VIRUS
GAZODUC
-
jlpjlp Messages postés 52399 Statut Contributeur sécurité -
jlpjlp Messages postés 52399 Statut Contributeur sécurité -
Bonjour,
Jai un virus qui se fait passer pour system protector. Il a réussi à empecher le demarrage de MC AFEE et CCLEANER et tous les spywares que je telecharge sont bloqué . Comment forcer le demarrage de mc afee pour virer cette saloperie. De plus , il controle ma souris. J'ai vraiment du mal à la positionner où je veux. Une solution sans formater le PC SVP. Il controle aussi mon clavier car je n'arrive plus à écrire une phrase sans oublier une lettre dans un mot.
Il doit aussi controler internet explorer car il ouvre des sites et il souhaite que j'installe un anti-virus car il dit que mon pc est complement verolé. Il lance même le chargement du programme seul.
HELP!!!!!!!!!!
Jai un virus qui se fait passer pour system protector. Il a réussi à empecher le demarrage de MC AFEE et CCLEANER et tous les spywares que je telecharge sont bloqué . Comment forcer le demarrage de mc afee pour virer cette saloperie. De plus , il controle ma souris. J'ai vraiment du mal à la positionner où je veux. Une solution sans formater le PC SVP. Il controle aussi mon clavier car je n'arrive plus à écrire une phrase sans oublier une lettre dans un mot.
Il doit aussi controler internet explorer car il ouvre des sites et il souhaite que j'installe un anti-virus car il dit que mon pc est complement verolé. Il lance même le chargement du programme seul.
HELP!!!!!!!!!!
A voir également:
- VIRUS
- Virus mcafee - Accueil - Piratage
- Virus facebook demande d'amis - Accueil - Facebook
- Virus informatique - Guide
- Panda anti virus gratuit - Télécharger - Antivirus & Antimalwares
- Undisclosed-recipients virus - Guide
27 réponses
OK.Voici le rapport.
Pour le net ces mieux. Plus d'ouverture intempestives.
Pour la souris. Une horreur! Le clavier OK.
A+
alwarebytes' Anti-Malware 1.36
Version de la base de données: 2162
Windows 5.1.2600 Service Pack 3
21/05/2009 17:51:22
mbam-log-2009-05-21 (17-51-22).txt
Type de recherche: Examen complet (C:\|)
Eléments examinés: 197354
Temps écoulé: 58 minute(s), 2 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 1
Clé(s) du Registre infectée(s): 5
Valeur(s) du Registre infectée(s): 2
Elément(s) de données du Registre infecté(s): 1
Dossier(s) infecté(s): 3
Fichier(s) infecté(s): 48
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
C:\WINDOWS\system32\__c0054E04.dat (Trojan.Agent) -> Delete on reboot.
Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8109fd3d-d891-4f80-8339-50a4913ace6f} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{a6573479-9075-4a65-98a6-19fd29cf7374} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\__c0054e04 (Trojan.Vundo) -> Delete on reboot.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\asc3550p (Rootkit.Agent) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\ShellBrowser\{07b18ea9-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\windowsservicesstartup (Trojan.Agent) -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
Dossier(s) infecté(s):
C:\Documents and Settings\LOUIS\Application Data\nidle (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files\WinZix (Trojan.Lop) -> Quarantined and deleted successfully.
C:\Program Files\NetPumper (Adware.NetPumper) -> Quarantined and deleted successfully.
Fichier(s) infecté(s):
C:\WINDOWS\system32\config\49899136.Evt (Rootkit.Agent.H) -> Quarantined and deleted successfully.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\M3OUTLCN.DLL.vir (Adware.MyWeb) -> Quarantined and deleted successfully.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\M3SRCHMN.EXE_old.vir (Adware.MyWeb) -> Quarantined and deleted successfully.
