Aller au contenu

  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

grosse infection[résolu]

loukass

Par loukass
dans Analyses et éradication malwares

 Partager

Messages recommandés

loukass Member

loukass

Posté(e)
Posté(e) (modifié)

bonjour à tous, ça devient infernal. a l'aide s'il vous plait.

ci-joint rapport hijackthis et combofix:

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 05:35:09, on 16/05/2008

Platform: Windows XP (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Boot mode: Normal

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

C:\Program Files\Alwil Software\Avast4\ashServ.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\System32\ws2_32.exe

C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

C:\WINDOWS\System32\lssas.exe

C:\Program Files\Ahead\InCD\InCD.exe

C:\WINDOWS\System32\rundll32.exe

C:\WINDOWS\System32\Rundll32.exe

C:\WINDOWS\System32\ctfmon.exe

C:\Program Files\Messenger\msmsgs.exe

C:\WINDOWS\System32\rundll32.exe

C:\WINDOWS\explorer.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

 

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx

O4 - HKLM\..\Run: [Local Security Authority Service] C:\WINDOWS\System32\lssas.exe

O4 - HKLM\..\Run: [Client Server Runtime Process] C:\WINDOWS\System32\csrs.exe

O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe

O4 - HKLM\..\Run: [inCD] C:\Program Files\Ahead\InCD\InCD.exe

O4 - HKLM\..\Run: [Windows Logon Application] C:\WINDOWS\System32\winIogon.exe

O4 - HKLM\..\Run: [a88ae0d2] rundll32.exe "C:\WINDOWS\System32\sqlrwefj.dll",b

O4 - HKLM\..\Run: [bMabb9d34e] Rundll32.exe "C:\WINDOWS\System32\gmtvnmws.dll",s

O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe

O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background

O4 - HKCU\..\Run: [Windows hes Layers] tlvqmw.exe

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')

O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe

O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe

O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm

O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1210689816508

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

O23 - Service: ws2_32 - Unknown owner - C:\WINDOWS\System32\ws2_32.exe

 

--

End of file - 3954 bytes

 

ComboFix 08-05-12.1 - lucas 2008-05-16 5:21:12.2 - NTFSx86

Microsoft Windows XP Professionnel 5.1.2600.0.1252.1.1036.18.329 [GMT 2:00]

Endroit: C:\Documents and Settings\lucas\Bureau\ComboFix.exe

.

 

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))

.

 

C:\WINDOWS\pskt.ini

C:\WINDOWS\system32\EdfOnnnn.ini

C:\WINDOWS\system32\EdfOnnnn.ini2

C:\WINDOWS\system32\jfewrlqs.ini

 

.

((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-04-16 to 2008-05-16 ))))))))))))))))))))))))))))))))))))

.

 

2008-05-16 05:24 . 2008-05-16 05:24 294 ---hs---- C:\WINDOWS\system32\jfewrlqs.ini

2008-05-16 05:11 . 2008-05-16 05:11 57,344 --a------ C:\WINDOWS\system32\qoMggdAp.dll

2008-05-16 05:11 . 2008-05-16 05:11 26,112 --a------ C:\WINDOWS\system32\duqtuk.exe

2008-05-16 05:11 . 2008-05-16 05:11 23,040 --a------ C:\WINDOWS\system32\cnjia.exe

2008-05-16 05:11 . 2008-05-16 05:11 1,635 --a------ C:\WINDOWS\system32\plpewra.exe

2008-05-16 05:11 . 2008-05-16 05:11 1,635 --a------ C:\WINDOWS\system32\fuidocm.exe

2008-05-16 05:06 . 2008-05-16 05:06 57,344 --a------ C:\WINDOWS\system32\vtUkkkKa.dll

2008-05-16 05:06 . 2008-05-16 05:06 26,112 --a------ C:\WINDOWS\system32\gqtpb.exe

2008-05-16 05:06 . 2008-05-16 05:06 23,040 --a------ C:\WINDOWS\system32\letagyrc.exe

2008-05-16 05:06 . 2008-05-16 05:06 1,635 --a------ C:\WINDOWS\system32\wwtamll.exe

2008-05-16 05:06 . 2008-05-16 05:06 1,635 --a------ C:\WINDOWS\system32\bbtpmnmt.exe

2008-05-16 05:01 . 2008-05-16 05:01 116,800 --a------ C:\WINDOWS\system32\sqlrwefj.dll

2008-05-16 05:01 . 2008-05-16 05:01 2,112 --a------ C:\WINDOWS\system32\ecbwillt.exe

2008-05-16 04:58 . 2008-05-16 04:58 133,184 --a------ C:\WINDOWS\system32\oayhapkm.dll

2008-05-16 04:55 . 2008-05-16 04:55 126,016 --a------ C:\WINDOWS\system32\gmtvnmws.dll

2008-05-16 04:46 . 2008-05-16 04:46 57,344 --a------ C:\WINDOWS\system32\cbXNGyVn.dll

2008-05-16 04:46 . 2008-05-16 04:46 26,112 --a------ C:\WINDOWS\system32\xcckrc.exe

2008-05-16 04:46 . 2008-05-16 04:46 23,040 --a------ C:\WINDOWS\system32\cgormew.exe

2008-05-16 04:46 . 2008-05-16 04:46 1,635 --a------ C:\WINDOWS\system32\nyuawsqp.exe

2008-05-16 04:46 . 2008-05-16 04:46 1,635 --a------ C:\WINDOWS\system32\nbyc.exe

2008-05-16 04:21 . 2008-05-16 04:21 57,344 --a------ C:\WINDOWS\system32\jkkJyARk.dll

2008-05-16 04:20 . 2008-05-16 04:20 26,112 --a------ C:\WINDOWS\system32\vrfovxq.exe

2008-05-16 04:20 . 2008-05-16 04:20 23,040 --a------ C:\WINDOWS\system32\rccsohmg.exe

2008-05-16 04:20 . 2008-05-16 04:20 1,635 --a------ C:\WINDOWS\system32\rnarc.exe

2008-05-16 04:20 . 2008-05-16 04:20 1,635 --a------ C:\WINDOWS\system32\byod.exe

2008-05-16 04:10 . 2008-05-16 04:10 57,344 --a------ C:\WINDOWS\system32\ssqRLEWq.dll

2008-05-16 04:10 . 2008-05-16 04:10 26,112 --a------ C:\WINDOWS\system32\juundt.exe

2008-05-16 04:10 . 2008-05-16 04:10 23,040 --a------ C:\WINDOWS\system32\douvli.exe

2008-05-16 04:10 . 2008-05-16 04:10 1,635 --a------ C:\WINDOWS\system32\mmaivk.exe

2008-05-16 04:10 . 2008-05-16 04:10 1,635 --a------ C:\WINDOWS\system32\jfxpqctk.exe

2008-05-15 19:15 . 2008-05-16 04:46 474 ---hs---- C:\WINDOWS\system32\hotjtmqg.ini

2008-05-15 17:46 . 2008-05-15 17:46 57,344 --a------ C:\WINDOWS\system32\vtUlKEXP.dll

2008-05-15 17:46 . 2008-05-15 17:46 23,040 --a------ C:\WINDOWS\system32\emll.exe

2008-05-15 17:46 . 2008-05-15 17:46 1,635 --a------ C:\WINDOWS\system32\lzfmrtgf.exe

2008-05-15 17:46 . 2008-05-15 17:46 1,635 --a------ C:\WINDOWS\system32\emkujfs.exe

2008-05-15 17:30 . 2008-05-15 17:30 57,344 --a------ C:\WINDOWS\system32\tuvTlkiH.dll

2008-05-15 17:30 . 2008-05-15 17:30 26,112 --a------ C:\WINDOWS\system32\eahtiab.exe

2008-05-15 17:30 . 2008-05-15 17:30 23,040 --a------ C:\WINDOWS\system32\zwncojn.exe

2008-05-15 17:30 . 2008-05-15 17:30 1,635 --a------ C:\WINDOWS\system32\ebmdgzl.exe

2008-05-15 17:30 . 2008-05-15 17:30 1,635 --a------ C:\WINDOWS\system32\cdqu.exe

2008-05-15 17:20 . 2008-05-15 17:20 208 --a------ C:\WINDOWS\system32\mqlh.exe

2008-05-15 17:19 . 2008-05-15 17:19 92,672 --a------ C:\WINDOWS\system32\pyhqmo.exe

2008-05-15 17:19 . 2008-05-15 17:19 26,112 --a------ C:\WINDOWS\system32\dzkvuvky.exe

2008-05-15 17:19 . 2008-05-15 17:19 23,040 --a------ C:\WINDOWS\system32\uqnf.exe

2008-05-15 17:19 . 2008-05-15 17:19 1,635 --a------ C:\WINDOWS\system32\lwhnw.exe

2008-05-15 17:19 . 2008-05-15 17:19 1,635 --a------ C:\WINDOWS\system32\brxg.exe

2008-05-15 17:16 . 2008-05-15 17:16 92,672 --------- C:\WINDOWS\system32\oalw.exe

2008-05-15 17:16 . 2008-05-15 17:16 57,344 --a------ C:\WINDOWS\system32\ljJCspqO.dll

2008-05-15 17:16 . 2008-05-15 17:16 26,112 --a------ C:\WINDOWS\system32\zbys.exe

2008-05-15 17:16 . 2008-05-15 17:16 23,040 --a------ C:\WINDOWS\system32\tifchkzp.exe

2008-05-15 17:16 . 2008-05-15 17:16 1,635 --a------ C:\WINDOWS\system32\yudymt.exe

2008-05-15 17:16 . 2008-05-15 17:16 1,635 --a------ C:\WINDOWS\system32\vkilru.exe

2008-05-15 17:13 . 2008-05-15 17:13 92,672 --------- C:\WINDOWS\system32\mjzayy.exe

2008-05-15 17:13 . 2008-05-15 17:13 57,344 --a------ C:\WINDOWS\system32\vtUnonmj.dll

2008-05-15 17:13 . 2008-05-15 17:13 26,112 --a------ C:\WINDOWS\system32\pjqlfseh.exe

2008-05-15 17:13 . 2008-05-15 17:13 23,040 --a------ C:\WINDOWS\system32\qxdrj.exe

2008-05-15 17:13 . 2008-05-15 17:13 1,635 --a------ C:\WINDOWS\system32\ytjon.exe

2008-05-15 17:13 . 2008-05-15 17:13 1,635 --a------ C:\WINDOWS\system32\fsjxffi.exe

2008-05-15 17:11 . 2008-05-15 17:11 57,344 --a------ C:\WINDOWS\system32\pmnkLDts.dll

2008-05-15 17:10 . 2008-05-15 17:10 92,672 --------- C:\WINDOWS\system32\sdmsox.exe

2008-05-15 17:10 . 2008-05-15 17:10 26,112 --a------ C:\WINDOWS\system32\jpvj.exe

2008-05-15 17:10 . 2008-05-15 17:10 23,040 --a------ C:\WINDOWS\system32\lkte.exe

2008-05-15 17:10 . 2008-05-15 17:10 1,635 --a------ C:\WINDOWS\system32\xlyczjo.exe

2008-05-15 17:10 . 2008-05-15 17:10 1,635 --a------ C:\WINDOWS\system32\wdykss.exe

2008-05-15 17:08 . 2008-05-15 17:08 92,672 --a------ C:\WINDOWS\system32\jsrejeik.exe

2008-05-15 17:08 . 2008-05-15 17:08 26,112 --a------ C:\WINDOWS\system32\bbat.exe

2008-05-15 17:08 . 2008-05-15 17:08 23,040 --a------ C:\WINDOWS\system32\ungm.exe

2008-05-15 17:08 . 2008-05-15 17:08 1,635 --a------ C:\WINDOWS\system32\gfqktjz.exe

2008-05-15 17:08 . 2008-05-15 17:08 1,635 --a------ C:\WINDOWS\system32\fwcrz.exe

2008-05-15 16:53 . 2008-05-15 16:53 57,344 --a------ C:\WINDOWS\system32\vtUnomkL.dll

2008-05-15 16:53 . 2008-05-15 16:53 23,040 --a------ C:\WINDOWS\system32\eqvd.exe

2008-05-15 16:53 . 2008-05-15 16:53 1,635 --a------ C:\WINDOWS\system32\qccnmup.exe

2008-05-15 16:53 . 2008-05-15 16:53 1,635 --a------ C:\WINDOWS\system32\bhhyllwg.exe

2008-05-15 16:33 . 2008-05-15 16:33 57,344 --a------ C:\WINDOWS\system32\rqRJBUlK.dll

2008-05-15 16:32 . 2008-05-15 16:32 23,040 --a------ C:\WINDOWS\system32\pqozit.exe

2008-05-15 16:32 . 2008-05-15 16:32 1,635 --a------ C:\WINDOWS\system32\tsqhfh.exe

2008-05-15 16:32 . 2008-05-15 16:32 1,635 --a------ C:\WINDOWS\system32\fgmrydsn.exe

2008-05-15 16:29 . 2008-05-15 16:29 92,672 --a------ C:\WINDOWS\system32\jopfoxti.exe

2008-05-15 16:29 . 2008-05-15 16:29 26,112 --a------ C:\WINDOWS\system32\fzsz.exe

2008-05-15 16:29 . 2008-05-15 16:29 23,040 --a------ C:\WINDOWS\system32\pmqvdbmm.exe

2008-05-15 16:29 . 2008-05-15 16:29 1,635 --a------ C:\WINDOWS\system32\rngli.exe

2008-05-15 16:29 . 2008-05-15 16:29 1,635 --a------ C:\WINDOWS\system32\dwcymwxk.exe

2008-05-15 16:21 . 2008-05-15 16:21 133,184 --a------ C:\WINDOWS\system32\yqbuspmp.dll

2008-05-15 16:19 . 2008-05-15 16:19 126,016 --a------ C:\WINDOWS\system32\pgoqkiwa.dll

2008-05-15 16:18 . 2008-05-15 16:18 57,344 --a------ C:\WINDOWS\system32\cbXRJARh.dll

2008-05-15 16:18 . 2008-05-15 16:18 26,112 --a------ C:\WINDOWS\system32\yffcuz.exe

2008-05-15 16:18 . 2008-05-15 16:18 23,040 --a------ C:\WINDOWS\system32\dyuh.exe

2008-05-15 16:18 . 2008-05-15 16:18 1,635 --a------ C:\WINDOWS\system32\ydkpgf.exe

2008-05-15 16:18 . 2008-05-15 16:18 1,635 --a------ C:\WINDOWS\system32\lsihib.exe

2008-05-15 16:15 . 2008-05-15 16:15 57,344 --a------ C:\WINDOWS\system32\opnopNfF.dll

2008-05-15 16:15 . 2008-05-15 16:15 26,112 --a------ C:\WINDOWS\system32\ksst.exe

2008-05-15 16:15 . 2008-05-15 16:15 23,040 --a------ C:\WINDOWS\system32\jbqsstho.exe

2008-05-15 16:15 . 2008-05-15 16:15 1,635 --a------ C:\WINDOWS\system32\uaooyr.exe

2008-05-15 16:15 . 2008-05-15 16:15 1,635 --a------ C:\WINDOWS\system32\lzjmx.exe

2008-05-13 18:20 . 2008-05-13 18:20 76,800 --a------ C:\WINDOWS\system32\zxqqdw.exe

2008-05-13 18:20 . 2008-05-13 18:20 57,344 --a------ C:\WINDOWS\system32\jkkJdAst.dll

2008-05-13 18:20 . 2008-05-13 18:20 26,112 --a------ C:\WINDOWS\system32\fsfbwch.exe

2008-05-13 18:20 . 2008-05-13 18:20 23,040 --a------ C:\WINDOWS\system32\tjmepnuz.exe

2008-05-13 18:20 . 2008-05-13 18:20 1,635 --a------ C:\WINDOWS\system32\uvgszj.exe

2008-05-13 18:20 . 2008-05-13 18:20 1,635 --a------ C:\WINDOWS\system32\atvzqodj.exe

2008-05-13 17:53 . 2008-05-13 17:53 545,792 --a------ C:\WINDOWS\system32\simley.exe

2008-05-13 17:36 . 2008-05-13 17:36 131,648 --a------ C:\WINDOWS\system32\iiqqasvw.dll

2008-05-13 17:30 . 2008-05-13 17:30 2,112 --a------ C:\WINDOWS\system32\lfusufla.exe

2008-05-13 17:28 . 2008-05-13 17:28 126,016 --a------ C:\WINDOWS\system32\qhbmfopj.dll

2008-05-13 17:27 . 2008-05-13 17:27 370,176 --a------ C:\WINDOWS\system32\nnnnOfdE.dll

2008-05-13 16:44 . 2007-07-30 19:19 549,720 --a------ C:\WINDOWS\system32\wuapi.dll

2008-05-13 16:44 . 2007-07-30 19:19 325,976 --a------ C:\WINDOWS\system32\wucltui.dll

2008-05-13 16:44 . 2007-07-30 19:19 216,408 --a------ C:\WINDOWS\system32\wuaucpl.cpl

2008-05-13 16:44 . 2007-07-30 19:19 43,352 --a------ C:\WINDOWS\system32\wups2.dll

2008-05-13 16:44 . 2007-07-30 19:19 38,232 --a------ C:\WINDOWS\system32\wucltui.dll.mui

2008-05-13 16:44 . 2007-07-30 19:18 33,624 --a------ C:\WINDOWS\system32\wups.dll

2008-05-13 16:44 . 2007-07-30 19:20 30,040 --a------ C:\WINDOWS\system32\wuaucpl.cpl.mui

2008-05-13 16:44 . 2007-07-30 19:19 30,040 --a------ C:\WINDOWS\system32\wuapi.dll.mui

2008-05-13 16:44 . 2007-07-30 19:18 21,336 --a------ C:\WINDOWS\system32\wuaueng.dll.mui

2008-05-13 16:41 . 2008-05-13 16:41 69,120 --a------ C:\WINDOWS\system32\qgtsldb.exe

2008-05-13 16:41 . 2008-05-13 16:41 26,112 --a------ C:\WINDOWS\system32\hhskjhd.exe

2008-05-13 16:11 . 2008-05-13 16:15 29,652 --a------ C:\WINDOWS\system32\msmnger.exe

2008-05-13 16:10 . 2008-05-13 16:10 76,800 --a------ C:\WINDOWS\system32\haqne.exe

2008-05-13 16:10 . 2008-05-13 16:10 69,120 --a------ C:\WINDOWS\system32\tyqai.exe

2008-05-13 16:10 . 2008-05-13 16:10 57,344 --a------ C:\WINDOWS\system32\tuvUOIBq.dll

2008-05-13 16:10 . 2008-05-13 16:10 26,112 --a------ C:\WINDOWS\system32\svoykmry.exe

2008-05-13 16:10 . 2008-05-13 16:10 26,112 --a------ C:\WINDOWS\system32\fmtgd.exe

2008-05-13 16:10 . 2008-05-13 16:10 23,040 --a------ C:\WINDOWS\system32\vwiheev.exe

2008-05-13 16:10 . 2008-05-13 16:10 1,635 --a------ C:\WINDOWS\system32\kusnd.exe

2008-05-13 16:10 . 2008-05-13 16:10 1,635 --a------ C:\WINDOWS\system32\dwlmmub.exe

 

.

