rss
Rechercher : dans
Par : Pertinence Date Nom d'utilisateur
Statut : Non résolu

UC à 100% au démarage, processus cmd.exe

Alexia, le jeudi 4 novembre 2004 à 18:18:03
Bonjour !
Voilà, en fait je pense avoir un virus (ou ver) mais impossible de lui donner un nom ou de savoir ce que c'est...
A chaque démarrage de mon ordi, j'ai entre 5 et 10 processus cmd.exe (le nombre varie). Mon UC est utilisé à 100%.
Si je Supprime tous ces cmd.exe, l'UC redevient normale et mon ordi marche nickel.
Mais à chaque redémarrage il faut toujours faire la même manip....
Je suis sous XP Pro, j'ai fait plusieurs scan antivirus (norton, puis des gratuit comme panda, securiser....) mais rien n'est détecté.
Si quelqu'un sait quelque chose.....
Merci d'avance !
Répondre à Alexia  Signaler ce message aux modérateurs Aller au dernier message
64 réponses 12

1


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
balltrap34, le jeudi 4 novembre 2004 à 18:20:39
salut
arette les au demarrage
tu fait dmarrer/executer tu tape msconfig
tu cherche quelque chose en rapport avec tu decoche appliquer et tu redemarre une nouvelle fenetre vas s ouvrir
tu coche ne plus afficher ce message et ok
voila
et
Nettoyage virus
Faite scan en ligne et coller le rapport ici sur le post
utiliser l'antivirus en ligne suivant :
http://www.ravantivirus.com/scan/
Cliquer sur "To continue without subscribing click here" et attendre quelques minutes.

Lorsque "Ready" est affiché dans "status", cocher la case "Autoclean" puis cliquer sur "Scan my PC"
A la fin de l'analyse, copier/coller le rapport ici.


la chasse et le balltrap ma vrai passion
voir site perso dans profil
   
Répondre à balltrap34

4


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
Alexia, le jeudi 4 novembre 2004 à 19:48:41
Voilà j'ai beau chercher, aucune info sur Win32/Coldfuson, même pas sur ce forum....
Le pire c'est que j'ai formaté mon pc jeudi dernier pour lui refaire une nouvelle jeunesse... si j'avais su j'aurais attendu une semaine de plus :(
   
Répondre à Alexia

2


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
Alexia, le jeudi 4 novembre 2004 à 18:39:56
Re... bon en ce qui concerne RAV Antivirus c'était déjà en cours donc j'attends pour te poster le rapport et pour msconfig pareil j'ai déjà tout vérifié et viré ce qui n'était pas utile....
   
Répondre à Alexia

3


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
Alexia, le jeudi 4 novembre 2004 à 19:02:08
voici le rapport :

