Infecté par Bagle !! HELP !! s.v.p merciRésolu/Fermé

Question

Bonjour,
Voila je crois etre infecté par bagle !!
"application win 32 non valide" et impossible de démarrer en mode sans échecs !
Merci de me guider pour me désinfecter.


PS: lorsque je veut lancer hijackthis, je ne peut pas il me met que c'est une application win32 non valide et mon anti virus "panda" plante !!

 cordialement !

Utilisateur anonyme · Answer

Salut,

* Téléchargez ELIBAGLA en bas de cette page http://www.zonavirus.com/datos/descargas/95/elibagla.asp 
* Clique sur le bouton Descargar Elibagla cela va télécharger le fichier, placez le sur votre bureau. 
* Double-cliquez dessus pour l'ouvrir 
* Assurez-vous que dans le menu déroulant Unidad, vous avez bien C:\ 
* Vérifiquez aussi que l'option en bas de la fenêtre Eliminar Ficheros Automaticamente est bien cochée 
* Cliquez sur le bouton Explorar pour lancer l'analyse 

Si, dans le rapport,elibaga tu vois un texte semblable à celui-ci 

Por favor, envienos una muestra del fichero 
C:\Muestras\HLDRRR.EXE.Muestra EliBagle v10.24 
a "virus@satinfo.es". Gracias; 

envoie ce(s) fichier(s) (dans l'exemple C:\Muestras\HLDRRR.EXE.Muestra EliBagle v10.24 ) à l'adresse e-mail indiquée (virus@satinfo.es).

sKe69 · Answer

Salut,
Pour info , il faut réparer le mode sans échec , car vous en aurez besoin :

Essayes ce-ci d'abors pour réparer ce dernier : 
http://www.malekal.com/download/SafeBoot.reg 
Et choisis " enregistrer la cible sous" afin de télécharger SafeBoot.reg sur ton Bureau. 
Doubles clique dessus et acceptes la fusion avec le registre. 

(Après le passage d'elibagla ... puis refaire celui-ci en modes sans échec ... il est aussi préférable de le renommer avec un nom de fichiers infecté par bagle pour plus d'efficaciter ...)

Bonne continuation et bonne chance ...

Utilisateur anonyme · Answer

Salut ske ! et merci pour l nfo

merzhin_22 · Answer

Merci de m'aider !! Il n'a rien trouvé, mais je te poste kan mm le rapport de elibagla :

	  Fri Jun 20 22:43:17 2008
EliBagle v11.50  (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 20 de Junio del 2008)
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando Unidad C:\

Nº Total de Directorios:   6011
Nº Total de Ficheros:      70207
Nº de Ficheros Analizados: 9502
Nº de Ficheros Infectados: 0
Nº de Ficheros Limpiados:  0

Utilisateur anonyme · Answer

Télécharge combofix : http://download.bleepingcomputer.com/sUBs/ComboFix.exe 

Renome le en killbagle et enregistre le sur le bureau

-> Double clique combofix.exe. 
-> Tape sur la touche 1 (Yes) pour démarrer le scan. 
-> Lorsque le scan sera complété, un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse. 

NOTE : Le rapport se trouve également ici : C:\Combofix.txt 

Avant d'utiliser ComboFix : 

-> Déconnecte toi d'internet et referme les fenêtres de tous les programmes en cours. 

-> Désactive provisoirement et seulement le temps de l'utilisation de ComboFix, la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent géner fortement la procédure de recherche et de nettoyage de l'outil. 

Une fois fait, sur ton bureau double-clic sur Combofix.exe. 

- Répond oui au message d'avertissement, pour que le programme commence à procéder à l'analyse du pc. 

/!\ Pendant la durée de cette étape, ne te sert pas du pc et n'ouvre aucun programmes. 

- En fin de scan il est possible que ComboFix ait besoin de redemarrer le pc pour finaliser la désinfection\recherche, laisses-le faire. 

- Un rapport s'ouvrira ensuite dans le bloc notes, ce fichier rapport Combofix.txt, est automatiquement sauvegardé et rangé à C:\Combofix.txt) 

-> Réactive la protection en temps réel de ton Antivirus et de tes Antispywares, avant de te reconnecter à internet. 

-> Reviens sur le forum, et copie et colle la totalité du contenu de C:\Combofix.txt dans ton prochain message. 

-> Tutoriel https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix

merzhin_22 · Answer

d'accord, hé ben on peut pas dire que tu traine pour répondre ^^ merci beaucoup !!

Utilisateur anonyme · Answer

lol 

;-)

merzhin_22 · Answer

En fait je me suis tromper voila mon rapport elibagle:

PS: j'ai renommé combofix en killbagle mais quand je l'execute il me dit que ce n'est pas une appli win 32 valide !

  Fri Jun 20 22:49:30 2008
EliBagle v11.50  (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 20 de Junio del 2008)
----------------------------------------------
Lista de Acciones (por Acción Directa):
C:\WINDOWS\SYSTEM32\WINTEMS.EXE --> Bagle Acceso Denegado.
C:\WINDOWS\SYSTEM32\DRIVERS\SROSA.SYS --> Bagle (rootkit) Acceso Denegado.
C:\WINDOWS\SYSTEM32\DRIVERS\HLDRRR.EXE --> Bagle.dldr Acceso Denegado.
Reinicie para Completar la Limpieza.

	  Fri Jun 20 22:49:34 2008
EliBagle v11.50  (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 20 de Junio del 2008)
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando Unidad C:\

Nº Total de Directorios:   6011
Nº Total de Ficheros:      70220
Nº de Ficheros Analizados: 9502
Nº de Ficheros Infectados: 0
Nº de Ficheros Limpiados:  0

Utilisateur anonyme · Answer

essai combofix en mode sans echec
Comment redémarrer en mode sans echec? 

Tu redemarre le pc et tapote la touche F8 des le début de l allumage sans t´arrêter. 
Une fenêtre sur fond noir va s’ouvrir, tu te déplaces avec les flèches du clavier sur démarrer en mode sans échec puis tape entrée. 
Une fois sur le bureau si il n y a pas toutes les couleurs et autres c´est normal! 
Ps : si F8 ne marche pas utilise la touche F5. 

-> Tuto : http://forum.telecharger.01net.com/forum/

merzhin_22 · Answer

...combofix ne veut meme pas s'exécuter en mode sans échec..je désespère ! mais mon mode sans échec remarche!

PS: toujours "application Win 32 non valide "

Utilisateur anonyme · Answer

repasse elibagla en mode sans echec

merzhin_22 · Answer

Haa !!! Voila le travail de elibagle en mode sans échecs:


	  Fri Jun 20 23:35:48 2008
EliBagle v11.50  (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 20 de Junio del 2008)
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando Unidad C:\
C:\Documents and Settings\Cécile\Application Data\m\FLEC006.EXE --> Eliminado Bagle
C:\Documents and Settings\JeanFrançois\Application Data\m\FLEC006.EXE --> Eliminado Bagle
C:\WINDOWS\system32\MDELK.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\MDELK.EXE --> Eliminado Bagle.dldr
C:\WINDOWS\system32\drivers\downld\1042515.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\1112843.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\13246953.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\1359843.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\1395984.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\15246250.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\15268953.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\15376328.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\15568578.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\15659125.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\16549765.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\19086812.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\25594906.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\25612234.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\2798187.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\3157671.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\3200906.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\4132359.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\452968.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\593687.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\595609.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\603640.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\610578.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\613031.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\615218.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\629625.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\629859.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\648890.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\652484.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\685234.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\7466390.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\777937.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\812312.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\843328.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\866046.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\907625.EXE --> Eliminado Bagle
C:\WINDOWS\system32\drivers\downld\951515.EXE --> Eliminado Bagle

Nº Total de Directorios:   6123
Nº Total de Ficheros:      72075
Nº de Ficheros Analizados: 9916
Nº de Ficheros Infectados: 41
Nº de Ficheros Limpiados:  41

Utilisateur anonyme · Answer

re

essai combofix en mode sans echec maintenant

merzhin_22 · Answer

ok je ferai sa demain ! merci encore de ton aide

Utilisateur anonyme · Answer

oki a demain bonne nuit

merzhin_22 · Answer

Salut,

Combofix ne veut pas ce lancer en mùode sans échec (application win 32 non valide !!) encore une fois de plus !!
Bizarrre ^^

Utilisateur anonyme · Answer

Bonjour chiki :)

Juste pour suivre :)

merci ^^

Utilisateur anonyme · Answer

bah en passant pour faire avancer relance elibagla 2 fois en mode sans echec et post nous les rapport :)

merzhin_22 · Answer

Alors j'ai lancé 2 fois elibagla en mode sans échec.. rien :


	  Sat Jun 21 11:20:27 2008
EliBagle v11.50  (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 20 de Junio del 2008)
----------------------------------------------
Lista de Acciones (por Acción Directa):

	  Sat Jun 21 11:20:29 2008
EliBagle v11.50  (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 20 de Junio del 2008)
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando Unidad C:\

Nº Total de Directorios:   6109
Nº Total de Ficheros:      72791
Nº de Ficheros Analizados: 9886
Nº de Ficheros Infectados: 0
Nº de Ficheros Limpiados:  0

	  Sat Jun 21 11:24:14 2008
EliBagle v11.50  (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 20 de Junio del 2008)
----------------------------------------------
Lista de Acciones (por Acción Directa):

	  Sat Jun 21 11:24:16 2008
EliBagle v11.50  (c)2008 S.G.H. / Satinfo S.L. (Actualizado el 20 de Junio del 2008)
----------------------------------------------
Lista de Acciones (por Exploración):
Explorando Unidad C:\

Nº Total de Directorios:   6109
Nº Total de Ficheros:      72791
Nº de Ficheros Analizados: 9886
Nº de Ficheros Infectados: 0
Nº de Ficheros Limpiados:  0

PS : Les jeux ce lancent sans problème maintenant sans reboot de l'ordi mais  pour ce qui est de Panda Antivirus 2008 il ce lance mais je ne peut toujours l'activer, quand je clik sur "activer la protection contre les menaces connues et inconnues" il se fige et ne fait rien donc panda reste en protection FAIBLE.

Il ne faut jamais désespèrer non ? tous problème a une solution ?? lol

merzhin_22 · Answer

BONNE NOUVELLE !!! Par hasard je télécharge hijackthis et IL FONCTIONNE !!! alors il reste plus que tu me dise quoi faire !
 haaa !!

Utilisateur anonyme · Answer

peux tu essayer de lancer combofix en mode normal ?

post un rapport hijack aussi. Je laisse la main a chiki je dois partir

merzhin_22 · Answer

Alors combofi ne ce lance pas en mode normal "win 32 non valide" 
J'ai cliké sur "do a system scan and save a logfile"( en mode normal) pour Hijackthis et voila le rapport :


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:45:55, on 21/06/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\system32
vsvc32.exe
C:\WINDOWS\system32\oodag.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Wanadoo\WOOBrowser\WOOBrowser.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\WINDOWS\system32\oodtray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Wanadoo\GestionnaireInternet.exe
C:\Program Files\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Wanadoo\Watch.exe
C:\PROGRA~1\Wanadoo\WOOBrowser\WOOBrowser.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SearchPageURL.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayerpbrowserrecordplugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvCplDaemon] "RUNDLL32.EXE" C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] "nwiz.exe" /install
O4 - HKLM\..\Run: [NvMediaCenter] "RUNDLL32.EXE" C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Security\Panda Antivirus 2008\APVXDWIN.EXE" /s
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OBealsched.exe"  -osboot
O4 - HKLM\..\Run: [OODefragTray] C:\WINDOWS\system32\oodtray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\Program Files\Wanadoo\GestMaj.exe GestionnaireInternet.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O9 - Extra button: Messager Wanadoo - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe (file missing)
O9 - Extra 'Tools' menuitem: Messager Wanadoo - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe (file missing)
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - http://charon777.free.fr/plugins/hardwaredetection_2_0_4_12.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{994BEC11-E54D-4118-B50C-CF1BF7AF84C2}: NameServer = 80.10.246.1 81.253.149.2
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file)
O23 - Service: Service d'état ASP.NET (aspnet_state) - Unknown owner - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (file missing)
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Imapi Helper - Alex Feinman - C:\Program Files\Alex Feinman\ISO Recorder\ImapiHelper.exe
O23 - Service: iolo System Guard (IOLO_SRV) - Unknown owner - C:\Program Files\iolo\System Mechanic Professional 6\IoloSGCtrl.exe (file missing)
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32
vsvc32.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: Panda Software Controller - Panda Software International - C:\Program Files\Panda Security\Panda Antivirus 2008\PsCtrlS.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Update Center (Windows Update Center) - Unknown owner - C:\WINDOWS\scvhost.exe (file missing)

merzhin_22 · Answer

Voila un scan de Hijackthis en mode sans échecs :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:50:28, on 21/06/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Safe mode

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\userinit.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SearchPageURL.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayerpbrowserrecordplugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvCplDaemon] "RUNDLL32.EXE" C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] "nwiz.exe" /install
O4 - HKLM\..\Run: [NvMediaCenter] "RUNDLL32.EXE" C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Security\Panda Antivirus 2008\APVXDWIN.EXE" /s
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OBealsched.exe"  -osboot
O4 - HKLM\..\Run: [OODefragTray] C:\WINDOWS\system32\oodtray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\Program Files\Wanadoo\GestMaj.exe GestionnaireInternet.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O9 - Extra button: Messager Wanadoo - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe (file missing)
O9 - Extra 'Tools' menuitem: Messager Wanadoo - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe (file missing)
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - http://charon777.free.fr/plugins/hardwaredetection_2_0_4_12.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file)
O23 - Service: Service d'état ASP.NET (aspnet_state) - Unknown owner - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (file missing)
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Imapi Helper - Alex Feinman - C:\Program Files\Alex Feinman\ISO Recorder\ImapiHelper.exe
O23 - Service: iolo System Guard (IOLO_SRV) - Unknown owner - C:\Program Files\iolo\System Mechanic Professional 6\IoloSGCtrl.exe (file missing)
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32
vsvc32.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: Panda Software Controller - Panda Software International - C:\Program Files\Panda Security\Panda Antivirus 2008\PsCtrlS.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Update Center (Windows Update Center) - Unknown owner - C:\WINDOWS\scvhost.exe (file missing)

Utilisateur anonyme · Answer

essai ceci en mode normal si ça ne marche pas essaie en mode sans echec


1) supprime tout t es crack et keygen

2)Telecharge malwarebytes 

-> https://www.malekal.com/tutoriel-malwarebyte-anti-malware/

Tu l´instale; le programme va se mettre automatiquement a jour. 

Une fois a jour, le programme va se lancer; click sur l´onglet parametre, et coche la case : "Arreter internet explorer pendant la suppression". 

Click maintenant sur l´onglet recherche et coche la case : "executer un examen complet". 

Puis click sur "rechercher". 

Laisse le scanner le pc... 

Si des elements on ete trouvés > click sur supprimer la selection. 

si il t´es demandé de redemarrer > click sur "yes". 

A la fin un rapport va s´ouvrir; sauvegarde le de maniere a le retrouver en vu de le poster sur le forum. 

Copie et colle le rapport stp.

ps : les rapport sont aussi rangé dans l onglet rapport/log

merzhin_22 · Answer

Panda c'est mis a jour(+ redémarré ordi), et quand je clik sur "activer la protection..etc.. il me met "impossible de charger correctement  la protection automatique des fichiers" et a la page de démarrage de panda "prtiectio n contre les menaces connues : ERREUR (en rouge) et qd je clik sur "plus d'info" il me dit qu'une erreur interne a panda c'est produite et il me dit de réinsttaler panda
 Pour ce qui est des lignes a cocher et a supprimer dans le rapport hijackthis, peut tu me les donner ? car je suis novice et peur de faire des bétises^^, et sur quoi cliker une fois les avoir cochés ???

 Merci !

Utilisateur anonyme · Answer

OKI pour panda (il fudra sans doute le réinstaller)

pour les  lignes :

réouvre hijackths
fais scan only
coches ces lignes :

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file) 

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') 
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') 
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') 

O9 - Extra button: Messager Wanadoo - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe (file missing) 
O9 - Extra 'Tools' menuitem: Messager Wanadoo - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe (file missing) 

O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab 
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB 
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab 
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab 
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/ 
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - http://charon777.free.fr/plugins/hardwaredetection_2_0_4_12.cab 
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab 
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab 
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file) 

tu les coches et tu clic sur fix checked

ensuite fais ceci :

Démarrer > executer > tape : services.msc 

- Clic droit sur le service cité - iolo System Guard 
- propriétés 
- et dans "type de démarrage" et mets le sur « désactivé ». 
- Ensuite si le "Status du service" est sur "Démarré" faire : « arrêté » 

Tutorial : https://www.zebulon.fr/dossiers/windows/31-services.html 

ensuite :

) supprime tout t es crack et keygen 

2)Telecharge malwarebytes 

-> https://www.malekal.com/tutoriel-malwarebyte-anti-malware/ 

Tu l´instale; le programme va se mettre automatiquement a jour. 

Une fois a jour, le programme va se lancer; click sur l´onglet parametre, et coche la case : "Arreter internet explorer pendant la suppression". 

Click maintenant sur l´onglet recherche et coche la case : "executer un examen complet". 

Puis click sur "rechercher". 

Laisse le scanner le pc... 

Si des elements on ete trouvés > click sur supprimer la selection. 

si il t´es demandé de redemarrer > click sur "yes". 

A la fin un rapport va s´ouvrir; sauvegarde le de maniere a le retrouver en vu de le poster sur le forum. 

