[virus]W32.trojan.downloader laisse des trace
silverxor
Messages postés
4
Statut
Membre
-
silverxor Messages postés 4 Statut Membre -
silverxor Messages postés 4 Statut Membre -
Bonjour a tous ,voila j'explique mon probleme
il y a 2 ou 3 jours en me balladant sur la toile je me suis pris un virus nommé w32.trojan.downloader , mon antivirus Avast 4.7 a detecté le virus mais je pouvais fermé "supprimer" ou "mettre en quarantaine" il revenait toujours .
Grace a ce forum j'ai trouvé les reponses pour le supprimé a cette page: infecte par win32 trojan downloader
j'ai suivi les instructions et maintenant je n'est plus de virus ad-aware et avast ne le detecte plus MAIS voila sur mon pc j'ai SP2 + parefeu et aparament SP2 est endomagé.
je ne peux plus changé mon fond d'ecran (bouton droit- propriété ...etc) tout est bloqué de plus quand je fais panneau de config et clic sur "centre de securité" cette page bug et ne veut pas s'affiché correctement DONC impossible de reglé le parefeu. Lorsque je veux desinstallé Sp2 rien ne se passe et mon pc s'eteint tout seul donc impossible de desinstallé et reinstallé Sp2.
Et enfin a chaque demarrage j'obtient un message d'erreur cli.exe
avec plein de chiffres.
Ma config : WinXp MAJ + Sp2 + firewall + Avast MAJ
je precise j'ai une carte graphique Ati peut etre que cela a un rapport avec "Cli.exe"
je ne sais plus quoi faire !
Merci de votre aide .
il y a 2 ou 3 jours en me balladant sur la toile je me suis pris un virus nommé w32.trojan.downloader , mon antivirus Avast 4.7 a detecté le virus mais je pouvais fermé "supprimer" ou "mettre en quarantaine" il revenait toujours .
Grace a ce forum j'ai trouvé les reponses pour le supprimé a cette page: infecte par win32 trojan downloader
j'ai suivi les instructions et maintenant je n'est plus de virus ad-aware et avast ne le detecte plus MAIS voila sur mon pc j'ai SP2 + parefeu et aparament SP2 est endomagé.
je ne peux plus changé mon fond d'ecran (bouton droit- propriété ...etc) tout est bloqué de plus quand je fais panneau de config et clic sur "centre de securité" cette page bug et ne veut pas s'affiché correctement DONC impossible de reglé le parefeu. Lorsque je veux desinstallé Sp2 rien ne se passe et mon pc s'eteint tout seul donc impossible de desinstallé et reinstallé Sp2.
Et enfin a chaque demarrage j'obtient un message d'erreur cli.exe
avec plein de chiffres.
Ma config : WinXp MAJ + Sp2 + firewall + Avast MAJ
je precise j'ai une carte graphique Ati peut etre que cela a un rapport avec "Cli.exe"
je ne sais plus quoi faire !
Merci de votre aide .
A voir également:
- [virus]W32.trojan.downloader laisse des trace
- Virus mcafee - Accueil - Piratage
- Virus informatique - Guide
- Julien affirme avoir rédigé seul ce document, mais il a laissé quelques traces qui prouvent qu'une autre personne y a contribué. quel est son prénom ? - Forum YouTube
- Comment savoir si on a laissé un message vocal - Forum Mail
- Message virus iphone ✓ - Forum Virus
4 réponses
Salut
Tu peux faire ceci STP
Il est important d’effectuer la manip dans sa totalité et dans l’ordre :
Télécharge et colle les 3 rapports dans l’ordre
A - ad-aware version 1.06
(ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
voir demo
http://pageperso.aol.fr/balltrap34/adwseflash.zip
B - spybot version 1.4
(ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
voir demo d utilisation
http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm
C - Ccleaner : ( nettoyeur de registre, cookies+temps+tempos+prefetch+historique+etc..)
