Vundo ou autre chose?

lachoukrate -
Eliane - 26 févr. 2009 à 11:14

Bonjour,
Depuis deux jours j'ai lu un paquet de postes, mais malgré les aides que ca m'a apporté, j'ai pas réussi à trouver mon probleme exact. J'ai installé spybot, ccleaner, hijackthis, avg spyware. Mais mon probleme vient d'un probleme de "crc check failed", mon antivir ne marche plus, soit une mauvaise manip de ma part, soit un virus... Lorsque j'essaie de l'enlever ou de le réinstaller, il veut pas!!! J'ai essayé d'installer avg antivirus, mais lors de l'installation il me dit une erreur est survenue, et s'arrete. En gros je n'ai plus d'antivirus opérationnel.
Tout a l'heure une page antivirus 2009 signé windows xp, s'est ouverte sans que je l'autorise et m'a fait un scan en me disant que j'avais : spyware.iemonster.b, zlob.pornadvertiser.xplisit (c'est sexuel??? :-)) et trojan.infostealer.banker.s. Je sens que mon ordi va me lacher :-( Je n'ai pas de disque d'install de windows (2000) et j'aimerai éviter le formatage.
Je suis pas douée en informatique, j'apprends sur le tas. Mais grace à toutes vos réponses je commence à etre callée en désinfection d'ordi, mais pas suffisamment hélas pour sauver le mien.
J'ai des logs de hijackthis et spybot.
Merci à celui qui pourra m'aider
et merci à tous pour votre aide si précieuse meme si c'est pas en direct, j'ai compris énormément de choses en lisant vos réponses...

---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 16:41:23 05/01/2009

+ Résultat de l'analyse:

HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a} -> Adware.Generic : Ignoré.
HKU\S-1-5-21-57989841-602162358-682003330-1000\Software\Microsoft\Internet Explorer\Extensions\CmdMapping\\{c95fe080-8f5d-11d2-a20b-00aa003c157a} -> Adware.Generic : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@247realmedia[1].txt -> TrackingCookie.247realmedia : Ignoré.
C:\Documents and Settings\chouchouk\Local Settings\Temp\Cookies\chouchouk@247realmedia[2].txt -> TrackingCookie.247realmedia : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@2o7[2].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@autoscout24.112.2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@divx.112.2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@electronicarts.112.2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@himedia.112.2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@notrefamille.112.2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@parship.122.2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@paypal.112.2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@veohnetwork.122.2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@adbrite[2].txt -> TrackingCookie.Adbrite : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@rotator.adjuggler[2].txt -> TrackingCookie.Adjuggler : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@adrevolver[2].txt -> TrackingCookie.Adrevolver : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@dynamic.media.adrevolver[1].txt -> TrackingCookie.Adrevolver : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@media.adrevolver[2].txt -> TrackingCookie.Adrevolver : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@adtech[2].txt -> TrackingCookie.Adtech : Ignoré.
C:\Documents and Settings\chouchouk\Local Settings\Temp\Cookies\chouchouk@adtech[1].txt -> TrackingCookie.Adtech : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@advertising[1].txt -> TrackingCookie.Advertising : Ignoré.
C:\Documents and Settings\chouchouk\Local Settings\Temp\Cookies\chouchouk@advertising[2].txt -> TrackingCookie.Advertising : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@atdmt[2].txt -> TrackingCookie.Atdmt : Ignoré.
C:\Documents and Settings\chouchouk\Local Settings\Temp\Cookies\chouchouk@atdmt[2].txt -> TrackingCookie.Atdmt : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@bluestreak[2].txt -> TrackingCookie.Bluestreak : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@iv2.bluestreak[1].txt -> TrackingCookie.Bluestreak : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@casinotropez[1].txt -> TrackingCookie.Casinotropez : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@com[1].txt -> TrackingCookie.Com : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@fl01.ct2.comclick[2].txt -> TrackingCookie.Comclick : Ignoré.
C:\Documents and Settings\chouchouk\Local Settings\Temp\Cookies\chouchouk@fl01.ct2.comclick[1].txt -> TrackingCookie.Comclick : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@doubleclick[1].txt -> TrackingCookie.Doubleclick : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@estat[1].txt -> TrackingCookie.Estat : Ignoré.
C:\Documents and Settings\chouchouk\Local Settings\Temp\Cookies\chouchouk@estat[1].txt -> TrackingCookie.Estat : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@www.etracker[1].txt -> TrackingCookie.Etracker : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@adopt.euroclick[2].txt -> TrackingCookie.Euroclick : Ignoré.
C:\Documents and Settings\chouchouk\Local Settings\Temp\Cookies\chouchouk@adopt.euroclick[2].txt -> TrackingCookie.Euroclick : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@fastclick[2].txt -> TrackingCookie.Fastclick : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@ehg-dig.hitbox[2].txt -> TrackingCookie.Hitbox : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@hitbox[1].txt -> TrackingCookie.Hitbox : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@ivwbox[2].txt -> TrackingCookie.Ivwbox : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@search.live[1].txt -> TrackingCookie.Live : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@mediaplex[1].txt -> TrackingCookie.Mediaplex : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@ie.search.msn[1].txt -> TrackingCookie.Msn : Ignoré.
C:\Documents and Settings\chouchouk\Local Settings\Temp\Cookies\chouchouk@ie.search.msn[2].txt -> TrackingCookie.Msn : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@overture[1].txt -> TrackingCookie.Overture : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@ads.pointroll[2].txt -> TrackingCookie.Pointroll : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@serving-sys[1].txt -> TrackingCookie.Serving-sys : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@smartadserver[2].txt -> TrackingCookie.Smartadserver : Ignoré.
C:\Documents and Settings\chouchouk\Local Settings\Temp\Cookies\chouchouk@smartadserver[1].txt -> TrackingCookie.Smartadserver : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@specificclick[2].txt -> TrackingCookie.Specificclick : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@statcounter[2].txt -> TrackingCookie.Statcounter : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@toplist[1].txt -> TrackingCookie.Toplist : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@cms.trafficmp[1].txt -> TrackingCookie.Trafficmp : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@aem.solution.weborama[2].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@agircarrco.solution.weborama[2].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@aimfar.solution.weborama[1].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@boursoramabanque.solution.weborama[2].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@cetelem.solution.weborama[1].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@cnam.solution.weborama[2].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@dolcegusto16avril11juin.solution.weborama[2].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@francecredit2.solution.weborama[2].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@interhome.solution.weborama[2].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@intermarche.solution.weborama[2].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@nespresso.solution.weborama[2].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@samsung.solution.weborama[2].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@sanofi.solution.weborama[2].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@vivelledop.solution.weborama[2].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@weborama[2].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\chouchouk\Local Settings\Temp\Cookies\chouchouk@banquepopulaire.solution.weborama[2].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\chouchouk\Local Settings\Temp\Cookies\chouchouk@boursoramabanque.solution.weborama[2].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\chouchouk\Local Settings\Temp\Cookies\chouchouk@intermarche.solution.weborama[2].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\chouchouk\Local Settings\Temp\Cookies\chouchouk@weborama[2].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@content.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Ignoré.
C:\Documents and Settings\chouchouk\Cookies\chouchouk@zedo[1].txt -> TrackingCookie.Zedo : Ignoré.

Fin du rapport

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:40:18, on 05/01/2009
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Normal

Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\drivers\KodakCCS.exe
C:\WINNT\system\msddll.exe
C:\WINNT\system32\HPZipm12.exe
C:\WINNT\system32\MSTask.exe
C:\WINNT\system32\ScsiAccess.EXE
C:\WINNT\system32\stisvc.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\system32\mspmspsv.exe
C:\WINNT\Explorer.exe
C:\Program Files\QuickTime\qttask.exe
D:\HP Software Update\HPWuSchd2.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\WINNT\system32\sysmgr.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINNT\system32\internat.exe
C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
D:\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
C:\WINNT\system32\sistray.exe
C:\Program Files\MultiRes\MultiRes.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINNT\system32\NOTEPAD.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.jeuxvideo-flash.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ww17.ads.eorezo.com/cgi-bin/advert/getads.cgi?x_format=redirect&x_dp_id=9
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! ¤u¨ã¦C - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
F2 - REG:system.ini: Shell=Explorer.exe %WINDIR%\Mctray.exe
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: (no name) - {0EEDB912-C5FA-486F-8334-57288578C627} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: @msdxmLC.dll,-1@1033,&Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\system32\msdxm.ocx
O3 - Toolbar: Yahoo! ¤u¨ã¦C - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [HP Software Update] "D:\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [Microsoft(R) System Manager] C:\WINNT\system32\sysmgr.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [internat.exe] internat.exe
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\.DEFAULT\..\Run: [internat.exe] internat.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [^SetupICWDesktop] C:\Program Files\Internet Explorer\Connection Wizard\icwconn1.exe /desktop (User 'Default user')
O4 - Startup: MultiRes.lnk = C:\Program Files\MultiRes\MultiRes.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = D:\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Logiciel Kodak EasyShare.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
O4 - Global Startup: Utility Tray.lnk = C:\WINNT\system32\sistray.exe
O8 - Extra context menu item: Download with &Shareaza - res://C:\Program Files\Shareaza\Plugins\RazaWebHook.dll/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O16 - DPF: {05317530-B882-449D-9421-18D94FA3ED34} (OSInfo Control) - http://www.sis.com/ocis/OSInfo.cab
O16 - DPF: {16095503-786F-4097-AED6-5D567A26D760} (SiS_OCX Control) - http://www.sis.com/ocis/SiSAutodetectNT.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} (Driver Agent ActiveX Control) - http://plugin.driveragent.com/files/driveragent.cab
O23 - Service: Avira AntiVir Personal – Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal – Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe
O23 - Service: Events Log (Event) - Unknown owner - C:\WINNT\system32\drivers\csrss.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Kodak Camera Connection Software (KodakCCS) - Eastman Kodak Company - C:\WINNT\system32\drivers\KodakCCS.exe
O23 - Service: m43158.exe - Unknown owner - \\82.253.79.183\Admin$\m75034.exe (file missing)
O23 - Service: m46247.exe - Unknown owner - \\82.253.79.183\Admin$\m53463.exe (file missing)
O23 - Service: McAfee Security Agent Taskbar Extension. - Unknown owner - C:\WINNT\Mctray.exe (file missing)
O23 - Service: msddll - Unknown owner - C:\WINNT\system\msddll.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINNT\system32\HPZipm12.exe
O23 - Service: ptssvc - Unknown owner - D:\Kodak EasyShare software\bin\ptssvc.exe (file missing)
O23 - Service: ScsiAccess - Unknown owner - C:\WINNT\system32\ScsiAccess.EXE
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: VMwareService - Unknown owner - C:\WINNT\system\VMwareService.exe
O23 - Service: Windows Spool Services (WinSpoolSvc) - Unknown owner - C:\WINNT\system32\csrsc.exe (file missing)

Afficher la suite

A voir également:

Vundo ou autre chose?
Flouter quelque chose sur une photo - Guide
Image ours polaire sur une plage qui cache quelque chose - Forum Graphisme
Quelque chose de tres lent - Guide
Retrouver l'image originale après avoir fait des modifications ? ✓ - Forum Windows
Sur la plage... - Forum Loisirs / Divertissements

282 réponses

Réponse 141 / 282

lachoukrate Messages postés 234 Date d'inscription Statut Membre Dernière intervention 2

bonsoir ,
me revoila a la maison
Alors le scan s'est encore arrété. Oups !!! j'avais oublié de mettre l'ordi en mode sns echec :-( Voila ce que c'est de ne pas relire les directives...)
Bon je m'en tire pas trop mal en ayant constaté sur les deux rapports d'aujourd'hui, que je n'ai que le disque C à rescanner, les autres sont ok sur toutes les lignes (et y en a pas mal). Je relance donc le scan pour tout sauf D et E (deux heures de scan en moins).
C'est en forgeant qu'on devient forgeron. Vieux dicton sur lequel je vais méditer ce soir :-p.
Bon je crois que le rapport ne sera pret que pour demain, vu l'heure qu'il est.
Je voulais savoir, est ce que je peux faire le totalvirus (ou virscan) sur ce portable, vu qu'il a l'air super efficace ce programme, et qu'il voit des choses que bien d'autres ne voient pas? Il semble etre infecté lui aussi Topic : "petite vérif vundo pour gen-hackman".
Je te souhaite une bonne soirée en attendant :-)
A demain Lyonnais 92

Je viens de voir sur le forum un utilitaire qui se nomme rmvirut qui s'occupe de désinfecter win32/virut. Question de pure curiosité? Il fait quoi? Pas tous les virut? Ne t'inquietes pas je ne remets aucunement ton travail en question, c'est juste que j'essaie de comprendre les pourquoi du comment de l'informatique. Je m'instruis en gros ;-)
J'ai déjà étudié les rootkits, et demain qui sait...

Réponse 142 / 282

Lyonnais92 Messages postés 25159 Date d'inscription Statut Contributeur sécurité Dernière intervention 1 537

Bonsoir,

on verra demain.

Tu peux faire passer l'outil sur le portable.

Le risque est à la fin. tant que tu désinfectes ou que tu ognores, il n'y a pas de risque.

Le risque est de de supprimer un fichier système qui va empêcher l'ordi de démarrer et de tourner.

L'autre risque est que Gen-hackman ne puisse plus comprendre ce qui se passe.

Parle lui en d'abord.
====

Si tu as installé la console de récupération,que tu as le CD de Windows (pas celui de restauration, la version normale)

et la clé de 25 caractères, il y a toujours des solutions.

==========

Tu peux me donner la référence pour rmvirut ?

Je ne connais pas.

Contre ce type d'infection, plus la panoplie est large, meilleure sont les chances de s'en sortir.

Réponse 143 / 282

lachoukrate Messages postés 234 Date d'inscription Statut Membre Dernière intervention 2

tu tapes dans téléchargement (CCM) RMVIRUT et il te l'affiche direct,
je cherchais d'autres topics concernant les viruts pour infos et je suis tombée sur le téléchargement...
Pour le portable, j'attendrai. Je préfère faire ca de manière suivie et sure. Mais la personne qui me l'a remis en état m'avait donné un cd d'instal xp (gravé me semble t-il) avec la clé, mais au cas ou ... restons prudente :-)
Le scan n'en est qu'à 13% donc ce sera pour demain...
Bonne nuit :-)

Réponse 144 / 282

lachoukrate Messages postés 234 Date d'inscription Statut Membre Dernière intervention 2

bonjour lyonnais 92

voici un rapport avp tool
Normalement il a viré tous les virut q, il resterai un trojan.Proxy.W... et deux autres en quarantaine...

Scan
----
Scanned: 552909
Detected: 1870
Untreated: 1
Start time: 22/01/2009 00:01:08
Duration: 09:34:48
Finish time: 22/01/2009 09:35:56

