Aller au contenu

  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

Infection Trojan

RiFaRhyme

Par RiFaRhyme
dans Analyses et éradication malwares

 Partager

Messages recommandés

RiFaRhyme Junior Member

RiFaRhyme

Posté(e)
Posté(e)

Bonjour à tous ,

 

Depuis hier soir j'ai contracté un virus qui s'appelle Security Tool il se lance au démarrage du pc et me demande bien sûr informations de carte de crédit etc... il n'est pas le plus gênant du monde mais je souhaiterais m'en débarrasser de peur qu'il devienne justement plus dérangeant...

 

Pourrais-je avoir de l'aide s'il vous plait

RiFaRhyme Junior Member

RiFaRhyme

Posté(e)
  • Auteur
Posté(e)

J'oublie de préciser qu'il me fait subir des ralentissement incroyables donc si quelqu'un a la patience de m'aider il se pourrait que je rencontre des difficultés pour répondre

pear Devil Member !

pear

Posté(e)
Posté(e)

Bonsoir,

 

Télécharger load_tdsskiller de Loup Blanc sur le Bureau

Cet outil est conçu pour automatiser différentes tâches proposées par TDSSKiller, un fix de Kaspersky.

  • Lancer load_tdsskiller en double-cliquant dessus :
    l'outil va se connecter au Net pour télécharger une copie à jour de TDSSKiller et lancer le scan
  • Un message dans la fenêtre noire d'invite de commande vous demandera d'appuyer sur une touche pour continuer
  • Le rapport s'affichera automatiquement : copier-coller son contenu dans la prochaine réponse
    (le fichier est également présent ici : C:\tdsskiller\report.txt)
  • Redémarrer le PC

 

rkill.comTélécharger Rkill de Grinler sur le bureau,

double clic pour le lancer.

Sous Vista, faire un clic droit sur le fichier rkill téléchargé puis choisir "Exécuter en tant qu'Administrateur"

Une fenêtre (très rapide) indiquera que tout s'est bien déroulé.

Pour Vista, faire un clic droit sur le fichier rkill téléchargé puis choisir "Exécuter en tant qu'Administrateur" pour lancer l'outil.

 

 

Téléchargez MBAM

 

Branchez tous les supports amovibles avant de faire ce scan (clé usb/disque dur externe etc)

Vous devez désactiver vos protections et ne savez pas comment faire

 

Sur Bleeping Computers en Anglais:

 

Sur PCA,En Français

* Double cliquez sur l'icône Download_mbam-setup.exe pour lancer le processus d'installation.

Enregistrez le sur le bureau .

Fermer toutes les fenêtres et programmes

Suivez les indications (en particulier le choix de la langue et l'autorisation d'accession à Internet)

N'apportez aucune modification aux réglages par défaut et, en fin d'installation,

Vérifiez que les options Update et Launch soient cochées

MBAM démarrera automatiquement et enverra un message demandant à mettre à jour le programme avant de lancer une analyse.

cliquer sur OK pour fermer la boîte de dialogue..

* Dans l'onglet "mise à jour", cliquez sur le bouton Recherche de mise à jour:

mbam.jpg

Si le pare-feu demande l'autorisation à MBAM de se connecter, acceptez.

* Une fois la mise à jour terminée, allez dans l'onglet Recherche.

* Sélectionnez "Exécuter un examen complet"

* Cliquez sur "Rechercher"

* .L' analyse prendra un certain temps, soyez patient !

* A la fin , un message affichera :

L'examen s'est terminé normalement.

 

*Si MBAM n'a rien trouvé, il le dira aussi.

Cliquez sur "Ok" pour poursuivre.

*Fermez les navigateurs.

Cliquez sur Afficher les résultats .

 

*Sélectionnez tout et cliquez sur Supprimer la sélection ,

MBAM va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.

puis ouvrir le Bloc-notes et y copier le rapport d'analyse qui peut être retrouvé sous l'onglet Rapports/logs.

* Copiez-collez ce rapport dans la prochaine réponse.