Scan started at 4/11/2004 18:20:19

Scanning memory...
Scanning boot sectors...
Scanning files...
C:\WINDOWS\Temp\~DP1.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
C:\WINDOWS\Temp\~DP2.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
C:\WINDOWS\Temp\~DP3.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
C:\WINDOWS\Temp\~DP4.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
C:\WINDOWS\Temp\~DP5.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
C:\WINDOWS\Temp\~DP6.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\Mes fichiers\Christelle\Logiciels\tsrh-incredimailpre_sn.zip->start.exe - TrojanDownloader:Win32/IstBar -> Infected
D:\Mes fichiers\Christelle\Logiciels\Script\mIRC v6.03 fr TeamScript v3.6 + KeyGen.zip->system/ts3-popups-02.ini - IRC/Generic* -> Suspicious
D:\Mes fichiers\Christelle\Logiciels\Script\mIRC v6.03 fr TeamScript v3.6 + KeyGen.zip->system/ts3-popups-08.ini - IRC/Generic* -> Suspicious
D:\Mes fichiers\Christelle\Logiciels\Script\mIRC v6.03 fr TeamScript v3.6 + KeyGen.zip->system/ts3-script-02.ini - IRC/Generic* -> Suspicious
D:\Mes fichiers\Christelle\Logiciels\Script\mIRC v6.03 fr TeamScript v3.6 + KeyGen.zip->system/ts3-script-09.ini - IRC/Generic* -> Suspicious
D:\Mes fichiers\Mes fichiers reçus\Images délires\chaleur.exe - Joke:Win32/Rain -> Infected
D:\Mes fichiers\Mes fichiers reçus\Images délires\NaoSejaCurioso.com - Joke:Howannoy.A -> Infected
D:\Mes fichiers\Mes fichiers reçus\Images délires\sexybaby.exe - Joke:Win32/MovingMouse -> Infected
D:\Mes fichiers\Mes fichiers reçus\Jean-Michel - Mitch\coucou.exe - Joke:Win32/Farce.B -> Infected
D:\Mes fichiers\Mes fichiers reçus\Jean-Michel - Mitch\recoucou.exe - Joke:Win32/Farce.B -> Infected
D:\Mes fichiers\Mes fichiers reçus\Jean-Michel - Mitch\rerecoucou.exe - Joke:Win32/Farce.B -> Infected
D:\Program Files\TeamScripT V3.8\system\ts3-alias-01.ini - IRC/Generic* -> Suspicious
D:\Program Files\TeamScripT V3.8\system\ts3-popups-02.ini - IRC/Generic* -> Suspicious
D:\Program Files\TeamScripT V3.8\system\ts3-popups-08.ini - IRC/Generic* -> Suspicious
D:\Program Files\TeamScripT V3.8\system\ts3-script-02.ini - IRC/Generic* -> Suspicious
D:\Program Files\TeamScripT V3.8\system\ts3-script-09.ini - IRC/Generic* -> Suspicious
D:\temp\torax.exe - Clicker:Win32/VB.AA -> Infected
D:\temp\~DP10.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP100.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP101.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP102.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP103.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP104.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP105.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP106.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP107.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP108.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP109.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP10A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP10B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP10C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP10D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP10E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP10F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP11.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP110.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP111.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP112.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP113.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP114.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP115.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP116.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP117.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP118.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP119.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP11A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP11B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP11C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP11D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP11E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP11F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP12.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP120.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP121.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP122.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP123.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP124.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP125.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP126.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP127.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP128.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP129.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP12A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP12B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP12C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP12D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP12E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP12F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP13.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP130.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP131.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP132.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP133.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP134.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP135.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP136.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP137.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP138.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP139.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP13A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP13B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP13C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP13D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP13E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP13F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP14.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP140.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP141.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP142.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP143.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP144.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP145.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP146.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP147.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP148.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP149.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP14A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP14B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP14C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP14D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP14E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP14F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP15.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP150.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP151.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP152.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP153.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP154.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP155.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP156.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP157.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP158.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP159.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP15A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP15B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP15C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP15D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP15E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP15F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP16.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP160.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP161.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP162.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP163.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP164.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP165.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP166.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP167.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP168.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP169.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP16A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP16B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP16C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP16D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP16E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP16F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP17.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP170.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP171.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP172.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP173.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP174.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP175.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP176.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP177.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP178.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP179.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP17A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP17B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP17C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP17D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP17E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP17F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP18.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP180.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP181.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP182.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP183.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP184.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP185.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP186.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP187.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP188.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP189.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP18A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP18B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP18C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP18D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP18E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP18F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP19.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP190.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP191.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP192.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP193.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP194.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP195.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP196.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP197.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP198.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP199.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP19A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP19B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP19C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP19D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP19E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP19F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1A0.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1A1.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1A2.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1A3.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1A4.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1A5.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1A6.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1A7.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1A8.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1A9.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1AA.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1AB.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1AC.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1AD.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1AE.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1AF.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1B0.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1B1.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1B2.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1B3.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1B4.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1B5.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1B6.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1B7.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1B8.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1B9.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1BA.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1BB.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1BC.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1BD.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1BE.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1BF.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1C0.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1C1.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1C2.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1C3.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1C4.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1C5.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1C6.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1C7.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1C8.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1C9.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1CA.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1CB.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1CC.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1CD.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1CE.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1CF.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1D0.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1D1.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1D2.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1D3.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1D4.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1D5.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1D6.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1D7.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1D8.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1D9.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1DA.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1DB.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1DC.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1DD.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1DE.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1DF.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1E0.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1E1.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1E2.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1E3.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1E4.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1E5.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1E6.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1E7.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1E8.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1E9.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1EA.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1EB.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1EC.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1ED.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1EE.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1EF.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1F0.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1F1.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1F2.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1F3.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1F4.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1F5.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1F6.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1F7.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1F8.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1F9.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1FA.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1FB.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1FC.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1FD.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1FE.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP1FF.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP20.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP200.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP201.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP202.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP203.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP204.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP205.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP206.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP207.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP208.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP209.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP20A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP20B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP20C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP20D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP20E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP20F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP21.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP210.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP211.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP212.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP213.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP214.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP215.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP216.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP217.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP218.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP219.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP21A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP21B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP21C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP21D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP21E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP21F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP22.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP220.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP221.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP222.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP223.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP224.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP225.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP226.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP227.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP228.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP229.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP22A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP22B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP22C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP22D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP22E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP22F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP23.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP230.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP231.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP232.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP233.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP234.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP235.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP236.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP237.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP238.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP239.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP23A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP23B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP23C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP23D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP23E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP23F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP24.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP240.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP241.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP242.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP243.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP244.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP245.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP246.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP247.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP248.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP249.