Virus Bagle

Shinro28 Messages postés 22 Statut Membre -  
 Destrio5 -
Bonjour,

Je rentre de vacance et je m'apercois que quand j'essaye d'ouvrir CC cleaner, AD aware Spybot...
Il me met un message d'erreur "n'est pas une appliacation WIN 32 valide"

Comment combattre ce virus ?

Merci d'avance,

Shinro.
A voir également:

28 réponses

  • 1
  • 2
Réponse 1 / 28
Utilisateur anonyme
 
hello :

########### [ Option 1 ( Recherche ) ]


▶ Télécharge FindyKill de Chiquitine29 sur ton bureau :

http://sd-1.archive-host.com/membres/up/116615172019703188/FindyKill.exe

! Déconnecte toi et ferme toutes applications en cours !

▶ Double clique (clic droit "en tant qu'administrateur" pour Vista) sur "FindyKill.exe" pour lancer l'installation et laisse les paramètres d'instalation par défaut .

▶ Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...)

▶ Double-clique (clic droit "en tant qu'administrateur" pour Vista)sur le raccourci FindyKill qui est sur ton bureau pour lancer l'outil .

▶ Au menu principal choisis l'option " F " pour français et tape sur [entrée] .

▶ Au second menu Choisis l'option " 1 " (recherche) et tape sur [entrée]

▶ Laisse travailler l'outil et ne touche à rien ...

▶ Poste le rapport qui apparait à la fin , sur le forum ...

( le rapport est sauvegardé aussi sous C:\FindyKill.txt )
( CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )
0
Réponse 2 / 28
Shinro28 Messages postés 22 Statut Membre
 
Voila le rapport :


############################## | FindyKill V5.006 |

# User : Mathieu (Administrateurs) # MAT
# Update on 14/08/09 by Chiquitine29
# Start at: 08:02:26 | 24/08/2009
# Website : http://pagesperso-orange.fr/NosTools/index.html

# Intel(R) Pentium(R) D CPU 3.00GHz
# Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 7.0.5730.13
# Windows Firewall Status : Enabled
# AV : McAfee VirusScan [ Enabled | Updated ]
# AV : Kaspersky Anti-Virus 9.0.0.463 [ (!) Disabled | Updated ]
# FW : [ (!) Disabled ]

# C:\ # Disque fixe local # 144,33 Go (24,37 Go free) # NTFS
# D:\ # Disque fixe local # 149,01 Go (76,19 Go free) # NTFS
# E:\ # Disque CD-ROM
# F:\ # Disque amovible
# G:\ # Disque amovible
# H:\ # Disque amovible
# I:\ # Disque amovible
# J:\ # Disque CD-ROM
# K:\ # Disque amovible # 127,08 Mo (125,33 Mo free) [CLÉ USB] # FAT

############################## | Processus actifs |

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\SCardSvr.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Fighters\configservice.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\ehome\mcrdsvc.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\Fighters\licenseservice.exe
C:\Program Files\Fighters\updateservice.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\notepad.exe

################## | C: |


################## | C:\WINDOWS |


################## | C:\WINDOWS\system32 |

Présent ! C:\WINDOWS\system32\ban_list.txt

################## | C:\WINDOWS\system32\drivers |


################## | C:\Documents and Settings\Mathieu\Application Data |

Présent ! C:\Documents and Settings\Mathieu\Application Data\drivers

################## | C:\Documents and Settings\Mathieu\Temporary Internet Files |


################## | Registre / Clés infectieuses |

Présent ! [HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_111111s1ro1s1a]
Présent ! [HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_111111s1ro1s1a]
Présent ! [HKLM\SYSTEM\ControlSet002\Enum\Root\LEGACY_111111s1ro1s1a]
Présent ! [HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SK9OU0S]
Présent ! [HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_SK9OU0S]
Présent ! [HKLM\SYSTEM\ControlSet002\Enum\Root\LEGACY_SK9OU0S]
Présent ! [HKCU\Software\bisoft]
Présent ! [HKCU\Software\Microsoft\Windows\UI] "KEY540534"
Présent ! [HKU\S-1-5-21-100105817-673620244-2504476897-1005\Software\Microsoft\Windows\UI] "KEY540534"
Présent ! [HKU\S-1-5-21-100105817-673620244-2504476897-1005\Software\bisoft]
Présent ! [HKU\S-1-5-21-100105817-673620244-2504476897-1005\Software\FFC]
Présent ! [HKCU\Software\Local AppWizard-Generated Applications\winupgro]
Présent ! [HKU\S-1-5-21-100105817-673620244-2504476897-1005\Software\Local AppWizard-Generated Applications\winupgro]

################## | Etat / Services / Informations |

# Affichage des fichiers cachés : OK

Clé manquante : HKLM\...\SafeBoot | Mode sans echec non fonctionnel !

# (!) Ndisuio -> Start = 4 ( Good = 3 | Bad = 4 )
# EapHost -> Start = 3 ( Good = 2 | Bad = 4 )
# (!) Ip6Fw -> Start = 4 ( Good = 2 | Bad = 4 )
# SharedAccess -> Start = 2 ( Good = 2 | Bad = 4 )
# wuauserv -> Start = 2 ( Good = 2 | Bad = 4 )
# (!) wscsvc -> Start = 4 ( Good = 2 | Bad = 4 )


################## | Cracks / Keygens / Serials |


################## | ! Fin du rapport # FindyKill V5.006 ! |
0
Réponse 3 / 28
Utilisateur anonyme
 
########### [ Option 2 ( Suppression ) ]



▶ Déconnecte toi et ferme toutes application en cours ( navigateur compris ) .

▶ Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...)

▶ Relance "FindyKill" (clic droit "en tant qu'administrateur" pour Vista): au menu principal choisis l'option " F " pour français et tape sur [entrée] .

▶ Au second menu choisis l'option 2 (suppression) et tape sur [entrée]

▶ Le pc va redémarrer automatiquement ...

▶ le programme va travailler , ne touche à rien ... , ton bureau ne sera pas accessible c est normal !

▶ Poste le rapport qui apparait à la fin ( le rapport est sauvegardé aussi sous C:\FindyKill.txt )

▶ Si le Bureau ne réapparait pas, presse Ctrl + Alt + Suppr , Onglet "Fichier" , "Nouvelle tâche" , tape explorer.exe et valide
0
Réponse 4 / 28
Shinro28 Messages postés 22 Statut Membre
 
Rapport :


############################## | FindyKill V5.006 |

# User : Mathieu (Administrateurs) # MAT
# Update on 14/08/09 by Chiquitine29
# Start at: 08:28:40 | 24/08/2009
# Website : http://pagesperso-orange.fr/NosTools/index.html

# Intel(R) Pentium(R) D CPU 3.00GHz
# Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 7.0.5730.13
# Windows Firewall Status : Enabled
# AV : McAfee VirusScan [ Enabled | Updated ]
# AV : Kaspersky Anti-Virus 9.0.0.463 [ (!) Disabled | Updated ]
# FW : [ (!) Disabled ]

# C:\ # Disque fixe local # 144,33 Go (24,42 Go free) # NTFS
# D:\ # Disque fixe local # 149,01 Go (76,19 Go free) # NTFS
# E:\ # Disque CD-ROM
# F:\ # Disque amovible
# G:\ # Disque amovible
# H:\ # Disque amovible
# I:\ # Disque amovible
# J:\ # Disque CD-ROM
# K:\ # Disque amovible # 127,08 Mo (125,33 Mo free) [CLÉ USB] # FAT

############################## | Processus actifs |

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\SCardSvr.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2010\avp.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\eHome\ehRec.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\WINDOWS\system32\imapi.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Fighters\configservice.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\ups.exe
C:\WINDOWS\ehome\mcrdsvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Intel\IntelDH\Intel(R) Quick Resume Technology\ELService.exe
C:\WINDOWS\system32\fxssvc.exe
C:\Program Files\Fighters\licenseservice.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\Fighters\updateservice.exe
C:\Program Files\Fighters\ScannerService.exe

################## | C: |


################## | C:\WINDOWS |


################## | C:\WINDOWS\system32 |

Supprimé ! C:\WINDOWS\system32\ban_list.txt

################## | C:\WINDOWS\system32\drivers |


################## | C:\Documents and Settings\Mathieu\Application Data |

Supprimé ! C:\Documents and Settings\Mathieu\Application Data\drivers

################## | Autres ... |


################## | Temporary Internet Files |


################## | Registre / Clés infectieuses |

Supprimé ! [HKCU\Software\bisoft]
Supprimé ! [HKCU\Software\Microsoft\Windows\UI] "KEY540534"
Supprimé ! [HKU\S-1-5-21-100105817-673620244-2504476897-1005\Software\FFC]
Supprimé ! [HKCU\Software\Local AppWizard-Generated Applications\winupgro]