Detected
--------
Status Object
------ ------
detected: Trojan program Trojan-Proxy.Win32.Agent.lv File: C:\WINNT\system32\sysfldr.dll//PE_Patch.UPX//UPX
will be disinfected when the computer is restarted: virus Virus.Win32.Virut.q File: C:\WINNT\system32\services.exe
will be disinfected when the computer is restarted: virus Virus.Win32.Virut.q File: C:\WINNT\system32\svchost.exe
will be disinfected when the computer is restarted: virus Virus.Win32.Virut.q File: C:\WINNT\System32\WBEM\WinMgmt.exe
will be disinfected when the computer is restarted: virus Virus.Win32.Virut.q File: C:\WINNT\TEMP\init.exe
will be disinfected when the computer is restarted: virus Virus.Win32.Virut.q File: C:\WINNT\Explorer.EXE
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\mshta.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\accwiz.exe
disinfected: virus Virus.Win32.Virut.q File: c:\program files\windows media player\mplayer2.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\rundll32.exe
disinfected: virus Virus.Win32.Virut.q File: c:\program files\outlook express\wab.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\clipbrd.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\cmmgr32.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\notepad.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\fontview.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\winhlp32.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\winhlp32.exe
disinfected: virus Virus.Win32.Virut.q File: c:\program files\windows nt\hypertrm.exe
disinfected: virus Virus.Win32.Virut.q File: c:\program files\java\jre1.6.0_07\bin\javaw.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\wscript.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Nokia\Nokia PC Suite 6\PCSyncLV.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\ntbackup.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\mmc.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\rasphone.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\perfmon.exe
disinfected: virus Virus.Win32.Virut.q File: c:\program files\windows nt\accessoires\wordpad.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\wpnpinst.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\drwtsn32.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\userinit.exe
deleted: virus Email-Worm.Win32.Mydoom.bj File: c:\winnt\system32\idaw64.exe
deleted: virus Email-Worm.Win32.Mydoom.bj File: c:\winnt\system32\deviceemulator.exe
deleted: virus Email-Worm.Win32.Mydoom.bj File: c:\winnt\system32\codeblocks.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\mobsync.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\QuickTime\qttask.exe
disinfected: virus Virus.Win32.Virut.q File: D:\HP Software Update\HPWuSchd2.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\Virus Removal Tool\is-V6CJF\startup.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\System32\reader_s.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\internat.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\reader_s.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\cisvc.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\clipsrv.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\dmadmin.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\faxsvc.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\drivers\KodakCCS.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\mnmsrvc.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\msdtc.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\netdde.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\HPZipm12.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\regsvc.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\locator.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\rsvp.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\scardsvr.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\mstask.exe
disinfected: virus Virus.Win32.Virut.q File: c:\program files\pc connectivity solution\servicelayer.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\spoolsv.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\stisvc.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\smlogsvc.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\tlntsvr.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\ups.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\utilman.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\mspmspsv.exe
deleted: Trojan program Trojan.Win32.Agent.amin File: C:\WINNT\ctfmon.exe
deleted: Trojan program Rootkit.Win32.Agent.jj File: c:\winnt\system32\drivers\protect.sys
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\setup\wmpocm.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\shmgrate.exe
disinfected: virus Virus.Win32.Virut.q File: c:\program files\outlook express\setup50.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\regsvr32.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\ie4uinit.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\updcrl.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\progman.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\logon.scr
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\taskmgr.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\zip.exe
disinfected: virus Virus.Win32.Virut.q File: c:\program files\windows nt\dialer.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\dxdiag.exe
disinfected: virus Virus.Win32.Virut.q File: d:\digital imaging\unload\hpqapkil.exe
disinfected: virus Virus.Win32.Virut.q File: d:\digital imaging\unload\hpqphunl.exe
disinfected: virus Virus.Win32.Virut.q File: d:\digital imaging\unload\hpqpsmon.exe
disinfected: virus Virus.Win32.Virut.q File: c:\program files\windows nt\accessoires\imagevue\kodakimg.exe
disinfected: virus Virus.Win32.Virut.q File: c:\program files\outlook express\msimn.exe
disinfected: virus Virus.Win32.Virut.q File: c:\program files\fichiers communs\microsoft shared\msinfo\msinfo32.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\mspaint.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\OpenOffice.org 2.4\program\scalc.exe
disinfected: virus Virus.Win32.Virut.q File: c:\program files\openoffice.org 2.4\program\soffice.exe
disinfected: virus Virus.Win32.Virut.q File: c:\program files\openoffice.org 2.4\program\swriter.exe
disinfected: virus Virus.Win32.Virut.q File: c:\program files\openoffice.org 2.4\program\unopkg.exe
disinfected: virus Virus.Win32.Virut.q File: c:\program files\outlook express\wabmig.exe
disinfected: virus Virus.Win32.Virut.q File: c:\winnt\system32\ntsd.exe
disinfected: virus Virus.Win32.Virut.q File: D:\Digital Imaging\bin\hpqtra08.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\sistray.exe
will be disinfected when the computer is restarted: virus Virus.Win32.Virut.q File: c:\documents and settings\chouchouk\bureau\virus removal tool\is-v6cjf\is-v6cjf.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\MultiRes\MultiRes.exe
quarantined: virus Heur.Trojan.Generic (modification) File: C:\pxd32.ex_
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\All Users\Application Data\Installations\{A982E6CC-9F0D-4948-9B18-BDFD55DE4A72}\Installations\CommonCustomActions\UninstCCD.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\All Users\Application Data\Installations\{A982E6CC-9F0D-4948-9B18-BDFD55DE4A72}\Installations\CommonCustomActions\UninstPCS.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\All Users\Application Data\Installations\{A982E6CC-9F0D-4948-9B18-BDFD55DE4A72}\Installations\CommonCustomActions\UninstPCSFEMsi.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_0_8288de\Setup.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_0_893f41\Setup.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\CCS\CCSStop.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\Ksu\KSUStop.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\IDEUtil\SISIDE.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\catchme.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\dumphive.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\md5file.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\moveex.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\process.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\reboot.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\swreg.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\swsc.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\vfind.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\catchme.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\apps\Cghtme.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\apps\cliptext.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\apps\download.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\apps\ERUNT.EXE
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\apps\FixPath.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\apps\grep.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\apps\isadmin.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\apps\LS.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\apps\MD5File.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\apps\moveex.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\apps\Process.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\apps\procs.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\apps\psservice.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\apps\RestartIt!.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\apps\sc.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\apps\sed.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\apps\SF.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\apps\shutdown.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\apps\Swreg.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\apps\swsc.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\apps\UnRAR.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\apps\unzip.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\apps\vfind.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\apps\WINMSG.EXE
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\apps\zip.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\SDFix\SDFix\apps\Replace\regedit.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\Virus Removal Tool\is-V6CJF\minst.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Bureau\Virus Removal Tool\is-V6CJF\drivers\drvins32.exe
deleted: Trojan program Trojan.Win32.Agent.bicr File: C:\Documents and Settings\chouchouk\Local Settings\temp\BN9.tmp
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Local Settings\Temporary Internet Files\Content.IE5\0XQNOP2J\lo[1].exe
deleted: Trojan program Backdoor.Win32.IRCBot.gdb File: C:\Documents and Settings\chouchouk\Local Settings\Temporary Internet Files\Content.IE5\0XQNOP2J\svch[1].txt
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\chouchouk\Local Settings\Temporary Internet Files\Content.IE5\0XQNOP2J\v1[1].exe
deleted: Trojan program Trojan.Win32.Agent.amin File: C:\Documents and Settings\chouchouk\Local Settings\Temporary Internet Files\Content.IE5\8X6RCXMZ\hell[1].txt
deleted: Trojan program Backdoor.Win32.Rbot.knh File: C:\Documents and Settings\chouchouk\Local Settings\Temporary Internet Files\Content.IE5\KXAV0TYF\ge[1].txt
deleted: Trojan program Trojan-Downloader.Win32.Agent.ayxy File: C:\Documents and Settings\chouchouk\Local Settings\Temporary Internet Files\Content.IE5\KXAV0TYF\sev[1].exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5\0NAZKDG1\0032[1].exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5\EPWPCVM9\0032[1].exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5\EPWPCVM9\0032[2].exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5\Y9S1GBUR\0032[1].exe
disinfected: virus Virus.Win32.Virut.q File: C:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5\Y9S1GBUR\0032[2].exe
disinfected: virus Virus.Win32.Virut.q File: C:\HaxFix\catchme.exe
disinfected: virus Virus.Win32.Virut.q File: C:\HaxFix\dumphive.exe
disinfected: virus Virus.Win32.Virut.q File: C:\HaxFix\md5file.exe
disinfected: virus Virus.Win32.Virut.q File: C:\HaxFix\moveex.exe
disinfected: virus Virus.Win32.Virut.q File: C:\HaxFix\process.exe
disinfected: virus Virus.Win32.Virut.q File: C:\HaxFix\reboot.exe
disinfected: virus Virus.Win32.Virut.q File: C:\HaxFix\swreg.exe
disinfected: virus Virus.Win32.Virut.q File: C:\HaxFix\swsc.exe
disinfected: virus Virus.Win32.Virut.q File: C:\HaxFix\vfind.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Fichiers communs\InstallShield\Professional\RunTime\0701\Intel32\DotNetInstaller.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Fichiers communs\Java\Update\Base Images\jre1.6.0.b105\patch-jre1.6.0_07.b06\launcher.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Fichiers communs\Java\Update\Base Images\jre1.6.0.b105\patch-jre1.6.0_07.b06\zipper.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Fichiers communs\Kodak\kodak_dr\inst_act.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Fichiers communs\Kodak\kodak_dr\KodakCCS.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Fichiers communs\Nokia\MPAPI\MPAPI3s.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Fichiers communs\PCSuite\DataLayer\DataLayer.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Hewlett-Packard\Diagnostics\HPSysDig.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\HP\Digital Imaging\bin\HP Promotions\JourneySoftware\HPpromo.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\HP\Temp\{342C7C88-D335-4bc2-8CF1-281857629CE2}\setup.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\HP\Temp\{342C7C88-D335-4bc2-8CF1-281857629CE2}\setup\hpzmsi01.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\HP\Temp\{342C7C88-D335-4bc2-8CF1-281857629CE2}\setup\hpzrcv01.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\HP\Temp\{342C7C88-D335-4bc2-8CF1-281857629CE2}\setup\hpzscr01.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\InstallShield Installation Information\{39345B45-A64A-4BA2-A235-F3632281A5A5}\Setup.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Internet Explorer\IE Uninstall\w2kexcp.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Java\jre1.6.0_07\bin\java-rmi.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Java\jre1.6.0_07\bin\java.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Java\jre1.6.0_07\bin\javacpl.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Java\jre1.6.0_07\bin\keytool.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Java\jre1.6.0_07\bin\kinit.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Java\jre1.6.0_07\bin\klist.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Java\jre1.6.0_07\bin\ktab.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Java\jre1.6.0_07\bin\orbd.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Java\jre1.6.0_07\bin\pack200.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Java\jre1.6.0_07\bin\policytool.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Java\jre1.6.0_07\bin\rmid.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Java\jre1.6.0_07\bin\rmiregistry.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Java\jre1.6.0_07\bin\servertool.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Java\jre1.6.0_07\bin\ssvagent.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Java\jre1.6.0_07\bin\tnameserv.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Java\jre1.6.0_07\bin\unpack200.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Kodak\Kodak EasyShare software\bin\ptssvc.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Kodak\Kodak EasyShare software\bin\ptswia.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Kodak\Kodak Utilities\kodnotif.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Nokia\Connectivity Cable Driver\setupext.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Nokia\Nokia PC Suite 6\MultimediaPlayer.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\OpenOffice.org 2.4\program\configimport.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\OpenOffice.org 2.4\program\crashrep.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\OpenOffice.org 2.4\program\gengal.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\OpenOffice.org 2.4\program\msfontextract.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\OpenOffice.org 2.4\program\msi-pkgchk.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\OpenOffice.org 2.4\program\nsplugin.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\OpenOffice.org 2.4\program\odbcconfig.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\OpenOffice.org 2.4\program\pkgchk.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\OpenOffice.org 2.4\program\senddoc.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\OpenOffice.org 2.4\program\setofficelang.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\OpenOffice.org 2.4\program\stclient_wrapper.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\OpenOffice.org 2.4\program\uno.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\OpenOffice.org 2.4\program\python-core-2.3.4\bin\python.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\OpenOffice.org 2.4\program\python-core-2.3.4\lib\distutils\command\wininst.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Outlook Express\OEMIG50.EXE
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\PC Connectivity Solution\NclBTHandler.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\QuickTime\QTInfo.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\acldiag.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\apcompat.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\apmstat.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\browstat.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\dcdiag.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\depends.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\dfsutil.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\dnscmd.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\dsacls.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\dsastat.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\dskprobe.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\dumpchk.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\filever.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\gflags.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\kill.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\ksetup.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\ktpass.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\ldp.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\memsnap.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\movetree.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\msicuu.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\msizap.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\netdiag.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\netdom.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\nltest.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\pmon.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\poolmon.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\pptpclnt.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\pptpsrv.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\pviewer.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\reg.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\remote.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\repadmin.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\replmon.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\rsdiag.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\rsdir.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\sdcheck.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\showaccs.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\sidwalk.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\snmputilg.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\tlist.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\windiff.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Support Tools\wsremote.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Trend Micro\HijackThis\chouchouk.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Tukanas Files Converter\UNWISE.EXE
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Tukanas Files Converter\zvprt40\uninstall.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Tukanas Files Converter\zvprt40\zvprt40_setup.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Windows Media Player\setup_wm.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Windows NT\Accessoires\ImageVue\kodakprv.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Yahoo!\Messenger\UNWISE.EXE
quarantined: virus Email-Worm.Win32.Joleee.w (modification) File: C:\Qoobox\Quarantine\C\WINNT\services.exe.vir
disinfected: virus Virus.Win32.Virut.q File: C:\ToolBar SD\pv.exe
disinfected: virus Virus.Win32.Virut.q File: C:\ToolBar SD\sed.exe
disinfected: virus Virus.Win32.Virut.q File: C:\ToolBar SD\setpath.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\delttsul.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\discover.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\fdsv.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\grep.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\InstFunc.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\IsUn040c.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\IsUninst.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\NIRCMD.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\sed.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\services.ex_
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SWREG.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SWSC.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SWXCACLS.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\TASKMAN.EXE
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\twunk_32.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\unvise32qt.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\upwizun.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\VFIND.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\welcome.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\winrep.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$MSI31Uninstall_KB893803v2$\msiexec.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUninstallKB842773$\spuninst\spuninst.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUninstallKB896358$\hh.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUninstallKB896423$\spoolsv.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUninstallKB911280$\ipsecmon.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUninstallKB913580$\mtstocom.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUninstallKB920213$\agentsvr.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUninstallKB923810$\kodakimg.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUninstallKB923810$\kodakprv.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUninstallKB937894$\mq1sync.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUninstallKB937894$\mqbkup.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUninstallKB937894$\mqmig.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUninstallKB937894$\mqsvc.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUninstallKB951066-OE6SP1-20080625.120000$\msimn.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUninstallKB951066-OE6SP1-20080625.120000$\oemig50.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUninstallKB951066-OE6SP1-20080625.120000$\wab.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUninstallKB951066-OE6SP1-20080625.120000$\wabmig.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUninstallKB952069_WM71$\logagent.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUninstallKB954600_WM41$\logagent.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUninstallQ828026$\spuninst\spuninst.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUpdateRollupPackUninstall$\chkdsk.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUpdateRollupPackUninstall$\cmd.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUpdateRollupPackUninstall$\fontview.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUpdateRollupPackUninstall$\grpconv.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUpdateRollupPackUninstall$\lsass.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUpdateRollupPackUninstall$\mstask.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUpdateRollupPackUninstall$\netdde.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUpdateRollupPackUninstall$\ntvdm.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUpdateRollupPackUninstall$\psxss.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUpdateRollupPackUninstall$\services.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUpdateRollupPackUninstall$\w32tm.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUpdateRollupPackUninstall$\winlogon.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\$NtUpdateRollupPackUninstall$\wordpad.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\ERDNT\Hiv-backup\ERDNT.EXE
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\ERDNT\subs\ERDNT.EXE
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\ERUNT\SDFIX\ERDNT.EXE
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\ERUNT\SDFIX_First_Run\ERDNT.EXE
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\inf\unregmp2.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\Installer\{17293791-C82E-476C-9997-9A0FF234A19B}\NewShortcut1_17293791C82E476C99979A0FF234A19B.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\Installer\{1E0FF527-971B-4BBF-83D1-987E8DEE437D}\soffice.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\Installer\{20FBC0A0-3160-4F14-83ED-3A74BB6B8C31}\NewShortcut1.A6CC6977_F7B4_4C0B_9510_BCD847D4BDB2.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\Installer\{64FC0C98-B035-4530-B15D-3D30610B6DF1}\HPSUShortcut2_936C42D08CEE4BDFB8CEC4BDC93C6CF8_1.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\Installer\{6F716DA0-398F-11D3-85E1-005004838609}\places.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\Installer\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}\icon.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\Installer\{8F7A4D82-B168-4F89-99C2-B9873EC877AF}\ARPPRODUCTICON.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\Installer\{9D8FEE90-0377-49A9-AEFB-525BDE549BA4}\NewShortcut1.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\Installer\{9D8FEE90-0377-49A9-AEFB-525BDE549BA4}\NewShortcut2.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\Installer\{9D8FEE90-0377-49A9-AEFB-525BDE549BA4}\NewShortcut3.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut11.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut12.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut13.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut4.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut5.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut6.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut7.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut8.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut9.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\TutorialSC.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\Installer\{FCDB1C92-03C6-4C76-8625-371224256091}\NewShortcut2.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\msagent\agentsvr.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\msiinst.tmp\msiexec.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\PixArt\Pac7302\AmCap.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\PixArt\Pac7302\PASnap.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dplaysvr.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dpnsvr.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dpvsetup.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dxdiag.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dxdllreg.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SiS\900\uninst.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\129d0763ba0ae24b3668bfe1e19bb3ec\msimn.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\129d0763ba0ae24b3668bfe1e19bb3ec\oemig50.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\129d0763ba0ae24b3668bfe1e19bb3ec\wab.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\129d0763ba0ae24b3668bfe1e19bb3ec\wabmig.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\254ef2369b4f2311a1e81cf87ee93d47\agentsvr.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\451374f30879ab6ad2ae664ac011bb74\msimn.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\451374f30879ab6ad2ae664ac011bb74\oemig50.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\451374f30879ab6ad2ae664ac011bb74\wab.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\451374f30879ab6ad2ae664ac011bb74\wabmig.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\chkdsk.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\cluscfg.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\clussvc.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\cmd.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\fltmc.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\fontview.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\grpconv.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\llssrv.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\lsass.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\msiexec.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\mstask.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\netdde.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\netmon.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\nsisapi.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\ntvdm.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\psxss.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\services.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\w32tm.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\winlogon.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\wins.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\wordpad.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\wms\nsisapi.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\6bd7eb68d000be3199ca46f3c39521ac\hh.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\7e2a6ab8c08390d6ca0624962723abb4\wm41\logagent.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\ad9c4c2a779933f83b51a49a2c88838d\msiexec.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\b5cae5c643ad60578df1bfab32fbcb38\verclsid.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\c5f6c1460fc9fb16a7608938dd04fb93\wm71\logagent.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\c5f6c1460fc9fb16a7608938dd04fb93\wm9\logagent.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\c5f6c1460fc9fb16a7608938dd04fb93\wm9l\logagent.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\f8be264a53925fc5b1c9668562b23365\ipsecmon.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\SoftwareDistribution\Download\fa4b0db30b43f91158e7521435d65d29\mmc.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\Speech\vcmd.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system\SmWizard.exe
deleted: Trojan program Backdoor.Win32.Agent.vuf File: C:\WINNT\system32\acctresg.dll
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\actmovie.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\arp.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\at.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\atmadm.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\attrib.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\bootok.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\bootvrfy.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\cacls.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\calc.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\cdplayer.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\charmap.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\CHKDSK.EXE
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\chkntfs.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\cidaemon.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\cipher.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\ckcnv.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\cleanmgr.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\cliconfg.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\cluster.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\CMD.EXE
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\cmdl32.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\cmirmdrv.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\cmmon32.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\cmstp.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\comclust.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\comp.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\compact.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\conime.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\control.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\convert.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\cscript.exe
deleted: Trojan program Trojan-Spy.Win32.Agent.bcq File: C:\WINNT\system32\csrssw.dll
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dcomcnfg.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\ddeshare.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\ddmprxy.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dfrgfat.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dfrgntfs.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\diantz.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\diskperf.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllhost.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllhst3g.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dmremote.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\doskey.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dplaysvr.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dpnsvr.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dpvsetup.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dvdplay.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dxdllreg.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\esentutl.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\eudcedit.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\eventvwr.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\expand.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\extrac32.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\faxcover.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\faxqueue.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\faxsend.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\fc.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\find.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\findstr.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\finger.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\fixmapi.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\fltmc.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\forcedos.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\freecell.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\GRPCONV.EXE
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\help.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\hostname.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\HPZinw12.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\ieshwiz.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\iexpress.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\ipconfig.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\ipsecmon.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\ipxroute.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\irftp.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\java.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\javaw.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\javaws.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\lights.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\lnkstub.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\lodctr.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\logagent.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\lpq.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\lpr.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\magnify.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\makecab.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\migpwd.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\mountvol.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\mplay32.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\mpnotify.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\mrinfo.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\msiregmv.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\msswchx.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\mstinit.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\narrator.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\nbtstat.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\nddeapir.exe
deleted: Trojan program Packed.Win32.Tibs File: C:\WINNT\system32\net.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\net1.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\netsh.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\netstat.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\nslookup.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\ntdsutil.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\NTVDM.EXE
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\nwscript.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\odbcad32.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\odbcconf.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\os2.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\os2srv.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\osk.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\packager.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\pathping.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\pax.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\pentnt.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\ping.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\posix.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\print.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\proquota.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\PROXYCFG.EXE
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\psxss.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\rasadmin.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\rasautou.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\rasdial.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\rcp.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\recover.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\reg.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\regedt32.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\regwiz.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\replace.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\rexec.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\route.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\routemon.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\rsh.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\rsm.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\rsnotify.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\runas.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\runonce.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\savedump.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\scrnsave.scr
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\secedit.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\sethc.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\setreg.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\setup.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\sfc.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\shrpubw.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\sigverif.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\skeys.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\sndrec32.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\sndvol32.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\sol.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\sort.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\sp4iis.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\spiisupd.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\ss3dfo.scr
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\ssbezier.scr
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\ssflwbox.scr
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\ssmarque.scr
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\ssmaze.scr
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\ssmyst.scr
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\sspipes.scr
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\ssstars.scr
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\sstext3d.scr
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\stimon.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\subst.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\syncapp.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\syskey.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\sysocmgr.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\systray.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\taskman.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\tcmsetup.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\tcpsvcs.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\telnet.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\themes.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\tlntadmn.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\tlntsess.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\tracert.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\unlodctr.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\verclsid.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\verifier.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\w32tm.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\wextract.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\winmine.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\winmsd.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\winver.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\write.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\wupdmgr.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\wzcsetup.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\xcopy.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\Écran de veille des chaînes.scr
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\Com\comrepl.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\Com\comrereg.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\accwiz.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\actmovie.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\admin.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\agentsvr.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\arp.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\at.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\atmadm.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\attrib.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\author.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\bootok.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\bootvrfy.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\cacls.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\calc.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\cb32.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\cdplayer.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\cfgwiz.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\charmap.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\chkdsk.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\chkntfs.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\cidaemon.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\cipher.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\cisvc.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\ckcnv.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\cleanmgr.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\clipbrd.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\clipsrv.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\ClusCfg.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\clussvc.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\cluster.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\CMD.EXE
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\cmdl32.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\cmmgr32.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\cmmon32.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\cmstp.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\comclust.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\comp.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\compact.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\comrepl.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\comrereg.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\conf.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\conime.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\control.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\convert.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\convlog.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\cplexe.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\cscript.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\dcomcnfg.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\ddeshare.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\ddmprxy.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\delttsul.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\dfrgfat.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\dfrgntfs.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\dialer.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\diantz.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\discover.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\diskperf.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\dllhost.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\dllhst3g.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\dmadmin.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\dmremote.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\doskey.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\dplaysvr.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\drwtsn32.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\dxdiag.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\encinst.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\esentutl.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\eudcedit.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\eventvwr.exe
disinfected: virus Virus.Win32.Virut.q File: C:\WINNT\system32\dllcache\evntcmd.exe
disinfe

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question

Réponse 145 / 282

Lyonnais92 Messages postés 25159 Date d'inscription Statut Contributeur sécurité Dernière intervention 1 537

Bonjour,

le rapport est trop long pour passer en une fois.