(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))

.

2008-04-29 16:52 0 ----a-w C:\adware.exe

2008-04-21 22:00 5,848 ----a-w C:\WINDOWS\system32\djtftd.exe

2008-04-21 20:57 33,952 ----a-w C:\WINDOWS\system32\drivers\oreans32.sys

2008-04-21 20:44 --------- d-----w C:\Program Files\microsoft frontpage

2008-04-21 20:42 --------- d-----w C:\Program Files\Services en ligne

.

 

------- Sigcheck -------

 

2004-08-04 08:00 29056 4448006b6bc60e6c027932cfc38d6855 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ip6fw.sys

.

((((((((((((((((((((((((((((( snapshot@2008-05-15_18.32.40.96 )))))))))))))))))))))))))))))))))))))))))

.

- 2008-05-15 15:54:57 2,048 --s-a-w C:\WINDOWS\bootstat.dat

+ 2008-05-16 03:24:00 2,048 --s-a-w C:\WINDOWS\bootstat.dat

+ 2001-07-14 15:32:24 69,632 ----a-w C:\WINDOWS\setup.pss\setupupd\temp\wsdueng.dll

- 2008-05-15 15:41:02 16,384 ----a-w C:\WINDOWS\system32\config\systemprofile\Cookies\index.dat

+ 2008-05-16 02:43:31 16,384 ----a-w C:\WINDOWS\system32\config\systemprofile\Cookies\index.dat

- 2008-05-15 15:41:02 32,768 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\Historique\History.IE5\index.dat

+ 2008-05-16 02:43:31 32,768 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\Historique\History.IE5\index.dat

- 2008-05-15 15:41:02 32,768 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat

+ 2008-05-16 02:43:31 32,768 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat

- 2008-04-21 22:02:58 39,992 ----a-w C:\WINDOWS\system32\perfc009.dat

+ 2008-05-16 02:09:17 39,992 ----a-w C:\WINDOWS\system32\perfc009.dat

- 2008-04-21 22:02:58 48,616 ----a-w C:\WINDOWS\system32\perfc00C.dat

+ 2008-05-16 02:09:17 48,616 ----a-w C:\WINDOWS\system32\perfc00C.dat

- 2008-04-21 22:02:58 311,604 ----a-w C:\WINDOWS\system32\perfh009.dat

+ 2008-05-16 02:09:17 311,604 ----a-w C:\WINDOWS\system32\perfh009.dat

- 2008-04-21 22:02:58 367,658 ----a-w C:\WINDOWS\system32\perfh00C.dat

+ 2008-05-16 02:09:17 367,658 ----a-w C:\WINDOWS\system32\perfh00C.dat

+ 2008-05-16 03:24:08 16,384 ----atw C:\WINDOWS\Temp\Perflib_Perfdata_530.dat

.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

REGEDIT4

*Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s

 

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6C23AB0C-0244-4B01-8253-BEE724D0D2EC}]

2008-05-13 14:05 57344 --a------ C:\WINDOWS\system32\xxyywxur.dll

 

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{dfaf3fed-f572-45ca-b212-b93f148a8f18}]

2008-05-16 04:58 133184 --a------ C:\WINDOWS\System32\oayhapkm.dll

 

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F3AE67E7-AC8F-4A58-819E-194EA11FEBC5}]

C:\WINDOWS\System32\vtsqqomm.dll

 

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F3FA1313-68CA-46C0-A3B8-1B389132C2E3}]

2008-05-13 17:27 370176 --a------ C:\WINDOWS\System32\nnnnOfdE.dll

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="C:\WINDOWS\System32\ctfmon.exe" [2001-08-28 14:00 13312]

"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2001-08-02 07:14 1077277]

"Windows hes Layers"="tlvqmw.exe" []

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Local Security Authority Service"="C:\WINDOWS\System32\lssas.exe" [2001-08-28 14:00 116736]

"Client Server Runtime Process"="C:\WINDOWS\System32\csrs.exe" [ ]

"NeroCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 12:50 155648]

"InCD"="C:\Program Files\Ahead\InCD\InCD.exe" [2003-01-15 19:29 1220608]

"Windows Logon Application"="C:\WINDOWS\System32\winIogon.exe" [ ]

"a88ae0d2"="C:\WINDOWS\System32\sqlrwefj.dll" [2008-05-16 05:01 116800]

"BMabb9d34e"="C:\WINDOWS\System32\gmtvnmws.dll" [2008-05-16 04:55 126016]

 

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2001-08-28 14:00 13312]

 

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks]

"{6C23AB0C-0244-4B01-8253-BEE724D0D2EC}"= C:\WINDOWS\system32\xxyywxur.dll [2008-05-13 14:05 57344]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\fcyayvwu]

fcyayvwu.dll

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\xxyywxur]

xxyywxur.dll 2008-05-13 14:05 57344 C:\WINDOWS\system32\xxyywxur.dll

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ws2_32]

@="Service"

 

R0 BsStor;InCD Storage Helper Driver;C:\WINDOWS\System32\DRIVERS\bsstor.sys [2002-06-06 01:07]

R1 aswSP;avast! Self Protection;C:\WINDOWS\System32\drivers\aswSP.sys [2008-05-12 18:36]

R1 oreans32;oreans32;C:\WINDOWS\system32\drivers\oreans32.sys [2008-04-21 22:57]

R2 BsUDF;InCD UDF Driver;C:\WINDOWS\System32\drivers\BsUDF.sys [2003-01-15 20:02]

R3 Cap7134;MEDION (7134) WDM Video Capture;C:\WINDOWS\System32\DRIVERS\Cap7134.sys [2002-07-29 15:14]

R3 PhTVTune;Philips WDM TVTuner;C:\WINDOWS\System32\DRIVERS\PhTVTune.sys [2002-10-23 14:48]

S2 ws2_32;ws2_32;C:\WINDOWS\System32\ws2_32.exe [2008-05-05 17:04]

S3 BrScnUsb;Brother USB Still Image driver;C:\WINDOWS\System32\DRIVERS\BrScnUsb.sys [2004-10-15 05:50]

 

.

**************************************************************************

 

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2008-05-16 05:24:37

Windows 5.1.2600 NTFS

 

Balayage processus cach‚s ...

 

Balayage cach‚ autostart entries ...

 

Balayage des fichiers cach‚s ...

 

 

C:\WINDOWS\system32\jfewrlqs.ini 294 bytes

 

Scan termin‚ avec succŠs

Les fichiers cach‚s: 1

 

**************************************************************************

.

--------------------- DLLs a charg‚ sous des processus courants ---------------------

 

PROCESS: C:\WINDOWS\system32\winlogon.exe

-> C:\WINDOWS\system32\xxyywxur.dll

 

PROCESS: C:\WINDOWS\explorer.exe

-> C:\WINDOWS\System32\sqlrwefj.dll

-> C:\WINDOWS\System32\gmtvnmws.dll

.

------------------------ Other Running Processes ------------------------

.

C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

C:\Program Files\Alwil Software\Avast4\ashServ.exe

C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

C:\WINDOWS\system32\rundll32.exe

C:\WINDOWS\system32\rundll32.exe

.

**************************************************************************

.

Temps d'accomplissement: 2008-05-16 5:25:49 - machine was rebooted

ComboFix-quarantined-files.txt 2008-05-16 03:25:42

 

Pre-Run: 28,386,279,424 octets libres

Post-Run: 28,392,734,720 octets libres

 

249

 

j'ai fait des imprim' écran pour décrire mes soucis récurants y'a t'il moyen de vous les envoyer?

merci d'avance

Modifié par loukass

loukass Member

loukass

Posté(e)
  • Auteur
Posté(e)

merci mr Lee.

entre temps j'ai essayé d'installer antivir Avira mais je ne peus pas l'installer ni desinstaller pour cause virus apparement. donc Gros danger.

bruce lee Devil Member !

bruce lee

Posté(e)
Posté(e)

Re,

 

1/ Ouvre le Bloc-notes ( Menu Démarrer\Tous les programmes\Accessoires\Bloc-notes)

 

2/ Copie ce qui est en citation ci-dessous (sans le mot citation) par sélection puis Ctrl-C :

 

Driver::

ws2_32

 

File::

C:\WINDOWS\System32\ws2_32.exe

C:\WINDOWS\system32\jfewrlqs.ini

C:\WINDOWS\system32\qoMggdAp.dll

C:\WINDOWS\system32\duqtuk.exe

C:\WINDOWS\system32\cnjia.exe

C:\WINDOWS\system32\plpewra.exe

C:\WINDOWS\system32\fuidocm.exe

C:\WINDOWS\system32\vtUkkkKa.dll

C:\WINDOWS\system32\gqtpb.exe

C:\WINDOWS\system32\letagyrc.exe

C:\WINDOWS\system32\wwtamll.exe

C:\WINDOWS\system32\bbtpmnmt.exe

C:\WINDOWS\system32\sqlrwefj.dll

C:\WINDOWS\system32\ecbwillt.exe

C:\WINDOWS\system32\oayhapkm.dll

C:\WINDOWS\system32\gmtvnmws.dll

C:\WINDOWS\system32\cbXNGyVn.dll

C:\WINDOWS\system32\xcckrc.exe

C:\WINDOWS\system32\cgormew.exe

C:\WINDOWS\system32\nyuawsqp.exe

C:\WINDOWS\system32\nbyc.exe

C:\WINDOWS\system32\jkkJyARk.dll

C:\WINDOWS\system32\vrfovxq.exe

C:\WINDOWS\system32\rccsohmg.exe

C:\WINDOWS\system32\rnarc.exe

C:\WINDOWS\system32\byod.exe

C:\WINDOWS\system32\ssqRLEWq.dll

C:\WINDOWS\system32\juundt.exe

C:\WINDOWS\system32\douvli.exe

C:\WINDOWS\system32\mmaivk.exe

C:\WINDOWS\system32\jfxpqctk.exe

C:\WINDOWS\system32\hotjtmqg.ini

C:\WINDOWS\system32\vtUlKEXP.dll

C:\WINDOWS\system32\emll.exe

C:\WINDOWS\system32\lzfmrtgf.exe

C:\WINDOWS\system32\emkujfs.exe

C:\WINDOWS\system32\tuvTlkiH.dll

C:\WINDOWS\system32\eahtiab.exe

C:\WINDOWS\system32\zwncojn.exe

C:\WINDOWS\system32\ebmdgzl.exe

C:\WINDOWS\system32\cdqu.exe

C:\WINDOWS\system32\mqlh.exe

C:\WINDOWS\system32\pyhqmo.exe

C:\WINDOWS\system32\dzkvuvky.exe

C:\WINDOWS\system32\uqnf.exe

C:\WINDOWS\system32\lwhnw.exe

C:\WINDOWS\system32\brxg.exe

C:\WINDOWS\system32\oalw.exe

C:\WINDOWS\system32\ljJCspqO.dll

C:\WINDOWS\system32\zbys.exe

C:\WINDOWS\system32\tifchkzp.exe

C:\WINDOWS\system32\yudymt.exe

C:\WINDOWS\system32\vkilru.exe

C:\WINDOWS\system32\mjzayy.exe

C:\WINDOWS\system32\vtUnonmj.dll

C:\WINDOWS\system32\pjqlfseh.exe

C:\WINDOWS\system32\qxdrj.exe

C:\WINDOWS\system32\ytjon.exe

C:\WINDOWS\system32\fsjxffi.exe

C:\WINDOWS\system32\pmnkLDts.dll

C:\WINDOWS\system32\sdmsox.exe

C:\WINDOWS\system32\jpvj.exe

C:\WINDOWS\system32\lkte.exe

C:\WINDOWS\system32\xlyczjo.exe

C:\WINDOWS\system32\wdykss.exe

C:\WINDOWS\system32\jsrejeik.exe

C:\WINDOWS\system32\bbat.exe

C:\WINDOWS\system32\ungm.exe

C:\WINDOWS\system32\gfqktjz.exe

C:\WINDOWS\system32\fwcrz.exe

C:\WINDOWS\system32\vtUnomkL.dll

C:\WINDOWS\system32\eqvd.exe

C:\WINDOWS\system32\qccnmup.exe

C:\WINDOWS\system32\bhhyllwg.exe

C:\WINDOWS\system32\rqRJBUlK.dll

C:\WINDOWS\system32\pqozit.exe

C:\WINDOWS\system32\tsqhfh.exe

C:\WINDOWS\system32\fgmrydsn.exe

C:\WINDOWS\system32\jopfoxti.exe

C:\WINDOWS\system32\fzsz.exe

C:\WINDOWS\system32\pmqvdbmm.exe

C:\WINDOWS\system32\rngli.exe

C:\WINDOWS\system32\dwcymwxk.exe

C:\WINDOWS\system32\yqbuspmp.dll

C:\WINDOWS\system32\pgoqkiwa.dll

C:\WINDOWS\system32\cbXRJARh.dll

C:\WINDOWS\system32\yffcuz.exe

C:\WINDOWS\system32\dyuh.exe

C:\WINDOWS\system32\ydkpgf.exe

C:\WINDOWS\system32\lsihib.exe

C:\WINDOWS\system32\opnopNfF.dll

C:\WINDOWS\system32\ksst.exe

C:\WINDOWS\system32\jbqsstho.exe

C:\WINDOWS\system32\uaooyr.exe

C:\WINDOWS\system32\lzjmx.exe

C:\WINDOWS\system32\zxqqdw.exe

C:\WINDOWS\system32\jkkJdAst.dll

C:\WINDOWS\system32\fsfbwch.exe

C:\WINDOWS\system32\tjmepnuz.exe

C:\WINDOWS\system32\uvgszj.exe

C:\WINDOWS\system32\atvzqodj.exe

C:\WINDOWS\system32\simley.exe

C:\WINDOWS\system32\iiqqasvw.dll

C:\WINDOWS\system32\lfusufla.exe

C:\WINDOWS\system32\qhbmfopj.dll

C:\WINDOWS\system32\nnnnOfdE.dll

C:\WINDOWS\system32\qgtsldb.exe

C:\WINDOWS\system32\hhskjhd.exe

C:\WINDOWS\system32\msmnger.exe

C:\WINDOWS\system32\haqne.exe

C:\WINDOWS\system32\tyqai.exe

C:\WINDOWS\system32\tuvUOIBq.dll

C:\WINDOWS\system32\svoykmry.exe

C:\WINDOWS\system32\fmtgd.exe

C:\WINDOWS\system32\vwiheev.exe

C:\WINDOWS\system32\kusnd.exe

C:\WINDOWS\system32\dwlmmub.exe

C:\adware.exe

C:\WINDOWS\system32\djtftd.exe

C:\WINDOWS\system32\xxyywxur.dll

c:\WINDOWS\System32\vtsqqomm.dll

 

Registry::

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6C23AB0C-0244-4B01-8253-BEE724D0D2EC}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{dfaf3fed-f572-45ca-b212-b93f148a8f18}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F3AE67E7-AC8F-4A58-819E-194EA11FEBC5}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F3FA1313-68CA-46C0-A3B8-1B389132C2E3}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Windows hes Layers"=-

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"a88ae0d2"=-

"BMabb9d34e"=-

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\shellexecutehooks]

"{6C23AB0C-0244-4B01-8253-BEE724D0D2EC}"=-

[-HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\fcyayvwu]

[-HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\xxyywxur]

[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ws2_32]

 

-Enregistre ce fichier dans: Bureau

-Nom du fichier : CFScript

-Type du fichier : tous les fichiers

-clique sur Enregistrer

-quitte le Bloc Notes

 

 

[*]Fait un glisser/déposer de ce fichier CFScript sur le fichier ComboFix.exe comme sur la capture

 

CFScript.gif

  • Une fenêtre bleue va apparaître: au message qui apparaît ( Type 1 to continue, or 2 to abort), tape 1 puis valide.
  • Patiente le temps du scan.Le bureau va disparaître à plusieurs reprises: c'est normal!
    Ne touche à rien tant que le scan n'est pas terminé.
  • Une fois le scan achevé, un rapport va s'afficher: poste son contenu.
  • Si le fichier ne s'ouvre pas, il se trouve ici > C:\ComboFix.txt

 

Télécharger Malwarebytes' Anti-Malware depuis http://www.besttechie.net/tools/mbam-setup.exe

Enregistrer ce fichier sur le Bureau.

Faire un double clic sur mbam-setup.exe pour lancer l'installation (Accepter le contrat de licence, puis valider les options par défaut).

Sur le dernier écran de la procédure d'installation, cocher la case située devant "Mettre à jour Malwarebytes' Anti-Malware", puis cliquer sur le bouton "Terminer".

 

Désactiver le module résident de ton antivirus.

Lancer Malwarebytes' Anti-Malware via le Menu Démarrer.

Dans l'onglet Paramètres, vérifier que toutes les cases sont cochées sauf "Créer une option dans le menu contextuel pour analyser des fichiers (clic droit)".

Dans l'onglet Recherche, cocher le bouton radio situé devant "Exécuter un examen complet" puis cliquer sur le bouton Rechercher.

Attendre sans rien faire d'autre la fin de la recherche, puis cliquer sur le bouton "Afficher les résultats".

Vérifier que toutes les lignes sont cochées.

Cliquer sur le bouton "Supprimer la sélection"

Attendre patiemment sans rien faire d'autre la fin du nettoyage.

Un redémarrage est parfois nécessaire. Accepter.

Une fenêtre du Bloc-notes s'ouvre pour afficher le rapport. Fermer le Bloc-notes.

Cliquer sur le bouton "Quitter" pour fermer Malwarebytes' Anti-Malware.

 

Poste le log de Malwarebytes' Anti-Malware (contenu du fichier mbam-log-*-**-**** (**-**-**).txt situé dans le dossier d'installation de Malwarebytes' Anti-Malware / *-**-**** (**-**-**) représente la date [mois-jour-année] et l'heure [hh-mn-ss])

 

Télécharge SDFix(créé par AndyManchesta) et sauvegarde le sur ton Bureau.

***Si le lien ne fonctionne pas, essaie celui-ci : http://download.bleepingcomputer.com/andymanchesta/SDFix.exe ***

 

Double clique sur SDFix.exe et choisis Install pour l'extraire dans un dossier dédié sur le Bureau. Redémarre ton ordinateur en mode sans échec en suivant la procédure que voici :

  • Démarre en mode sans échec
http://cybersecurite.xooit.com/t88-Demarre...s-echec.htm#665
 
Déroule la liste des instructions ci-dessous :
  • Ouvre le dossier SDFix qui vient d'être créé dans le répertoire C:\ et double clique sur RunThis.cmd pour lancer le script.
  • Appuie sur Y pour commencer le processus de nettoyage.
  • Il va supprimer les services et les entrées du Registre de certains trojans trouvés puis te demandera d'appuyer sur une touche pour redémarrer.
  • Appuie sur une touche pour redémarrer le PC.
  • Ton système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
  • Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
  • Appuie sur une touche pour finir l'exécution du script et charger les icônes de ton Bureau.
  • Les icônes du Bureau affichées, le rapport SDFix s'ouvrira à l'écran et s'enregistrera aussi dans le dossier SDFix sous le nom Report.txt.
  • Enfin, copie/colle le contenu du fichier Report.txt dans ta prochaine réponse sur le forum, avec un nouveau log Hijackthis !