C:\Qoobox\Quarantine\C\WINDOWS\system32\avica.dll.vir (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\Qoobox\Quarantine\C\WINDOWS\system32\drivers\down\855718.exe.vir (Trojan.Packed) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0006816.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008814.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008837.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0009099.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010069.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010087.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011086.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011163.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011179.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011254.dll (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011253.DLL (Adware.MyWeb) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011256.exe (Trojan.Packed) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011386.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP2\A0000048.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0002107.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0002124.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0003124.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0004141.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP5\A0004155.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP5\A0004227.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP5\A0004259.dll (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP5\A0004272.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP5\A0004331.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP6\A0004472.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0004789.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0005792.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP8\A0005814.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\bthser.dll (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\bootvi.dll (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\browseui(2.dll (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\__c0041E8F.exe (Trojan.Vundo.V) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\__c006134E.exe (Trojan.Vundo.V) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\__c006EC14.exe (Trojan.Vundo.V) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\__c0083216.exe (Trojan.Vundo.V) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\__c009B3FA.exe (Trojan.Vundo.V) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\__c00A5148.exe (Trojan.Vundo.V) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\__c00BAD99.exe (Trojan.Vundo.V) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\__c00C49C4.exe (Trojan.Vundo.V) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\__c00DF8C7.exe (Trojan.Vundo.V) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\__c00E9105.exe (Trojan.Vundo.V) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\__c00FB0C4.exe (Trojan.Vundo.V) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\__c0054E04.dat (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\__c0073E49.exe (Trojan.Vundo) -> Quarantined and deleted successfully.
Pour le net ces mieux. Plus d'ouverture intempestives.
Pour la souris. Une horreur! Le clavier OK.
A+
alwarebytes' Anti-Malware 1.36
Version de la base de données: 2162
Windows 5.1.2600 Service Pack 3
21/05/2009 17:51:22
mbam-log-2009-05-21 (17-51-22).txt
Type de recherche: Examen complet (C:\|)
Eléments examinés: 197354
Temps écoulé: 58 minute(s), 2 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 1
Clé(s) du Registre infectée(s): 5
Valeur(s) du Registre infectée(s): 2
Elément(s) de données du Registre infecté(s): 1
Dossier(s) infecté(s): 3
Fichier(s) infecté(s): 48
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
C:\WINDOWS\system32\__c0054E04.dat (Trojan.Agent) -> Delete on reboot.
Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8109fd3d-d891-4f80-8339-50a4913ace6f} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{a6573479-9075-4a65-98a6-19fd29cf7374} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\__c0054e04 (Trojan.Vundo) -> Delete on reboot.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\asc3550p (Rootkit.Agent) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\ShellBrowser\{07b18ea9-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\windowsservicesstartup (Trojan.Agent) -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
Dossier(s) infecté(s):
C:\Documents and Settings\LOUIS\Application Data\nidle (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files\WinZix (Trojan.Lop) -> Quarantined and deleted successfully.
C:\Program Files\NetPumper (Adware.NetPumper) -> Quarantined and deleted successfully.
Fichier(s) infecté(s):
C:\WINDOWS\system32\config\49899136.Evt (Rootkit.Agent.H) -> Quarantined and deleted successfully.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\M3OUTLCN.DLL.vir (Adware.MyWeb) -> Quarantined and deleted successfully.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\M3SRCHMN.EXE_old.vir (Adware.MyWeb) -> Quarantined and deleted successfully.
C:\Qoobox\Quarantine\C\WINDOWS\system32\avica.dll.vir (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\Qoobox\Quarantine\C\WINDOWS\system32\drivers\down\855718.exe.vir (Trojan.Packed) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0006816.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008814.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008837.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0009099.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010069.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010087.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011086.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011163.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011179.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011254.dll (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011253.DLL (Adware.MyWeb) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011256.exe (Trojan.Packed) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011386.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP2\A0000048.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0002107.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0002124.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0003124.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0004141.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP5\A0004155.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP5\A0004227.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP5\A0004259.dll (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP5\A0004272.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP5\A0004331.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP6\A0004472.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0004789.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0005792.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP8\A0005814.sys (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\bthser.dll (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\bootvi.dll (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\browseui(2.dll (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\__c0041E8F.exe (Trojan.Vundo.V) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\__c006134E.exe (Trojan.Vundo.V) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\__c006EC14.exe (Trojan.Vundo.V) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\__c0083216.exe (Trojan.Vundo.V) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\__c009B3FA.exe (Trojan.Vundo.V) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\__c00A5148.exe (Trojan.Vundo.V) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\__c00BAD99.exe (Trojan.Vundo.V) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\__c00C49C4.exe (Trojan.Vundo.V) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\__c00DF8C7.exe (Trojan.Vundo.V) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\__c00E9105.exe (Trojan.Vundo.V) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\__c00FB0C4.exe (Trojan.Vundo.V) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\__c0054E04.dat (Trojan.Vundo) -> Delete on reboot.