Copie et colle le rapport stp. 

ps : les rapport sont aussi rangé dans l onglet rapport/log

merzhin_22 · Answer

voila le rapport !! :

Malwarebytes' Anti-Malware 1.18
Version de la base de données: 873

14:39:10 21/06/2008
mbam-log-6-21-2008 (14-39-10).txt

Type de recherche: Examen complet (C:\|)
Eléments examinés: 141476
Temps écoulé: 27 minute(s), 16 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 5
Fichier(s) infecté(s): 502

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\WINDOWS\system32\drivers\down (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared (Trojan.Agent) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP246\A0151434.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP248\A0153696.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP252\A0154209.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP255\A0154387.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP257\A0154602.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP262\A0156250.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP284\A0169916.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP284\A0169917.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP284\A0169922.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP284\A0169929.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP284\A0169931.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP284\A0169935.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP284\A0169936.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP284\A0169937.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP284\A0169947.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP284\A0169949.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP284\A0169955.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP284\A0169956.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\112046.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\114812.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\116937.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\118578.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\119734.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\124328.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\126703.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\13293156.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\138062.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\144812.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\147781.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\14897218.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\14900953.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\14905500.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\14942750.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\14958953.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\14963609.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\14969218.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\14973843.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\15012906.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\15028234.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\15029437.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\15031859.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\150359.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\15046171.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\150484.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\15052359.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\15098515.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\151328.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\154046.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\154203.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\15558218.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\158515.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\161906.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\165015.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\16698421.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\167531.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\174484.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\175218.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\175593.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\175828.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\176953.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\178468.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\17866859.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\17871843.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\17880062.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\17976953.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\17990343.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\18018984.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\18026328.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\18042453.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\180656.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\18074546.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\18076859.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\18085750.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\18091375.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\18127093.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\18135671.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\183125.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\185343.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\186250.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\187562.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\188046.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\191750.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\192421.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\192453.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\200812.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\20512968.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\20957015.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\21943109.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\21945890.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\22053562.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\22100546.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\22172281.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\22325156.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\22398500.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\22424265.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\22592531.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\229078.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\25347578.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\258921.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\26118609.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\26452890.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\2704093.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\275515.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\279593.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\282343.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\28332515.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\28351953.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\284328.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\286625.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\288687.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\288796.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\29165125.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\29170750.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\29173968.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\29259484.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\29281343.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\29370156.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\29394843.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\29491734.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\29541828.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\29568375.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\29642968.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\297937.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\29895937.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\303406.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\314437.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3276875.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3281734.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3291906.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\329796.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3334296.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3346390.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3350546.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3354218.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3357484.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3366250.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3370640.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3371546.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3372359.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3382953.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3386796.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\339296.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3416859.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3717046.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\394093.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\396437.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\406218.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\406843.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\410265.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\414484.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\421421.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\4307406.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\441609.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\4469250.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\450125.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\450750.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\451437.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\4534328.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\4717625.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\473109.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\503031.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\5161078.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\565234.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\596843.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\645781.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\654484.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\655953.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\663359.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\722125.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\730390.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\7460546.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\76000.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\853640.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\89156.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\89187.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\93203.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\94968.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\99500.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\ABA-X1 1.2 build 17.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Acez MP3 WAV Converter 3.0.6 (Key+Serial).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\AD Heart of Jungle - Animated Desktop Wallpaper 3.11.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\AddressBook 7.01.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Advanced Backup 1.8.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\AffiliateEXE 1.0 [Crack].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Algebra - One On One 4.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Alien Dreams Screensaver 6.0 [KeyGen].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Alive Organizer 2.2.43.31 (Patch).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Allok WMA MP3 Converter 1.1.0 (Serial).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\AlwaysOnLine 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Amadis iPod Video Converter 2.0.0 Key.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Arm Whois 2.10 [Cracked].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Armadillo Mail 4.0 [Key].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Art-Scan 5.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\AstroPop 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Automatic Print Email 2.08 [Key].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Auvisoft Audio Splitter Joiner 1.6.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\AWS Docket 3.0 (KeyGen).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Axence nVision 3.0.1.1940.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Bandwidth Vista 1.01.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Binary Browser 5.3.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Bingo! RM to MP3 Wave Converter 3.4.61212.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Bizz Feed Liner 4.11.01.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\BlackandWhite 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\BlubberPatrol 2.0.3 [Cracked].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\CamTrack 2.4 (Cracked).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\CastleNews 1.26.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Christmas with the Kranks Trailer.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Chrysanth Download Manager 1.6.5.895.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\ClearImage Repair 5.4.11.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Clip Plus 4.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Clipboard Snapper 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Clipboard Swiss-Knife 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Code Co-op 5.0d (Serial).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\CoffeeCup Flash Website Font 3.1 [Crack].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Command & Conquer Renegade 1.037 patch.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\ContextConvert Pro 3.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\CoolClock 1.1 [KeyGen].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\CopyPod Photo 1.02.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Cricket Score 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\CSE HTML Validator Lite 7.0102.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\CyberFresco 1.3 beta.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\DataBase Extractor Pro 2.5i Key+Serial.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\DataToMail 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\DB Explorer 1.0.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\DB Manual 1.3.1 Key+Serial.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Desktop Emailer 1.00.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Digital Picture Resizer ALPHA 1A2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\DVDIdle Pro 5.9.8.5.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\E20-540 Practice Exam Testing Engine Software 1.0 Key.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\East-Tec Eraser 2007 8.5.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Easy Rafters 3.2.1 (Cracked).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\easyFTPClient 2007 4.0.0 [Key+Serial].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\eBLVD Online Meetings 5.3.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\eDoc Studio 1.6.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\EFS Standard 5.58.09.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Egyptian Addiction 1.21.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\eKitaab eBook Manager 0.5.5.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Email C++ Library 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Emailchemy 1.8.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\EMF to Vector Converter 2.0 (Serial).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Exsate VideoExpress 2.4.0.383.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Fast Explorer Context Menu Extension DLL 2.2.9.151.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\File and Folder Protector 2.84 With Crack.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\FileWasher Pro 1.32k.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Fireworks Simulation Engine 2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Flasher Suite 1.0 (Key).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\ForceShutDown 1.5.144.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\FreeTheWeed 1.0 With Crack.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\FWD Gym - Feedback Weight-training Designer 2.1.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\GetWebPics Home edition 2.9.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Google Desktop SDK.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Ground Control map pack 2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Guitar Scales Method 1.0.2.3.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Gunman Chronicles Command Center map.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Handy Xtra Stuff 1.4.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\HandyBits Voice Mail for Kids 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Hill Solutions BookCenter 1.4 Key.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\HotHTML 3 Professional 1.5.3000 Fixpack 5 [Key+Serial].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Household Register 2002 6.0a.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\HTML CaseChanger 1.0.23.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\IceCendol Mobile Phone Instant Messenger 1.0.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\ImTOO DVD Ripper 4.0.85.0809 [Key].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\InterNeo 4.2.9.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Invdochat 7.6.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Irish To The max Screensaver 1.0 [Key+Serial].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\KASPERSKY.ANTI-VIRUS.PERSONAL.V5.0.149.4-CRACK-DANBHOY.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Kill Win Pro 13.161.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\KUBI 1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\LifeBoat 1.1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\LingvoSoft Dictionary 2007 English - French 4.0.22 (KeyGen).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\LinkVisitor 2.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Magic Whiteboard 1.8 Serial.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\MB Free Inner Dreams Number 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\McAfee.LinuxShield.v1.2.0.757.Linux.Retail-ZWT.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Mcafee.Virus-Scan.Plus.2007-Sp33Dcrew.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\MemDB Quotation System 1.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Menurites 1.4.0.0 (Key).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Miraplacid Text Driver 2007 Terminal Edition 5.0 (Serial).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\MissouriDoppler! 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\MP3 Format ActiveX 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\MP3Fox 3.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\MSDict Concise Oxford English Dictionary (Windows) 3.10.15 Key.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Mznt Browser 1.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared
ews of the word of the day 0.0.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\NI-Spektral Delay 1.6.0.011.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Nox - Deep Freeze map.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Nox - Paradise map.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\NtJobs 0.6.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\NTP Digital Clock 1.0.001.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Okoker Sudoku Pro 2.0 Key.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Orbit 0.3.5.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\ordrumbox 0.7.03.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Oriens MultiPage Basic 1.2.0.511 [KeyGen].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\OstroSoft Internet Tools 6.2 Build 0003.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Othello 1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Oxide 2002 1.1 [With Crack].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Pac Venture--Pac's Oddysee 1.4s.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\PAD-Publisher 2.10.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Password Generator 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\PC Sentinel's Busted Keylogger and Instant Messag 2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\PCMesh Internet Cleanup Lite 3.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Physics Cheat Sheet 1.2 [Serial].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Pocket Oxford Spanish Dictionary (Symbian Series 80) 2.30.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\PR Numbers to MHz converter 0.8.7.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\ProPickZ 2.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\PSolver (Nokia Series 40) 1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\QReport 1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\QuipuKit 1.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\R6 RetailADVANCE 1.0 (Cracked).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\RaidenMAILD 1.9.1.3.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\RandGreg Radio Pro 2.0.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\RaptiComm 1.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\RatheDG Cachalot System 2.1.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Red Eye Remover 2.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\RetroGrade 1.2 [Serial].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\RFC Browser Lite Edition 3.5 [Key+Serial].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\RGS-CPUMeMo 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Ricochet Lost Worlds 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Roadkil's Disk Speed 1.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Rockliffe MailSite SP 7.0.6 Cracked.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Roosl's Mail Filter 4.0 (Key+Serial).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\RS232 Stealth Monitor 1.0 Serial.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Running Track 1.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Sammy Sosa Softball Slam demo.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\SAPEdit 1.62 (Cracked).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Scattered Industries 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Scorecard for Life 1.0.224.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\ScreenCam 2.20 Build 0020 (KeyGen).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Seashores Screen Saver 2.96.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Sendmail 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Serious Sam II multiplayer demo quickfix.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\ShareO for Outlook 2.43.0225.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Shop-Script Free PHP Shopping Cart 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Shuffler 1.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Shut me down 1.1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\SL-Logon 1.00.0005.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Smart Budget 2.0.9.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Smart Password Encryption 1.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\SmartDirCopy 4.0 (Key+Serial).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Smile Icon Set 1.0 (Crack).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Sothink Flash to DVD Converter Suite 1.1 Build 70126 [Patch].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Source Code Scanners for C++ Builder 6 4.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Spytech PopupAgent 2.10 [Key].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\SQL Log Rescue 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Super Sudoku 1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Symantec.AntiVirus.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Synchro Backup Professional 1.0 (Key).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Tag Backup & Restore 1.1.4.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Tasker 3.14 [Serial].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\TasMan 3.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\The Billing Software 2.03 (Patch).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\The Property Manager Corporate 4.3.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\ThunderSetup Standard 2.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\TimeWarp 3.0 (With Crack).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared	mWorks R-View 1.6.0 [Cracked].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\TrayIcon Standard 1.4.6.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Ultimate Mahjong 1.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\UniCon 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\unWC 3.30 build 1070.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\UpdateIP JumpGate 0.4.55 Beta Patch.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Versomatic 1.0 Build 267 (Key+Serial).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\ViceVersa PRO 2.0 build 2014.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Virtual DJ Studio 4.8.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Voice Tracker 1.3.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Wall 2.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Warcraft III - Accordium map 2.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\What's Hot on eBay 1.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Wordmagus 2.02.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\WordSmith 2.2.23.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Wordware CD Player for Word 2.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\WriteExpress Rhymer and Phonetic Finder 2002.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\X360 Multiple Video Player ActiveX OCX 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\xp font viewer 2.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\XTea Encoder for Delphi 1.0.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\YME Remote 1.5.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\ZipIt 2.2.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\list.oct (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\srvlist.oct (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\---.kaspersky.6.0.1.411.keygen.1.16.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Acala_DVD_Ripper_iPod_PSP_Converter_Bundle_2.7.7_(KeyGen).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Ace_Currency_Calculator_1.3.1_(Patch).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\ActiveWinamp 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Active_Directory_Network_Manager_2.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Active_ISO_Burner_2.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Adaeria Today! 0.36.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Advanced_Internet_Tool_2.2.2_Build_110_Key+Serial.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\AdvEdit 1.01.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Aesop GIF Creator 2.0.715.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\AnVir Task Manager Free 5.1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Aquarium_of_Love_1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Arm_Whois_2.10_[Cracked].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Arturo's_Musical_Sombra_2.0_[Key].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Atlantis Screensaver 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Auto_Friend_Adding_Machine_1.5_[Cracked].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Avast!.Pro.-.Antivirus.(Español).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\awEventMgr 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\BackDoor.Rebbew (A,B,C,D) Removal Tool.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Balanced Scorecard Designer 1.3.0.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Beholder_2.1.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Cdi_Informer_1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Cleantouch Yarn Processing System 1.0 [With Crack].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\ClearBoard 2.0.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Command_&_Conquer_Generals_1.02_patch.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Contact_This_2.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Copy_Cat_2.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\CoverFactory 2.50.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Crypt_Keeper_WP_0.001.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Delete Doctor 2.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\DERescue_Data_Recovery_Master_2.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Dialog_Mate_1.54.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\DirectX_Tweaker_Public_Beta_3.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Discogs Gadget 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Doc061_1.0_[Serial].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\DocDockPro_1.2.1054.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Doc_Convertor_1.0.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\DopeCode_Nusic_1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\DownloadIt_Toolbar_1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\DVD to Pocket PC 4.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\E-mail Reminder 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Easy2share 2.3.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\EldoS KeyLord 5.0 build 141.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\eMule_Turbo_Accelerator_2.4.9_Serial.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Express Dial 1.1 (Cracked).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\EyeOnSite 1.7.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\EZ_Backup_PowerPoint_Pro_4.7_Key+Serial.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Favorites Zoomer 1.00.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\FTP SCVS 0.9.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Google Map Opera Widget 1.3.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Hacker_2004_Digital_Evil_2.4.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\HeavyMath_Cam_3D_Webmaster_Edition_3.5.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\HotDog_Junior_1.51.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Icon_Scanner_2.0.7.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Idefisk_1.37.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Internet_EZ_Search_3.0a_(Patch).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\IPCMail 3.2.3 Serial.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\IPligence Community Edition 0307.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\iReport_1.3.3.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\iStudy_04.1.58.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\JFileUpload 2.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Jpg+FileBinder 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Key_Extender_3.9.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\KGB Employee Monitor 4.2.2.809.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Applicatio

merzhin_22 · Answer

voila le rapport : 

Malwarebytes' Anti-Malware 1.18
Version de la base de données: 873

14:39:10 21/06/2008
mbam-log-6-21-2008 (14-39-10).txt

Type de recherche: Examen complet (C:\|)
Eléments examinés: 141476
Temps écoulé: 27 minute(s), 16 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 5
Fichier(s) infecté(s): 502

