Infection de collected.af et Downloader.agent

Résolu
JoPay -  
green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   -
Salut à vous!!!

J'ai roulé hijackthis et voici le log qu'il me donne. Qlqun aurait-il la gentillesse de me donner un coup de pouce ??? Danke scheun!

Logfile of HijackThis v1.99.1
Scan saved at 12:02:29 PM, on 12/2/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\PROGRA~1\CRYPTO~1\bin\eus.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\RealVNC\WinVNC\WinVNC.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\Mixer.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\MYWEBS~1\bar\2.bin\mwsoemon.exe
C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
C:\Documents and Settings\Administrator\Desktop\winstall.exe
C:\Program Files\Common Files\{B8651737-0BBF-1033-1104-040628040001}\Update.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Java\jre1.5.0_06\bin\jucheck.exe
C:\Program Files\LimeWire\LimeWire.exe
C:\Program Files\Azureus\Azureus.exe
C:\Documents and Settings\Administrator\Local Settings\Temp\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com/spresults.aspx
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.ca/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\2.bin\MWSSRCAS.DLL
O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\2.bin\MWSSRCAS.DLL
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\2.bin\MWSBAR.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: 888Bar - {C004DEC2-2623-438e-9CA2-C9043AB28508} - C:\PROGRA~1\COMMON~1\{38651~1\888Bar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: 888Bar - {C004DEC2-2623-438e-9CA2-C9043AB28508} - C:\PROGRA~1\COMMON~1\{38651~1\888Bar.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
O4 - HKLM\..\Run: [WinVNC] "C:\Program Files\RealVNC\WinVNC\WinVNC.exe" -servicehelper
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [My Web Search Bar] rundll32 C:\PROGRA~1\MYWEBS~1\bar\2.bin\MWSBAR.DLL,S
O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\2.bin\mwsoemon.exe
O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
O4 - HKLM\..\Run: [CTFMon] D:\applications\Family KL\CTF\ctfmon.exe
O4 - HKLM\..\Run: [explorer] C:\Documents and Settings\Administrator\Desktop\winstall.exe
O4 - HKLM\..\Run: [IpWins] C:\Program Files\ipwins\ipwins.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\2.bin\mwsoemon.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZRxdm427YYCA
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\program files\neoteris\secure application manager\gapsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\neoteris\secure application manager\gapsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\neoteris\secure application manager\gapsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\neoteris\secure application manager\gapsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\neoteris\secure application manager\gapsp.dll
O15 - Trusted Zone: http://msqatd.morneausobeco.com
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache/funwebproducts/ei/PopularScreenSaversFWBInitialSetup1.0.0.15.cab
O16 - DPF: {20048BB3-DB68-11CF-9CAF-00AA006CB425} (007installer Control) - http://www.bardownload.com/prompt/cabs/lyrics.cab
O16 - DPF: {205E7068-6D03-4566-AD06-A146B592FBA5} (Loader Class v2) - https://msqatd.morneausobeco.com/tdbin/Spider80.ocx
O16 - DPF: {288C5F13-7E52-4ADA-A32E-F5BF9D125F98} (CR64Loader Object) - http://www.miniclip.com/bestfriends/miniclipGameLoader.dll
O16 - DPF: {288C5F13-7E52-4ADA-A32E-F5BF9D125F99} (CR64Loader Object) - http://www.miniclip.com/zenpuzzlegarden/miniclipGameLoader.dll
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {3FE16C08-D6A7-4133-84FC-D5BFB4F7D886} (WebGameLoader Class) - http://www.miniclip.com/ricochet/ReflexiveWebGameLoader.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://rashell-choubabe.spaces.live.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1107015642194
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {E055C02E-6258-40FF-80A7-3BDA52FACAD7} (Installer Class) - http://activex.matcash.com/speedtest2.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: CRYPTOCard EUS (cc-eus) - CRYPTOCard Corporation - C:\PROGRA~1\CRYPTO~1\bin\eus.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: VNC Server (winvnc) - Unknown owner - C:\Program Files\RealVNC\WinVNC\WinVNC.exe" -service (file missing)

Merci d'avance!