 

Si tu as le haut débit télécharge et installe:

 

http://www.microsoft.com/france/windows/xp....xml&rang=6

loukass Member

loukass

Posté(e)
  • Auteur
Posté(e)
Re,

 

1/ Ouvre le Bloc-notes ( Menu Démarrer\Tous les programmes\Accessoires\Bloc-notes)

 

2/ Copie ce qui est en citation ci-dessous (sans le mot citation) par sélection puis Ctrl-C :

 

 

 

-Enregistre ce fichier dans: Bureau

-Nom du fichier : CFScript

-Type du fichier : tous les fichiers

-clique sur Enregistrer

-quitte le Bloc Notes

 

 

[*]Fait un glisser/déposer de ce fichier CFScript sur le fichier ComboFix.exe comme sur la capture

 

CFScript.gif

  • Une fenêtre bleue va apparaître: au message qui apparaît ( Type 1 to continue, or 2 to abort), tape 1 puis valide.
  • Patiente le temps du scan.Le bureau va disparaître à plusieurs reprises: c'est normal!
    Ne touche à rien tant que le scan n'est pas terminé.
  • Une fois le scan achevé, un rapport va s'afficher: poste son contenu.
  • Si le fichier ne s'ouvre pas, il se trouve ici > C:\ComboFix.txt

 

Télécharger Malwarebytes' Anti-Malware depuis http://www.besttechie.net/tools/mbam-setup.exe

Enregistrer ce fichier sur le Bureau.

Faire un double clic sur mbam-setup.exe pour lancer l'installation (Accepter le contrat de licence, puis valider les options par défaut).

Sur le dernier écran de la procédure d'installation, cocher la case située devant "Mettre à jour Malwarebytes' Anti-Malware", puis cliquer sur le bouton "Terminer".

 

Désactiver le module résident de ton antivirus.

Lancer Malwarebytes' Anti-Malware via le Menu Démarrer.

Dans l'onglet Paramètres, vérifier que toutes les cases sont cochées sauf "Créer une option dans le menu contextuel pour analyser des fichiers (clic droit)".

Dans l'onglet Recherche, cocher le bouton radio situé devant "Exécuter un examen complet" puis cliquer sur le bouton Rechercher.

Attendre sans rien faire d'autre la fin de la recherche, puis cliquer sur le bouton "Afficher les résultats".

Vérifier que toutes les lignes sont cochées.

Cliquer sur le bouton "Supprimer la sélection"

Attendre patiemment sans rien faire d'autre la fin du nettoyage.

Un redémarrage est parfois nécessaire. Accepter.

Une fenêtre du Bloc-notes s'ouvre pour afficher le rapport. Fermer le Bloc-notes.

Cliquer sur le bouton "Quitter" pour fermer Malwarebytes' Anti-Malware.

 

Poste le log de Malwarebytes' Anti-Malware (contenu du fichier mbam-log-*-**-**** (**-**-**).txt situé dans le dossier d'installation de Malwarebytes' Anti-Malware / *-**-**** (**-**-**) représente la date [mois-jour-année] et l'heure [hh-mn-ss])

 

Télécharge SDFix(créé par AndyManchesta) et sauvegarde le sur ton Bureau.

***Si le lien ne fonctionne pas, essaie celui-ci : http://download.bleepingcomputer.com/andymanchesta/SDFix.exe ***

 

Double clique sur SDFix.exe et choisis Install pour l'extraire dans un dossier dédié sur le Bureau. Redémarre ton ordinateur en mode sans échec en suivant la procédure que voici :

  • Démarre en mode sans échec
http://cybersecurite.xooit.com/t88-Demarre...s-echec.htm#665
 
Déroule la liste des instructions ci-dessous :
  • Ouvre le dossier SDFix qui vient d'être créé dans le répertoire C:\ et double clique sur RunThis.cmd pour lancer le script.
  • Appuie sur Y pour commencer le processus de nettoyage.
  • Il va supprimer les services et les entrées du Registre de certains trojans trouvés puis te demandera d'appuyer sur une touche pour redémarrer.
  • Appuie sur une touche pour redémarrer le PC.
  • Ton système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
  • Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
  • Appuie sur une touche pour finir l'exécution du script et charger les icônes de ton Bureau.
  • Les icônes du Bureau affichées, le rapport SDFix s'ouvrira à l'écran et s'enregistrera aussi dans le dossier SDFix sous le nom Report.txt.
  • Enfin, copie/colle le contenu du fichier Report.txt dans ta prochaine réponse sur le forum, avec un nouveau log Hijackthis !

 

Si tu as le haut débit télécharge et installe:

 

http://www.microsoft.com/france/windows/xp....xml&rang=6

Ok donc pour commencer mon rapport combofix:

ComboFix 08-05-12.1 - lucas 2008-05-17 15:42:46.4 - NTFSx86

Microsoft Windows XP Professionnel 5.1.2600.0.1252.1.1036.18.300 [GMT 2:00]

Endroit: C:\Documents and Settings\lucas\Bureau\ComboFix.exe

Command switches used :: C:\Documents and Settings\lucas\Bureau\CFScript.txt

* Création d'un nouveau point de restauration

 

FILE ::

C:\adware.exe

C:\WINDOWS\system32\atvzqodj.exe

C:\WINDOWS\system32\bbat.exe

C:\WINDOWS\system32\bbtpmnmt.exe

C:\WINDOWS\system32\bhhyllwg.exe

C:\WINDOWS\system32\brxg.exe

C:\WINDOWS\system32\byod.exe

C:\WINDOWS\system32\cbXNGyVn.dll

C:\WINDOWS\system32\cbXRJARh.dll

C:\WINDOWS\system32\cdqu.exe

C:\WINDOWS\system32\cgormew.exe

C:\WINDOWS\system32\cnjia.exe

C:\WINDOWS\system32\djtftd.exe

C:\WINDOWS\system32\douvli.exe

C:\WINDOWS\system32\duqtuk.exe

C:\WINDOWS\system32\dwcymwxk.exe

C:\WINDOWS\system32\dwlmmub.exe

C:\WINDOWS\system32\dyuh.exe

C:\WINDOWS\system32\dzkvuvky.exe

C:\WINDOWS\system32\eahtiab.exe

C:\WINDOWS\system32\ebmdgzl.exe

C:\WINDOWS\system32\ecbwillt.exe

C:\WINDOWS\system32\emkujfs.exe

C:\WINDOWS\system32\emll.exe

C:\WINDOWS\system32\eqvd.exe

C:\WINDOWS\system32\fgmrydsn.exe

C:\WINDOWS\system32\fmtgd.exe

C:\WINDOWS\system32\fsfbwch.exe

C:\WINDOWS\system32\fsjxffi.exe

C:\WINDOWS\system32\fuidocm.exe

C:\WINDOWS\system32\fwcrz.exe

C:\WINDOWS\system32\fzsz.exe

C:\WINDOWS\system32\gfqktjz.exe

C:\WINDOWS\system32\gmtvnmws.dll

C:\WINDOWS\system32\gqtpb.exe

C:\WINDOWS\system32\haqne.exe

C:\WINDOWS\system32\hhskjhd.exe

C:\WINDOWS\system32\hotjtmqg.ini

C:\WINDOWS\system32\iiqqasvw.dll

C:\WINDOWS\system32\jbqsstho.exe

C:\WINDOWS\system32\jfewrlqs.ini

C:\WINDOWS\system32\jfxpqctk.exe

C:\WINDOWS\system32\jkkJdAst.dll

C:\WINDOWS\system32\jkkJyARk.dll

C:\WINDOWS\system32\jopfoxti.exe

C:\WINDOWS\system32\jpvj.exe

C:\WINDOWS\system32\jsrejeik.exe

C:\WINDOWS\system32\juundt.exe

C:\WINDOWS\system32\ksst.exe

C:\WINDOWS\system32\kusnd.exe

C:\WINDOWS\system32\letagyrc.exe

C:\WINDOWS\system32\lfusufla.exe

C:\WINDOWS\system32\ljJCspqO.dll

C:\WINDOWS\system32\lkte.exe

C:\WINDOWS\system32\lsihib.exe

C:\WINDOWS\system32\lwhnw.exe

C:\WINDOWS\system32\lzfmrtgf.exe

C:\WINDOWS\system32\lzjmx.exe

C:\WINDOWS\system32\mjzayy.exe

C:\WINDOWS\system32\mmaivk.exe

C:\WINDOWS\system32\mqlh.exe

C:\WINDOWS\system32\msmnger.exe

C:\WINDOWS\system32\nbyc.exe

C:\WINDOWS\system32\nnnnOfdE.dll

C:\WINDOWS\system32\nyuawsqp.exe

C:\WINDOWS\system32\oalw.exe

C:\WINDOWS\system32\oayhapkm.dll

C:\WINDOWS\system32\opnopNfF.dll

C:\WINDOWS\system32\pgoqkiwa.dll

C:\WINDOWS\system32\pjqlfseh.exe

C:\WINDOWS\system32\plpewra.exe

C:\WINDOWS\system32\pmnkLDts.dll

C:\WINDOWS\system32\pmqvdbmm.exe

C:\WINDOWS\system32\pqozit.exe

C:\WINDOWS\system32\pyhqmo.exe

C:\WINDOWS\system32\qccnmup.exe

C:\WINDOWS\system32\qgtsldb.exe

C:\WINDOWS\system32\qhbmfopj.dll

C:\WINDOWS\system32\qoMggdAp.dll

C:\WINDOWS\system32\qxdrj.exe

C:\WINDOWS\system32\rccsohmg.exe

C:\WINDOWS\system32\rnarc.exe

C:\WINDOWS\system32\rngli.exe

C:\WINDOWS\system32\rqRJBUlK.dll

C:\WINDOWS\system32\sdmsox.exe

C:\WINDOWS\system32\simley.exe

C:\WINDOWS\system32\sqlrwefj.dll

C:\WINDOWS\system32\ssqRLEWq.dll

C:\WINDOWS\system32\svoykmry.exe

C:\WINDOWS\system32\tifchkzp.exe

C:\WINDOWS\system32\tjmepnuz.exe

C:\WINDOWS\system32\tsqhfh.exe

C:\WINDOWS\system32\tuvTlkiH.dll

C:\WINDOWS\system32\tuvUOIBq.dll

C:\WINDOWS\system32\tyqai.exe

C:\WINDOWS\system32\uaooyr.exe

C:\WINDOWS\system32\ungm.exe

C:\WINDOWS\system32\uqnf.exe

C:\WINDOWS\system32\uvgszj.exe

C:\WINDOWS\system32\vkilru.exe

C:\WINDOWS\system32\vrfovxq.exe

c:\WINDOWS\System32\vtsqqomm.dll

C:\WINDOWS\system32\vtUkkkKa.dll

C:\WINDOWS\system32\vtUlKEXP.dll

C:\WINDOWS\system32\vtUnomkL.dll

C:\WINDOWS\system32\vtUnonmj.dll

C:\WINDOWS\system32\vwiheev.exe

C:\WINDOWS\system32\wdykss.exe

C:\WINDOWS\System32\ws2_32.exe

C:\WINDOWS\system32\wwtamll.exe

C:\WINDOWS\system32\xcckrc.exe

C:\WINDOWS\system32\xlyczjo.exe

C:\WINDOWS\system32\xxyywxur.dll

C:\WINDOWS\system32\ydkpgf.exe

C:\WINDOWS\system32\yffcuz.exe

C:\WINDOWS\system32\yqbuspmp.dll

C:\WINDOWS\system32\ytjon.exe

C:\WINDOWS\system32\yudymt.exe

C:\WINDOWS\system32\zbys.exe

C:\WINDOWS\system32\zwncojn.exe

C:\WINDOWS\system32\zxqqdw.exe

.

 

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))

.

 

C:\WINDOWS\pskt.ini

C:\WINDOWS\system32\35415.exe

C:\WINDOWS\system32\36018.exe

C:\WINDOWS\system32\EdfOnnnn.ini

C:\WINDOWS\system32\EdfOnnnn.ini2

C:\WINDOWS\system32\mnfrxxry.ini

C:\WINDOWS\system32\nnnnOfdE.dll

C:\WINDOWS\system32\splbjybt.ini

.

---- Previous Run -------

.

C:\adware.exe

C:\WINDOWS\cookies.ini

C:\WINDOWS\pskt.ini

C:\WINDOWS\system32\atvzqodj.exe

C:\WINDOWS\system32\bbtpmnmt.exe

C:\WINDOWS\system32\bhhyllwg.exe

C:\WINDOWS\system32\brxg.exe

C:\WINDOWS\system32\byod.exe

C:\WINDOWS\system32\cbXNGyVn.dll

C:\WINDOWS\system32\cbXRJARh.dll

C:\WINDOWS\system32\cdqu.exe

C:\WINDOWS\system32\cgormew.exe

C:\WINDOWS\system32\cnjia.exe

C:\WINDOWS\system32\douvli.exe

C:\WINDOWS\system32\dwcymwxk.exe

C:\WINDOWS\system32\dwlmmub.exe

C:\WINDOWS\system32\dyuh.exe

C:\WINDOWS\system32\ebmdgzl.exe

C:\WINDOWS\system32\emkujfs.exe

C:\WINDOWS\system32\emll.exe

C:\WINDOWS\system32\eqvd.exe

C:\WINDOWS\system32\fgmrydsn.exe

C:\WINDOWS\system32\firewall.exe

C:\WINDOWS\system32\fsjxffi.exe

C:\WINDOWS\system32\fuidocm.exe

C:\WINDOWS\system32\fwcrz.exe

C:\WINDOWS\system32\gfqktjz.exe

C:\WINDOWS\system32\gmtvnmws.dll

C:\WINDOWS\system32\haqne.exe

C:\WINDOWS\system32\hotjtmqg.ini

C:\WINDOWS\system32\iiqqasvw.dll

C:\WINDOWS\system32\jbqsstho.exe

C:\WINDOWS\system32\jfewrlqs.ini

C:\WINDOWS\system32\jfxpqctk.exe

C:\WINDOWS\system32\jkkJdAst.dll

C:\WINDOWS\system32\jkkJyARk.dll

C:\WINDOWS\system32\jopfoxti.exe

C:\WINDOWS\system32\jsrejeik.exe

C:\WINDOWS\system32\kusnd.exe

C:\WINDOWS\system32\letagyrc.exe

C:\WINDOWS\system32\ljJCspqO.dll

C:\WINDOWS\system32\lkte.exe

C:\WINDOWS\system32\logon.exe

C:\WINDOWS\system32\lsihib.exe

C:\WINDOWS\system32\lwhnw.exe

C:\WINDOWS\system32\lzfmrtgf.exe

C:\WINDOWS\system32\lzjmx.exe

C:\WINDOWS\system32\mcrh.tmp

C:\WINDOWS\system32\mjzayy.exe

C:\WINDOWS\system32\mmaivk.exe

C:\WINDOWS\system32\mqlh.exe

C:\WINDOWS\system32\msmnger.exe

C:\WINDOWS\system32\nbyc.exe

C:\WINDOWS\system32\nyuawsqp.exe

C:\WINDOWS\system32\oalw.exe

C:\WINDOWS\system32\oayhapkm.dll

C:\WINDOWS\system32\opnopNfF.dll

C:\WINDOWS\system32\pgoqkiwa.dll

C:\WINDOWS\system32\plpewra.exe

C:\WINDOWS\system32\pmnkLDts.dll

C:\WINDOWS\system32\pmqvdbmm.exe

C:\WINDOWS\system32\pqozit.exe

C:\WINDOWS\system32\pyhqmo.exe

C:\WINDOWS\system32\qccnmup.exe

C:\WINDOWS\system32\qgtsldb.exe

C:\WINDOWS\system32\qhbmfopj.dll

C:\WINDOWS\system32\qoMggdAp.dll

C:\WINDOWS\system32\qxdrj.exe

C:\WINDOWS\system32\rccsohmg.exe

C:\WINDOWS\system32\rnarc.exe

C:\WINDOWS\system32\rngli.exe

C:\WINDOWS\system32\rqRJBUlK.dll

C:\WINDOWS\system32\sdmsox.exe

C:\WINDOWS\system32\ssqRLEWq.dll

C:\WINDOWS\system32\tifchkzp.exe

C:\WINDOWS\system32\tjmepnuz.exe

C:\WINDOWS\system32\tsqhfh.exe

C:\WINDOWS\system32\tuvTlkiH.dll

C:\WINDOWS\system32\tuvUOIBq.dll

C:\WINDOWS\system32\tyqai.exe

C:\WINDOWS\system32\uaooyr.exe

C:\WINDOWS\system32\ungm.exe

C:\WINDOWS\system32\uqnf.exe

C:\WINDOWS\system32\uvgszj.exe

C:\WINDOWS\system32\vkilru.exe

C:\WINDOWS\system32\vtUkkkKa.dll

C:\WINDOWS\system32\vtUlKEXP.dll

C:\WINDOWS\system32\vtUnomkL.dll

C:\WINDOWS\system32\vtUnonmj.dll

C:\WINDOWS\system32\vwiheev.exe

C:\WINDOWS\system32\wdykss.exe

C:\WINDOWS\System32\ws2_32.exe

C:\WINDOWS\system32\wwtamll.exe

C:\WINDOWS\system32\xlyczjo.exe

C:\WINDOWS\system32\xxyywxur.dll

C:\WINDOWS\system32\ydkpgf.exe

C:\WINDOWS\system32\yqbuspmp.dll

C:\WINDOWS\system32\ytjon.exe

C:\WINDOWS\system32\yudymt.exe

C:\WINDOWS\system32\zwncojn.exe

C:\WINDOWS\system32\zxqqdw.exe

 

.

((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))

.

 

-------\Legacy_WS2_32

-------\Service_ws2_32

 

 

((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-04-17 to 2008-05-17 ))))))))))))))))))))))))))))))))))))

.