################## | Etat / Services / Informations |

# Mode sans echec restauré !

# Affichage des fichiers cachés : OK

# Ndisuio -> Start = 3 ( Good = 3 | Bad = 4 )
# EapHost -> Start = 2 ( Good = 2 | Bad = 4 )
# Ip6Fw -> Start = 2 ( Good = 2 | Bad = 4 )
# SharedAccess -> Start = 2 ( Good = 2 | Bad = 4 )
# wuauserv -> Start = 2 ( Good = 2 | Bad = 4 )
# wscsvc -> Start = 2 ( Good = 2 | Bad = 4 )


################## | PEH ... |

Corrompu : C:\Documents and Settings\Mathieu\Mes documents\ComboFix.exe
[Offset = 000000EC - Valeur = 0x0001]

Corrompu : C:\Documents and Settings\Mathieu\Mes documents\HiJackThis.exe
[Offset = 000000C4 - Valeur = 0x0001]

Corrompu : C:\Program Files\Driver-Soft\DriverGenius\LiveUpdate.exe
[Offset = 000000CC - Valeur = 0x0001]

Corrompu : C:\Program Files\Mozilla Firefox\uninstall\helper.exe
[Offset = 000000E4 - Valeur = 0x0001]

Corrompu : C:\Program Files\netbeans-5.0\_uninst\uninstaller.exe
[Offset = 000000E4 - Valeur = 0x0001]

Corrompu : C:\Program Files\Spyware Doctor\drvctl.exe
[Offset = 000000E4 - Valeur = 0x0001]

Corrompu : C:\Program Files\Spyware Doctor\pctsAuxs.exe
[Offset = 000000FC - Valeur = 0x0001]

Corrompu : C:\Program Files\Spyware Doctor\pctsSvc.exe
[Offset = 00000104 - Valeur = 0x0001]

Corrompu : C:\Program Files\Spyware Doctor\pctsTray.exe
[Offset = 00000104 - Valeur = 0x0001]

Corrompu : C:\Program Files\Spyware Doctor\sdinvoker.exe
[Offset = 00000104 - Valeur = 0x0001]

Corrompu : C:\Program Files\Spyware Doctor\sdloader.exe
[Offset = 000000EC - Valeur = 0x0001]

Corrompu : C:\Program Files\Spyware Doctor\TFEngine\TFService.exe
[Offset = 00000114 - Valeur = 0x0001]

Corrompu : C:\Program Files\Spyware Doctor\Update.exe
[Offset = 00000104 - Valeur = 0x0001]

Corrompu : C:\WINDOWS\$hf_mig$\KB873339\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB885250\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB885835\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB885836\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB886185\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB887472\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB888113\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB888302\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB890046\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB890859\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB891781\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB893756\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB894391\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB896358\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB896422\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB896423\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB896424\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB896428\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB898461\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB899587\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB899588\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB899589\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB899591\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB900485\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB900725\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB901017\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB901214\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB902400\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB905414\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB905749\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB908519\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB908531\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB910437\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB911280\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB911562\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB911567\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB911927\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB912919\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB913580\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB914388\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB914389\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB915865\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB916595\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB917159\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB917344\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB917422\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB917953\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB918118\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB918439\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB919007\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB920214\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB920670\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB920683\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB920685\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB920872\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB921398\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB921503\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB921883\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB922582\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB922616\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB922819\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB923414\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB923561\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB923694\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB923980\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB924191\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB924270\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB925486\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB925720\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB926255\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB926436\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB927779\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB927802\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB927891\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB928255\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB928843\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB929969\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB930178\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB930916\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB931261\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 28
Shinro28 Messages postés 22 Statut Membre
 
Suite du rapport :

Corrompu : C:\WINDOWS\$hf_mig$\KB929969\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB930178\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB930916\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB931261\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB931836\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB932823-v3\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB933360\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB933729\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB935840\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB936021\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB936357\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB937894\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB938127\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB938127-IE7\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB938828\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB938829\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB941202\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB941644\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB941693\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB942763\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB942840\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB943055\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB943485\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB944533-IE7\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB944653\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB945553\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB946026\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB946627\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB946648\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB947864-IE7\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB948590\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB948881\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB950749\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB950759-IE7\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB950760\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB950762\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB950974\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB951066\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB951072-v2\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB951376\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB951376-v2\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB951698\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB951748\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB951978\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB952004\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB952287\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB952954\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB953838-IE7\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB953839\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB954211\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB954459\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB954600\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB955069\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB955839\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB956572\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB956802\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB956803\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB956841\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB957095\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB957097\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB958215-IE7\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB958644\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB958687\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB958690\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB959426\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB960225\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB960714-IE7\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB960715\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB960803\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB961260-IE7\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB961371\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB961373\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB961501\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB961503\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB963027-IE7\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB967715\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB968537\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB969897-IE7\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB969898\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB970238\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB971633\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB972260-IE7\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$hf_mig$\KB973346\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\$NtServicePackUninstall$\sysinfo.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : sysinfo.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\ServicePackFiles\i386\sysinfo.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : sysinfo.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\SoftwareDistribution\Download\0767c4ca93fdedd14ff42feb93271976\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\SoftwareDistribution\Download\089d66a5cb284cdd3d888e0e1ccdda59\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\SoftwareDistribution\Download\1f0ff9cd77277bbfa312e709c95b4b39\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\SoftwareDistribution\Download\57358f9e879e0fe843b63dd3c8074512\update\update.exe
[Offset = 000000EC - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000EC - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\SoftwareDistribution\Download\807aa275a612b3508a3d1d613bbf6226\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\SoftwareDistribution\Download\a9563d42f1c26989f29cbdef7b43236c\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\SoftwareDistribution\Download\cfa117d6ea587787e5f0b494755d57c8\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\SoftwareDistribution\Download\dbff4090d49b72fc9ddd97462ff51904\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.


Corrompu : C:\WINDOWS\SoftwareDistribution\Download\ebf084bb74bfea40b023b01223936f22\update\update.exe
[Offset = 000000E4 - Valeur = 0x0001]

Tentative de réparation...
Sauvegarde : update.exe.REN
[Offset = 000000E4 - Nouvelle valeur = 0x4C01]
Fichier réparé avec succès.



################## | Cracks / Keygens / Serials |

"C:\Documents and Settings\Mathieu\Mes documents\Downloads\Programs\"world_of_warcraft_patch_v2.4.1.8125_francais_228464.exe""
12/06/2009 22:36 |Size 5365720 |Crc32 83849e1d |Md5 674e9545079baa28ae847240cc49e346

"C:\Documents and Settings\Mathieu\Mes documents\Downloads\Programs\"world_of_warcraft_patch_v3.0.9.9551_francais_276064.exe""
12/06/2009 23:13 |Size 12344960 |Crc32 ba228505 |Md5 3598b68a44b14d874afc65774a349a5e


################## | ! Fin du rapport # FindyKill V5.006 ! |
0
Réponse 6 / 28
Utilisateur anonyme
 
desinstalle findykill

Desactive ton antivirus le temps de la manip ainsi que ton parefeu si présent

▶ Télécharge List&Kill'em et enregistre-le sur ton bureau

Il ne necessite pas d'installation

▶double clic (clic droit "executer en tant qu'administrateur" pour Vista) pour lancer le scan

choisis la langue puis choisis l'option 1 = Mode Recherche

▶laisse travailler l'outil

le rapport va s'afficher , une fois le scan fini

▶▶▶▶▶▶▶ ATTENTION : Efface ton adresse IP stp !!!!

ici :

[121]: KB973815 - Update
[122]: KB973869 - Update
[123]: XpsEPSC
Carte(s) r‚seau: 4 carte(s) r‚seau install‚e(s).
[01]: Bluetooth PAN Network Adapter
Nom de la connexion : Connexion au r‚seau local 2
tat : Support d‚connect‚
[02]: Intel(R) PRO/1000 CT Network Connection
Nom de la connexion : Connexion au r‚seau local
DHCP activ‚ : Non
Adresse(s) IP
[01] : 192.168.0.11
[03]: VirtualBox Host-Only Ethernet Adapter
Nom de la connexion : VirtualBox Host-Only Network
DHCP activ‚ : Non
Adresse(s) IP
[01] : 192.168.56.1
[04]: VirtualBox Host-Only Ethernet Adapter
Nom de la connexion : VirtualBox Host-Only Network #2
DHCP activ‚ : Non
Adresse(s) IP
[01] : 192.168.217.1

Nom de l'image PIDÿ Nom de la sessio Num‚ro d Utilisation
========================= ====== ================ ======== ============
System Idle Process 0 Console 0 16 Ko
System 4 Console 0 244 Ko
smss.exe 916 Console 0 400 Ko
csrss.exe 972 Console 0 4ÿ456 Ko
winlogon.exe 996 Console 0 3ÿ536 Ko