Télécharge ici :
https://www.ccleaner.com/ccleaner/download
Tutorial ici:
https://www.vulgarisation-informatique.com/nettoyer-windows-ccleaner.php
D - Ewido (download)- gratuit même après 14 jours d’essai
http://perso.wanadoo.fr/entraide-hijackthis/Ewido/
Copie/COLLE le rapport généré sur ce forum
Pour certaines versions de Windows antérieures à XP, Ewido peut ne pas être compatible
Dans ce cas, il te faudra utiliser a-squared free et demander une clef pour son usage gratuit
https://www.emsisoft.com/fr/
E - Scan online avec BitDefender (fonctionne uniquement sous Internet Explorer en acceptant l’ activX)
https://assiste.com/404_La_page_demandee_n_existe_pas.php
http://www.bitdefender.fr/scan8/ie.html
Copie/COLLE le rapport entier
F - Hijackthis - Outil de diagnostic et réparation
lire démo
http://pageperso.aol.fr/balltrap34/Hijenr.gif
http://pageperso.aol.fr/balltrap34/demohijack.htm
Télécharge version française ici
http://telechargement.zebulon.fr/160-patch-francais-pour-hijackthis-1991.html
Copie/colle le rapport
Bon courage
A++
Tu peux faire ceci STP
Il est important d’effectuer la manip dans sa totalité et dans l’ordre :
Télécharge et colle les 3 rapports dans l’ordre
A - ad-aware version 1.06
(ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
voir demo
http://pageperso.aol.fr/balltrap34/adwseflash.zip
B - spybot version 1.4
(ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
voir demo d utilisation
http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm
C - Ccleaner : ( nettoyeur de registre, cookies+temps+tempos+prefetch+historique+etc..)
Télécharge ici :
https://www.ccleaner.com/ccleaner/download
Tutorial ici:
https://www.vulgarisation-informatique.com/nettoyer-windows-ccleaner.php
D - Ewido (download)- gratuit même après 14 jours d’essai
http://perso.wanadoo.fr/entraide-hijackthis/Ewido/
Copie/COLLE le rapport généré sur ce forum
Pour certaines versions de Windows antérieures à XP, Ewido peut ne pas être compatible
Dans ce cas, il te faudra utiliser a-squared free et demander une clef pour son usage gratuit
https://www.emsisoft.com/fr/
E - Scan online avec BitDefender (fonctionne uniquement sous Internet Explorer en acceptant l’ activX)
https://assiste.com/404_La_page_demandee_n_existe_pas.php
http://www.bitdefender.fr/scan8/ie.html
Copie/COLLE le rapport entier
F - Hijackthis - Outil de diagnostic et réparation
lire démo
http://pageperso.aol.fr/balltrap34/Hijenr.gif
http://pageperso.aol.fr/balltrap34/demohijack.htm
Télécharge version française ici
http://telechargement.zebulon.fr/160-patch-francais-pour-hijackthis-1991.html
Copie/colle le rapport
Bon courage
A++
Voila Marie ce que j'ai obtenu avec Ewido
ewido anti-spyware - Scan Report
---------------------------------------------------------
+ Created at: 20:45:48 12/07/2006
+ Scan result:
C:\WINDOWS\system32\dxvwbisi.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwccmg.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwcioh.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwclzg.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwfxix.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwjyhw.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwkqbp.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwmmgd.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwphit.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwqojt.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwrbwi.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwshaf.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwtkaw.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwxrzg.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwywvg.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwzwej.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\_zskwrkni05KCLFMYA`VZHEHLNP.dll -> Proxy.Agent.km : No action taken.
C:\WINDOWS\system32\_zskwrkni05KCLFMYA`VZHEHLNP.exe -> Proxy.Agent.km : No action taken.
C:\Documents and Settings\Propriétaire\Cookies\propriétaire@247realmedia[2].txt -> TrackingCookie.247realmedia : No action taken.
C:\Documents and Settings\Propriétaire\Cookies\propriétaire@bluestreak[1].txt -> TrackingCookie.Bluestreak : No action taken.
C:\Documents and Settings\Propriétaire\Cookies\propriétaire@doubleclick[1].txt -> TrackingCookie.Doubleclick : No action taken.
[720] C:\Documents and Settings\All Users\Documents\Settings\artm_new.dll -> Trojan.Agent.oh : No action taken.
