Ouais surement.

AntiVir PersonalEdition Classic
Report file date: vendredi 28 septembre 2007 09:54

Scanning for 849257 virus strains and unwanted programs.

Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows XP
Windows version: (Service Pack 2) [5.1.2600]
Username: Léonard
Computer name: MAISON

Version information:
BUILD.DAT : 270 15603 Bytes 19/09/2007 13:32:00
AVSCAN.EXE : 7.0.6.1 290856 Bytes 10/09/2007 13:40:57
AVSCAN.DLL : 7.0.6.0 49192 Bytes 10/09/2007 13:40:57
LUKE.DLL : 7.0.5.3 147496 Bytes 10/09/2007 13:40:58
LUKERES.DLL : 7.0.6.1 10280 Bytes 10/09/2007 13:40:58
ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 13:21:08
ANTIVIR1.VDF : 7.0.0.0 1640448 Bytes 13/09/2007 08:21:19
ANTIVIR2.VDF : 7.0.0.4 174592 Bytes 24/09/2007 08:21:19
ANTIVIR3.VDF : 7.0.0.10 24576 Bytes 25/09/2007 08:21:19
AVEWIN32.DLL : 7.6.0.15 2806272 Bytes 21/09/2007 16:34:34
AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 09:36:26
AVPREF.DLL : 7.0.2.2 25640 Bytes 10/09/2007 13:40:56
AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 12:16:24
AVPACK32.DLL : 7.3.0.15 360488 Bytes 23/08/2007 13:18:39
AVREG.DLL : 7.0.1.6 30760 Bytes 10/09/2007 13:40:57
AVARKT.DLL : 1.0.0.20 278568 Bytes 10/09/2007 13:40:55
AVEVTLOG.DLL : 7.0.0.20 86056 Bytes 10/09/2007 13:40:56
NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 10:09:42
RCIMAGE.DLL : 7.0.1.30 2342952 Bytes 10/09/2007 13:40:48
RCTEXT.DLL : 7.0.62.0 86056 Bytes 10/09/2007 13:40:48
SQLITE3.DLL : 3.3.17.1 339968 Bytes 10/09/2007 13:40:59

Configuration settings for the scan:
Jobname..........................: Local Hard Disks
Configuration file...............: c:\program files\antivir personaledition classic\alldiscs.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: off
Scan boot sector.................: on
Boot sectors.....................: C:,
Scan memory......................: on
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: Intelligent file selection
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium

Start of the scan: vendredi 28 septembre 2007 09:54

The scan of running processes will be started
Scan process ´avscan.exe´ - ´1´ Module(s) have been scanned
Scan process ´avcenter.exe´ - ´1´ Module(s) have been scanned
Scan process ´svchost.exe´ - ´1´ Module(s) have been scanned
Scan process ´alg.exe´ - ´1´ Module(s) have been scanned
Scan process ´LVComSer.exe´ - ´1´ Module(s) have been scanned
Scan process ´CCC.exe´ - ´1´ Module(s) have been scanned
Scan process ´MOM.exe´ - ´1´ Module(s) have been scanned
Scan process ´ctfmon.exe´ - ´1´ Module(s) have been scanned
Scan process ´avgnt.exe´ - ´1´ Module(s) have been scanned
Scan process ´point32.exe´ - ´1´ Module(s) have been scanned
Scan process ´CFD.exe´ - ´1´ Module(s) have been scanned
Scan process ´SOUNDMAN.EXE´ - ´1´ Module(s) have been scanned
Scan process ´explorer.exe´ - ´1´ Module(s) have been scanned
Scan process ´svchost.exe´ - ´1´ Module(s) have been scanned
Scan process ´SMAgent.exe´ - ´1´ Module(s) have been scanned
Scan process ´PnkBstrA.exe´ - ´1´ Module(s) have been scanned
Scan process ´optproxy.exe´ - ´1´ Module(s) have been scanned
Scan process ´MDM.EXE´ - ´1´ Module(s) have been scanned
Scan process ´LVComSer.exe´ - ´1´ Module(s) have been scanned
Scan process ´sched.exe´ - ´1´ Module(s) have been scanned
Scan process ´avguard.exe´ - ´1´ Module(s) have been scanned
Scan process ´LVPrcSrv.exe´ - ´1´ Module(s) have been scanned
Scan process ´spoolsv.exe´ - ´1´ Module(s) have been scanned
Scan process ´ati2evxx.exe´ - ´1´ Module(s) have been scanned
Scan process ´svchost.exe´ - ´1´ Module(s) have been scanned
Scan process ´svchost.exe´ - ´1´ Module(s) have been scanned
Scan process ´svchost.exe´ - ´1´ Module(s) have been scanned
Scan process ´svchost.exe´ - ´1´ Module(s) have been scanned
Scan process ´svchost.exe´ - ´1´ Module(s) have been scanned
Scan process ´ati2evxx.exe´ - ´1´ Module(s) have been scanned
Scan process ´lsass.exe´ - ´1´ Module(s) have been scanned
Scan process ´services.exe´ - ´1´ Module(s) have been scanned
Scan process ´winlogon.exe´ - ´1´ Module(s) have been scanned
Scan process ´csrss.exe´ - ´1´ Module(s) have been scanned
Scan process ´smss.exe´ - ´1´ Module(s) have been scanned
35 processes with 35 modules were scanned