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\WINDOWS\system32\drivers\down (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared (Trojan.Agent) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP246\A0151434.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP248\A0153696.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP252\A0154209.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP255\A0154387.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP257\A0154602.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP262\A0156250.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP284\A0169916.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP284\A0169917.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP284\A0169922.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP284\A0169929.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP284\A0169931.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP284\A0169935.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP284\A0169936.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP284\A0169937.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP284\A0169947.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP284\A0169949.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP284\A0169955.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{6B93BAA4-227C-4D17-9271-52B06597523C}\RP284\A0169956.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\112046.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\114812.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\116937.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\118578.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\119734.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\124328.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\126703.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\13293156.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\138062.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\144812.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\147781.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\14897218.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\14900953.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\14905500.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\14942750.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\14958953.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\14963609.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\14969218.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\14973843.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\15012906.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\15028234.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\15029437.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\15031859.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\150359.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\15046171.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\150484.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\15052359.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\15098515.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\151328.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\154046.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\154203.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\15558218.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\158515.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\161906.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\165015.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\16698421.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\167531.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\174484.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\175218.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\175593.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\175828.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\176953.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\178468.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\17866859.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\17871843.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\17880062.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\17976953.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\17990343.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\18018984.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\18026328.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\18042453.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\180656.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\18074546.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\18076859.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\18085750.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\18091375.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\18127093.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\18135671.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\183125.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\185343.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\186250.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\187562.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\188046.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\191750.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\192421.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\192453.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\200812.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\20512968.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\20957015.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\21943109.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\21945890.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\22053562.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\22100546.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\22172281.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\22325156.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\22398500.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\22424265.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\22592531.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\229078.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\25347578.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\258921.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\26118609.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\26452890.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\2704093.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\275515.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\279593.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\282343.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\28332515.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\28351953.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\284328.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\286625.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\288687.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\288796.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\29165125.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\29170750.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\29173968.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\29259484.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\29281343.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\29370156.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\29394843.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\29491734.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\29541828.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\29568375.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\29642968.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\297937.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\29895937.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\303406.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\314437.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3276875.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3281734.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3291906.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\329796.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3334296.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3346390.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3350546.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3354218.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3357484.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3366250.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3370640.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3371546.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3372359.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3382953.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3386796.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\339296.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3416859.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\3717046.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\394093.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\396437.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\406218.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\406843.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\410265.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\414484.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\421421.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\4307406.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\441609.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\4469250.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\450125.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\450750.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\451437.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\4534328.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\4717625.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\473109.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\503031.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\5161078.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\565234.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\596843.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\645781.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\654484.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\655953.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\663359.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\722125.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\730390.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\7460546.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\76000.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\853640.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\89156.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\89187.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\93203.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\94968.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down\99500.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\ABA-X1 1.2 build 17.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Acez MP3 WAV Converter 3.0.6 (Key+Serial).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\AD Heart of Jungle - Animated Desktop Wallpaper 3.11.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\AddressBook 7.01.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Advanced Backup 1.8.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\AffiliateEXE 1.0 [Crack].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Algebra - One On One 4.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Alien Dreams Screensaver 6.0 [KeyGen].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Alive Organizer 2.2.43.31 (Patch).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Allok WMA MP3 Converter 1.1.0 (Serial).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\AlwaysOnLine 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Amadis iPod Video Converter 2.0.0 Key.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Arm Whois 2.10 [Cracked].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Armadillo Mail 4.0 [Key].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Art-Scan 5.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\AstroPop 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Automatic Print Email 2.08 [Key].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Auvisoft Audio Splitter Joiner 1.6.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\AWS Docket 3.0 (KeyGen).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Axence nVision 3.0.1.1940.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Bandwidth Vista 1.01.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Binary Browser 5.3.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Bingo! RM to MP3 Wave Converter 3.4.61212.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Bizz Feed Liner 4.11.01.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\BlackandWhite 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\BlubberPatrol 2.0.3 [Cracked].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\CamTrack 2.4 (Cracked).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\CastleNews 1.26.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Christmas with the Kranks Trailer.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Chrysanth Download Manager 1.6.5.895.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\ClearImage Repair 5.4.11.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Clip Plus 4.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Clipboard Snapper 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Clipboard Swiss-Knife 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Code Co-op 5.0d (Serial).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\CoffeeCup Flash Website Font 3.1 [Crack].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Command & Conquer Renegade 1.037 patch.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\ContextConvert Pro 3.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\CoolClock 1.1 [KeyGen].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\CopyPod Photo 1.02.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Cricket Score 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\CSE HTML Validator Lite 7.0102.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\CyberFresco 1.3 beta.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\DataBase Extractor Pro 2.5i Key+Serial.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\DataToMail 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\DB Explorer 1.0.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\DB Manual 1.3.1 Key+Serial.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Desktop Emailer 1.00.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Digital Picture Resizer ALPHA 1A2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\DVDIdle Pro 5.9.8.5.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\E20-540 Practice Exam Testing Engine Software 1.0 Key.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\East-Tec Eraser 2007 8.5.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Easy Rafters 3.2.1 (Cracked).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\easyFTPClient 2007 4.0.0 [Key+Serial].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\eBLVD Online Meetings 5.3.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\eDoc Studio 1.6.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\EFS Standard 5.58.09.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Egyptian Addiction 1.21.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\eKitaab eBook Manager 0.5.5.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Email C++ Library 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Emailchemy 1.8.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\EMF to Vector Converter 2.0 (Serial).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Exsate VideoExpress 2.4.0.383.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Fast Explorer Context Menu Extension DLL 2.2.9.151.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\File and Folder Protector 2.84 With Crack.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\FileWasher Pro 1.32k.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Fireworks Simulation Engine 2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Flasher Suite 1.0 (Key).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\ForceShutDown 1.5.144.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\FreeTheWeed 1.0 With Crack.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\FWD Gym - Feedback Weight-training Designer 2.1.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\GetWebPics Home edition 2.9.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Google Desktop SDK.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Ground Control map pack 2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Guitar Scales Method 1.0.2.3.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Gunman Chronicles Command Center map.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Handy Xtra Stuff 1.4.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\HandyBits Voice Mail for Kids 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Hill Solutions BookCenter 1.4 Key.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\HotHTML 3 Professional 1.5.3000 Fixpack 5 [Key+Serial].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Household Register 2002 6.0a.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\HTML CaseChanger 1.0.23.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\IceCendol Mobile Phone Instant Messenger 1.0.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\ImTOO DVD Ripper 4.0.85.0809 [Key].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\InterNeo 4.2.9.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Invdochat 7.6.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Irish To The max Screensaver 1.0 [Key+Serial].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\KASPERSKY.ANTI-VIRUS.PERSONAL.V5.0.149.4-CRACK-DANBHOY.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Kill Win Pro 13.161.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\KUBI 1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\LifeBoat 1.1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\LingvoSoft Dictionary 2007 English - French 4.0.22 (KeyGen).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\LinkVisitor 2.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Magic Whiteboard 1.8 Serial.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\MB Free Inner Dreams Number 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\McAfee.LinuxShield.v1.2.0.757.Linux.Retail-ZWT.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Mcafee.Virus-Scan.Plus.2007-Sp33Dcrew.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\MemDB Quotation System 1.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Menurites 1.4.0.0 (Key).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Miraplacid Text Driver 2007 Terminal Edition 5.0 (Serial).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\MissouriDoppler! 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\MP3 Format ActiveX 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\MP3Fox 3.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\MSDict Concise Oxford English Dictionary (Windows) 3.10.15 Key.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Mznt Browser 1.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared
ews of the word of the day 0.0.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\NI-Spektral Delay 1.6.0.011.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Nox - Deep Freeze map.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Nox - Paradise map.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\NtJobs 0.6.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\NTP Digital Clock 1.0.001.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Okoker Sudoku Pro 2.0 Key.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Orbit 0.3.5.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\ordrumbox 0.7.03.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Oriens MultiPage Basic 1.2.0.511 [KeyGen].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\OstroSoft Internet Tools 6.2 Build 0003.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Othello 1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Oxide 2002 1.1 [With Crack].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Pac Venture--Pac's Oddysee 1.4s.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\PAD-Publisher 2.10.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Password Generator 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\PC Sentinel's Busted Keylogger and Instant Messag 2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\PCMesh Internet Cleanup Lite 3.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Physics Cheat Sheet 1.2 [Serial].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Pocket Oxford Spanish Dictionary (Symbian Series 80) 2.30.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\PR Numbers to MHz converter 0.8.7.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\ProPickZ 2.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\PSolver (Nokia Series 40) 1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\QReport 1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\QuipuKit 1.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\R6 RetailADVANCE 1.0 (Cracked).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\RaidenMAILD 1.9.1.3.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\RandGreg Radio Pro 2.0.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\RaptiComm 1.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\RatheDG Cachalot System 2.1.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Red Eye Remover 2.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\RetroGrade 1.2 [Serial].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\RFC Browser Lite Edition 3.5 [Key+Serial].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\RGS-CPUMeMo 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Ricochet Lost Worlds 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Roadkil's Disk Speed 1.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Rockliffe MailSite SP 7.0.6 Cracked.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Roosl's Mail Filter 4.0 (Key+Serial).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\RS232 Stealth Monitor 1.0 Serial.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Running Track 1.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Sammy Sosa Softball Slam demo.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\SAPEdit 1.62 (Cracked).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Scattered Industries 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Scorecard for Life 1.0.224.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\ScreenCam 2.20 Build 0020 (KeyGen).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Seashores Screen Saver 2.96.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Sendmail 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Serious Sam II multiplayer demo quickfix.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\ShareO for Outlook 2.43.0225.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Shop-Script Free PHP Shopping Cart 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Shuffler 1.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Shut me down 1.1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\SL-Logon 1.00.0005.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Smart Budget 2.0.9.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Smart Password Encryption 1.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\SmartDirCopy 4.0 (Key+Serial).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Smile Icon Set 1.0 (Crack).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Sothink Flash to DVD Converter Suite 1.1 Build 70126 [Patch].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Source Code Scanners for C++ Builder 6 4.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Spytech PopupAgent 2.10 [Key].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\SQL Log Rescue 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Super Sudoku 1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Symantec.AntiVirus.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Synchro Backup Professional 1.0 (Key).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Tag Backup & Restore 1.1.4.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Tasker 3.14 [Serial].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\TasMan 3.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\The Billing Software 2.03 (Patch).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\The Property Manager Corporate 4.3.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\ThunderSetup Standard 2.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\TimeWarp 3.0 (With Crack).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared	mWorks R-View 1.6.0 [Cracked].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\TrayIcon Standard 1.4.6.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Ultimate Mahjong 1.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\UniCon 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\unWC 3.30 build 1070.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\UpdateIP JumpGate 0.4.55 Beta Patch.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Versomatic 1.0 Build 267 (Key+Serial).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\ViceVersa PRO 2.0 build 2014.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Virtual DJ Studio 4.8.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Voice Tracker 1.3.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Wall 2.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Warcraft III - Accordium map 2.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\What's Hot on eBay 1.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Wordmagus 2.02.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\WordSmith 2.2.23.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\Wordware CD Player for Word 2.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\WriteExpress Rhymer and Phonetic Finder 2002.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\X360 Multiple Video Player ActiveX OCX 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\xp font viewer 2.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\XTea Encoder for Delphi 1.0.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\YME Remote 1.5.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\JeanFrançois\Application Data\m\shared\ZipIt 2.2.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\list.oct (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\srvlist.oct (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\---.kaspersky.6.0.1.411.keygen.1.16.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Acala_DVD_Ripper_iPod_PSP_Converter_Bundle_2.7.7_(KeyGen).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Ace_Currency_Calculator_1.3.1_(Patch).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\ActiveWinamp 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Active_Directory_Network_Manager_2.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Active_ISO_Burner_2.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Adaeria Today! 0.36.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Advanced_Internet_Tool_2.2.2_Build_110_Key+Serial.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\AdvEdit 1.01.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Aesop GIF Creator 2.0.715.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\AnVir Task Manager Free 5.1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Aquarium_of_Love_1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Arm_Whois_2.10_[Cracked].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Arturo's_Musical_Sombra_2.0_[Key].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Atlantis Screensaver 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Auto_Friend_Adding_Machine_1.5_[Cracked].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Avast!.Pro.-.Antivirus.(Español).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\awEventMgr 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\BackDoor.Rebbew (A,B,C,D) Removal Tool.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Balanced Scorecard Designer 1.3.0.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Beholder_2.1.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Cdi_Informer_1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Cleantouch Yarn Processing System 1.0 [With Crack].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\ClearBoard 2.0.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Command_&_Conquer_Generals_1.02_patch.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Contact_This_2.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Copy_Cat_2.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\CoverFactory 2.50.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Crypt_Keeper_WP_0.001.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Delete Doctor 2.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\DERescue_Data_Recovery_Master_2.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Dialog_Mate_1.54.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\DirectX_Tweaker_Public_Beta_3.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Discogs Gadget 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Doc061_1.0_[Serial].zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\DocDockPro_1.2.1054.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Doc_Convertor_1.0.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\DopeCode_Nusic_1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\DownloadIt_Toolbar_1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\DVD to Pocket PC 4.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\E-mail Reminder 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Easy2share 2.3.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\EldoS KeyLord 5.0 build 141.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\eMule_Turbo_Accelerator_2.4.9_Serial.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Express Dial 1.1 (Cracked).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\EyeOnSite 1.7.2.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\EZ_Backup_PowerPoint_Pro_4.7_Key+Serial.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Favorites Zoomer 1.00.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\FTP SCVS 0.9.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Google Map Opera Widget 1.3.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Hacker_2004_Digital_Evil_2.4.1.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\HeavyMath_Cam_3D_Webmaster_Edition_3.5.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\HotDog_Junior_1.51.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Icon_Scanner_2.0.7.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Idefisk_1.37.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Internet_EZ_Search_3.0a_(Patch).zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\IPCMail 3.2.3 Serial.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\IPligence Community Edition 0307.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\iReport_1.3.3.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\iStudy_04.1.58.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\JFileUpload 2.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Jpg+FileBinder 1.0.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\Key_Extender_3.9.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application Data\m\shared\KGB Employee Monitor 4.2.2.809.zip (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Cécile\Application

Utilisateur anonyme · Answer

he ben y a un sacré merdié la dedans

réouvre malewarebyte
va sur quarantaine
supprime tout 

Télécharge clean.zip, de Malekal 
http://www.malekal.com/download/clean.zip 



(1) Dézippe-le sur ton bureau (clic droit / extraire tout), tu dois obtenir un dossier clean. 

(2) Ouvre le dossier clean qui se trouve sur ton bureau, et double-clic sur clean.cmd 

une fenêtre noire va apparaître pendant un instant, laisse la ouverte. 

(3) Choisis l'option 1 puis patiente 
Poste le rapport obtenu 


pour retrouver le rapport : double clique sur > C > double clique sur " rapport_clean txt. 
et copie/colle le sur ta prochaine réponse . 

Ne passe pas à l'option 2 sans notre avis !

merzhin_22 · Answer

il a rien trouvé :

/06/2008 a 15:55:08,73 
 
*** Recherche des fichiers dans C: 
 
*** Recherche des fichiers dans C:\WINDOWS\ 
 
*** Recherche des fichiers dans C:\WINDOWS\system32 
 
*** Recherche des fichiers dans C:\Program Files

Utilisateur anonyme · Answer

oki

on va retenter combofix

Télécharge combofix : http://download.bleepingcomputer.com/sUBs/ComboFix.exe 


-> Double clique combofix.exe. 
-> Tape sur la touche 1 (Yes) pour démarrer le scan. 
-> Lorsque le scan sera complété, un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse. 

NOTE : Le rapport se trouve également ici : C:\Combofix.txt 

Avant d'utiliser ComboFix : 

-> Déconnecte toi d'internet et referme les fenêtres de tous les programmes en cours. 

-> Désactive provisoirement et seulement le temps de l'utilisation de ComboFix, la protection en temps réel de ton Antivirus et de tes Antispywares, qui peuvent géner fortement la procédure de recherche et de nettoyage de l'outil. 

Une fois fait, sur ton bureau double-clic sur Combofix.exe. 

- Répond oui au message d'avertissement, pour que le programme commence à procéder à l'analyse du pc. 

/!\ Pendant la durée de cette étape, ne te sert pas du pc et n'ouvre aucun programmes. 

- En fin de scan il est possible que ComboFix ait besoin de redemarrer le pc pour finaliser la désinfection\recherche, laisses-le faire. 

- Un rapport s'ouvrira ensuite dans le bloc notes, ce fichier rapport Combofix.txt, est automatiquement sauvegardé et rangé à C:\Combofix.txt) 

-> Réactive la protection en temps réel de ton Antivirus et de tes Antispywares, avant de te reconnecter à internet. 

-> Reviens sur le forum, et copie et colle la totalité du contenu de C:\Combofix.txt dans ton prochain message. 