C:\WINDOWS\system32\__c0073E49.exe (Trojan.Vundo) -> Quarantined and deleted successfully.
colle le rapport d'un scan en ligne
avec un des suivants:
bitdefender en ligne :
http://www.bitdefender.fr/scan_fr/scan8/ie.html
Panda en ligne :
http://pandasoftware.fr
Kaspersky en ligne
https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
______________________
essaie de reinstaller ton antivirus et dis si il marche
avec un des suivants:
bitdefender en ligne :
http://www.bitdefender.fr/scan_fr/scan8/ie.html
Panda en ligne :
http://pandasoftware.fr
Kaspersky en ligne
https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
______________________
essaie de reinstaller ton antivirus et dis si il marche
Bonjour
Voici le scan avec PANDA
A+
PROTECTIONS: 1
MALWARE: 31
SUSPECTS: 16
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description Version Active Updated
;===================================================================================================================================================================================
McAfee VirusScan Yes Yes
;===================================================================================================================================================================================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===================================================================================================================================================================================
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@doubleclick[1].txt
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\CECILE.XAVIER.000\Cookies\cecile@doubleclick[1].txt
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@doubleclick[1].txt
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@atdmt[1].txt
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@atdmt[2].txt
00145393 Cookie/Tradedoubler TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@tradedoubler[2].txt
00145393 Cookie/Tradedoubler TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@tradedoubler[1].txt
00145738 Cookie/Mediaplex TrackingCookie No 0 Yes No C:\Documents and Settings\CECILE.XAVIER.000\Cookies\cecile@mediaplex[1].txt
00145738 Cookie/Mediaplex TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@mediaplex[2].txt
00167704 Cookie/Xiti TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@xiti[1].txt
00167704 Cookie/Xiti TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@xiti[1].txt
00167753 Cookie/Statcounter TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@statcounter[2].txt
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@ad.yieldmanager[1].txt
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@ad.yieldmanager[1].txt
00168061 Cookie/Apmebf TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@apmebf[2].txt
00168061 Cookie/Apmebf TrackingCookie No 0 Yes No C:\Documents and Settings\CECILE.XAVIER.000\Cookies\cecile@apmebf[1].txt
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@serving-sys[1].txt
00168093 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@bs.serving-sys[2].txt
00168106 Cookie/Weborama TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@weborama[1].txt
00168106 Cookie/Weborama TrackingCookie No 0 Yes No C:\Documents and Settings\CECILE.XAVIER.000\Cookies\cecile@weborama[1].txt
00168106 Cookie/Weborama TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@weborama[1].txt
00168109 Cookie/Adtech TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@adtech[2].txt
00168110 Cookie/Server.iad.Liveperson TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@server.iad.liveperson[2].txt
00168116 Cookie/Comclick TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@fl01.ct2.comclick[1].txt
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@advertising[1].txt
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@advertising[2].txt
00172221 Cookie/Zedo TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@zedo[2].txt
00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@bluestreak[2].txt
00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@bluestreak[2].txt
00184846 Cookie/Adrevolver TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@adrevolver[2].txt
00207936 Cookie/Adviva TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@adviva[1].txt
00266415 application/regfreeze HackTools No 0 Yes No hkey_current_user\software\actualresearch\registryfreeze
00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@smartadserver[1].txt
00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@smartadserver[2].txt
00590315 Rootkit/Agent.LNB HackTools No 0 Yes No C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011789.sys
00701452 W32/SdBot.MCB.worm Virus/Trojan No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011686.exe
01185375 Application/Psexec.A HackTools No 0 Yes No C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011271.EXE
02870155 Application/VirusRanger HackTools No 0 Yes No C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0009090.dll
02885963 Rootkit/Booto.C Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011263.sys
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008821.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008822.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008820.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008840.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008843.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0005798.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP6\A0004474.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0005795.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0005799.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\Qoobox\Quarantine\C\WINDOWS\system32\wintems.exe.vir
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010090.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\Qoobox\Quarantine\C\WINDOWS\system32\mdelk.exe.vir
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011088.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP6\A0004335.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011685.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011261.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011262.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008844.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011670.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011395.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011419.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011423.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011475.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011493.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011579.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011597.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011598.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011599.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011618.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011619.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011635.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011651.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011652.exe