 

2008-05-17 15:39 . 2008-05-17 15:40 149,504 -r-hs---- C:\WINDOWS\system32\ssms.exe

2008-05-17 15:32 . 2008-05-17 15:32 37,888 --a------ C:\WINDOWS\system32\ac6f.exe

2008-05-17 15:32 . 2008-05-17 15:32 0 --a------ C:\WINDOWS\system32\d654.exe

2008-05-17 15:32 . 2008-05-17 15:32 0 --a------ C:\WINDOWS\system32\cf40.exe

2008-05-17 15:32 . 2008-05-17 15:32 0 --a------ C:\WINDOWS\system32\b9a8.exe

2008-05-17 15:31 . 2008-05-17 15:31 102,400 --a------ C:\WINDOWS\system32\vjltud.exe

2008-05-17 15:31 . 2008-05-17 15:31 35,840 --a------ C:\WINDOWS\system32\vxdyocf.exe

2008-05-17 15:31 . 2008-05-17 15:31 32,768 --a------ C:\WINDOWS\system32\jstmc.exe

2008-05-17 15:31 . 2008-05-17 15:31 18,944 --a------ C:\WINDOWS\system32\xcmhlvh.exe

2008-05-17 15:31 . 2008-05-17 15:31 1,635 --a------ C:\WINDOWS\system32\hpvuyjd.exe

2008-05-17 15:31 . 2008-05-17 15:31 1,635 --a------ C:\WINDOWS\system32\fmcn.exe

2008-05-17 15:29 . 2008-05-17 15:29 37,888 --a------ C:\WINDOWS\system32\16cf91.exe

2008-05-17 15:29 . 2008-05-17 15:29 0 --a------ C:\WINDOWS\system32\16eafd.exe

2008-05-17 15:29 . 2008-05-17 15:29 0 --a------ C:\WINDOWS\system32\16e38e.exe

2008-05-17 15:29 . 2008-05-17 15:29 0 --a------ C:\WINDOWS\system32\16da49.exe

2008-05-17 15:26 . 2008-05-17 15:26 55,808 --a------ C:\WINDOWS\system32\llidsxkn.exe

2008-05-17 15:25 . 2008-05-17 15:27 4,608 --ah----- C:\WINDOWS\system32\hfzmv.exe

2008-05-17 15:20 . 2008-05-17 15:20 491,520 --a------ C:\wingptd.exe

2008-05-17 15:16 . 2008-05-17 15:16 104,960 -r-hsc--- C:\WINDOWS\system32\dllcache\mswords.exe

2008-05-17 15:15 . 2008-05-17 15:15 84 --a------ C:\WINDOWS\system32\c.bat

2008-05-17 15:15 . 2008-05-17 15:15 67 --a------ C:\WINDOWS\system32\.pif

2008-05-17 15:11 . 2008-05-17 15:11 134,208 --a------ C:\WINDOWS\system32\saeryqfu.dll

2008-05-17 15:10 . 2008-05-17 15:10 52,979 --a------ C:\WINDOWS\system32\lzlf.exe

2008-05-17 15:08 . 2008-05-17 15:08 134,208 --a------ C:\WINDOWS\system32\ibcvjbtf.dll

2008-05-17 15:08 . 2008-05-17 15:08 116,288 --a------ C:\WINDOWS\system32\tbyjblps.dll

2008-05-17 15:08 . 2008-05-17 15:08 0 --a------ C:\WINDOWS\system32\371e4.exe

2008-05-17 15:08 . 2008-05-17 15:08 0 --a------ C:\WINDOWS\system32\36a89.exe

2008-05-17 15:06 . 2008-05-17 15:06 126,016 --a------ C:\WINDOWS\system32\ywxkmctp.dll

2008-05-17 15:06 . 2008-05-17 15:06 11,584 --a------ C:\WINDOWS\system32\hdxdibvn.exe

2008-05-17 15:05 . 2008-05-17 15:05 57,344 --a------ C:\WINDOWS\system32\khfCrPiG.dll

2008-05-17 15:05 . 2008-05-17 15:05 46,080 --a------ C:\WINDOWS\system32\pjsgnyfz.exe

2008-05-17 15:05 . 2008-05-17 15:05 26,112 --a------ C:\WINDOWS\system32\dske.exe

2008-05-17 15:05 . 2008-05-17 15:05 23,040 --a------ C:\WINDOWS\system32\wbhq.exe

2008-05-17 15:05 . 2008-05-17 15:05 9,216 --a------ C:\WINDOWS\system32\brrqss.exe

2008-05-17 15:05 . 2008-05-17 15:05 1,635 --a------ C:\WINDOWS\system32\ukadogu.exe

2008-05-17 15:05 . 2008-05-17 15:05 1,635 --a------ C:\WINDOWS\system32\skemf.exe

2008-05-17 15:04 . 2008-05-17 15:04 23,552 --a------ C:\WINDOWS\system32\wmimgr32.dll

2008-05-16 17:58 . 2008-05-16 17:58 102,400 --a------ C:\WINDOWS\system32\erlxsw.exe

2008-05-16 17:58 . 2008-05-16 17:58 46,080 --a------ C:\WINDOWS\system32\zmturno.exe

2008-05-16 17:58 . 2008-05-16 17:58 32,768 --a------ C:\WINDOWS\system32\olykuq.exe

2008-05-16 17:58 . 2008-05-16 17:58 26,112 --a------ C:\WINDOWS\system32\nmqucv.exe

2008-05-16 17:58 . 2008-05-16 17:58 1,635 --a------ C:\WINDOWS\system32\sgis.exe

2008-05-16 17:58 . 2008-05-16 17:58 1,635 --a------ C:\WINDOWS\system32\dagw.exe

2008-05-16 17:55 . 2008-05-16 17:55 52,979 --a------ C:\WINDOWS\system32\omdzw.exe

2008-05-16 17:53 . 2008-05-16 17:53 57,344 --a------ C:\WINDOWS\system32\rqRJApmn.dll

2008-05-16 17:53 . 2008-05-16 17:53 46,080 --a------ C:\WINDOWS\system32\vunfm.exe

2008-05-16 17:53 . 2008-05-16 17:53 32,768 --a------ C:\WINDOWS\system32\idtubyyh.exe

2008-05-16 17:53 . 2008-05-16 17:53 26,112 --a------ C:\WINDOWS\system32\ifny.exe

2008-05-16 17:53 . 2008-05-16 17:53 1,635 --a------ C:\WINDOWS\system32\jqda.exe

2008-05-16 17:53 . 2008-05-16 17:53 1,635 --a------ C:\WINDOWS\system32\imot.exe

2008-05-16 17:50 . 2008-05-16 17:50 401,408 -r-hsc--- C:\WINDOWS\system32\dllcache\wintcps.exe

2008-05-16 17:50 . 2008-05-17 15:39 60 --a------ C:\WINDOWS\system32\i

2008-05-16 17:47 . 2008-05-16 17:47 503,808 -r-hsc--- C:\WINDOWS\system32\dllcache\wingptd.exe

2008-05-16 17:43 . 2008-05-16 17:43 102,400 --a------ C:\WINDOWS\system32\lbxux.exe

2008-05-16 17:43 . 2008-05-16 17:43 55,808 --a------ C:\WINDOWS\system32\usggnf.exe

2008-05-16 17:43 . 2008-05-16 17:43 35,840 --a------ C:\WINDOWS\system32\gjmcozr.exe

2008-05-16 17:43 . 2008-05-16 17:43 32,768 --a------ C:\WINDOWS\system32\vvurq.exe

2008-05-16 17:43 . 2008-05-16 17:43 1,635 --a------ C:\WINDOWS\system32\zmxrwqb.exe

2008-05-16 17:43 . 2008-05-16 17:43 1,635 --a------ C:\WINDOWS\system32\rdtmcw.exe

2008-05-16 17:40 . 2008-05-16 17:40 52,979 --a------ C:\WINDOWS\system32\ihaasg.exe

2008-05-16 17:36 . 2008-05-16 17:41 27,648 --ah----- C:\WINDOWS\system32\jquvbqnw.exe

2008-05-16 17:34 . 2008-05-16 17:34 55,808 --a------ C:\WINDOWS\system32\arpxbf.exe

2008-05-16 17:25 . 2008-05-16 17:25 59,904 --a------ C:\WINDOWS\system32\pygc.exe

2008-05-16 17:22 . 2008-05-16 17:22 57,344 --a------ C:\WINDOWS\system32\vtUopMGw.dll

2008-05-16 17:22 . 2008-05-16 17:22 26,112 --a------ C:\WINDOWS\system32\vlssmsop.exe

2008-05-16 17:22 . 2008-05-16 17:22 23,040 --a------ C:\WINDOWS\system32\qpow.exe

2008-05-16 17:22 . 2008-05-16 17:22 1,635 --a------ C:\WINDOWS\system32\qwlzzrk.exe

2008-05-16 17:22 . 2008-05-16 17:22 1,635 --a------ C:\WINDOWS\system32\eqnryzh.exe

2008-05-16 17:17 . 2008-05-16 17:17 102,400 --a------ C:\WINDOWS\system32\gcypfpbs.exe

2008-05-16 17:17 . 2008-05-16 17:17 35,840 --a------ C:\WINDOWS\system32\ukfeuwfy.exe

2008-05-16 17:17 . 2008-05-16 17:17 32,768 --a------ C:\WINDOWS\system32\zmnh.exe

2008-05-16 17:17 . 2008-05-16 17:17 1,635 --a------ C:\WINDOWS\system32\tevilf.exe

2008-05-16 17:17 . 2008-05-16 17:17 1,635 --a------ C:\WINDOWS\system32\fsvyvb.exe

2008-05-16 16:57 . 2008-05-16 16:58 32,768 --a------ C:\WINDOWS\system32\gzq.exe

2008-05-16 16:55 . 2008-05-16 16:55 115,200 -r-hsc--- C:\WINDOWS\system32\dllcache\sxch0st.exe

2008-05-16 16:49 . 2008-05-16 16:49 57,344 --a------ C:\WINDOWS\system32\ddcBRklK.dll

2008-05-16 16:49 . 2008-05-16 16:49 32,768 --a------ C:\WINDOWS\system32\ugmmzxbz.exe

2008-05-16 16:49 . 2008-05-16 16:49 26,112 --a------ C:\WINDOWS\system32\xcbi.exe

2008-05-16 16:49 . 2008-05-16 16:49 1,635 --a------ C:\WINDOWS\system32\zgpw.exe

2008-05-16 16:49 . 2008-05-16 16:49 1,635 --a------ C:\WINDOWS\system32\pnxewdo.exe

2008-05-16 16:47 . 2008-05-16 16:47 <REP> d-------- C:\Program Files\Avira

2008-05-16 16:46 . 2008-05-17 15:45 56,368 d-------- C:\WINDOWS\system32\.

2008-05-16 16:34 . 2008-05-16 16:47 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Avira

2008-05-16 16:17 . 2008-05-16 16:17 1,024 --ah----- C:\WINDOWS\system32\config\systemprofile\NtUser.dat.LOG

2008-05-16 16:14 . 2008-05-16 16:14 57,344 --a------ C:\WINDOWS\system32\wvUoOGxX.dll

2008-05-16 16:14 . 2008-05-16 16:14 26,112 --a------ C:\WINDOWS\system32\afbsahfp.exe

2008-05-16 16:14 . 2008-05-16 16:14 23,040 --a------ C:\WINDOWS\system32\pnmfp.exe

2008-05-16 16:14 . 2008-05-16 16:14 1,635 --a------ C:\WINDOWS\system32\qtvot.exe

2008-05-16 16:14 . 2008-05-16 16:14 1,635 --a------ C:\WINDOWS\system32\ohadods.exe

2008-05-16 16:08 . 2008-05-16 16:10 71,896 --a------ C:\WINDOWS\system32\po.exe

2008-05-16 16:03 . 2008-05-16 16:03 57,344 --a------ C:\WINDOWS\system32\opnkliIB.dll

2008-05-16 16:03 . 2008-05-16 16:03 26,112 --a------ C:\WINDOWS\system32\iwfdhxar.exe

2008-05-16 16:03 . 2008-05-16 16:03 23,040 --a------ C:\WINDOWS\system32\hmihy.exe

2008-05-16 16:03 . 2008-05-16 16:03 1,635 --a------ C:\WINDOWS\system32\mzud.exe

2008-05-16 16:03 . 2008-05-16 16:03 1,635 --a------ C:\WINDOWS\system32\hdcbn.exe

2008-05-16 15:36 . 2008-05-16 15:39 483,328 --a------ C:\WINDOWS\system32\WinTcpips.exe

2008-05-16 15:21 . 2008-05-16 15:21 57,344 --a------ C:\WINDOWS\system32\wvUoLcdE.dll

2008-05-16 15:21 . 2008-05-16 15:21 26,112 --a------ C:\WINDOWS\system32\bofyws.exe

2008-05-16 15:21 . 2008-05-16 15:21 23,040 --a------ C:\WINDOWS\system32\zvdexc.exe

2008-05-16 15:21 . 2008-05-16 15:21 1,635 --a------ C:\WINDOWS\system32\qltcvoeo.exe

2008-05-16 15:21 . 2008-05-16 15:21 1,635 --a------ C:\WINDOWS\system32\kxnqfq.exe

2008-05-16 15:09 . 2008-05-16 15:09 57,344 --a------ C:\WINDOWS\system32\hgGwVPIY.dll

2008-05-16 15:08 . 2008-05-16 15:08 26,112 --a------ C:\WINDOWS\system32\vjboq.exe

2008-05-16 15:08 . 2008-05-16 15:08 23,040 --a------ C:\WINDOWS\system32\xyso.exe

2008-05-16 15:08 . 2008-05-16 15:08 1,635 --a------ C:\WINDOWS\system32\dhwjw.exe

2008-05-16 15:08 . 2008-05-16 15:08 1,635 --a------ C:\WINDOWS\system32\bkdod.exe

2008-05-16 14:38 . 2008-05-16 14:38 11,584 --a------ C:\WINDOWS\system32\tefwyfks.exe

2008-05-16 14:35 . 2008-05-16 14:55 448,000 --a------ C:\WINDOWS\system32\msmsnger.exe

2008-05-16 14:32 . 2008-05-16 14:32 57,344 --a------ C:\WINDOWS\system32\jkkLBtSL.dll

2008-05-16 14:32 . 2008-05-16 14:32 26,112 --a------ C:\WINDOWS\system32\vqnonjy.exe

2008-05-16 14:32 . 2008-05-16 14:32 23,040 --a------ C:\WINDOWS\system32\ndnth.exe

2008-05-16 14:32 . 2008-05-16 14:32 1,635 --a------ C:\WINDOWS\system32\urcym.exe

2008-05-16 14:32 . 2008-05-16 14:32 1,635 --a------ C:\WINDOWS\system32\pjzmmf.exe

2008-05-16 06:31 . 2008-05-16 06:31 126,016 --a------ C:\WINDOWS\system32\hincooob.dll

2008-05-16 06:00 . 2008-05-16 06:00 57,344 --a------ C:\WINDOWS\system32\fcccaaXo.dll

2008-05-16 06:00 . 2008-05-16 06:00 26,112 --a------ C:\WINDOWS\system32\ihqh.exe

2008-05-16 06:00 . 2008-05-16 06:00 23,040 --a------ C:\WINDOWS\system32\labqbxe.exe

2008-05-16 06:00 . 2008-05-16 06:00 1,635 --a------ C:\WINDOWS\system32\uwbqktr.exe

2008-05-16 06:00 . 2008-05-16 06:00 1,635 --a------ C:\WINDOWS\system32\sxzqm.exe

2008-05-16 05:31 . 2008-05-16 05:31 <REP> d-------- C:\Program Files\Trend Micro

2008-05-13 16:44 . 2007-07-30 19:19 549,720 --a------ C:\WINDOWS\system32\wuapi.dll

2008-05-13 16:44 . 2007-07-30 19:19 325,976 --a------ C:\WINDOWS\system32\wucltui.dll

2008-05-13 16:44 . 2007-07-30 19:19 216,408 --a------ C:\WINDOWS\system32\wuaucpl.cpl

2008-05-13 16:44 . 2007-07-30 19:19 43,352 --a------ C:\WINDOWS\system32\wups2.dll

2008-05-13 16:44 . 2007-07-30 19:19 38,232 --a------ C:\WINDOWS\system32\wucltui.dll.mui

 

.

(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))

.

2008-04-21 20:57 33,952 ----a-w C:\WINDOWS\system32\drivers\oreans32.sys

2008-04-21 20:44 --------- d-----w C:\Program Files\microsoft frontpage

2008-04-21 20:42 --------- d-----w C:\Program Files\Services en ligne

.

 

------- Sigcheck -------

 

2004-08-04 08:00 29056 4448006b6bc60e6c027932cfc38d6855 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ip6fw.sys

 

2001-08-28 14:00 1014784 a13db50e5f4ce8b35c721df8d49325b2 C:\WINDOWS\explorer.exe

2004-08-20 01:09 1046016 ad8ac5a73532681a644dbdc4d164f3fc C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\explorer.exe

2001-08-28 14:00 1014784 6c8a0068736b0e2187a4f6d0860af0fa C:\WINDOWS\system32\dllcache\explorer.exe

 

2004-08-20 01:09 25088 4dc3463ec3ed80488aea7cedfbb360c2 C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ctfmon.exe

2001-08-28 14:00 23040 f2732eac7896234eb671bb01c29e9b2c C:\WINDOWS\system32\ctfmon.exe

2001-08-28 14:00 23040 3ee16eb1a623d72a120a5382ed410256 C:\WINDOWS\system32\dllcache\ctfmon.exe

.

((((((((((((((((((((((((((((( snapshot@2008-05-15_18.32.40.96 )))))))))))))))))))))))))))))))))))))))))

.