RiFaRhyme Junior Member

RiFaRhyme

Posté(e)
  • Auteur
Posté(e)

Tout d'abord merci de votre aide je vous suit amplement reconnaissant

 

Voici le premier rapport de tdsskiller :

 

18:05:00:398 2540 TDSSKiller 2.1.1 Dec 20 2009 02:40:02

18:05:00:398 2540 ================================================================================

18:05:00:398 2540 SystemInfo:

 

18:05:00:398 2540 OS Version: 6.0.6002 ServicePack: 2.0

18:05:00:398 2540 Product type: Workstation

18:05:00:398 2540 ComputerName: PC-DE-FALCO

18:05:00:399 2540 UserName: recover

18:05:00:399 2540 Windows directory: C:\Windows

18:05:00:399 2540 Processor architecture: Intel x86

18:05:00:399 2540 Number of processors: 2

18:05:00:399 2540 Page size: 0x1000

18:05:00:506 2540 Boot type: Normal boot

18:05:00:506 2540 ================================================================================

18:05:00:511 2540 ForceUnloadDriver: NtUnloadDriver error 2

18:05:00:512 2540 ForceUnloadDriver: NtUnloadDriver error 2

18:05:00:513 2540 ForceUnloadDriver: NtUnloadDriver error 2

18:05:00:514 2540 MyNtCreateFileW: NtCreateFile(\??\C:\Windows\system32\Drivers\KLMD.sys) returned status 0

18:05:00:515 2540 main: Driver KLMD successfully dropped

18:05:26:358 2540 main: Driver KLMD successfully loaded

18:05:26:358 2540

Scanning Registry ...

18:05:26:358 2540 ScanServices: Searching service UACd.sys

18:05:26:359 2540 ScanServices: Open/Create key error 2

18:05:26:359 2540 ScanServices: Searching service TDSSserv.sys

18:05:26:359 2540 ScanServices: Open/Create key error 2

18:05:26:359 2540 ScanServices: Searching service gaopdxserv.sys

18:05:26:359 2540 ScanServices: Open/Create key error 2

18:05:26:359 2540 ScanServices: Searching service gxvxcserv.sys

18:05:26:359 2540 ScanServices: Open/Create key error 2

18:05:26:359 2540 ScanServices: Searching service MSIVXserv.sys

18:05:26:359 2540 ScanServices: Open/Create key error 2

18:05:26:364 2540 UnhookRegistry: Kernel module file name: C:\Windows\system32\ntkrnlpa.exe, base addr: 81E14000

18:05:26:719 2540 UnhookRegistry: Kernel local addr: 1DE0000

18:05:26:719 2540 UnhookRegistry: KeServiceDescriptorTable addr: 1F17B00

18:05:26:772 2540 UnhookRegistry: KiServiceTable addr: 1E8C82C

18:05:26:772 2540 UnhookRegistry: NtEnumerateKey service number (local): 85

18:05:26:772 2540 UnhookRegistry: NtEnumerateKey local addr: 1FDD0BA

18:05:26:777 2540 KLMD_OpenDevice: Trying to open KLMD device

18:05:26:777 2540 KLMD_GetSystemRoutineAddressA: Trying to get system routine address ZwEnumerateKey

18:05:26:777 2540 KLMD_GetSystemRoutineAddressW: Trying to get system routine address ZwEnumerateKey

18:05:26:777 2540 KLMD_ReadMem: Trying to ReadMemory 0x81E5CD19[0x4]

18:05:26:777 2540 UnhookRegistry: NtEnumerateKey service number (kernel): 85

18:05:26:777 2540 KLMD_ReadMem: Trying to ReadMemory 0x81EC0A40[0x4]

18:05:26:777 2540 UnhookRegistry: NtEnumerateKey real addr: 820110BA

18:05:26:777 2540 UnhookRegistry: NtEnumerateKey calc addr: 820110BA

18:05:26:777 2540 UnhookRegistry: No SDT hooks found on NtEnumerateKey

18:05:26:777 2540 KLMD_ReadMem: Trying to ReadMemory 0x820110BA[0xA]

18:05:26:777 2540 UnhookRegistry: No splicing found on NtEnumerateKey

18:05:26:782 2540

Scanning Kernel memory ...