Si il est trop compliqué de le poster en totalité, pourrais tu mettre les 200 dernières lignes.

Réponse 146 / 282

lachoukrate Messages postés 234 Date d'inscription Statut Membre Dernière intervention 2

Re,
Je n'ai pas vérifié si il y en avait 200, mais ca va jusqu'au bout.
Désolée je n'avais pas fait attention :-(

isinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\ssstars.scr
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\sstext3d.scr
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\stimon.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\subst.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\svchost.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\syncapp.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\sysinfo.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\syskey.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\sysocmgr.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\systray.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\taskkill.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\tasklist.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\taskman.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\taskmgr.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\tcmsetup.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\tcpsvcs.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\tcptest.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\telnet.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\tftp.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\tintlphr.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\tintsetp.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\tlntadmn.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\tlntsess.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\tlntsvr.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\tourstrt.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\tracerpt.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\tracert.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\tracert6.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\tscon.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\tscupgrd.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\tsdiscon.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\tskill.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\tsprof.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\tsshutdn.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\twunk_32.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\typeperf.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\unlodctr.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\unregmp2.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\unsecapp.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\uploadm.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\upnpcont.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\ups.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\userinit.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\utilman.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\verifier.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\vssadmin.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\vssvc.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\w32tm.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\wab.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\wabmig.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\wb32.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\wbemtest.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\wextract.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\wiaacmgr.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\winhlp32.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\winhstb.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\winlogon.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\winmgmt.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\winmine.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\winmsd.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\winver.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\wmiadap.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\wmiapsrv.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\wmic.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\wmiprvse.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\wmplayer.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\wordpad.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\wpabaln.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\wpnpinst.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\write.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\wscntfy.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\wscript.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\wuauclt1.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\wupdmgr.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\xcopy.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\dllcache\zclientm.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\Macromed\Shockwave 10\SwInit.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\Macromed\Shockwave 10\UNWISE.EXE
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\npp\nppagent.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\oobe\msoobe.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\oobe\oobebaln.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\Restore\rstrui.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\Restore\srdiag.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\spool\drivers\w32x86\3\hpzcfg12.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\spool\drivers\w32x86\3\hpzeng12.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\spool\drivers\w32x86\3\hpzpre12.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\spool\drivers\w32x86\3\hpzstc12.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\spool\drivers\w32x86\3\hpzstw12.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\spool\drivers\w32x86\3\hpztbu12.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\spool\drivers\w32x86\3\hpztbx12.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\spool\drivers\w32x86\hppsc_1600_seriese878\hpzcfg12.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\spool\drivers\w32x86\hppsc_1600_seriese878\hpzeng12.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\spool\drivers\w32x86\hppsc_1600_seriese878\hpzpre12.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\spool\drivers\w32x86\hppsc_1600_seriese878\hpzstc12.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\spool\drivers\w32x86\hppsc_1600_seriese878\hpzstw12.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\spool\drivers\w32x86\hppsc_1600_seriese878\hpztbu12.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\spool\drivers\w32x86\hppsc_1600_seriese878\hpztbx12.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\URTTemp\regtlib.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\usmt\migload.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\usmt\migwiz.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\usmt\migwiz_a.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\wbem\mofcomp.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\wbem\scrcons.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\wbem\unsecapp.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\wbem\wbemtest.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\wbem\winmgmt.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\wbem\wmiadap.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\wbem\wmiapsrv.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\wbem\wmic.exe
disinfected: virus Virus.Win32.Virut.q File: E:\WINDOWS\system32\wbem\wmiprvse.exe
deleted: virus Worm.Win32.AutoRun.edc File: F:\autorun.inf
disinfected: virus Virus.Win32.Virut.q File: F:\_OTMoveIt\MovedFiles\01122009_151243\DOCUME~1\CHOUCH~1\LOCALS~1\Temp\csrssc.exe
deleted: virus Net-Worm.Win32.Kido.fw File: F:\RECYCLER\S-5-3-42-2819952290-8240758988-879315005-3665\jwgkvsq.vmx
deleted: Trojan program Packed.Win32.Black.a File: F:\RECYCLER\S-1-6-21-2434476501-1644491937-600003330-1213\autorunme.exe
disinfected: virus Virus.Win32.Virut.q File: F:\registrycleaner_en\RegCleaner.exe
disinfected: virus Virus.Win32.Virut.q File: C:\Program Files\Windows Media Player\logagent.exe
deleted: virus Email-Worm.Win32.Mydoom.bj File: c:\winnt\system32\idaw64.exe//PE_Patch.UPX//UPX
deleted: virus Email-Worm.Win32.Mydoom.bj File: c:\winnt\system32\deviceemulator.exe//PE_Patch.UPX//UPX
deleted: virus Email-Worm.Win32.Mydoom.bj File: c:\winnt\system32\codeblocks.exe//PE_Patch.UPX//UPX
deleted: Trojan program Trojan-Downloader.Win32.Agent.ayxy File: C:\Documents and Settings\chouchouk\Local Settings\Temporary Internet Files\Content.IE5\KXAV0TYF\sev[1].exe//PE_Patch.UPX//UPX
deleted: Trojan program Trojan-Dropper.Win32.Small.azk File: c:\winnt\temp\0.exe//PE_Patch.UPX//UPX

Events
------
Time Name Status Reason
---- ---- ------ ------
22/01/2009 00:01:47 Running module: smss.exe\smss.exe ok scanned

Statistics
----------
Object Scanned Detected Untreated Deleted Moved to Quarantine Archives Packed files Password protected Corrupted
------ ------- -------- --------- ------- ------------------- -------- ------------ ------------------ ---------

Settings
--------
Parameter Value
--------- -----
Security Level Recommended
Action Prompt for action when the scan is complete
Run mode Manually
File types Scan all files
Scan only new and changed files No
Scan archives All
Scan embedded OLE objects All
Skip if object is larger than No
Skip if scan takes longer than No
Parse email formats No
Scan password-protected archives No
Enable iChecker technology No
Enable iSwift technology No
Show detected threats on "Detected" tab Yes
Rootkits search Yes
Deep rootkits search No
Use heuristic analyzer Yes

Quarantine
----------
Status Object Size Added
------ ------ ---- -----

Backup
------
Status Object Size
------ ------ ----

Réponse 147 / 282

Lyonnais92 Messages postés 25159 Date d'inscription Statut Contributeur sécurité Dernière intervention 1 537

Re,

refais tourner Combofix et poste le rapport.

=======

Tu as un antivirus installé ?

Si oui, lance un scan du poste de travail en réglant sur "interactif" comme première action et ne "ne rien faire" comme seconde.

Ignore ce qu'il détecte.

Poste le rapport.

================

As tu RSIT installé (j'ai la flemme de vérifier).

Si oui, fais le tourner et poste le rapport.

Si non,

Télécharge ici :

http://images.malwareremoval.com/random/RSIT.exe

random's system information tool (RSIT) par random/random et sauvegarde-le sur le Bureau.

Double-clique sur RSIT.exe afin de lancer RSIT.

Lis le contenu de l'écran Disclaimer puis clique sur Continue (si tu acceptes les conditions).

Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.

Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront.

Poste le contenu de log.txt (<<qui sera affiché)
.

NB : Les rapports sont sauvegardés dans le dossier C:\rsit

========================

En gros, je cherche à vérifier si tout virut q a été éradiqué.

Réponse 148 / 282

lachoukrate Messages postés 234 Date d'inscription Statut Membre Dernière intervention 2

rapport combofix :

ComboFix 09-01-21.02 - chouchouk 22/01/2009 15:14:35.4 - NTFSx86
Microsoft Windows 2000 Professionnel 5.0.2195.4.1252.1.1036.18.480.308 [GMT 1:00]
Lancé depuis: c:\documents and settings\chouchouk\Bureau\lachoukrate.exe
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\chouchouk\reader_s.exe
c:\winnt\services.exe
c:\winnt\system32\6.tmp
c:\winnt\system32\bio-cmd1.exe
c:\winnt\system32\drivers\protect.sys
c:\winnt\system32\reader_s.exe
c:\winnt\system32\sysfldr.dll
c:\winnt\temp\[u]0/u.EXE

[COLOR=RED] c:\winnt\system32\userinit.exe . . . est infecté!!/COLOR

[COLOR=RED] c:\winnt\system32\services.exe . . . est infecté!!/COLOR

[COLOR=RED] c:\winnt\system32\svchost.exe . . . est infecté!!/COLOR

[COLOR=RED] c:\winnt\system32\spoolsv.exe . . . est infecté!!/COLOR

[COLOR=RED] c:\winnt\explorer.exe . . . est infecté!!/COLOR

.
((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_LANMANWORKSTATIONW32TIME
-------\Legacy_LPTRDCSRV
-------\Legacy_PROTECT
-------\Service_lanmanworkstationW32Time
-------\Service_protect
-------\Service_restore

((((((((((((((((((((((((((((( Fichiers créés du 2008-12-22 au 2009-01-22 ))))))))))))))))))))))))))))))))))))
.

2009-01-22 15:23 . 09-01-22 15:23 46,080 --a------ c:\winnt\system32\hhupd.exe
2009-01-22 15:23 . 09-01-22 15:23 43,008 --a------ c:\winnt\services.ex_
2009-01-22 14:46 . 09-01-22 14:46 58,368 --a------ c:\winnt\system32\i386kd.exe
2009-01-22 13:43 . 09-01-22 13:43 57,856 --a------ c:\winnt\system32\gcc.exe
2009-01-22 13:38 . 09-01-22 13:38 465,742 ---h----- c:\winnt\ShellIconCache
2009-01-22 13:04 . 09-01-22 13:04 91,136 --a------ c:\winnt\system32\vmware-ufad.exe
2009-01-22 12:29 . 09-01-22 12:29 123,904 --a------ c:\winnt\system32\7z.exe
2009-01-21 19:49 . 09-01-21 20:02 131 --a-s---- c:\winnt\system32\3756265427.dat
2009-01-21 17:21 . 09-01-21 17:22 7,168 --a------ c:\winnt\system32\drivers\utqxndm3.sys
2009-01-21 13:48 . 08-07-08 13:54 148,496 --a------ c:\winnt\system32\drivers\86179875.sys
2009-01-21 13:14 . 09-01-21 20:19 149,420 --a------ c:\winnt\system32\bio-22-10-10.exe
2009-01-21 13:13 . 09-01-21 19:49 54,424 --a------ c:\winnt\system32\head-22-10-10.exe
2009-01-19 23:47 . 09-01-19 23:54 1,429 --a------ c:\winnt\imsins.BAK
2009-01-19 23:44 . 09-01-22 15:52 54,156 --ah----- c:\winnt\QTFont.qfn
2009-01-19 23:44 . 09-01-22 15:19 1,409 --a------ c:\winnt\QTFont.for
2009-01-19 18:31 . 09-01-22 09:16 254,976 --a------ c:\documents and settings\chouchouk\swreg.exe
2009-01-19 18:31 . 09-01-22 09:16 210,944 --a------ c:\documents and settings\chouchouk\catchme.exe
2009-01-19 18:31 . 09-01-22 09:16 117,604 --a------ c:\documents and settings\chouchouk\vfind.exe
2009-01-19 18:31 . 09-01-22 09:16 116,736 --a------ c:\documents and settings\chouchouk\dumphive.exe
2009-01-19 18:31 . 09-01-22 09:16 109,568 --a------ c:\documents and settings\chouchouk\swsc.exe
2009-01-19 18:31 . 09-01-22 09:16 105,472 --a------ c:\documents and settings\chouchouk\reboot.exe
2009-01-19 18:31 . 09-01-22 09:16 86,016 --a------ c:\documents and settings\chouchouk\process.exe
2009-01-19 18:31 . 09-01-22 09:16 72,192 --a------ c:\documents and settings\chouchouk\md5file.exe
2009-01-19 18:31 . 09-01-22 09:16 71,168 --a------ c:\documents and settings\chouchouk\moveex.exe
2009-01-16 01:26 . 09-01-16 01:24 512,214 --a------ C:\HaxFix.exe
2009-01-16 01:25 . 09-01-19 18:32 <DIR> d-------- C:\HaxFix
2009-01-16 00:24 . 09-01-16 00:24 <DIR> d-------- c:\winnt\system32\Kaspersky Lab
2009-01-14 15:57 . 09-01-14 15:57 <DIR> d-------- c:\program files\Support Tools
2009-01-14 12:52 . 09-01-21 09:22 168,960 --a------ C:\ipasj.exe
2009-01-12 18:09 . 09-01-12 18:09 186,592 --a------ c:\winnt\system32\drivers\windrvr6.sys
2009-01-11 22:07 . 09-01-11 22:07 0 --a------ c:\winnt\nsreg.dat
2009-01-11 22:01 . 09-01-11 22:01 7,679,120 --a------ c:\program files\setupmozilla.exe
2009-01-11 15:20 . 09-01-11 16:59 <DIR> d-------- C:\ToolBar SD
2009-01-11 15:19 . 09-01-11 15:19 343,017 --a------ c:\program files\ToolBarSD.exe
2009-01-10 19:25 . 09-01-10 19:25 144,034 --a------ C:\Sans titre.bmp
2009-01-10 11:03 . 09-01-10 11:03 24,172 --a------ c:\winnt\system32\syncps.dl_
2009-01-09 21:02 . 09-01-09 21:02 <DIR> d-------- c:\program files\MSXML 4.0
2009-01-09 20:56 . 09-01-09 20:56 <DIR> d-------- c:\program files\microsoft frontpage
2009-01-09 11:14 . 09-01-09 11:14 <DIR> d-------- c:\winnt\ERUNT
2009-01-08 00:34 . 09-01-22 09:21 52,736 --a------ c:\winnt\system32\reg.exe
2009-01-08 00:29 . 09-01-16 09:16 <DIR> d-------- c:\program files\Navilog1
2009-01-07 03:51 . 09-01-07 03:51 <DIR> d-------- c:\documents and settings\chouchouk\Application Data\Malwarebytes
2009-01-07 03:44 . 09-01-07 03:44 <DIR> d-------- c:\documents and settings\All Users\Application Data\Malwarebytes
2009-01-07 01:42 . 07-05-30 13:10 10,872 --a------ c:\winnt\system32\drivers\AvgAsCln.sys
2009-01-07 01:29 . 09-01-20 17:07 <DIR> d-------- C:\hijackthis
2009-01-06 23:52 . 09-01-06 23:52 <DIR> d-------- c:\program files\Runtimeware.com
2009-01-06 23:52 . 04-03-09 01:00 609,824 --a------ c:\winnt\system32\comctl32.ocx
2009-01-05 22:04 . 09-01-05 22:04 <DIR> d-------- c:\documents and settings\chouchouk\Application Data\AVGTOOLBAR
2009-01-05 22:00 . 09-01-05 22:00 <DIR> d-------- c:\program files\AVG
2009-01-05 13:34 . 09-01-05 13:35 <DIR> d-------- c:\program files\CCleaner
2009-01-05 13:30 . 09-01-05 13:30 <DIR> d-------- c:\program files\Trend Micro
2009-01-04 23:35 . 09-01-04 23:35 <DIR> d-------- c:\documents and settings\chouchouk\Application Data\Grisoft
2009-01-04 23:32 . 09-01-04 23:32 <DIR> d-------- c:\documents and settings\All Users\Application Data\Grisoft
2009-01-03 19:24 . 07-10-25 09:00 230,912 -----c--- c:\winnt\system32\dllcache\wmasf.dll
2009-01-03 19:24 . 08-02-15 14:24 96,528 --a------ c:\winnt\system32\dnsrslvr.dll
2009-01-03 16:08 . 09-01-19 15:57 <DIR> d-a------ c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2009-01-03 15:55 . 09-01-03 15:55 <DIR> d-------- c:\winnt\BDOSCAN8
2009-01-03 15:08 . 08-10-16 14:08 27,672 --a------ c:\winnt\system32\wuapi.dll.mui
2009-01-01 16:28 . 09-01-01 16:28 <DIR> d-------- c:\documents and settings\chouchouk\Application Data\dvdcss

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-01-22 14:23 29,184 ----a-w c:\winnt\system32\reader_s.exe
2009-01-22 08:21 96,768 -c--a-w c:\winnt\system32\secedit.exe
2009-01-22 08:20 93,184 -c--a-w c:\winnt\system32\diskperf.exe
2009-01-22 08:19 467,456 -c--a-w c:\winnt\welcome.exe
2009-01-22 08:19 231,424 -c--a-w c:\winnt\winrep.exe
2009-01-22 08:19 148,992 -c--a-w c:\winnt\upwizun.exe
2009-01-22 08:18 74,752 -c--a-w c:\winnt\discover.exe
2009-01-22 08:18 58,880 -c--a-w c:\winnt\twunk_32.exe
2009-01-22 08:18 535,040 -c--a-w c:\winnt\IsUn040c.exe
2009-01-22 08:18 37,888 -c--a-w c:\winnt\delttsul.exe
2009-01-22 08:18 339,456 ----a-w c:\winnt\IsUninst.exe
2009-01-22 08:18 217,088 ----a-w c:\winnt\unvise32qt.exe
2009-01-22 08:18 171,756 -c--a-w c:\winnt\InstFunc.exe
2009-01-22 08:18 103,936 -c--a-w c:\winnt\TASKMAN.EXE
2009-01-22 08:13 86,528 ----a-w c:\winnt\NOTEPAD.EXE
2009-01-21 08:09 280,064 ----a-w c:\winnt\system32\msiexec.exe
2009-01-21 08:08 87,552 ----a-w c:\winnt\system32\notepad.exe
2009-01-21 08:08 44,544 ----a-w c:\winnt\hh.exe
2009-01-21 08:08 213,504 ----a-w c:\winnt\regedit.exe
2009-01-16 09:13 --------- d-----w c:\documents and settings\chouchouk\Application Data\OpenOffice.org2
2008-10-23 05:27 237,840 ----a-w c:\winnt\system32\GDI32.DLL
2008-03-19 11:34 271 ---h--w c:\program files\desktop.ini
2003-06-23 12:00 32,528 -c--a-w c:\winnt\inf\wbfirdma.sys
.