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011387.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011180.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0002108.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0002125.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0003125.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0004142.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP5\A0004154.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP5\A0004228.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP5\A0004273.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP5\A0004332.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011164.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011087.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP8\A0005815.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010088.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010070.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008838.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008815.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP6\A0004473.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0006817.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0009100.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0004790.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0005793.sys
03074964 Trj/CI.A Virus/Trojan No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP6\A0004760.exe
03074964 Trj/CI.A Virus/Trojan No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011394.exe
03074964 Trj/CI.A Virus/Trojan No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011689.exe
03074964 Trj/CI.A Virus/Trojan No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0004800.exe
03919024 Generic Malware Virus/Trojan No 0 Yes Yes C:\WINDOWS\UbiSoft\SetupUbi.exe
05471009 Generic Trojan Virus/Trojan No 0 No No C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0002068.exe[C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0002068.exe][Setup_00.exe][Setup_00.exe][NETPUM~1.EXE][NetPumper-1.50-setup.exe]
;===================================================================================================================================================================================
SUSPECTS
Sent Location I
;===================================================================================================================================================================================
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0009076.exe[32788R22FWJFW\n.com]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0009076.exe[32788R22FWJFW\NirCmd.cfexe]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010068.exe[32788R22FWJFW\n.com]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010068.exe[32788R22FWJFW\NirCmd.cfexe]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010079.exe[32788R22FWJFW\n.com]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010079.exe[32788R22FWJFW\NirCmd.cfexe]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010093.exe[32788R22FWJFW\n.com]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010093.exe[32788R22FWJFW\NirCmd.cfexe]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011138.com I
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011140.com I
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011222.com I
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011224.com I
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011332.com I
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011334.com I
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011752.dll I
Yes C:\WINDOWS\NIRCMD.exe I
;===================================================================================================================================================================================
VULNERABILITIES
Id Severity Description I
;===================================================================================================================================================================================
;===================================================================================================================================================================================
Voici le scan avec PANDA
A+
PROTECTIONS: 1
MALWARE: 31
SUSPECTS: 16
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description Version Active Updated
;===================================================================================================================================================================================
McAfee VirusScan Yes Yes
;===================================================================================================================================================================================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===================================================================================================================================================================================
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@doubleclick[1].txt
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\CECILE.XAVIER.000\Cookies\cecile@doubleclick[1].txt
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@doubleclick[1].txt
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@atdmt[1].txt
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@atdmt[2].txt
00145393 Cookie/Tradedoubler TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@tradedoubler[2].txt
00145393 Cookie/Tradedoubler TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@tradedoubler[1].txt
00145738 Cookie/Mediaplex TrackingCookie No 0 Yes No C:\Documents and Settings\CECILE.XAVIER.000\Cookies\cecile@mediaplex[1].txt
00145738 Cookie/Mediaplex TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@mediaplex[2].txt
00167704 Cookie/Xiti TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@xiti[1].txt
00167704 Cookie/Xiti TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@xiti[1].txt
00167753 Cookie/Statcounter TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@statcounter[2].txt
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@ad.yieldmanager[1].txt
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@ad.yieldmanager[1].txt
00168061 Cookie/Apmebf TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@apmebf[2].txt
00168061 Cookie/Apmebf TrackingCookie No 0 Yes No C:\Documents and Settings\CECILE.XAVIER.000\Cookies\cecile@apmebf[1].txt
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@serving-sys[1].txt
00168093 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@bs.serving-sys[2].txt
00168106 Cookie/Weborama TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@weborama[1].txt
00168106 Cookie/Weborama TrackingCookie No 0 Yes No C:\Documents and Settings\CECILE.XAVIER.000\Cookies\cecile@weborama[1].txt
00168106 Cookie/Weborama TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@weborama[1].txt
00168109 Cookie/Adtech TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@adtech[2].txt
00168110 Cookie/Server.iad.Liveperson TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@server.iad.liveperson[2].txt
00168116 Cookie/Comclick TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@fl01.ct2.comclick[1].txt
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@advertising[1].txt
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@advertising[2].txt
00172221 Cookie/Zedo TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@zedo[2].txt
00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@bluestreak[2].txt
00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@bluestreak[2].txt
00184846 Cookie/Adrevolver TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@adrevolver[2].txt
00207936 Cookie/Adviva TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@adviva[1].txt
00266415 application/regfreeze HackTools No 0 Yes No hkey_current_user\software\actualresearch\registryfreeze
00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@smartadserver[1].txt