18:05:26:782 2540 KLMD_OpenDevice: Trying to open KLMD device

18:05:26:782 2540 KLMD_GetSystemObjectAddressByNameA: Trying to get system object address by name \Driver\Disk

18:05:26:783 2540 KLMD_GetSystemObjectAddressByNameW: Trying to get system object address by name \Driver\Disk

18:05:26:783 2540 DetectCureTDL3: \Driver\Disk PDRIVER_OBJECT: 862536E0

18:05:26:783 2540 DetectCureTDL3: KLMD_GetDeviceObjectList returned 2 DevObjects

18:05:26:783 2540 DetectCureTDL3: 0 Curr stack PDEVICE_OBJECT: 87BB0AC8

18:05:26:783 2540 KLMD_GetLowerDeviceObject: Trying to get lower device object for 87BB0AC8

18:05:26:783 2540 DetectCureTDL3: 0 Curr stack PDEVICE_OBJECT: 87B9A030

18:05:26:783 2540 KLMD_GetLowerDeviceObject: Trying to get lower device object for 87B9A030

18:05:26:783 2540 KLMD_ReadMem: Trying to ReadMemory 0x87B9A030[0x38]

18:05:26:783 2540 DetectCureTDL3: DRIVER_OBJECT addr: 87ADD5D0

18:05:26:783 2540 KLMD_ReadMem: Trying to ReadMemory 0x87ADD5D0[0xA8]

18:05:26:783 2540 KLMD_ReadMem: Trying to ReadMemory 0x87A7A9C8[0x208]

18:05:26:783 2540 DetectCureTDL3: DRIVER_OBJECT name: \Driver\RTSTOR, Driver Name: RTSTOR