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP24A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP24B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP24C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP24D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP24E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP24F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP25.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP250.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP251.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP252.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP253.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP254.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP255.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP256.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP257.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP258.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP259.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP25A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP25B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP25C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP25D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP25E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP25F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP26.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP260.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP261.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP262.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP263.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP264.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP265.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP266.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP267.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP268.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP269.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP26A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP26B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP26C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP26D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP26E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP26F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP27.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP270.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP271.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP272.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP273.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP274.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP275.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP276.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP277.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP278.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP279.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP27A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP27B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP27C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP27D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP27E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP27F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP28.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP280.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP281.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP282.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP283.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP284.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP285.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP286.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP287.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP288.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP289.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP28A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP28B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP28C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP28D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP28E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP28F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP29.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP290.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP291.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP292.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP293.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP294.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP295.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP296.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP297.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP298.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP299.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP29A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP29B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP29C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP29D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP29E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP29F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2A0.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2A1.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2A2.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2A3.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2A4.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2A5.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2A6.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2A7.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2A8.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2A9.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2AA.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2AB.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2AC.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2AD.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2AE.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2AF.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2B0.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2B1.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2B2.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2B3.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2B4.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2B5.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2B6.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2B7.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2B8.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2B9.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2BA.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2BB.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2BC.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2BD.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2BE.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2BF.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2C0.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2C1.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2C2.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2C3.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2C4.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2C5.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2C6.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2C7.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2C8.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2C9.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2CA.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2CB.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2CC.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2CD.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2CE.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2CF.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2D0.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP2F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP30.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP31.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP32.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP33.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP34.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP35.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP36.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP37.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP38.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP39.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP3A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP3B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP3C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP3D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP3E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP3EA.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP3EB.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP3EC.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP3ED.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP3EE.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP3EF.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP3F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP3F0.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP3F1.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP3F2.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP3F3.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP3F4.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP3F5.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP3F6.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP3F7.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP3F8.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP3F9.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP3FA.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP3FB.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP40.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP41.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP42.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP43.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP44.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP45.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP46.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP47.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP48.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP49.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP4A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP4B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP4C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP4D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP4E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP4F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP50.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP51.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP52.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP53.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP54.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP55.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP56.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP57.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP58.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP59.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP5A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP5B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP5C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP5D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP5E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP5F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP60.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP61.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP62.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP63.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP64.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP65.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP66.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP67.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP68.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP69.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP6A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP6B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP6C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP6D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP6E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP6F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP7.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP70.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP71.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP72.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP73.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP74.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP75.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP76.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP77.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP78.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP79.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP7A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP7B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP7C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP7D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP7E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP7F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP7F6.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP7F7.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP7F8.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP7F9.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP7FA.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP7FB.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP7FC.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP7FD.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP7FE.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP7FF.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP8.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP80.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP800.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP801.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP802.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP803.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP804.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP81.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP82.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP83.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP84.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP85.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP86.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP87.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP88.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP89.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP8A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP8B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP8C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP8D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP8E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP8F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP9.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP90.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP91.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP92.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP93.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP94.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP95.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP96.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP97.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP98.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP99.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP9A.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP9B.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP9C.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP9D.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP9E.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DP9F.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPA.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPA0.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPA1.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPA2.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPA3.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPA4.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPA5.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPA6.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPA7.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPA8.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPA9.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPAA.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPAB.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPAC.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPAD.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPAE.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPAF.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPB.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPB0.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPB1.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPB2.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPB3.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPB4.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPB5.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPB6.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPB7.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPB8.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPB9.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPBA.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPBB.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPBC.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPBD.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPBE.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPBF.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPC.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPC0.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPC1.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPC2.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPC3.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPC4.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPC5.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPC6.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPC7.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPC8.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPC9.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPCA.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPCB.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPCC.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPCD.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPCE.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPCF.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPD.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPD0.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPD1.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPD2.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPD3.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPD4.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPD5.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPD6.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPD7.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPD8.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPD9.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPDA.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPDB.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPDC.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPDD.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPDE.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPDF.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPE.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPE0.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPE1.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPE2.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPE3.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPE4.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPE5.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPE6.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPE7.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPE8.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPE9.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPEA.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPEB.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPEC.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPED.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPEE.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPEF.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPF.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPF0.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPF1.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPF2.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPF3.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPF4.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPF5.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPF6.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPF7.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPF8.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPF9.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPFA.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPFB.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPFC.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPFD.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPFE.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
D:\temp\~DPFF.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected

Scanned
============================
Objects: 42537
Directories: 2915
Archives: 1346
Size(Kb): -1971557
Infected files: 761

Found
============================
Viruses found: 8
Suspicious files: 9
Disinfected files: 0
Mail files: 221


C'est l'allu..... tout les autres anti-virus ne m'ont rien sorti à commencer par Norton !!!
Je fais quoi de tout ça moi :'(
   
Répondre à Alexia

5


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
balltrap34, le jeudi 4 novembre 2004 à 20:30:39
re
deja tu vas la et tu supprimme tous dedans pas le dossier ce qu il y a a l interieur
C:\WINDOWS\Temp
la idem avec ceci
D:\temp
D:\Mes fichiers\Mes fichiers reçus\Images délires\chaleur.exe
D:\Mes fichiers\Mes fichiers reçus\Images délires\NaoSejaCurioso.com
D:\Mes fichiers\Mes fichiers reçus\Images délires\sexybaby.exe
D:\Mes fichiers\Mes fichiers reçus\Jean-Michel - Mitch\coucou.exe
D:\Mes fichiers\Mes fichiers reçus\Jean-Michel - Mitch\recoucou.exe
D:\Mes fichiers\Mes fichiers reçus\Jean-Michel - Mitch\rerecoucou.exe
-------
ensuite refait un scan pour verif
la chasse et le balltrap ma vrai passion
voir site perso dans profil
   
Répondre à balltrap34

6


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
Alexia, le jeudi 4 novembre 2004 à 21:02:56
re...
c'est ce que j'ai tenté de faire en vain, impossible de supprimer les fichiers en ce qui concerne les TEMP de C:/ et de D:/.
J'ai alors redémarrer en mode sans échec, là no problème, j'ai pu tout supprimer.
Je redémarre, là déjà l'UC toujours à 100%, obliger de Terminer tous les procéssus cmd.exe.
Et dans les 2 répertoires TEMP, des fichiers se sont remis impossible de les supprimer.
Là j'ai le scan en route et déjà il a détecté des infections sur les fichiers TEMP dans C:/


Scanning memory...
Scanning boot sectors...
Scanning files...
C:\WINDOWS\Temp\~DP1.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
C:\WINDOWS\Temp\~DP10.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
C:\WINDOWS\Temp\~DP11.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
C:\WINDOWS\Temp\~DP12.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
C:\WINDOWS\Temp\~DP2.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected
C:\WINDOWS\Temp\~DP3.dll - Backdoor:Win32/Coldfuson.1_1.A -> Infected


etc etc....

je suppose que se sera pareil pour les TEMP de D:/
   
Répondre à Alexia

7


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
balltrap34, le jeudi 4 novembre 2004 à 21:09:23
re desactive ta restauration si cela n est pas fait
et fait un hijack pour voir
Hijackthis : http://209.133.47.200/~merijn/files/ HijackThis.exe
http://pageperso.aol.fr/balltrap34/page%20virus.htm



