Sujet Précédent Sujet Suivant

Virus envoi automatique d'emails

Nerwan Messages postés 14 Statut Membre -  
Nerwan Messages postés 14 Statut Membre -
Bonjour,

Mon PC semble fortement infecté depuis que je l'ai laissé plusieurs mois a ma copine (eh oui j'ai déconné).

Avast me signale l'envoi d'une centaine d'emails toutes les minutes alors que je ne fais rien... J'ai essayé de le bloquer avec le firewall de ZoneAlarm mais je ne sais quel processus bloquer.

Je ne cherche pas a eradiquer le virus puisque je vais formater d'ici quelques jours lorsque je serai de nouveau chez moi, mais je souhaite sufer en paix d'ici la... et eviter des problemes a mes parents avec wanadoo.

Quel processus/programme dois bloquer avec ZoneALarm?

Generic Host Process for Win32 Services (il est indiqué actif deux fois...)
Firefox
Avast Web!Scanner

EN gros je souhaite juste stopper ces saloperies d'envoi pendant quelques jours, une solution?

Merci d'avance
A voir également:

17 réponses

Réponse 1 / 17
gaston77 Messages postés 495 Statut Membre 34
 
Pourquoi veux tu formater, si c'est à cause du virus, ça ne sert à rien puisqu'on peut l'éradiquer sans problème.

Sache d'abord que avec Avast tu n'es pas protégé.
https://pgms.kanak.fr/t20-ne-plus-utiliser-avast-pourquoi-explications

Sinon, tu ouvres zonealarm puis tu va dans contrôle des programmes. Onglet "Programmes". Tu cliques gauche sur un programmes et tu cliques sur "?Demander". Fais le pour tout les programmes sauf pour ceux où il te dit que si tu fais ça, des programmes risques de ne pas fonctionner. Surtout pas ceux- là car tu risques de formater plus tôt que prévu.
1
philae83 Messages postés 12854 Statut Contributeur sécurité 206
 
bonjour, 

Sache d'abord que avec Avast tu n'es pas protégé.
https://pgms.kanak.fr/


faut peut être pas abuser non + AVAST est un AV tout de même.....
0
Réponse 2 / 17
nardino Messages postés 1634 Statut Membre 119
 
Bonjour,
Si je peux rectifier une chose, il y avait, il y a encore, beaucoup de demandes pour l'infection MSN non pas à cause d'Avast, mais plutôt de la curiosité des utilisateurs ou pour le moins de leur manque de méfiance.
Ce n'est pas tout à fait la même chose.
D'autre part il y a encore selon certaines sources 30% de pc-zombie dans le monde et je doute que tous soit équipés d'Avast.
1
Réponse 3 / 17
nardino Messages postés 1634 Statut Membre 119
 
Bonjour,
1°-Télécharge Antivir

-Antivir de Avira : https://www.avira.com/

Clique sur "download here" en bas de la colonne Classic et dans la fenêtre suivante clique sur la version de ton système.
(Attention pas disponible pour Vista 64 bits.)

Enregistre le fichier (16.4 Mo) et installe le programme.
Voici un tutoriel pour ce faire et bien paramétrer le programme.

http://speedweb1.free.fr/frames2.php?page=tuto5
Merci à Tesgaz.

Mets-le à jour et referme-le.

2°-Démarrage en mode sans échec

Important de faire la procédure sous ce mode.
Il faut choisir la même session que celle qui est infectée et non pas la session Administrateur qui apparaît.

Après la fermeture de la première fenêtre, au tout début de la phase de démarrage du PC (boot), appuie sur F8.
Une fenêtre de type DOS s'ouvre, sélectionne [b]Mode sans échec[/b] à l'aide des flèches du clavier et clique sur Entrée (Enter).
Ne t'inquiète pas de l'aspect, Windows démarre avec le minimum nécessaire et peut prendre quelque minutes pour démarrer.

3°-Scan antivirus

Tu cliques sur l'icône du bureau pour lancer Antivir.
Dans l'onglet Scanner,; tu cliques sur la croix devant Manual Selection et tu coches Poste de travail.
Tu laisses tout coché pour la première analyse.
Tu cliques sur l'icône en forme de loupe en-dessous de Status pour lancer l'analyse qui peut durée une heure.
Il est préférable de ne pas s'éloigner pour répondre aux messages en cas d'alerte.
Tu choisis "Moved to quarantine" pour tout ce qu'il trouve.
Quand le scan est terminé, tu clique sur End.