18:05:26:783 2540 DetectCureTDL3: IrpHandler (0) addr: 8EDD172A

18:05:26:783 2540 DetectCureTDL3: IrpHandler (1) addr: 81E3C9D2

18:05:26:783 2540 DetectCureTDL3: IrpHandler (2) addr: 8EDD172A

18:05:26:783 2540 DetectCureTDL3: IrpHandler (3) addr: 8EDD172A

18:05:26:783 2540 DetectCureTDL3: IrpHandler (4) addr: 8EDD172A

18:05:26:783 2540 DetectCureTDL3: IrpHandler (5) addr: 81E3C9D2

18:05:26:784 2540 DetectCureTDL3: IrpHandler (6) addr: 81E3C9D2

18:05:26:784 2540 DetectCureTDL3: IrpHandler (7) addr: 81E3C9D2

18:05:26:784 2540 DetectCureTDL3: IrpHandler (:P addr: 81E3C9D2

18:05:26:784 2540 DetectCureTDL3: IrpHandler (9) addr: 81E3C9D2

18:05:26:784 2540 DetectCureTDL3: IrpHandler (10) addr: 81E3C9D2

18:05:26:784 2540 DetectCureTDL3: IrpHandler (11) addr: 81E3C9D2

18:05:26:784 2540 DetectCureTDL3: IrpHandler (12) addr: 81E3C9D2

18:05:26:784 2540 DetectCureTDL3: IrpHandler (13) addr: 81E3C9D2

18:05:26:784 2540 DetectCureTDL3: IrpHandler (14) addr: 8EDD172A

18:05:26:784 2540 DetectCureTDL3: IrpHandler (15) addr: 8EDD172A

18:05:26:784 2540 DetectCureTDL3: IrpHandler (16) addr: 8EDD172A

18:05:26:784 2540 DetectCureTDL3: IrpHandler (17) addr: 81E3C9D2

18:05:26:784 2540 DetectCureTDL3: IrpHandler (18) addr: 81E3C9D2

18:05:26:784 2540 DetectCureTDL3: IrpHandler (19) addr: 81E3C9D2

18:05:26:784 2540 DetectCureTDL3: IrpHandler (20) addr: 81E3C9D2

18:05:26:784 2540 DetectCureTDL3: IrpHandler (21) addr: 81E3C9D2

18:05:26:784 2540 DetectCureTDL3: IrpHandler (22) addr: 8EDD172A

18:05:26:784 2540 DetectCureTDL3: IrpHandler (23) addr: 8EDD172A

18:05:26:784 2540 DetectCureTDL3: IrpHandler (24) addr: 81E3C9D2

18:05:26:784 2540 DetectCureTDL3: IrpHandler (25) addr: 81E3C9D2

18:05:26:784 2540 DetectCureTDL3: IrpHandler (26) addr: 81E3C9D2

18:05:26:784 2540 KLMD_ReadMem: Trying to ReadMemory 0x8EDCFC8C[0x400]

18:05:26:784 2540 TDL3_StartIoHookDetect: CheckParameters: 0, 0, 0, 0

18:05:26:784 2540 TDL3_FileDetect: Processing driver: RTSTOR

18:05:26:785 2540 GetServiceInfoByNameW: RegOpenKeyEx (SYSTEM\CurrentControlSet\Services\RTSTOR) error 2

18:05:26:785 2540 TDL3_FileDetect: Can't get parameters for service RTSTOR

18:05:26:785 2540 DetectCureTDL3: 1 Curr stack PDEVICE_OBJECT: 86272A28

18:05:26:785 2540 KLMD_GetLowerDeviceObject: Trying to get lower device object for 86272A28

18:05:26:785 2540 DetectCureTDL3: 1 Curr stack PDEVICE_OBJECT: 853A7028

18:05:26:785 2540 KLMD_GetLowerDeviceObject: Trying to get lower device object for 853A7028

18:05:26:785 2540 KLMD_ReadMem: Trying to ReadMemory 0x853A7028[0x38]

18:05:26:785 2540 DetectCureTDL3: DRIVER_OBJECT addr: 85380030

18:05:26:785 2540 KLMD_ReadMem: Trying to ReadMemory 0x85380030[0xA8]

18:05:26:785 2540 KLMD_ReadMem: Trying to ReadMemory 0x8537EA08[0x208]

18:05:26:785 2540 DetectCureTDL3: DRIVER_OBJECT name: \Driver\iaStor, Driver Name: iaStor