00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@smartadserver[2].txt
00590315 Rootkit/Agent.LNB HackTools No 0 Yes No C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011789.sys
00701452 W32/SdBot.MCB.worm Virus/Trojan No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011686.exe
01185375 Application/Psexec.A HackTools No 0 Yes No C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011271.EXE
02870155 Application/VirusRanger HackTools No 0 Yes No C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0009090.dll
02885963 Rootkit/Booto.C Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011263.sys
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008821.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008822.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008820.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008840.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008843.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0005798.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP6\A0004474.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0005795.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0005799.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\Qoobox\Quarantine\C\WINDOWS\system32\wintems.exe.vir
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010090.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\Qoobox\Quarantine\C\WINDOWS\system32\mdelk.exe.vir
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011088.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP6\A0004335.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011685.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011261.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011262.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008844.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011670.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011395.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011419.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011423.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011475.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011493.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011579.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011597.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011598.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011599.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011618.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011619.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011635.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011651.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011652.exe
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011387.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011180.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0002108.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0002125.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0003125.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0004142.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP5\A0004154.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP5\A0004228.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP5\A0004273.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP5\A0004332.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011164.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011087.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP8\A0005815.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010088.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010070.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008838.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008815.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP6\A0004473.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0006817.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0009100.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0004790.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0005793.sys
03074964 Trj/CI.A Virus/Trojan No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP6\A0004760.exe
03074964 Trj/CI.A Virus/Trojan No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011394.exe
03074964 Trj/CI.A Virus/Trojan No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011689.exe
03074964 Trj/CI.A Virus/Trojan No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0004800.exe
03919024 Generic Malware Virus/Trojan No 0 Yes Yes C:\WINDOWS\UbiSoft\SetupUbi.exe
05471009 Generic Trojan Virus/Trojan No 0 No No C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0002068.exe[C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0002068.exe][Setup_00.exe][Setup_00.exe][NETPUM~1.EXE][NetPumper-1.50-setup.exe]
;===================================================================================================================================================================================
SUSPECTS
Sent Location I
;===================================================================================================================================================================================
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0009076.exe[32788R22FWJFW\n.com]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0009076.exe[32788R22FWJFW\NirCmd.cfexe]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010068.exe[32788R22FWJFW\n.com]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010068.exe[32788R22FWJFW\NirCmd.cfexe]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010079.exe[32788R22FWJFW\n.com]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010079.exe[32788R22FWJFW\NirCmd.cfexe]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010093.exe[32788R22FWJFW\n.com]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010093.exe[32788R22FWJFW\NirCmd.cfexe]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011138.com I
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011140.com I
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011222.com I
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011224.com I
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011332.com I
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011334.com I
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011752.dll I
Yes C:\WINDOWS\NIRCMD.exe I
;===================================================================================================================================================================================
VULNERABILITIES
Id Severity Description I
;===================================================================================================================================================================================
;===================================================================================================================================================================================
Bonjour
Voici le scan avec PANDA
A+
PROTECTIONS: 1
MALWARE: 31
SUSPECTS: 16
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description Version Active Updated
;===================================================================================================================================================================================
McAfee VirusScan Yes Yes
;===================================================================================================================================================================================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===================================================================================================================================================================================