------- Sigcheck -------

03-06-23 13:00 19216 3a8b8be18658ac004bd0819c3d0eff4a c:\winnt\system32\svchost.exe
09-01-22 09:25 182784 bf4acd8f418c612f3a88796048888b5e c:\winnt\system32\dllcache\svchost.exe

03-06-23 13:00 255760 bfdb123e98f1becd9533d514a8d4ee49 c:\winnt\explorer.exe
09-01-22 09:23 354304 bbf45650e464f56c2f39997d7c36dd81 c:\winnt\system32\dllcache\explorer.exe

09-01-22 09:19 168448 9e8ab187562a0c3d5a48b7dc427f17ad c:\winnt\$NtUpdateRollupPackUninstall$\services.exe
09-01-22 09:20 237568 93855c2e32d08cb3274cd743b81338b7 c:\winnt\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\services.exe
05-06-03 11:25 106768 db1345acfc881a1b1579cee3e22bd542 c:\winnt\system32\SERVICES.EXE
09-01-22 09:25 270336 5c42307a446287e5010838c99d81644a c:\winnt\system32\dllcache\services.exe

09-01-22 09:19 121856 3d4a2c2fe6be17f7773e226af0a63781 c:\winnt\$NtUninstallKB896423$\spoolsv.exe
09-01-22 09:14 124416 0b58b5de1c59b896d6cabb353736a20a c:\winnt\system32\spoolsv.exe
09-01-22 09:25 156672 0eac8b35cd53bea04d2648a6add43f6e c:\winnt\system32\dllcache\spoolsv.exe

08-10-16 14:09 51224 c7abd7cfda6a1ae6caa0c18b2a50f349 c:\winnt\system32\wuauclt.exe
07-07-30 19:19 53080 5042abb5ddccf2c9afc51b690901a59f c:\winnt\system32\dllcache\wuauclt.exe