18:05:26:785 2540 DetectCureTDL3: IrpHandler (0) addr: 8A0CF580

18:05:26:785 2540 DetectCureTDL3: IrpHandler (1) addr: 81E3C9D2

18:05:26:785 2540 DetectCureTDL3: IrpHandler (2) addr: 8A0CF580

18:05:26:785 2540 DetectCureTDL3: IrpHandler (3) addr: 81E3C9D2

18:05:26:785 2540 DetectCureTDL3: IrpHandler (4) addr: 81E3C9D2

18:05:26:785 2540 DetectCureTDL3: IrpHandler (5) addr: 81E3C9D2

18:05:26:785 2540 DetectCureTDL3: IrpHandler (6) addr: 81E3C9D2

18:05:26:785 2540 DetectCureTDL3: IrpHandler (7) addr: 81E3C9D2

18:05:26:785 2540 DetectCureTDL3: IrpHandler (:P addr: 81E3C9D2

18:05:26:785 2540 DetectCureTDL3: IrpHandler (9) addr: 81E3C9D2

18:05:26:785 2540 DetectCureTDL3: IrpHandler (10) addr: 81E3C9D2

18:05:26:785 2540 DetectCureTDL3: IrpHandler (11) addr: 81E3C9D2

18:05:26:785 2540 DetectCureTDL3: IrpHandler (12) addr: 81E3C9D2

18:05:26:785 2540 DetectCureTDL3: IrpHandler (13) addr: 81E3C9D2

18:05:26:785 2540 DetectCureTDL3: IrpHandler (14) addr: 8A0CF580

18:05:26:786 2540 DetectCureTDL3: IrpHandler (15) addr: 8A0CF580

18:05:26:786 2540 DetectCureTDL3: IrpHandler (16) addr: 81E3C9D2

18:05:26:786 2540 DetectCureTDL3: IrpHandler (17) addr: 81E3C9D2

18:05:26:786 2540 DetectCureTDL3: IrpHandler (18) addr: 81E3C9D2

18:05:26:786 2540 DetectCureTDL3: IrpHandler (19) addr: 81E3C9D2

18:05:26:786 2540 DetectCureTDL3: IrpHandler (20) addr: 81E3C9D2

18:05:26:786 2540 DetectCureTDL3: IrpHandler (21) addr: 81E3C9D2

18:05:26:786 2540 DetectCureTDL3: IrpHandler (22) addr: 8A0CF580

18:05:26:786 2540 DetectCureTDL3: IrpHandler (23) addr: 8A0CF580

18:05:26:786 2540 DetectCureTDL3: IrpHandler (24) addr: 81E3C9D2

18:05:26:786 2540 DetectCureTDL3: IrpHandler (25) addr: 81E3C9D2

18:05:26:786 2540 DetectCureTDL3: IrpHandler (26) addr: 81E3C9D2

18:05:26:786 2540 KLMD_ReadMem: Trying to ReadMemory 0x0[0x400]

18:05:26:786 2540 KLMD_ReadMem: DeviceIoControl error 1

18:05:26:786 2540 TDL3_StartIoHookDetect: Unable to get StartIo handler code

18:05:26:786 2540 TDL3_FileDetect: Processing driver: iaStor

18:05:26:786 2540 TDL3_FileDetect: Parameters: C:\Windows\system32\drivers\iastor.sys, C:\Windows\system32\Drivers\iastor.tsk, SYSTEM\CurrentControlSet\Services\iaStor, system32\Drivers\iastor.tsk

18:05:26:786 2540 TDL3_FileDetect: Processing driver file: C:\Windows\system32\drivers\iastor.sys

18:05:26:786 2540 KLMD_CreateFileW: Trying to open file C:\Windows\system32\drivers\iastor.sys

18:05:26:804 2540

Completed

 

Results:

18:05:26:805 2540 Infected objects in memory: 0

18:05:26:805 2540 Cured objects in memory: 0

18:05:26:805 2540 Infected objects on disk: 0

18:05:26:806 2540 Objects on disk cured on reboot: 0

18:05:26:806 2540 Objects on disk deleted on reboot: 0

18:05:26:806 2540 Registry nodes deleted on reboot: 0

18:05:26:807 2540

RiFaRhyme Junior Member

RiFaRhyme

Posté(e)
  • Auteur
Posté(e)

Et voila le rapport de Malwarebytes désolé que ça ait prit si longtemps mais appartement il a trouvé beaucoup de choses :

 

Malwarebytes' Anti-Malware 1.43

Version de la base de données: 3479

Windows 6.0.6002 Service Pack 2

Internet Explorer 7.0.6002.18005

 

2/01/2010 20:28:41

mbam-log-2010-01-02 (20-28-41).txt

 

Type de recherche: Examen complet (C:\|D:\|)

Eléments examinés: 336464

Temps écoulé: 1 hour(s), 24 minute(s), 10 second(s)

 

Processus mémoire infecté(s): 0

Module(s) mémoire infecté(s): 0

Clé(s) du Registre infectée(s): 5

Valeur(s) du Registre infectée(s): 0

Elément(s) de données du Registre infecté(s): 1

Dossier(s) infecté(s): 3

Fichier(s) infecté(s): 262

 

Processus mémoire infecté(s):

(Aucun élément nuisible détecté)

 

Module(s) mémoire infecté(s):

(Aucun élément nuisible détecté)

 

Clé(s) du Registre infectée(s):

HKEY_CLASSES_ROOT\spbho.tiebho (Trojan.FakeAlert) -> Quarantined and deleted successfully.

