Sujet Précédent Sujet Suivant

Je suis bien infecté par malwarewiper

djimson Messages postés 217 Statut Membre -  
Regis59 Messages postés 21143 Date d'inscription   Statut Contributeur sécurité Dernière intervention   -
Bonjour à tous
J'utilise windows xp professionnel avec le sp2. Ca dait de cela qq jour que j'arrive pa à demarrer ma page par defaut et je recoit un message me disant que je suis infecté pr un virus. Il me sembe que c'est malwarewiper et je veux le supprimer mais impossile. SVP je demande vraiment de l'aide car ca commence à etre trop.
Merci

14 réponses

Réponse 1 / 14
Regis59 Messages postés 21143 Date d'inscription   Statut Contributeur sécurité Dernière intervention   1 322
 
Salut

Télécharge ceci: (merci a S!RI pour ce programme).
http://siri.urz.free.fr/Fix/SmitfraudFix.zip
Exécute le, Double click sur Smitfraudfix.cmd choisit l’option 1, il va générer un rapport
Copie/colle le sur le poste stp.
----------------------------------------------------------------------------
Démarre en mode sans échec :
Pour cela, tu tapotes la touche F8 dès le début de l’allumage du pc sans t’arrêter
Une fenêtre va s’ouvrir tu te déplaces avec les flèches du clavier sur démarrer en mode sans échec puis tape entrée.
Une fois sur le bureau s’il n’y a pas toutes les couleurs et autres c’est normal !
(Si F8 ne marche pas utilise la touche F5).
----------------------------------------------------------------------------
Relance le programme Smitfraud,
Cette fois choisit l’option 2, répond oui a tous ;
Sauvegarde le rapport, Redémarre en mode normal, copie/colle le rapport sauvegardé sur le forum

A+
0
djimson Messages postés 217 Statut Membre 3
 
Merci Regis59 je le fait de suite et j'envoie le rapport
0
Réponse 2 / 14
Regis59 Messages postés 21143 Date d'inscription   Statut Contributeur sécurité Dernière intervention   1 322
 
ok, quand tu veux ;-)

a+
0
Réponse 3 / 14
djimson Messages postés 217 Statut Membre 3
 
Slt Regis59 ou trouve t-on le programme Smitfraud ds le mode sans echec
0
Réponse 4 / 14
djimson Messages postés 217 Statut Membre 3
 
tjr personne pr m'accordé un peu de son temps
ca m'inquiete bcp ce virus
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 14
^^Marie^^ Messages postés 126523 Date d'inscription   Statut Membre Dernière intervention   3 279
 
Tu postes de partout, c'est sûr que c'est démoralisant pour les Helpers...

djimson
0
Réponse 6 / 14
djimson
 
Ok je tacherai de ne posté qu'a un seul lieu sauf que je commencais à perdre espoir. Voici les rapports demandés:

SmitFraudFix v2.119

Rapport fait à 16:34:50,82, 07/11/2006
Executé à partir de C:\unzipped\SmitfraudFix\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Fix executé en mode normal

»»»»»»»»»»»»»»»»»»»»»»»» C:\

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS

C:\WINDOWS\.protected PRESENT !

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32

»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles

»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\djimson

»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\djimson\Application Data

»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer

C:\DOCUME~1\djimson\MENUDM~1\PROGRA~1\DMARRA~1\.protected PRESENT !
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\DMARRA~1\.protected PRESENT !

»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\djimson\Favoris

»»»»»»»»»»»»»»»»»»»»»»»» Bureau

»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files

C:\Program Files\iVideoCodec\ PRESENT !

»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues

»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="Ma page d'accueil"

»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""

»»»»»»»»»»»»»»»»»»»»»»»» pe386-msguard-lzx32

»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll

»»»»»»»»»»»»»»»»»»»»»»»» Fin

SmitFraudFix v2.119

Rapport fait à 16:43:49,57, 07/11/2006
Executé à partir de C:\unzipped\SmitfraudFix\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Fix executé en mode sans echec

»»»»»»»»»»»»»»»»»»»»»»»» Avant SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Arret des processus

»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

GenericRenosFix by S!Ri

»»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés

C:\WINDOWS\.protected supprimé
C:\DOCUME~1\djimson\MENUDM~1\PROGRA~1\DMARRA~1\.protected supprimé
C:\DOCUME~1\ALLUSE~1\MENUDM~1\PROGRA~1\DMARRA~1\.protected supprimé
C:\Program Files\iVideoCodec\ supprimé

»»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires

»»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre

Nettoyage terminé.