09-01-22 09:13 183296 98edccec7e6c84ac9af265b7da29fb9f c:\winnt\system32\userinit.exe
09-01-22 09:25 128000 bd51f4e406f2ca0b849e1e444b58170d c:\winnt\system32\dllcache\userinit.exe
.
((((((((((((((((((((((((((((( snapshot_mar. 2009-01-20_16.46.58.34 )))))))))))))))))))))))))))))))))))))))))
.
- 2003-06-23 12:00:00 75,776 -c----w c:\winnt\$MSI31Uninstall_KB893803v2$\msiexec.exe
+ 2009-01-22 08:19:03 97,280 -c--a-w c:\winnt\$MSI31Uninstall_KB893803v2$\msiexec.exe
- 2004-10-15 04:38:56 183,296 -c--a-w c:\winnt\$NtUninstallKB842773$\spuninst\spuninst.exe
+ 2009-01-22 08:19:04 204,800 -c--a-w c:\winnt\$NtUninstallKB842773$\spuninst\spuninst.exe
- 2003-06-23 12:00:00 22,016 -c----w c:\winnt\$NtUninstallKB896358$\hh.exe
+ 2009-01-22 08:19:05 43,520 -c--a-w c:\winnt\$NtUninstallKB896358$\hh.exe
- 2003-06-23 12:00:00 56,592 -c--a-w c:\winnt\$NtUninstallKB896423$\spoolsv.exe
+ 2009-01-22 08:19:05 121,856 -c--a-w c:\winnt\$NtUninstallKB896423$\spoolsv.exe
- 2003-06-23 12:00:00 41,232 -c--a-w c:\winnt\$NtUninstallKB911280$\ipsecmon.exe
+ 2009-01-22 08:19:05 62,464 -c--a-w c:\winnt\$NtUninstallKB911280$\ipsecmon.exe
- 2003-06-23 12:00:00 195,344 -c--a-w c:\winnt\$NtUninstallKB913580$\mtstocom.exe
+ 2009-01-22 08:19:06 216,576 -c--a-w c:\winnt\$NtUninstallKB913580$\mtstocom.exe
- 2003-06-23 12:00:00 286,480 -c--a-w c:\winnt\$NtUninstallKB920213$\agentsvr.exe
+ 2009-01-22 08:19:08 307,712 -c--a-w c:\winnt\$NtUninstallKB920213$\agentsvr.exe
- 2003-06-23 12:00:00 546,576 -c--a-w c:\winnt\$NtUninstallKB923810$\kodakimg.exe
+ 2009-01-22 08:19:10 567,808 -c--a-w c:\winnt\$NtUninstallKB923810$\kodakimg.exe
- 2003-06-23 12:00:00 88,336 -c----w c:\winnt\$NtUninstallKB923810$\kodakprv.exe
+ 2009-01-22 08:19:10 109,568 -c--a-w c:\winnt\$NtUninstallKB923810$\kodakprv.exe
- 2003-06-23 12:00:00 25,360 -c--a-w c:\winnt\$NtUninstallKB937894$\mq1sync.exe
+ 2009-01-22 08:19:11 46,592 -c--a-w c:\winnt\$NtUninstallKB937894$\mq1sync.exe
- 2003-06-23 12:00:00 38,672 -c----w c:\winnt\$NtUninstallKB937894$\mqbkup.exe
+ 2009-01-22 08:19:11 59,904 -c--a-w c:\winnt\$NtUninstallKB937894$\mqbkup.exe
- 2003-06-23 12:00:00 109,328 -c----w c:\winnt\$NtUninstallKB937894$\mqmig.exe
+ 2009-01-22 08:19:12 130,560 -c--a-w c:\winnt\$NtUninstallKB937894$\mqmig.exe
- 2003-06-23 12:00:00 25,360 -c----w c:\winnt\$NtUninstallKB937894$\mqsvc.exe
+ 2009-01-22 08:19:13 46,592 -c--a-w c:\winnt\$NtUninstallKB937894$\mqsvc.exe
- 2002-08-30 17:08:12 101,376 -c----w c:\winnt\$NtUninstallKB951066-OE6SP1-20080625.120000$\msimn.exe
- 2002-08-30 17:08:12 70,656 -c----w c:\winnt\$NtUninstallKB951066-OE6SP1-20080625.120000$\oemig50.exe
- 2002-08-30 17:08:34 55,808 -c----w c:\winnt\$NtUninstallKB951066-OE6SP1-20080625.120000$\wab.exe
- 2002-08-30 17:08:34 203,264 -c----w c:\winnt\$NtUninstallKB951066-OE6SP1-20080625.120000$\wabmig.exe
- 2008-06-19 06:39:26 76,319 -c----w c:\winnt\$NtUninstallKB952069_WM71$\logagent.exe
- 2003-06-23 12:00:00 76,560 -c----w c:\winnt\$NtUninstallKB954600_WM41$\logagent.exe
- 2003-10-19 11:48:52 153,088 -c--a-w c:\winnt\$NtUninstallQ828026$\spuninst\spuninst.exe
+ 2009-01-22 08:19:17 174,592 -c--a-w c:\winnt\$NtUninstallQ828026$\spuninst\spuninst.exe
- 2003-06-23 12:00:00 123,152 -c--a-w c:\winnt\$NtUpdateRollupPackUninstall$\chkdsk.exe
+ 2009-01-22 08:19:18 144,384 -c--a-w c:\winnt\$NtUpdateRollupPackUninstall$\chkdsk.exe
- 2003-06-23 12:00:00 294,672 -c----w c:\winnt\$NtUpdateRollupPackUninstall$\cmd.exe
+ 2009-01-22 08:19:19 315,904 -c--a-w c:\winnt\$NtUpdateRollupPackUninstall$\cmd.exe
- 2003-06-23 12:00:00 116,496 -c--a-w c:\winnt\$NtUpdateRollupPackUninstall$\fontview.exe
+ 2009-01-22 08:19:19 137,728 -c--a-w c:\winnt\$NtUpdateRollupPackUninstall$\fontview.exe
- 2003-06-23 12:00:00 55,568 -c----w c:\winnt\$NtUpdateRollupPackUninstall$\grpconv.exe
+ 2009-01-22 08:19:20 76,800 -c--a-w c:\winnt\$NtUpdateRollupPackUninstall$\grpconv.exe
- 2003-06-23 12:00:00 53,520 -c----w c:\winnt\$NtUpdateRollupPackUninstall$\lsass.exe
+ 2009-01-22 08:19:20 74,752 -c--a-w c:\winnt\$NtUpdateRollupPackUninstall$\lsass.exe
- 2003-06-23 12:00:00 134,928 -c--a-w c:\winnt\$NtUpdateRollupPackUninstall$\mstask.exe
+ 2009-01-22 08:19:22 156,160 -c--a-w c:\winnt\$NtUpdateRollupPackUninstall$\mstask.exe
- 2003-06-23 12:00:00 123,664 -c----w c:\winnt\$NtUpdateRollupPackUninstall$\netdde.exe
+ 2009-01-22 08:19:23 144,896 -c--a-w c:\winnt\$NtUpdateRollupPackUninstall$\netdde.exe
- 2003-06-23 12:00:00 441,616 -c----w c:\winnt\$NtUpdateRollupPackUninstall$\ntvdm.exe
+ 2009-01-22 08:19:24 462,848 -c--a-w c:\winnt\$NtUpdateRollupPackUninstall$\ntvdm.exe
- 2003-06-23 12:00:00 232,208 -c----w c:\winnt\$NtUpdateRollupPackUninstall$\psxss.exe
+ 2009-01-22 08:19:25 253,440 -c--a-w c:\winnt\$NtUpdateRollupPackUninstall$\psxss.exe
- 2003-06-23 12:00:00 103,184 -c--a-w c:\winnt\$NtUpdateRollupPackUninstall$\services.exe
+ 2009-01-22 08:19:26 168,448 -c--a-w c:\winnt\$NtUpdateRollupPackUninstall$\services.exe
- 2003-06-23 12:00:00 71,952 -c----w c:\winnt\$NtUpdateRollupPackUninstall$\w32tm.exe
+ 2009-01-22 08:19:26 93,184 -c--a-w c:\winnt\$NtUpdateRollupPackUninstall$\w32tm.exe
- 2003-06-23 12:00:00 200,464 -c----w c:\winnt\$NtUpdateRollupPackUninstall$\winlogon.exe
+ 2009-01-22 08:19:28 221,696 -c--a-w c:\winnt\$NtUpdateRollupPackUninstall$\winlogon.exe
- 2003-06-23 12:00:00 202,512 -c----w c:\winnt\$NtUpdateRollupPackUninstall$\wordpad.exe
+ 2009-01-22 08:19:29 223,744 -c--a-w c:\winnt\$NtUpdateRollupPackUninstall$\wordpad.exe
- 2005-10-20 19:02:28 177,664 ----a-w c:\winnt\ERDNT\Hiv-backup\ERDNT.EXE
+ 2005-10-20 19:02:28 163,328 ----a-w c:\winnt\ERDNT\Hiv-backup\ERDNT.EXE
- 2005-10-20 19:02:28 177,664 ----a-w c:\winnt\ERDNT\subs\ERDNT.EXE
+ 2005-10-20 19:02:28 163,328 ----a-w c:\winnt\ERDNT\subs\ERDNT.EXE
- 2008-08-07 14:27:04 177,664 ----a-w c:\winnt\ERUNT\SDFIX\ERDNT.EXE
+ 2009-01-22 08:19:33 232,448 ----a-w c:\winnt\ERUNT\SDFIX\ERDNT.EXE
- 2008-08-07 14:27:04 177,664 ----a-w c:\winnt\ERUNT\SDFIX_First_Run\ERDNT.EXE
+ 2009-01-22 08:19:35 297,984 ----a-w c:\winnt\ERUNT\SDFIX_First_Run\ERDNT.EXE
- 2000-08-31 07:00:00 101,792 ----a-w c:\winnt\fdsv.exe
+ 2009-01-22 08:18:49 118,784 ----a-w c:\winnt\fdsv.exe
- 2000-08-31 07:00:00 124,444 ----a-w c:\winnt\grep.exe
+ 2009-01-22 08:18:50 145,920 ----a-w c:\winnt\grep.exe
- 2001-11-08 12:58:56 294,912 -c--a-w c:\winnt\inf\unregmp2.exe
+ 2009-01-22 08:19:35 315,392 -c--a-w c:\winnt\inf\unregmp2.exe
- 2008-11-06 20:36:45 61,440 ----a-r c:\winnt\Installer\{17293791-C82E-476C-9997-9A0FF234A19B}\NewShortcut1_17293791C82E476C99979A0FF234A19B.exe
+ 2009-01-22 08:19:36 225,280 ----a-r c:\winnt\Installer\{17293791-C82E-476C-9997-9A0FF234A19B}\NewShortcut1_17293791C82E476C99979A0FF234A19B.exe
- 2008-10-14 08:18:56 2,408,448 ----a-r c:\winnt\Installer\{1E0FF527-971B-4BBF-83D1-987E8DEE437D}\soffice.exe
+ 2009-01-22 08:19:39 2,473,984 ----a-r c:\winnt\Installer\{1E0FF527-971B-4BBF-83D1-987E8DEE437D}\soffice.exe
- 2008-11-06 20:36:55 53,248 ----a-r c:\winnt\Installer\{20FBC0A0-3160-4F14-83ED-3A74BB6B8C31}\NewShortcut1.A6CC6977_F7B4_4C0B_9510_BCD847D4BDB2.exe
+ 2009-01-22 08:19:39 118,784 ----a-r c:\winnt\Installer\{20FBC0A0-3160-4F14-83ED-3A74BB6B8C31}\NewShortcut1.A6CC6977_F7B4_4C0B_9510_BCD847D4BDB2.exe
- 2008-11-06 20:35:33 122,880 ----a-r c:\winnt\Installer\{64FC0C98-B035-4530-B15D-3D30610B6DF1}\HPSUShortcut2_936C42D08CEE4BDFB8CEC4BDC93C6CF8_1.exe
+ 2009-01-22 08:19:40 188,416 ----a-r c:\winnt\Installer\{64FC0C98-B035-4530-B15D-3D30610B6DF1}\HPSUShortcut2_936C42D08CEE4BDFB8CEC4BDC93C6CF8_1.exe
- 2008-03-19 11:57:22 178,176 -c--a-r c:\winnt\Installer\{6F716DA0-398F-11D3-85E1-005004838609}\places.exe
+ 2009-01-22 08:19:41 243,200 -c--a-r c:\winnt\Installer\{6F716DA0-398F-11D3-85E1-005004838609}\places.exe
- 2009-01-09 20:02:05 45,056 ----a-r c:\winnt\Installer\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}\icon.exe
+ 2009-01-22 08:19:41 143,360 ----a-r c:\winnt\Installer\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}\icon.exe
- 2008-04-08 19:51:57 208,896 -c--a-r c:\winnt\Installer\{8F7A4D82-B168-4F89-99C2-B9873EC877AF}\ARPPRODUCTICON.exe
+ 2009-01-22 08:19:42 274,432 -c--a-r c:\winnt\Installer\{8F7A4D82-B168-4F89-99C2-B9873EC877AF}\ARPPRODUCTICON.exe
- 2008-04-08 19:51:57 40,448 -c--a-r c:\winnt\Installer\{8F7A4D82-B168-4F89-99C2-B9873EC877AF}\Icon8F7A4D82.exe
+ 2009-01-21 08:34:30 29,184 -c--a-r c:\winnt\Installer\{8F7A4D82-B168-4F89-99C2-B9873EC877AF}\Icon8F7A4D82.exe
- 2008-08-19 11:36:29 77,824 ----a-r c:\winnt\Installer\{9D8FEE90-0377-49A9-AEFB-525BDE549BA4}\NewShortcut1.exe
+ 2009-01-22 08:19:42 155,648 ----a-r c:\winnt\Installer\{9D8FEE90-0377-49A9-AEFB-525BDE549BA4}\NewShortcut1.exe
- 2008-08-19 11:36:28 176,128 ----a-r c:\winnt\Installer\{9D8FEE90-0377-49A9-AEFB-525BDE549BA4}\NewShortcut2.exe
+ 2009-01-22 08:19:43 274,432 ----a-r c:\winnt\Installer\{9D8FEE90-0377-49A9-AEFB-525BDE549BA4}\NewShortcut2.exe
- 2008-08-19 11:36:28 77,824 ----a-r c:\winnt\Installer\{9D8FEE90-0377-49A9-AEFB-525BDE549BA4}\NewShortcut3.exe
+ 2009-01-22 08:19:43 176,128 ----a-r c:\winnt\Installer\{9D8FEE90-0377-49A9-AEFB-525BDE549BA4}\NewShortcut3.exe
- 2008-08-19 11:40:52 77,824 ----a-r c:\winnt\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut11.exe
+ 2009-01-22 08:19:44 208,896 ----a-r c:\winnt\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut11.exe
- 2008-08-19 11:40:52 143,360 ----a-r c:\winnt\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut12.exe
+ 2009-01-22 08:19:45 241,664 ----a-r c:\winnt\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut12.exe
- 2008-08-19 11:40:52 176,128 ----a-r c:\winnt\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut13.exe
+ 2009-01-22 08:19:45 274,432 ----a-r c:\winnt\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut13.exe
- 2008-08-19 11:40:51 110,592 ----a-r c:\winnt\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut4.exe
+ 2009-01-22 08:19:46 208,896 ----a-r c:\winnt\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut4.exe
- 2008-08-19 11:40:51 77,824 ----a-r c:\winnt\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut5.exe
+ 2009-01-22 08:19:46 176,128 ----a-r c:\winnt\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut5.exe
- 2008-08-19 11:40:51 77,824 ----a-r c:\winnt\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut6.exe
+ 2009-01-22 08:19:47 143,360 ----a-r c:\winnt\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut6.exe
- 2008-08-19 11:40:51 77,824 ----a-r c:\winnt\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut7.exe
+ 2009-01-22 08:19:47 143,360 ----a-r c:\winnt\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut7.exe
- 2008-08-19 11:40:51 77,824 ----a-r c:\winnt\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut8.exe
+ 2009-01-22 08:19:48 208,896 ----a-r c:\winnt\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut8.exe
- 2008-08-19 11:40:52 77,824 ----a-r c:\winnt\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut9.exe
+ 2009-01-22 08:19:48 208,896 ----a-r c:\winnt\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\NewShortcut9.exe
- 2008-08-19 11:40:52 77,824 ----a-r c:\winnt\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\TutorialSC.exe
+ 2009-01-22 08:19:49 208,896 ----a-r c:\winnt\Installer\{CA60320D-6A16-49C8-A34F-84EEF4799567}\TutorialSC.exe
- 2008-08-19 11:57:54 86,016 ----a-r c:\winnt\Installer\{FCDB1C92-03C6-4C76-8625-371224256091}\NewShortcut2.exe
+ 2009-01-22 08:19:49 249,856 ----a-r c:\winnt\Installer\{FCDB1C92-03C6-4C76-8625-371224256091}\NewShortcut2.exe
- 2006-08-23 04:18:40 253,712 ----a-w c:\winnt\msagent\agentsvr.exe
+ 2009-01-22 08:19:50 318,976 ----a-w c:\winnt\msagent\agentsvr.exe
- 2003-09-20 04:53:04 75,776 ----a-w c:\winnt\msiinst.tmp\msiexec.exe
+ 2009-01-22 08:19:50 130,048 ----a-w c:\winnt\msiinst.tmp\msiexec.exe
- 2000-08-31 07:00:00 108,544 ----a-w c:\winnt\NIRCMD.exe
+ 2000-08-31 07:00:00 42,496 ----a-w c:\winnt\NIRCMD.exe
- 2006-11-20 07:01:08 176,128 ----a-w c:\winnt\PixArt\Pac7302\AmCap.exe
+ 2009-01-22 08:19:51 196,608 ----a-w c:\winnt\PixArt\Pac7302\AmCap.exe
- 2006-10-12 16:09:56 425,984 ----a-w c:\winnt\PixArt\Pac7302\PASnap.exe
+ 2009-01-22 08:19:52 446,464 ----a-w c:\winnt\PixArt\Pac7302\PASnap.exe
- 2002-12-11 22:14:32 104,960 ----a-w c:\winnt\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dplaysvr.exe
+ 2009-01-22 08:19:53 126,464 ----a-w c:\winnt\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dplaysvr.exe
- 2002-12-11 22:14:32 60,416 ----a-w c:\winnt\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dpnsvr.exe
+ 2009-01-22 08:19:53 82,432 ----a-w c:\winnt\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dpnsvr.exe
- 2002-12-11 22:14:32 157,184 ----a-w c:\winnt\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dpvsetup.exe
+ 2009-01-22 08:19:54 179,200 ----a-w c:\winnt\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dpvsetup.exe
- 2004-07-09 02:27:28 1,019,904 ----a-w c:\winnt\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dxdiag.exe
+ 2009-01-22 08:19:56 1,040,384 ----a-w c:\winnt\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dxdiag.exe
- 2002-12-11 22:14:32 57,856 ----a-w c:\winnt\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dxdllreg.exe
+ 2009-01-22 08:19:56 79,360 ----a-w c:\winnt\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dxdllreg.exe
- 2000-08-31 07:00:00 110,080 ----a-w c:\winnt\sed.exe
+ 2009-01-22 08:18:54 175,104 ----a-w c:\winnt\sed.exe
- 2005-12-13 16:15:14 40,448 -c--a-w c:\winnt\SiS\900\uninst.exe
+ 2009-01-22 08:19:57 62,464 -c--a-w c:\winnt\SiS\900\uninst.exe
- 2007-08-20 12:39:00 100,864 -c--a-w c:\winnt\SoftwareDistribution\Download\129d0763ba0ae24b3668bfe1e19bb3ec\msimn.exe
- 2007-08-20 12:39:08 70,656 -c--a-w c:\winnt\SoftwareDistribution\Download\129d0763ba0ae24b3668bfe1e19bb3ec\oemig50.exe
- 2007-08-20 12:39:08 55,808 -c--a-w c:\winnt\SoftwareDistribution\Download\129d0763ba0ae24b3668bfe1e19bb3ec\wab.exe
- 2007-08-19 16:55:16 103,936 -c--a-w c:\winnt\SoftwareDistribution\Download\129d0763ba0ae24b3668bfe1e19bb3ec\wabmig.exe
- 2006-08-23 04:18:40 253,712 ----a-w c:\winnt\SoftwareDistribution\Download\254ef2369b4f2311a1e81cf87ee93d47\agentsvr.exe
- 2008-06-25 15:33:10 100,864 ----a-w c:\winnt\SoftwareDistribution\Download\451374f30879ab6ad2ae664ac011bb74\msimn.exe
- 2008-06-25 15:33:18 70,656 ----a-w c:\winnt\SoftwareDistribution\Download\451374f30879ab6ad2ae664ac011bb74\oemig50.exe
- 2008-06-25 15:33:18 55,808 ----a-w c:\winnt\SoftwareDistribution\Download\451374f30879ab6ad2ae664ac011bb74\wab.exe
- 2008-06-25 14:35:52 103,936 ----a-w c:\winnt\SoftwareDistribution\Download\451374f30879ab6ad2ae664ac011bb74\wabmig.exe
- 2003-12-10 02:47:42 24,848 ----a-w c:\winnt\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\chkdsk.exe
- 2005-06-03 10:24:02 260,368 ----a-w c:\winnt\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\cluscfg.exe
- 2005-06-03 10:24:02 714,000 ----a-w c:\winnt\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\clussvc.exe
- 2005-06-03 10:24:02 262,416 ----a-w c:\winnt\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\cmd.exe
- 2004-12-02 13:19:44 34,064 ----a-w c:\winnt\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\fltmc.exe
- 2005-06-03 10:24:18 59,664 ----a-w c:\winnt\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\fontview.exe
- 2005-06-03 10:24:20 56,080 ----a-w c:\winnt\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\grpconv.exe
- 2005-01-13 16:19:18 96,528 ----a-w c:\winnt\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\llssrv.exe
- 2005-06-03 10:24:28 86,288 ----a-w c:\winnt\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\lsass.exe
- 2003-09-20 04:53:04 75,776 ----a-w c:\winnt\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\msiexec.exe
- 2005-06-03 10:24:50 137,488 ----a-w c:\winnt\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\mstask.exe
- 2005-06-03 10:24:58 125,200 ----a-w c:\winnt\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\netdde.exe
- 2005-06-03 10:24:58 822,032 ----a-w c:\winnt\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\netmon.exe
- 2005-03-02 05:54:16 158,720 ----a-w c:\winnt\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\nsisapi.exe
- 2005-06-03 10:25:06 410,896 ----a-w c:\winnt\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\ntvdm.exe
- 2004-05-16 05:02:14 101,648 ----a-w c:\winnt\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\psxss.exe
- 2005-06-03 10:25:32 71,952 ----a-w c:\winnt\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\w32tm.exe
- 2005-06-03 10:25:34 206,096 ----a-w c:\winnt\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\winlogon.exe
- 2004-12-02 03:03:36 156,944 ----a-w c:\winnt\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\wins.exe
- 2005-03-02 05:54:16 158,720 ----a-w c:\winnt\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\wms\nsisapi.exe