- 2004-05-17 22:38:25 159,744 -c----w C:\WINDOWS\$NtUninstallKB842773$\spuninst\spuninst.exe

- 2002-10-28 06:37:58 131,072 ------w C:\WINDOWS\alcrmv.exe

+ 2002-10-28 06:37:58 163,840 ------w C:\WINDOWS\alcrmv.exe

- 2002-10-28 06:37:58 208,896 ------w C:\WINDOWS\alcupd.exe

+ 2002-10-28 06:37:58 241,664 ------w C:\WINDOWS\alcupd.exe

- 2008-05-15 15:54:57 2,048 --s-a-w C:\WINDOWS\bootstat.dat

+ 2008-05-17 13:45:17 2,048 --s-a-w C:\WINDOWS\bootstat.dat

- 2005-10-20 18:02:28 163,328 ----a-w C:\WINDOWS\erdnt\Hiv-backup\ERDNT.EXE

+ 2005-10-20 18:02:28 173,056 ----a-w C:\WINDOWS\erdnt\Hiv-backup\ERDNT.EXE

- 2005-10-20 18:02:28 163,328 ----a-w C:\WINDOWS\erdnt\subs\ERDNT.EXE

+ 2005-10-20 18:02:28 173,056 ----a-w C:\WINDOWS\erdnt\subs\ERDNT.EXE

- 2000-08-31 06:00:00 73,728 ----a-w C:\WINDOWS\fdsv.exe

+ 2000-08-31 06:00:00 106,496 ----a-w C:\WINDOWS\fdsv.exe

- 2000-08-31 06:00:00 80,412 ----a-w C:\WINDOWS\grep.exe

+ 2000-08-31 06:00:00 110,592 ----a-w C:\WINDOWS\grep.exe

- 2001-08-28 12:00:00 229,376 ----a-w C:\WINDOWS\inf\unregmp2.exe

+ 2001-08-28 12:00:00 241,664 ----a-w C:\WINDOWS\inf\unregmp2.exe

- 2008-04-21 20:48:42 166,912 ----a-r C:\WINDOWS\Installer\{350C97B8-3D7C-4EE8-BAA9-00BCB3D54227}\places.exe

+ 2008-04-21 20:48:42 196,608 ----a-r C:\WINDOWS\Installer\{350C97B8-3D7C-4EE8-BAA9-00BCB3D54227}\places.exe

- 2000-08-31 06:00:00 28,160 ----a-w C:\WINDOWS\Nircmd.exe

+ 2000-08-31 06:00:00 37,888 ----a-w C:\WINDOWS\Nircmd.exe

- 2001-08-28 12:00:00 67,584 ----a-w C:\WINDOWS\NOTEPAD.EXE

+ 2001-08-28 12:00:00 77,312 ----a-w C:\WINDOWS\NOTEPAD.EXE

- 2003-01-07 15:31:36 1,122,304 ------w C:\WINDOWS\NuNinst.exe

+ 2003-01-07 15:31:36 1,155,072 ------w C:\WINDOWS\NuNinst.exe

- 2001-08-28 12:00:00 140,800 ----a-w C:\WINDOWS\regedit.exe

+ 2001-08-28 12:00:00 150,528 ----a-w C:\WINDOWS\regedit.exe

+ 2001-07-14 15:32:24 69,632 ----a-w C:\WINDOWS\setup.pss\setupupd\temp\wsdueng.dll

- 2000-08-31 06:00:00 161,792 ----a-w C:\WINDOWS\swreg.exe

+ 2000-08-31 06:00:00 171,520 ----a-w C:\WINDOWS\swreg.exe

- 2001-08-28 12:00:00 185,344 ----a-w C:\WINDOWS\system32\accwiz.exe

+ 2001-08-28 12:00:00 195,072 ----a-w C:\WINDOWS\system32\accwiz.exe

- 2001-08-28 12:00:00 11,264 ----a-w C:\WINDOWS\system32\attrib.exe

+ 2001-08-28 12:00:00 20,992 ----a-w C:\WINDOWS\system32\attrib.exe

- 2008-04-29 16:07:36 23,040 ----a-w C:\WINDOWS\system32\bpdatkcv.exe

+ 2008-04-29 16:07:36 32,768 ----a-w C:\WINDOWS\system32\bpdatkcv.exe

- 2001-08-28 12:00:00 388,096 ----a-w C:\WINDOWS\system32\cmd.exe

+ 2001-08-28 12:00:00 397,824 ----a-w C:\WINDOWS\system32\cmd.exe

- 2008-05-15 15:41:02 16,384 ----a-w C:\WINDOWS\system32\config\systemprofile\Cookies\index.dat

+ 2008-05-17 13:45:18 32,768 ----a-w C:\WINDOWS\system32\config\systemprofile\Cookies\index.dat

- 2008-05-15 15:41:02 32,768 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\Historique\History.IE5\index.dat

+ 2008-05-17 13:45:18 32,768 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\Historique\History.IE5\index.dat

+ 2008-05-16 15:47:33 503,808 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\IJ212PAB\84785_winsgh[1].exe

+ 2008-05-17 13:20:44 491,520 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\IJ212PAB\84785_winsgh[2].exe

- 2008-05-15 15:41:02 32,768 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat

+ 2008-05-17 13:45:18 32,768 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat

+ 2008-05-17 13:32:45 104,960 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\O5M5GBIP\84785_redworld[1].exe

+ 2008-05-16 15:50:02 389,120 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\O5M5GBIP\84785_winhtb[1].exe

+ 2008-05-16 14:17:32 262,144 ----a-w C:\WINDOWS\system32\config\systemprofile\NtUser.dat

- 2001-08-28 12:00:00 102,450 ----a-w C:\WINDOWS\system32\cscript.exe

+ 2001-08-28 12:00:00 114,738 ----a-w C:\WINDOWS\system32\cscript.exe

+ 2008-01-21 16:12:56 41,792 ----a-w C:\WINDOWS\system32\drivers\avgntdd.sys

+ 2008-01-21 16:11:28 22,336 ----a-w C:\WINDOWS\system32\drivers\avgntmgr.sys

+ 2008-03-04 11:28:53 79,424 ----a-w C:\WINDOWS\system32\drivers\avipbb.sys

+ 2007-03-01 08:34:22 28,352 ----a-w C:\WINDOWS\system32\drivers\ssmdrv.sys

- 2001-08-28 12:00:00 47,104 ----a-w C:\WINDOWS\system32\drwtsn32.exe

+ 2001-08-28 12:00:00 56,832 ----a-w C:\WINDOWS\system32\drwtsn32.exe

- 2001-08-28 12:00:00 30,208 ----a-w C:\WINDOWS\system32\dumprep.exe

+ 2001-08-28 12:00:00 39,936 ----a-w C:\WINDOWS\system32\dumprep.exe

- 2008-04-27 14:13:39 23,040 ----a-w C:\WINDOWS\system32\epmfnbfe.exe

+ 2008-04-27 14:13:39 32,768 ----a-w C:\WINDOWS\system32\epmfnbfe.exe

- 2001-08-28 12:00:00 14,848 ----a-w C:\WINDOWS\system32\fc.exe

+ 2001-08-28 12:00:00 24,576 ----a-w C:\WINDOWS\system32\fc.exe

- 2001-08-28 12:00:00 9,216 ----a-w C:\WINDOWS\system32\find.exe

+ 2001-08-28 12:00:00 18,944 ----a-w C:\WINDOWS\system32\find.exe

- 2001-08-28 12:00:00 27,136 ----a-w C:\WINDOWS\system32\findstr.exe

+ 2001-08-28 12:00:00 36,864 ----a-w C:\WINDOWS\system32\findstr.exe

- 2001-08-28 12:00:00 44,032 ----a-w C:\WINDOWS\system32\ftp.exe

+ 2001-08-28 12:00:00 53,760 ----a-w C:\WINDOWS\system32\ftp.exe

- 2001-08-28 12:00:00 37,888 ----a-w C:\WINDOWS\system32\grpconv.exe

+ 2001-08-28 12:00:00 47,616 ----a-w C:\WINDOWS\system32\grpconv.exe

- 2001-08-28 12:00:00 118,784 ----a-w C:\WINDOWS\system32\imapi.exe

+ 2001-08-28 12:00:00 128,512 ----a-w C:\WINDOWS\system32\imapi.exe

- 2001-08-28 12:00:00 23,040 ----a-w C:\WINDOWS\system32\ipxroute.exe

+ 2001-08-28 12:00:00 32,768 ----a-w C:\WINDOWS\system32\ipxroute.exe

- 2008-05-02 15:03:54 23,040 ----a-w C:\WINDOWS\system32\lmvbolsz.exe

+ 2008-05-02 15:03:54 32,768 ----a-w C:\WINDOWS\system32\lmvbolsz.exe

- 2001-08-28 12:00:00 505,344 ----a-w C:\WINDOWS\system32\logonui.exe

+ 2001-08-28 12:00:00 515,072 ----a-w C:\WINDOWS\system32\logonui.exe

- 2001-08-28 12:00:00 116,736 ---h--w C:\WINDOWS\system32\lssas.exe

+ 2001-08-28 12:00:00 126,464 ---h--w C:\WINDOWS\system32\lssas.exe

- 2008-05-03 13:30:35 23,040 ----a-w C:\WINDOWS\system32\lxorkyau.exe

+ 2008-05-03 13:30:35 32,768 ----a-w C:\WINDOWS\system32\lxorkyau.exe

- 2008-05-05 15:08:34 2,562 ----a-w C:\WINDOWS\system32\mgpcpflb.exe

+ 2008-05-05 15:08:34 12,290 ----a-w C:\WINDOWS\system32\mgpcpflb.exe

- 2001-08-28 12:00:00 775,168 ----a-w C:\WINDOWS\system32\mmc.exe

+ 2001-08-28 12:00:00 784,896 ----a-w C:\WINDOWS\system32\mmc.exe

- 2001-08-28 12:00:00 128,000 ----a-w C:\WINDOWS\system32\mshearts.exe

+ 2001-08-28 12:00:00 137,728 ----a-w C:\WINDOWS\system32\mshearts.exe

- 2001-08-28 12:00:00 390,144 ----a-w C:\WINDOWS\system32\mstsc.exe

+ 2001-08-28 12:00:00 399,872 ----a-w C:\WINDOWS\system32\mstsc.exe

- 2001-07-09 10:50:42 155,648 ----a-r C:\WINDOWS\system32\NeroCheck.exe

+ 2001-07-09 10:50:42 188,416 ----a-r C:\WINDOWS\system32\NeroCheck.exe

- 2001-08-28 12:00:00 39,424 ----a-w C:\WINDOWS\system32\net.exe

+ 2001-08-28 12:00:00 49,152 ----a-w C:\WINDOWS\system32\net.exe

- 2001-08-28 12:00:00 115,200 ----a-w C:\WINDOWS\system32\net1.exe

+ 2001-08-28 12:00:00 124,928 ----a-w C:\WINDOWS\system32\net1.exe

- 2001-08-28 12:00:00 67,584 ----a-w C:\WINDOWS\system32\notepad.exe

+ 2001-08-28 12:00:00 77,312 ----a-w C:\WINDOWS\system32\notepad.exe

- 2001-08-28 12:00:00 1,166,336 ----a-w C:\WINDOWS\system32\ntbackup.exe

+ 2001-08-28 12:00:00 1,176,064 ----a-w C:\WINDOWS\system32\ntbackup.exe

- 2001-08-28 12:00:00 396,800 ----a-w C:\WINDOWS\system32\ntvdm.exe

+ 2001-08-28 12:00:00 406,528 ----a-w C:\WINDOWS\system32\ntvdm.exe

- 2008-04-21 22:02:58 39,992 ----a-w C:\WINDOWS\system32\perfc009.dat

+ 2008-05-16 02:09:17 39,992 ----a-w C:\WINDOWS\system32\perfc009.dat

- 2008-04-21 22:02:58 48,616 ----a-w C:\WINDOWS\system32\perfc00C.dat

+ 2008-05-16 02:09:17 48,616 ----a-w C:\WINDOWS\system32\perfc00C.dat

- 2008-04-21 22:02:58 311,604 ----a-w C:\WINDOWS\system32\perfh009.dat

+ 2008-05-16 02:09:17 311,604 ----a-w C:\WINDOWS\system32\perfh009.dat

- 2008-04-21 22:02:58 367,658 ----a-w C:\WINDOWS\system32\perfh00C.dat

+ 2008-05-16 02:09:17 367,658 ----a-w C:\WINDOWS\system32\perfh00C.dat

- 2001-08-28 12:00:00 23,040 ----a-w C:\WINDOWS\system32\proxycfg.exe

+ 2001-08-28 12:00:00 32,768 ----a-w C:\WINDOWS\system32\proxycfg.exe

- 2008-04-29 17:10:34 23,040 ----a-w C:\WINDOWS\system32\qppwvlts.exe

+ 2008-04-29 17:10:34 32,768 ----a-w C:\WINDOWS\system32\qppwvlts.exe

- 2001-08-28 12:00:00 370,176 ----a-w C:\WINDOWS\system32\Restore\rstrui.exe

+ 2001-08-28 12:00:00 379,904 ----a-w C:\WINDOWS\system32\Restore\rstrui.exe

- 2001-08-28 12:00:00 21,504 ----a-w C:\WINDOWS\system32\route.exe

+ 2001-08-28 12:00:00 31,232 ----a-w C:\WINDOWS\system32\route.exe

- 2001-08-28 12:00:00 32,256 ----a-w C:\WINDOWS\system32\rundll32.exe

+ 2001-08-28 12:00:00 41,984 ----a-w C:\WINDOWS\system32\rundll32.exe

- 2001-08-28 12:00:00 12,288 ----a-w C:\WINDOWS\system32\runonce.exe

+ 2001-08-28 12:00:00 22,016 ----a-w C:\WINDOWS\system32\runonce.exe

- 2001-08-28 12:00:00 25,088 ----a-w C:\WINDOWS\system32\sort.exe

+ 2001-08-28 12:00:00 34,816 ----a-w C:\WINDOWS\system32\sort.exe

- 2001-08-28 12:00:00 534,528 ----a-w C:\WINDOWS\system32\spider.exe

+ 2001-08-28 12:00:00 544,256 ----a-w C:\WINDOWS\system32\spider.exe

- 2001-08-28 12:00:00 51,200 ----a-w C:\WINDOWS\system32\spoolsv.exe

+ 2001-08-28 12:00:00 60,928 ----a-w C:\WINDOWS\system32\spoolsv.exe

- 2001-08-28 12:00:00 136,192 ----a-w C:\WINDOWS\system32\taskmgr.exe

+ 2001-08-28 12:00:00 145,920 ----a-w C:\WINDOWS\system32\taskmgr.exe

- 2001-08-28 12:00:00 13,312 ----a-w C:\WINDOWS\system32\tcmsetup.exe

+ 2001-08-28 12:00:00 23,040 ----a-w C:\WINDOWS\system32\tcmsetup.exe

- 2001-08-28 12:00:00 17,920 ----a-w C:\WINDOWS\system32\tftp.exe

+ 2001-08-28 12:00:00 27,648 ----a-w C:\WINDOWS\system32\tftp.exe

- 2001-08-28 12:00:00 346,624 ----a-w C:\WINDOWS\system32\tourstart.exe

+ 2001-08-28 12:00:00 356,352 ----a-w C:\WINDOWS\system32\tourstart.exe

- 2001-08-28 12:00:00 37,376 ----a-w C:\WINDOWS\system32\typeperf.exe

+ 2001-08-28 12:00:00 47,104 ----a-w C:\WINDOWS\system32\typeperf.exe

- 2001-08-28 12:00:00 22,016 ----a-w C:\WINDOWS\system32\userinit.exe

+ 2001-08-28 12:00:00 31,744 ----a-w C:\WINDOWS\system32\userinit.exe

- 2001-08-28 12:00:00 237,056 ----a-w C:\WINDOWS\system32\usmt\migwiz.exe

+ 2001-08-28 12:00:00 246,784 ----a-w C:\WINDOWS\system32\usmt\migwiz.exe

- 2008-04-29 16:40:52 23,040 ----a-w C:\WINDOWS\system32\vixwjfqs.exe

+ 2008-04-29 16:40:52 32,768 ----a-w C:\WINDOWS\system32\vixwjfqs.exe

- 2001-08-28 12:00:00 118,834 ----a-w C:\WINDOWS\system32\wscript.exe

+ 2001-08-28 12:00:00 131,122 ----a-w C:\WINDOWS\system32\wscript.exe

- 2008-05-03 13:34:02 23,040 ----a-w C:\WINDOWS\system32\yvynzexd.exe

+ 2008-05-03 13:34:02 32,768 ----a-w C:\WINDOWS\system32\yvynzexd.exe

- 2000-08-31 06:00:00 49,152 ----a-w C:\WINDOWS\VFind.exe

+ 2000-08-31 06:00:00 61,440 ----a-w C:\WINDOWS\VFind.exe

.

-- Snapshot reset to current date --

.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

REGEDIT4

*Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s

 

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{187ea6bf-a41a-412c-93a7-a1ab392cccd6}]

2008-05-17 15:11 134208 --a------ C:\WINDOWS\System32\saeryqfu.dll

 

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F3AE67E7-AC8F-4A58-819E-194EA11FEBC5}]

C:\WINDOWS\System32\vtsqqomm.dll

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="C:\WINDOWS\System32\ctfmon.exe" [2001-08-28 14:00 23040]

"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2001-08-02 07:14 1089565]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Local Security Authority Service"="C:\WINDOWS\System32\lssas.exe" [2001-08-28 14:00 126464]

"Client Server Runtime Process"="C:\WINDOWS\System32\csrs.exe" [ ]

"NeroCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 12:50 188416]

"InCD"="C:\Program Files\Ahead\InCD\InCD.exe" [2003-01-15 19:29 1232896]

"Windows Logon Application"="C:\WINDOWS\System32\logon.exe" [ ]

"avgnt"="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-02-12 10:06 294912]

"Windows Network Firewall"="C:\WINDOWS\System32\firewall.exe" [ ]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices]

"Windows Update"="ssms.exe" [2008-05-17 15:40 149504 C:\WINDOWS\system32\ssms.exe]

 

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2001-08-28 14:00 23040]

 

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"C:\\WINDOWS\\system32\\16cf91.exe"=

"C:\\WINDOWS\\system32\\ac6f.exe"=

 

R0 avgntmgr;avgntmgr;C:\WINDOWS\System32\DRIVERS\avgntmgr.sys [2008-01-21 18:11]

R0 BsStor;InCD Storage Helper Driver;C:\WINDOWS\System32\DRIVERS\bsstor.sys [2002-06-06 01:07]

R1 avgntdd;avgntdd;C:\WINDOWS\System32\DRIVERS\avgntdd.sys [2008-01-21 18:12]

R1 oreans32;oreans32;C:\WINDOWS\system32\drivers\oreans32.sys [2008-04-21 22:57]

R2 Asus Protocol Driver Control;Asus Protocol Driver Control;"C:\WINDOWS\System32\dllcache\wingptd.exe" [2008-05-16 17:47]

R2 BsUDF;InCD UDF Driver;C:\WINDOWS\System32\drivers\BsUDF.sys [2003-01-15 20:02]

R2 Micr0s0ft Agent;Micr0s0ft Agent;"C:\WINDOWS\System32\dllcache\sxch0st.exe" [2008-05-16 16:55]

R2 Microsoft Agent;Microsoft Agent;"C:\WINDOWS\System32\dllcache\mswords.exe" [2008-05-17 15:16]

R2 Microsoft Windows TCP Protocol;Microsoft Windows TCP Protocol;"C:\WINDOWS\System32\dllcache\wintcps.exe" [2008-05-16 17:50]

R3 Cap7134;MEDION (7134) WDM Video Capture;C:\WINDOWS\System32\DRIVERS\Cap7134.sys [2002-07-29 15:14]

R3 PhTVTune;Philips WDM TVTuner;C:\WINDOWS\System32\DRIVERS\PhTVTune.sys [2002-10-23 14:48]

S3 BrScnUsb;Brother USB Still Image driver;C:\WINDOWS\System32\DRIVERS\BrScnUsb.sys [2004-10-15 05:50]

 

 

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{28ABC5C0-4FCB-11CF-AAX5-81CX1C635612}]

c:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\ise32.exe

.

**************************************************************************

 

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2008-05-17 15:45:32

Windows 5.1.2600 NTFS

 

detected NTDLL code modification:

ZwOpenFile

 

Balayage processus cach‚s ...

 

Balayage cach‚ autostart entries ...

 

Balayage des fichiers cach‚s ...

 

 

C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP.NEW 3672 bytes

 

Scan termin‚ avec succŠs

Les fichiers cach‚s: 1

 

**************************************************************************

.

------------------------ Other Running Processes ------------------------

.

C:\WINDOWS\system32\savedump.exe

C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe

.

**************************************************************************

.