4°-Redémarrage en mode normal

Tu postes le rapport Antivir.
Tu ouvres le programme et dans l'onglet Reports, choisi Scan avec la date correspondante, double-clique dessus et ensuite sur Report file
Fais un copier-coller de la totalité du rapport ici.
Ce programme sera désinstallé ou remplacera ton antivirus existant selon tes souhaits car il ne faut pas garder deux antivirus actifs en même temps.
0
Réponse 4 / 17
gaston77 Messages postés 495 Statut Membre 34
 
Oui mais bon pourquoi un moment, il y avait plein de demande a cause du virus de msn??? Parce que les gens utilisait Avast et pas un autre (je ne dit pas que Antivir est parfait mais il existe d'autre AV).

0
philae83 Messages postés 12854 Statut Contributeur sécurité 206
 
d'accord mais de la à dire qu'il n'est pas protégé.....c'est un peu différent. Il faut modérer tout de même
0
gaston77 Messages postés 495 Statut Membre 34 > philae83 Messages postés 12854 Statut Contributeur sécurité
 
Certes mais à la limite, je préfère utiliser Antivir pour la désinfection et à la limite libre au gens de changer s'il le veulent.


Les avis concernant Avast et Antivir sont partagé comme même. C'est marrant ça.
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 17
Nerwan Messages postés 14 Statut Membre
 
A votre avis lequel pose probleme?

http://img246.imageshack.us/img246/1782/virusdi2.jpg

Je telecharge Antivir et je poste le rapport ensuite

Merci de votre aide
0
Réponse 6 / 17
Nerwan Messages postés 14 Statut Membre
 
Voici le rapport, désolé pour sa taille... Je me bats régulièrement contre des virus mais là j'avais jamais vu ca.

A savoir qu'avast m'a aussi foutu certains fichiers sous quarantaine...

AntiVir PersonalEdition Classic
Report file date: samedi 29 décembre 2007 16:03

Scanning for 994689 virus strains and unwanted programs.

Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows XP
Windows version: (Service Pack 2) [5.1.2600]
Username: Vincent
Computer name: OWAAA-7C5A42057

Version information:
BUILD.DAT : 270 15603 Bytes 19/09/2007 13:32:00
AVSCAN.EXE : 7.0.6.1 290856 Bytes 23/08/2007 13:16:29
AVSCAN.DLL : 7.0.6.0 49192 Bytes 16/08/2007 12:23:51
LUKE.DLL : 7.0.5.3 147496 Bytes 14/08/2007 15:32:47
LUKERES.DLL : 7.0.6.1 10280 Bytes 21/08/2007 12:35:20
ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 14:27:15
ANTIVIR1.VDF : 7.0.1.95 3367424 Bytes 14/12/2007 14:42:16
ANTIVIR2.VDF : 7.0.1.170 311296 Bytes 28/12/2007 14:42:16
ANTIVIR3.VDF : 7.0.1.173 4608 Bytes 28/12/2007 14:42:16
AVEWIN32.DLL : 7.6.0.46 3084800 Bytes 29/12/2007 14:42:26
AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 10:36:26
AVPREF.DLL : 7.0.2.2 25640 Bytes 18/07/2007 07:39:17
AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 13:16:24
AVPACK32.DLL : 7.6.0.2 360488 Bytes 29/12/2007 14:42:27
AVREG.DLL : 7.0.1.6 30760 Bytes 18/07/2007 07:17:06
AVARKT.DLL : 1.0.0.20 278568 Bytes 28/08/2007 12:26:33
AVEVTLOG.DLL : 7.0.0.20 86056 Bytes 18/07/2007 07:10:18
NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 11:09:42
RCIMAGE.DLL : 7.0.1.30 2342952 Bytes 07/08/2007 12:38:13
RCTEXT.DLL : 7.0.62.0 86056 Bytes 21/08/2007 12:50:37
SQLITE3.DLL : 3.3.17.1 339968 Bytes 23/07/2007 09:37:21

Configuration settings for the scan:
Jobname..........................: Complete system scan
Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: on
Scan boot sector.................: on
Boot sectors.....................: C:,
Scan memory......................: on
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: on
Scan all files...................: All files
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Deviating archive types..........: +BSD Mailbox, +Netscape/Mozilla Mailbox, +Eudora Mailbox, +Squid cache, +Pegasus Mailbox, +MS Outlook Mailbox,
Macro heuristic..................: on
File heuristic...................: medium
Deviating risk categories........: +APPL,+GAME,+JOKE,+PCK,+SPR,

Start of the scan: samedi 29 décembre 2007 16:03

Starting search for hidden objects.
The driver could not be initialized.

The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
11 processes with 11 modules were scanned

Starting master boot sector scan:
Master boot sector HD0
[NOTE] No virus was found!

Start scanning boot sectors:
Boot sector 'C:\'
[NOTE] No virus was found!

Starting to scan the registry.
The registry was scanned ( '33' files ).