▶ colle le contenu dans ta prochaine réponse
0
Réponse 7 / 28
Shinro28 Messages postés 22 Statut Membre
 
Rapport :

List'em by g3n-h@ckm@n 1.0.2.8

updated on 23.08.2009 ::::: 13.00


Microsoft Windows XP [version 5.1.2600]


24/08/2009 10:14:41,60


Nom de l'h“te: MAT
Nom du systŠme d'exploitation: Microsoft Windows XP Professionnel
Version du systŠme: 5.1.2600 Service Pack 3 version 2600
Fabricant du systŠme d'exploitation: Microsoft Corporation
Configuration du systŠme d'exploitation: Station de travail autonome
Type de version du systŠme d'exploitation: Multiprocessor Free
Propri‚taire enregistr‚ÿ: Mathieu
Organisation enregistr‚eÿ:
Identificateur de produit: 76413-OEM-0011903-00825
Date d'installation originale: 02/10/2006, 18:24:14
Dur‚e d'activit‚ systŠme: 0 jours, 0 heures, 24 minutes, 11 secondes
Fabricant du systŠme: Dell Inc.
ModŠle du systŠme: Dell DXP051
Type du systŠme: X86-based PC
Processeur(s): 1 processeur(s) install‚(s).
[01]: x86 Family 15 Model 6 Stepping 2 GenuineIntel ~2992 MHz
Version du BIOS: DELL - 7
R‚pertoire Windows: C:\WINDOWS
R‚pertoire systŠme: C:\WINDOWS\system32
P‚riph‚rique d'amor‡age: \Device\HarddiskVolume2
Option r‚gionale du systŠme: fr;Fran‡ais (France)
ParamŠtres r‚gionaux d'entr‚eÿ: fr;Fran‡ais (France)
Fuseau horaire: N/D
M‚moire physique totale: 2ÿ046 Mo
M‚moire physique disponible: 1ÿ303 Mo
M‚moire virtuelle : taille maximale: 2ÿ048 Mo
M‚moire virtuelle : disponible: 2ÿ005 Mo
M‚moire virtuelle : en cours d'utilisation: 43 Mo
Emplacements des fichiers d'‚change: C:\pagefile.sys
Domaine: MSHOME
Serveur d'ouverture de session: \\MAT
Correctif(s): 146 Corrections install‚es.
[01]: File 1
[02]: File 1
[03]: File 1
[04]: File 1
[05]: File 1
[06]: File 1
[07]: File 1
[08]: File 1
[09]: File 1
[10]: File 1
[11]: File 1
[12]: File 1
[13]: File 1
[14]: File 1
[15]: File 1
[16]: File 1
[17]: File 1
[18]: File 1
[19]: File 1
[20]: File 1
[21]: File 1
[22]: File 1
[23]: File 1
[24]: File 1
[25]: File 1
[26]: File 1
[27]: File 1
[28]: File 1
[29]: File 1
[30]: File 1
[31]: File 1
[32]: File 1
[33]: File 1
[34]: File 1
[35]: File 1
[36]: File 1
[37]: File 1
[38]: File 1
[39]: File 1
[40]: File 1
[41]: File 1
[42]: File 1
[43]: File 1
[44]: File 1
[45]: File 1
[46]: File 1
[47]: File 1
[48]: File 1
[49]: File 1
[50]: File 1
[51]: File 1
[52]: File 1
[53]: File 1
[54]: File 1
[55]: File 1
[56]: File 1
[57]: File 1
[58]: File 1
[59]: File 1
[60]: Q147222
[61]: KB887998 - QFE
[62]: KB930494 - QFE
[63]: SP3 - SP
[64]: M928366 - Update
[65]: S867460 - Update
[66]: KB900325 - Update
[67]: Q927978
[68]: Q936181
[69]: Q954430
[70]: IDNMitigationAPIs - Update
[71]: NLSDownlevelMapping - Update
[72]: KB929399
[73]: KB952069_WM9
[74]: Q828026
[75]: Q828026 - Update
[76]: KB911565
[77]: KB913800
[78]: KB917734_WMP10
[79]: KB936782_WMP11
[80]: KB939683
[81]: KB954154_WM11
[82]: KB959772_WM11
[83]: KB925398_WMP64
[84]: KB941569
[85]: KB938127-IE7 - Update
[86]: KB944533-IE7 - Update
[87]: KB947864-IE7 - Update
[88]: KB950759-IE7 - Update
[89]: KB953838-IE7 - Update
[90]: KB958215-IE7 - Update
[91]: KB960714-IE7 - Update
[92]: KB961260-IE7 - Update
[93]: KB963027-IE7 - Update
[94]: KB969897-IE7 - Update
[95]: KB972260-IE7 - Update
[96]: MSCompPackV1 - Update
[97]: KB936929 - Service Pack
[98]: KB923561 - Update
[99]: KB938464 - Update
[100]: KB946648 - Update
[101]: KB950760 - Update
[102]: KB950762 - Update
[103]: KB950974 - Update
[104]: KB951066 - Update
[105]: KB951072-v2 - Update
[106]: KB951376 - Update
[107]: KB951376-v2 - Update
[108]: KB951698 - Update
[109]: KB951748 - Update
[110]: KB951978 - Update
[111]: KB952004 - Update
[112]: KB952287 - Update
[113]: KB952954 - Update
[114]: KB953839 - Update
[115]: KB954211 - Update
[116]: KB954459 - Update
[117]: KB954550-v5 - Update
[118]: KB954600 - Update
[119]: KB955069 - Update
[120]: KB955839 - Update
[121]: KB956572 - Update
[122]: KB956802 - Update
[123]: KB956803 - Update
[124]: KB956841 - Update
[125]: KB957095 - Update
[126]: KB957097 - Update
[127]: KB958644 - Update
[128]: KB958687 - Update
[129]: KB958690 - Update
[130]: KB959426 - Update
[131]: KB960225 - Update
[132]: KB960715 - Update
[133]: KB960803 - Update
[134]: KB961118 - Update
[135]: KB961371 - Update
[136]: KB961373 - Update
[137]: KB961501 - Update
[138]: KB961503 - Update
[139]: KB967715 - Update
[140]: KB968537 - Update
[141]: KB969898 - Update
[142]: KB970238 - Update
[143]: KB971633 - Update
[144]: KB973346 - Update
[145]: KB835221WXP - Update
[146]: XpsEPSC
Carte(s) r‚seau: 2 carte(s) r‚seau install‚e(s).
[01]: Intel(R) PRO/1000 PL Network Connection
Nom de la connexion : Connexion au r‚seau local
DHCP activ‚ : Oui
Serveur DHCP : 192.168.1.1


[02]: Hamachi Network Interface
Nom de la connexion : Hamachi

Nom de l'image PIDÿ Nom de la sessio Num‚ro d Utilisation
========================= ====== ================ ======== ============
System Idle Process 0 Console 0 28 Ko
System 4 Console 0 264 Ko
smss.exe 596 Console 0 428 Ko
csrss.exe 648 Console 0 4ÿ472 Ko
winlogon.exe 672 Console 0 2ÿ688 Ko
services.exe 724 Console 0 3ÿ584 Ko
lsass.exe 736 Console 0 2ÿ472 Ko
svchost.exe 904 Console 0 5ÿ452 Ko
svchost.exe 1060 Console 0 4ÿ708 Ko
svchost.exe 1124 Console 0 32ÿ152 Ko
svchost.exe 1184 Console 0 3ÿ676 Ko
svchost.exe 1264 Console 0 3ÿ168 Ko
spoolsv.exe 1388 Console 0 5ÿ384 Ko
scardsvr.exe 1432 Console 0 2ÿ712 Ko
svchost.exe 1480 Console 0 3ÿ508 Ko
alg.exe 1520 Console 0 3ÿ668 Ko
avp.exe 1556 Console 0 22ÿ944 Ko
svchost.exe 1604 Console 0 3ÿ752 Ko
ehrecvr.exe 1632 Console 0 15ÿ684 Ko
ehSched.exe 1668 Console 0 2ÿ724 Ko
IAANTMon.exe 1764 Console 0 1ÿ548 Ko
MDM.EXE 1884 Console 0 3ÿ000 Ko
nvsvc32.exe 1968 Console 0 4ÿ452 Ko
HPZipm12.exe 1992 Console 0 1ÿ884 Ko
ConfigService.exe 2020 Console 0 6ÿ232 Ko
svchost.exe 384 Console 0 6ÿ420 Ko
explorer.exe 592 Console 0 25ÿ956 Ko
svchost.exe 892 Console 0 4ÿ368 Ko
mcrdsvc.exe 2124 Console 0 3ÿ168 Ko
wmiprvse.exe 2576 Console 0 8ÿ320 Ko
LicenseService.exe 2668 Console 0 6ÿ784 Ko
UpdateService.exe 2704 Console 0 7ÿ352 Ko
ScannerService.exe 2752 Console 0 86ÿ300 Ko
SpywarefighterUser.exe 3032 Console 0 3ÿ324 Ko
avp.exe 3096 Console 0 3ÿ984 Ko
ctfmon.exe 3248 Console 0 3ÿ820 Ko
msnmsgr.exe 3120 Console 0 30ÿ484 Ko
dllhost.exe 3712 Console 0 6ÿ296 Ko
SpywarefighterTray.exe 292 Console 0 5ÿ528 Ko
svchost.exe 3232 Console 0 3ÿ544 Ko
wmplayer.exe 1868 Console 0 13ÿ448 Ko
firefox.exe 3692 Console 0 79ÿ128 Ko
klwtblfs.exe 2968 Console 0 3ÿ136 Ko
wuauclt.exe 4072 Console 0 7ÿ872 Ko
List_Killem.exe 3076 Console 0 5ÿ052 Ko
cmd.exe 3252 Console 0 1ÿ796 Ko
wmiprvse.exe 3060 Console 0 5ÿ136 Ko
tasklist.exe 3424 Console 0 4ÿ780 Ko