-> Tutoriel https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix

merzhin_22 · Answer

voila le rapport de combofix : ComboFix 08-06-20.4 - aaa 2008-06-21 16:09:21.1 - NTFSx86 Microsoft Windows XP Édition familiale 5.1.2600.2.1252.1.1036.18.645 [GMT 2:00] Endroit: C:\Documents and Settings\aaa\Bureau\combofix.exe * Création d'un nouveau point de restauration [color=red][b]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/b][/color] . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . C:\WINDOWS\system32\drivers\downld C:\WINDOWS\system32\drivers\downld\1018875.exe C:\WINDOWS\system32\drivers\downld\1021125.exe C:\WINDOWS\system32\drivers\downld\1027750.exe C:\WINDOWS\system32\drivers\downld\1029921.exe C:\WINDOWS\system32\drivers\downld\1036578.exe C:\WINDOWS\system32\drivers\downld\1039515.exe C:\WINDOWS\system32\drivers\downld\1048250.exe C:\WINDOWS\system32\drivers\downld\1051140.exe C:\WINDOWS\system32\drivers\downld\1056609.exe C:\WINDOWS\system32\drivers\downld\1058453.exe C:\WINDOWS\system32\drivers\downld\1066484.exe C:\WINDOWS\system32\drivers\downld\1076812.exe C:\WINDOWS\system32\drivers\downld\1077390.exe C:\WINDOWS\system32\drivers\downld\1079843.exe C:\WINDOWS\system32\drivers\downld\1098234.exe C:\WINDOWS\system32\drivers\downld\1115218.exe C:\WINDOWS\system32\drivers\downld\1124203.exe C:\WINDOWS\system32\drivers\downld\1128406.exe C:\WINDOWS\system32\drivers\downld\1135328.exe C:\WINDOWS\system32\drivers\downld\1151843.exe C:\WINDOWS\system32\drivers\downld\1211640.exe C:\WINDOWS\system32\drivers\downld\1221078.exe C:\WINDOWS\system32\drivers\downld\1236468.exe C:\WINDOWS\system32\drivers\downld\1243890.exe C:\WINDOWS\system32\drivers\downld\13154703.exe C:\WINDOWS\system32\drivers\downld\13211031.exe C:\WINDOWS\system32\drivers\downld\13269765.exe C:\WINDOWS\system32\drivers\downld\13333109.exe C:\WINDOWS\system32\drivers\downld\13357812.exe C:\WINDOWS\system32\drivers\downld\1344796.exe C:\WINDOWS\system32\drivers\downld\1351890.exe C:\WINDOWS\system32\drivers\downld\1370265.exe C:\WINDOWS\system32\drivers\downld\1380203.exe C:\WINDOWS\system32\drivers\downld\1388484.exe C:\WINDOWS\system32\drivers\downld\1410859.exe C:\WINDOWS\system32\drivers\downld\1476812.exe C:\WINDOWS\system32\drivers\downld\1512843.exe C:\WINDOWS\system32\drivers\downld\15210546.exe C:\WINDOWS\system32\drivers\downld\15220750.exe C:\WINDOWS\system32\drivers\downld\15230328.exe C:\WINDOWS\system32\drivers\downld\15258250.exe C:\WINDOWS\system32\drivers\downld\15282328.exe C:\WINDOWS\system32\drivers\downld\15328484.exe C:\WINDOWS\system32\drivers\downld\15337875.exe C:\WINDOWS\system32\drivers\downld\1534390.exe C:\WINDOWS\system32\drivers\downld\15354984.exe C:\WINDOWS\system32\drivers\downld\15367765.exe C:\WINDOWS\system32\drivers\downld\15387687.exe C:\WINDOWS\system32\drivers\downld\15392125.exe C:\WINDOWS\system32\drivers\downld\15396546.exe C:\WINDOWS\system32\drivers\downld\15451078.exe C:\WINDOWS\system32\drivers\downld\1548437.exe C:\WINDOWS\system32\drivers\downld\15496421.exe C:\WINDOWS\system32\drivers\downld\15504265.exe C:\WINDOWS\system32\drivers\downld\15544062.exe C:\WINDOWS\system32\drivers\downld\15553109.exe C:\WINDOWS\system32\drivers\downld\15567390.exe C:\WINDOWS\system32\drivers\downld\15581781.exe C:\WINDOWS\system32\drivers\downld\15593171.exe C:\WINDOWS\system32\drivers\downld\15603890.exe C:\WINDOWS\system32\drivers\downld\15639109.exe C:\WINDOWS\system32\drivers\downld\1566781.exe C:\WINDOWS\system32\drivers\downld\1567562.exe C:\WINDOWS\system32\drivers\downld\15684062.exe C:\WINDOWS\system32\drivers\downld\15687140.exe C:\WINDOWS\system32\drivers\downld\15708234.exe C:\WINDOWS\system32\drivers\downld\15758796.exe C:\WINDOWS\system32\drivers\downld\15781796.exe C:\WINDOWS\system32\drivers\downld\15797312.exe C:\WINDOWS\system32\drivers\downld\15817578.exe C:\WINDOWS\system32\drivers\downld\15913937.exe C:\WINDOWS\system32\drivers\downld\15931390.exe C:\WINDOWS\system32\drivers\downld\15953281.exe C:\WINDOWS\system32\drivers\downld\15967937.exe C:\WINDOWS\system32\drivers\downld\1596937.exe C:\WINDOWS\system32\drivers\downld\16503171.exe C:\WINDOWS\system32\drivers\downld\16511921.exe C:\WINDOWS\system32\drivers\downld\16539828.exe C:\WINDOWS\system32\drivers\downld\17665750.exe C:\WINDOWS\system32\drivers\downld\17718390.exe C:\WINDOWS\system32\drivers\downld\17737031.exe C:\WINDOWS\system32\drivers\downld\17757484.exe C:\WINDOWS\system32\drivers\downld\17765875.exe C:\WINDOWS\system32\drivers\downld\1813187.exe C:\WINDOWS\system32\drivers\downld\1827390.exe C:\WINDOWS\system32\drivers\downld\1839312.exe C:\WINDOWS\system32\drivers\downld\19014187.exe C:\WINDOWS\system32\drivers\downld\19116125.exe C:\WINDOWS\system32\drivers\downld\19204359.exe C:\WINDOWS\system32\drivers\downld\19220968.exe C:\WINDOWS\system32\drivers\downld\19233875.exe C:\WINDOWS\system32\drivers\downld\25584265.exe C:\WINDOWS\system32\drivers\downld\25588875.exe C:\WINDOWS\system32\drivers\downld\25602484.exe C:\WINDOWS\system32\drivers\downld\25620203.exe C:\WINDOWS\system32\drivers\downld\25672203.exe C:\WINDOWS\system32\drivers\downld\25689578.exe C:\WINDOWS\system32\drivers\downld\25702828.exe C:\WINDOWS\system32\drivers\downld\25708906.exe C:\WINDOWS\system32\drivers\downld\2755000.exe C:\WINDOWS\system32\drivers\downld\2809531.exe C:\WINDOWS\system32\drivers\downld\2897859.exe C:\WINDOWS\system32\drivers\downld\2918156.exe C:\WINDOWS\system32\drivers\downld\2926703.exe C:\WINDOWS\system32\drivers\downld\3095281.exe C:\WINDOWS\system32\drivers\downld\3100500.exe C:\WINDOWS\system32\drivers\downld\3103828.exe C:\WINDOWS\system32\drivers\downld\3148218.exe C:\WINDOWS\system32\drivers\downld\3167828.exe C:\WINDOWS\system32\drivers\downld\3172640.exe C:\WINDOWS\system32\drivers\downld\3215968.exe C:\WINDOWS\system32\drivers\downld\3246375.exe C:\WINDOWS\system32\drivers\downld\3262218.exe C:\WINDOWS\system32\drivers\downld\3288484.exe C:\WINDOWS\system32\drivers\downld\4079609.exe C:\WINDOWS\system32\drivers\downld\4145218.exe C:\WINDOWS\system32\drivers\downld\426906.exe C:\WINDOWS\system32\drivers\downld\4329421.exe C:\WINDOWS\system32\drivers\downld\433593.exe C:\WINDOWS\system32\drivers\downld\4350562.exe C:\WINDOWS\system32\drivers\downld\4373828.exe C:\WINDOWS\system32\drivers\downld\4385171.exe C:\WINDOWS\system32\drivers\downld\465125.exe C:\WINDOWS\system32\drivers\downld\480406.exe C:\WINDOWS\system32\drivers\downld\488000.exe C:\WINDOWS\system32\drivers\downld\589062.exe C:\WINDOWS\system32\drivers\downld\593468.exe C:\WINDOWS\system32\drivers\downld\595968.exe C:\WINDOWS\system32\drivers\downld\597984.exe C:\WINDOWS\system32\drivers\downld\618531.exe C:\WINDOWS\system32\drivers\downld\618906.exe C:\WINDOWS\system32\drivers\downld\637500.exe C:\WINDOWS\system32\drivers\downld\650515.exe C:\WINDOWS\system32\drivers\downld\653656.exe C:\WINDOWS\system32\drivers\downld\665859.exe C:\WINDOWS\system32\drivers\downld\695281.exe C:\WINDOWS\system32\drivers\downld\697437.exe C:\WINDOWS\system32\drivers\downld\728125.exe C:\WINDOWS\system32\drivers\downld\7410718.exe C:\WINDOWS\system32\drivers\downld\741750.exe C:\WINDOWS\system32\drivers\downld\7421468.exe C:\WINDOWS\system32\drivers\downld\7478078.exe C:\WINDOWS\system32\drivers\downld\7501328.exe C:\WINDOWS\system32\drivers\downld\751875.exe C:\WINDOWS\system32\drivers\downld\752343.exe C:\WINDOWS\system32\drivers\downld\752562.exe C:\WINDOWS\system32\drivers\downld\761406.exe C:\WINDOWS\system32\drivers\downld\7625562.exe C:\WINDOWS\system32\drivers\downld\7654578.exe C:\WINDOWS\system32\drivers\downld\7669140.exe C:\WINDOWS\system32\drivers\downld\770093.exe C:\WINDOWS\system32\drivers\downld\780890.exe C:\WINDOWS\system32\drivers\downld\791984.exe C:\WINDOWS\system32\drivers\downld\822546.exe C:\WINDOWS\system32\drivers\downld\832234.exe C:\WINDOWS\system32\drivers\downld\852171.exe C:\WINDOWS\system32\drivers\downld\856265.exe C:\WINDOWS\system32\drivers\downld\861218.exe C:\WINDOWS\system32\drivers\downld\868531.exe C:\WINDOWS\system32\drivers\downld\875859.exe C:\WINDOWS\system32\drivers\downld\883125.exe C:\WINDOWS\system32\drivers\downld\891000.exe C:\WINDOWS\system32\drivers\downld\892484.exe C:\WINDOWS\system32\drivers\downld\892765.exe C:\WINDOWS\system32\drivers\downld\901000.exe C:\WINDOWS\system32\drivers\downld\904718.exe C:\WINDOWS\system32\drivers\downld\910000.exe C:\WINDOWS\system32\drivers\downld\918296.exe C:\WINDOWS\system32\drivers\downld\919250.exe C:\WINDOWS\system32\drivers\downld\923203.exe C:\WINDOWS\system32\drivers\downld\967312.exe C:\WINDOWS\system32\drivers\downld\999828.exe . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Legacy_SROSA ((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-05-21 to 2008-06-21 )))))))))))))))))))))))))))))))))))) . 2008-06-21 15:55 . 2008-06-21 15:55 10,289,059 --a------ C:\upload_moi_PERSO-56A476DCE.tar.gz 2008-06-21 12:33 . 2008-06-21 12:33 d-------- C:\Program Files\Malwarebytes' Anti-Malware 2008-06-21 12:33 . 2008-06-19 17:48 34,296 --a------ C:\WINDOWS\system32\drivers\mbamcatchme.sys 2008-06-21 12:33 . 2008-06-19 17:47 17,144 --a------ C:\WINDOWS\system32\drivers\mbam.sys 2008-06-21 12:01 . 2008-06-21 11:56 178,872 --a------ C:\WINDOWS\system32\drivers\PavProc.sys 2008-06-21 12:01 . 2008-06-21 11:56 38,968 --a------ C:\WINDOWS\system32\drivers\ShlDrv51.sys 2008-06-21 11:42 . 2008-06-21 11:42 d-------- C:\Nouveau dossier 2008-06-21 11:11 . 2008-06-21 11:36 d-------- C:\WINDOWS\system32\oodag 2008-06-21 10:39 . 2008-06-21 16:12 11,493 --a------ C:\WINDOWS\system32\oodbs.lor 2008-06-21 00:14 . 2008-06-21 00:14 0 --a------ C:\WINDOWS\oodcnt.INI 2008-06-21 00:13 . 2008-06-21 00:13 d-------- C:\Program Files\OO Software 2008-06-20 23:46 . 2008-06-20 23:46 1,374 --a------ C:\WINDOWS\imsins.BAK 2008-06-20 23:32 . 2008-06-20 23:32 d-------- C:\5099e7fe7b92349f5b 2008-06-20 23:06 . 2008-06-20 23:06 d-------- C:\d0f0280b03566a1fab 2008-06-20 19:48 . 2008-06-20 19:48 d-------- C:\Documents and Settings\aaa\.java 2008-06-20 19:48 . 2008-06-20 19:48 40 --a------ C:\WINDOWS\TSC.INI 2008-06-20 19:47 . 2008-06-20 19:47 507,904 --a------ C:\WINDOWS\TMUPDATE.DLL 2008-06-20 19:47 . 2008-06-20 19:47 286,720 --a------ C:\WINDOWS\PATCH.EXE 2008-06-20 19:47 . 2008-06-20 19:47 69,689 --a------ C:\WINDOWS\UNZIP.DLL 2008-06-20 19:09 . 2008-06-20 19:09 d-------- C:\Program Files\XBox 360 Controller for Windows Software 2008-06-20 10:47 . 2008-06-20 10:47 d---s---- C:\Documents and Settings\aaa\UserData 2008-06-20 10:41 . 2008-06-20 10:41 d-------- C:\Program Files\Trend Micro 2008-06-20 09:43 . 2008-06-20 09:43 d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2008-06-20 09:43 . 2008-06-20 09:43 d-------- C:\Documents and Settings\aaa\Application Data\Malwarebytes 2008-06-20 09:36 . 2008-06-20 09:36 d-------- C:\Program Files\CCleaner 2008-06-20 09:19 . 2008-06-20 10:47 d-------- C:\Documents and Settings\aaa\Contacts 2008-06-19 20:02 . 2008-06-20 19:03 d-------- C:\Program Files\EA Sports 2008-06-19 17:58 . 2008-01-18 18:23 d--h----- C:\Documents and Settings\aaa\Voisinage r‚seau 2008-06-19 17:58 . 2008-01-18 18:23 d--h----- C:\Documents and Settings\aaa\Voisinage d'impression 2008-06-19 17:58 . 2008-01-18 17:34 d--h----- C:\Documents and Settings\aaa\ModŠles 2008-06-19 17:58 . 2008-06-20 23:54 d---s---- C:\Documents and Settings\aaa\Mes documents 2008-06-19 17:58 . 2008-01-18 18:23 dr------- C:\Documents and Settings\aaa\Menu D‚marrer 2008-06-19 17:58 . 2008-06-19 17:59 d---s---- C:\Documents and Settings\aaa\Favoris 2008-06-19 17:58 . 2008-06-21 16:04 d-------- C:\Documents and Settings\aaa\Bureau 2008-06-19 17:58 . 2008-06-21 12:30 d-------- C:\Documents and Settings\aaa 2008-06-16 20:40 . 2008-06-16 20:40 d-------- C:\Program Files\Fichiers communs\SpellEx 2008-06-16 20:24 . 2008-06-16 20:40 d-------- C:\Program Files\TI Education 2008-06-16 20:24 . 2008-06-16 20:40 d-------- C:\Program Files\Fichiers communs\TI Shared 2008-06-16 20:04 . 2004-01-28 15:03 21,456 --a------ C:\WINDOWS\system32\drivers\SilvrLnk.sys 2008-06-14 19:33 . 2008-06-14 19:33 d-------- C:\Program Files\AVG 2008-06-14 19:33 . 2008-06-14 19:33 d-------- C:\Documents and Settings\All Users\Application Data\avg8 2008-06-03 22:11 . 2008-06-03 22:11 d-------- C:\Program Files\Real 2008-06-03 22:11 . 2008-06-03 22:11 d-------- C:\Program Files\Fichiers communs\xing shared 2008-06-03 22:11 . 2008-06-03 22:11 d-------- C:\Program Files\Fichiers communs\Real 2008-05-31 11:42 . 2008-05-31 11:42 d-------- C:\WINDOWS\system32\PAV 2008-05-31 11:42 . 2007-09-28 13:24 83,896 --a------ C:\WINDOWS\system32\drivers\pavdrv51.sys 2008-05-31 11:42 . 2007-03-15 18:38 54,832 --a------ C:\WINDOWS\system32\pavcpl.cpl 2008-05-31 11:42 . 2007-02-15 20:02 50,736 --a------ C:\WINDOWS\system32\avldr.dll 2008-05-31 11:42 . 2008-05-31 11:42 248 --a------ C:\WINDOWS\system32\PavCPL.dat . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-06-21 14:12 --------- d-----w C:\Program Files\Wanadoo 2008-06-21 10:01 --------- d-----w C:\Program Files\Fichiers communs\Panda Software 2008-06-20 17:03 --------- d-----w C:\Program Files\Steam 2008-06-20 16:47 --------- d-----w C:\Documents and Settings\Papa et Maman\Application Data\OpenOffice.org2 2008-06-20 08:26 --------- d-----w C:\Program Files\eMule 2008-06-16 18:40 --------- d-----w C:\Program Files\Fichiers communs\Wise Installation Wizard 2008-05-31 09:42 --------- d--h--w C:\Program Files\InstallShield Installation Information 2008-05-31 09:42 --------- d-----w C:\Program Files\Panda Security 2008-05-18 18:36 --------- d-----w C:\Documents and Settings\All Users\Application Data\Kaspersky Lab 2008-05-18 18:35 81,465 -c--a-w C:\WINDOWS\system32\drivers\klif.cab 2008-05-17 22:37 --------- d-----w C:\Program Files\a-squared Free 2008-05-17 20:16 --------- d-----w C:\Program Files\SuperCopier2 2008-05-16 16:34 --------- d-----w C:\Program Files\JavaSoft 2008-05-16 16:34 --------- d-----w C:\Program Files\Fichiers communs\InstallShield 2008-05-14 16:08 --------- d-----w C:\Program Files\WindSolutions 2008-05-10 09:24 --------- d-----w C:\Program Files\iTunes 2008-05-10 09:24 --------- d-----w C:\Program Files\iPod 2008-05-10 09:22 --------- d-----w C:\Program Files\QuickTime 2008-05-10 09:22 --------- d-----w C:\Program Files\Apple Software Update 2008-05-10 09:21 --------- d-----w C:\Documents and Settings\All Users\Application Data\Apple 2008-05-10 09:16 --------- d-----w C:\Documents and Settings\All Users\Application Data\CopyTransControlCenter 2008-05-09 21:05 --------- d-----w C:\Documents and Settings\All Users\Application Data\Apple Computer 2008-05-09 21:04 --------- d-----w C:\Program Files\HyCam2 2008-05-08 13:19 --------- d-----w C:\Program Files\Fichiers communs\AVSMedia 2008-05-08 13:17 --------- d-----w C:\Program Files\Windows Live 2008-04-22 11:24 --------- d-----w C:\Documents and Settings\All Users\Application Data\Grisoft 2008-04-17 08:39 60,416 -c--a-w C:\WINDOWS\ALCFDRTM.EXE 2008-03-29 22:12 290,816 -c----w C:\WINDOWS\Setup1.exe 2007-08-28 12:54 237,568 -c--a-w C:\Program Files\mozilla firefox\plugins\CrazyTalk4Native.dll 2006-05-25 17:43 204,895 -c--a-w C:\Program Files\mozilla firefox\plugins\ctdomemhelper.dll 2005-09-29 13:41 77,824 -c--a-w C:\Program Files\mozilla firefox\plugins\ctframeplayerobject.dll 2006-06-19 12:10 426,081 -c--a-w C:\Program Files\mozilla firefox\plugins\ctplayerobject.dll 2005-02-02 11:19 458,752 -c--a-w C:\Program Files\mozilla firefox\plugins\imagickrt.dll 2006-04-10 17:35 139,264 -c--a-w C:\Program Files\mozilla firefox\plugins\rlcontentclass.dll 2005-11-09 10:10 204,800 -c--a-w C:\Program Files\mozilla firefox\plugins\RLMusicPacker.dll 2005-11-09 10:42 106,496 -c--a-w C:\Program Files\mozilla firefox\plugins\RLMusicUnpacker.dll 2006-01-04 10:22 212,992 -c--a-w C:\Program Files\mozilla firefox\plugins\RLVoicePacker.dll 2006-01-04 10:21 167,936 -c--a-w C:\Program Files\mozilla firefox\plugins\RLVoiceUnpacker.dll . ((((((((((((((((((((((((((((((((( Point de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))) . . REGEDIT4 *Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2006-03-02 14:00 15360] "WOOKIT"="C:\Program Files\Wanadoo\GestMaj.exe" [2004-10-14 16:55 32768] "msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 12:34 5724184] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SoundMan"="SOUNDMAN.EXE" [2006-11-17 06:42 577536 C:\WINDOWS\soundman.exe] "NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2007-12-05 02:41 8523776] "nwiz"="nwiz.exe" [2007-12-05 02:41 1626112 C:\WINDOWS\system32\nwiz.exe] "NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2007-12-05 02:41 81920] "ISUSScheduler"="C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" [2005-02-16 17:15 81920] "WOOWATCH"="C:\PROGRA~1\Wanadoo\Watch.exe" [2004-08-23 14:49 20480] "WOOTASKBARICON"="C:\PROGRA~1\Wanadoo\GestMaj.exe" [2004-10-14 16:55 32768] "QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2008-03-28 23:37 413696] "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2008-03-30 10:36 267048] "TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [2008-06-03 22:11 185896] "OODefragTray"="C:\WINDOWS\system32\oodtray.exe" [2007-06-28 23:01 2512128] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "AllowLegacyWebView"= 1 (0x1) "AllowUnhashedWebView"= 1 (0x1) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avldr] avldr.dll 2007-02-15 20:02 50736 C:\WINDOWS\system32\avldr.dll [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Notification Packages REG_MULTI_SZ scecli scecli scecli scecli scecli [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr] @="Service" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sglfb.sys] @="Driver" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\tga.sys] @="Driver" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\wd.sys] @="Driver" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] --a------ 2008-03-30 10:36 267048 C:\Program Files\iTunes\iTunesHelper.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr] --a--c--- 2007-10-18 12:34 5724184 C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "Nero BackItUp Scheduler 3"=2 (0x2) [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" -atboottime "NBKeyScan"="C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\system32\sessmgr.exe"= "%windir%\Network Diagnostic\xpnetdiag.exe"= "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"= "C:\Program Files\Windows Live\Messenger\livecall.exe"= "C:\Program Files\iTunes\iTunes.exe"= "C:\WINDOWS\system32\PnkBstrA.exe"= "C:\WINDOWS\system32\PnkBstrB.exe"= "C:\Program Files\Steam\steamapps\snak90\condition zero\hl.exe"= "C:\Program Files\Steam\steamapps\snak90\counter-strike\hl.exe"= "C:\Program Files\Steam\steamapps\snak90\dedicated server\hlds.exe"= "C:\Program Files\EA Sports\UEFA EURO 2008\EURO08.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "12590:TCP"= 12590:TCP:BitComet 12590 TCP "12590:UDP"= 12590:UDP:BitComet 12590 UDP "27015:TCP"= 27015:TCP:dedicated server "27015:UDP"= 27015:UDP:dedicated server R1 ShldDrv;Panda File Shield Driver;C:\WINDOWS\system32\DRIVERS\ShlDrv51.sys [2008-06-21 11:56] R2 PavProc;Panda Process Protection Driver;C:\WINDOWS\system32\DRIVERS\PavProc.sys [2008-06-21 11:56] R3 CnxEtP;ZTE ZXDSL852 Adapter Filter Driver;C:\WINDOWS\system32\DRIVERS\CnxEtP.sys [2005-05-20 19:27] R3 CnxEtU;ZTE ZXDSL852 Interface Device Driver;C:\WINDOWS\system32\DRIVERS\CnxEtU.sys [2005-05-20 19:27] R3 CnxTgNW;ZTE ZXDSL852 WAN PPPoA Adapter Driver;C:\WINDOWS\system32\DRIVERS\CnxTgNW.sys [2005-05-20 19:28] S0 IoloFilter;IoloFilter;C:\WINDOWS\system32\drivers\IoloFltr.sys [] S2 Windows Update Center;Update Center;"C:\WINDOWS\scvhost.exe" [] S3 x-tern;x-tern;H:\cheat cs 1.6\[cheatdb]_x-tern_v2__2008-03-04\x-tern.sys [] [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{42E00C41-46C1-0FDD-BD32-57CB1CAE4FCF}] C:\WINDOWS\system32:nvidia.exe . Contenu du dossier 'Scheduled Tasks/Tƒches planifi‚es' "2008-06-20 15:15:00 C:\WINDOWS\Tasks\1-Click Maintenance.job" - C:\Program Files\TuneUp Utilities 2008\OneClick.exe "2008-06-20 07:28:05 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job" - C:\Program Files\Apple Software Update\SoftwareUpdate.exe "2008-06-20 15:15:00 C:\WINDOWS\Tasks\Maintenance en 1 clic.job" - C:\Program Files\TuneUp Utilities 2008\OneClick.exe "2008-06-20 15:41:00 C:\WINDOWS\Tasks\{1E887CD9-1CF2-4418-BC4E-318F3E607A7E}_PERSO-56A476DCE_JeanFrançois.job"