11 réponses

  1.
    green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    Salut

    vas dans ajout/supprimer un prog et vire :

    My Web Search Bar
    IpWins
    888Bar

    fais de même dans program files : vire les dossier ayant le nom de ces progs !

    ensuite fais le 1/ et le 2/ de ce lien :

    virus methode preliminaire de desinfection version fr

    de nada :-)

    On peut aussi bâtir quelque chose de beau avec les pierres qui entravent le chemin ( J.W.VON GOETHE
    )
    0
  2. JoPay
     
    J'ai suivi à la lettre tes recommandations et mon PC semble mieux s'en porter...

    Je ne suis cependant pas capable de joindre le rapport de Bitdefender...

    Est-ce que Hijackthis serait utile ???

    Merci encore!
    0
  3. JoPay
     
    Voici le fameux rapport!!!

    Statistics

    Time
    01:21:02
    Files
    602717
    Folders
    7431
    Boot Sectors
    3
    Archives
    6388
    Packed Files
    60692

    Results

    Identified Viruses
    13
    Infected Files
    207
    Suspect Files
    0
    Warnings
    0
    Disinfected
    0
    Deleted Files
    206

    Engines Info
    Virus Definitions
    324362
    Engine build
    AVCORE v1.0 (build 2368) (i386) (Nov 16 2006 11:31:19)
    Scan plugins
    14
    Archive plugins
    38
    Unpack plugins
    6
    E-mail plugins
    6
    System plugins
    1

    Scan Settings
    First Action
    Disinfect
    Second Action
    Delete
    Heuristics
    Yes
    Enable Warnings
    Yes
    Scanned Extensions
    *;
    Exclude Extensions

    Scan Emails
    Yes
    Scan Archives
    Yes
    Scan Packed
    Yes
    Scan Files
    Yes
    Scan Boot
    Yes

    Scanned File
    Status

    C:\$VAULT$.AVG\13029062.FIL

    Infected with: Exploit.IECrashJS2.C

    C:\$VAULT$.AVG\13029062.FIL

    Disinfection failed

    C:\$VAULT$.AVG\13029062.FIL

    Deleted

    C:\Documents and Settings\Administrator\Desktop\mc2.exe=>(NSIS o)=>lzma_solid_nsis0002

    Detected with: Adware.Softomate.D

    C:\Documents and Settings\Administrator\Desktop\mc2.exe=>(NSIS o)=>lzma_solid_nsis0002

    Disinfection failed

    C:\Documents and Settings\Administrator\Desktop\mc2.exe=>(NSIS o)=>lzma_solid_nsis0002

    Deleted

    C:\Documents and Settings\Administrator\Desktop\mc2.exe=>(NSIS o)

    Update failed

    C:\Documents and Settings\Administrator\Desktop\mc2.exe=>(NSIS o)=>lzma_solid_nsis0006

    Detected with: Adware.Softomate.D

    C:\Documents and Settings\Administrator\Desktop\mc2.exe=>(NSIS o)=>lzma_solid_nsis0006

    Disinfection failed

    C:\Documents and Settings\Administrator\Desktop\mc2.exe=>(NSIS o)=>lzma_solid_nsis0006

    Deleted

    C:\Documents and Settings\Administrator\Desktop\mc2.exe=>(NSIS o)

    Update failed

    C:\Documents and Settings\Administrator\Desktop\mc2.exe=>(NSIS o)=>lzma_solid_nsis0008=>(NSIS g)=>lzma_solid_nsis0002

    Detected with: Adware.Softomate.D

    C:\Documents and Settings\Administrator\Desktop\mc2.exe=>(NSIS o)=>lzma_solid_nsis0008=>(NSIS g)=>lzma_solid_nsis0002