Starting the file scan:

Begin scan in 'C:\'
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\30K76387\hotreg[1].htm
[DETECTION] Is the Trojan horse TR/SpamAgent.GT
[INFO] The file was moved to '47ea627b.qua'!
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\UNXZ921S\hotsend[1].htm
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ea6282.qua'!
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\XUJ3FUAF\hotsend[1].htm
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47ea6284.qua'!
C:\WINDOWS\album20.zip
[0] Archive type: ZIP
--> album20.scr
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '47d87bf8.qua'!
C:\WINDOWS\album23.zip
[0] Archive type: ZIP
--> album23.scr
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '47d87bfc.qua'!
C:\WINDOWS\album26.zip
[0] Archive type: ZIP
--> album26.scr
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '47d87bff.qua'!
C:\WINDOWS\album59.zip
[0] Archive type: ZIP
--> album59.scr
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '47d87c02.qua'!
C:\WINDOWS\album80.zip
[0] Archive type: ZIP
--> album80.scr
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '47d87c05.qua'!
C:\WINDOWS\DSC0343531.zip
[0] Archive type: ZIP
--> DSC0343531.scr
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '47b97bf3.qua'!
C:\WINDOWS\Images-JPG16.zip
[0] Archive type: ZIP
--> Images-JPG16.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47d77c12.qua'!
C:\WINDOWS\Images-JPG19.zip
[0] Archive type: ZIP
--> Images-JPG19.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47d77c15.qua'!
C:\WINDOWS\Images-JPG22.zip
[0] Archive type: ZIP
--> Images-JPG22.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47d77c17.qua'!
C:\WINDOWS\Images-JPG25.zip
[0] Archive type: ZIP
--> Images-JPG25.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47d77c1a.qua'!
C:\WINDOWS\Images-JPG34.zip
[0] Archive type: ZIP
--> Images-JPG34.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47d77c1d.qua'!
C:\WINDOWS\Images-JPG43.zip
[0] Archive type: ZIP
--> Images-JPG43.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47d77c1f.qua'!
C:\WINDOWS\Images-JPG46.zip
[0] Archive type: ZIP
--> Images-JPG46.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47d77c21.qua'!
C:\WINDOWS\Images-JPG49.zip
[0] Archive type: ZIP
--> Images-JPG49.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47d77c23.qua'!
C:\WINDOWS\Images-JPG55.zip
[0] Archive type: ZIP
--> Images-JPG55.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47d77c25.qua'!
C:\WINDOWS\Images-JPG67.zip
[0] Archive type: ZIP
--> Images-JPG67.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47d77c28.qua'!
C:\WINDOWS\Images-JPG70.zip
[0] Archive type: ZIP
--> Images-JPG70.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47d77c2a.qua'!
C:\WINDOWS\Images-JPG73.zip
[0] Archive type: ZIP
--> Images-JPG73.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47d77c2c.qua'!
C:\WINDOWS\Images-JPG76.zip
[0] Archive type: ZIP
--> Images-JPG76.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47d77c2f.qua'!
C:\WINDOWS\Images-JPG85.zip
[0] Archive type: ZIP
--> Images-JPG85.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47d77c32.qua'!
C:\WINDOWS\Images-JPG94.zip
[0] Archive type: ZIP
--> Images-JPG94.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47d77c35.qua'!
C:\WINDOWS\images027.zip
[0] Archive type: ZIP
--> images027.scr
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '47d77c40.qua'!
C:\WINDOWS\images033.zip
[0] Archive type: ZIP
--> images033.scr
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '47d77c41.qua'!
C:\WINDOWS\IMG24.zip
[0] Archive type: ZIP
--> IMG24.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47bd7c21.qua'!
C:\WINDOWS\IMG36.zip
[0] Archive type: ZIP
--> IMG36.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '4639db0a.qua'!
C:\WINDOWS\IMG39.zip
[0] Archive type: ZIP
--> IMG39.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47bd7c23.qua'!
C:\WINDOWS\IMG42.zip
[0] Archive type: ZIP
--> IMG42.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47bd7c22.qua'!
C:\WINDOWS\IMG45.zip
[0] Archive type: ZIP
--> IMG45.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '4639db0b.qua'!
C:\WINDOWS\IMG48.zip
[0] Archive type: ZIP
--> IMG48.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47bd7c24.qua'!
C:\WINDOWS\IMG51.zip
[0] Archive type: ZIP
--> IMG51.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '4639db0d.qua'!
C:\WINDOWS\IMG63.zip
[0] Archive type: ZIP
--> IMG63.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '4639db0c.qua'!
C:\WINDOWS\IMG66.zip
[0] Archive type: ZIP
--> IMG66.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47bd7c25.qua'!
C:\WINDOWS\IMG72.zip
[0] Archive type: ZIP