HKEY_CLASSES_ROOT\CLSID\{d032570a-5f63-4812-a094-87d007c23012} (Trojan.FakeAlert) -> Quarantined and deleted successfully.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{d032570a-5f63-4812-a094-87d007c23012} (Trojan.FakeAlert) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\fbrowsingadvisor_is1 (Trojan.FBrowsingAdvisor) -> Quarantined and deleted successfully.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PlayMP3 (Adware.PLayMP3z) -> Quarantined and deleted successfully.

 

Valeur(s) du Registre infectée(s):

(Aucun élément nuisible détecté)

 

Elément(s) de données du Registre infecté(s):

HKEY_CLASSES_ROOT\regfile\shell\open\command\(default) (Broken.OpenCommand) -> Bad: ("regedit.exe" "%1") Good: (regedit.exe "%1") -> Quarantined and deleted successfully.

 

Dossier(s) infecté(s):

C:\ProgramData\19632223 (Rogue.Multiple) -> Quarantined and deleted successfully.

C:\Program Files\FBrowserAdvisor (Trojan.FBrowsingAdvisor) -> Quarantined and deleted successfully.

C:\Program Files\FBrowsingAdvisor (Trojan.FBrowsingAdvisor) -> Quarantined and deleted successfully.

 

Fichier(s) infecté(s):

C:\Program Files\Star Wars Jedi Knight - Jedi Academy (2 Cds)\Crack\KnightsoftheForce\MultiPlayer\ServerConfig_Edit.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\FBrowsingAdvisor\XPCOMEvents.dll (Adware.PLayMP3z) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\GameData\KnightsoftheForce\MultiPlayer\ServerConfig_Edit.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\backdec.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\backep1.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\backep1sec3.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\backep2.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\backep2sec2.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\backep3.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\backep3sec3.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\backep3sec4.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\backep3sec4b.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\backep4.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\backep5.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\backep6.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\backEpisodes.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\help.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\helpOpstart.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\help_back.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\jango.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\killprogress.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\KotFCDmenu_mp.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\KotFCDmenu_sp.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\backmp.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\backnpc.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\backnpc_big.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\backsp.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\backsp1.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\backsp2.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\backtosp.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\blood_off.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\blood_on.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\bugfix_spmenu.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\clones212.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\decmenu.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\default_grip.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\default_protect.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\dismemberment_off.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\dismemberment_on.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\episode1.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\episode2.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\episode4.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\episode5.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\episode6.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\episodes.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\execute66.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\exit.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\First_English.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\First_French.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\First_German.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\First_lang.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\First_Portugues.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\First_Spanish.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\First_Turkish.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\lang_to_English.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\lang_to_french.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\lang_to_German.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\comingsoon.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\episode3.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\Grievousvsobi.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\lang_to_Portugues.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\Mpmenu.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\lang_to_Spanish.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\lang_to_Turkish.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\LAN_Dedicated.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\LoadAddLoadsys.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\MaulAttacks.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\maxwindow.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\minwindow.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\mission.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\NET_Dedicated.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\npc.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\npc_exit.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\options.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\remove_grip.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\remove_protect.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\resetconfig.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\resetconfig_mp.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\ServerConfig_Edit.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\skinok.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\skinok_big.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\sp1start.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\vehicle.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\vehicleNo.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\episodes\ep1sec3a.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\episodes\ep1sec3b.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\episodes\ep2sec2a.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\episodes\ep2sec2b.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\episodes\ep3sec3a.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\episodes\ep3sec3b.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\episodes\ep3sec4a.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\menucmds\episodes\ep3sec4b.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\212thAttackB.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\4-Lom.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\501st.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\aayla.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\AdiGallia.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\admiral.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Airborne.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\AnakinEpII.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\AnakinEpIII.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\AniEp3L.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\AniEpIIIrobe.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\arc1.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\arc2.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\arc3.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\arc4.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Assault.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\AT-ATdrivers.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Aurrasing.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Barrris.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\battledroid.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\battledroid_B.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\battledroid_G.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\battledroid_R.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\battledroid_Y.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\BenHooded.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Benrobed.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\boba_fett.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Gran_kotf.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\greedo.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\GrievousFour.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\GrievousRobed.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Gungan.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\hansolo.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\hansolo_storm.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\imperialtrooper.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\inhand.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\ithorian.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\jabba.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\jango_fett.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Luminara.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\mace.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\macerobe.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Magnaguard.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\MagnaguardII.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\MaraJade.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\MaraJadeII.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Maul.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Maul_body.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Maul_robe.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\obiepI-R.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\obiepI.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\obiepII.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\bossk.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\c-3po_battle.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Chancellor.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\clone.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\cloneEp3.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\clonepilot.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\clonepilotEp3.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\clone_blue.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\clone_green.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\clone_red.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Clone_scout.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\clone_yellow.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\coleman.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\commanderbacara.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\commanderBly.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\commanderCody.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\commanderDeviss.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\commanderGree.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\commanderNeyo.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\commanderthire.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\dooku.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Droideka_kotf.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\EethKoth.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Emperor.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\ewok.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\GalacticM.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Gamorrean.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Aurra.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\jango_fett_pistol.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\obiepIIHooded.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\jarjar.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\kiadi.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\kitfisto.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Lamasu.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Leia.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Leia_Endor.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Leia_esb.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Leia_Slave.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\luke_anh.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\luke_anh2.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\luke_esb.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\luke_esb2.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\luke_Pilot.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Luke_rotj.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Luke_rotj2.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\obiepIII.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\obiepIIIburn.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\obiepIIIrobed.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Oola.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\padme.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\padme_battle.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\padme_senator.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\padme_skywalker.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\pilot.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\plokoon.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\ponda_baba.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\quigon.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\quigonJinn.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Rodian_kotf.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Royalguard.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\SaeseeTiin.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Sand_Trooper.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\sbd.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Scout_Trooper.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\sebulba.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\shaakti.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\sidious.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\SkyCorps.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\starcorps.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\stluke.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\tusken_kotf.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Vader.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\wattambor.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\watto.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Weequay_kotf.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\yarael.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\Yoda.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\YodaEp2.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\KotF Jedi Academy Expansion Pack\src\cmds\npcmds\zam.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Program Files\LucasArts\Star Wars Jedi Knight Jedi Academy\GameData\MultiPlayer\ServerConfig_Edit.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\ProgramData\19632223\19632223.exe (Rogue.Installer) -> Quarantined and deleted successfully.