Infections :
==========


¤¤¤¤¤¤¤¤¤¤ Fichiers et dossiers presents :

"C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat"
"C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat"
"C:\WINDOWS\iun6002.exe"
"C:\WINDOWS\kb913800.exe"
"C:\WINDOWS\system32\dumphive.exe"
"C:\WINDOWS\System32\prnjobs.vbs"
"C:\WINDOWS\system32\prntvpt.dll"
C:\WINDOWS\System32\SET10.tmp
C:\WINDOWS\System32\SET30.tmp
C:\WINDOWS\System32\SET33.tmp
C:\WINDOWS\System32\SET37.tmp
C:\WINDOWS\System32\SET48.tmp
C:\WINDOWS\System32\SET49.tmp
C:\WINDOWS\System32\SET4A.tmp
C:\WINDOWS\System32\SET4B.tmp
C:\WINDOWS\System32\SET50.tmp
C:\WINDOWS\System32\SET56.tmp
C:\WINDOWS\System32\SET57.tmp
C:\WINDOWS\System32\SET58.tmp
C:\WINDOWS\System32\SET59.tmp
C:\WINDOWS\System32\SET5B.tmp
C:\WINDOWS\System32\SET5C.tmp
C:\WINDOWS\System32\SET94.tmp
"C:\WINDOWS\system32\SrchSTS.exe"

¤¤¤¤¤¤¤¤¤¤ Clés de registre Presentes :

HKCR\Typelib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F}
HKCU\SOFTWARE\EoRezo
HKCU\SOFTWARE\ItsLabel
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1A0AADCD-3A72-4B5F-900F-E3BB5A838E2A}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{BC4FFE41-DE9F-46fa-B455-AAD49B9F9938}
HKCU\SOFTWARE\SWEETIE
HKLM\Software\Classes\Interface\{B0D071A1-36B3-4757-A126-14C89C56013A}
HKLM\Software\Classes\Typelib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F}
HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Userdata\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Userdata\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Userdata\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
"HKLM\Software\Trymedia Systems"

¤¤¤¤¤¤¤¤¤¤ C:\WINDOWS\Prefetch :

AUTOCHK.EXE-324828AC.pf
AVP.EXE-13508444.pf
CMD.EXE-034B0549.pf
CONFIGSERVICE.EXE-1AE2DAE3.pf
CONTROL.EXE-24FBF8B3.pf
CSRSS.EXE-22452D1B.pf
CTFMON.EXE-05E57A5E.pf
DLLHOST.EXE-474D72E6.pf
EHRECVR.EXE-20A109D9.pf
ELSERVICE.EXE-35AA0EC2.pf
EXPLORER.EXE-02121B1A.pf
FIREFOX.EXE-06188867.pf
FXSSVC.EXE-140862E7.pf
GOOGLEUPDATERSERVICE.EXE-2F4A2F77.pf
HPZIPM12.EXE-02312CF9.pf
IMAPI.EXE-201490BB.pf
KLWTBLFS.EXE-04ED7620.pf
Layout.ini
LICENSESERVICE.EXE-00CA84E3.pf
LIST_KILLEM.EXE-0A5B9ADA.pf
LOGONUI.EXE-312BE1BF.pf
LSASS.EXE-306A65C3.pf
MCRDSVC.EXE-05390B47.pf
MODE.COM-318FFE37.pf
MSNMSGR.EXE-0EBDBC56.pf
NOTEPAD.EXE-2F2D61E1.pf
NTVDM.EXE-0A81AB7B.pf
NVSVC32.EXE-0756FC6B.pf
REG.EXE-07FA5B3F.pf
RUNDLL32.EXE-3F872CE5.pf
RUNDLL32.EXE-419F288A.pf
RUNDLL32.EXE-41C4C933.pf
RUNDLL32.EXE-4532DDE6.pf
RUNDLL32.EXE-5F120771.pf
RUNDLL32.EXE-66202A44.pf
RUNDLL32.EXE-6ACD0C83.pf
SCANNERSERVICE.EXE-117A0DA2.pf
SCARDSVR.EXE-168C22B3.pf
SERVICES.EXE-3019B50A.pf
SETUP_WM.EXE-02751BCA.pf
SMSS.EXE-22CBE0EE.pf
SPOOLSV.EXE-3A613CE3.pf
SPYWAREFIGHTERTRAY.EXE-1FB69313.pf
SPYWAREFIGHTERUSER.EXE-025B7040.pf
SVCHOST.EXE-2D5FBD18.pf
SYSTEMINFO.EXE-26B98D27.pf
TASKLIST.EXE-18943874.pf
UNINSTAL.EXE-1B79B0B0.pf
UPDATESERVICE.EXE-0D5CD225.pf
UPS.EXE-38134C55.pf
USERINIT.EXE-0743FDA9.pf
VERCLSID.EXE-28F52AD2.pf
WINLOGON.EXE-0957F9B2.pf
WINRAR.EXE-1F9B3EFB.pf
WMIPRVSE.EXE-0D449B4F.pf
WMPLAYER.EXE-1ACCF80A.pf
WSCNTFY.EXE-0B14C27D.pf
WUAUCLT.EXE-1360D60A.pf




¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤( EOF )¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
0
Réponse 8 / 28
Utilisateur anonyme
 
Redemarre en mode sans echec

▶ Relance List&Kill'em comme tu as fait pour l'option 1 (soit en clic droit pour vista),

mais cette fois-ci :

▶ choisis l'option 2 = Mode Destruction

laisse travailler l'outil

apres les verifications , un rapport va s'ouvrir.

▶ ferme-le.

un deuxieme rapport va s'ouvrir ,

▶ colle son contenu dans ta reponse
0
Réponse 9 / 28
Shinro28 Messages postés 22 Statut Membre
 
Je sais pas quelle rapport mettre alors je vais mettre les 2 :


Infections :
==========


¤¤¤¤¤¤¤¤¤¤ Fichiers et dossiers presents :


¤¤¤¤¤¤¤¤¤¤ Clés de registre Presentes :

HKCR\Typelib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F}
HKCU\SOFTWARE\EoRezo
HKCU\SOFTWARE\ItsLabel
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1A0AADCD-3A72-4B5F-900F-E3BB5A838E2A}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{BC4FFE41-DE9F-46fa-B455-AAD49B9F9938}
HKCU\SOFTWARE\SWEETIE
HKLM\Software\Classes\Interface\{B0D071A1-36B3-4757-A126-14C89C56013A}
HKLM\Software\Classes\Typelib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F}
HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Userdata\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Userdata\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Userdata\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
"HKLM\Software\Trymedia Systems"

¤¤¤¤¤¤¤¤¤¤ C:\WINDOWS\Prefetch :

Layout.ini




¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤( EOF )¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤




------------------------------------------------------------------------------------------------------------------
2eme:

Kill'em by g3n-h@ckm@n 1.0.2.8

updated on 23.08.2009 ::::: 13.00


Microsoft Windows XP [version 5.1.2600]


24/08/2009 10:43:39,96

Fichiers analysés :
=================


¤¤¤¤¤¤¤¤¤¤ Fichiers et dossiers presents :