- 2005-06-03 10:25:36 203,024 ----a-w c:\winnt\SoftwareDistribution\Download\5f1f98b38a02ea4262e21bbeb3ede9f0\wordpad.exe
- 2005-04-15 01:08:24 22,016 ----a-w c:\winnt\SoftwareDistribution\Download\6bd7eb68d000be3199ca46f3c39521ac\hh.exe
- 2008-06-19 06:39:26 76,319 ----a-w c:\winnt\SoftwareDistribution\Download\7e2a6ab8c08390d6ca0624962723abb4\wm41\logagent.exe
- 2005-05-04 13:45:36 122,880 ----a-w c:\winnt\SoftwareDistribution\Download\ad9c4c2a779933f83b51a49a2c88838d\msiexec.exe
- 2006-03-18 09:51:34 32,528 ----a-w c:\winnt\SoftwareDistribution\Download\b5cae5c643ad60578df1bfab32fbcb38\verclsid.exe
- 2008-06-01 19:19:28 35,840 ----a-w c:\winnt\SoftwareDistribution\Download\c5f6c1460fc9fb16a7608938dd04fb93\wm71\logagent.exe
- 2008-06-10 00:31:06 115,200 ----a-w c:\winnt\SoftwareDistribution\Download\c5f6c1460fc9fb16a7608938dd04fb93\wm9\logagent.exe
- 2008-06-10 00:06:34 180,224 ----a-w c:\winnt\SoftwareDistribution\Download\c5f6c1460fc9fb16a7608938dd04fb93\wm9l\logagent.exe
- 2003-05-02 00:40:22 41,232 ----a-w c:\winnt\SoftwareDistribution\Download\f8be264a53925fc5b1c9668562b23365\ipsecmon.exe
- 2006-07-24 17:14:58 631,056 ----a-w c:\winnt\SoftwareDistribution\Download\fa4b0db30b43f91158e7521435d65d29\mmc.exe
- 2003-06-23 12:00:00 377,616 -c--a-w c:\winnt\Speech\vcmd.exe
+ 2009-01-22 08:20:22 398,848 -c--a-w c:\winnt\Speech\vcmd.exe
- 2000-08-31 07:00:00 206,336 ----a-w c:\winnt\SWREG.exe
+ 2000-08-31 07:00:00 173,056 ----a-w c:\winnt\SWREG.exe
- 2000-08-31 07:00:00 148,992 ----a-w c:\winnt\SWSC.exe
+ 2009-01-22 08:18:57 280,064 ----a-w c:\winnt\SWSC.exe
- 2000-08-31 07:00:00 223,744 ----a-w c:\winnt\SWXCACLS.exe
+ 2009-01-22 08:18:57 278,016 ----a-w c:\winnt\SWXCACLS.exe
- 2004-02-17 15:51:56 1,470,464 -c--a-w c:\winnt\system\SmWizard.exe
+ 2009-01-22 08:20:26 1,568,768 -c--a-w c:\winnt\system\SmWizard.exe
- 2003-06-23 12:00:00 85,264 -c--a-w c:\winnt\system32\Écran de veille des chaînes.scr
+ 2009-01-22 08:22:19 106,496 -c--a-w c:\winnt\system32\Écran de veille des chaînes.scr
- 2003-06-23 12:00:00 168,208 ----a-w c:\winnt\system32\accwiz.exe
+ 2009-01-22 08:13:21 288,768 ----a-w c:\winnt\system32\accwiz.exe
- 2003-06-23 12:00:00 37,648 -c--a-w c:\winnt\system32\actmovie.exe
+ 2009-01-22 08:20:27 102,912 -c--a-w c:\winnt\system32\actmovie.exe
- 2003-06-23 12:00:00 33,552 -c--a-w c:\winnt\system32\arp.exe
+ 2009-01-22 08:20:27 132,096 -c--a-w c:\winnt\system32\arp.exe
- 2003-06-23 12:00:00 37,136 -c--a-w c:\winnt\system32\at.exe
+ 2009-01-22 08:20:27 101,888 -c--a-w c:\winnt\system32\at.exe
- 2003-06-23 12:00:00 58,128 -c--a-w c:\winnt\system32\atmadm.exe
+ 2009-01-22 08:20:29 385,536 -c--a-w c:\winnt\system32\atmadm.exe
- 2003-06-23 12:00:00 23,312 -c--a-w c:\winnt\system32\attrib.exe
+ 2009-01-22 08:20:30 251,904 -c--a-w c:\winnt\system32\attrib.exe
- 2003-06-23 12:00:00 16,144 -c--a-w c:\winnt\system32\bootok.exe
+ 2009-01-22 08:20:30 146,944 -c--a-w c:\winnt\system32\bootok.exe
- 2003-06-23 12:00:00 114,960 -c--a-w c:\winnt\system32\bootvrfy.exe
+ 2009-01-22 08:20:30 212,480 -c--a-w c:\winnt\system32\bootvrfy.exe
- 2003-06-23 12:00:00 33,040 -c--a-w c:\winnt\system32\cacls.exe
+ 2009-01-22 08:20:31 131,072 -c--a-w c:\winnt\system32\cacls.exe
- 2003-06-23 12:00:00 169,232 -c--a-w c:\winnt\system32\calc.exe
+ 2009-01-22 08:20:31 257,024 -c--a-w c:\winnt\system32\calc.exe
- 2003-06-23 12:00:00 355,600 -c--a-w c:\winnt\system32\cdplayer.exe
+ 2009-01-22 08:20:33 420,864 -c--a-w c:\winnt\system32\cdplayer.exe
- 2003-06-23 12:00:00 169,232 -c----w c:\winnt\system32\charmap.exe
+ 2009-01-22 08:20:34 234,496 -c--a-w c:\winnt\system32\charmap.exe
- 2003-12-10 02:47:42 90,384 ----a-w c:\winnt\system32\CHKDSK.EXE
+ 2009-01-22 08:20:34 187,904 ----a-w c:\winnt\system32\CHKDSK.EXE
- 2003-06-23 12:00:00 23,824 -c--a-w c:\winnt\system32\chkntfs.exe
+ 2009-01-22 08:20:35 122,368 -c--a-w c:\winnt\system32\chkntfs.exe
- 2003-06-23 12:00:00 20,752 -c--a-w c:\winnt\system32\cidaemon.exe
+ 2009-01-22 08:20:35 184,320 -c--a-w c:\winnt\system32\cidaemon.exe
- 2003-06-23 12:00:00 80,656 -c--a-w c:\winnt\system32\cipher.exe
+ 2009-01-22 08:20:36 145,920 -c--a-w c:\winnt\system32\cipher.exe
- 2003-06-23 12:00:00 16,656 -c--a-w c:\winnt\system32\cisvc.exe
+ 2009-01-22 08:14:16 212,992 -c--a-w c:\winnt\system32\cisvc.exe
- 2003-06-23 12:00:00 20,752 -c--a-w c:\winnt\system32\ckcnv.exe
+ 2009-01-22 08:20:36 151,040 -c--a-w c:\winnt\system32\ckcnv.exe
- 2003-06-23 12:00:00 55,568 ----a-w c:\winnt\system32\cleanmgr.exe
+ 2009-01-22 08:20:36 186,368 ----a-w c:\winnt\system32\cleanmgr.exe
- 2003-06-23 12:00:00 49,424 -c--a-w c:\winnt\system32\cliconfg.exe
+ 2009-01-22 08:20:37 69,632 -c--a-w c:\winnt\system32\cliconfg.exe
- 2003-06-23 12:00:00 115,472 ----a-w c:\winnt\system32\clipbrd.exe
+ 2009-01-22 08:13:22 180,736 ----a-w c:\winnt\system32\clipbrd.exe
- 2003-06-23 12:00:00 42,768 -c----w c:\winnt\system32\clipsrv.exe
+ 2009-01-22 08:14:17 140,800 -c--a-w c:\winnt\system32\clipsrv.exe
- 2003-06-23 12:00:00 147,728 -c--a-w c:\winnt\system32\cluster.exe
+ 2009-01-22 08:20:38 311,296 -c--a-w c:\winnt\system32\cluster.exe
- 2005-06-03 10:24:02 262,416 ----a-w c:\winnt\system32\CMD.EXE
+ 2009-01-22 08:20:39 524,288 ----a-w c:\winnt\system32\CMD.EXE
- 2003-06-23 12:00:00 51,472 -c--a-w c:\winnt\system32\cmdl32.exe
+ 2009-01-22 08:20:39 148,992 -c--a-w c:\winnt\system32\cmdl32.exe
- 2004-04-23 20:02:10 278,528 -c--a-w c:\winnt\system32\cmirmdrv.exe
+ 2009-01-22 08:20:40 299,008 -c--a-w c:\winnt\system32\cmirmdrv.exe
- 2003-06-23 12:00:00 57,104 -c--a-w c:\winnt\system32\cmmgr32.exe
+ 2009-01-22 08:13:22 187,392 -c--a-w c:\winnt\system32\cmmgr32.exe
- 2003-06-23 12:00:00 79,120 -c--a-w c:\winnt\system32\cmmon32.exe
+ 2009-01-22 08:20:41 242,688 -c--a-w c:\winnt\system32\cmmon32.exe
- 2003-06-23 12:00:00 61,200 -c--a-w c:\winnt\system32\cmstp.exe
+ 2009-01-22 08:20:41 224,768 -c--a-w c:\winnt\system32\cmstp.exe
- 2003-06-23 12:00:00 120,592 -c--a-w c:\winnt\system32\Com\comrepl.exe
+ 2009-01-22 08:22:19 185,344 -c--a-w c:\winnt\system32\Com\comrepl.exe
- 2003-06-23 12:00:00 49,424 -c--a-w c:\winnt\system32\Com\comrereg.exe
+ 2009-01-22 08:22:19 114,176 -c--a-w c:\winnt\system32\Com\comrereg.exe
- 2003-06-23 12:00:00 66,320 -c--a-w c:\winnt\system32\comclust.exe
+ 2009-01-22 08:20:42 197,120 -c--a-w c:\winnt\system32\comclust.exe
- 2003-06-23 12:00:00 27,408 -c--a-w c:\winnt\system32\comp.exe
+ 2009-01-22 08:20:42 125,440 -c--a-w c:\winnt\system32\comp.exe
- 2003-06-23 12:00:00 129,808 -c----w c:\winnt\system32\compact.exe
+ 2009-01-22 08:20:44 457,216 -c--a-w c:\winnt\system32\compact.exe
- 2003-06-23 12:00:00 37,136 -c--a-w c:\winnt\system32\conime.exe
+ 2009-01-22 08:20:44 167,424 -c--a-w c:\winnt\system32\conime.exe
- 2003-06-23 12:00:00 21,264 -c--a-w c:\winnt\system32\control.exe
+ 2009-01-22 08:20:45 118,784 -c--a-w c:\winnt\system32\control.exe
- 2003-06-23 12:00:00 90,896 -c--a-w c:\winnt\system32\convert.exe
+ 2009-01-22 08:20:45 253,952 -c--a-w c:\winnt\system32\convert.exe
- 2001-06-26 16:49:06 114,738 -c--a-w c:\winnt\system32\cscript.exe
+ 2009-01-22 08:20:46 212,992 -c--a-w c:\winnt\system32\cscript.exe
- 2003-06-23 12:00:00 130,320 -c--a-w c:\winnt\system32\dcomcnfg.exe
+ 2009-01-22 08:20:47 195,584 -c--a-w c:\winnt\system32\dcomcnfg.exe
- 2003-06-23 12:00:00 43,792 -c--a-w c:\winnt\system32\ddeshare.exe
+ 2009-01-22 08:20:47 109,056 -c--a-w c:\winnt\system32\ddeshare.exe
- 2003-06-23 12:00:00 17,168 -c--a-w c:\winnt\system32\ddmprxy.exe
+ 2009-01-22 08:20:47 82,432 -c--a-w c:\winnt\system32\ddmprxy.exe
- 2003-06-23 12:00:00 108,816 -c--a-w c:\winnt\system32\dfrgfat.exe
+ 2009-01-22 08:20:48 174,080 -c--a-w c:\winnt\system32\dfrgfat.exe
- 2003-06-23 12:00:00 89,872 ----a-w c:\winnt\system32\dfrgntfs.exe
+ 2009-01-22 08:20:49 351,232 ----a-w c:\winnt\system32\dfrgntfs.exe
- 2003-06-23 12:00:00 223,504 -c--a-w c:\winnt\system32\diantz.exe
+ 2009-01-22 08:20:50 321,536 -c--a-w c:\winnt\system32\diantz.exe
- 2003-06-23 12:00:00 200,976 -c--a-w c:\winnt\system32\dllcache\accwiz.exe
+ 2009-01-22 08:22:20 222,208 -c--a-w c:\winnt\system32\dllcache\accwiz.exe
- 2003-06-23 12:00:00 37,648 -c--a-w c:\winnt\system32\dllcache\actmovie.exe
+ 2009-01-22 08:22:21 58,880 -c--a-w c:\winnt\system32\dllcache\actmovie.exe
- 2003-03-24 14:52:04 61,495 -c--a-w c:\winnt\system32\dllcache\admin.exe
+ 2009-01-22 08:22:22 81,920 -c--a-w c:\winnt\system32\dllcache\admin.exe
- 2006-08-23 04:18:40 286,480 -c--a-w c:\winnt\system32\dllcache\agentsvr.exe
+ 2009-01-22 08:22:23 307,712 -c--a-w c:\winnt\system32\dllcache\agentsvr.exe
- 2003-06-23 12:00:00 33,552 -c--a-w c:\winnt\system32\dllcache\arp.exe
+ 2009-01-22 08:22:23 54,784 -c--a-w c:\winnt\system32\dllcache\arp.exe
- 2003-06-23 12:00:00 69,904 -c--a-w c:\winnt\system32\dllcache\at.exe
+ 2009-01-22 08:22:24 91,136 -c--a-w c:\winnt\system32\dllcache\at.exe
- 2003-06-23 12:00:00 123,664 -c--a-w c:\winnt\system32\dllcache\atmadm.exe
+ 2009-01-22 08:22:24 144,896 -c--a-w c:\winnt\system32\dllcache\atmadm.exe
- 2003-06-23 12:00:00 23,312 -c--a-w c:\winnt\system32\dllcache\attrib.exe
+ 2009-01-22 08:22:24 44,544 -c--a-w c:\winnt\system32\dllcache\attrib.exe
- 2003-03-24 14:52:04 28,727 -c--a-w c:\winnt\system32\dllcache\author.exe
+ 2009-01-22 08:22:25 49,152 -c--a-w c:\winnt\system32\dllcache\author.exe
- 2003-06-23 12:00:00 16,144 -c--a-w c:\winnt\system32\dllcache\bootok.exe
+ 2009-01-22 08:22:25 37,376 -c--a-w c:\winnt\system32\dllcache\bootok.exe
- 2003-06-23 12:00:00 16,656 -c--a-w c:\winnt\system32\dllcache\bootvrfy.exe
+ 2009-01-22 08:22:25 37,888 -c--a-w c:\winnt\system32\dllcache\bootvrfy.exe
- 2003-06-23 12:00:00 65,296 -c--a-w c:\winnt\system32\dllcache\cacls.exe
+ 2009-01-22 08:22:26 87,040 -c--a-w c:\winnt\system32\dllcache\cacls.exe
- 2003-06-23 12:00:00 103,696 -c--a-w c:\winnt\system32\dllcache\calc.exe
+ 2009-01-22 08:22:26 124,928 -c--a-w c:\winnt\system32\dllcache\calc.exe
- 2003-06-23 12:00:00 15,632 -c--a-w c:\winnt\system32\dllcache\cb32.exe
+ 2009-01-22 08:22:27 37,376 -c--a-w c:\winnt\system32\dllcache\cb32.exe
- 2003-06-23 12:00:00 388,368 -c--a-w c:\winnt\system32\dllcache\cdplayer.exe
+ 2009-01-22 08:22:28 409,600 -c--a-w c:\winnt\system32\dllcache\cdplayer.exe
- 2003-03-24 14:52:04 299,072 -c--a-w c:\winnt\system32\dllcache\cfgwiz.exe
+ 2009-01-22 08:22:31 319,488 -c--a-w c:\winnt\system32\dllcache\cfgwiz.exe
- 2003-06-23 12:00:00 136,464 -c--a-w c:\winnt\system32\dllcache\charmap.exe
+ 2009-01-22 08:22:32 157,696 -c--a-w c:\winnt\system32\dllcache\charmap.exe
- 2003-12-10 02:47:42 24,848 -c--a-w c:\winnt\system32\dllcache\chkdsk.exe
+ 2009-01-22 08:22:32 78,848 -c--a-w c:\winnt\system32\dllcache\chkdsk.exe
- 2003-06-23 12:00:00 24,336 -c--a-w c:\winnt\system32\dllcache\chkntfs.exe
+ 2009-01-22 08:22:33 45,568 -c--a-w c:\winnt\system32\dllcache\chkntfs.exe
- 2003-06-23 12:00:00 86,288 -c--a-w c:\winnt\system32\dllcache\cidaemon.exe
+ 2009-01-22 08:22:33 107,520 -c--a-w c:\winnt\system32\dllcache\cidaemon.exe
- 2003-06-23 12:00:00 47,888 -c--a-w c:\winnt\system32\dllcache\cipher.exe
+ 2009-01-22 08:22:34 69,120 -c--a-w c:\winnt\system32\dllcache\cipher.exe
- 2003-06-23 12:00:00 49,424 -c--a-w c:\winnt\system32\dllcache\cisvc.exe
+ 2009-01-22 08:22:34 70,656 -c--a-w c:\winnt\system32\dllcache\cisvc.exe
- 2003-06-23 12:00:00 53,520 -c--a-w c:\winnt\system32\dllcache\ckcnv.exe
+ 2009-01-22 08:22:35 74,752 -c--a-w c:\winnt\system32\dllcache\ckcnv.exe
- 2003-06-23 12:00:00 88,336 -c--a-w c:\winnt\system32\dllcache\cleanmgr.exe
+ 2009-01-22 08:22:35 109,568 -c--a-w c:\winnt\system32\dllcache\cleanmgr.exe
- 2003-06-23 12:00:00 148,240 -c--a-w c:\winnt\system32\dllcache\clipbrd.exe
+ 2009-01-22 08:22:36 169,472 -c--a-w c:\winnt\system32\dllcache\clipbrd.exe
- 2003-06-23 12:00:00 75,536 -c--a-w c:\winnt\system32\dllcache\clipsrv.exe
+ 2009-01-22 08:22:37 96,768 -c--a-w c:\winnt\system32\dllcache\clipsrv.exe
- 2005-06-03 10:24:02 260,368 -c--a-w c:\winnt\system32\dllcache\ClusCfg.exe
+ 2009-01-22 08:22:38 281,600 -c--a-w c:\winnt\system32\dllcache\ClusCfg.exe
- 2005-06-03 10:24:02 714,000 -c--a-w c:\winnt\system32\dllcache\clussvc.exe
+ 2009-01-22 08:22:39 833,536 -c--a-w c:\winnt\system32\dllcache\clussvc.exe
- 2003-06-23 12:00:00 180,496 -c--a-w c:\winnt\system32\dllcache\cluster.exe
+ 2009-01-22 08:22:40 201,728 -c--a-w c:\winnt\system32\dllcache\cluster.exe
- 2005-06-03 10:24:02 262,416 -c--a-w c:\winnt\system32\dllcache\CMD.EXE
+ 2009-01-22 08:22:41 283,648 -c--a-w c:\winnt\system32\dllcache\CMD.EXE
- 2003-06-23 12:00:00 51,472 -c--a-w c:\winnt\system32\dllcache\cmdl32.exe
+ 2009-01-22 08:22:42 72,704 -c--a-w c:\winnt\system32\dllcache\cmdl32.exe
- 2003-06-23 12:00:00 24,336 -c--a-w c:\winnt\system32\dllcache\cmmgr32.exe
+ 2009-01-22 08:22:42 45,568 -c--a-w c:\winnt\system32\dllcache\cmmgr32.exe
- 2003-06-23 12:00:00 46,352 -c--a-w c:\winnt\system32\dllcache\cmmon32.exe
+ 2009-01-22 08:22:43 67,584 -c--a-w c:\winnt\system32\dllcache\cmmon32.exe
- 2003-06-23 12:00:00 61,200 -c--a-w c:\winnt\system32\dllcache\cmstp.exe
+ 2009-01-22 08:22:43 82,432 -c--a-w c:\winnt\system32\dllcache\cmstp.exe
- 2003-06-23 12:00:00 33,552 -c--a-w c:\winnt\system32\dllcache\comclust.exe
+ 2009-01-22 08:22:44 54,784 -c--a-w c:\winnt\system32\dllcache\comclust.exe
- 2003-06-23 12:00:00 27,408 -c--a-w c:\winnt\system32\dllcache\comp.exe
+ 2009-01-22 08:22:44 48,640 -c--a-w c:\winnt\system32\dllcache\comp.exe
- 2003-06-23 12:00:00 31,504 -c--a-w c:\winnt\system32\dllcache\compact.exe
+ 2009-01-22 08:22:45 52,736 -c--a-w c:\winnt\system32\dllcache\compact.exe
- 2003-06-23 12:00:00 55,056 -c--a-w c:\winnt\system32\dllcache\comrepl.exe
+ 2009-01-22 08:22:45 76,288 -c--a-w c:\winnt\system32\dllcache\comrepl.exe
- 2003-06-23 12:00:00 49,424 -c--a-w c:\winnt\system32\dllcache\comrereg.exe
+ 2009-01-22 08:22:46 70,656 -c--a-w c:\winnt\system32\dllcache\comrereg.exe
- 2003-06-23 12:00:00 718,096 -c--a-w c:\winnt\system32\dllcache\conf.exe
+ 2009-01-22 08:22:48 739,328 -c--a-w c:\winnt\system32\dllcache\conf.exe
- 2003-06-23 12:00:00 37,136 -c--a-w c:\winnt\system32\dllcache\conime.exe
+ 2009-01-22 08:22:48 58,368 -c--a-w c:\winnt\system32\dllcache\conime.exe
- 2003-06-23 12:00:00 21,264 -c--a-w c:\winnt\system32\dllcache\control.exe
+ 2009-01-22 08:22:49 42,496 -c--a-w c:\winnt\system32\dllcache\control.exe
- 2003-06-23 12:00:00 25,360 -c--a-w c:\winnt\system32\dllcache\convert.exe
+ 2009-01-22 08:22:49 46,592 -c--a-w c:\winnt\system32\dllcache\convert.exe
- 2003-06-23 12:00:00 81,680 -c--a-w c:\winnt\system32\dllcache\convlog.exe
+ 2009-01-22 08:22:50 102,912 -c--a-w c:\winnt\system32\dllcache\convlog.exe
- 2003-06-23 12:00:00 86,016 -c--a-w c:\winnt\system32\dllcache\cplexe.exe
+ 2009-01-22 08:22:51 106,496 -c--a-w c:\winnt\system32\dllcache\cplexe.exe
- 2001-06-26 16:49:06 213,042 -c--a-w c:\winnt\system32\dllcache\cscript.exe
+ 2009-01-22 08:22:51 233,472 -c--a-w c:\winnt\system32\dllcache\cscript.exe
- 2003-06-23 12:00:00 163,088 -c--a-w c:\winnt\system32\dllcache\dcomcnfg.exe
+ 2009-01-22 08:22:53 184,320 -c--a-w c:\winnt\system32\dllcache\dcomcnfg.exe
- 2003-06-23 12:00:00 43,792 -c--a-w c:\winnt\system32\dllcache\ddeshare.exe
+ 2009-01-22 08:22:53 65,024 -c--a-w c:\winnt\system32\dllcache\ddeshare.exe
- 2003-06-23 12:00:00 17,168 -c--a-w c:\winnt\system32\dllcache\ddmprxy.exe
+ 2009-01-22 08:22:53 38,400 -c--a-w c:\winnt\system32\dllcache\ddmprxy.exe
- 2003-06-23 12:00:00 16,656 -c--a-w c:\winnt\system32\dllcache\delttsul.exe
+ 2009-01-22 08:22:54 37,888 -c--a-w c:\winnt\system32\dllcache\delttsul.exe
- 2003-06-23 12:00:00 108,816 -c--a-w c:\winnt\system32\dllcache\dfrgfat.exe
+ 2009-01-22 08:22:55 130,048 -c--a-w c:\winnt\system32\dllcache\dfrgfat.exe
- 2003-06-23 12:00:00 122,640 -c--a-w c:\winnt\system32\dllcache\dfrgntfs.exe
+ 2009-01-22 08:22:55 143,872 -c--a-w c:\winnt\system32\dllcache\dfrgntfs.exe
- 2003-06-23 12:00:00 566,032 -c--a-w c:\winnt\system32\dllcache\dialer.exe
+ 2009-01-22 08:22:58 587,264 -c--a-w c:\winnt\system32\dllcache\dialer.exe
- 2003-06-23 12:00:00 125,200 -c--a-w c:\winnt\system32\dllcache\diantz.exe
+ 2009-01-22 08:22:59 146,432 -c--a-w c:\winnt\system32\dllcache\diantz.exe
- 2003-06-23 12:00:00 151,824 -c--a-w c:\winnt\system32\dllcache\discover.exe
+ 2009-01-22 08:22:59 173,056 -c--a-w c:\winnt\system32\dllcache\discover.exe
- 2003-06-23 12:00:00 27,920 -c--a-w c:\winnt\system32\dllcache\diskperf.exe
+ 2009-01-22 08:23:00 49,152 -c--a-w c:\winnt\system32\dllcache\diskperf.exe
- 2003-06-23 12:00:00 17,168 -c--a-w c:\winnt\system32\dllcache\dllhost.exe
+ 2009-01-22 08:23:00 38,400 -c--a-w c:\winnt\system32\dllcache\dllhost.exe
- 2003-06-23 12:00:00 17,168 -c--a-w c:\winnt\system32\dllcache\dllhst3g.exe
+ 2009-01-22 08:23:01 38,400 -c--a-w c:\winnt\system32\dllcache\dllhst3g.exe