Utilisateur anonyme · Answer

OKI 

On aperçoit le bout du tunnel 

refais un scan hijackthis et post le rapport stp

merzhin_22 · Answer

je t'envoie sa demain, ouai on est presque sorti du tunnel ^^xd

Utilisateur anonyme · Answer

oki a demain ciao @++

merzhin_22 · Answer

salut !


Voila le scan en mode sans échecs :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:47, on 2008-06-22
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Safe mode

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SearchPageURL.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayerpbrowserrecordplugin.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvCplDaemon] "RUNDLL32.EXE" C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] "nwiz.exe" /install
O4 - HKLM\..\Run: [NvMediaCenter] "RUNDLL32.EXE" C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OBealsched.exe"  -osboot
O4 - HKLM\..\Run: [OODefragTray] C:\WINDOWS\system32\oodtray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\Program Files\Wanadoo\GestMaj.exe GestionnaireInternet.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O23 - Service: Service d'état ASP.NET (aspnet_state) - Unknown owner - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (file missing)
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Imapi Helper - Alex Feinman - C:\Program Files\Alex Feinman\ISO Recorder\ImapiHelper.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32
vsvc32.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: Panda Software Controller - Panda Software International - C:\Program Files\Panda Security\Panda Antivirus 2008\PsCtrlS.exe
O23 - Service: Panda Process Protection Service (PavPrSrv) - Panda Software - C:\Program Files\Fichiers communs\Panda Software\PavShld\pavprsrv.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Update Center (Windows Update Center) - Unknown owner - C:\WINDOWS\scvhost.exe (file missing)

Utilisateur anonyme · Answer

Copie le texte ci-dessous : 

File:: 
C:\WINDOWS\PATCH.EXE 
C:\upload_moi_PERSO-56A476DCE.tar.gz 
C:\WINDOWS\system32\oodbs.lor 
C:\WINDOWS\Setup1.exe 





Ouvre le Bloc-Notes puis colle le texte copié. 
(Démarrer\Tous les programmes\Accessoires\Bloc notes.) 
Sauvegarde ce fichier sous le nom de CFScript.txt. 

Glisse maintenant le fichier CFScript.txt dans Combofix.exe comme ci-dessous : 

http://sd-1.archive-host.com/membres/up/1366464061/CFScript.gif 

Cela va relancer Combofix, 

Une fenêtre bleue va apparaître: au message qui apparaît ( Type 1 to continue, or 2 to abort) , tape 1 puis valide. 

Patiente le temps du scan.Le bureau va disparaître à plusieurs reprises: c'est normal! 

Ne touche à rien tant que le scan n'est pas terminé. 

Après redémarrage, poste le contenu du rapport Combofix.txt accompagné d'un rapport Hijackthis. 

S'il n'y a pas de rédémarrage, poste quand même les rapports.