"C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat"
"C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat"
"C:\WINDOWS\iun6002.exe"
"C:\WINDOWS\kb913800.exe"
"C:\WINDOWS\system32\dumphive.exe"
"C:\WINDOWS\System32\prnjobs.vbs"
"C:\WINDOWS\system32\prntvpt.dll"
C:\WINDOWS\System32\SET10.tmp
C:\WINDOWS\System32\SET30.tmp
C:\WINDOWS\System32\SET33.tmp
C:\WINDOWS\System32\SET37.tmp
C:\WINDOWS\System32\SET48.tmp
C:\WINDOWS\System32\SET49.tmp
C:\WINDOWS\System32\SET4A.tmp
C:\WINDOWS\System32\SET4B.tmp
C:\WINDOWS\System32\SET50.tmp
C:\WINDOWS\System32\SET56.tmp
C:\WINDOWS\System32\SET57.tmp
C:\WINDOWS\System32\SET58.tmp
C:\WINDOWS\System32\SET59.tmp
C:\WINDOWS\System32\SET5B.tmp
C:\WINDOWS\System32\SET5C.tmp
C:\WINDOWS\System32\SET94.tmp
"C:\WINDOWS\system32\SrchSTS.exe"


¤¤¤¤¤¤¤¤¤¤ Action sur les fichiers :

Quarantaine :

dumphive.exe.Kill'em
iun6002.exe.Kill'em
kb913800.exe.Kill'em
prnjobs.vbs.Kill'em
prntvpt.dll.Kill'em
qmgr0.dat.Kill'em
qmgr1.dat.Kill'em
SET10.tmp.Kill'em
SET30.tmp.Kill'em
SET33.tmp.Kill'em
SET37.tmp.Kill'em
SET48.tmp.Kill'em
SET49.tmp.Kill'em
SET4A.tmp.Kill'em
SET4B.tmp.Kill'em
SET50.tmp.Kill'em
SET56.tmp.Kill'em
SET57.tmp.Kill'em
SET58.tmp.Kill'em
SET59.tmp.Kill'em
SET5B.tmp.Kill'em
SET5C.tmp.Kill'em
SET94.tmp.Kill'em
SrchSTS.exe.Kill'em

¤¤¤¤¤¤¤¤¤¤ Verification :



Infections :
==========


¤¤¤¤¤¤¤¤¤¤ Fichiers et dossiers presents :


¤¤¤¤¤¤¤¤¤¤ Clés de registre Presentes :

HKCR\Typelib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F}
HKCU\SOFTWARE\EoRezo
HKCU\SOFTWARE\ItsLabel
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1A0AADCD-3A72-4B5F-900F-E3BB5A838E2A}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{BC4FFE41-DE9F-46fa-B455-AAD49B9F9938}
HKCU\SOFTWARE\SWEETIE
HKLM\Software\Classes\Interface\{B0D071A1-36B3-4757-A126-14C89C56013A}
HKLM\Software\Classes\Typelib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F}
HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Userdata\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Userdata\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Userdata\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
"HKLM\Software\Trymedia Systems"

¤¤¤¤¤¤¤¤¤¤ C:\WINDOWS\Prefetch :

Layout.ini




¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤( EOF )¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
0
Réponse 10 / 28
Utilisateur anonyme
 
▶ Télécharge Ad-remover ( de C_XX ) sur ton bureau :


▶ Déconnecte toi et ferme toutes applications en cours !

▶ Double clique sur "Ad-R.exe" pour lancer l'installation et laisse les paramètres d'installation par défaut .

▶ Double-clique sur le raccourci Ad-remover qui est sur ton bureau pour lancer l'outil .

▶ Au menu principal choisis l'option "L" et tape sur [entrée] .

▶ Laisse travailler l'outil et ne touche à rien ...

▶ Poste le rapport qui apparait à la fin , sur le forum ...

( Le rapport est sauvegardé aussi sous C:\Ad-report.log )
( CTRL+A Pour tout sélectionner , CTRL+C pour copier et CTRL+V pour coller )

▶ Note : "Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
0
Réponse 11 / 28
Shinro28 Messages postés 22 Statut Membre
 
Rapport :

.
======= RAPPORT D'AD-REMOVER 1.1.4.5_P | UNIQUEMENT XP/VISTA/SEVEN =======
.
Mit à jour par C_XX le 23/08/2009 à 8:25 PM
Contact: AdRemover.contact@gmail.com
Site web: http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 11:00:20, 24/08/2009 | Mode Normal | Option: CLEAN
Exécuté de: C:\Program Files\Ad-remover\
Système d'exploitation: Microsoft® Windows XP™ v5.1.2600
Nom du PC: MAT | Utilisateur actuel: Mathieu
.
Administrateur: Administrateur
N'est pas administrateur: HelpAssistant *Desactive*
N'est pas administrateur: Invité *Desactive*
Administrateur: Mathieu
N'est pas administrateur: SUPPORT_388945a0 *Desactive*
.
============== ÉLÉMENT(S) NEUTRALISÉ(S) ==============
.
.
HKCR\CLSID\{9afb8248-617f-460d-9366-d71cdeda3179}
HKCR\Interface\{B0D071A1-36B3-4757-A126-14C89C56013A}
HKCR\Typelib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F}
HKCU\Software\EoRezo
HKCU\Software\ItsLabel
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1A0AADCD-3A72-4B5F-900F-E3BB5A838E2A}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BC4FFE41-DE9F-46fa-B455-AAD49B9F9938}
HKCU\Software\SWEETIE
HKCU\Software\VB and VBA Program Settings\eurobarre
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKLM\Software\Trymedia Systems
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{BC4FFE41-DE9F-46FA-B455-AAD49B9F9938}
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{3041d03e-fd4b-44e0-b742-2d9b88305f98}
HKCR\CLSID\{b0de3308-5d5a-470d-81b9-634fc078393b}
HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Userdata\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\Userdata\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
.
C:\DOCUME~1\Mathieu\APPLIC~1\EoRezo\cmhost.cyp
C:\DOCUME~1\Mathieu\APPLIC~1\EoRezo\ConfMedia.cyp
C:\DOCUME~1\Mathieu\APPLIC~1\EoRezo\db
C:\DOCUME~1\Mathieu\APPLIC~1\EoRezo\eoDesktop
C:\DOCUME~1\Mathieu\APPLIC~1\EoRezo\host.cyp
C:\DOCUME~1\Mathieu\APPLIC~1\EoRezo\user.cyp
C:\DOCUME~1\Mathieu\APPLIC~1\EoRezo\db\cat.cyp
C:\DOCUME~1\Mathieu\APPLIC~1\EoRezo\eoDesktop\config.xml
C:\DOCUME~1\Mathieu\APPLIC~1\EoRezo\eoDesktop\eoDesktop.html
C:\DOCUME~1\Mathieu\APPLIC~1\EoRezo\eoDesktop\userConfig.xml
C:\DOCUME~1\Mathieu\APPLIC~1\EoRezo
C:\DOCUME~1\Mathieu\APPLIC~1\ItsLabel\ItsTV
C:\DOCUME~1\Mathieu\APPLIC~1\ItsLabel\ItsTV\itsTV.xml
C:\DOCUME~1\Mathieu\APPLIC~1\ItsLabel
C:\DOCUME~1\Mathieu\MENUDM~1\PROGRA~1\Eurobarre

(!) -- Fichiers temporaires supprimés.

.
============== Scan additionnel ==============
.

* Mozilla FireFox Version 3.5.2 *

Nom du profil: (Mathieu)
.
.
.
.
* Internet Explorer Version 7.0.5730.13 *
.
[HKEY_CURRENT_USER\..\Internet Explorer\Main]
.
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
Start Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]
.
Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search bar: hxxp://search.msn.com/spbasic.htm
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start Page: hxxp://fr.msn.com/
.
[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]
.
Tabs : res://ieframe.dll/tabswelcome.htm
.
============== Suspect (Cracks, Serials ... ) ==============
.
C:\Documents and Settings\Mathieu\Local Settings\Application Data\Microsoft\Messenger\mat_wolf@hotmail.fr\Sharing Folders\ganaldar@hotmail.fr\World of Warcraft\Patch.txt
.
.
===================================
.
4045 Octet(s) - C:\Ad-Report-CLEAN.log
.
21 Fichier(s) - C:\DOCUME~1\Mathieu\LOCALS~1\Temp
33 Fichier(s) - C:\WINDOWS\Temp
.
18 Fichier(s) - C:\Program Files\Ad-remover\BACKUP
9 Fichier(s) - C:\Program Files\Ad-remover\QUARANTINE
.
Fin à: 11:40:29 | 24/08/2009
.
============== E.O.F ==============
.
0
Réponse 12 / 28
Utilisateur anonyme
 
Télécharge OTL de OLDTimer

enregistre le sur ton Bureau.

▶ Double clic sur OTL.exe pour le lancer.