- 2003-06-23 12:00:00 194,320 -c--a-w c:\winnt\system32\dllcache\dmadmin.exe
+ 2009-01-22 08:23:02 215,552 -c--a-w c:\winnt\system32\dllcache\dmadmin.exe
- 2003-06-23 12:00:00 54,544 -c--a-w c:\winnt\system32\dllcache\dmremote.exe
+ 2009-01-22 08:23:02 75,776 -c--a-w c:\winnt\system32\dllcache\dmremote.exe
- 2003-06-23 12:00:00 23,824 -c--a-w c:\winnt\system32\dllcache\doskey.exe
+ 2009-01-22 08:23:03 45,056 -c--a-w c:\winnt\system32\dllcache\doskey.exe
- 2003-06-23 12:00:00 41,232 -c--a-w c:\winnt\system32\dllcache\dplaysvr.exe
+ 2009-01-22 08:23:03 62,464 -c--a-w c:\winnt\system32\dllcache\dplaysvr.exe
- 2003-06-23 12:00:00 85,776 -c--a-w c:\winnt\system32\dllcache\drwtsn32.exe
+ 2009-01-22 08:23:04 107,008 -c--a-w c:\winnt\system32\dllcache\drwtsn32.exe
- 2003-06-23 12:00:00 436,496 -c--a-w c:\winnt\system32\dllcache\dxdiag.exe
+ 2009-01-22 08:23:06 457,728 -c--a-w c:\winnt\system32\dllcache\dxdiag.exe
- 2003-06-23 12:00:00 35,600 -c--a-w c:\winnt\system32\dllcache\encinst.exe
+ 2009-01-22 08:23:06 56,832 -c--a-w c:\winnt\system32\dllcache\encinst.exe
- 2003-06-23 12:00:00 66,832 -c--a-w c:\winnt\system32\dllcache\esentutl.exe
+ 2009-01-22 08:23:07 88,064 -c--a-w c:\winnt\system32\dllcache\esentutl.exe
- 2003-06-23 12:00:00 201,488 -c--a-w c:\winnt\system32\dllcache\eudcedit.exe
+ 2009-01-22 08:23:08 222,720 -c--a-w c:\winnt\system32\dllcache\eudcedit.exe
- 2003-06-23 12:00:00 21,776 -c--a-w c:\winnt\system32\dllcache\eventvwr.exe
+ 2009-01-22 08:23:08 43,008 -c--a-w c:\winnt\system32\dllcache\eventvwr.exe
- 2003-06-23 12:00:00 36,624 -c--a-w c:\winnt\system32\dllcache\evntcmd.exe
+ 2009-01-22 08:23:09 57,856 -c--a-w c:\winnt\system32\dllcache\evntcmd.exe
- 2003-06-23 12:00:00 138,512 -c--a-w c:\winnt\system32\dllcache\evntwin.exe
+ 2009-01-22 08:23:09 159,744 -c--a-w c:\winnt\system32\dllcache\evntwin.exe
- 2003-06-23 12:00:00 63,248 -c--a-w c:\winnt\system32\dllcache\expand.exe
+ 2009-01-22 08:23:10 84,480 -c--a-w c:\winnt\system32\dllcache\expand.exe
- 2003-06-23 12:00:00 56,080 -c--a-w c:\winnt\system32\dllcache\extrac32.exe
+ 2009-01-22 08:23:11 77,312 -c--a-w c:\winnt\system32\dllcache\extrac32.exe
- 2003-06-23 12:00:00 212,240 -c--a-w c:\winnt\system32\dllcache\faxcover.exe
+ 2009-01-22 08:23:13 233,472 -c--a-w c:\winnt\system32\dllcache\faxcover.exe
- 2003-06-23 12:00:00 61,200 -c--a-w c:\winnt\system32\dllcache\faxqueue.exe
+ 2009-01-22 08:23:13 82,432 -c--a-w c:\winnt\system32\dllcache\faxqueue.exe
- 2003-06-23 12:00:00 21,264 -c--a-w c:\winnt\system32\dllcache\faxsend.exe
+ 2009-01-22 08:23:13 42,496 -c--a-w c:\winnt\system32\dllcache\faxsend.exe
- 2003-06-23 12:00:00 107,792 -c--a-w c:\winnt\system32\dllcache\faxsvc.exe
+ 2009-01-22 08:23:14 129,024 -c--a-w c:\winnt\system32\dllcache\faxsvc.exe
- 2003-06-23 12:00:00 27,408 -c--a-w c:\winnt\system32\dllcache\fc.exe
+ 2009-01-22 08:23:15 48,640 -c--a-w c:\winnt\system32\dllcache\fc.exe
- 2003-06-23 12:00:00 21,264 -c--a-w c:\winnt\system32\dllcache\find.exe
+ 2009-01-22 08:23:15 42,496 -c--a-w c:\winnt\system32\dllcache\find.exe
- 2003-06-23 12:00:00 75,024 -c--a-w c:\winnt\system32\dllcache\findstr.exe
+ 2009-01-22 08:23:15 96,256 -c--a-w c:\winnt\system32\dllcache\findstr.exe
- 2003-06-23 12:00:00 57,616 -c--a-w c:\winnt\system32\dllcache\finger.exe
+ 2009-01-22 08:23:16 78,848 -c--a-w c:\winnt\system32\dllcache\finger.exe
- 2003-06-23 12:00:00 18,704 -c--a-w c:\winnt\system32\dllcache\fixmapi.exe
+ 2009-01-22 08:23:16 39,936 -c--a-w c:\winnt\system32\dllcache\fixmapi.exe
- 2004-12-02 13:19:44 34,064 -c----w c:\winnt\system32\dllcache\fltmc.exe
+ 2009-01-22 08:23:17 55,296 -c--a-w c:\winnt\system32\dllcache\fltmc.exe
- 2005-06-03 10:24:18 59,664 -c--a-w c:\winnt\system32\dllcache\fontview.exe
+ 2009-01-22 08:23:17 146,432 -c--a-w c:\winnt\system32\dllcache\fontview.exe
- 2003-06-23 12:00:00 20,240 -c--a-w c:\winnt\system32\dllcache\forcedos.exe
+ 2009-01-22 08:23:18 41,472 -c--a-w c:\winnt\system32\dllcache\forcedos.exe
- 2003-06-23 12:00:00 91,920 -c--a-w c:\winnt\system32\dllcache\fortutil.exe
+ 2009-01-22 08:23:19 113,152 -c--a-w c:\winnt\system32\dllcache\fortutil.exe
- 2002-05-14 12:08:54 25,872 -c--a-w c:\winnt\system32\dllcache\fp98sadm.exe
+ 2009-01-22 08:23:19 47,104 -c--a-w c:\winnt\system32\dllcache\fp98sadm.exe
- 2002-05-14 12:08:54 120,592 -c--a-w c:\winnt\system32\dllcache\fp98swin.exe
+ 2009-01-22 08:23:20 141,824 -c--a-w c:\winnt\system32\dllcache\fp98swin.exe
- 2003-03-24 14:52:04 69,688 -c--a-w c:\winnt\system32\dllcache\fpadmcgi.exe
+ 2009-01-22 08:23:21 90,112 -c--a-w c:\winnt\system32\dllcache\fpadmcgi.exe
- 2003-03-24 14:52:04 200,782 -c--a-w c:\winnt\system32\dllcache\fpcount.exe
+ 2009-01-22 08:23:21 221,184 -c--a-w c:\winnt\system32\dllcache\fpcount.exe
- 2003-03-24 14:52:04 32,826 -c--a-w c:\winnt\system32\dllcache\fpremadm.exe
+ 2009-01-22 08:23:22 53,248 -c--a-w c:\winnt\system32\dllcache\fpremadm.exe
- 2003-06-23 12:00:00 47,376 -c--a-w c:\winnt\system32\dllcache\freecell.exe
+ 2009-01-22 08:23:22 68,608 -c--a-w c:\winnt\system32\dllcache\freecell.exe
- 2003-06-23 12:00:00 51,472 -c--a-w c:\winnt\system32\dllcache\gameenum.exe
+ 2009-01-22 08:23:23 72,704 -c--a-w c:\winnt\system32\dllcache\gameenum.exe
- 2005-06-03 10:24:20 56,080 -c--a-w c:\winnt\system32\dllcache\grpconv.exe
+ 2009-01-22 08:23:24 77,312 -c--a-w c:\winnt\system32\dllcache\grpconv.exe
- 2003-06-23 12:00:00 88,336 -c--a-w c:\winnt\system32\dllcache\help.exe
+ 2009-01-22 08:23:25 109,568 -c--a-w c:\winnt\system32\dllcache\help.exe
- 2005-04-14 17:08:24 120,320 -c--a-w c:\winnt\system32\dllcache\hh.exe
+ 2009-01-22 08:23:25 141,824 -c--a-w c:\winnt\system32\dllcache\hh.exe
- 2003-06-23 12:00:00 56,592 -c--a-w c:\winnt\system32\dllcache\hostname.exe
+ 2009-01-22 08:23:26 77,824 -c--a-w c:\winnt\system32\dllcache\hostname.exe
- 2001-12-05 13:55:22 28,732 -c--a-w c:\winnt\system32\dllcache\htimage.exe
+ 2009-01-22 08:23:26 49,152 -c--a-w c:\winnt\system32\dllcache\htimage.exe
- 2003-06-23 12:00:00 202,000 -c--a-w c:\winnt\system32\dllcache\icwconn1.exe
+ 2009-01-22 08:23:27 223,232 -c--a-w c:\winnt\system32\dllcache\icwconn1.exe
- 2003-06-23 12:00:00 75,536 -c--a-w c:\winnt\system32\dllcache\icwconn2.exe
+ 2009-01-22 08:23:27 96,768 -c--a-w c:\winnt\system32\dllcache\icwconn2.exe
- 2003-06-23 12:00:00 26,896 -c--a-w c:\winnt\system32\dllcache\icwrmind.exe
+ 2009-01-22 08:23:28 48,128 -c--a-w c:\winnt\system32\dllcache\icwrmind.exe
- 2003-06-23 12:00:00 74,000 -c--a-w c:\winnt\system32\dllcache\icwtutor.exe
+ 2009-01-22 08:23:28 95,232 -c--a-w c:\winnt\system32\dllcache\icwtutor.exe
- 2002-08-30 17:24:06 239,104 -c--a-w c:\winnt\system32\dllcache\ie4uinit.exe
+ 2009-01-22 08:23:30 292,864 -c--a-w c:\winnt\system32\dllcache\ie4uinit.exe
- 2003-06-23 12:00:00 68,368 -c--a-w c:\winnt\system32\dllcache\ieshwiz.exe
+ 2009-01-22 08:23:30 89,600 -c--a-w c:\winnt\system32\dllcache\ieshwiz.exe
- 2002-08-30 17:24:06 169,984 -c--a-w c:\winnt\system32\dllcache\iexplore.exe
+ 2009-01-22 08:23:31 191,488 -c--a-w c:\winnt\system32\dllcache\iexplore.exe
- 2003-06-23 12:00:00 129,296 -c--a-w c:\winnt\system32\dllcache\iexpress.exe
+ 2009-01-22 08:23:32 150,528 -c--a-w c:\winnt\system32\dllcache\iexpress.exe
- 2003-06-23 12:00:00 27,920 -c--a-w c:\winnt\system32\dllcache\iisreset.exe
+ 2009-01-22 08:23:33 49,152 -c--a-w c:\winnt\system32\dllcache\iisreset.exe
- 2003-06-23 12:00:00 43,792 -c--a-w c:\winnt\system32\dllcache\iisrstas.exe
+ 2009-01-22 08:23:33 65,024 -c--a-w c:\winnt\system32\dllcache\iisrstas.exe
- 2003-06-23 12:00:00 20,752 -c--a-w c:\winnt\system32\dllcache\iissync.exe
+ 2009-01-22 08:23:33 41,984 -c--a-w c:\winnt\system32\dllcache\iissync.exe
- 2001-12-05 13:55:22 28,733 -c--a-w c:\winnt\system32\dllcache\imagemap.exe
+ 2009-01-22 08:23:34 49,152 -c--a-w c:\winnt\system32\dllcache\imagemap.exe
- 2003-06-23 12:00:00 102,400 -c--a-w c:\winnt\system32\dllcache\imejpmgr.exe
+ 2009-01-22 08:23:34 122,880 -c--a-w c:\winnt\system32\dllcache\imejpmgr.exe
- 2003-06-23 12:00:00 57,344 -c--a-w c:\winnt\system32\dllcache\imejpuex.exe
+ 2009-01-22 08:23:35 77,824 -c--a-w c:\winnt\system32\dllcache\imejpuex.exe
- 2003-06-23 12:00:00 27,920 -c--a-w c:\winnt\system32\dllcache\inetinfo.exe
+ 2009-01-22 08:23:35 49,152 -c--a-w c:\winnt\system32\dllcache\inetinfo.exe
- 2003-06-23 12:00:00 119,056 -c--a-w c:\winnt\system32\dllcache\inetmgr.exe
+ 2009-01-22 08:23:35 140,288 -c--a-w c:\winnt\system32\dllcache\inetmgr.exe
- 2003-06-23 12:00:00 23,312 -c--a-w c:\winnt\system32\dllcache\inetwiz.exe
+ 2009-01-22 08:23:36 44,544 -c--a-w c:\winnt\system32\dllcache\inetwiz.exe
- 2003-06-23 12:00:00 66,320 -c--a-w c:\winnt\system32\dllcache\internat.exe
+ 2009-01-22 08:23:36 87,552 -c--a-w c:\winnt\system32\dllcache\internat.exe
- 2003-06-23 12:00:00 48,912 -c--a-w c:\winnt\system32\dllcache\ipconfig.exe
+ 2009-01-22 08:23:37 70,144 -c--a-w c:\winnt\system32\dllcache\ipconfig.exe
- 2003-05-02 00:40:22 41,232 -c--a-w c:\winnt\system32\dllcache\ipsecmon.exe
+ 2009-01-22 08:23:37 62,464 -c--a-w c:\winnt\system32\dllcache\ipsecmon.exe
- 2003-06-23 12:00:00 35,600 -c--a-w c:\winnt\system32\dllcache\ipxroute.exe
+ 2009-01-22 08:23:38 56,832 -c--a-w c:\winnt\system32\dllcache\ipxroute.exe
- 2003-06-23 12:00:00 96,528 -c--a-w c:\winnt\system32\dllcache\irftp.exe
+ 2009-01-22 08:23:38 117,760 -c--a-w c:\winnt\system32\dllcache\irftp.exe
- 2003-06-23 12:00:00 17,680 -c--a-w c:\winnt\system32\dllcache\isignup.exe
+ 2009-01-22 08:23:39 38,912 -c--a-w c:\winnt\system32\dllcache\isignup.exe
- 2007-08-17 06:45:20 548,624 -c--a-w c:\winnt\system32\dllcache\kodakimg.exe
+ 2009-01-22 08:23:41 569,856 -c--a-w c:\winnt\system32\dllcache\kodakimg.exe
- 2007-08-17 06:45:20 90,384 -c----w c:\winnt\system32\dllcache\kodakprv.exe
+ 2009-01-22 08:23:41 111,616 -c--a-w c:\winnt\system32\dllcache\kodakprv.exe
- 2003-06-23 12:00:00 22,288 -c--a-w c:\winnt\system32\dllcache\label.exe
+ 2009-01-22 08:23:42 43,520 -c--a-w c:\winnt\system32\dllcache\label.exe
- 2003-06-23 12:00:00 108,816 -c--a-w c:\winnt\system32\dllcache\lights.exe
+ 2009-01-22 08:23:42 130,048 -c--a-w c:\winnt\system32\dllcache\lights.exe
- 2005-01-13 16:19:18 96,528 -c----w c:\winnt\system32\dllcache\LLSSRV.EXE
+ 2009-01-22 08:23:43 216,064 -c--a-w c:\winnt\system32\dllcache\LLSSRV.EXE
- 2003-06-23 12:00:00 36,112 -c--a-w c:\winnt\system32\dllcache\lnkstub.exe
+ 2009-01-22 08:23:43 57,344 -c--a-w c:\winnt\system32\dllcache\lnkstub.exe
- 2003-06-23 12:00:00 115,984 -c--a-w c:\winnt\system32\dllcache\locator.exe
+ 2009-01-22 08:23:44 137,728 -c--a-w c:\winnt\system32\dllcache\locator.exe
- 2003-06-23 12:00:00 37,136 -c--a-w c:\winnt\system32\dllcache\lodctr.exe
+ 2009-01-22 08:23:45 58,368 -c--a-w c:\winnt\system32\dllcache\lodctr.exe
- 2008-06-10 00:31:06 115,200 -c--a-w c:\winnt\system32\dllcache\logagent.exe
+ 2009-01-22 08:23:45 136,704 -c--a-w c:\winnt\system32\dllcache\logagent.exe
- 2003-06-23 12:00:00 118,032 -c--a-w c:\winnt\system32\dllcache\lpq.exe
+ 2009-01-22 08:23:46 139,264 -c--a-w c:\winnt\system32\dllcache\lpq.exe
- 2003-06-23 12:00:00 20,752 -c--a-w c:\winnt\system32\dllcache\lpr.exe
+ 2009-01-22 08:23:46 41,984 -c--a-w c:\winnt\system32\dllcache\lpr.exe
- 2005-06-03 10:24:28 86,288 -c--a-w c:\winnt\system32\dllcache\lsass.exe
+ 2009-01-22 08:23:47 107,520 -c--a-w c:\winnt\system32\dllcache\lsass.exe
- 2003-06-23 12:00:00 59,152 -c--a-w c:\winnt\system32\dllcache\magnify.exe
+ 2009-01-22 08:23:48 80,384 -c--a-w c:\winnt\system32\dllcache\magnify.exe
- 2003-06-23 12:00:00 125,200 -c--a-w c:\winnt\system32\dllcache\makecab.exe
+ 2009-01-22 08:23:48 146,432 -c--a-w c:\winnt\system32\dllcache\makecab.exe
- 2003-06-23 12:00:00 71,440 -c--a-w c:\winnt\system32\dllcache\migisol.exe
+ 2009-01-22 08:23:49 92,672 -c--a-w c:\winnt\system32\dllcache\migisol.exe
- 2003-06-23 12:00:00 69,392 -c--a-w c:\winnt\system32\dllcache\migpwd.exe
+ 2009-01-22 08:23:50 90,624 -c--a-w c:\winnt\system32\dllcache\migpwd.exe
- 2003-06-23 12:00:00 131,344 -c--a-w c:\winnt\system32\dllcache\migregdb.exe
+ 2009-01-22 08:23:50 152,576 -c--a-w c:\winnt\system32\dllcache\migregdb.exe
- 2006-07-24 17:14:58 631,056 -c--a-w c:\winnt\system32\dllcache\mmc.exe
+ 2009-01-22 08:23:53 652,288 -c--a-w c:\winnt\system32\dllcache\mmc.exe
- 2003-06-23 12:00:00 101,136 -c--a-w c:\winnt\system32\dllcache\mnmsrvc.exe
+ 2009-01-22 08:23:54 122,368 -c--a-w c:\winnt\system32\dllcache\mnmsrvc.exe
- 2003-06-23 12:00:00 157,456 -c--a-w c:\winnt\system32\dllcache\mobsync.exe
+ 2009-01-22 08:23:55 178,688 -c--a-w c:\winnt\system32\dllcache\mobsync.exe
- 2003-06-23 12:00:00 41,031 -c--a-w c:\winnt\system32\dllcache\mofcomp.exe
+ 2009-01-22 08:23:55 61,440 -c--a-w c:\winnt\system32\dllcache\mofcomp.exe
- 2003-06-23 12:00:00 53,520 -c--a-w c:\winnt\system32\dllcache\mountvol.exe
+ 2009-01-22 08:23:56 74,752 -c--a-w c:\winnt\system32\dllcache\mountvol.exe
- 2003-06-23 12:00:00 133,392 -c--a-w c:\winnt\system32\dllcache\mplay32.exe
+ 2009-01-22 08:23:56 154,624 -c--a-w c:\winnt\system32\dllcache\mplay32.exe
- 2003-06-23 12:00:00 50,207 -c--a-w c:\winnt\system32\dllcache\mplayer2.exe
+ 2009-01-22 08:23:57 71,680 -c--a-w c:\winnt\system32\dllcache\mplayer2.exe
- 2003-06-23 12:00:00 170,768 -c--a-w c:\winnt\system32\dllcache\mpnotify.exe
+ 2009-01-22 08:23:58 192,000 -c--a-w c:\winnt\system32\dllcache\mpnotify.exe
- 2007-10-16 13:51:24 25,360 -c--a-w c:\winnt\system32\dllcache\mq1sync.exe
+ 2009-01-22 08:23:58 46,592 -c--a-w c:\winnt\system32\dllcache\mq1sync.exe
- 2007-10-17 07:14:32 38,160 -c--a-w c:\winnt\system32\dllcache\mqbkup.exe
+ 2009-01-22 08:23:59 59,904 -c--a-w c:\winnt\system32\dllcache\mqbkup.exe
- 2003-06-23 12:00:00 322,832 -c--a-w c:\winnt\system32\dllcache\mqexchng.exe
+ 2009-01-22 08:24:02 344,064 -c--a-w c:\winnt\system32\dllcache\mqexchng.exe
- 2007-10-16 13:51:28 109,328 -c--a-w c:\winnt\system32\dllcache\mqmig.exe
+ 2009-01-22 08:24:03 130,560 -c--a-w c:\winnt\system32\dllcache\mqmig.exe
- 2007-10-16 13:51:34 25,360 -c--a-w c:\winnt\system32\dllcache\mqsvc.exe
+ 2009-01-22 08:24:04 46,592 -c--a-w c:\winnt\system32\dllcache\mqsvc.exe
- 2003-06-23 12:00:00 29,456 -c--a-w c:\winnt\system32\dllcache\mrinfo.exe
+ 2009-01-22 08:24:04 50,688 -c--a-w c:\winnt\system32\dllcache\mrinfo.exe
- 2003-06-23 12:00:00 18,192 -c--a-w c:\winnt\system32\dllcache\msdtc.exe
+ 2009-01-22 08:24:05 39,424 -c--a-w c:\winnt\system32\dllcache\msdtc.exe
- 2002-08-30 17:24:06 69,120 -c--a-w c:\winnt\system32\dllcache\mshta.exe
+ 2009-01-22 08:24:05 90,112 -c--a-w c:\winnt\system32\dllcache\mshta.exe
- 2005-05-04 13:45:36 90,112 -c--a-w c:\winnt\system32\dllcache\msiexec.exe
+ 2009-01-22 08:24:06 111,616 -c--a-w c:\winnt\system32\dllcache\msiexec.exe
- 2008-06-25 15:33:10 100,864 -c--a-w c:\winnt\system32\dllcache\MSIMN.EXE
+ 2009-01-22 08:24:06 122,368 -c--a-w c:\winnt\system32\dllcache\MSIMN.EXE
- 2003-06-23 12:00:00 129,808 -c--a-w c:\winnt\system32\dllcache\msinfo32.exe
+ 2009-01-22 08:24:07 151,040 -c--a-w c:\winnt\system32\dllcache\msinfo32.exe
- 2003-06-23 12:00:00 337,168 -c--a-w c:\winnt\system32\dllcache\mspaint.exe
+ 2009-01-22 08:24:08 358,400 -c--a-w c:\winnt\system32\dllcache\mspaint.exe
- 2003-06-23 12:00:00 21,264 -c--a-w c:\winnt\system32\dllcache\msswchx.exe
+ 2009-01-22 08:24:08 42,496 -c--a-w c:\winnt\system32\dllcache\msswchx.exe
- 2005-06-03 10:24:50 137,488 -c--a-w c:\winnt\system32\dllcache\mstask.exe
+ 2009-01-22 08:24:10 158,720 -c--a-w c:\winnt\system32\dllcache\mstask.exe
- 2003-06-23 12:00:00 56,080 -c--a-w c:\winnt\system32\dllcache\mstinit.exe
+ 2009-01-22 08:24:10 77,312 -c--a-w c:\winnt\system32\dllcache\mstinit.exe
- 2005-08-30 05:05:22 264,976 -c--a-w c:\winnt\system32\dllcache\mtstocom.exe
+ 2009-01-22 08:24:11 286,208 -c--a-w c:\winnt\system32\dllcache\mtstocom.exe
- 1999-09-24 10:10:14 71,168 -c----w c:\winnt\system32\dllcache\mwcload.exe
+ 2009-01-22 08:24:11 92,672 -c--a-w c:\winnt\system32\dllcache\mwcload.exe
- 1999-09-24 10:10:18 75,264 -c----w c:\winnt\system32\dllcache\mwcloadw.exe
+ 2009-01-22 08:24:12 96,768 -c--a-w c:\winnt\system32\dllcache\mwcloadw.exe
- 1998-08-10 08:39:52 137,728 -c--a-w c:\winnt\system32\dllcache\mwcpyrt.exe
+ 2009-01-22 08:24:13 159,232 -c--a-w c:\winnt\system32\dllcache\mwcpyrt.exe
- 1999-10-06 23:24:42 173,056 -c--a-w c:\winnt\system32\dllcache\mwcsw32.exe
+ 2009-01-22 08:24:14 194,560 -c--a-w c:\winnt\system32\dllcache\mwcsw32.exe
- 1999-09-24 10:10:32 65,024 -c--a-w c:\winnt\system32\dllcache\mwmdmsvc.exe
+ 2009-01-22 08:24:14 86,528 -c--a-w c:\winnt\system32\dllcache\mwmdmsvc.exe
- 1999-04-01 11:56:30 217,088 -c----w c:\winnt\system32\dllcache\mwremind.exe
+ 2009-01-22 08:24:15 238,592 -c--a-w c:\winnt\system32\dllcache\mwremind.exe
- 1999-09-24 10:09:54 141,824 -c--a-w c:\winnt\system32\dllcache\mwssw32.exe
+ 2009-01-22 08:24:16 163,328 -c--a-w c:\winnt\system32\dllcache\mwssw32.exe
- 2003