    Disinfection failed

    C:\Documents and Settings\Administrator\Desktop\mc2.exe=>(NSIS o)=>lzma_solid_nsis0008=>(NSIS g)=>lzma_solid_nsis0002

    Deleted

    C:\Documents and Settings\Administrator\Desktop\mc2.exe=>(NSIS o)=>lzma_solid_nsis0008=>(NSIS g)

    Update failed

    C:\Program Files\Common Files\{B8651737-0BBF-1033-1104-040628040001}\Update.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\Program Files\Common Files\{B8651737-0BBF-1033-1104-040628040001}\Update.exe

    Disinfection failed

    C:\Program Files\Common Files\{B8651737-0BBF-1033-1104-040628040001}\Update.exe

    Delete failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185000.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185000.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185000.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185037.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185037.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185037.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185039.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185039.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185039.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185041.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185041.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185041.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185043.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185043.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185043.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185045.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185045.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185045.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185047.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185047.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185047.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185049.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185049.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185049.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185051.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185051.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185051.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185053.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185053.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185053.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185055.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185055.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185055.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185057.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185057.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185057.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185059.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185059.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185059.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185061.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185061.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185061.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185063.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185063.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185063.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185065.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185065.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185065.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185067.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185067.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185067.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185069.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185069.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185069.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185071.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185071.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185071.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185073.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185073.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185073.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185075.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185075.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185075.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185077.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185077.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185077.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185079.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185079.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185079.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185081.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185081.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185081.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185083.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185083.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185083.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185085.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185085.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185085.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185087.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185087.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185087.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185089.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185089.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185089.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185091.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185091.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185091.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185093.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185093.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185093.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185095.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185095.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185095.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185097.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185097.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185097.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185099.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185099.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185099.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185101.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185101.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185101.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185103.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185103.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185103.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185105.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185105.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185105.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185107.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185107.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185107.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185109.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185109.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185109.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185111.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185111.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185111.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185113.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185113.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185113.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185115.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185115.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185115.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185117.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185117.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185117.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185119.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185119.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185119.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185121.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185121.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185121.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185123.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185123.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185123.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185125.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185125.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185125.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185127.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185127.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185127.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185129.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185129.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185129.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185131.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185131.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185131.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185133.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185133.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185133.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185135.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185135.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185135.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185137.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185137.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185137.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185139.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185139.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185139.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185141.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185141.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185141.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185143.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185143.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185143.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185145.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185145.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185145.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185147.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185147.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185147.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185149.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185149.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185149.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185151.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185151.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185151.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185153.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185153.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185153.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185155.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185155.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185155.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185157.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185157.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185157.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185159.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185159.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185159.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185161.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185161.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185161.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185163.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185163.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185163.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185165.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185165.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185165.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185167.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185167.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185167.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185169.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185169.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185169.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185171.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185171.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185171.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185173.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185173.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185173.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185175.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185175.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185175.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185177.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185177.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185177.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185179.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185179.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185179.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185181.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185181.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185181.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185183.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185183.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185183.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185185.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185185.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185185.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185187.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185187.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185187.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185189.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185189.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185189.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185191.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185191.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185191.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185193.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185193.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185193.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185195.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185195.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185195.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185197.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185197.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185197.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185199.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185199.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185199.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185201.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185201.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185201.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185203.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185203.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185203.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185205.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185205.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185205.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185207.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185207.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185207.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185209.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185209.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185209.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185211.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185211.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185211.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185213.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185213.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185213.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185215.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185215.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185215.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185217.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185217.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185217.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185219.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185219.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185219.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185221.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185221.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185221.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185223.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185223.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185223.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185225.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185225.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185225.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185227.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185227.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185227.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185229.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185229.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185229.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185231.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185231.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185231.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185233.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185233.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185233.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185235.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185235.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185235.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185237.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185237.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185237.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185239.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185239.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185239.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185241.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185241.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185241.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185243.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185243.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185243.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185245.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185245.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185245.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185247.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185247.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185247.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185249.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185249.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185249.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185251.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185251.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185251.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185253.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185253.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185253.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185255.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185255.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185255.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185257.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185257.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185257.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185259.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185259.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185259.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185261.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185261.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185261.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185263.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185263.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185263.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185265.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185265.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185265.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185267.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185267.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185267.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185269.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185269.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185269.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185271.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185271.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185271.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185273.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185273.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185273.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185275.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185275.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP620\A0185275.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185366.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185366.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185366.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185368.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185368.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185368.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185370.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185370.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185370.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185372.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185372.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185372.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185374.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185374.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185374.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185376.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185376.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185376.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185378.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185378.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185378.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185380.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185380.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185380.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185382.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185382.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185382.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185384.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185384.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185384.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185386.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185386.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185386.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185388.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185388.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185388.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185390.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185390.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185390.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185392.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185392.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185392.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185394.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185394.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185394.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185396.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185396.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185396.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185398.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185398.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185398.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185400.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185400.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185400.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185402.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185402.exe