::Report end
voila ce que j'obtiens avec Bitdefender Online
C:\Documents and Settings\Propriétaire\Local Settings\Temp\5236\explorer.exe
Infected with: BehavesLike:Win32.SiteHijack
C:\Documents and Settings\Propriétaire\Local Settings\Temp\5236\explorer.exe
Disinfection failed
C:\Documents and Settings\Propriétaire\Local Settings\Temp\5236\explorer.exe
Delete failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025474.exe
Infected with: Trojan.Downloader.CZO
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025474.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025474.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025475.exe
Infected with: GenPack:Trojan.Downloader.Vixup.D
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025475.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025475.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025476.exe
Infected with: GenPack:Trojan.Downloader.Small.BAL
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025476.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025476.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025477.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025477.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025477.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025478.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025478.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025478.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025479.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025479.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025479.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025480.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025480.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025480.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025481.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025481.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025481.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025482.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025482.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025482.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025483.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025483.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025483.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025484.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025484.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025484.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025485.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025485.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025485.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025486.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025486.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025486.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025487.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025487.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025487.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025488.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025488.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025488.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025489.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025489.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025489.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025490.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025490.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025490.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025491.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025491.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025491.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025492.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025492.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025492.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025493.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025493.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025493.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025494.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025494.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025494.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025495.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025495.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025495.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025496.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025496.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025496.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025497.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025497.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025497.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025498.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025498.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025498.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025499.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025499.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025499.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025500.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025500.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025500.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025501.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025501.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025501.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025502.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025502.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025502.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025503.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025503.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025503.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025504.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025504.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025504.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025505.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025505.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025505.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025506.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025506.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025506.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025507.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025507.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025507.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025508.exe
Infected with: Trojan.Proxy.Lager.AQ
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025508.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025509.exe
Suspected of: Trojan.Downloader.Tibs.1.Gen
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025509.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025509.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025510.exe
Infected with: Trojan.Proxy.Lager.AQ
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025510.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025511.exe
Infected with: Trojan.Downloader.Small.AYO
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025511.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025511.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025512.exe
Infected with: Backdoor.Mahayou.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025512.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025512.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025513.exe
Infected with: Trojan.Proxy.Xorpix.N
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025513.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025513.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025514.exe
Infected with: Trojan.Downloader.Small.AMA
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025514.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025514.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025638.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025638.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025638.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025642.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025642.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025642.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025643.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025643.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025643.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025644.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025644.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025644.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025646.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025646.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025646.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025647.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025647.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025647.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025648.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025648.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025648.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025649.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025649.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025649.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025650.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025650.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025650.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025651.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025651.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025651.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025652.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025652.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025652.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025653.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025653.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025653.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025657.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025657.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025657.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025675.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025675.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025675.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025677.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025677.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025677.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025678.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025678.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025678.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026735.exe
Infected with: Trojan.Downloader.Small.AMA
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026735.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026735.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026751.dll
Infected with: Trojan.Proxy.Agent.KC
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026751.dll
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026751.dll
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026762.exe
Infected with: Trojan.Proxy.Agent.HA
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026762.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026762.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026763.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026763.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026763.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026764.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026764.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026764.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026765.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026765.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026765.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026766.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026766.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026766.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026767.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026767.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026767.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026768.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026768.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026768.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026769.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026769.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026769.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026770.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026770.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026770.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026771.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026771.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026771.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026772.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026772.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026772.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026773.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026773.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026773.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026774.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026774.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026774.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026775.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026775.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026775.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026776.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026776.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026776.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026777.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026777.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026777.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026778.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026778.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026778.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026779.dll
Infected with: Trojan.Proxy.Agent.KC
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026779.dll
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026779.dll
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026780.exe
Infected with: Trojan.Proxy.Agent.HA
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026780.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026780.exe
Deleted
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021955.exe=>wise0018
Infected with: Trojan.Downloader.Small.BKE
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021955.exe=>wise0018
Disinfection failed
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021955.exe=>wise0018
Deleted
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021955.exe
Update failed
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021955.exe=>wise0019
Detected with: Application.Adware.NewDotNet.B.Dropper
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021955.exe=>wise0019
Deleted
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021955.exe
Update failed
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021956.exe=>wise0018
Infected with: Trojan.Downloader.Small.BKE
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021956.exe=>wise0018
Disinfection failed
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021956.exe=>wise0018
Deleted
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021956.exe
Update failed
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021956.exe=>wise0019
Detected with: Application.Adware.NewDotNet.B.Dropper
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021956.exe=>wise0019
Deleted
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021956.exe
Update failed
Et enfin voila ce que j'ai obtenu avec Hijackthis
Logfile of HijackThis v1.99.1
Scan saved at 21:54:34, on 12/07/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\AlienGUIse\wbload.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ASUS\Probe\AsusProb.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dll
O4 - HKLM\..\Run: [ASUS Probe] C:\Program Files\ASUS\Probe\AsusProb.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [Explorer 2238] C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\5236\explorer.exe
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKLM\..\RunServices: [SystemTools] C:\WINDOWS\system32\testtestt.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site....
