du registre effectuee..
*** Fin du rapport !

Merci pour l'aide ;) 
2 Avril 2007 13:11:56

Ok,
refais maintenant un nouveau scan en ligne chez bitdefender
2 Avril 2007 16:30:36

:hello: 
c'est bon je crois que je n'ai enfin plus de virus ni de pages qui s'ouvrent !
Merci beaucoup de ton aide IL-MAFIOSO!! ;) 

voici le rapport bitdefender:

Time
03:10:29

Files
798664

Folders
12607

Boot Sectors
3

Archives
17304

Packed Files
64283




Results

Identified Viruses
0

Infected Files
0

Suspect Files
0

Warnings
0

Disinfected
0

Deleted Files
0




Engines Info

Virus Definitions
416757

Engine build
AVCORE v1.0 (build 2397) (i386) (Feb 8 2007 14:24:08)

Scan plugins
14

Archive plugins
38

Unpack plugins
6

E-mail plugins
6

System plugins
1




Scan Settings

First Action
Disinfect

Second Action
Delete

Heuristics
Yes

Enable Warnings
Yes

Scanned Extensions
*;

Exclude Extensions


Scan Emails
Yes

Scan Archives
Yes

Scan Packed
Yes

Scan Files
Yes

Scan Boot
Yes




Scanned File
Status

No virus found.


2 Avril 2007 16:33:01

Ok,

1)Supprimes ce qu'on a utilisé. Regardes avant dans ajout/supp des programmes puis supprimes le reste manuellement.
Supprimes aussi le dossier en gras :

C:\VundoFix Backups et vides ta corbeille.

2)si ton problème est résolu, Ajoutes alors [Résolu] au titre. Pour cela :
* Cliques, dans votre premier message, sur le bouton "Editer"
* Rajoutes la mention à votre titre
* Cliques ensuite sur "Valider ton message"
2 Avril 2007 16:46:16

voilà qui est fait, encore merci pour l'aide !
2 Avril 2007 17:01:14

:jap: 

Bon surf.

@ +
Tom's guide dans le monde
  • Allemagne
  • Italie
  • Irlande
  • Royaume Uni
  • Etats Unis
Suivre Tom's Guide
Inscrivez-vous à la Newsletter
  • ajouter à twitter
  • ajouter à facebook
  • ajouter un flux RSS