    Disinfection failed

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185402.exe

    Deleted

    C:\System Volume Information\_restore{2748D649-3015-4AB9-9C35-B9571898C65B}\RP621\A0185404.exe

    Infected with: Trojan.Downloader.Agent.ZZ

    C:\System Volume Information\_restore{27
    0
  4. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    Salut

    # Télécharge ceci: (merci a S!RI pour ce petit programme).

    http://siri.urz.free.fr/Fix/SmitfraudFix.zip

    Exécute le, Double click sur Smitfraudfix.cmd choisit l’option 1,
    voila a quoi cela ressemble : http://siri.urz.free.fr/Fix/SmitfraudFix.php
    il va générer un rapport : copie/colle le sur le poste stp.

    ++
    0

  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. JoPay
     
    Et voilà!!!

    SmitFraudFix v2.128

    Scan done at 14:05:27.54, Thu 12/07/2006
    Run from C:\Documents and Settings\Administrator\My Documents\My Downloads\SmitfraudFix
    OS: Microsoft Windows XP [Version 5.1.2600] - Windows_NT
    The filesystem type is NTFS
    Fix run in normal mode

    C:\
    C:\WINDOWS
    C:\WINDOWS\system
    C:\WINDOWS\Web
    C:\WINDOWS\system32
    C:\Documents and Settings\Administrator
    C:\Documents and Settings\Administrator\Application Data
    Start Menu
    C:\DOCUME~1\ADMINI~1\FAVORI~1
    Desktop
    C:\Program Files
    Corrupted keys
    Desktop Components
    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
    "Source"="About:Home"
    "SubscribedURL"="About:Home"
    "FriendlyName"="My Current Home Page"

    Sharedtaskscheduler
    !!!Attention, following keys are not inevitably infected!!!
    SrchSTS.exe by S!Ri
    Search SharedTaskScheduler's .dll
    AppInit_DLLs
    !!!Attention, following keys are not inevitably infected!!!

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
    "AppInit_DLLs"=""

    Winlogon.System
    !!!Attention, following keys are not inevitably infected!!!

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
    "System"=""

    pe386-msguard-lzx32
    Scanning wininet.dll infection

    End

    J'attends de tes nouvelles!!!
    0
  7. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    Salut