C:\Users\recover\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ALP83AKS\wcap[1].exe (Trojan.Dropper) -> Quarantined and deleted successfully.

C:\Users\recover\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YXPWSHL4\wcap[1].exe (Trojan.Dropper) -> Quarantined and deleted successfully.

C:\Users\recover\AppData\Local\Temp\TMP1109.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.

C:\Users\recover\AppData\Local\Temp\TMP1BCE.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.

C:\Users\recover\AppData\Local\Temp\TMP1F8B.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.

C:\Users\recover\AppData\Local\Temp\TMP2CE3.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.

C:\Users\recover\AppData\Local\Temp\TMP361.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.

C:\Users\recover\AppData\Local\Temp\TMP39A7.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.

C:\Users\recover\AppData\Local\Temp\TMP3EE0.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.

C:\Users\recover\AppData\Local\Temp\TMP4267.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.

C:\Users\recover\AppData\Local\Temp\TMP4463.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.

C:\Users\recover\AppData\Local\Temp\TMP4800.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.

C:\Users\recover\AppData\Local\Temp\TMP5BCC.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.

C:\Users\recover\AppData\Local\Temp\TMP8B02.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.

C:\Users\recover\AppData\Local\Temp\TMP8EC7.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.

C:\Users\recover\AppData\Local\Temp\TMPC5A.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.

C:\Users\recover\AppData\Local\Temp\TMPD584.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.

C:\Users\recover\AppData\Local\Temp\TMPEE50.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.

C:\Users\recover\AppData\Local\Temp\~TMCE37.tmp (Spyware.Passwords) -> Quarantined and deleted successfully.

C:\Users\recover\AppData\Local\Temp\~TMCE67.tmp (Spyware.Passwords) -> Quarantined and deleted successfully.