»»»»»»»»»»»»»»»»»»»»»»»» Après SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Fin
0
Réponse 7 / 14
^^Marie^^ Messages postés 126523 Date d'inscription   Statut Membre Dernière intervention   3 279
 
Slt

Allez, on continue

Télécharge (sauf si tu les as)

C - Ccleaner : ( nettoyeur de registre, cookies+temps+tempos+prefetch+historique+etc..)
Télécharge ici :
https://www.ccleaner.com/ccleaner/download
Tutorial ici:
https://www.vulgarisation-informatique.com/nettoyer-windows-ccleaner.php
et
http://perso.orange.fr/jesses/Docs/Logiciels/CCleaner.htm

D – Ewido – AVG
télécharges "AVG Anti-Spyware" (pour WinXP et 2000) si tu ne l’as pas déjà:
https://www.avg.com/en-ww/free-antivirus-download
Cliques sur « update » pour les mise à jour puis clic sur « scanner » > « complete scan system ».
choisis "delete" pour tout ce qu'il trouve
clic «apply all..”
Tuto ici : https://www.malekal.com/tutorial-et-guide-ewido-v4/
< https://www.pcparadise.fr >
Copie/colle le rapport

E - Scan online avec BitDefender (fonctionne uniquement sous Internet Explorer en acceptant l’ activX)
https://assiste.com/404_La_page_demandee_n_existe_pas.php
http://www.bitdefender.fr/scan8/ie.html
Copie/COLLE le rapport entier

F - Hijackthis - Outil de diagnostic et réparation
lire démo
http://pageperso.aol.fr/balltrap34/Hijenr.gif
http://pageperso.aol.fr/balltrap34/demohijack.htm
Télécharge version française ici
http://telechargement.zebulon.fr/160-patch-francais-pour-hijackthis-1991.html
Copie/colle le rapport

Bon courage

A++

0
djimson
 
j'ai fais tout cela et voici les differents rapports:

AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 19:54:44 06/11/2006

+ Résultat de l'analyse:



HKLM\SOFTWARE\Classes\AppID\{70F17C8C-1744-41B6-9D07-575DB448DCC5} -> Adware.Generic : Ignoré.
HKLM\SOFTWARE\Classes\CLSID\{8bf5b8fc-11cb-409f-8c91-4d4ca04a1b6d} -> Adware.Generic : Ignoré.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8bf5b8fc-11cb-409f-8c91-4d4ca04a1b6d} -> Adware.Generic : Ignoré.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Internet Security Add-On -> Adware.Generic : Ignoré.
HKU\S-1-5-21-1220945662-839522115-854245398-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8BF5B8FC-11CB-409F-8C91-4D4CA04A1B6D} -> Adware.Generic : Ignoré.
HKU\S-1-5-21-1220945662-839522115-854245398-1003\Software\Internet Security -> Adware.IntCodec : Ignoré.
C:\Documents and Settings\djimson\Local Settings\Temp\USDR6V_0001_D18M3107\installer.exe -> Adware.WinFixer : Ignoré.
C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP47\A0071808.exe -> Downloader.PurityScan.dc : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@247realmedia[2].txt -> TrackingCookie.247realmedia : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@2o7[2].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@boonty.122.2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@ads.addynamix[2].txt -> TrackingCookie.Addynamix : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@adtech[2].txt -> TrackingCookie.Adtech : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@advertising[1].txt -> TrackingCookie.Advertising : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@atdmt[2].txt -> TrackingCookie.Atdmt : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@bluestreak[2].txt -> TrackingCookie.Bluestreak : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@com[1].txt -> TrackingCookie.Com : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@doubleclick[1].txt -> TrackingCookie.Doubleclick : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@e-2dj6wjkykmajsbp.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@estat[1].txt -> TrackingCookie.Estat : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@as1.falkag[1].txt -> TrackingCookie.Falkag : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@fastclick[2].txt -> TrackingCookie.Fastclick : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@hotlog[1].txt -> TrackingCookie.Hotlog : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@linksynergy[1].txt -> TrackingCookie.Linksynergy : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@mediaplex[1].txt -> TrackingCookie.Mediaplex : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@stat.onestat[2].txt -> TrackingCookie.Onestat : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@overture[1].txt -> TrackingCookie.Overture : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@perf.overture[1].txt -> TrackingCookie.Overture : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@ads.planetactive[1].txt -> TrackingCookie.Planetactive : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@revenue[1].txt -> TrackingCookie.Revenue : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@serving-sys[1].txt -> TrackingCookie.Serving-sys : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@spylog[2].txt -> TrackingCookie.Spylog : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@tacoda[1].txt -> TrackingCookie.Tacoda : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@weborama[1].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@statse.webtrendslive[2].txt -> TrackingCookie.Webtrendslive : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@xxxcounter[1].txt -> TrackingCookie.Xxxcounter : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@yadro[2].txt -> TrackingCookie.Yadro : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@zedo[2].txt -> TrackingCookie.Zedo : Ignoré.
C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP54\A0074442.exe -> Trojan.Dialer.qs : Ignoré.
C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP54\A0074504.exe -> Trojan.Dialer.qs : Ignoré.
C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP55\A0074775.exe -> Trojan.Dialer.qs : Ignoré.
C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP55\A0074786.exe -> Trojan.Dialer.qs : Ignoré.
C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP56\A0074794.exe -> Trojan.Dialer.qs : Ignoré.