Start scanning boot sectors:
Boot sector ´C:\´
[NOTE] No virus was found!

Starting to scan the registry.
The registry was scanned ( ´38´ files ).

Starting the file scan:

Begin scan in ´C:\´ <438306>
C:\hiberfil.sys
[WARNING] The file could not be opened!
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\VundoFix Backups\awtrpmm.dll.bad
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was deleted!
C:\VundoFix Backups\nnnmnoo.dll.bad
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[WARNING] The file was ignored!
C:\VundoFix Backups\vtutrss.dll.bad
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was moved to ´4771caf0.qua´!
C:\WINDOWS\system32\iitjnqgd.dll
[DETECTION] Is the Trojan horse TR/Click.Delf.FB.22
[INFO] The file was moved to ´4770cda9.qua´!
C:\WINDOWS\system32\pbpwgdes.dll
[DETECTION] Is the Trojan horse TR/Click.Delf.FB.22
[INFO] The file was moved to ´476ccdd7.qua´!
C:\WINDOWS\system32\rqaikthy.dll
[DETECTION] Is the Trojan horse TR/Click.Delf.FB.22
[INFO] The file was moved to ´475dcdf3.qua´!
C:\WINDOWS\system32\whhiwxuv.dll
[DETECTION] Is the Trojan horse TR/Click.Delf.FB.22
[INFO] The file was moved to ´4764ce08.qua´!
C:\_OTMoveIt\MovedFiles\WINDOWS\svchost.exe
[DETECTION] Is the Trojan horse TR/Dldr.CEB
[WARNING] The file was ignored!

End of the scan: vendredi 28 septembre 2007 11:55
Used time: 2:00:43 min

The scan has been done completely.

Depuis peu, je reçoit des messages d´alertes, je fais donc un scan complet Antivir, mais ça continu, et ya des fichiers system 32 infectés ou à supprimer, mais je ne sais pas lesquels.
Vundofix n´a rien trouvé.
S´il´on re-pourrait m´aider.

Mais qu´est ce que tu fais avec ton PC ...

"[WARNING] The file could not be opened!
C:\VundoFix Backups\awtrpmm.dll.bad
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[INFO] The file was deleted!
C:\VundoFix Backups\nnnmnoo.dll.bad
[DETECTION] Is the Trojan horse TR/Vundo.Gen
[WARNING] The file was ignored!
C:\VundoFix Backups\vtutrss.dll.bad "

Ca ce sont les backups de vundofix (sans blague), supprime toutes traces de vundofix.

[DETECTION] Is the Trojan horse TR/Click.Delf.FB.22
[INFO] The file was moved to ´4764ce08.qua´!
C:\_OTMoveIt\MovedFiles\WINDOWS\svchost.exe
[DETECTION] Is the Trojan horse TR/Dldr.CEB
[WARNING] The file was ignored! ]

Ca ce sont les sauvegardes de OTMovelt, je ne t´avais pas demandé de le supprimé ??

Supprime tout ce que le scan à trouvé (en mode sans échec !)

Quel genre de messages d´alertes ?

T´es pas à l´école à cette heure ci

EvilElf, ça va petit?

Salut ça va mais pourquoi petit