    poste un nouveau hijackthis stp

    ++
    0
  8. JoPay
     
    Logfile of HijackThis v1.99.1
    Scan saved at 3:28:48 PM, on 12/10/2006
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
    C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
    C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
    C:\PROGRA~1\CRYPTO~1\bin\eus.exe
    C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
    C:\WINDOWS\System32\nvsvc32.exe
    C:\Program Files\RealVNC\WinVNC\WinVNC.exe
    C:\WINDOWS\system32\WgaTray.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\Mixer.exe
    C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
    C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Documents and Settings\Administrator\My Documents\My Received Files\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.bing.com/spresults.aspx
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: 888Bar - {C004DEC2-2623-438e-9CA2-C9043AB28508} - C:\PROGRA~1\COMMON~1\{38651~1\888Bar.dll (file missing)
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O3 - Toolbar: 888Bar - {C004DEC2-2623-438e-9CA2-C9043AB28508} - C:\PROGRA~1\COMMON~1\{38651~1\888Bar.dll (file missing)
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
    O4 - HKLM\..\Run: [WinVNC] "C:\Program Files\RealVNC\WinVNC\WinVNC.exe" -servicehelper
    O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [SsAAD.exe] C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe
    O4 - HKLM\..\Run: [CTFMon] D:\applications\Family KL\CTF\ctfmon.exe
    O4 - HKLM\..\Run: [explorer] C:\Documents and Settings\Administrator\Desktop\winstall.exe
    O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZRxdm427YYCA
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
    O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O10 - Unknown file in Winsock LSP: c:\program files\neoteris\secure application manager\gapsp.dll
    O10 - Unknown file in Winsock LSP: c:\program files\neoteris\secure application manager\gapsp.dll
    O10 - Unknown file in Winsock LSP: c:\program files\neoteris\secure application manager\gapsp.dll
    O10 - Unknown file in Winsock LSP: c:\program files\neoteris\secure application manager\gapsp.dll
    O10 - Unknown file in Winsock LSP: c:\program files\neoteris\secure application manager\gapsp.dll
    O15 - Trusted Zone: http://msqatd.morneausobeco.com
    O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
    O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
    O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache/funwebproducts/ei/PopularScreenSaversFWBInitialSetup1.0.0.15.cab
    O16 - DPF: {20048BB3-DB68-11CF-9CAF-00AA006CB425} - http://www.bardownload.com/prompt/cabs/lyrics.cab
    O16 - DPF: {205E7068-6D03-4566-AD06-A146B592FBA5} (Loader Class v2) - https://msqatd.morneausobeco.com/tdbin/Spider80.ocx
    O16 - DPF: {288C5F13-7E52-4ADA-A32E-F5BF9D125F98} (CR64Loader Object) - http://www.miniclip.com/bestfriends/miniclipGameLoader.dll
    O16 - DPF: {288C5F13-7E52-4ADA-A32E-F5BF9D125F99} (CR64Loader Object) - http://www.miniclip.com/zenpuzzlegarden/miniclipGameLoader.dll
    O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
    O16 - DPF: {3FE16C08-D6A7-4133-84FC-D5BFB4F7D886} (WebGameLoader Class) - http://www.miniclip.com/ricochet/ReflexiveWebGameLoader.cab
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://rashell-choubabe.spaces.live.com//PhotoUpload/MsnPUpld.cab
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1107015642194
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
    O16 - DPF: {E055C02E-6258-40FF-80A7-3BDA52FACAD7} (Installer Class) - http://activex.matcash.com/speedtest2.dll
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
    O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
    O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
    O23 - Service: CRYPTOCard EUS (cc-eus) - CRYPTOCard Corporation - C:\PROGRA~1\CRYPTO~1\bin\eus.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
    O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
    O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
    O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SSScsiSV.exe
    O23 - Service: VNC Server (winvnc) - Unknown owner - C:\Program Files\RealVNC\WinVNC\WinVNC.exe" -service (file missing)

    Voilà!!!
    0
  9. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    Salut

    # Télécharge ceci: (merci a S!RI pour ce petit programme).

    http://siri.urz.free.fr/Fix/SmitfraudFix.zip

    Exécute le, Double click sur Smitfraudfix.cmd choisit l’option 1,
    voila a quoi cela ressemble : http://siri.urz.free.fr/Fix/SmitfraudFix.php
    il va générer un rapport : copie/colle le sur le poste stp.

    ++
    0
  10. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    le rapport posté sur l'autre poste est ok !

    où en sont tes soucis ???