▶ Coche les 2 cases Lop et Purity

▶ Coche la case devant scan all users

▶ règle-le sur "60 Days"

▶ dans la colonne de gauche , mets tout sur all

▶Clic sur Run Scan.

A la fin du scan, le Bloc-Notes va s'ouvrir avec le rapport (OTL.txt).

Ce fichier est sur ton Bureau (en général C:\Documents and settings\le_nom_de_ta_session\OTL.txt)

▶▶▶ NE LE POSTE PAS SUR LE FORUM

Pour me le transmettre clique sur ce lien : https://www.cjoint.com/

▶ Clique sur Parcourir et cherche le fichier ci-dessus.

▶ Clique sur Ouvrir.

▶ Clique sur "Cliquez ici pour déposer le fichier".

Un lien de cette forme :

http://cjoint.com/cijSKAP5fU

est ajouté dans la page.

▶ Copie ce lien dans ta réponse.

Tu feras la meme chose avec le "Extra.txt".
0
Réponse 13 / 28
Shinro28 Messages postés 22 Statut Membre
 
Voila :
OTL.txt : https://www.cjoint.com/?iyl6QxwGtF

Extra.txt : https://www.cjoint.com/?iyl50jqJAv
0
Réponse 14 / 28
Utilisateur anonyme
 
Pourquoi program files est-il coupé en deux ??


▶ Télécharge HostXpert sur ton Bureau :

▶ Décompresse-le (Clic droit >> Extraire ici)

▶ Double-clique sur HostsXpert pour le lancer

▶ clique sur le bouton "Restore MS Hosts File" puis ferme le programme

PS : Avant de cliquer sur le bouton "Restore MS Hosts File", vérifie que le cadenas en haut à gauche est ouvert sinon tu vas avoir un message d'erreur.

▶ s'il est fermé , clique dessus :)

ensuite :

▶ Double clic sur OTL.exe pour le lancer.


▶Copie la liste qui se trouve en gras ci-dessous,

▶ colle-la dans la zone sous Customs Scans/Fixes :

:processes
explorer.exe
iexplore.exe
firefox.exe
msnmsgr.exe
Teatimer.exe

:OTL
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Share Accelerator Toolbar) - {f5c93451-2609-4723-a053-5c19516be1a8} - C:\Program Files\Share_Accelerator\tbShar.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (Share Accelerator Toolbar) - {F5C93451-2609-4723-A053-5C19516BE1A8} - C:\Program Files\Share_Accelerator\tbShar.dll (Conduit Ltd.)
O8 - Extra context menu item: >>> FREE PORN GALLERIES <<< - Reg Error: Value error. File not found
O8 - Extra context menu item: Download with Rapget - Reg Error: Value error. File not found
O8 - Extra context menu item: Liens de téléchargement avec Mega Manager... - Reg Error: Value error. File not found
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab (Reg Error: Key error.)
O18 - Protocol\Handler\ipp - No CLSID value found
O18 - Protocol\Handler\msdaipp - No CLSID value found
@Alternate Data Stream - 150 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CD060F93
@Alternate Data Stream - 1200 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:8JHEvQfG6hYXljevtb
@Alternate Data Stream - 1196 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:hRHdBO10b4RNPaCw4gx9Pq
@Alternate Data Stream - 1159 bytes -> C:\Documents and Settings\All Users\Application Data\Microsoft:Jrx0sAzxWCy5l1RS4kepsTMjx
@Alternate Data Stream - 100 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2


:reg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=0
""=-
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=0
"DoNotAllowExceptions"=0
"DisableNotifications"=0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP"="139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004"
"445:TCP"="445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005"
"137:UDP"="137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001"
"138:UDP"="138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002"
"23489:TCP"="23489:TCP:*:Enabled:SolidNetworkManager"
"23489:UDP"="23489:UDP:*:Enabled:SolidNetworkManager"

:files
C:\Documents and Settings\All Users\Application Data\{81D4BDA8-1F33-4633-B176-8A7E942ABDE1}

:commands
[emptytemp]
[reboot]


▶ Clique sur RunFix pour lancer la suppression.


▶ Poste le rapport.
0
Réponse 15 / 28
Shinro28 Messages postés 22 Statut Membre
 
All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
No active process named iexplore.exe was found!
No active process named firefox.exe was found!
No active process named msnmsgr.exe was found!
No active process named Teatimer.exe was found!
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{EF99BD32-C1FB-11D2-892F-0090271D4F88} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{f5c93451-2609-4723-a053-5c19516be1a8} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f5c93451-2609-4723-a053-5c19516be1a8}\ deleted successfully.
C:\Program Files\Share_Accelerator\tbShar.dll unregistered successfully.
C:\Program Files\Share_Accelerator\tbShar.dll moved successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{F5C93451-2609-4723-A053-5C19516BE1A8} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F5C93451-2609-4723-A053-5C19516BE1A8}\ not found.
File C:\Program Files\Share_Accelerator\tbShar.dll not found.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Download with Rapget\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\Liens de téléchargement avec Mega Manager...\ deleted successfully.
Starting removal of ActiveX control {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
C:\WINDOWS\Downloaded Program Files\erma.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ipp\ deleted successfully.
File Protocol\Handler\ipp - No CLSID value found not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\ deleted successfully.
File Protocol\Handler\msdaipp - No CLSID value found not found.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:CD060F93 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\Microsoft:8JHEvQfG6hYXljevtb deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\Microsoft:hRHdBO10b4RNPaCw4gx9Pq deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\Microsoft:Jrx0sAzxWCy5l1RS4kepsTMjx deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2 deleted successfully.
========== REGISTRY ==========
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\"C:\Program Files\Mozilla Firefox\firefox.exe"|"C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox" /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus\\"DisableMonitoring"|0 /E : value set successfully!
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus\\ deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\\"EnableFirewall"|0 /E : value set successfully!
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\\"DoNotAllowExceptions"|0 /E : value set successfully!
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\\"DisableNotifications"|0 /E : value set successfully!
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\"139:TCP"|"139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004" /E : value set successfully!
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\"445:TCP"|"445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005" /E : value set successfully!
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\"137:UDP"|"137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001" /E : value set successfully!
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\"138:UDP"|"138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002" /E : value set successfully!
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\"23489:TCP"|"23489:TCP:*:Enabled:SolidNetworkManager" /E : value set successfully!
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\"23489:UDP"|"23489:UDP:*:Enabled:SolidNetworkManager" /E : value set successfully!
========== FILES ==========
C:\Documents and Settings\All Users\Application Data\{81D4BDA8-1F33-4633-B176-8A7E942ABDE1}\registrybooster2\AF01B0B\6383BC9B moved successfully.
C:\Documents and Settings\All Users\Application Data\{81D4BDA8-1F33-4633-B176-8A7E942ABDE1}\registrybooster2\AF01B0B moved successfully.
C:\Documents and Settings\All Users\Application Data\{81D4BDA8-1F33-4633-B176-8A7E942ABDE1}\registrybooster2\7CE1607E\6383BC9B moved successfully.
C:\Documents and Settings\All Users\Application Data\{81D4BDA8-1F33-4633-B176-8A7E942ABDE1}\registrybooster2\7CE1607E moved successfully.
C:\Documents and Settings\All Users\Application Data\{81D4BDA8-1F33-4633-B176-8A7E942ABDE1}\registrybooster2\7390E4F0\6383BC9B moved successfully.
C:\Documents and Settings\All Users\Application Data\{81D4BDA8-1F33-4633-B176-8A7E942ABDE1}\registrybooster2\7390E4F0 moved successfully.
C:\Documents and Settings\All Users\Application Data\{81D4BDA8-1F33-4633-B176-8A7E942ABDE1}\registrybooster2\65B92A91\6383BC9B moved successfully.
C:\Documents and Settings\All Users\Application Data\{81D4BDA8-1F33-4633-B176-8A7E942ABDE1}\registrybooster2\65B92A91 moved successfully.
C:\Documents and Settings\All Users\Application Data\{81D4BDA8-1F33-4633-B176-8A7E942ABDE1}\registrybooster2\52CD59C9\6383BC9B moved successfully.
C:\Documents and Settings\All Users\Application Data\{81D4BDA8-1F33-4633-B176-8A7E942ABDE1}\registrybooster2\52CD59C9 moved successfully.
C:\Documents and Settings\All Users\Application Data\{81D4BDA8-1F33-4633-B176-8A7E942ABDE1}\registrybooster2\4E45A1A4\6383BC9B moved successfully.
C:\Documents and Settings\All Users\Application Data\{81D4BDA8-1F33-4633-B176-8A7E942ABDE1}\registrybooster2\4E45A1A4 moved successfully.
C:\Documents and Settings\All Users\Application Data\{81D4BDA8-1F33-4633-B176-8A7E942ABDE1}\registrybooster2\371FE0D1\6383BC9B moved successfully.
C:\Documents and Settings\All Users\Application Data\{81D4BDA8-1F33-4633-B176-8A7E942ABDE1}\registrybooster2\371FE0D1 moved successfully.
C:\Documents and Settings\All Users\Application Data\{81D4BDA8-1F33-4633-B176-8A7E942ABDE1}\registrybooster2\2B86F085\6383BC9B moved successfully.
C:\Documents and Settings\All Users\Application Data\{81D4BDA8-1F33-4633-B176-8A7E942ABDE1}\registrybooster2\2B86F085 moved successfully.
C:\Documents and Settings\All Users\Application Data\{81D4BDA8-1F33-4633-B176-8A7E942ABDE1}\registrybooster2 moved successfully.
C:\Documents and Settings\All Users\Application Data\{81D4BDA8-1F33-4633-B176-8A7E942ABDE1}\OFFLINE moved successfully.
C:\Documents and Settings\All Users\Application Data\{81D4BDA8-1F33-4633-B176-8A7E942ABDE1} moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrateur
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: All Users