Fin du rapport


<HTML>
<HEAD>
<TITLE>BitDefender Online Scanner -Scan Report</TITLE>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1">
<meta name="generator" content="Namo WebEditor v5.0(Trial)">
</HEAD>
<BODY BGCOLOR=#FFFFFF leftmargin="10" marginwidth="0" topmargin="20" marginheight="0" >


<table align="center" border="0" cellpadding="0" cellspacing="0" width="90%">
<tr>
<td width="458">
<p><font face="Arial" color=red><span style="font-size:14pt;"><b>BitDefender
Online Scanner</b></span></font></p>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>
<tr>
<td colspan="3" width="912">
<p><font face="Arial"><span style="font-size:11pt;"><B>Scan report generated
at: Tue, Nov 07, 2006 - 11:42:06</b></span></font></p>
</td>
</tr>

<tr>
<td width="458">
<p><font face="Arial"><span style="font-size:11pt;"><B> </b></span></font></p>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>

<tr>
<td width="458">
<p><font face="Arial"><span style="font-size:11pt;"><B>Scan
path: </b></span><span style="font-size:10pt;">C:\;D:\;F:\;G:\;</span></font></p>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>

<tr>
<td width="458">
<p><font face="Arial"><span style="font-size:11pt;"><B> </b></span></font></p>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>

<tr>
<td width="458">
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="451" colspan="2" bgcolor="#CCCCCC">
<p><font face="Arial" size="2"><B>Statistics</b></font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Time</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">03:19:03</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Files</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">781657</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Folders</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">4269</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Boot Sectors</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">5</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Archives</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">7836</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Packed Files</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">91614</font></p>
</td>
</tr>
</table>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>



<tr>
<td width="458">
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="451" colspan="2" bgcolor="#CCCCCC">
<p><font face="Arial" size="2"><B>Results</b></font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Identified Viruses </font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">8</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Infected Files </font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">32</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Suspect Files </font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">0</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Warnings</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">0</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Disinfected</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">0</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Deleted Files</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">30</font></p>
</td>
</tr>
</table>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>

<tr>
<td width="458">
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="451" colspan="2" bgcolor="#CCCCCC">
<p><font face="Arial" size="2"><B>Engines Info</b></font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Virus Definitions</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">312708</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Engine build</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">AVCORE v1.0 (build 2310) (i386) (Apr 17 2006 16:24:38)</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scan plugins</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">13</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Archive plugins</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">38</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Unpack plugins</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">6</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">E-mail plugins</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">6</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">System plugins</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">1</font></p>
</td>
</tr>
</table>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>

<tr>
<td width="458">
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="451" colspan="2" bgcolor="#CCCCCC">
<p><font face="Arial" size="2"><B>Scan Settings</b></font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">First Action</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Disinfect</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Second Action</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Delete</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Heuristics</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Enable Warnings</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scanned Extensions</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">*;</font></p>
</td>
</tr>

<tr>
<td width="57%">
<p><font face="Arial" size="2">Exclude Extensions</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2"> </font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scan Emails</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scan Archives</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scan Packed</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scan Files</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">Scan Boot</font></p>
</td>
<td width="43%" align="right">
<p><font face="Arial" size="2">Yes</font></p>
</td>
</tr>
</table>
</td>
<td width="40%">
<p> </p>
</td>
<td width="10%">
<p> </p>
</td>
</tr>