O16 - DPF: {BE833F39-1E0C-468C-BA70-25AAEE55775E} (System Requirements Lab) - http://www.systemrequirementslab.com/sysreqlab.cab
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL
O20 - Winlogon Notify: artm_newreg - C:\Documents and Settings\All Users\Documents\Settings\artm_new.dll
O20 - Winlogon Notify: WB - C:\Program Files\AlienGUIse\fastload.dll
O21 - SSODL: DCOM Server 2238 - {2C1CD3D7-86AC-4068-93BC-A02304BB2238} - C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\5236\explorer.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
Merci de ton aide
ewido anti-spyware - Scan Report
---------------------------------------------------------
+ Created at: 20:45:48 12/07/2006
+ Scan result:
C:\WINDOWS\system32\dxvwbisi.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwccmg.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwcioh.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwclzg.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwfxix.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwjyhw.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwkqbp.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwmmgd.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwphit.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwqojt.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwrbwi.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwshaf.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwtkaw.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwxrzg.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwywvg.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\dxvwzwej.exe -> Backdoor.SdBot.ate : No action taken.
C:\WINDOWS\system32\_zskwrkni05KCLFMYA`VZHEHLNP.dll -> Proxy.Agent.km : No action taken.
C:\WINDOWS\system32\_zskwrkni05KCLFMYA`VZHEHLNP.exe -> Proxy.Agent.km : No action taken.
C:\Documents and Settings\Propriétaire\Cookies\propriétaire@247realmedia[2].txt -> TrackingCookie.247realmedia : No action taken.
C:\Documents and Settings\Propriétaire\Cookies\propriétaire@bluestreak[1].txt -> TrackingCookie.Bluestreak : No action taken.
C:\Documents and Settings\Propriétaire\Cookies\propriétaire@doubleclick[1].txt -> TrackingCookie.Doubleclick : No action taken.
[720] C:\Documents and Settings\All Users\Documents\Settings\artm_new.dll -> Trojan.Agent.oh : No action taken.
::Report end
voila ce que j'obtiens avec Bitdefender Online
C:\Documents and Settings\Propriétaire\Local Settings\Temp\5236\explorer.exe
Infected with: BehavesLike:Win32.SiteHijack
C:\Documents and Settings\Propriétaire\Local Settings\Temp\5236\explorer.exe
Disinfection failed
C:\Documents and Settings\Propriétaire\Local Settings\Temp\5236\explorer.exe
Delete failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025474.exe
Infected with: Trojan.Downloader.CZO
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025474.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025474.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025475.exe
Infected with: GenPack:Trojan.Downloader.Vixup.D
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025475.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025475.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025476.exe
Infected with: GenPack:Trojan.Downloader.Small.BAL
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025476.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025476.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025477.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025477.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025477.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025478.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025478.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025478.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025479.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025479.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025479.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025480.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025480.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025480.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025481.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025481.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025481.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025482.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025482.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025482.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025483.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025483.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025483.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025484.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025484.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025484.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025485.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025485.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025485.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025486.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025486.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025486.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025487.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025487.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025487.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025488.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025488.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025488.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025489.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025489.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025489.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025490.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025490.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025490.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025491.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025491.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025491.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025492.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025492.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025492.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025493.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025493.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025493.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025494.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025494.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025494.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025495.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025495.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025495.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025496.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025496.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025496.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025497.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025497.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025497.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025498.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025498.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025498.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025499.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025499.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025499.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025500.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025500.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025500.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025501.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025501.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025501.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025502.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025502.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025502.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025503.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025503.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025503.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025504.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025504.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025504.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025505.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025505.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025505.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025506.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025506.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025506.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025507.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025507.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025507.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025508.exe
Infected with: Trojan.Proxy.Lager.AQ
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025508.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025509.exe
Suspected of: Trojan.Downloader.Tibs.1.Gen
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025509.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025509.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025510.exe
Infected with: Trojan.Proxy.Lager.AQ
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025510.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025511.exe
Infected with: Trojan.Downloader.Small.AYO
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025511.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025511.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025512.exe
Infected with: Backdoor.Mahayou.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025512.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025512.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025513.exe