User: Default User
->Temp folder emptied: 59964 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: LocalService
->Temp folder emptied: 0 bytes
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
->Temporary Internet Files folder emptied: 49286 bytes
->FireFox cache emptied: 1638428 bytes

User: Mathieu
->Temp folder emptied: 422368 bytes
->Temporary Internet Files folder emptied: 174634 bytes
->Java cache emptied: 526556 bytes
->FireFox cache emptied: 63971567 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
File delete failed. C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
->Temporary Internet Files folder emptied: 49286 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 289905 bytes
%systemroot%\System32 .tmp files removed: 3072 bytes
Windows Temp folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 64,10 mb


OTL by OldTimer - Version 3.0.10.7 log created on 08242009_123321

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...
0
Réponse 16 / 28
Utilisateur anonyme
 
Imprime ces instructions car il faudra fermer toutes les fenêtres et applications lors de l'installation et de l'analyse.



▶ Télécharge :

Malwarebytes

ou :

Malwarebytes

▶ Installe le ( choisis bien "francais" ; ne modifie pas les paramètres d'installe ) et mets le à jour .

(NB : Si tu as un message d'erreur t'indiquant qu'il te manque "COMCTL32.OCX" lors de l'installe, alors télécharge le ici : COMCTL32.OCX

▶ Potasses le Tuto pour te familiariser avec le prg :


( cela dit, il est très simple d'utilisation ).

relance malwarebytes en suivant scrupuleusement ces consignes :

! Déconnecte toi et ferme toutes applications en cours !

▶ Lance Malwarebyte's .

Fais un examen dit "Complet" .

▶ Laisse le programme travailler ( et ne rien faire d'autre avec le PC durant le scan ).
▶ à la fin tu cliques sur "résultat" .
Vérifie que tous les objets infectés soient validés, puis clique sur " suppression " .

Note : si il faut redémarrer ton PC pour finir le nettoyage, fais le !


Poste le rapport sauvegardé après la suppression des objets infectés (dans l'onglet "rapport/log"de Malwarebytes, le dernier en date)

0
Réponse 17 / 28
Shinro28 Messages postés 22 Statut Membre
 
Je l'ai fait hier et voila le rapport :
Malwarebytes' Anti-Malware 1.40
Version de la base de données: 2684
Windows 5.1.2600 Service Pack 3

24/08/2009 07:17:49
mbam-log-2009-08-24 (07-17-48).txt

Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 239044
Temps écoulé: 2 hour(s), 46 minute(s), 17 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 6
Valeur(s) du Registre infectée(s): 5
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 15
Fichier(s) infecté(s): 448