    ++
    0
  11. JoPay
     
    Je voulais juste en avoir le coeur net.

    Et te dire un gros merci pour ton aide!

    A plus!

    JoPay
    0
  12. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    Salut

    ok, juste les restes de saltés à supprimer :

    # Relance HijackThis : choisis " do a scan only" coche la case devant les lignes ci-dessous et clique en bas sur "fix checked" :

    O2 - BHO: 888Bar - {C004DEC2-2623-438e-9CA2-C9043AB28508} - C:\PROGRA~1\COMMON~1\{38651~1\888Bar.dll (file missing)

    O3 - Toolbar: 888Bar - {C004DEC2-2623-438e-9CA2-C9043AB28508} - C:\PROGRA~1\COMMON~1\{38651~1\888Bar.dll (file missing)

    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

    O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZRxdm427YYCA
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000

    O15 - Trusted Zone: http://msqatd.morneausobeco.com

    O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
    O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
    O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/
    O16 - DPF: {20048BB3-DB68-11CF-9CAF-00AA006CB425} - http://www.bardownload.com/prompt/cabs/lyrics.cab
    O16 - DPF: {205E7068-6D03-4566-AD06-A146B592FBA5} (Loader Class v2) - https://msqatd.morneausobeco.com/tdbin/Spider80.ocx
    O16 - DPF: {288C5F13-7E52-4ADA-A32E-F5BF9D125F98} (CR64Loader Object) - http://www.miniclip.com/bestfriends/miniclipGameLoader.dll
    O16 - DPF: {288C5F13-7E52-4ADA-A32E-F5BF9D125F99} (CR64Loader Object) - http://www.miniclip.com/zenpuzzlegarden/miniclipGameLoader.dll
    O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
    O16 - DPF: {3FE16C08-D6A7-4133-84FC-D5BFB4F7D886} (WebGameLoader Class) - http://www.miniclip.com/ricochet/ReflexiveWebGameLoader.cab
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://rashell-choubabe.spaces.live.com//PhotoUpload/MsnPUpld.cab
    O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/windowsupdate/v6/default.aspx
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
    O16 - DPF: {E055C02E-6258-40FF-80A7-3BDA52FACAD7} (Installer Class) - http://activex.matcash.com/speedtest2.dll

    # ensuite, télécharge et execute ceci :

    * CleanUp40 (qui élimine les fichiers temporaires + cookies : gratuit )
    http://pageperso.aol.fr/Balltrap34/CleanUp40.exe

    tuto : (merci à Balltrap) http://pageperso.aol.fr/balltrap34/democleanup.htm

    * Ccleaner : Telecharge et installe ceci, dans la colonne de gauche clique sur "erreurs" coche toute les cases, puis clique en bas sur "chercher des erreurs" une fois finit, clique sur "reparer les erreurs" et tu aura un message pour sauvegarder ta base de registre tu dis "oui" puis tu recommences jusqu'a ce qu'il te trouve plus d'erreurs .

    *Relance Ccleaner ,vas dans l'onglet "nettoyeur" present sur la gauche, decoche la derniere case (Avancé si elle
    est cochée) puis clique sur "lancer le nettoyage"

    ccleaner

    tuto: https://www.vulgarisation-informatique.com/nettoyer-windows-ccleaner.php

    # installe un parfeu !!!

    et un peu de lecture :

    securite proteger un ordinateur contre les malwares d internet

    @+

    ;-)

    On peut aussi bâtir quelque chose de beau avec les pierres qui entravent le chemin ( J.W.VON GOETHE
    )
    0

Discussions similaires

infection
céline0034 -
totobetourne -

12 réponses
infection
gladiator1952 -
gladiator1952 -

6 réponses
Infection
toast3r -
toast3r -

44 réponses
problème infection ?
emma -
juju666 -

76 réponses
Infection et rame permanente
dbz83 -
buckhulk -

15 réponses