Infected with: Trojan.Proxy.Xorpix.N
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025513.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025513.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025514.exe
Infected with: Trojan.Downloader.Small.AMA
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025514.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP93\A0025514.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025638.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025638.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025638.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025642.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025642.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025642.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025643.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025643.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025643.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025644.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025644.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025644.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025646.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025646.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025646.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025647.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025647.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025647.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025648.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025648.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025648.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025649.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025649.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025649.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025650.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025650.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025650.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025651.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025651.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025651.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025652.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025652.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025652.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025653.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025653.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025653.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025657.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025657.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025657.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025675.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025675.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025675.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025677.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025677.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025677.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025678.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025678.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0025678.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026735.exe
Infected with: Trojan.Downloader.Small.AMA
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026735.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026735.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026751.dll
Infected with: Trojan.Proxy.Agent.KC
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026751.dll
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026751.dll
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026762.exe
Infected with: Trojan.Proxy.Agent.HA
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026762.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026762.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026763.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026763.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026763.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026764.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026764.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026764.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026765.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026765.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026765.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026766.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026766.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026766.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026767.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026767.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026767.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026768.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026768.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026768.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026769.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026769.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026769.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026770.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026770.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026770.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026771.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026771.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026771.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026772.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026772.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026772.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026773.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026773.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026773.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026774.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026774.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026774.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026775.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026775.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026775.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026776.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026776.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026776.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026777.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026777.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026777.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026778.exe
Infected with: Trojan.Mailer.Mocolo.A
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026778.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026778.exe
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026779.dll
Infected with: Trojan.Proxy.Agent.KC
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026779.dll
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026779.dll
Deleted
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026780.exe
Infected with: Trojan.Proxy.Agent.HA
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026780.exe
Disinfection failed
C:\System Volume Information\_restore{2632BBAF-785A-427D-9D9C-6B9D571121F6}\RP95\A0026780.exe
Deleted
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021955.exe=>wise0018
Infected with: Trojan.Downloader.Small.BKE
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021955.exe=>wise0018
Disinfection failed
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021955.exe=>wise0018
Deleted
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021955.exe
Update failed
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021955.exe=>wise0019
Detected with: Application.Adware.NewDotNet.B.Dropper
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021955.exe=>wise0019
Deleted
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021955.exe
Update failed
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021956.exe=>wise0018
Infected with: Trojan.Downloader.Small.BKE
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021956.exe=>wise0018
Disinfection failed
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021956.exe=>wise0018
Deleted
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021956.exe
Update failed
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021956.exe=>wise0019
Detected with: Application.Adware.NewDotNet.B.Dropper
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021956.exe=>wise0019
Deleted
D:\System Volume Information\_restore{1A9311A4-DAD0-42A6-ACAC-D85527E4D8AD}\RP175\A0021956.exe
Update failed
Et enfin voila ce que j'ai obtenu avec Hijackthis
Logfile of HijackThis v1.99.1
Scan saved at 21:54:34, on 12/07/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\AlienGUIse\wbload.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ASUS\Probe\AsusProb.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dll
O4 - HKLM\..\Run: [ASUS Probe] C:\Program Files\ASUS\Probe\AsusProb.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [Explorer 2238] C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\5236\explorer.exe
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKLM\..\RunServices: [SystemTools] C:\WINDOWS\system32\testtestt.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site....
O16 - DPF: {BE833F39-1E0C-468C-BA70-25AAEE55775E} (System Requirements Lab) - http://www.systemrequirementslab.com/sysreqlab.cab
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL
O20 - Winlogon Notify: artm_newreg - C:\Documents and Settings\All Users\Documents\Settings\artm_new.dll
O20 - Winlogon Notify: WB - C:\Program Files\AlienGUIse\fastload.dll
O21 - SSODL: DCOM Server 2238 - {2C1CD3D7-86AC-4068-93BC-A02304BB2238} - C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\5236\explorer.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
Merci de ton aide