<tr>
<td colspan=2>  
<table border="1" cellspacing="0" bordercolordark="white" bordercolorlight="black" width="100%">
<tr>
<td width="252" bgcolor="#CCCCCC">
<p><font face="Arial" size="2"><B>Scanned File</b></font></p>
</td>
<td width="195" bgcolor="#CCCCCC" align="right">
<p align="left"><b><font size="2" face="Arial"> Status</font></b></p>
</td>
</tr>
<tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\djimson\Local Settings\Temp\mst1.tmp</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: Trojan.Klone.H</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\djimson\Local Settings\Temp\mst1.tmp</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\djimson\Local Settings\Temp\mst1.tmp</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\djimson\Local Settings\Temp\mst16.tmp</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: Trojan.Klone.H</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\djimson\Local Settings\Temp\mst16.tmp</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\djimson\Local Settings\Temp\mst16.tmp</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\djimson\Local Settings\Temp\mstC.tmp</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: Trojan.Agent.TEX</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\djimson\Local Settings\Temp\mstC.tmp</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\djimson\Local Settings\Temp\mstC.tmp</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\djimson\Local Settings\Temp\win7.tmp.exe=>(NSIS o)=>zlib_nsis0001</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: Trojan.Downloader.BKK</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\djimson\Local Settings\Temp\win7.tmp.exe=>(NSIS o)=>zlib_nsis0001</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\djimson\Local Settings\Temp\win7.tmp.exe=>(NSIS o)=>zlib_nsis0001</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Documents and Settings\djimson\Local Settings\Temp\win7.tmp.exe=>(NSIS o)</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Update failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Program Files\iVideoCodec\isamini.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: DeepScan:Generic.Zlob.ED3815B0</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Program Files\iVideoCodec\isamini.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Program Files\iVideoCodec\isamini.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Delete failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Program Files\iVideoCodec\isamonitor.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: DeepScan:Generic.Zlob.894C97EE</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Program Files\iVideoCodec\isamonitor.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\Program Files\iVideoCodec\isamonitor.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Delete failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP47\A0071808.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: Trojan.Downloader.BKK</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP47\A0071808.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP47\A0071808.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP54\A0074442.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: Trojan.Dialer.RO</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP54\A0074442.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP54\A0074442.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP54\A0074504.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: Trojan.Dialer.RO</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP54\A0074504.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP54\A0074504.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP55\A0074775.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: Trojan.Dialer.RO</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP55\A0074775.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP55\A0074775.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP55\A0074786.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: Trojan.Dialer.RO</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP55\A0074786.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP55\A0074786.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP56\A0074794.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: Trojan.Dialer.RO</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP56\A0074794.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP56\A0074794.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP56\A0076885.dll</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: Trojan.Klone.H</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP56\A0076885.dll</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP56\A0076885.dll</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP57\A0078190.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: DeepScan:Generic.Zlob.ED3815B0</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP57\A0078190.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP57\A0078190.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP57\A0079192.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: DeepScan:Generic.Zlob.ED3815B0</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP57\A0079192.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP57\A0079192.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP57\A0079211.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: DeepScan:Generic.Zlob.ED3815B0</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP57\A0079211.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP57\A0079211.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP57\A0079251.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: DeepScan:Generic.Zlob.ED3815B0</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP57\A0079251.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP57\A0079251.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP57\A0079278.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: DeepScan:Generic.Zlob.ED3815B0</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP57\A0079278.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP57\A0079278.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP57\A0079297.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: DeepScan:Generic.Zlob.ED3815B0</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP57\A0079297.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP57\A0079297.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP58\A0079315.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: DeepScan:Generic.Zlob.ED3815B0</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP58\A0079315.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP58\A0079315.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP58\A0079333.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: DeepScan:Generic.Zlob.ED3815B0</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP58\A0079333.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP58\A0079333.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP58\A0079341.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: DeepScan:Generic.Zlob.ED3815B0</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP58\A0079341.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP58\A0079341.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP58\A0079354.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: DeepScan:Generic.Zlob.ED3815B0</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP58\A0079354.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP58\A0079354.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP58\A0079367.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: DeepScan:Generic.Zlob.ED3815B0</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP58\A0079367.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP58\A0079367.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP59\A0080365.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Infected with: DeepScan:Generic.Zlob.ED3815B0</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP59\A0080365.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Disinfection failed</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" size="2">C:\System Volume Information\_restore{5CE90809-EFEB-472C-8827-209B2F152027}\RP59\A0080365.exe</font></p>
</td>
<td width="43%" align="left">
<p><font face="Arial" size="2">Deleted</font></p>
</td>
</tr><tr>
<td width="57%">
<p><font face="Arial" siz
0
Réponse 8 / 14
Regis59 Messages postés 21143 Date d'inscription   Statut Contributeur sécurité Dernière intervention   1 322
 