merzhin_22 · Answer

voila le rapport de combo en mode normal : ComboFix 08-06-20.4 - aaa 2008-06-22 12:14:03.2 - NTFSx86 Microsoft Windows XP Édition familiale 5.1.2600.2.1252.1.1036.18.651 [GMT 2:00] Endroit: C:\Documents and Settings\aaa\Bureau\combofix.exe Command switches used :: C:\Documents and Settings\aaa\Bureau\CFScript.txt * Création d'un nouveau point de restauration [color=red][b]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/b][/color] FILE :: C:\upload_moi_PERSO-56A476DCE.tar.gz C:\WINDOWS\PATCH.EXE C:\WINDOWS\Setup1.exe C:\WINDOWS\system32\oodbs.lor . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . C:\upload_moi_PERSO-56A476DCE.tar.gz C:\WINDOWS\PATCH.EXE C:\WINDOWS\Setup1.exe C:\WINDOWS\system32\oodag C:\WINDOWS\system32\oodag\0\01C8D390888E64A6\3_2.rpd C:\WINDOWS\system32\oodag\0\01C8D390888E64A6\4BA5E294F3864602768B0B6E6298128B.id C:\WINDOWS\system32\oodag\0\01C8D46131B07BE8\3_2.rpd C:\WINDOWS\system32\oodag\0\01C8D46131B07BE8\4CAFB131EF5BC21C16C8B642A7620E8B.id C:\WINDOWS\system32\oodag\4768C2E4378F8D4C52FBFCA7B56410AE\01C8D396732824E8\3_1.rpd C:\WINDOWS\system32\oodag\4768C2E4378F8D4C52FBFCA7B56410AE\01C8D396732824E8\4B6022C3E0F1C3642ABC7D1400C19C83.id C:\WINDOWS\system32\oodag\4768C2E4378F8D4C52FBFCA7B56410AE\01C8D396732824E8\Job.Job C:\WINDOWS\system32\oodag\Analyze_3.dat C:\WINDOWS\system32\oodbs.lor . ---- Previous Run ------- . C:\WINDOWS\system32\drivers\downld C:\WINDOWS\system32\drivers\downld\1018875.exe C:\WINDOWS\system32\drivers\downld\1021125.exe C:\WINDOWS\system32\drivers\downld\1027750.exe C:\WINDOWS\system32\drivers\downld\1029921.exe C:\WINDOWS\system32\drivers\downld\1036578.exe C:\WINDOWS\system32\drivers\downld\1039515.exe C:\WINDOWS\system32\drivers\downld\1048250.exe C:\WINDOWS\system32\drivers\downld\1051140.exe C:\WINDOWS\system32\drivers\downld\1056609.exe C:\WINDOWS\system32\drivers\downld\1058453.exe C:\WINDOWS\system32\drivers\downld\1066484.exe C:\WINDOWS\system32\drivers\downld\1076812.exe C:\WINDOWS\system32\drivers\downld\1077390.exe C:\WINDOWS\system32\drivers\downld\1079843.exe C:\WINDOWS\system32\drivers\downld\1098234.exe C:\WINDOWS\system32\drivers\downld\1115218.exe C:\WINDOWS\system32\drivers\downld\1124203.exe C:\WINDOWS\system32\drivers\downld\1128406.exe C:\WINDOWS\system32\drivers\downld\1135328.exe C:\WINDOWS\system32\drivers\downld\1151843.exe C:\WINDOWS\system32\drivers\downld\1211640.exe C:\WINDOWS\system32\drivers\downld\1221078.exe C:\WINDOWS\system32\drivers\downld\1236468.exe C:\WINDOWS\system32\drivers\downld\1243890.exe C:\WINDOWS\system32\drivers\downld\13154703.exe C:\WINDOWS\system32\drivers\downld\13211031.exe C:\WINDOWS\system32\drivers\downld\13269765.exe C:\WINDOWS\system32\drivers\downld\13333109.exe C:\WINDOWS\system32\drivers\downld\13357812.exe C:\WINDOWS\system32\drivers\downld\1344796.exe C:\WINDOWS\system32\drivers\downld\1351890.exe C:\WINDOWS\system32\drivers\downld\1370265.exe C:\WINDOWS\system32\drivers\downld\1380203.exe C:\WINDOWS\system32\drivers\downld\1388484.exe C:\WINDOWS\system32\drivers\downld\1410859.exe C:\WINDOWS\system32\drivers\downld\1476812.exe C:\WINDOWS\system32\drivers\downld\1512843.exe C:\WINDOWS\system32\drivers\downld\15210546.exe C:\WINDOWS\system32\drivers\downld\15220750.exe C:\WINDOWS\system32\drivers\downld\15230328.exe C:\WINDOWS\system32\drivers\downld\15258250.exe C:\WINDOWS\system32\drivers\downld\15282328.exe C:\WINDOWS\system32\drivers\downld\15328484.exe C:\WINDOWS\system32\drivers\downld\15337875.exe C:\WINDOWS\system32\drivers\downld\1534390.exe C:\WINDOWS\system32\drivers\downld\15354984.exe C:\WINDOWS\system32\drivers\downld\15367765.exe C:\WINDOWS\system32\drivers\downld\15387687.exe C:\WINDOWS\system32\drivers\downld\15392125.exe C:\WINDOWS\system32\drivers\downld\15396546.exe C:\WINDOWS\system32\drivers\downld\15451078.exe C:\WINDOWS\system32\drivers\downld\1548437.exe C:\WINDOWS\system32\drivers\downld\15496421.exe C:\WINDOWS\system32\drivers\downld\15504265.exe C:\WINDOWS\system32\drivers\downld\15544062.exe C:\WINDOWS\system32\drivers\downld\15553109.exe C:\WINDOWS\system32\drivers\downld\15567390.exe C:\WINDOWS\system32\drivers\downld\15581781.exe C:\WINDOWS\system32\drivers\downld\15593171.exe C:\WINDOWS\system32\drivers\downld\15603890.exe C:\WINDOWS\system32\drivers\downld\15639109.exe C:\WINDOWS\system32\drivers\downld\1566781.exe C:\WINDOWS\system32\drivers\downld\1567562.exe C:\WINDOWS\system32\drivers\downld\15684062.exe C:\WINDOWS\system32\drivers\downld\15687140.exe C:\WINDOWS\system32\drivers\downld\15708234.exe C:\WINDOWS\system32\drivers\downld\15758796.exe C:\WINDOWS\system32\drivers\downld\15781796.exe C:\WINDOWS\system32\drivers\downld\15797312.exe C:\WINDOWS\system32\drivers\downld\15817578.exe C:\WINDOWS\system32\drivers\downld\15913937.exe C:\WINDOWS\system32\drivers\downld\15931390.exe C:\WINDOWS\system32\drivers\downld\15953281.exe C:\WINDOWS\system32\drivers\downld\15967937.exe C:\WINDOWS\system32\drivers\downld\1596937.exe C:\WINDOWS\system32\drivers\downld\16503171.exe C:\WINDOWS\system32\drivers\downld\16511921.exe C:\WINDOWS\system32\drivers\downld\16539828.exe C:\WINDOWS\system32\drivers\downld\17665750.exe C:\WINDOWS\system32\drivers\downld\17718390.exe C:\WINDOWS\system32\drivers\downld\17737031.exe C:\WINDOWS\system32\drivers\downld\17757484.exe C:\WINDOWS\system32\drivers\downld\17765875.exe C:\WINDOWS\system32\drivers\downld\1813187.exe C:\WINDOWS\system32\drivers\downld\1827390.exe C:\WINDOWS\system32\drivers\downld\1839312.exe C:\WINDOWS\system32\drivers\downld\19014187.exe C:\WINDOWS\system32\drivers\downld\19116125.exe C:\WINDOWS\system32\drivers\downld\19204359.exe C:\WINDOWS\system32\drivers\downld\19220968.exe C:\WINDOWS\system32\drivers\downld\19233875.exe C:\WINDOWS\system32\drivers\downld\25584265.exe C:\WINDOWS\system32\drivers\downld\25588875.exe C:\WINDOWS\system32\drivers\downld\25602484.exe C:\WINDOWS\system32\drivers\downld\25620203.exe C:\WINDOWS\system32\drivers\downld\25672203.exe C:\WINDOWS\system32\drivers\downld\25689578.exe C:\WINDOWS\system32\drivers\downld\25702828.exe C:\WINDOWS\system32\drivers\downld\25708906.exe C:\WINDOWS\system32\drivers\downld\2755000.exe C:\WINDOWS\system32\drivers\downld\2809531.exe C:\WINDOWS\system32\drivers\downld\2897859.exe C:\WINDOWS\system32\drivers\downld\2918156.exe C:\WINDOWS\system32\drivers\downld\2926703.exe C:\WINDOWS\system32\drivers\downld\3095281.exe C:\WINDOWS\system32\drivers\downld\3100500.exe C:\WINDOWS\system32\drivers\downld\3103828.exe C:\WINDOWS\system32\drivers\downld\3148218.exe C:\WINDOWS\system32\drivers\downld\3167828.exe C:\WINDOWS\system32\drivers\downld\3172640.exe C:\WINDOWS\system32\drivers\downld\3215968.exe C:\WINDOWS\system32\drivers\downld\3246375.exe C:\WINDOWS\system32\drivers\downld\3262218.exe C:\WINDOWS\system32\drivers\downld\3288484.exe C:\WINDOWS\system32\drivers\downld\4079609.exe C:\WINDOWS\system32\drivers\downld\4145218.exe C:\WINDOWS\system32\drivers\downld\426906.exe C:\WINDOWS\system32\drivers\downld\4329421.exe C:\WINDOWS\system32\drivers\downld\433593.exe C:\WINDOWS\system32\drivers\downld\4350562.exe C:\WINDOWS\system32\drivers\downld\4373828.exe C:\WINDOWS\system32\drivers\downld\4385171.exe C:\WINDOWS\system32\drivers\downld\465125.exe C:\WINDOWS\system32\drivers\downld\480406.exe C:\WINDOWS\system32\drivers\downld\488000.exe C:\WINDOWS\system32\drivers\downld\589062.exe C:\WINDOWS\system32\drivers\downld\593468.exe C:\WINDOWS\system32\drivers\downld\595968.exe C:\WINDOWS\system32\drivers\downld\597984.exe C:\WINDOWS\system32\drivers\downld\618531.exe C:\WINDOWS\system32\drivers\downld\618906.exe C:\WINDOWS\system32\drivers\downld\637500.exe C:\WINDOWS\system32\drivers\downld\650515.exe C:\WINDOWS\system32\drivers\downld\653656.exe C:\WINDOWS\system32\drivers\downld\665859.exe C:\WINDOWS\system32\drivers\downld\695281.exe C:\WINDOWS\system32\drivers\downld\697437.exe C:\WINDOWS\system32\drivers\downld\728125.exe C:\WINDOWS\system32\drivers\downld\7410718.exe C:\WINDOWS\system32\drivers\downld\741750.exe C:\WINDOWS\system32\drivers\downld\7421468.exe C:\WINDOWS\system32\drivers\downld\7478078.exe C:\WINDOWS\system32\drivers\downld\7501328.exe C:\WINDOWS\system32\drivers\downld\751875.exe C:\WINDOWS\system32\drivers\downld\752343.exe C:\WINDOWS\system32\drivers\downld\752562.exe C:\WINDOWS\system32\drivers\downld\761406.exe C:\WINDOWS\system32\drivers\downld\7625562.exe C:\WINDOWS\system32\drivers\downld\7654578.exe C:\WINDOWS\system32\drivers\downld\7669140.exe C:\WINDOWS\system32\drivers\downld\770093.exe C:\WINDOWS\system32\drivers\downld\780890.exe C:\WINDOWS\system32\drivers\downld\791984.exe C:\WINDOWS\system32\drivers\downld\822546.exe C:\WINDOWS\system32\drivers\downld\832234.exe C:\WINDOWS\system32\drivers\downld\852171.exe C:\WINDOWS\system32\drivers\downld\856265.exe C:\WINDOWS\system32\drivers\downld\861218.exe C:\WINDOWS\system32\drivers\downld\868531.exe C:\WINDOWS\system32\drivers\downld\875859.exe C:\WINDOWS\system32\drivers\downld\883125.exe C:\WINDOWS\system32\drivers\downld\891000.exe C:\WINDOWS\system32\drivers\downld\892484.exe C:\WINDOWS\system32\drivers\downld\892765.exe C:\WINDOWS\system32\drivers\downld\901000.exe C:\WINDOWS\system32\drivers\downld\904718.exe C:\WINDOWS\system32\drivers\downld\910000.exe C:\WINDOWS\system32\drivers\downld\918296.exe C:\WINDOWS\system32\drivers\downld\919250.exe C:\WINDOWS\system32\drivers\downld\923203.exe C:\WINDOWS\system32\drivers\downld\967312.exe C:\WINDOWS\system32\drivers\downld\999828.exe . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Legacy_SROSA ((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-05-22 to 2008-06-22 )))))))))))))))))))))))))))))))))))) . 2008-06-21 19:10 . 2008-06-14 19:59 272,768 --------- C:\WINDOWS\system32\drivers\bthport.sys 2008-06-21 19:10 . 2008-06-14 19:59 272,768 -----c--- C:\WINDOWS\system32\dllcache\bthport.sys 2008-06-21 12:33 . 2008-06-21 12:33 d-------- C:\Program Files\Malwarebytes' Anti-Malware 2008-06-21 12:33 . 2008-06-19 17:48 34,296 --a------ C:\WINDOWS\system32\drivers\mbamcatchme.sys 2008-06-21 12:33 . 2008-06-19 17:47 17,144 --a------ C:\WINDOWS\system32\drivers\mbam.sys 2008-06-21 12:01 . 2008-06-21 11:56 178,872 --a------ C:\WINDOWS\system32\drivers\PavProc.sys 2008-06-21 12:01 . 2008-06-21 11:56 38,968 --a------ C:\WINDOWS\system32\drivers\ShlDrv51.sys 2008-06-21 11:42 . 2008-06-21 11:42 d-------- C:\Nouveau dossier 2008-06-21 00:14 . 2008-06-21 00:14 0 --a------ C:\WINDOWS\oodcnt.INI 2008-06-21 00:13 . 2008-06-21 00:13 d-------- C:\Program Files\OO Software 2008-06-20 23:32 . 2008-06-20 23:32 d-------- C:\5099e7fe7b92349f5b 2008-06-20 23:06 . 2008-06-20 23:06 d-------- C:\d0f0280b03566a1fab 2008-06-20 19:48 . 2008-06-20 19:48 d-------- C:\Documents and Settings\aaa\.java 2008-06-20 19:48 . 2008-06-20 19:48 40 --a------ C:\WINDOWS\TSC.INI 2008-06-20 19:47 . 2008-06-20 19:47 507,904 --a------ C:\WINDOWS\TMUPDATE.DLL 2008-06-20 19:47 . 2008-06-20 19:47 69,689 --a------ C:\WINDOWS\UNZIP.DLL 2008-06-20 19:09 . 2008-06-20 19:09 d-------- C:\Program Files\XBox 360 Controller for Windows Software 2008-06-20 10:47 . 2008-06-20 10:47 d---s---- C:\Documents and Settings\aaa\UserData 2008-06-20 10:41 . 2008-06-20 10:41 d-------- C:\Program Files\Trend Micro 2008-06-20 09:43 . 2008-06-20 09:43 d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2008-06-20 09:43 . 2008-06-20 09:43 d-------- C:\Documents and Settings\aaa\Application Data\Malwarebytes 2008-06-20 09:36 . 2008-06-20 09:36 d-------- C:\Program Files\CCleaner 2008-06-20 09:19 . 2008-06-20 10:47 d-------- C:\Documents and Settings\aaa\Contacts 2008-06-19 20:02 . 2008-06-20 19:03 d-------- C:\Program Files\EA Sports 2008-06-19 17:58 . 2008-01-18 18:23 d--h----- C:\Documents and Settings\aaa\Voisinage r‚seau 2008-06-19 17:58 . 2008-01-18 18:23 d--h----- C:\Documents and Settings\aaa\Voisinage d'impression 2008-06-19 17:58 . 2008-01-18 17:34 d--h----- C:\Documents and Settings\aaa\ModŠles 2008-06-19 17:58 . 2008-06-20 23:54 d---s---- C:\Documents and Settings\aaa\Mes documents 2008-06-19 17:58 . 2008-01-18 18:23 dr------- C:\Documents and Settings\aaa\Menu D‚marrer 2008-06-19 17:58 . 2008-06-19 17:59 d---s---- C:\Documents and Settings\aaa\Favoris 2008-06-19 17:58 . 2008-06-22 12:14 d-------- C:\Documents and Settings\aaa\Bureau 2008-06-19 17:58 . 2008-06-22 11:43 d-------- C:\Documents and Settings\aaa 2008-06-16 20:40 . 2008-06-16 20:40 d-------- C:\Program Files\Fichiers communs\SpellEx 2008-06-16 20:24 . 2008-06-16 20:40 d-------- C:\Program Files\TI Education 2008-06-16 20:24 . 2008-06-16 20:40 d-------- C:\Program Files\Fichiers communs\TI Shared 2008-06-16 20:04 . 2004-01-28 15:03 21,456 --a------ C:\WINDOWS\system32\drivers\SilvrLnk.sys 2008-06-14 19:33 . 2008-06-14 19:33 d-------- C:\Program Files\AVG 2008-06-14 19:33 . 2008-06-14 19:33 d-------- C:\Documents and Settings\All Users\Application Data\avg8 2008-06-03 22:11 . 2008-06-03 22:11 d-------- C:\Program Files\Real 2008-06-03 22:11 . 2008-06-03 22:11 d-------- C:\Program Files\Fichiers communs\xing shared 2008-06-03 22:11 . 2008-06-03 22:11 d-------- C:\Program Files\Fichiers communs\Real 2008-05-31 11:42 . 2008-05-31 11:42 d-------- C:\WINDOWS\system32\PAV 2008-05-31 11:42 . 2007-09-28 13:24 83,896 --a------ C:\WINDOWS\system32\drivers\pavdrv51.sys 2008-05-31 11:42 . 2007-03-15 18:38 54,832 --a------ C:\WINDOWS\system32\pavcpl.cpl 2008-05-31 11:42 . 2007-02-15 20:02 50,736 --a------ C:\WINDOWS\system32\avldr.dll 2008-05-31 11:42 . 2008-05-31 11:42 248 --a------ C:\WINDOWS\system32\PavCPL.dat . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-06-22 10:17 --------- d-----w C:\Program Files\Wanadoo 2008-06-21 10:01 --------- d-----w C:\Program Files\Fichiers communs\Panda Software 2008-06-20 17:03 --------- d-----w C:\Program Files\Steam 2008-06-20 16:47 --------- d-----w C:\Documents and Settings\Papa et Maman\Application Data\OpenOffice.org2 2008-06-20 08:26 --------- d-----w C:\Program Files\eMule 2008-06-16 18:40 --------- d-----w C:\Program Files\Fichiers communs\Wise Installation Wizard 2008-05-31 09:42 --------- d--h--w C:\Program Files\InstallShield Installation Information 2008-05-31 09:42 --------- d-----w C:\Program Files\Panda Security 2008-05-18 18:36 --------- d-----w C:\Documents and Settings\All Users\Application Data\Kaspersky Lab 2008-05-18 18:35 81,465 -c--a-w C:\WINDOWS\system32\drivers\klif.cab 2008-05-17 22:37 --------- d-----w C:\Program Files\a-squared Free 2008-05-17 20:16 --------- d-----w C:\Program Files\SuperCopier2 2008-05-16 16:34 --------- d-----w C:\Program Files\JavaSoft 2008-05-16 16:34 --------- d-----w C:\Program Files\Fichiers communs\InstallShield 2008-05-14 16:08 --------- d-----w C:\Program Files\WindSolutions 2008-05-10 09:24 --------- d-----w C:\Program Files\iTunes 2008-05-10 09:24 --------- d-----w C:\Program Files\iPod 2008-05-10 09:22 --------- d-----w C:\Program Files\QuickTime 2008-05-10 09:22 --------- d-----w C:\Program Files\Apple Software Update 2008-05-10 09:21 --------- d-----w C:\Documents and Settings\All Users\Application Data\Apple 2008-05-10 09:16 --------- d-----w C:\Documents and Settings\All Users\Application Data\CopyTransControlCenter 2008-05-09 21:05 --------- d-----w C:\Documents and Settings\All Users\Application Data\Apple Computer 2008-05-09 21:04 --------- d-----w C:\Program Files\HyCam2 2008-05-08 13:19 --------- d-----w C:\Program Files\Fichiers communs\AVSMedia 2008-05-08 13:17 --------- d-----w C:\Program Files\Windows Live 2008-05-08 12:28 202,752 ----a-w C:\WINDOWS\system32\drivers\rmcast.sys 2008-04-22 11:24 --------- d-----w C:\Documents and Settings\All Users\Application Data\Grisoft 2008-04-17 08:39 60,416 -c--a-w C:\WINDOWS\ALCFDRTM.EXE 2007-08-28 12:54 237,568 -c--a-w C:\Program Files\mozilla firefox\plugins\CrazyTalk4Native.dll 2006-05-25 17:43 204,895 -c--a-w C:\Program Files\mozilla firefox\plugins\ctdomemhelper.dll 2005-09-29 13:41 77,824 -c--a-w C:\Program Files\mozilla firefox\plugins\ctframeplayerobject.dll 2006-06-19 12:10 426,081 -c--a-w C:\Program Files\mozilla firefox\plugins\ctplayerobject.dll 2005-02-02 11:19 458,752 -c--a-w C:\Program Files\mozilla firefox\plugins\imagickrt.dll 2006-04-10 17:35 139,264 -c--a-w C:\Program Files\mozilla firefox\plugins\rlcontentclass.dll 2005-11-09 10:10 204,800 -c--a-w C:\Program Files\mozilla firefox\plugins\RLMusicPacker.dll 2005-11-09 10:42 106,496 -c--a-w C:\Program Files\mozilla firefox\plugins\RLMusicUnpacker.dll 2006-01-04 10:22 212,992 -c--a-w C:\Program Files\mozilla firefox\plugins\RLVoicePacker.dll 2006-01-04 10:21 167,936 -c--a-w C:\Program Files\mozilla firefox\plugins\RLVoiceUnpacker.dll . ((((((((((((((((((((((((((((( snapshot@2008-06-21_16.13.58.65 ))))))))))))))))))))))))))))))))))))))))) . - 2008-06-21 14:12:34 2,048 --s-a-w C:\WINDOWS\bootstat.dat + 2008-06-22 10:16:38 2,048 --s-a-w C:\WINDOWS\bootstat.dat + 2008-06-14 17:59:52 272,768 ------w C:\WINDOWS\Driver Cache\i386\bthport.sys - 2007-12-07 00:47:14 1,024,512 ----a-w C:\WINDOWS\system32\browseui.dll + 2008-04-21 06:57:16 1,024,512 ----a-w C:\WINDOWS\system32\browseui.dll - 2007-12-07 00:47:14 152,064 -c--a-w C:\WINDOWS\system32\cdfview.dll + 2008-04-21 06:57:16 152,064 ----a-w C:\WINDOWS\system32\cdfview.dll - 2007-12-07 00:47:14 1,056,768 -c--a-w C:\WINDOWS\system32\danim.dll + 2008-04-21 