Temps d'accomplissement: 2008-05-17 15:46:32 - machine was rebooted [lucas]

ComboFix-quarantined-files.txt 2008-05-17 13:46:28

ComboFix2.txt 2008-05-16 03:25:50

 

Pre-Run: 27,622,715,392 octets libres

Post-Run: 27,677,921,280 octets libres

 

614

je passes à la suite de ta procédure .

merci, à bientot

bruce lee Devil Member !

bruce lee

Posté(e)
Posté(e) (modifié)

Bonjour,

 

Merci de ne pas m'envoyer les rapports par MP mais de les poster sur le forum, dans ton sujet :P

 

SDFix: Version 1.183

Run by lucas on 18/05/2008 at 05:36

 

Microsoft Windows XP [version 5.1.2600]

Running From: C:\DOCUME~1\lucas\Bureau\SDFix

 

Checking Services :

 

Name :

Micr0s0ft Agent

Microsoft Agent

 

Path :

"C:\WINDOWS\System32\dllcache\sxch0st.exe"

"C:\WINDOWS\System32\dllcache\mswords.exe"

 

Micr0s0ft Agent - Deleted

Microsoft Agent - Deleted

 

 

 

Restoring Windows Registry Values

Restoring Windows Default Hosts File

 

Rebooting

 

 

Checking Files :

 

Trojan Files Found:

 

C:\WINDOWS\SYSTEM32\16DA49.EXE - Deleted

C:\WINDOWS\SYSTEM32\16E38E.EXE - Deleted

C:\WINDOWS\SYSTEM32\16EAFD.EXE - Deleted

C:\WINDOWS\SYSTEM32\36A89.EXE - Deleted

C:\WINDOWS\SYSTEM32\371E4.EXE - Deleted

C:\WINDOWS\SYSTEM32\AWSAYLLQ.EXE - Deleted

C:\WINDOWS\SYSTEM32\B9A8.EXE - Deleted

C:\WINDOWS\SYSTEM32\CF40.EXE - Deleted

C:\WINDOWS\SYSTEM32\D654.EXE - Deleted

C:\WINDOWS\SYSTEM32\QJEPVBTZ.EXE - Deleted

C:\WINDOWS\SYSTEM32\ZHXIQVKI.EXE - Deleted

C:\WINDOWS\system32\TFTP1732 - Deleted

C:\WINDOWS\system32\TFTP424 - Deleted

C:\RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\ise32.exe - Deleted

C:\WINDOWS\system32\csrs.exe - Deleted

C:\WINDOWS\system32\dllcache\sxch0st.exe - Deleted

C:\WINDOWS\system32\dllcache\wintcps.exe - Deleted

C:\WINDOWS\system32\i - Deleted

C:\WINDOWS\system32\ssms.exe - Deleted

 

 

 

 

 

Removing Temp Files

 

ADS Check :

 

 

 

Final Check :

 

catchme 0.3.1359.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2008-05-18 05:51:33

Windows 5.1.2600 NTFS

 

detected NTDLL code modification:

ZwOpenFile

 

scanning hidden processes ...

 

scanning hidden services & system hive ...

 

scanning hidden registry entries ...

 

scanning hidden files ...

 

scan completed successfully

hidden processes: 0

hidden services: 0

hidden files: 0

 

 

Remaining Services :

 

 

 

 

Authorized Application Key Export:

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"C:\\WINDOWS\\system32\\16cf91.exe"="C:\\WINDOWS\\system32\\16cf91.exe:*:Enabled:ipsec"

"C:\\WINDOWS\\system32\\ac6f.exe"="C:\\WINDOWS\\system32\\ac6f.exe:*:Enabled:ipsec"

 

Remaining Files :

 

 

 

Files with Hidden Attributes :

 

Fri 16 May 2008 276 A.SHR --- "C:\BOOT.BAK"

Sun 27 Apr 2008 27,928 A..H. --- "C:\WINDOWS\system32\ajwop.exe"

Tue 29 Apr 2008 8,192 A..H. --- "C:\WINDOWS\system32\crji.exe"

Sat 17 May 2008 4,608 A..H. --- "C:\WINDOWS\system32\hfzmv.exe"

Mon 5 May 2008 2,824 A..H. --- "C:\WINDOWS\system32\jgct.exe"

Tue 22 Apr 2008 26,882 A..H. --- "C:\WINDOWS\system32\jmgodrkc.exe"

Fri 16 May 2008 27,648 A..H. --- "C:\WINDOWS\system32\jquvbqnw.exe"

Tue 13 May 2008 8,192 A..H. --- "C:\WINDOWS\system32\qpcdyol.exe"

Tue 13 May 2008 7,820 A..H. --- "C:\WINDOWS\system32\retrzkvj.exe"

Sat 17 May 2008 82,600 A..H. --- "C:\WINDOWS\system32\ujylvz.exe"

Sat 17 May 2008 44,184 A..H. --- "C:\WINDOWS\system32\vqvlxbnu.exe"

Sat 17 May 2008 97,792 A..H. --- "C:\WINDOWS\system32\zalm.exe"

Sat 17 May 2008 104,960 ..SHR --- "C:\WINDOWS\system32\dllcache\mswords.exe"

Fri 16 May 2008 503,808 ..SHR --- "C:\WINDOWS\system32\dllcache\wingptd.exe"

 

Finished!

 

 

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 05:57:11, on 18/05/2008

Platform: Windows XP (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Boot mode: Normal

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\System32\dllcache\wingptd.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Ahead\InCD\InCD.exe

C:\WINDOWS\System32\ctfmon.exe

C:\Program Files\Messenger\msmsgs.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

 

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

O2 - BHO: {7868ad5a-90a5-4ddb-5984-6c9188c83fb0} - {0bf38c88-19c6-4895-bdd4-5a09a5da8687} - C:\WINDOWS\System32\kfylmnii.dll

O2 - BHO: (no name) - {F3AE67E7-AC8F-4A58-819E-194EA11FEBC5} - C:\WINDOWS\System32\vtsqqomm.dll (file missing)

O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx

O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe

O4 - HKLM\..\Run: [inCD] C:\Program Files\Ahead\InCD\InCD.exe

O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min

O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe

O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')

O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe

O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.zebulon.fr/scan8/oscan8.cab

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1210689816508

O23 - Service: Avira AntiVir Personal – Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe

O23 - Service: Avira AntiVir Personal – Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe

O23 - Service: Asus Protocol Driver Control - Unknown owner - C:\WINDOWS\System32\dllcache\wingptd.exe

O23 - Service: Microsoft Windows TCP Protocol - Unknown owner - C:\WINDOWS\System32\dllcache\wintcps.exe (file missing)

 

--

End of file - 3384 bytes

 

 

et voici, des rapports tout frais. D'avance merci!

 

Re,

 

je vois que tu n'as pas fait ceci:

 

Si tu as le haut débit télécharge et installe:

 

http://www.microsoft.com/france/windows/xp....xml&rang=6

 

Pourquoi?

 

Télécharge la dernière version de AVP Tool et enregistre-le sur ton bureau.

Installe-le en double-cliquant sur Setup_7.0.0.xxx.

 

Si ta suite de sécurité rouspète, désactive-là un instant pour installer l'outil de désinfection de Kaspersky.

 

Redémarre le pc en mode sans échec: http://cybersecurite.xooit.com/t88-Demarre...-sans-echec.htm

 

Ouvre le dossier jaune de Kaspersky sur le bureau: double-clic sur le K rouge setup, coche TOUTES les cases puis clique sur Scan.

 

A la fin si des objets sont découverts, clique sur Neutralize all.

 

Clique sur Reports/Save to file --> nomme le fichier texte "Rapport kav" et colle ce rapport dans te réponse.

 

Ferme l'outil, on le désinstallera plus tard selon le rapport, il ne doit pas rester sur le pc car il évolue tous les jours!

 

Après le redémarrage, poste aussi un nouveau rapport ComboFix.

Modifié par bruce lee
loukass Member

loukass

Posté(e)
  • Auteur
Posté(e)

Salut,

je n'ai pas pu executer:http://www.microsoft.com/france/windows/xp....xml&rang=6

car:We’re sorry, but we were unable to service your request. You may wish to choose from the links below for information about Microsoft products and services.

 

Explications: Avant de découvrir Zébulon et donc de faire appel à tes services, j'ai vraiment galéré pour essayé d'arreter cette infection.Par dépit j'ai formater et donc réinstalé XP pro avec une copie (je n'ai plus l'original).

Donc je n'ai plus acces aux updates,j'ai telechargé des patch correctifs SP 1/2 mais ils ne passent pas.

Pourtant avant le formatage je tourné avec la mm instal' XP pro et je n'avait pas ces problèmes.

Maintenant Microsoft me reconnait comme victime d'un logiciel piraté(pas cool).

 

De plus je ne peus toujours pas installer Avira antivir ,je tourne donc sans protectionS, et je limite au max mes connections réseau de crainte de nouveaux virus.(et registrycleaner me poursuit tt les 2mn)

 

Si tu avait des solutions ,STP, ça m'arrangeré un rien

 

en attendant je continue ta procédure. merci à+

loukass Member

loukass

Posté(e)
  • Auteur
Posté(e)

Kaspersky:

à 99% du scan j'ai du choisir "desinfect" pour 3 fichiers et pour les autres proposés je n'avais le choix qu'entre "delete" ou "skip",j'ai choisi "delete" pour tous.

A l'étape "neutralize all" j'ai choisi "desinfect".

J'espères ne pas avoir fait d'erreur (ce n'etait pas dans la procédure).

voici le rapport:

Scan

----

Scanned: 93601

Detected: 1302

Untreated: 0

Start time: 19/05/2008 03:58:04

Duration: 00:40:57

Finish time: 19/05/2008 04:39:01

 

 

Detected

--------

Status Object

------ ------

will be disinfected when the computer is restarted: virus Virus.Win32.Virut.n File: C:\WINDOWS\Explorer.EXE

will be disinfected when the computer is restarted: virus Virus.Win32.Virut.n File: C:\Program Files\Internet Explorer\IEXPLORE.EXE

disinfected: virus Virus.Win32.Virut.n File: c:\windows\system32\mshta.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\notepad.exe

deleted: virus Virus.Win32.Virut.n File: c:\windows\regedit.exe

deleted: virus Virus.Win32.Virut.n File: c:\program files\windows media player\wmplayer.exe

deleted: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\sdbinst.exe

deleted: virus Virus.Win32.Virut.n File: c:\windows\system32\rundll32.exe

deleted: virus Virus.Win32.Virut.n File: c:\program files\outlook express\wab.exe

deleted: virus Virus.Win32.Virut.n File: c:\windows\hh.exe

disinfected: virus Virus.Win32.Virut.n File: c:\windows\system32\clipbrd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\fontview.exe

disinfected: virus Virus.Win32.Sality.l File: c:\program files\windows nt\hypertrm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\mmc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\rasphone.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\perfmon.exe

disinfected: virus Virus.Win32.Virut.n File: c:\program files\windows nt\accessoires\wordpad.exe

disinfected: virus Virus.Win32.Virut.n File: c:\windows\notepad.exe

disinfected: virus Virus.Win32.Virut.n File: c:\program files\ahead\neromediaplayer\neromediaplayer.exe

disinfected: virus Virus.Win32.Virut.n File: c:\windows\system32\drwtsn32.exe

disinfected: virus Virus.Win32.Virut.n File: c:\windows\system32\userinit.exe

disinfected: virus Virus.Win32.Sality.l File: c:\windows\system32\nerocheck.exe

disinfected: virus Virus.Win32.Virut.n File: c:\program files\ahead\incd\incd.exe

disinfected: virus Virus.Win32.Sality.l File: c:\program files\avira\antivir personaledition classic\avgnt.exe

deleted: Trojan program Backdoor.Win32.Rbot.bqj File: c:\windows\system32\host.exe//PolyCrypt

will be disinfected when the computer is restarted: virus Virus.Win32.Virut.n File: c:\documents and settings\all users\bureau\kaspersky lab tool\setup_7.0.0.180_18.05.2008_22-36.exe

disinfected: virus Virus.Win32.Virut.n File: c:\windows\system32\ctfmon.exe

disinfected: virus Virus.Win32.Virut.n File: c:\program files\messenger\msmsgs.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\alg.exe

disinfected: virus Virus.Win32.Virut.n File: c:\program files\avira\antivir personaledition classic\sched.exe

disinfected: virus Virus.Win32.Virut.n File: c:\program files\avira\antivir personaledition classic\avguard.exe

disinfected: virus Virus.Win32.Virut.n File: c:\windows\system32\dllcache\wingptd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\cisvc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\clipsrv.exe

disinfected: virus Virus.Win32.Virut.n File: c:\windows\system32\dllhost.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dmadmin.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\imapi.exe

disinfected: virus Virus.Win32.Virut.n File: c:\windows\system32\mnmsrvc.exe

disinfected: virus Virus.Win32.Virut.n File: c:\windows\system32\msdtc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\msiexec.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\netdde.exe

disinfected: virus Virus.Win32.Virut.n File: c:\windows\system32\sessmgr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\locator.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\rsvp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\scardsvr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\spoolsv.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\smlogsvc.exe

disinfected: virus Virus.Win32.Virut.n File: c:\windows\system32\tlntsvr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ups.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\vssvc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\regsvr32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\outlook express\setup50.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ie4uinit.exe

disinfected: virus Virus.Win32.Virut.n File: c:\windows\system32\progman.exe

disinfected: virus Virus.Win32.Virut.n File: c:\windows\system32\logon.scr

deleted: Trojan program Trojan.Win32.Monder.gen File: c:\windows\system32\kfylmnii.dll

disinfected: virus Virus.Win32.Virut.n File: c:\program files\msn gaming zone\windows\bckgzm.exe

disinfected: virus Virus.Win32.Virut.n File: c:\program files\msn gaming zone\windows\chkrzm.exe

disinfected: virus Virus.Win32.Virut.n File: c:\program files\windows nt\dialer.exe

disinfected: virus Virus.Win32.Virut.n File: c:\windows\pchealth\helpctr\binaries\helpctr.exe

disinfected: virus Virus.Win32.Virut.n File: c:\program files\trend micro\hijackthis\hijackthis.exe

disinfected: virus Virus.Win32.Virut.n File: c:\program files\msn gaming zone\windows\hrtzzm.exe

disinfected: virus Virus.Win32.Virut.n File: c:\program files\internet explorer\connection wizard\icwconn1.exe

disinfected: virus Virus.Win32.Virut.n File: c:\program files\internet explorer\connection wizard\icwconn2.exe

disinfected: virus Virus.Win32.Virut.n File: c:\program files\internet explorer\connection wizard\inetwiz.exe

disinfected: virus Virus.Win32.Virut.n File: c:\program files\internet explorer\connection wizard\isignup.exe

disinfected: virus Virus.Win32.Virut.n File: c:\program files\malwarebytes' anti-malware\mbam.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\usmt\migwiz.exe

disinfected: virus Virus.Win32.Virut.n File: c:\program files\movie maker\moviemk.exe

disinfected: virus Virus.Win32.Virut.n File: c:\program files\windows media player\mplayer2.exe

disinfected: virus Virus.Win32.Virut.n File: c:\windows\pchealth\helpctr\binaries\msconfig.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\outlook express\msimn.exe

disinfected: virus Virus.Win32.Virut.n File: c:\program files\fichiers communs\microsoft shared\msinfo\msinfo32.exe

disinfected: virus Virus.Win32.Sality.l File: c:\program files\msn\msncorefiles\msn6.exe

disinfected: virus Virus.Win32.Virut.n File: c:\program files\ahead\coverdesigner\coverdes.exe

disinfected: virus Virus.Win32.Virut.n File: c:\program files\ahead\nero\nero.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\mspaint.exe

disinfected: virus Virus.Win32.Virut.n File: c:\program files\windows nt\pinball\pinball.exe

disinfected: virus Virus.Win32.Virut.n File: c:\program files\msn gaming zone\windows\rvsezm.exe

disinfected: virus Virus.Win32.Virut.n File: c:\program files\msn gaming zone\windows\shvlzm.exe

disinfected: virus Virus.Win32.Virut.n File: c:\windows\soundman.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\outlook express\wabmig.exe

disinfected: virus Virus.Win32.Virut.n File: c:\windows\system32\ntsd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\bdoscandel.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Adabas\adabas\setup.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Adabas\bin\xtcpupd.exe

disinfected: virus Virus.Win32.Sality.l File: C:\cmdcons\autochk.exe

disinfected: virus Virus.Win32.Sality.l File: C:\cmdcons\autofmt.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\All Users\Bureau\Kaspersky Lab Tool\minst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\All Users\Bureau\Kaspersky Lab Tool\drivers\drvins32.exe

deleted: Trojan program Backdoor.Win32.IRCBot.bwr File: C:\Documents and Settings\lucas\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Quarantine\QUAR1.31882

disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\lucas\Bureau\SDFix\catchme.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\lucas\Bureau\SDFix\apps\cliptext.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\lucas\Bureau\SDFix\apps\download.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\lucas\Bureau\SDFix\apps\ERUNT.EXE

disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\lucas\Bureau\SDFix\apps\FixPath.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\lucas\Bureau\SDFix\apps\grep.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\lucas\Bureau\SDFix\apps\isadmin.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\lucas\Bureau\SDFix\apps\LS.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\lucas\Bureau\SDFix\apps\MD5File.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\lucas\Bureau\SDFix\apps\Process.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\lucas\Bureau\SDFix\apps\procs.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\lucas\Bureau\SDFix\apps\psservice.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\lucas\Bureau\SDFix\apps\RestartIt!.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\lucas\Bureau\SDFix\apps\sc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\lucas\Bureau\SDFix\apps\sed.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\lucas\Bureau\SDFix\apps\SF.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\lucas\Bureau\SDFix\apps\shutdown.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\lucas\Bureau\SDFix\apps\swreg.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\lucas\Bureau\SDFix\apps\swsc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\lucas\Bureau\SDFix\apps\unzip.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\lucas\Bureau\SDFix\apps\vfind.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\lucas\Bureau\SDFix\apps\WINMSG.EXE

disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\lucas\Bureau\SDFix\apps\zip.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\lucas\Bureau\SDFix\apps\Replace\regedit.exe

deleted: Trojan program Trojan.Win32.Qhost.aei File: C:\Documents and Settings\lucas\Bureau\SDFix\backups\HOSTS

deleted: Trojan program Trojan-Downloader.Win32.Homles.bl File: C:\Documents and Settings\lucas\Local Settings\Temporary Internet Files\Content.IE5\S6EMS6BR\17PHolmes[1].cmt//PE_Patch.Upolyx//PE_Patch.UPX//UPX

deleted: adware not-a-virus:AdWare.Win32.Virtumonde.sbz File: C:\Documents and Settings\lucas\Local Settings\Temporary Internet Files\Content.IE5\S6EMS6BR\hctp[1]

deleted: Trojan program Trojan.Win32.Monder.gen File: C:\Documents and Settings\lucas\Local Settings\Temporary Internet Files\Content.IE5\TQ2NGM5B\query[1]

deleted: adware not-a-virus:AdWare.Win32.Virtumonde.sce File: C:\Documents and Settings\lucas\Local Settings\Temporary Internet Files\Content.IE5\WOJEBTOS\iddqd[1]

disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Ahead\Nero\NeroCmd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Ahead\Nero\WaveEditor\WaveEdit.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Ahead\Nero ToolKit\CDSpeed.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Ahead\Nero ToolKit\DriveSpeed.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Ahead\Nero ToolKit\InfoTool.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\avcenter.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\avconfig.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\avnotify.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\avscan.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\guardgui.exe

disinfected: virus Virus.Win32.Sality.l File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\licmgr.exe

disinfected: virus Virus.Win32.Sality.l File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\preupd.exe

disinfected: virus Virus.Win32.Sality.l File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\setup.exe

disinfected: virus Virus.Win32.Sality.l File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\update.exe

disinfected: virus Virus.Win32.Sality.l File: C:\Program Files\AvRack\rtlrack.exe

disinfected: virus Virus.Win32.Sality.l File: C:\Program Files\Fichiers communs\InstallShield\Driver\7\Intel 32\IDriver.exe

disinfected: virus Virus.Win32.Sality.l File: C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe

disinfected: virus Virus.Win32.Sality.l File: C:\Program Files\Fichiers communs\InstallShield\engine\6\Intel 32\IKernel.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Fichiers communs\Microsoft Shared\Speech\sapisvr.exe

disinfected: virus Virus.Win32.Sality.l File: C:\Program Files\InstallShield Installation Information\{FB08F381-6533-4108-B7DD-039E11FBC27E}\Setup.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Internet Explorer\Connection Wizard\icwrmind.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Internet Explorer\Connection Wizard\icwtutor.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Malwarebytes' Anti-Malware\mbamtrayctrl.exe

disinfected: virus Virus.Win32.Sality.l File: C:\Program Files\MSN\MSNCoreFiles\copymar.exe

disinfected: virus Virus.Win32.Sality.l File: C:\Program Files\MSN\MSNCoreFiles\update.exe

disinfected: virus Virus.Win32.Sality.l File: C:\Program Files\MSN\MSNCoreFiles\Setup\msnunin.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\MSN Gaming Zone\Windows\zClientm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\NetMeeting\cb32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\NetMeeting\wb32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Outlook Express\oemig50.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Windows Media Player\dlimport.exe

disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Windows Media Player\setup_wm.exe

deleted: Trojan program Trojan-Downloader.Win32.Agent.iyq File: C:\QooBox\Quarantine\C\WINDOWS\system32\35415.exe.vir

deleted: adware not-a-virus:AdWare.Win32.Virtumonde.rcq File: C:\QooBox\Quarantine\C\WINDOWS\system32\cbXNGyVn.dll.vir

deleted: adware not-a-virus:AdWare.Win32.Virtumonde.rcq File: C:\QooBox\Quarantine\C\WINDOWS\system32\cbXRJARh.dll.vir

deleted: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\cgormew.exe.vir

deleted: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\cnjia.exe.vir

deleted: Trojan program Backdoor.Win32.EggDrop.au File: C:\QooBox\Quarantine\C\WINDOWS\system32\csrs.exe.vir//Execryptor

deleted: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\douvli.exe.vir

deleted: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\dyuh.exe.vir

deleted: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\emll.exe.vir

deleted: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\eqvd.exe.vir

deleted: Trojan program Backdoor.Win32.IRCBot.cit File: C:\QooBox\Quarantine\C\WINDOWS\system32\firewall.exe.vir

deleted: adware not-a-virus:AdWare.Win32.Virtumonde.rsp File: C:\QooBox\Quarantine\C\WINDOWS\system32\gmtvnmws.dll.vir

disinfected: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\haqne.exe.vir

deleted: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\jbqsstho.exe.vir

deleted: adware not-a-virus:AdWare.Win32.Virtumonde.rcq File: C:\QooBox\Quarantine\C\WINDOWS\system32\jkkJdAst.dll.vir

deleted: adware not-a-virus:AdWare.Win32.Virtumonde.rcq File: C:\QooBox\Quarantine\C\WINDOWS\system32\jkkJyARk.dll.vir

disinfected: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\jopfoxti.exe.vir

disinfected: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\jsrejeik.exe.vir

deleted: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\letagyrc.exe.vir

deleted: adware not-a-virus:AdWare.Win32.Virtumonde.rcq File: C:\QooBox\Quarantine\C\WINDOWS\system32\ljJCspqO.dll.vir

deleted: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\lkte.exe.vir

deleted: Trojan program Backdoor.Win32.Agent.apf File: C:\QooBox\Quarantine\C\WINDOWS\system32\logon.exe.vir

disinfected: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\mjzayy.exe.vir

disinfected: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\oalw.exe.vir

deleted: adware not-a-virus:AdWare.Win32.Virtumonde.rcq File: C:\QooBox\Quarantine\C\WINDOWS\system32\opnopNfF.dll.vir

deleted: adware not-a-virus:AdWare.Win32.Virtumonde.rsp File: C:\QooBox\Quarantine\C\WINDOWS\system32\pgoqkiwa.dll.vir

deleted: Trojan program Trojan.Win32.Monder.do File: C:\QooBox\Quarantine\C\WINDOWS\system32\pkpwixxe.dll.vir

deleted: adware not-a-virus:AdWare.Win32.Virtumonde.rcq File: C:\QooBox\Quarantine\C\WINDOWS\system32\pmnkLDts.dll.vir

deleted: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\pmqvdbmm.exe.vir

deleted: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\pqozit.exe.vir

disinfected: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\pyhqmo.exe.vir

disinfected: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\qgtsldb.exe.vir

deleted: adware not-a-virus:AdWare.Win32.Virtumonde.rmi File: C:\QooBox\Quarantine\C\WINDOWS\system32\qhbmfopj.dll.vir

deleted: adware not-a-virus:AdWare.Win32.Virtumonde.rcq File: C:\QooBox\Quarantine\C\WINDOWS\system32\qoMggdAp.dll.vir

deleted: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\qxdrj.exe.vir

deleted: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\rccsohmg.exe.vir

deleted: adware not-a-virus:AdWare.Win32.Virtumonde.rcq File: C:\QooBox\Quarantine\C\WINDOWS\system32\rqRJBUlK.dll.vir

disinfected: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\sdmsox.exe.vir

deleted: adware not-a-virus:AdWare.Win32.Virtumonde.rcq File: C:\QooBox\Quarantine\C\WINDOWS\system32\ssqRLEWq.dll.vir

deleted: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\tifchkzp.exe.vir

deleted: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\tjmepnuz.exe.vir

deleted: adware not-a-virus:AdWare.Win32.Virtumonde.rcq File: C:\QooBox\Quarantine\C\WINDOWS\system32\tuvTlkiH.dll.vir

deleted: adware not-a-virus:AdWare.Win32.Virtumonde.rcq File: C:\QooBox\Quarantine\C\WINDOWS\system32\tuvUOIBq.dll.vir

disinfected: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\tyqai.exe.vir

deleted: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\ungm.exe.vir

deleted: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\uqnf.exe.vir

deleted: adware not-a-virus:AdWare.Win32.Virtumonde.rcq File: C:\QooBox\Quarantine\C\WINDOWS\system32\vtUkkkKa.dll.vir

deleted: adware not-a-virus:AdWare.Win32.Virtumonde.rcq File: C:\QooBox\Quarantine\C\WINDOWS\system32\vtUlKEXP.dll.vir

deleted: adware not-a-virus:AdWare.Win32.Virtumonde.rcq File: C:\QooBox\Quarantine\C\WINDOWS\system32\vtUnomkL.dll.vir

deleted: adware not-a-virus:AdWare.Win32.Virtumonde.rcq File: C:\QooBox\Quarantine\C\WINDOWS\system32\vtUnonmj.dll.vir

deleted: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\vwiheev.exe.vir

disinfected: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\ws2_32.exe.vir

deleted: adware not-a-virus:AdWare.Win32.Virtumonde.rcq File: C:\QooBox\Quarantine\C\WINDOWS\system32\xxyywxur.dll.vir

deleted: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\zwncojn.exe.vir

disinfected: virus Virus.Win32.Virut.n File: C:\QooBox\Quarantine\C\WINDOWS\system32\zxqqdw.exe.vir

disinfected: virus Virus.Win32.Sality.l File: C:\WINDOWS\alcrmv.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\alcupd.exe

disinfected: virus Virus.Win32.Sality.l File: C:\WINDOWS\fdsv.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\grep.exe

deleted: Trojan program Trojan-Downloader.Win32.Homles.bl File: C:\WINDOWS\mrofinu1001186.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\Nircmd.exe

disinfected: virus Virus.Win32.Sality.l File: C:\WINDOWS\NuNinst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\sed.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\swreg.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\swsc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\swxcacls.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\VFind.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\$NtUninstallKB823559$\spuninst\spuninst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\$NtUninstallKB842773$\spuninst\spuninst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\$NtUninstallQ329115$\spuninst\spuninst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\$NtUninstallQ329390$\spuninst\spuninst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\$NtUninstallQ329834$\spuninst\spuninst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\$NtUninstallQ810833$\locator.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\$NtUninstallQ810833$\locator.exe.000

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\$NtUninstallQ810833$\spuninst\spuninst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\$xpsp1hfm$\Q329390\spuninst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\$xpsp1hfm$\Q329390\update\update.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\$xpsp1hfm$\Q329834\spuninst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\$xpsp1hfm$\Q329834\update\update.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\$xpsp1hfm$\Q810833\locator.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\$xpsp1hfm$\Q810833\spuninst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\$xpsp1hfm$\Q810833\update\update.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\erdnt\Hiv-backup\ERDNT.EXE

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\erdnt\subs\ERDNT.EXE

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\ERUNT\SDFIX\ERDNT.EXE

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\ERUNT\SDFIX_First_Run\ERDNT.EXE

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\inf\unregmp2.exe

disinfected: virus Virus.Win32.Sality.l File: C:\WINDOWS\Installer\{350C97B8-3D7C-4EE8-BAA9-00BCB3D54227}\places.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\msagent\agentsvr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\PCHEALTH\HELPCTR\Binaries\HelpHost.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\PCHEALTH\HELPCTR\Binaries\HelpSvc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\PCHEALTH\HELPCTR\Binaries\notiflag.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\PCHEALTH\UploadLB\Binaries\UploadM.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\6f217d5e6d4044f32e9bee81e815c6ce\spuninst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\6f217d5e6d4044f32e9bee81e815c6ce\sp1qfe\bitsinst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\6f217d5e6d4044f32e9bee81e815c6ce\update\update.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\accwiz.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\actmovie.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\admin.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\agentsvr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ahui.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\alg.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\aspnet_regiis.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\aspnet_wp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\asr_fmt.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\at.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\atmadm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\auditusr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\author.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\blastcln.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\caspol.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\cfgwiz.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\cipher.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\cisvc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\cleanmgr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\cliconfg.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\clipbrd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\clipsrv.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\cmd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\cmdl32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\cmmon32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\cmstp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\comrepl.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\conf.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\conime.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\csc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\cscript.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ctfmon.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\davcdata.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ddeshare.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\defrag.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\dfrgfat.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\dfrgntfs.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\dialer.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\diantz.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\diskpart.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\dlimport.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\dllhost.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\dmadmin.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\dmremote.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\dplaysvr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\dpnsvr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\dpvsetup.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\dumprep.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\dvdupgrd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\dwwin.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\dxdiag.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\eudcedit.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\evcreate.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\evntcmd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\evntwin.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\explorer.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\extrac32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\faxpatch.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\findstr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\fltmc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\fontview.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\fp98sadm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\fp98swin.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\fpadmcgi.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\fpcount.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\fpremadm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\fpsrvadm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\fsquirt.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ftp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\fxsclnt.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\fxscover.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\fxssvc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\gprslt.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\grpconv.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\helpctr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\helpsvc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\hh.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\hscupd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\icwconn1.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\icwconn2.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\icwrmind.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ie4uinit.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\iedw.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ieexec.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\iexplore.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\iexpress.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\iisrstas.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ilasm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\imapi.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\inetin51.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\inetwiz.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\installutil.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ipconfig.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ipv6.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ipxroute.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\irftp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\jsc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\locator.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\logagent.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\logman.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\logon.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\logonui.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\lsass.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\magnify.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\makecab.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\migload.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\migrate.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\migregdb.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\migwiz.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\migwiz_a.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\mmc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\mnmsrvc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\mobsync.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\mofcomp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\moviemk.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\mplay32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\mplayer2.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\mqbkup.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\mqsvc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\mqtgsvc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\msconfig.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\msdtc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\mshta.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\msiexec.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\msimn.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\msiregmv.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\msmsgs.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\mspaint.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\mstinit.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\mstsc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\narrator.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\nddeapir.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\net.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\net1.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\netdde.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\netfxupdate.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\netsetup.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\netsh.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\netstat.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ngen.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\notepad.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\nppagent.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\nslookup.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ntbackup.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ntvdm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\odbcad32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\odbcconf.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\oemig50.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\oobebaln.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\opnfiles.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\osk.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\packager.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\perfmon.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\pinball.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ping.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\powercfg.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\progman.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\proquota.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\proxycfg.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\qprocess.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\rasphone.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\rcimlby.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\rcp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\rdpclip.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\rdsaddin.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\rdshost.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\reg.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\regasm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\regedit.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\regsvcs.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\regsvr32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\rexec.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\rsh.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\rsnotify.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\rstrui.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\rtcshare.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\rundll32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\runonce.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\savedump.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\scardsvr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\scrcons.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\scrnsave.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\sctasks.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\sdbinst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\services.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\sessmgr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\sethc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\setregni.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\setup.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\setup50.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\setup_wm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\shmgrate.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\shrpubw.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\shtml.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\shutdown.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\sigverif.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\skeys.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\slrundll.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\slserv.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\smbinst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\smi2smir.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\smlogsvc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\sndrec32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\snmp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\snmptrap.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\spdwnwxp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\spider.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\spnpinst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\spoolsv.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\spuninst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\spupdsvc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\spupdwxp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ss3dfo.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ssbezier.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ssflwbox.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ssmarque.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ssmypics.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ssmyst.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\sspipes.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ssstars.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\sstext3d.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\stimon.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\stub_fpsrvadm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\stub_fpsrvwin.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\svchost.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\sysocmgr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\taskmgr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\tcptest.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\telnet.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\tlntadmn.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\tlntsess.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\tlntsvr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\togac.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\tourstrt.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\tp4mon.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\tracerpt.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\tracert.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\tscupgrd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\unregmp2.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\uploadm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\upnpcont.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ups.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\userinit.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\utilman.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\vbc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\vssvc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\wab.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\wabmig.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\wbemtest.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\wextract.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\wiaacmgr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\winhlp32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\winlogon.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\winver.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\wmiadap.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\wmiapsrv.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\wmic.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\wmiprvse.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\wmplayer.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\wordpad.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\wpabaln.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\wpnpinst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\wscntfy.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\wscript.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\wuauclt.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\wuauclt1.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\xcopy.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ip\asr_pfu.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ip\comsdupd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ip\secedit.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\ip\spiisupd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\lang\cintsetp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\lang\cplexe.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\lang\imjpdct.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\lang\imjpdsvr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\lang\imjpinst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\lang\imjpmig.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\lang\imjprw.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\lang\imjputy.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\lang\imscinst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\lang\pintlphr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\lang\tintlphr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\lang\tintsetp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\root\cmpnents\mediactr\i386\medctrro.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\update\fixccs.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\update\nv4prep.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\update\spnpinst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\SoftwareDistribution\Download\70ccc3de7e94865059fbcf2f809c03b1\update\update.exe

deleted: Trojan program Trojan-Downloader.BAT.Ftp.z File: C:\WINDOWS\system32\.pif

deleted: Trojan program Trojan-Downloader.Win32.Agent.iyq File: C:\WINDOWS\system32\16cf91.exe

deleted: Trojan program Trojan-Downloader.Win32.Agent.iyq File: C:\WINDOWS\system32\ac6f.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\actmovie.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\afbsahfp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ahui.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\aof.exe

deleted: Trojan program Backdoor.Win32.VanBot.ax File: C:\WINDOWS\system32\ardnvoi.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\arp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\arpxbf.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\asr_fmt.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\asr_ldm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\at.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\atmadm.exe

deleted: Trojan program Backdoor.Win32.VanBot.ax File: C:\WINDOWS\system32\atpn.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\attrib.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\bknq.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\bofyws.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\bootcfg.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\bootok.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\bootvrfy.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\bpdatkcv.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\brrqss.exe

deleted: Trojan program Backdoor.Win32.VanBot.ax File: C:\WINDOWS\system32\bvggyddh.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\bwwflwtt.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\cacls.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\calc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\charmap.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\chkdsk.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\chkntfs.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\cidaemon.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\cipher.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ckcnv.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\cleanmgr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\cliconfg.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\cmd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\cmdl32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\cmmon32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\cmstp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\comp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\compact.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\conime.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\control.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\convert.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\cscript.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dcomcnfg.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ddeshare.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\defrag.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dfrgfat.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dfrgntfs.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\diantz.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\diskpart.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\diskperf.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllhst3g.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dmremote.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\doskey.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dplaysvr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dpnsvr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dpvsetup.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\driverquery.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dske.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dumprep.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dvdplay.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dvdupgrd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dxdiag.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\epmfnbfe.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\erlxsw.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\esentutl.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\eudcedit.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\eventcreate.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\eventtriggers.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\eventvwr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\expand.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\extrac32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\fc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\fgif.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\find.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\findstr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\finger.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\fiwcr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\fixmapi.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\forcedos.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\freecell.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\fsciefz.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\fsutil.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ftp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\gcypfpbs.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\getmac.exe

deleted: Trojan program Backdoor.Win32.VanBot.ax File: C:\WINDOWS\system32\ggkfco.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\gjmcozr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\gpresult.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\gpupdate.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\grpconv.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\help.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\hggq.exe

deleted: Trojan program Backdoor.Win32.VanBot.ax File: C:\WINDOWS\system32\hgmrfisf.exe

deleted: adware not-a-virus:AdWare.Win32.Virtumonde.rsp File: C:\WINDOWS\system32\hincooob.dll

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\hmihy.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\hostname.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\hpqagbu.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\htlu.exe

deleted: Trojan program Trojan.Win32.Monder.gen File: C:\WINDOWS\system32\ibcvjbtf.dll