Salut

relance AVG et supprime ce qu il trouve
copie colle le rapport

a+
0
djimson Messages postés 217 Statut Membre 3
 
Bjr regis59, ok je lance AVG de suite.
A+
0
Réponse 9 / 14
djimson Messages postés 217 Statut Membre 3
 
Ok je fis de nouveau le scan avec AVG et j'envoie le rapport
A+
0
Réponse 10 / 14
djimson Messages postés 217 Statut Membre 3
 
Voici le rapport de AVG

---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 09:02:25 08/11/2006

+ Résultat de l'analyse:

HKU\S-1-5-21-1220945662-839522115-854245398-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8BF5B8FC-11CB-409F-8C91-4D4CA04A1B6D} -> Adware.Generic : Ignoré.
C:\Documents and Settings\djimson\Local Settings\Temp\USDR6V_0001_D18M3107\installer.exe -> Adware.WinFixer : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@247realmedia[1].txt -> TrackingCookie.247realmedia : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@boonty.122.2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@atdmt[2].txt -> TrackingCookie.Atdmt : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@bluestreak[1].txt -> TrackingCookie.Bluestreak : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@com[1].txt -> TrackingCookie.Com : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@doubleclick[1].txt -> TrackingCookie.Doubleclick : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@e-2dj6wjkykmajsbp.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@ads.planetactive[1].txt -> TrackingCookie.Planetactive : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@ads.pointroll[2].txt -> TrackingCookie.Pointroll : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@tacoda[1].txt -> TrackingCookie.Tacoda : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@weborama[1].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@yadro[2].txt -> TrackingCookie.Yadro : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Ignoré.

Fin du rapport
0
Réponse 11 / 14
djimson Messages postés 217 Statut Membre 3
 
Slt j'atten tjrs a ce que une bonne volonté me vienne au secours en plus mon PC rame maintenant
0
Réponse 12 / 14
Regis59 Messages postés 21143 Date d'inscription   Statut Contributeur sécurité Dernière intervention   1 322
 
Re

tu as supprime ce que detecte avg a la fin du scan?
Si oui remet un rapport

a+
0
Réponse 13 / 14
djimson
 
Voici le rapport

AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 09:02:25 08/11/2006

+ Résultat de l'analyse:

HKU\S-1-5-21-1220945662-839522115-854245398-1003\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8BF5B8FC-11CB-409F-8C91-4D4CA04A1B6D} -> Adware.Generic : Ignoré.
C:\Documents and Settings\djimson\Local Settings\Temp\USDR6V_0001_D18M3107\installer.exe -> Adware.WinFixer : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@247realmedia[1].txt -> TrackingCookie.247realmedia : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@boonty.122.2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@atdmt[2].txt -> TrackingCookie.Atdmt : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@bluestreak[1].txt -> TrackingCookie.Bluestreak : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@com[1].txt -> TrackingCookie.Com : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@doubleclick[1].txt -> TrackingCookie.Doubleclick : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@e-2dj6wjkykmajsbp.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@ads.planetactive[1].txt -> TrackingCookie.Planetactive : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@ads.pointroll[2].txt -> TrackingCookie.Pointroll : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@stats1.reliablestats[2].txt -> TrackingCookie.Reliablestats : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@tacoda[1].txt -> TrackingCookie.Tacoda : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@weborama[1].txt -> TrackingCookie.Weborama : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@yadro[2].txt -> TrackingCookie.Yadro : Ignoré.
C:\Documents and Settings\djimson\Cookies\djimson@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Ignoré.

Fin du rapport

Merci
0
Réponse 14 / 14
Regis59 Messages postés 21143 Date d'inscription   Statut Contributeur sécurité Dernière intervention   1 322
 
Salut

Prkoi ne supprimes tu pas ce que detectes avg? Tu ne sais pas le faire ou il y a un soucis?

Merci

A+
0

Discussions similaires

cette phrase est elle correcte
Jo -
Raymond PENTIER -

10 réponses
j'suis content, j'suis content de Bach vieille chanson française
M1O2N3i4K7 -
M1O2N3i4K7 -

3 réponses
comment je peut bien parlais anglais?
dorcas -
xuchiwax -

10 réponses
Vérifier que le server freebox est bien connecté à internet
Fatfa265 -
Pierr10 -

1 réponse
planning
mariie -
doudou37 -

25 réponses