Fais scan puis save log et colle le contenu du fichier texte qui s'affiche


la chasse et le balltrap ma vrai passion
voir site perso dans profil
   
Répondre à balltrap34

10


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
Alexia, le jeudi 4 novembre 2004 à 21:23:47
re, j'avais déjà désactiver la restauration, et j'avais même fait un hijack sous les conseil de qq'un mais pour les résultats je n'avais pas vraiment sû interpréter. voilà le résultat :

Logfile of HijackThis v1.98.2
Scan saved at 21:18:35, on 4/11/2004
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
d:\Program Files\Norton Internet Security\NISUM.EXE
C:\WINDOWS\Explorer.exe
d:\Program Files\Norton Internet Security\ccPxySvc.exe
d:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\PROGRA~1\MESSAG~1\StartMessager.exe
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe
C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
D:\Program Files\Messenger Plus! 3\MsgPlus.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
D:\Program Files\msnshell\MSNShell.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Wanadoo\EspaceWanadoo.exe
C:\Program Files\Wanadoo\ComComp.exe
C:\Program Files\Wanadoo\Watch.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
D:\Program Files\Messenger Plus! 3\Plugins\openConvo.exe
C:\Program Files\Internet Explorer\iexplore.exe
D:\Mes fichiers\Christelle\Logiciels\Virus désinfectant\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.wanadoo.fr/go/page_recherche/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
F2 - REG:system.ini: Shell=Explorer.exe winsock.scr
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.3000.1001\fr\msntb.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - d:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.3000.1001\fr\msntb.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - d:\Program Files\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [MessagerStarter Wanadoo] C:\PROGRA~1\MESSAG~1\StartMessager.exe Messager Wanadoo
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\fr\msnappau.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [ccRegVfy] "C:\Program Files\Fichiers communs\Symantec Shared\ccRegVfy.exe"
O4 - HKLM\..\Run: [MessengerPlus3] "D:\Program Files\Messenger Plus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [MSNShell] D:\Program Files\msnshell\MSNShell.exe autorun
O4 - HKLM\..\Run: [dxset.exe] C:\WINDOWS\dxsetu.exe
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe
O4 - HKLM\..\Run: [TrojanScanner] C:\Program Files\Trojan Remover\Trjscan.exe
O4 - HKCU\..\Run: [MessengerPlus3] "D:\Program Files\Messenger Plus! 3\MsgPlus.exe" /WinStart
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - D:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm
O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Backward &Links - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cac&hed Snapshot of Page - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Si&milar Pages - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O14 - IERESET.INF: START_PAGE_URL=http://www.google.fr
O16 - DPF: Yahoo! MahJong Solitaire - http://download.games.yahoo.com/games/clients/y/mjst4_x.cab
O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2004061001/housecall.trendmicro.com/housecall/xscan53.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoftware.com/activescan/as5/asinst.cab
O16 - DPF: {A3009861-330C-4E10-822B-39D16EC8829D} (CRAVOnline Object) - http://www.ravantivirus.com/scan/ravonline.cab
O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} (ActiveDataInfo Class) - https://www-secure.symantec.com/techsupp/activedata/SymAData.cab
O16 - DPF: {E77C0D62-882A-456F-AD8F-7C6C9569B8C7} (ActiveDataObj Class) - https://www-secure.symantec.com/techsupp/activedata/ActiveData.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{7DBC2C1A-15E6-4B41-8218-53C8086245CA}: NameServer = 80.10.246.1 80.10.246.132


voilà voilà...
   
Répondre à Alexia

8


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
kiki_, le jeudi 4 novembre 2004 à 21:19:01
Hello

Tu peux killer les fichiers avec ceci, c'est gratos : http://www.clubic.com/telecharger-fiche10932-copylock.html
ou alors avec la killbox ici : http://download.broadbandmedic.com/rx09ty/KillBox.zip

Tchô

soyons désinvolte...
   
Répondre à kiki_

9


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
kiki_, le jeudi 4 novembre 2004 à 21:22:46
rehello

Au fait, as tu désactivé la resto système ...???! Tu peux aussi essayer çà..

soyons désinvolte...
   
Répondre à kiki_

11


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs
Alexia, le jeudi 4 novembre 2004 à 21:31:33
oui j'avais désactivé la restauration et merci pour le petit logiciel, je vais redémarrer, on verra bien s'il reviennent au démarrage...
   
Répondre à Alexia

12


  • Ce message vous semble utile, votez !
  • Signaler ce message aux modérateurs