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@doubleclick[1].txt
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\CECILE.XAVIER.000\Cookies\cecile@doubleclick[1].txt
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@doubleclick[1].txt
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@atdmt[1].txt
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@atdmt[2].txt
00145393 Cookie/Tradedoubler TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@tradedoubler[2].txt
00145393 Cookie/Tradedoubler TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@tradedoubler[1].txt
00145738 Cookie/Mediaplex TrackingCookie No 0 Yes No C:\Documents and Settings\CECILE.XAVIER.000\Cookies\cecile@mediaplex[1].txt
00145738 Cookie/Mediaplex TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@mediaplex[2].txt
00167704 Cookie/Xiti TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@xiti[1].txt
00167704 Cookie/Xiti TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@xiti[1].txt
00167753 Cookie/Statcounter TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@statcounter[2].txt
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@ad.yieldmanager[1].txt
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@ad.yieldmanager[1].txt
00168061 Cookie/Apmebf TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@apmebf[2].txt
00168061 Cookie/Apmebf TrackingCookie No 0 Yes No C:\Documents and Settings\CECILE.XAVIER.000\Cookies\cecile@apmebf[1].txt
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@serving-sys[1].txt
00168093 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@bs.serving-sys[2].txt
00168106 Cookie/Weborama TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@weborama[1].txt
00168106 Cookie/Weborama TrackingCookie No 0 Yes No C:\Documents and Settings\CECILE.XAVIER.000\Cookies\cecile@weborama[1].txt
00168106 Cookie/Weborama TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@weborama[1].txt
00168109 Cookie/Adtech TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@adtech[2].txt
00168110 Cookie/Server.iad.Liveperson TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@server.iad.liveperson[2].txt
00168116 Cookie/Comclick TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@fl01.ct2.comclick[1].txt
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@advertising[1].txt
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@advertising[2].txt
00172221 Cookie/Zedo TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@zedo[2].txt
00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@bluestreak[2].txt
00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@bluestreak[2].txt
00184846 Cookie/Adrevolver TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@adrevolver[2].txt
00207936 Cookie/Adviva TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@adviva[1].txt
00266415 application/regfreeze HackTools No 0 Yes No hkey_current_user\software\actualresearch\registryfreeze
00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@smartadserver[1].txt
00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@smartadserver[2].txt
00590315 Rootkit/Agent.LNB HackTools No 0 Yes No C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011789.sys
00701452 W32/SdBot.MCB.worm Virus/Trojan No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011686.exe
01185375 Application/Psexec.A HackTools No 0 Yes No C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011271.EXE
02870155 Application/VirusRanger HackTools No 0 Yes No C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0009090.dll
02885963 Rootkit/Booto.C Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011263.sys
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008821.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008822.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008820.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008840.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008843.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0005798.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP6\A0004474.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0005795.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0005799.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\Qoobox\Quarantine\C\WINDOWS\system32\wintems.exe.vir
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010090.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\Qoobox\Quarantine\C\WINDOWS\system32\mdelk.exe.vir
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011088.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP6\A0004335.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011685.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011261.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011262.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008844.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011670.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011395.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011419.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011423.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011475.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011493.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011579.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011597.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011598.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011599.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011618.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011619.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011635.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011651.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011652.exe
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011387.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011180.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0002108.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0002125.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0003125.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0004142.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP5\A0004154.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP5\A0004228.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP5\A0004273.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP5\A0004332.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011164.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011087.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP8\A0005815.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010088.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010070.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008838.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008815.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP6\A0004473.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0006817.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0009100.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0004790.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0005793.sys
03074964 Trj/CI.A Virus/Trojan No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP6\A0004760.exe
03074964 Trj/CI.A Virus/Trojan No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011394.exe
03074964 Trj/CI.A Virus/Trojan No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011689.exe
03074964 Trj/CI.A Virus/Trojan No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0004800.exe