C:\Users\recover\AppData\Local\Temp\~TMCEB6.tmp (Trojan.Dropper) -> Quarantined and deleted successfully.

C:\Windows\System32\drivers\agp440.sys (Rootkit.Agent) -> Quarantined and deleted successfully.

C:\Windows\System32\drivers\mqmok.sys (Rootkit.Agent) -> Quarantined and deleted successfully.

C:\Windows\Temp\TMP000000031BD839B52CC8C611 (Trojan.Dropper) -> Quarantined and deleted successfully.

C:\Windows\Temp\TMP0000000865BDF5CD31A73299 (Trojan.Dropper) -> Quarantined and deleted successfully.

C:\Windows\Temp\TMP0000000869534561FC4EC76D (Trojan.Dropper) -> Quarantined and deleted successfully.

C:\Windows\Temp\_ex-08.exe (Malware.Packer) -> Quarantined and deleted successfully.

C:\Windows\Temp\_ex-68.exe (Rogue.Installer) -> Quarantined and deleted successfully.

C:\Program Files\FBrowsingAdvisor\IXPCOMEvents.xpt (Trojan.FBrowsingAdvisor) -> Quarantined and deleted successfully.

C:\Program Files\FBrowsingAdvisor\Logo.png (Trojan.FBrowsingAdvisor) -> Quarantined and deleted successfully.

C:\Program Files\FBrowsingAdvisor\main.db (Trojan.FBrowsingAdvisor) -> Quarantined and deleted successfully.

C:\Program Files\FBrowsingAdvisor\unins000.dat (Trojan.FBrowsingAdvisor) -> Quarantined and deleted successfully.

C:\Program Files\FBrowsingAdvisor\unins000.exe (Trojan.FBrowsingAdvisor) -> Quarantined and deleted successfully.

C:\Users\recover\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\siszyd32.exe (Trojan.Agent) -> Quarantined and deleted successfully.

C:\Users\recover\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Security Tool.LNK (Rogue.SecurityTool) -> Quarantined and deleted successfully.

C:\Users\recover\AppData\Roaming\avdrn.dat (Malware.Trace) -> Quarantined and deleted successfully.

C:\Users\recover\AppData\Roaming\fvgqad.dat (Malware.Trace) -> Quarantined and deleted successfully.

pear Devil Member !

pear

Posté(e)
Posté(e)

Bonsoir,

 

On fait le point:

 

Téléchargez Random's system information tool (RSIT) par random/random et sauvegardez-le sur le Bureau.

 

Double-cliquez sur RSIT.exe afin de lancer RSIT.

* Cliquez Continue à l'écran Disclaimer.

* Si l'outil HIjackThis (version à jour) n'est pas présent ou détecté sur l'ordinateur, RSIT le télécharge et vous acceptez la licence.

* L'analyse terminée, deux fichiers texte s'ouvriront.:

Poster le contenu de log.txt (qui sera affiché)

ainsi que de info.txt (qui sera réduit dans la Barre des Tâches).

* Si ces deux rapports n'apparaissent pas, vous les trouverez dans le dossier C:\rsit

Si les rapports sont trop lourds, postez les en plusieurs fois

Rejoindre la conversation

Vous pouvez publier maintenant et vous inscrire plus tard. Si vous avez un compte, connectez-vous maintenant pour publier avec votre compte.
Remarque : votre message nécessitera l’approbation d’un modérateur avant de pouvoir être visible.

Invité
Répondre à ce sujet…

×   Collé en tant que texte enrichi.   Coller en tant que texte brut à la place

  Seulement 75 émoticônes maximum sont autorisées.

×   Votre lien a été automatiquement intégré.   Afficher plutôt comme un lien

×   Votre contenu précédent a été rétabli.   Vider l’éditeur

×   Vous ne pouvez pas directement coller des images. Envoyez-les depuis votre ordinateur ou insérez-les depuis une URL.

×
 Partager
Aller sur la liste des sujets

  • En ligne récemment   0 membre est en ligne

    • Aucun utilisateur enregistré regarde cette page.
×
×
  • Créer...