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\idtubyyh.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\iexpress.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ifny.exe

deleted: Trojan program Backdoor.Win32.IRCBot.cit File: C:\WINDOWS\system32\ihaasg.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ihqh.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ipconfig.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ipsec6.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ipv6.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ipxroute.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\iwfdhxar.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\jgfb.exe

deleted: Trojan program Backdoor.Win32.VanBot.ax File: C:\WINDOWS\system32\jlcicn.exe

deleted: virus Net-Worm.Win32.Kolabc.ajx File: C:\WINDOWS\system32\jquvbqnw.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\jrpjb.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\jstmc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\kscf.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\label.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\labqbxe.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\lbxux.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\lights.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\lkqvoli.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\llidsxkn.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\lmvbolsz.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\lnkstub.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\lodctr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\logagent.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\logman.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\logoff.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\logonui.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\lpq.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\lpr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\lqrodsww.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\lxorkyau.exe

deleted: Trojan program Backdoor.Win32.IRCBot.cit File: C:\WINDOWS\system32\lzlf.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\magnify.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\makecab.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\matgtu.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\migpwd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\mobsync.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\mountvol.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\mplay32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\mpnotify.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\mqbkup.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\mqsvc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\mqtgsvc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\mrinfo.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\msg.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\mshearts.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\msmsnger.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\msswchx.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\mstinit.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\mstsc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\muoa.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\mxfohaga.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\mxoae.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\mzadj.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\narrator.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\nbtstat.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\nddeapir.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ndnth.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\net.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\net1.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\netsetup.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\netsh.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\netstat.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\nmqucv.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\nslookup.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ntvdm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\nwscript.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\odbcad32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\odbcconf.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\oekcd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ohskkd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\olykuq.exe

deleted: Trojan program Backdoor.Win32.IRCBot.cit File: C:\WINDOWS\system32\omdzw.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\oolw.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\openfiles.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\opluoht.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\osk.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\osuninst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\otku.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\packager.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\pathping.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\pentnt.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ping.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ping6.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\pjsgnyfz.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\pnmfp.exe

deleted: Trojan program Backdoor.Win32.Small.pk File: C:\WINDOWS\system32\po.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\pqbht.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\print.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\proquota.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\proxycfg.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\pvcjxv.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\pygc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\qappsrv.exe

deleted: Trojan program Trojan-Downloader.Win32.Zlob.mtu File: C:\WINDOWS\system32\qpcdyol.exe//PE_Patch//UPack

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\qpow.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\qppwvlts.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\qprocess.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\qwhfi.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\qwinsta.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\rasautou.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\rasdial.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\rcimlby.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\rcp.exe

deleted: Trojan program Backdoor.Win32.VanBot.ax File: C:\WINDOWS\system32\rcrewhrw.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\rdpclip.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\rdsaddin.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\rdshost.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\recover.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\reg.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\regedt32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\regini.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\regwiz.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\relog.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\replace.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\reset.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\rexec.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\route.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\routemon.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\rsh.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\rsm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\rsmsink.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\rsmui.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\rsnotify.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\rsopprov.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\rtcshare.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\runas.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\runonce.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\rwinsta.exe

deleted: Trojan program Trojan.Win32.Monder.gen File: C:\WINDOWS\system32\saeryqfu.dll

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\savedump.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\sc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\schtasks.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\scrnsave.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\secedit.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\sethc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\setup.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\sfc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\shadow.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\shmgrate.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\shrpubw.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\shutdown.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\sigverif.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\skeys.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\sndrec32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\sndvol32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\snou.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\sol.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\sort.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\spider.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ss3dfo.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ssbezier.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ssflwbox.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ssmarque.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ssmypics.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ssmyst.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\sspipes.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ssstars.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\sstext3d.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\stimon.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\subst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\supxnqbj.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\swgxue.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\sxtd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\syncapp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\syskey.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\sysocmgr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\systeminfo.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\systray.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\taskkill.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\tasklist.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\taskman.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\taskmgr.exe

deleted: adware not-a-virus:AdWare.Win32.Virtumonde.sbz File: C:\WINDOWS\system32\tbyjblps.dll

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\tcmsetup.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\tcpsvcs.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\tefwyfks.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\telnet.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\tftp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\tlntadmn.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\tlntsess.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\tourstart.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\tracerpt.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\tracert.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\tracert6.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\tscon.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\tscupgrd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\tsdiscon.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\tskill.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\tsshutdn.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\typeperf.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ufgvi.exe

deleted: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ugmmzxbz.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ukfeuwfy.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\unlodctr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\upnpcont.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\usggnf.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\usrmlnka.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\usrprbda.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\usrshuta.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\utilman.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\uzozs.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\verifier.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\vixwjfqs.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\vjboq.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\vjltud.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\vlssmsop.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\vqnonjy.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\vssadmin.exe

deleted: adware not-a-virus:AdWare.Win32.Virtumonde.rcq File: C:\WINDOWS\system32\vtUopMGw.dll

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\vunfm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\vvurq.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\vxdyocf.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\vxxzts.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\w32tm.exe

deleted: Trojan program Trojan.Win32.Pakes.cvf File: C:\WINDOWS\system32\wbhq.exe

deleted: Trojan program Backdoor.Win32.Rbot.hof File: C:\WINDOWS\system32\WinTcpips.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\xcmhlvh.exe

deleted: Trojan program Backdoor.Win32.VanBot.ax File: C:\WINDOWS\system32\xnegah.exe//Execryptor//RLPack//PE-Crypt.Scrypt

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\xomnd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\xpsp1hfm.exe

deleted: virus Heur.Backdoor.Generic File: C:\WINDOWS\system32\xsli.exe

deleted: Trojan program Trojan.Win32.Pakes.cvf File: C:\WINDOWS\system32\xyso.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\yhpahsk.exe

deleted: Trojan program Trojan.Win32.Pakes.cvf File: C:\WINDOWS\system32\yoineyf.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\yvynzexd.exe

deleted: adware not-a-virus:AdWare.Win32.Virtumonde.sce File: C:\WINDOWS\system32\ywxkmctp.dll

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\zalm.exe

deleted: Trojan program Backdoor.Win32.VanBot.ax File: C:\WINDOWS\system32\zfugm.exe//Execryptor//RLPack//PE-Crypt.Scrypt

deleted: Trojan program Trojan.Win32.Pakes.cvf File: C:\WINDOWS\system32\zjjw.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\zmnh.exe

deleted: Trojan program Trojan.Win32.Pakes.cvf File: C:\WINDOWS\system32\zvdexc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\Com\comrepl.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\Com\comrereg.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\IJ212PAB\84785_winsgh[1].exe

deleted: Trojan program Backdoor.Win32.IRCBot.bad File: C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\O5M5GBIP\84785_redworld[1].exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\O5M5GBIP\84785_winhtb[1].exe

deleted: Trojan program Trojan-Dropper.Win32.Small.bkz File: C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\Y5GZEPKF\unpr[1].exe

deleted: Trojan program Trojan-Dropper.Win32.Small.bkz File: C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\Y5GZEPKF\unpr[2].exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\accwiz.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\actmovie.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\admin.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\agentsvr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\ahui.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\alg.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\arp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\asr_fmt.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\asr_ldm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\at.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\atmadm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\attrib.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\author.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\bckgzm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\bootcfg.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\bootok.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\bootvrfy.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\cacls.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\calc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\cb32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\cfgwiz.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\change.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\charmap.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\chglogon.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\chgport.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\chgusr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\chkdsk.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\chkntfs.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\chkrzm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\cidaemon.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\cintsetp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\cipher.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\cisvc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\ckcnv.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\cleanmgr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\clipbrd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\clipsrv.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\cmd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\cmdl32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\cmmon32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\cmstp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\comp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\compact.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\comrepl.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\comrereg.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\conf.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\conime.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\control.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\convert.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\convlog.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\cplexe.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\cprofile.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\cscript.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\ctfmon.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\davcdata.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\dcomcnfg.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\ddeshare.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\defrag.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\dfrgfat.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\dfrgntfs.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\dialer.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\diantz.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\diskpart.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\diskperf.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\dlimport.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\dllhost.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\dllhst3g.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\dmadmin.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\dmremote.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\doskey.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\dplaysvr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\dpnsvr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\dpvsetup.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\drvqry.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\drwtsn32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\dumprep.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\dvdupgrd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\dxdiag.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\esentutl.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\eudcedit.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\evcreate.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\eventvwr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\evntcmd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\evntwin.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\evtrig.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\EXCH_regtrace.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\expand.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\explorer.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\extrac32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\fc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\find.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\findstr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\finger.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\fixmapi.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\flattemp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\fontview.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\forcedos.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\fp98sadm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\fp98swin.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\fpadmcgi.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\fpcount.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\fpremadm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\freecell.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\fsutil.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\ftp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\fxsclnt.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\fxscover.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\fxssend.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\fxssvc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\getmac.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\gprslt.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\gpupdate.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\grpconv.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\help.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\helpctr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\helphost.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\helpsvc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\hh.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\hostname.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\hrtzzm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\icwconn1.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\icwconn2.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\icwrmind.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\icwtutor.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\ie4uinit.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\iexplore.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\iexpress.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\iisreset.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\iisrstas.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\iissync.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\imapi.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\imekrmig.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\imepadsv.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\imjpdadm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\imjpdct.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\imjpdsvr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\imjpinst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\imjpmig.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\imjprw.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\imjpuex.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\imjputy.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\imkrinst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\imscinst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\inetin51.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\inetmgr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\inetwiz.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\ipconfig.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\ipsec6.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\ipv6.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\ipxroute.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\isignup.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\label.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\lights.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\lnkstub.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\locator.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\lodctr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\logagent.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\logman.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\logoff.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\logon.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\logonui.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\lpq.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\lpr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\lsass.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\magnify.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\makecab.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\migisol.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\migload.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\migregdb.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\migwiz.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\migwiz_a.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\mmc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\mnmsrvc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\mobsync.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\mofcomp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\mountvol.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\moviemk.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\mplay32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\mplayer2.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\mpnotify.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\mqbkup.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\mqsvc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\mqtgsvc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\mrinfo.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\msconfig.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\msdtc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\msg.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\mshearts.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\mshta.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\msiexec.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\msimn.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\msinfo32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\msiregmv.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\msoobe.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\mspaint.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\msswchx.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\mstinit.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\mstsc.exe

deleted: Trojan program Backdoor.Win32.IRCBot.bad File: C:\WINDOWS\system32\dllcache\mswords.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\mtstocom.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\muisetup.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\narrator.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\nbtstat.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\nddeapir.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\net.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\net1.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\netdde.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\netsh.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\netstat.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\notepad.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\notiflag.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\nppagent.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\nslookup.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\ntbackup.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\ntsd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\ntvdm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\nwscript.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\odbcad32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\odbcconf.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\oemig50.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\oobebaln.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\opnfiles.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\osk.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\osuninst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\packager.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\pathping.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\pentnt.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\perfmon.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\pinball.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\ping.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\ping6.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\pintlphr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\print.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\progman.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\proquota.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\proxycfg.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\qappsrv.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\qprocess.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\query.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\quser.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\qwinsta.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\rasautou.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\rasdial.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\rasphone.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\rcimlby.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\rcp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\rdpclip.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\rdsaddin.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\rdshost.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\recover.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\reg.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\regedit.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\regedt32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\regini.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\register.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\regsvr32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\regwiz.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\relog.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\replace.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\reset.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\rexec.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\route.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\routemon.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\rsh.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\rsm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\rsmsink.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\rsmui.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\rsnotify.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\rsopprov.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\rstrui.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\rsvp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\rtcshare.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\runas.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\rundll32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\runonce.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\rvsezm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\rwinsta.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\sapisvr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\savedump.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\sc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\scardsvr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\scrcons.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\scrnsave.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\sctasks.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\sdbinst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\secedit.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\services.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\sessmgr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\sethc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\setup.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\setup50.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\setup_wm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\sfc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\shadow.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\shmgrate.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\shrpubw.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\shtml.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\shutdown.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\shvlzm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\sigverif.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\skeys.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\smi2smir.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\smlogsvc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\sndrec32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\sndvol32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\snmp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\snmptrap.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\sol.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\sort.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\spider.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\spoolsv.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\srdiag.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\ss3dfo.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\ssbezier.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\ssflwbox.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\ssmarque.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\ssmypics.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\ssmyst.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\sspipes.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\ssstars.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\sstext3d.scr

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\stimon.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\subst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\svchost.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\syncapp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\sysinfo.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\syskey.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\sysocmgr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\systray.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\taskkill.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\tasklist.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\taskman.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\taskmgr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\tcmsetup.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\tcpsvcs.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\tcptest.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\telnet.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\tftp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\tintlphr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\tintsetp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\tlntadmn.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\tlntsess.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\tlntsvr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\tourstrt.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\tracerpt.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\tracert.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\tracert6.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\tscon.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\tscupgrd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\tsdiscon.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\tskill.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\tsprof.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\tsshutdn.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\twunk_32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\typeperf.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\unlodctr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\unregmp2.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\unsecapp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\uploadm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\upnpcont.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\ups.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\userinit.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\utilman.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\verifier.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\vssadmin.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\vssvc.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\w32tm.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\wab.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\wabmig.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\wb32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\wbemtest.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\wextract.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\wiaacmgr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\winhlp32.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\winhstb.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\winlogon.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\winmgmt.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\winmine.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\winmsd.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\winver.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\wmiadap.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\wmiapsrv.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\wmic.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\wmiprvse.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\wmplayer.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\wmpstub.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\wordpad.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\wpabaln.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\wpnpinst.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\write.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\wscript.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\wupdmgr.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\xcopy.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\zclientm.exe

disinfected: Trojan program Trojan.Win32.Qhost.akg File: C:\WINDOWS\system32\drivers\etc\HOSTS

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\npp\nppagent.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\oobe\msoobe.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\oobe\oobebaln.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\Restore\rstrui.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\Restore\srdiag.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\spool\drivers\w32x86\3\brqikmon.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\spool\drivers\w32x86\brotherdcp_750cwc92d\brqikmon.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\usmt\migload.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\usmt\migwiz_a.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\wbem\mofcomp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\wbem\scrcons.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\wbem\unsecapp.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\wbem\wbemtest.exe

disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\wbem\winmgmt.exe

deleted: Trojan program Trojan.Win32.Iframer.e File: C:\WINDOWS\TEMP\DIL8.tmp//PE_Patch.UPX//UPX

deleted: Trojan program Backdoor.Win32.IRCBot.bwr File: c:\documents and settings\lucas\application data\malwarebytes\malwarebytes' anti-malware\quarantine\quar1.31882//Execryptor

deleted: Trojan program Trojan-Downloader.Win32.Agent.iyq File: c:\qoobox\quarantine\c\windows\system32\35415.exe.vir//PE_Patch.UPX//UPX

deleted: Trojan program Trojan-Downloader.Win32.Homles.bl File: c:\windows\mrofinu1001186.exe//PE_Patch.Upolyx//PE_Patch.UPX//UPX

deleted: Trojan program Trojan-Downloader.Win32.Agent.iyq File: c:\windows\system32\16cf91.exe//PE_Patch.UPX//UPX

deleted: Trojan program Trojan-Downloader.Win32.Agent.iyq File: c:\windows\system32\ac6f.exe//PE_Patch.UPX//UPX

deleted: Trojan program Backdoor.Win32.VanBot.ax File: c:\windows\system32\ardnvoi.exe//Execryptor//RLPack//PE-Crypt.Scrypt

deleted: Trojan program Backdoor.Win32.VanBot.ax File: c:\windows\system32\atpn.exe//Execryptor//RLPack//PE-Crypt.Scrypt

deleted: Trojan program Backdoor.Win32.VanBot.ax File: c:\windows\system32\bvggyddh.exe//Execryptor//RLPack//PE-Crypt.Scrypt

deleted: Trojan program Backdoor.Win32.VanBot.ax File: c:\windows\system32\ggkfco.exe//Execryptor//RLPack//PE-Crypt.Scrypt

deleted: Trojan program Backdoor.Win32.VanBot.ax File: c:\windows\system32\hgmrfisf.exe//Execryptor//RLPack//PE-Crypt.Scrypt

deleted: Trojan program Backdoor.Win32.VanBot.ax File: c:\windows\system32\jlcicn.exe//Execryptor//RLPack//PE-Crypt.Scrypt

deleted: Trojan program Backdoor.Win32.VanBot.ax File: c:\windows\system32\rcrewhrw.exe//Execryptor//RLPack//PE-Crypt.Scrypt

 

 

Events

------

Time Name Status Reason

---- ---- ------ ------

 

 

Statistics

----------

Object Scanned Detected Untreated Deleted Moved to Quarantine Archives Packed files Password protected Corrupted

------ ------- -------- --------- ------- ------------------- -------- ------------ ------------------ ---------

 

 

Settings

--------

Parameter Value

--------- -----

Security Level Recommended

Action Prompt for action when the scan is complete

Run mode Manually

File types Scan all files

Scan only new and changed files No

Scan archives All

Scan embedded OLE objects All

Skip if object is larger than No

Skip if scan takes longer than No

Parse email formats No

Scan password-protected archives No

Enable iChecker technology No

Enable iSwift technology No

Show detected threats on "Detected" tab Yes

 

 

Quarantine

----------

Status Object Size Added

------ ------ ---- -----

 

 

Backup

------

Status Object Size

------ ------ ----

loukass Member

loukass

Posté(e)
  • Auteur
Posté(e)

Je ne peus malheuresement pas te joindre un rapport Combofix:

"Windows ne trouve pas"'C:\WINDOWS\regedit.exe'. ......"

puis:

Erreur fatale-Fichier manquant

"'C:\WINDOWS\regedit.exe manquant.

Copiez le à partir d'une autre machine"

 

Avant le scan Kapersky et "Microsoft victime piratage" Combo fonctionné :P

à vite !!!

bruce lee Devil Member !

bruce lee

Posté(e)
Posté(e) (modifié)

Bonjour loukass,

 

Tu étais infecté par Virut qui est une sale bestiole infectant les fichiers .exe légitime. Le fichier regedit.exe se situant dans le dossier i386 ne semble pas avoir été infecté on va donc essayer de le récuperer.

 

Démarrer, Poste de travail ou autre dossier, Menu Outils, Option des dossiers, onglet Affichage :

Cocher la case : Afficher les fichiers et dossiers cachés

Décocher la case : Masquer les extensions des fichiers dont le type est connu

Décocher la case : Masquer les fichiers protégés du système d'exploitation

cliquer sur "Appliquer"

cliquer sur le bouton "Appliquer à tous les dossiers" / OK

 

Rend toi ici:

 

c:\Windows\ServicePackFiles\i386

 

Ouvre le dossier i1386 et recherche le fichier regedit.exe. Une fois trouvé, fait un clic droit dessus puis choisis Copier et Colle le dans C:\WINDOWS\

 

Une fois fait, essaye de relancer ComboFix.

Modifié par bruce lee

Rejoindre la conversation

Vous pouvez publier maintenant et vous inscrire plus tard. Si vous avez un compte, connectez-vous maintenant pour publier avec votre compte.
Remarque : votre message nécessitera l’approbation d’un modérateur avant de pouvoir être visible.

Invité
Répondre à ce sujet…

×   Collé en tant que texte enrichi.   Coller en tant que texte brut à la place

  Seulement 75 émoticônes maximum sont autorisées.

×   Votre lien a été automatiquement intégré.   Afficher plutôt comme un lien

×   Votre contenu précédent a été rétabli.   Vider l’éditeur

×   Vous ne pouvez pas directement coller des images. Envoyez-les depuis votre ordinateur ou insérez-les depuis une URL.

×
 Partager
Aller sur la liste des sujets

  • En ligne récemment   0 membre est en ligne

    • Aucun utilisateur enregistré regarde cette page.
×
×
  • Créer...