03919024 Generic Malware Virus/Trojan No 0 Yes Yes C:\WINDOWS\UbiSoft\SetupUbi.exe
05471009 Generic Trojan Virus/Trojan No 0 No No C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0002068.exe[C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0002068.exe][Setup_00.exe][Setup_00.exe][NETPUM~1.EXE][NetPumper-1.50-setup.exe]
;===================================================================================================================================================================================
SUSPECTS
Sent Location I
;===================================================================================================================================================================================
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0009076.exe[32788R22FWJFW\n.com]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0009076.exe[32788R22FWJFW\NirCmd.cfexe]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010068.exe[32788R22FWJFW\n.com]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010068.exe[32788R22FWJFW\NirCmd.cfexe]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010079.exe[32788R22FWJFW\n.com]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010079.exe[32788R22FWJFW\NirCmd.cfexe]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010093.exe[32788R22FWJFW\n.com]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010093.exe[32788R22FWJFW\NirCmd.cfexe]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011138.com I
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011140.com I
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011222.com I
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011224.com I
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011332.com I
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011334.com I
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011752.dll I
Yes C:\WINDOWS\NIRCMD.exe I
;===================================================================================================================================================================================
VULNERABILITIES
Id Severity Description I
;===================================================================================================================================================================================
;===================================================================================================================================================================================
Voici le scan avec PANDA
A+
PROTECTIONS: 1
MALWARE: 31
SUSPECTS: 16
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description Version Active Updated
;===================================================================================================================================================================================
McAfee VirusScan Yes Yes
;===================================================================================================================================================================================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===================================================================================================================================================================================
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@doubleclick[1].txt
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\CECILE.XAVIER.000\Cookies\cecile@doubleclick[1].txt
00139061 Cookie/Doubleclick TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@doubleclick[1].txt
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@atdmt[1].txt
00139064 Cookie/Atlas DMT TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@atdmt[2].txt
00145393 Cookie/Tradedoubler TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@tradedoubler[2].txt
00145393 Cookie/Tradedoubler TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@tradedoubler[1].txt
00145738 Cookie/Mediaplex TrackingCookie No 0 Yes No C:\Documents and Settings\CECILE.XAVIER.000\Cookies\cecile@mediaplex[1].txt
00145738 Cookie/Mediaplex TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@mediaplex[2].txt
00167704 Cookie/Xiti TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@xiti[1].txt
00167704 Cookie/Xiti TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@xiti[1].txt
00167753 Cookie/Statcounter TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@statcounter[2].txt
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@ad.yieldmanager[1].txt
00168056 Cookie/YieldManager TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@ad.yieldmanager[1].txt
00168061 Cookie/Apmebf TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@apmebf[2].txt
00168061 Cookie/Apmebf TrackingCookie No 0 Yes No C:\Documents and Settings\CECILE.XAVIER.000\Cookies\cecile@apmebf[1].txt
00168090 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@serving-sys[1].txt
00168093 Cookie/Serving-sys TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@bs.serving-sys[2].txt
00168106 Cookie/Weborama TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@weborama[1].txt
00168106 Cookie/Weborama TrackingCookie No 0 Yes No C:\Documents and Settings\CECILE.XAVIER.000\Cookies\cecile@weborama[1].txt
00168106 Cookie/Weborama TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@weborama[1].txt
00168109 Cookie/Adtech TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@adtech[2].txt
00168110 Cookie/Server.iad.Liveperson TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@server.iad.liveperson[2].txt
00168116 Cookie/Comclick TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@fl01.ct2.comclick[1].txt
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@advertising[1].txt
00169190 Cookie/Advertising TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@advertising[2].txt
00172221 Cookie/Zedo TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@zedo[2].txt
00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@bluestreak[2].txt
00173520 Cookie/Bluestreak TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@bluestreak[2].txt
00184846 Cookie/Adrevolver TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@adrevolver[2].txt
00207936 Cookie/Adviva TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@adviva[1].txt
00266415 application/regfreeze HackTools No 0 Yes No hkey_current_user\software\actualresearch\registryfreeze
00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Documents and Settings\LOU.XAVIER.000\Cookies\lou@smartadserver[1].txt
00273339 Cookie/Smartadserver TrackingCookie No 0 Yes No C:\Documents and Settings\LOUIS\Cookies\louis@smartadserver[2].txt
00590315 Rootkit/Agent.LNB HackTools No 0 Yes No C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011789.sys
00701452 W32/SdBot.MCB.worm Virus/Trojan No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011686.exe
01185375 Application/Psexec.A HackTools No 0 Yes No C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011271.EXE
02870155 Application/VirusRanger HackTools No 0 Yes No C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0009090.dll
02885963 Rootkit/Booto.C Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011263.sys
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008821.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008822.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008820.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008840.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008843.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0005798.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP6\A0004474.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0005795.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0005799.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\Qoobox\Quarantine\C\WINDOWS\system32\wintems.exe.vir