06:57:17 1,056,768 ----a-w C:\WINDOWS\system32\danim.dll - 2007-12-07 00:47:14 1,024,512 -c--a-w C:\WINDOWS\system32\dllcache\browseui.dll + 2008-04-21 06:57:16 1,024,512 -c--a-w C:\WINDOWS\system32\dllcache\browseui.dll - 2007-12-07 00:47:14 152,064 -c--a-w C:\WINDOWS\system32\dllcache\cdfview.dll + 2008-04-21 06:57:16 152,064 -c--a-w C:\WINDOWS\system32\dllcache\cdfview.dll - 2007-12-07 00:47:14 1,056,768 -c--a-w C:\WINDOWS\system32\dllcache\danim.dll + 2008-04-21 06:57:17 1,056,768 -c--a-w C:\WINDOWS\system32\dllcache\danim.dll - 2006-03-02 12:00:00 561,179 -c--a-w C:\WINDOWS\system32\dllcache\dao360.dll + 2008-03-25 04:50:25 554,008 -c--a-w C:\WINDOWS\system32\dllcache\dao360.dll - 2006-06-26 17:41:32 148,480 -c--a-w C:\WINDOWS\system32\dllcache\dnsapi.dll + 2008-02-20 05:35:05 148,992 -c--a-w C:\WINDOWS\system32\dllcache\dnsapi.dll - 2006-03-02 12:00:00 45,568 -c--a-w C:\WINDOWS\system32\dllcache\dnsrslvr.dll + 2008-02-20 05:35:05 45,568 -c--a-w C:\WINDOWS\system32\dllcache\dnsrslvr.dll - 2007-12-07 00:47:15 357,888 -c--a-w C:\WINDOWS\system32\dllcache\dxtmsft.dll + 2008-04-21 06:57:17 357,888 -c--a-w C:\WINDOWS\system32\dllcache\dxtmsft.dll - 2007-12-07 00:47:15 205,824 -c--a-w C:\WINDOWS\system32\dllcache\dxtrans.dll + 2008-04-21 06:57:18 205,312 -c--a-w C:\WINDOWS\system32\dllcache\dxtrans.dll - 2007-12-07 00:47:15 55,808 -c--a-w C:\WINDOWS\system32\dllcache\extmgr.dll + 2008-04-21 06:57:18 55,808 -c--a-w C:\WINDOWS\system32\dllcache\extmgr.dll - 2007-06-19 13:32:25 282,112 -c--a-w C:\WINDOWS\system32\dllcache\gdi32.dll + 2008-02-20 06:51:00 282,624 -c--a-w C:\WINDOWS\system32\dllcache\gdi32.dll - 2007-12-06 10:05:52 18,432 -c--a-w C:\WINDOWS\system32\dllcache\iedw.exe + 2008-04-17 10:46:59 18,432 -c--a-w C:\WINDOWS\system32\dllcache\iedw.exe - 2007-12-07 00:47:15 251,904 -c--a-w C:\WINDOWS\system32\dllcache\iepeers.dll + 2008-04-21 06:57:18 251,904 -c--a-w C:\WINDOWS\system32\dllcache\iepeers.dll - 2007-12-07 00:47:15 96,768 -c--a-w C:\WINDOWS\system32\dllcache\inseng.dll + 2008-04-21 06:57:18 96,768 -c--a-w C:\WINDOWS\system32\dllcache\inseng.dll - 2007-11-14 07:28:02 450,560 -c--a-w C:\WINDOWS\system32\dllcache\jscript.dll + 2007-12-18 14:41:58 450,560 -c--a-w C:\WINDOWS\system32\dllcache\jscript.dll - 2007-12-07 00:47:15 16,384 -c--a-w C:\WINDOWS\system32\dllcache\jsproxy.dll + 2008-04-21 06:57:18 16,384 -c--a-w C:\WINDOWS\system32\dllcache\jsproxy.dll - 2006-03-02 12:00:00 512,029 -c--a-w C:\WINDOWS\system32\dllcache\msexch40.dll + 2008-03-25 04:50:28 518,944 -c--a-w C:\WINDOWS\system32\dllcache\msexch40.dll - 2006-03-02 12:00:00 319,517 -c--a-w C:\WINDOWS\system32\dllcache\msexcl40.dll + 2008-03-25 04:50:30 326,432 -c--a-w C:\WINDOWS\system32\dllcache\msexcl40.dll - 2007-12-07 00:47:18 3,087,360 -c--a-w C:\WINDOWS\system32\dllcache\mshtml.dll + 2008-04-21 06:57:22 3,087,872 -c--a-w C:\WINDOWS\system32\dllcache\mshtml.dll - 2007-12-07 00:47:18 449,024 -c--a-w C:\WINDOWS\system32\dllcache\mshtmled.dll + 2008-04-21 06:57:22 449,024 -c--a-w C:\WINDOWS\system32\dllcache\mshtmled.dll - 2006-03-02 12:00:00 1,507,356 -c--a-w C:\WINDOWS\system32\dllcache\msjet40.dll + 2008-03-25 04:50:34 1,516,568 -c--a-w C:\WINDOWS\system32\dllcache\msjet40.dll - 2006-03-02 12:00:00 358,976 -c--a-w C:\WINDOWS\system32\dllcache\msjetol1.dll + 2008-03-25 04:50:40 355,112 -c--a-w C:\WINDOWS\system32\dllcache\msjetol1.dll - 2006-03-02 12:00:00 184,351 -c--a-w C:\WINDOWS\system32\dllcache\msjint40.dll + 2008-03-25 04:51:08 194,144 -c--a-w C:\WINDOWS\system32\dllcache\msjint40.dll - 2006-03-02 12:00:00 53,279 -c--a-w C:\WINDOWS\system32\dllcache\msjter40.dll + 2008-03-25 04:50:42 60,192 -c--a-w C:\WINDOWS\system32\dllcache\msjter40.dll - 2006-03-02 12:00:00 241,693 -c--a-w C:\WINDOWS\system32\dllcache\msjtes40.dll + 2008-03-25 04:50:42 248,608 -c--a-w C:\WINDOWS\system32\dllcache\msjtes40.dll - 2006-03-02 12:00:00 213,023 -c--a-w C:\WINDOWS\system32\dllcache\msltus40.dll + 2008-03-25 04:50:44 219,936 -c--a-w C:\WINDOWS\system32\dllcache\msltus40.dll - 2006-03-02 12:00:00 348,189 -c--a-w C:\WINDOWS\system32\dllcache\mspbde40.dll + 2008-03-25 04:50:45 355,104 -c--a-w C:\WINDOWS\system32\dllcache\mspbde40.dll - 2007-12-07 00:47:18 146,432 -c--a-w C:\WINDOWS\system32\dllcache\msrating.dll + 2008-04-21 06:57:23 146,432 -c--a-w C:\WINDOWS\system32\dllcache\msrating.dll - 2006-03-02 12:00:00 421,919 -c--a-w C:\WINDOWS\system32\dllcache\msrd2x40.dll + 2008-03-25 04:50:47 432,928 -c--a-w C:\WINDOWS\system32\dllcache\msrd2x40.dll - 2006-03-02 12:00:00 315,423 -c--a-w C:\WINDOWS\system32\dllcache\msrd3x40.dll + 2008-03-25 04:50:49 322,336 -c--a-w C:\WINDOWS\system32\dllcache\msrd3x40.dll - 2006-03-02 12:00:00 552,989 -c--a-w C:\WINDOWS\system32\dllcache\msrepl40.dll + 2008-03-25 04:50:52 559,904 -c--a-w C:\WINDOWS\system32\dllcache\msrepl40.dll - 2006-03-02 12:00:00 258,077 -c--a-w C:\WINDOWS\system32\dllcache\mstext40.dll + 2008-03-25 04:50:55 264,992 -c--a-w C:\WINDOWS\system32\dllcache\mstext40.dll - 2007-12-07 00:47:19 532,480 -c--a-w C:\WINDOWS\system32\dllcache\mstime.dll + 2008-04-21 06:57:23 532,480 -c--a-w C:\WINDOWS\system32\dllcache\mstime.dll - 2006-03-02 12:00:00 831,519 -c--a-w C:\WINDOWS\system32\dllcache\mswdat10.dll + 2008-03-25 04:50:57 838,432 -c--a-w C:\WINDOWS\system32\dllcache\mswdat10.dll - 2006-03-02 12:00:00 614,429 -c--a-w C:\WINDOWS\system32\dllcache\mswstr10.dll + 2008-03-25 04:51:09 621,344 -c--a-w C:\WINDOWS\system32\dllcache\mswstr10.dll - 2006-03-02 12:00:00 348,189 -c--a-w C:\WINDOWS\system32\dllcache\msxbde40.dll + 2008-03-25 04:50:58 355,104 -c--a-w C:\WINDOWS\system32\dllcache\msxbde40.dll - 2007-12-07 00:47:19 39,424 -c--a-w C:\WINDOWS\system32\dllcache\pngfilt.dll + 2008-04-21 06:57:23 39,424 -c--a-w C:\WINDOWS\system32\dllcache\pngfilt.dll - 2007-10-29 22:43:32 1,293,824 -c--a-w C:\WINDOWS\system32\dllcache\quartz.dll + 2008-05-07 05:15:36 1,293,824 -c--a-w C:\WINDOWS\system32\dllcache\quartz.dll - 2006-07-13 08:48:58 202,240 -c--a-w C:\WINDOWS\system32\dllcache\rmcast.sys + 2008-05-08 12:28:49 202,752 -c--a-w C:\WINDOWS\system32\dllcache\rmcast.sys - 2007-12-07 00:47:20 1,499,648 -c--a-w C:\WINDOWS\system32\dllcache\shdocvw.dll + 2008-04-21 06:57:25 1,499,648 -c--a-w C:\WINDOWS\system32\dllcache\shdocvw.dll - 2007-12-07 00:47:20 474,624 -c--a-w C:\WINDOWS\system32\dllcache\shlwapi.dll + 2008-04-21 06:57:26 474,624 -c--a-w C:\WINDOWS\system32\dllcache\shlwapi.dll - 2007-12-07 00:47:21 620,032 -c--a-w C:\WINDOWS\system32\dllcache\urlmon.dll + 2008-04-21 06:57:26 620,544 -c--a-w C:\WINDOWS\system32\dllcache\urlmon.dll - 2006-03-02 12:00:00 417,792 -c--a-w C:\WINDOWS\system32\dllcache\vbscript.dll + 2007-12-18 14:41:59 417,792 -c--a-w C:\WINDOWS\system32\dllcache\vbscript.dll - 2007-03-08 15:33:58 1,843,712 -c--a-w C:\WINDOWS\system32\dllcache\win32k.sys + 2008-03-20 08:09:22 1,845,376 -c--a-w C:\WINDOWS\system32\dllcache\win32k.sys - 2007-12-07 00:47:21 670,208 -c--a-w C:\WINDOWS\system32\dllcache\wininet.dll + 2008-04-21 06:57:27 670,720 -c--a-w C:\WINDOWS\system32\dllcache\wininet.dll - 2006-06-26 17:41:32 148,480 ----a-w C:\WINDOWS\system32\dnsapi.dll + 2008-02-20 05:35:05 148,992 ----a-w C:\WINDOWS\system32\dnsapi.dll - 2006-03-02 12:00:00 45,568 ----a-w C:\WINDOWS\system32\dnsrslvr.dll + 2008-02-20 05:35:05 45,568 ----a-w C:\WINDOWS\system32\dnsrslvr.dll - 2007-12-07 00:47:15 357,888 -c--a-w C:\WINDOWS\system32\dxtmsft.dll + 2008-04-21 06:57:17 357,888 ----a-w C:\WINDOWS\system32\dxtmsft.dll - 2007-12-07 00:47:15 205,824 -c--a-w C:\WINDOWS\system32\dxtrans.dll + 2008-04-21 06:57:18 205,312 ----a-w C:\WINDOWS\system32\dxtrans.dll - 2007-12-07 00:47:15 55,808 -c--a-w C:\WINDOWS\system32\extmgr.dll + 2008-04-21 06:57:18 55,808 ----a-w C:\WINDOWS\system32\extmgr.dll - 2008-06-17 12:32:20 132,480 -c--a-w C:\WINDOWS\system32\FNTCACHE.DAT + 2008-06-22 09:23:28 132,480 -c--a-w C:\WINDOWS\system32\FNTCACHE.DAT - 2007-06-19 13:32:25 282,112 ----a-w C:\WINDOWS\system32\gdi32.dll + 2008-02-20 06:51:00 282,624 ----a-w C:\WINDOWS\system32\gdi32.dll - 2007-12-07 00:47:15 251,904 -c--a-w C:\WINDOWS\system32\iepeers.dll + 2008-04-21 06:57:18 251,904 ----a-w C:\WINDOWS\system32\iepeers.dll - 2007-12-07 00:47:15 96,768 -c--a-w C:\WINDOWS\system32\inseng.dll + 2008-04-21 06:57:18 96,768 ----a-w C:\WINDOWS\system32\inseng.dll - 2007-11-14 07:28:02 450,560 -c--a-w C:\WINDOWS\system32\jscript.dll + 2007-12-18 14:41:58 450,560 ----a-w C:\WINDOWS\system32\jscript.dll - 2007-12-07 00:47:15 16,384 -c--a-w C:\WINDOWS\system32\jsproxy.dll + 2008-04-21 06:57:18 16,384 ----a-w C:\WINDOWS\system32\jsproxy.dll - 2006-03-02 12:00:00 512,029 -c--a-w C:\WINDOWS\system32\msexch40.dll + 2008-03-25 04:50:28 518,944 ----a-w C:\WINDOWS\system32\msexch40.dll - 2006-03-02 12:00:00 319,517 -c--a-w C:\WINDOWS\system32\msexcl40.dll + 2008-03-25 04:50:30 326,432 ----a-w C:\WINDOWS\system32\msexcl40.dll - 2007-12-07 00:47:18 3,087,360 -c--a-w C:\WINDOWS\system32\mshtml.dll + 2008-04-21 06:57:22 3,087,872 ----a-w C:\WINDOWS\system32\mshtml.dll - 2007-12-07 00:47:18 449,024 -c--a-w C:\WINDOWS\system32\mshtmled.dll + 2008-04-21 06:57:22 449,024 ----a-w C:\WINDOWS\system32\mshtmled.dll - 2006-03-02 12:00:00 1,507,356 -c--a-w C:\WINDOWS\system32\msjet40.dll + 2008-03-25 04:50:34 1,516,568 ----a-w C:\WINDOWS\system32\msjet40.dll - 2006-03-02 12:00:00 358,976 -c--a-w C:\WINDOWS\system32\msjetoledb40.dll + 2008-03-25 04:50:40 355,112 ----a-w C:\WINDOWS\system32\msjetoledb40.dll - 2006-03-02 12:00:00 184,351 -c--a-w C:\WINDOWS\system32\msjint40.dll + 2008-03-25 04:51:08 194,144 ----a-w C:\WINDOWS\system32\msjint40.dll - 2006-03-02 12:00:00 53,279 -c--a-w C:\WINDOWS\system32\msjter40.dll + 2008-03-25 04:50:42 60,192 ----a-w C:\WINDOWS\system32\msjter40.dll - 2006-03-02 12:00:00 241,693 -c--a-w C:\WINDOWS\system32\msjtes40.dll + 2008-03-25 04:50:42 248,608 ----a-w C:\WINDOWS\system32\msjtes40.dll - 2006-03-02 12:00:00 213,023 -c--a-w C:\WINDOWS\system32\msltus40.dll + 2008-03-25 04:50:44 219,936 ----a-w C:\WINDOWS\system32\msltus40.dll - 2006-03-02 12:00:00 348,189 -c--a-w C:\WINDOWS\system32\mspbde40.dll + 2008-03-25 04:50:45 355,104 ----a-w C:\WINDOWS\system32\mspbde40.dll - 2007-12-07 00:47:18 146,432 -c--a-w C:\WINDOWS\system32\msrating.dll + 2008-04-21 06:57:23 146,432 ----a-w C:\WINDOWS\system32\msrating.dll - 2006-03-02 12:00:00 421,919 -c--a-w C:\WINDOWS\system32\msrd2x40.dll + 2008-03-25 04:50:47 432,928 ----a-w C:\WINDOWS\system32\msrd2x40.dll - 2006-03-02 12:00:00 315,423 -c--a-w C:\WINDOWS\system32\msrd3x40.dll + 2008-03-25 04:50:49 322,336 ----a-w C:\WINDOWS\system32\msrd3x40.dll - 2006-03-02 12:00:00 552,989 -c--a-w C:\WINDOWS\system32\msrepl40.dll + 2008-03-25 04:50:52 559,904 ----a-w C:\WINDOWS\system32\msrepl40.dll - 2006-03-02 12:00:00 258,077 -c--a-w C:\WINDOWS\system32\mstext40.dll + 2008-03-25 04:50:55 264,992 ----a-w C:\WINDOWS\system32\mstext40.dll - 2007-12-07 00:47:19 532,480 -c--a-w C:\WINDOWS\system32\mstime.dll + 2008-04-21 06:57:23 532,480 ----a-w C:\WINDOWS\system32\mstime.dll - 2006-03-02 12:00:00 831,519 -c--a-w C:\WINDOWS\system32\mswdat10.dll + 2008-03-25 04:50:57 838,432 ----a-w C:\WINDOWS\system32\mswdat10.dll - 2006-03-02 12:00:00 614,429 -c--a-w C:\WINDOWS\system32\mswstr10.dll + 2008-03-25 04:51:09 621,344 ----a-w C:\WINDOWS\system32\mswstr10.dll - 2006-03-02 12:00:00 348,189 -c--a-w C:\WINDOWS\system32\msxbde40.dll + 2008-03-25 04:50:58 355,104 ----a-w C:\WINDOWS\system32\msxbde40.dll - 2007-12-07 00:47:19 39,424 -c--a-w C:\WINDOWS\system32\pngfilt.dll + 2008-04-21 06:57:23 39,424 ----a-w C:\WINDOWS\system32\pngfilt.dll - 2007-10-29 22:43:32 1,293,824 -c--a-w C:\WINDOWS\system32\quartz.dll + 2008-05-07 05:15:36 1,293,824 ----a-w C:\WINDOWS\system32\quartz.dll - 2007-12-07 00:47:20 1,499,648 ----a-w C:\WINDOWS\system32\shdocvw.dll + 2008-04-21 06:57:25 1,499,648 ----a-w C:\WINDOWS\system32\shdocvw.dll - 2007-12-07 00:47:20 474,624 ----a-w C:\WINDOWS\system32\shlwapi.dll + 2008-04-21 06:57:26 474,624 ----a-w C:\WINDOWS\system32\shlwapi.dll - 2006-10-16 15:10:58 14,640 -c----w C:\WINDOWS\system32\spmsg.dll + 2007-11-30 11:19:06 18,296 ------w C:\WINDOWS\system32\spmsg.dll - 2007-12-07 00:47:21 620,032 ----a-w C:\WINDOWS\system32\urlmon.dll + 2008-04-21 06:57:26 620,544 ----a-w C:\WINDOWS\system32\urlmon.dll - 2006-03-02 12:00:00 417,792 -c--a-w C:\WINDOWS\system32\vbscript.dll + 2007-12-18 14:41:59 417,792 ----a-w C:\WINDOWS\system32\vbscript.dll - 2007-03-08 15:33:58 1,843,712 ----a-w C:\WINDOWS\system32\win32k.sys + 2008-03-20 08:09:22 1,845,376 ----a-w C:\WINDOWS\system32\win32k.sys - 2007-12-07 00:47:21 670,208 ----a-w C:\WINDOWS\system32\wininet.dll + 2008-04-21 06:57:27 670,720 ----a-w C:\WINDOWS\system32\wininet.dll - 2007-12-06 23:40:30 369,152 -c--a-w C:\WINDOWS\system32\xpsp3res.dll + 2008-04-17 11:03:45 370,176 ----a-w C:\WINDOWS\system32\xpsp3res.dll . -- Snapshot reset to current date -- . ((((((((((((((((((((((((((((((((( Point de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))) . . REGEDIT4 *Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2006-03-02 14:00 15360] "WOOKIT"="C:\Program Files\Wanadoo\GestMaj.exe" [2004-10-14 16:55 32768] "msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 12:34 5724184] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SoundMan"="SOUNDMAN.EXE" [2006-11-17 06:42 577536 C:\WINDOWS\soundman.exe] "NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2007-12-05 02:41 8523776] "nwiz"="nwiz.exe" [2007-12-05 02:41 1626112 C:\WINDOWS\system32\nwiz.exe] "NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2007-12-05 02:41 81920] "ISUSScheduler"="C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" [2005-02-16 17:15 81920] "WOOWATCH"="C:\PROGRA~1\Wanadoo\Watch.exe" [2004-08-23 14:49 20480] "WOOTASKBARICON"="C:\PROGRA~1\Wanadoo\GestMaj.exe" [2004-10-14 16:55 32768] "QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2008-03-28 23:37 413696] "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2008-03-30 10:36 267048] "TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [2008-06-03 22:11 185896] "OODefragTray"="C:\WINDOWS\system32\oodtray.exe" [2007-06-28 23:01 2512128] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "AllowLegacyWebView"= 1 (0x1) "AllowUnhashedWebView"= 1 (0x1) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avldr] avldr.dll 2007-02-15 20:02 50736 C:\WINDOWS\system32\avldr.dll [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Notification Packages REG_MULTI_SZ scecli scecli scecli scecli scecli [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr] @="Service" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sglfb.sys] @="Driver" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\tga.sys] @="Driver" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\wd.sys] @="Driver" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] --a------ 2008-03-30 10:36 267048 C:\Program Files\iTunes\iTunesHelper.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr] --a--c--- 2007-10-18 12:34 5724184 C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "Nero BackItUp Scheduler 3"=2 (0x2) [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" -atboottime "NBKeyScan"="C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\system32\sessmgr.exe"= "%windir%\Network Diagnostic\xpnetdiag.exe"= "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"= "C:\Program Files\Windows Live\Messenger\livecall.exe"= "C:\Program Files\iTunes\iTunes.exe"= "C:\WINDOWS\system32\PnkBstrA.exe"= "C:\WINDOWS\system32\PnkBstrB.exe"= "C:\Program Files\Steam\steamapps\snak90\condition zero\hl.exe"= "C:\Program Files\Steam\steamapps\snak90\counter-strike\hl.exe"= "C:\Program Files\Steam\steamapps\snak90\dedicated server\hlds.exe"= "C:\Program Files\EA Sports\UEFA EURO 2008\EURO08.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "12590:TCP"= 12590:TCP:BitComet 12590 TCP "12590:UDP"= 12590:UDP:BitComet 12590 UDP "27015:TCP"= 27015:TCP:dedicated server "27015:UDP"= 27015:UDP:dedicated server R1 ShldDrv;Panda File Shield Driver;C:\WINDOWS\system32\DRIVERS\ShlDrv51.sys [2008-06-21 11:56] R2 PavProc;Panda Process Protection Driver;C:\WINDOWS\system32\DRIVERS\PavProc.sys [2008-06-21 11:56] R3 CnxEtP;ZTE ZXDSL852 Adapter Filter Driver;C:\WINDOWS\system32\DRIVERS\CnxEtP.sys [2005-05-20 19:27] R3 CnxEtU;ZTE ZXDSL852 Interface Device Driver;C:\WINDOWS\system32\DRIVERS\CnxEtU.sys [2005-05-20 19:27] R3 CnxTgNW;ZTE ZXDSL852 WAN PPPoA Adapter Driver;C:\WINDOWS\system32\DRIVERS\CnxTgNW.sys [2005-05-20 19:28] S0 IoloFilter;IoloFilter;C:\WINDOWS\system32\drivers\IoloFltr.sys [] S2 Windows Update Center;Update Center;"C:\WINDOWS\scvhost.exe" [] S3 x-tern;x-tern;H:\cheat cs 1.6\[cheatdb]_x-tern_v2__2008-03-04\x-tern.sys [] [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{42E00C41-46C1-0FDD-BD32-57CB1CAE4FCF}] C:\WINDOWS\system32:nvidia.exe . Contenu du dossier 'Scheduled Tasks/Tƒches planifi‚es' "2008-06-20 15:15:00 C:\WINDOWS\Tasks\1-Click Maintenance.job" - C:\Program Files\TuneUp Utilities 2008\OneClick.exe "2008-06-20 07:28:05 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job" - C:\Program Files\Apple Software Update\SoftwareUpdate.exe "2008-06-20 15:15:00 C:\WINDOWS\Tasks\Maintenance en 1 clic.job" - C:\Program Files\TuneUp Utilities 2008\OneClick.exe "2008-06-21 15:41:00 C:\WINDOWS\Tasks\{1E887CD9-1CF2-4418-BC4E-318F3E607A7E}_PERSO-56A476DCE_JeanFrançois.job"