Réponse 149 / 282

Lyonnais92 Messages postés 25159 Date d'inscription Statut Contributeur sécurité Dernière intervention 1 537

Re,

essaye de réinstaller un antivirus

=================

si tu fais un clic droit sur c:\winnt\system32\userinit.exe , est ce que on te propose de le faire scanner par quelque chose ?

Si oui, fais le.

Sinon,

essaye de le scanner sur Virustotal

Rends toi sur ce site :

https://www.virustotal.com/gui/

Clique sur parcourir et cherche ce fichier : c:\winnt\system32\userinit.exe

Clique sur Send File.

Un rapport va s'élaborer ligne à ligne.

Attends la fin. Il doit comprendre la taille du fichier envoyé.

Sauvegarde le rapport avec le bloc-note.

Copie le dans ta réponse.

Si VirusTotal indique que le fichier a déjà été analysé, cliquer sur le bouton Reanalyse le fichier maintenant

Si impossible,

relance kaspersky sur c:\winnt\system32

=================

as tu un fichier userinit.ex_ sur un répertoire ?

Réponse 150 / 282

lachoukrate Messages postés 234 Date d'inscription Statut Membre Dernière intervention 2

alors d'abord le rapport rsit :

Logfile of random's system information tool 1.05 (written by random/random)
Run by chouchouk at 2009-01-22 16:26:06
Microsoft Windows 2000 Professionnel Service Pack 4
System drive C: has 703 MB (18%) free of 4 GB
Total RAM: 480 MB (33% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:26:21, on 22/01/2009
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Normal

Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINNT\system32\drivers\KodakCCS.exe
C:\WINNT\system32\HPZipm12.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\ScsiAccess.EXE
C:\WINNT\system32\mspmspsv.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\system32\7z.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\System32\reader_s.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\TEMP\TMP5.tmp
C:\WINNT\System32\svchost.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\services.exe
C:\Program Files\QuickTime\qttask.exe
D:\HP Software Update\HPWuSchd2.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINNT\System32\reader_s.exe
C:\WINNT\system32\internat.exe
C:\Documents and Settings\chouchouk\reader_s.exe
D:\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
C:\WINNT\system32\sistray.exe
C:\Program Files\MultiRes\MultiRes.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\Java\jre1.6.0_07\bin\jucheck.exe
C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
C:\WINNT\system32\notepad.exe
C:\WINNT\explorer.exe
C:\Documents and Settings\chouchouk\Bureau\RSIT.exe
C:\Documents and Settings\chouchouk\Bureau\RSIT.exe
C:\hijackthis\chouchouk.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.xeoo.com/?p=h&a=f
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ww17.ads.eorezo.com/cgi-bin/advert/getads.cgi?x_format=redirect&x_dp_id=9
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://fr.rd.yahoo.com/customize/ie/defaults/su/msgr8/*https://fr.search.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! ¤u¨ã¦C - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
F2 - REG:system.ini: UserInit=C:\WINNT\explorer.exe,
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [HP Software Update] "D:\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [reader_s] C:\WINNT\System32\reader_s.exe
O4 - HKLM\..\Run: [VideoLAN] C:\WINNT\system32\head-22-10-10.exe
O4 - HKLM\..\Run: [Windows NT] C:\WINNT\vmmreg32.exe
O4 - HKLM\..\Run: [services] C:\WINNT\services.exe
O4 - HKCU\..\Run: [internat.exe] internat.exe
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [reader_s] C:\Documents and Settings\chouchouk\reader_s.exe
O4 - HKUS\.DEFAULT\..\Run: [internat.exe] internat.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'Default user')
O4 - HKUS\.DEFAULT\..\Run: [reader_s] C:\Documents and Settings\chouchouk\reader_s.exe (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [^SetupICWDesktop] C:\Program Files\Internet Explorer\Connection Wizard\icwconn1.exe /desktop (User 'Default user')
O4 - Startup: is-V6CJF.lnk = C:\Documents and Settings\chouchouk\Bureau\Virus Removal Tool\is-V6CJF\startup.exe
O4 - Startup: MultiRes.lnk = C:\Program Files\MultiRes\MultiRes.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = D:\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Logiciel Kodak EasyShare.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
O4 - Global Startup: Utility Tray.lnk = C:\WINNT\system32\sistray.exe
O8 - Extra context menu item: Download with &Shareaza - res://C:\Program Files\Shareaza\Plugins\RazaWebHook.dll/3000
O16 - DPF: {05317530-B882-449D-9421-18D94FA3ED34} (OSInfo Control) - http://www.sis.com/ocis/OSInfo.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
O16 - DPF: {16095503-786F-4097-AED6-5D567A26D760} (SiS_OCX Control) - http://www.sis.com/ocis/SiSAutodetectNT.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} (Driver Agent ActiveX Control) - http://plugin.driveragent.com/files/driveragent.cab
O20 - AppInit_DLLs:
O23 - Service: Avira AntiVir Personal – Free Antivirus Scheduler (AntiVirScheduler) - Unknown owner - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe (file missing)
O23 - Service: Avira AntiVir Personal – Free Antivirus Guard (AntiVirService) - Unknown owner - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe (file missing)
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Kodak Camera Connection Software (KodakCCS) - Eastman Kodak Company - C:\WINNT\system32\drivers\KodakCCS.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINNT\system32\HPZipm12.exe
O23 - Service: ptssvc - Unknown owner - D:\Kodak EasyShare software\bin\ptssvc.exe (file missing)
O23 - Service: ScsiAccess - Unknown owner - C:\WINNT\system32\ScsiAccess.EXE
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

Réponse 151 / 282

lachoukrate Messages postés 234 Date d'inscription Statut Membre Dernière intervention 2

rapport totavirus, c'est désespérant :-(

Suomi </fi/> | ihMdI </hi/> | </ko/> | עברית </he/> | </jp/> |
Slovenščina </sl/> | Dansk </dk/> | Русский </ru/> | Română </ro/> |
Türkçe </tr/> | Nederlands </nl/> | Ελληνικά </gr/> | Svenska </sv/> |
Português </pt/> | Italiano </it/> | </zh-tw/> | </zh-cn/> | Magyar
</hu/> | Deutsch </de/> | Česky </cs/> | Polski </pl/> | Español </es/>
| English </>
Virus Total </fr/>

Virustotal est un *service qui analyse les fichiers suspects* et
facilite la détection rapide des virus, vers, chevaux de Troie et
toutes sortes de malwares détectés par les moteurs antivirus. Plus
d'informations... </fr/sobre.html>

Fichier userinit.exe reçu le 2009.01.22 17:57:54 (CET)
Situation actuelle: en cours de chargement ... mis en file d'attente en
attente en cours d'analyse terminé NON TROUVE ARRETE
Résultat: 33/39 (84.62%)
en train de charger les informations du serveur...
Votre fichier est dans la file d'attente, en position: 1.
L'heure estimée de démarrage est entre 38 et 54 secondes.
Ne fermez pas la fenêtre avant la fin de l'analyse.
L'analyseur qui traitait votre fichier est actuellement stoppé, nous
allons attendre quelques secondes pour tenter de récupérer vos résultats.
Si vous attendez depuis plus de cinq minutes, vous devez renvoyer votre
fichier.
Votre fichier est, en ce moment, en cours d'analyse par VirusTotal,
les résultats seront affichés au fur et à mesure de leur génération.
Formaté Formaté <#>
Impression des résultats <javascript:window.print()> Impression des
résultats
Votre fichier a expiré ou n'existe pas.
Le service est en ce moment, stoppé, votre fichier attend d'être analysé
(position : ) depuis une durée indéfinie.

Vous pouvez attendre une réponse du Web (*re-chargement automatique*) ou
taper votre e-mail dans le formulaire ci-dessous et cliquer "Demande"
pour que le système vous envoie une notification quand l'analyse sera
terminée.
Email:

Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.73 2009.01.22 Virus.Win32.Bolzano!IK
AhnLab-V3 5.0.0.2 2009.01.22 Win32/Virut.D
AntiVir 7.9.0.57 2009.01.22 W32/Virut.Gen
Authentium 5.1.0.4 2009.01.22 W32/Virut.10640.B
Avast 4.8.1281.0 2009.01.22 Win32:Virut
AVG 8.0.0.229 2009.01.22 Win32/Virut.AC
BitDefender 7.2 2009.01.22 Win32.Virtob.Gen.9
CAT-QuickHeal 10.00 2009.01.22 W32.Virut.D
ClamAV 0.94.1 2009.01.22 W32.Virut.Gen.C-154
Comodo 942 2009.01.22 -
DrWeb 4.44.0.09170 2009.01.22 Win32.Virut.5
eSafe 7.0.17.0 2009.01.22 -
eTrust-Vet 31.6.6321 2009.01.22 Win32/Virut.10639.B
F-Prot 4.4.4.56 2009.01.21 W32/Virut.10640.B
F-Secure 8.0.14470.0 2009.01.22 Virus.Win32.Virut.q
Fortinet 3.117.0.0 2009.01.22 W32/MetaCrypt.1
GData 19 2009.01.22 Win32.Virtob.Gen.9
Ikarus T3.1.1.45.0 2009.01.22 Virus.Win32.Bolzano
K7AntiVirus 7.10.599 2009.01.22 Virus.Win32.Virut.Generic
Kaspersky 7.0.0.125 2009.01.22 Virus.Win32.Virut.q
McAfee 5502 2009.01.21 W32/Virut.gen
McAfee+Artemis 5502 2009.01.21 W32/Virut.gen
Microsoft 1.4205 2009.01.22 Virus:Win32/Virut.AE
NOD32 3790 2009.01.22 Win32/Virut.Gen
Norman 5.93.01 2009.01.22 W32/Virut.P
nProtect 2009.1.8.0 2009.01.22 -
Panda 9.5.1.2 2009.01.21 W32/Virutas.gen
PCTools 4.4.2.0 2009.01.22 -
Prevx1 V2 2009.01.22 -
Rising 21.13.32.00 2009.01.22 Win32.Virut.aw
SecureWeb-Gateway 6.7.6 2009.01.22 Win32.Virut.W
Sophos 4.37.0 2009.01.22 W32/Vetor-A
Sunbelt 3.2.1835.2 2009.01.16 Win32.Virut.Damaged (v)
Symantec 10 2009.01.22 W32.Virut.U
TheHacker 6.3.1.5.225 2009.01.21 W32/Virut.gen2
TrendMicro 8.700.0.1004 2009.01.22 PE_VIRUT.XP-4
VBA32 3.12.8.11 2009.01.22 Virus.Win32.Virut.q
ViRobot 2009.1.22.1574 2009.01.22 Win32.Virut.M
VirusBuster 4.5.11.0 2009.01.22 -

Information additionnelle
File size: 183296 bytes
MD5...: 98edccec7e6c84ac9af265b7da29fb9f
SHA1..: 2e1446754d05ad63d8944078c7b81b7b9ba4ad04
SHA256: 09e9ea4d7c44643b09f788212635bebda6c582b714ca35f3359c2de8ac4c034e
SHA512: 47d748079af18c4afd085ed0f7422d1f140b34221735f609ff0b6bb42a7978b0
0c5204b42ee8edbd82f688c213d0e15e22dbe3eaca595acd43b6a4d4db58cae0
ssdeep: 384:qsGRiT4KCbMqp317Motg7gNPHlECpa4bDqujGsnJE0RQWUYomWrcjc//HDf+
74gF:+1LHt8gLEOHJOdrcjsri9DVeqV71
PEiD..: -
TrID..: File type identification
Win64 Executable Generic (59.6%)
Win32 Executable MS Visual C++ (generic) (26.2%)
Win32 Executable Generic (5.9%)
Win32 Dynamic Link Library (generic) (5.2%)
Generic Win/DOS Executable (1.3%)
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x1003630
timedatestamp.....: 0x0 (Thu Jan 01 00:00:00 1970)
machinetype.......: 0x14c (I386)

( 3 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x2faa 0x3000 5.95 da7d736162e6abca40530cb9f730dc15
.data 0x4000 0x118 0x200 1.72 3ef4fa1404cd558eee426ae0ef529272
.rsrc 0x5000 0x29000 0x29000 0.96 867fbe95419a52268b5facc38477064f

( 10 imports )
> ADVAPI32.dll: RegQueryInfoKeyW, RegQueryValueExW, RegOpenKeyExW,
OpenProcessToken, DeregisterEventSource, ReportEventW, RegCloseKey,
RegisterEventSourceW, GetUserNameW
> CRYPT32.dll: CryptProtectData
> WINSPOOL.DRV: SpoolerInit
> USER32.dll: wsprintfW, CharNextW, LoadStringW, MessageBoxW,
LoadRemoteFonts
> SHELL32.dll: ShellExecuteExW
> ntdll.dll: NtClose, _chkstk, _wcsicmp, NtOpenKey, DbgPrint, wcscpy,
RtlInitUnicodeString, memmove
> IMM32.dll: ImmDisableIME
> USERENV.dll: -
> MSVCRT.dll: __set_app_type, _controlfp, _except_handler3, __p__fmode,
_adjust_fdiv, __setusermatherr, _initterm, exit, _XcptFilter, _exit,
_acmdln, __getmainargs, __p__commode
> KERNEL32.dll: GetCurrentProcessId, SetEvent, GetModuleHandleA,
CompareFileTime, GetThreadLocale, GetCurrentThread, SetThreadPriority,
CreateThread, TerminateThread, LoadLibraryW, GetProcAddress,
FreeLibrary, Sleep, OpenEventW, GetEnvironmentVariableW,
SetCurrentDirectoryW, GetPrivateProfileStringW, GetFileAttributesExW,
GetCurrentProcess, GetLastError, FormatMessageW,
SetEnvironmentVariableW, lstrcatW, lstrcmpiW, GetSystemDirectoryW,
GetStartupInfoA, SearchPathW, ExpandEnvironmentStringsW, LocalAlloc,
LocalFree, CreateProcessW, lstrlenW, lstrcpyW, WaitForSingleObject,
CloseHandle

( 0 exports )

ATENTION *ATTENTION:* VirusTotal est un service gratuit offert par
Hispasec Sistemas. Il n'y a aucune garantie quant à la disponibilité et
la continuité de ce service. Bien que le taux de détection permis par
l'utilisation de multiples moteurs antivirus soit bien supérieur à celui
offert par seulement un produit, *ces résultats NE garantissent PAS
qu'un fichier est sans danger*. Il n'y a actuellement aucune solution
qui offre un taux d'efficacité de 100% pour la détection des virus et
malwares.

Autre fichier </fr/>

VirusTotal © Hispasec Sistemas <https://www.hispasec.com/> -
<http://blog.hispasec.com/virustotal/rss20.xml> Blog
<http://blog.hispasec.com/virustotal/> - Contact: info@virustotal.com
<mailto:info@virustotal.com> - Terms of Service & Privacy Policy
</privacy.html>

Réponse 152 / 282

Lyonnais92 Messages postés 25159 Date d'inscription Statut Contributeur sécurité Dernière intervention 1 537

Re,

pas de défaitislme.

1) as tu un fichier userinit.ex_ sur un répertoire ?

2) essaye de réinstaller antivi

3) relance kaspersky AV sur c:\winnt\system32

Réponse 153 / 282

lachoukrate Messages postés 234 Date d'inscription Statut Membre Dernière intervention 2

ca y est j'ai trouvé userinit.exe dans systeme32 -> c'est lui que tu cherches?
Je crois que je viens de finir de désinstaller avira, mais lors de la réinstallation il me dit : "la somme CRC de :\docume~1\chouch~1~\temp\rarSFXO\basic\setup.exe été modifié. Ca peut etre du à un virus". Je sais pas ce que cela veut dire.
Je vais redémarrer l'ordi,
de toute manière je dois partir au boulot, je rentre vers 21h
J'ai lancé le kaspersky scan, mais soit je me suis plantée soit il m'a installé un truc le kaspersky online scanner -> est-ce ok?

Réponse 154 / 282

Lyonnais92 Messages postés 25159 Date d'inscription Statut Contributeur sécurité Dernière intervention 1 537

Re,

on voit ce soir à ton retour.

Réponse 155 / 282

lachoukrate Messages postés 234 Date d'inscription Statut Membre Dernière intervention 2

alors quand je clique pour "ouvrir" userinit.exe, il m'ouvre "mes documents" ???!!!
La version est 5.0.2195.6612 crée le 23/06/03.
Moi je n'ai l'ordi que depuis 10 mois, et j'y ai installé windows 2000 en compartitionnant le DD en deux parties C à 4Go et D 2Go pour mettre à l'abri les utilitaires (carte graphiques etc... + documents importants). Ben oui parce que je lui avais fait un coup de jus à mon ordi, et du coup je n'ai trouvé que le cd windows 2000 chez un voisin que j'ai donc du installer(pas le voisin lol)

Antivir me redit que la somme CRC.......... Donc toujours pas d'antivirus...

J'ai lancé le scan pour winnt\system32\userinit.exe qui dit :

Scanned file: userinit.exe - Infected
userinit.exe - infected by Virus.Win32.Virut.q

Statistics:
Known viruses: 1668742 Updated: 22-01-2009
File size (Kb): 179 Virus bodies: 1
Files: 1 Warnings: 0
Archives: 0 Suspicious: 0

pareil pour l'autre fichier :

Scanned file: services.exe - Infected
services.exe - infected by Virus.Win32.Virut.q

Statistics:
Known viruses: 1668742 Updated: 22-01-2009
File size (Kb): 105 Virus bodies: 1
Files: 1 Warnings: 0
Archives: 0 Suspicious: 0

donc je pense que pour les autres ca doit etre pareil
c'est de la sacré sal.....perie ce truc

Réponse 156 / 282

Lyonnais92 Messages postés 25159 Date d'inscription Statut Contributeur sécurité Dernière intervention 1 537

Re,

tu as CCleaner ou ATFcleaner ?

si oui, fais les passer pour vider les fichiers temporaires.

Vide ta Corbeille.

Cherche si tu trouves

userinit.ex_

soit sur l'ordi soit dans le CD.

Relance la procédure de Kaspersky AVP sur c:\winnt\system32

Réponse 157 / 282

lachoukrate Messages postés 234 Date d'inscription Statut Membre Dernière intervention 2

j'ai fait recherche sur userinit.exe et userinit.ex_ rien. MAis il est bien dans le c:\winnt\system32\
J'ai passé ccleaner. C'est propre

scan kaspersky

Scanned file: userinit.exe - Infected
userinit.exe - infected by Virus.Win32.Virut.q

Statistics:
Known viruses: 1668742 Updated: 22-01-2009
File size (Kb): 179 Virus bodies: 1
Files: 1 Warnings: 0
Archives: 0 Suspicious: 0

Réponse 158 / 282

lachoukrate Messages postés 234 Date d'inscription Statut Membre Dernière intervention 2

dans analyse de mbam, il y a 10 processus c:\winnt\system32\svchost.exe dont un en service sur les 10. Ca fait beaucoup non??? Surtout qu'il ne donne rien quand je lui clique dessus.
1 seul services.exe en service aussi. C peut etre pas interessant... mais ca occupe lol
Mbam ne voit pas qu'il est infecté userinit.exe. D'ailleurs c'est userinit.exe ou .ex_?

Réponse 159 / 282

Lyonnais92 Messages postés 25159 Date d'inscription Statut Contributeur sécurité Dernière intervention 1 537

Re,

les fichiers userinit.exe semblent tous infectés par Virut (sauf un éventuel sur le CD).

Je connais mal W2000. Sous Xp, il y a une sauvegarde sous le nom userinit.ex_ qui permet de reconstituer un fichier userinit.exe quand celui-ci est infecté

====================

J'ai donc besoin que tu utilises la fonction Rechercher de windows pour trouver userinit.ex_ sur le disque dur.

Si tu ne trouves rien, cherche sur le CD si tu trouve userinit.

=====================

Il faut relancer Kaspersky AVP (en mode sans échec) et scanner seulement c:\winnt\system32

pour aller plus vite et pour avoir un rapport plus court (que je vois mieux ce qui se passe).

Réponse 160 / 282

lachoukrate Messages postés 234 Date d'inscription Statut Membre Dernière intervention 2

alors attend pour reconnecter le lecteur cd faut que j'éteigne l'ordi et que je débranche mes disques durs internes "externes". Oui ceux que j'ai récupérés quand mon ordi est mort l'année dernière
Bon et bien sur en mettant le cd xp que j'ai sur windows 2000 ca marchera pas :-(
A taleur

Discussions similaires

Devinette

Que peut faire 3fois/j un homme, mais qu'1fois/j une femme

visualiser une image présente dans le cache

Aide pour une devinette

on dis une chose positive ou positif ?

Votre réponse

Discussions similaires