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010090.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\Qoobox\Quarantine\C\WINDOWS\system32\mdelk.exe.vir
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011088.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP6\A0004335.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011685.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011261.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011262.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008844.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011670.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011395.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011419.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011423.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011475.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011493.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011579.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011597.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011598.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011599.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011618.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011619.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011635.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011651.exe
02898934 W32/Bagle.RP.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011652.exe
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011387.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011180.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0002108.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0002125.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0003125.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0004142.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP5\A0004154.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP5\A0004228.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP5\A0004273.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP5\A0004332.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011164.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011087.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP8\A0005815.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010088.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010070.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008838.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0008815.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP6\A0004473.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0006817.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0009100.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0004790.sys
02898935 W32/Bagle.RC.worm Virus/Worm No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0005793.sys
03074964 Trj/CI.A Virus/Trojan No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP6\A0004760.exe
03074964 Trj/CI.A Virus/Trojan No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011394.exe
03074964 Trj/CI.A Virus/Trojan No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011689.exe
03074964 Trj/CI.A Virus/Trojan No 0 Yes Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP7\A0004800.exe
03919024 Generic Malware Virus/Trojan No 0 Yes Yes C:\WINDOWS\UbiSoft\SetupUbi.exe
05471009 Generic Trojan Virus/Trojan No 0 No No C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0002068.exe[C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP4\A0002068.exe][Setup_00.exe][Setup_00.exe][NETPUM~1.EXE][NetPumper-1.50-setup.exe]
;===================================================================================================================================================================================
SUSPECTS
Sent Location I
;===================================================================================================================================================================================
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0009076.exe[32788R22FWJFW\n.com]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP11\A0009076.exe[32788R22FWJFW\NirCmd.cfexe]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010068.exe[32788R22FWJFW\n.com]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010068.exe[32788R22FWJFW\NirCmd.cfexe]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010079.exe[32788R22FWJFW\n.com]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010079.exe[32788R22FWJFW\NirCmd.cfexe]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010093.exe[32788R22FWJFW\n.com]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP12\A0010093.exe[32788R22FWJFW\NirCmd.cfexe]
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011138.com I
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011140.com I
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011222.com I
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011224.com I
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011332.com I
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP13\A0011334.com I
Yes C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP15\A0011752.dll I
Yes C:\WINDOWS\NIRCMD.exe I
;===================================================================================================================================================================================
VULNERABILITIES
Id Severity Description I
;===================================================================================================================================================================================
;===================================================================================================================================================================================
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
ok
vire le fichier quarantine en suivant le lien:
C:\Qoobox\Quarantine\
_____________
ce fichier si c'est un jeu legal est un faux positif donc pas de souci:
C:\WINDOWS\UbiSoft\SetupUbi.exe
_______________
lance ccleaner pour virer les cookies
https://www.malekal.com/tutoriel-ccleaner/
________________
désactive ta restauration puis redemarre ton ordi puis réactive la
http://service1.symantec.com/support/inter/tsgeninfointl.Nsf/fr_docid/20020830101856924
_________________
remets un rapport RSIT et dis comment va ton pc
vire le fichier quarantine en suivant le lien:
C:\Qoobox\Quarantine\
_____________
ce fichier si c'est un jeu legal est un faux positif donc pas de souci:
C:\WINDOWS\UbiSoft\SetupUbi.exe
_______________
lance ccleaner pour virer les cookies
https://www.malekal.com/tutoriel-ccleaner/
________________
désactive ta restauration puis redemarre ton ordi puis réactive la
http://service1.symantec.com/support/inter/tsgeninfointl.Nsf/fr_docid/20020830101856924
_________________
remets un rapport RSIT et dis comment va ton pc
T'es génial !!!!!!!!!!!!!!!!!!!
Tout fonctionne nickel Chrome.
CCleaner et Mc Afee ont repris le boulot.
Merci à toi !!
Bon Week
LN
Tout fonctionne nickel Chrome.
CCleaner et Mc Afee ont repris le boulot.
Merci à toi !!
Bon Week
LN
ok fais gaffe aux cracks!
pour virer ce qui a été utilisé lance tool cleaner:
http://www.commentcamarche.net/telecharger/telecharger 34055291 toolscleaner
pour virer ce qui a été utilisé lance tool cleaner:
http://www.commentcamarche.net/telecharger/telecharger 34055291 toolscleaner