Utilisateur anonyme · Answer

tu vas devoir réinstaller O&O defrag g fais un erreure sorry ...



un dernier test on ça sera bon :

télécharge OTMoveIt http://download.bleepingcomputer.com/oldtimer/OTMoveIt2.exe (de Old_Timer) sur ton Bureau. 
double-clique sur OTMoveIt.exe pour le lancer. 
copie la liste qui se trouve en gras ci-dessous, 
et colle-la dans le cadre de gauche de OTMoveIt :Paste List of Files/Folders to be moved. 

C:\WINDOWS\system32\drivers\downld\919250.exe 
C:\WINDOWS\system32\drivers\downld\923203.exe 
C:\WINDOWS\system32\drivers\downld\967312.exe 
C:\WINDOWS\system32\drivers\downld\999828.exe 

clique sur MoveIt! pour lancer la suppression. 
le résultat apparaitra dans le cadre "Results". 
clique sur Exit pour fermer. 
poste le rapport situé dans C:\_OTMoveIt\MovedFiles. 

il te sera peut-être demander de redémarrer le pc pour achever la suppression.si c'est le cas accepte par Yes.

merzhin_22 · Answer

..et voila le scan de hijackthis e mode sans échec:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:48, on 2008-06-22
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Safe mode

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\userinit.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SearchPageURL.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayerpbrowserrecordplugin.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvCplDaemon] "RUNDLL32.EXE" C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] "nwiz.exe" /install
O4 - HKLM\..\Run: [NvMediaCenter] "RUNDLL32.EXE" C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OBealsched.exe"  -osboot
O4 - HKLM\..\Run: [OODefragTray] C:\WINDOWS\system32\oodtray.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\Program Files\Wanadoo\GestMaj.exe GestionnaireInternet.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O23 - Service: Service d'état ASP.NET (aspnet_state) - Unknown owner - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (file missing)
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Imapi Helper - Alex Feinman - C:\Program Files\Alex Feinman\ISO Recorder\ImapiHelper.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Fichiers communs\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32
vsvc32.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: Panda Software Controller - Panda Software International - C:\Program Files\Panda Security\Panda Antivirus 2008\PsCtrlS.exe
O23 - Service: Panda Process Protection Service (PavPrSrv) - Panda Software - C:\Program Files\Fichiers communs\Panda Software\PavShld\pavprsrv.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Update Center (Windows Update Center) - Unknown owner - C:\WINDOWS\scvhost.exe (file missing)

merzhin_22 · Answer

voila le raport de omevit :

File/Folder C:\WINDOWS\system32\drivers\downld\919250.exe not found.
File/Folder C:\WINDOWS\system32\drivers\downld\923203.exe not found.
File/Folder C:\WINDOWS\system32\drivers\downld\967312.exe not found.
File/Folder C:\WINDOWS\system32\drivers\downld\999828.exe not found.
 
OTMoveIt2 by OldTimer - Version 1.0.4.2 log created on 06222008_132907

Utilisateur anonyme · Answer

OKI

bon reste a sécuriser le pc ..............

instal antivir (gratuit en aglais mais simple) :

->https://www.01net.com/telecharger/windows/Securite/antivirus-antitrojan/fiches/13198.html

tuto : http://www.swl1f.net/viewtopic.php?f=14&t=59 

http://mickael.barroux.free.fr/securite/antivir.php 
http://speedweb1.free.fr/frames2.php?page=tuto5 

puis un parefeu :

pare-feu gratuits 


télécharger la version gratuite de Zone alarm 
https://www.pcastuces.com/logitheque/zonealarm.htm 
TUTO 
http://securite-facile.ovh.org/zonealarm.php 
http://forum.telecharger.01net.com/forum/ 


ou 

télécharger la version gratuite de Kerio 
Kerio (parefeu) 
https://www.clubic.com/telecharger-fiche11071-sunbelt-personal-firewall-ex-kerio.html 
TUTO 
https://kerio.probb.fr/ 
SITE de Kerio 
https://kerio.probb.fr/ 

ou 

ComodoFirewallPro 2.4 téléchargement 
http://www.personalfirewall.comodo.com/ 
Tuto pour la 2.4 
https://infomars.fr/forum/index.php?s=908072e48ff7cf0359366440cb26c93f&showtopic=389 
Tuto pour la 2.4 
http://www.nordicnature.net/tutorials/comodo/cf24wiz.htm 
Attention la 3.0 est en anglais uniquement et est plus difficile a paramétrer 
Tuto pour la 3.0 
https://infomars.fr/forum/index.php?showtopic=1225 

ou

OnlineArmor : 
téléchargement:https://www.commentcamarche.net/telecharger/ 34055356 online armor personal firewall 

tutoriels:https://forum.pcastuces.com/sujet.asp?f=25&s=35606 
:https://www.malekal.com/tutorial-online-armor-free/ 



A lire :

https://www.commentcamarche.net/contents/992-firewall-pare-feu

ensuite :


-> Télécharge Ccleaner (n'installe pas la barre d'outil Yahoo): 

http://download.piriform.com/ccsetup205.exe

-> L´installer. 

-> Une fois installé et lancé : 

Dans la colonne de gauche, click sur : 

->"registre" : 

Coches toutes les cases sous"l´integrité du registre", puis click en bas sur "chercher des erreurs" une fois terminé, clic sur "reparer les erreurs", tu auras un message pour sauvegarder ta base de registre, tu click "oui" puis tu recommence jusqu'à ce qu'il ne trouve plus rien. 

ps : les sauvegardes que tu auras faites, pourront etre supprimées ulterieurement si tout va bien. 

->"nettoyeur" 

quitte ton navigateur avant de le lancer, dans les propriétés du nettoyeur de l´onglet "windows" et "applications"décoche la derniere case (Avancé si elle est cochée) puis click sur "lancer le nettoyage" qunand il aura terminé le scan click en bas a droite sur "lancer le nettoyage" et accepte par oui. 

-> Tutoriel en image : 

https://www.vulgarisation-informatique.com/nettoyer-windows-ccleaner.php 

-> Pour ceux qui voudraient aller plus loin en compagnie de jesses (fonctions avancés) : 

http://perso.orange.fr/jesses/Docs/Logiciels/CCleaner.htm 


ensuite pour nettoyer le registre :

telecharge et instal regcleaner: 

http://www.01net.com/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/4894.html 

tutorial : 

https://forums.cnetfrance.fr 

http://www.softastuces.com/tuto/maint/regcleaner/ 

et pour finir :

* pour supprimer les outils/fix utilisés : 

Télécharge ToolsCleaner sur ton bureau. 
--> 
http://pagesperso-orange.fr/AceRothstein/ToolsCleaner2.exe 
http://a-rothstein.changelog.fr/TC/ToolsCleaner2.exe 

# Clique sur Recherche et laisse le scan agir ... 
# Clique sur Suppression pour finaliser. 
# Tu peux, si tu le souhaites, te servir des Options facultatives. 
# Clique sur Quitter pour obtenir le rapport. 
# Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).

merzhin_22 · Answer

Je viens de réinstaller Panda, et il remarche la protection c'est remise (élévée) et il beugue plu!!
Je pense que j'avais un virus qui le faisait grave beuger
Enfin.. Merci beaucoup de ton aide! merci ! merci !

Je te poste tte a l'heure le rapport du sacn de panda, histoire de... 

ciao

Utilisateur anonyme · Answer

oki 

pense a faire toolcleaner

merzhin_22 · Answer

Voila le rapport de tools cleaner :

-->- Recherche: 

C:\Combofix: trouvé !
C:\Qoobox: trouvé !
C:\_OtMoveIt: trouvé !
C:\Documents and Settings\aaa\Bureau\HijackThis.lnk: trouvé !
C:\Documents and Settings\aaa\Bureau\Clean.zip: trouvé !
C:\Documents and Settings\aaa\Bureau\OtMoveIt2.exe: trouvé !
C:\Documents and Settings\aaa\Bureau\ComboFix.exe: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: trouvé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: trouvé !
C:\Nouveau dossier\HJTInstall.exe: trouvé !
C:\Program Files\Trend Micro\HijackThis: trouvé !
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: trouvé !

---------------------------------
-->- Suppression: 

C:\Documents and Settings\aaa\Bureau\HijackThis.lnk: supprimé !
C:\Documents and Settings\aaa\Bureau\Clean.zip: supprimé !
C:\Documents and Settings\aaa\Bureau\OtMoveIt2.exe: supprimé !
C:\Documents and Settings\aaa\Bureau\ComboFix.exe: supprimé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: supprimé !
C:\Nouveau dossier\HJTInstall.exe: supprimé !
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: supprimé !
C:\Combofix: supprimé !
C:\Qoobox: supprimé !
C:\_OtMoveIt: supprimé !
C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: supprimé !
C:\Program Files\Trend Micro\HijackThis: supprimé !




Le sacn de panda se fait..il ma désinfecté déja 27 fichiers !!

Utilisateur anonyme · Answer

oki

merzhin_22 · Answer

voila : 

Rapport des incidents de Panda Antivirus 2008

EVENEMENT                                                      DATE                    RESULTAT              INFORMATIONS SUPPLEMENTAIRES                                                                                                                                     
-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Fin de l'analyse                                               22/06/08 18:33:41                             Analyse : Tous les disques durs                                                                                                                                                 
Programme de surveillance détecté : Application/Psexec.A       22/06/08 18:27:31       Eliminé               Emplacement : C:\WINDOWS\PSEXESVC.EXE                                                                                                                                                                                                
Spyware détecté : Cookie/Xiti                                  22/06/08 18:16:55       Eliminé               Emplacement : c:\documents and settings\aaa\cookies\aaa@xiti[1].txt                                                                                                                                                                     
Spyware détecté : Cookie/Atlas DMT                             22/06/08 18:16:42       Eliminé               Emplacement : c:\documents and settings\aaa\cookies\aaa@atdmt[1].txt                                                                                                                                                                          
Spyware détecté : Cookie/Xiti                                  22/06/08 18:15:41       Eliminé               Emplacement : c:\documents and settings\aaa\cookies\aaa@xiti[1].txt                                                                                                                                                                     
Spyware détecté : Cookie/Serving-sys                           22/06/08 18:15:39       Eliminé               Emplacement : c:\documents and settings\aaa\cookies\aaa@bs.serving-sys[1].txt                                                                                                                                                                            
Spyware détecté : Cookie/Xiti                                  22/06/08 18:15:33       Eliminé               Emplacement : c:\documents and settings\aaa\cookies\aaa@xiti[1].txt                                                                                                                                                                     
Spyware détecté : Cookie/Serving-sys                           22/06/08 18:15:31       Eliminé               Emplacement : c:\documents and settings\aaa\cookies\aaa@serving-sys[1].txt                                                                                                                                                                            
Spyware détecté : Cookie/Serving-sys                           22/06/08 18:15:28       Eliminé               Emplacement : c:\documents and settings\aaa\cookies\aaa@serving-sys[1].txt                                                                                                                                                                            
Spyware détecté : Cookie/Serving-sys                           22/06/08 18:15:28       Eliminé               Emplacement : c:\documents and settings\aaa\cookies\aaa@bs.serving-sys[1].txt                                                                                                                                                                            
Spyware détecté : Cookie/Doubleclick                           22/06/08 18:15:27       Eliminé               Emplacement : c:\documents and settings\aaa\cookies\aaa@doubleclick[1].txt                                                                                                                                                                            
Spyware détecté : Cookie/Doubleclick                           22/06/08 18:15:27       Eliminé               Emplacement : c:\documents and settings\aaa\cookies\aaa@doubleclick[2].txt                                                                                                                                                                            
Spyware détecté : Cookie/Doubleclick                           22/06/08 18:15:15       Eliminé               Emplacement : c:\documents and settings\aaa\cookies\aaa@doubleclick[1].txt                                                                                                                                                                            
Spyware détecté : Cookie/Xiti                                  22/06/08 18:12:46       Eliminé               Emplacement : C:\Documents and Settings\Papa et Maman\Cookies\papa et maman@xiti[1].txt                                                                                                                                                                     
Spyware détecté : Cookie/WUpd                                  22/06/08 18:12:45       Eliminé               Emplacement : C:\Documents and Settings\Papa et Maman\Cookies\papa et maman@revenue[2].txt                                                                                                                                                                     
Spyware détecté : Cookie/Searchportal                          22/06/08 18:12:45       Eliminé               Emplacement : C:\Documents and Settings\Papa et Maman\Cookies\papa et maman@searchportal.information[1].txt                                                                                                                                                                             
Spyware détecté : Cookie/Serving-sys                           22/06/08 18:12:45       Eliminé               Emplacement : C:\Documents and Settings\Papa et Maman\Cookies\papa et maman@serving-sys[2].txt                                                                                                                                                                            
Spyware détecté : Cookie/Smartadserver                         22/06/08 18:12:45       Eliminé               Emplacement : C:\Documents and Settings\Papa et Maman\Cookies\papa et maman@smartadserver[1].txt                                                                                                                                                                              
Spyware détecté : Cookie/Tradedoubler                          22/06/08 18:12:45       Eliminé               Emplacement : C:\Documents and Settings\Papa et Maman\Cookies\papa et maman@tradedoubler[1].txt                                                                                                                                                                             
Spyware détecté : Cookie/Tribalfusion                          22/06/08 18:12:45       Eliminé               Emplacement : C:\Documents and Settings\Papa et Maman\Cookies\papa et maman@tribalfusion[2].txt                                                                                                                                                                             
Spyware détecté : Cookie/Weborama                              22/06/08 18:12:45       Eliminé               Emplacement : C:\Documents and Settings\Papa et Maman\Cookies\papa et maman@weborama[1].txt                                                                                                                                                                         
Spyware détecté : Cookie/QuestionMarket                        22/06/08 18:12:45       Eliminé               Emplacement : C:\Documents and Settings\Papa et Maman\Cookies\papa et maman@questionmarket[1].txt                                                                                                                                                                               
Spyware détecté : Cookie/Mediaplex                             22/06/08 18:12:44       Eliminé               Emplacement : C:\Documents and Settings\Papa et Maman\Cookies\papa et maman@mediaplex[1].txt                                                                                                                                                                          
Spyware détecté : Cookie/Com.com                               22/06/08 18:12:43       Eliminé               Emplacement : C:\Documents and Settings\Papa et Maman\Cookies\papa et maman@com[1].txt                                                                                                                                                                        
Spyware détecté : Cookie/Doubleclick                           22/06/08 18:12:43       Eliminé               Emplacement : C:\Documents and Settings\Papa et Maman\Cookies\papa et maman@doubleclick[1].txt                                                                                                                                                                            
Spyware détecté : Cookie/FastClick                             22/06/08 18:12:43       Eliminé               Emplacement : C:\Documents and Settings\Papa et Maman\Cookies\papa et maman@fastclick[1].txt                                                                                                                                                                          
Spyware détecté : Cookie/Bluestreak                            22/06/08 18:12:43       Eliminé               Emplacement : C:\Documents and Settings\Papa et Maman\Cookies\papa et maman@bluestreak[1].txt                                                                                                                                                                           
Spyware détecté : Cookie/Atlas DMT                             22/06/08 18:12:43       Eliminé               Emplacement : C:\Documents and Settings\Papa et Maman\Cookies\papa et maman@atdmt[1].txt                                                                                                                                                                          
Spyware détecté : Cookie/Apmebf                                22/06/08 18:12:43       Eliminé               Emplacement : C:\Documents and Settings\Papa et Maman\Cookies\papa et maman@apmebf[1].txt                                                                                                                                                                       
Spyware détecté : Cookie/Serving-sys                           22/06/08 18:12:43       Eliminé               Emplacement : C:\Documents and Settings\Papa et Maman\Cookies\papa et maman@bs.serving-sys[2].txt                                                                                                                                                                            
Spyware détecté : Cookie/YieldManager                          22/06/08 18:12:42       Eliminé               Emplacement : C:\Documents and Settings\Papa et Maman\Cookies\papa et maman@ad.yieldmanager[2].txt                                                                                                                                                                             
Spyware détecté : Cookie/Adtech                                22/06/08 18:12:42       Eliminé               Emplacement : C:\Documents and Settings\Papa et Maman\Cookies\papa et maman@adtech[1].txt                                                                                                                                                                       
Spyware détecté : Cookie/Advertising                           22/06/08 18:12:42       Eliminé               Emplacement : C:\Documents and Settings\Papa et Maman\Cookies\papa et maman@advertising[2].txt                                                                                                                                                                            
Spyware détecté : Cookie/RealMedia                             22/06/08 18:12:42       Eliminé               Emplacement : C:\Documents and Settings\Papa et Maman\Cookies\papa et maman@247realmedia[2].txt                                                                                                                                                                          
Spyware détecté : Cookie/Xiti                                  22/06/08 18:11:38       Eliminé               Emplacement : C:\Documents and Settings\Cécile\Cookies\cécile@xiti[1].txt                                                                                                                                                                     
Spyware détecté : Cookie/Bluestreak                            22/06/08 18:11:35       Eliminé               Emplacement : C:\Documents and Settings\Cécile\Cookies\cécile@bluestreak[1].txt                                                                                                                                                                           
Spyware détecté : Cookie/Doubleclick                           22/06/08 18:11:35       Eliminé               Emplacement : C:\Documents and Settings\Cécile\Cookies\cécile@doubleclick[1].txt                                                                                                                                                                            
Spyware détecté : Cookie/Atlas DMT                             22/06/08 18:11:35       Eliminé               Emplacement : C:\Documents and Settings\Cécile\Cookies\cécile@atdmt[2].txt                                                                                                                                                                          
Programme de surveillance détecté : Application/Pskill.K       22/06/08 18:08:06       Eliminé               Emplacement : C:\Documents and Settings\aaa\Bureau\clean\pskill.exe                                                                                                                                                                                                
Programme de surveillance détecté : Application/Pskill.K       22/06/08 18:07:47       Eliminé               Emplacement : C:\Documents and Settings\aaa\Bureau\clean.zip[clean/pskill.exe]                                                                                                                                                                                                
Début de l'analyse                                             22/06/08 18:07:36                             Analyse : Tous les disques durs                                                                                                                                                   
Mise à jour                                                    22/06/08 18:06:50       Correcte              Nouvelle version : 3.01.00                                                                                                                                                    
Mise à jour                                                    22/06/08 18:05:30       Correcte              Signatures de menaces                                                                                                                                                    
Mise à jour                                                    22/06/08 18:05:23       Correcte              Nouvelles signatures de menaces : 1314130

Utilisateur anonyme · Answer

des cookies 

rien de grave bon je pense que c goog for U 

tu confirmes ??

merzhin_22 · Answer

oui tres bien !!

Utilisateur anonyme · Answer

OKI 

dans ce cas change le statut du sujet en résolu stp 

ciao et bon surf !!

Infecté par Bagle !! HELP !! s.v.p merci

50 réponses

Discussions similaires

Newsletters