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\AppID\ACM.dll (Adware.WhenUSave) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\fcn (Rogue.Residue) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\EoRezo (Rogue.Eorezo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\111111s1ro1s1a (Rootkit.Bagle) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\sK9Ou0s (Rootkit.Bagle) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow\mysearchnow.com (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\New Windows\Allow\www.mysearchnow.com (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\drvsyskit (Rootkit.Bagle) -> Delete on reboot.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\german.exe (Rootkit.Bagle) -> Delete on reboot.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\mule_st_key (Rootkit.Bagle) -> Delete on reboot.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\Documents and Settings\Mathieu\Application Data\drivers\downld (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires (Rootkit.Bagle) -> Delete on reboot.
C:\Documents and Settings\Mathieu\Application Data\hidires\config (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\Incoming (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\lang (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\skins (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\Temp (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\webserver (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\m (Trojan.Agent) -> Delete on reboot.
C:\Documents and Settings\Mathieu\Menu Démarrer\Programmes\Spyware-Secure (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\down (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\downld (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\sysutils (Rogue.XLG) -> Quarantined and deleted successfully.
C:\WINDOWS\sysutils\sounds (Rogue.XLG) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\322734.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\m\flec006.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\5QPW636W\b64[1].jpg (Worm.Bagle) -> Delete on reboot.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\5QPW636W\b64_1[1].jpg (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\5QPW636W\b64_3[1].jpg (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\5QPW636W\b64_3[2].jpg (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\5QPW636W\b64_3[3].jpg (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\5QPW636W\b64_3[4].jpg (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\5QPW636W\b64_3[5].jpg (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\6GMFK0BO\b64_3[1].jpg (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\6GMFK0BO\b64_3[2].jpg (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\6GMFK0BO\b64_3[3].jpg (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\6GMFK0BO\b64_3[4].jpg (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\6GMFK0BO\b64_3[5].jpg (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\6GMFK0BO\b64_3[6].jpg (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\6GMFK0BO\b64_3[7].jpg (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\AIFEZNFS\b64[1].jpg (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\AIFEZNFS\b64[2].jpg (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\AIFEZNFS\b64[3].jpg (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\AIFEZNFS\b64_1[1].jpg (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\AIFEZNFS\b64_3[1].jpg (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\AIFEZNFS\b64_3[2].jpg (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\AIFEZNFS\b64_3[3].jpg (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\MHCSIJMS\b64[1].jpg (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\MHCSIJMS\b64[2].jpg (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\MHCSIJMS\b64[3].jpg (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\MHCSIJMS\b64[4].jpg (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\MHCSIJMS\b64[5].jpg (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Local Settings\Temp\Fichiers Internet temporaires\Content.IE5\MHCSIJMS\b64_1[1].jpg (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP1141\A0269091.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP1141\A0269092.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP1141\A0269094.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP1141\A0269742.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP1141\A0269743.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP1141\A0269744.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP1141\A0269765.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP1141\A0269766.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP1141\A0269777.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP1141\A0269778.exe (Worm.Bagle) -> Delete on reboot.
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP1141\A0269779.exe (Worm.Bagle) -> Delete on reboot.
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP1141\A0269791.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP1141\A0269792.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP1141\A0269793.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP1141\A0269763.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP1141\A0269943.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP1141\A0269946.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP1141\A0269947.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP1142\A0270065.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP1142\A0270067.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP1142\A0270069.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP1142\A0270391.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP1142\A0270392.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP1142\A0270393.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\WINDOWS\iebho.dll (Rogue.XLG) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\mdelk.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wintems.exe (Worm.Bagle) -> Delete on reboot.
C:\WINDOWS\system32\drivers\down\1616109.exe (Malware.Packer.T) -> Quarantined and deleted successfully.
D:\System Volume Information\_restore{C75D780B-5CD4-494E-AB96-5DA2A6677439}\RP1121\A0263717.exe (Malware.Packer) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1006484.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1007421.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1007953.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1010984.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1011062.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1011078.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1014484.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1014562.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1014593.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1018750.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1019578.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1020078.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1026218.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1027796.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1028468.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1028937.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1031906.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1032703.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1033078.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1035109.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1035234.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1035875.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1037093.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1037484.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1041703.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1042796.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1043218.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1069546.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1073562.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1076218.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1085000.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1085062.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1085078.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1099640.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1105234.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1106031.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1106421.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1107765.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1107890.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1108796.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1109328.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1109953.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1115906.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1116000.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1116031.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1138031.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1138984.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1139390.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1171687.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\120625.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1213812.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1214656.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1215203.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1221859.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1221890.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1236203.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1236234.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1244671.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1245578.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1245968.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1248765.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1248953.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1282625.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1292921.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1293093.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1293187.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1302531.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1304828.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1305234.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1308140.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1308156.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1308171.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1317546.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1317562.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1317578.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1374578.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1376937.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1377343.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1381218.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1381437.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1381484.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1381765.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1381796.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1383734.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1383750.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1383765.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1384234.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1386000.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1386578.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1386843.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1387203.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1387328.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1387703.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1387968.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1411015.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1411062.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1440171.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1440359.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1440406.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1440687.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1440734.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1448187.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1448734.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1448984.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1449984.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1450703.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1451046.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1451171.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1451453.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1451500.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1451515.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1452437.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1452875.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1477484.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1479031.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1479437.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1509750.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1512484.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1512671.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1512734.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1513046.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1513109.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1513125.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1519546.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1519578.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1545156.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1550765.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1551390.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1556062.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1556093.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1586593.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1588921.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1589343.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1603921.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1604609.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1605078.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1611265.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1611859.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1611875.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1616265.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1617234.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1617609.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1649468.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1649656.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1649718.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1650000.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1650015.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1885968.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1886187.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1886234.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1952515.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1954812.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\1955203.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\2015750.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\2018484.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\2018843.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\2018921.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\2019203.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\2019843.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\2019859.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\219265.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\314734.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\315203.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\315859.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\316296.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\316890.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\317984.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\333984.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\334609.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\335062.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\353968.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\354687.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\355171.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\358890.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\359437.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\360109.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\360468.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\360562.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\360984.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\429218.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\430484.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\431359.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\514156.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\522031.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\522671.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\523140.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\571937.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\572562.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\573000.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\579828.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\585156.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\589296.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\589421.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\589500.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\640625.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\642828.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\645359.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\645406.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\652953.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\653000.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\671718.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\685500.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\685671.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\685765.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\706281.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\706375.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\751062.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\762000.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\762296.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\762406.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\786375.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\793343.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\793703.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\793718.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\823500.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\823531.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\890828.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\900171.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\900218.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\900265.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\920109.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\921046.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\921515.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\927546.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\927562.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\930812.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\931156.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\967250.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\968078.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\968484.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\972171.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\974156.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\drivers\downld\974656.exe (Worm.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\downloads.bak (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\downloads.txt (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\file.exe (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\names.txt (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\server.txt (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\config\cancelled.met (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\config\clients.met (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\config\clients.met.bak (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\config\cryptkey.dat (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\config\emfriends.met (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\config\key_index.dat (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\config\known.met (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\config\known2_64.met (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\config\load_index.dat (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\config\nodes.dat (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\config\preferences.ini (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\config\preferencesKad.dat (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\config\server.met (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\config\server_met.old (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\config\src_index.dat (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\config\statistics.ini (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\#1 Smart PopUp Stopper Pro 4.4 Patch.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\3DS Export for Alibre Design 1.0.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\7art Lucid Clock ScreenSaver 1.1.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\A-one DVD to MP3 Ripper 6.34 [Serial].zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Abdio MP4 Converter 5.6.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\AffMeter 1.0.011.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Alt Clock Synchronizer 1.5.016.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\ALTools Lunar Zodiac Cycle Wallpaper 2005.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\AquaSoft DiaShow XP five 5.7.02.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Assistant Typist 2.0.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Atrise Everyfind 9.0.0.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\AVS Video to PlayStation 2.2.1.112.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Basic Bookmarks for FF3 1.1.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Biometric Employee Punch Clock 2.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Boxer Text Editor 12.0.1 (Crack).zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Business Icons for Vista 2008.5.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\ChainLink 1.0.0.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Chat Watch for Parents 1.0.0.4.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Chessmaster Challenge 1.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Clock! 2.3.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\ClockLock .5.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\cMail eXpress 1.5.2.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Coloristic 1.5.3.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Command & Conquer Generals - Xfire map.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Command & Conquer Renegade - Bunkers map.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Conferral 2.1 [Serial].zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Converber 1.4.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Corel Snapfire 1.2 Key.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\DAAP Client 0.0.0.5.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\DevPlanner 2.3.35.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\DiskState 3.70.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Download Accelerator Manager Free Edition 2.3.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Easy CD Creator Update (Platinum) 5.02d.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Easy Shut Down 3.2.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\eCaller ID 1.1.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\eLoft Database 2.0.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Email Security Bulldog 1.2.1 [Patch].zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Encryption 1.0 [With Crack].zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Far Cry MP Tropical Island map.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Favorites Finder 1.1.1.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Fix My Registry 2.8.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\FL Studio 8.0.2.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Flux Screensaver 5.0.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Free Disney Screensaver 1.0.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\GedLink Editor 1.3.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\HFSLIP 1.6.2.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\HuntingNet.Com Feed Reader 1.0.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\IETrace 1.0 Key.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\iFORM Designer 2.1.8.3295.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Image Thumbnail CP ActiveX Control 2.5.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\ImTOO Download Youtube Video 1.0.92 Build 0401.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\INADYN 1.96.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Instant C# VB.NET to C# Converter 2.7 [Key+Serial].zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\IntelliJ IDEA 8.1.2 Build 9852.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\IVRPhone 1.0.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\J-Music 1.0.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\JobInfo 3.1.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Kaspersky.Anti-Virus.v6.0.0.303.Final.Eng..Incl.Keys.09-2007.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\KonstSolver 1.086.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Labman 3.0 [KeyGen].zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Lanap BotDetect ASP.NET 2.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\LingvoSoft Learning PhraseBook 2008 Polish - Czech 2.3.91.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Lords of EverQuest Dawn Brotherhood multiplayer demo.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Me Speaking 3.03.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Media Commander 1.7.4.0.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Mercedes-Benz Truck Racing demo.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Mihov Blank Screen 1.3.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\MobiMB Mobile Media Browser 3.3.7 Crack.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Monster Eggs 1.0.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\MS Word to HTML Batch Convert Multiple Documents Software 7.0.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\MSKeyViewer Plus 1.5.5.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\MultiDesktop 0.2.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Multiple Applicator 6.8.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Nidesoft DVD to 3GP Suite 2.0.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Nigata Night 3D Water Screensaver 1.1.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Notalon 0.1.5.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Orange Photo Editor 1.00.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Paint Shop Photo Album 5.01.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\PCMesh Internet and Disk Cleanup 5.3.0.0.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\PDA.Symantec.AntiVirus.For.Handhelds.Corporate.Edition.v3.3.0.26.Retail-ShareFree.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\PH Web Thumbnailer 1.0.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Phone-In Buddy 1.2 [With Crack].zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Photo Album Creator 2.0.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\PointCapture 1.36.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Revolver Mail 2005.4.1.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\River Past Crazi Video for PSP 2.5.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Sakina Privacy Protector 1.4.0.0.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Sekhol Finder 2.3.2300.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Sendmail 1.0.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Sensaura Jamma 1.07.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Severance (Blade of Darkness) demo.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Shockwave Flash Screensaver Maker 3.8.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Showcase 1.0.11.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\SiteKiosk 6.5.150.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\SkyIDE 1.0 Beta 15.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\SL Business Magazine DEC 5.0.zip (Rootkit.Bagle) -> Quarantined and deleted successfully.
C:\Documents and Settings\Mathieu\Application Data\hidires\WDIR\Slashy 1.6.6
0
Réponse 18 / 28
Utilisateur anonyme
 
▶ Télécharge ZHPDiag (de Nicolas Coolman)

ou :ZHPDiag

Enregistre le sur ton Bureau.

Une fois le téléchargement achevé,

▶ lance ZHPDiag.exe et clique sur Unzip dans la fenêtre qui s'ouvre.

▶ Clique sur la clé à molette puis sur Tous pour cocher toutes les cases des options.

▶ Clique sur la loupe pour lancer l'analyse.

A la fin de l'analyse,

▶ clique sur l'appareil photo et enregistre le rapport sur ton Bureau.

Pour me le transmettre clique sur ce lien :

https://www.cjoint.com/

▶ Clique sur Parcourir et cherche le fichier C:\Documents and settings\le_nom_de_ta_session\.ZHPDiag.txt

▶ Clique sur Ouvrir.

▶ Clique sur "Cliquez ici pour déposer le fichier".

Un lien de cette forme :

http://www.cijoint.fr/cjlink.php?file=cj200905/cib7SU.txt

est ajouté dans la page.

▶ Copie ce lien dans ta réponse.
0
Réponse 19 / 28
Shinro28 Messages postés 22 Statut Membre
 
Quand il fini l'analyse j'ai un message d'erreur "Violation d'acces a l'adresse 00404AA8 dans le module 'ZHPDiag.exe'. Lecture de l'adresse 4A8C40F8.
0
Réponse 20 / 28
Shinro28 Messages postés 22 Statut Membre
 
J'ai réussi quand meme a prendre le rapport :

https://www.cjoint.com/?iyohylbWOb
0

Discussions similaires

Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
Désinstaller Softonic
Diguimette -
lilidurhone -

5 réponses
Message Apple virus !!
Souclik67 -
MPMP10 -

3 réponses
virus Artemis!
mabiche37 -
Malekal_morte- -

14 réponses
4 virus en raison d’un porno ????
valou -
Bello040420 -

9 réponses