--> IMG72.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '4639db0e.qua'!
C:\WINDOWS\IMG78.zip
[0] Archive type: ZIP
--> IMG78.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47bd7c26.qua'!
C:\WINDOWS\IMG84.zip
[0] Archive type: ZIP
--> IMG84.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '4639db0f.qua'!
C:\WINDOWS\IMG90.zip
[0] Archive type: ZIP
--> IMG90.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47bd7c38.qua'!
C:\WINDOWS\love75.zip
[0] Archive type: ZIP
--> love75.scr
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '47ec7c4b.qua'!
C:\WINDOWS\photo45.zip
[0] Archive type: ZIP
--> photo45.scr
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '47e57c45.qua'!
C:\WINDOWS\Photos-JPG17.zip
[0] Archive type: ZIP
--> Photos-JPG17.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '4661db6e.qua'!
C:\WINDOWS\Photos-JPG26.zip
[0] Archive type: ZIP
--> Photos-JPG26.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47e57c46.qua'!
C:\WINDOWS\Photos-JPG29.zip
[0] Archive type: ZIP
--> Photos-JPG29.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '4661db6f.qua'!
C:\WINDOWS\Photos-JPG32.zip
[0] Archive type: ZIP
--> Photos-JPG32.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47e57c58.qua'!
C:\WINDOWS\Photos-JPG38.zip
[0] Archive type: ZIP
--> Photos-JPG38.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '4661db71.qua'!
C:\WINDOWS\Photos-JPG41.zip
[0] Archive type: ZIP
--> Photos-JPG41.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47e57c47.qua'!
C:\WINDOWS\Photos-JPG5.zip
[0] Archive type: ZIP
--> Photos-JPG5.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '4661db60.qua'!
C:\WINDOWS\Photos-JPG50.zip
[0] Archive type: ZIP
--> Photos-JPG50.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47e57c49.qua'!
C:\WINDOWS\Photos-JPG53.zip
[0] Archive type: ZIP
--> Photos-JPG53.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47e57c48.qua'!
C:\WINDOWS\Photos-JPG59.zip
[0] Archive type: ZIP
--> Photos-JPG59.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '4661db61.qua'!
C:\WINDOWS\Photos-JPG62.zip
[0] Archive type: ZIP
--> Photos-JPG62.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47e57c4a.qua'!
C:\WINDOWS\Photos-JPG83.zip
[0] Archive type: ZIP
--> Photos-JPG83.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '4661db63.qua'!
C:\WINDOWS\Photos-JPG98.zip
[0] Archive type: ZIP
--> Photos-JPG98.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '4661db62.qua'!
C:\WINDOWS\photos070.zip
[0] Archive type: ZIP
--> photos070.scr
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '47e57c4b.qua'!
C:\WINDOWS\PICS1.zip
[0] Archive type: ZIP
--> PICS1.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47b97c2a.qua'!
C:\WINDOWS\PICS13.zip
[0] Archive type: ZIP
--> PICS13.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47b97c2b.qua'!
C:\WINDOWS\PICS19.zip
[0] Archive type: ZIP
--> PICS19.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '463ddb04.qua'!
C:\WINDOWS\PICS22.zip
[0] Archive type: ZIP
--> PICS22.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47b97c2d.qua'!
C:\WINDOWS\PICS4.zip
[0] Archive type: ZIP
--> PICS4.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47b97c2c.qua'!
C:\WINDOWS\PICS43.zip
[0] Archive type: ZIP
--> PICS43.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '463ddb05.qua'!
C:\WINDOWS\PICS52.zip
[0] Archive type: ZIP
--> PICS52.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47b97c2e.qua'!
C:\WINDOWS\PICS61.zip
[0] Archive type: ZIP
--> PICS61.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '463ddb07.qua'!
C:\WINDOWS\PICS7.zip
[0] Archive type: ZIP
--> PICS7.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '463ddb06.qua'!
C:\WINDOWS\PICS70.zip
[0] Archive type: ZIP
--> PICS70.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47b97c2f.qua'!
C:\WINDOWS\PICS73.zip
[0] Archive type: ZIP
--> PICS73.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '463ddb18.qua'!
C:\WINDOWS\PICS91.zip
[0] Archive type: ZIP
--> PICS91.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47b97c20.qua'!
C:\WINDOWS\secretimages83.zip
[0] Archive type: ZIP
--> secretimages83.scr
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '47d97c4b.qua'!
C:\WINDOWS\secretimages89.zip
[0] Archive type: ZIP
--> secretimages89.scr
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '47d97c4c.qua'!
C:\WINDOWS\secretimages92.zip
[0] Archive type: ZIP
--> secretimages92.scr
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '465ddb65.qua'!
C:\WINDOWS\VIDEO11.zip
[0] Archive type: ZIP
--> VIDEO11.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47ba7c32.qua'!
C:\WINDOWS\VIDEO17.zip
[0] Archive type: ZIP
--> VIDEO17.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '463edb1b.qua'!
C:\WINDOWS\VIDEO26.zip
[0] Archive type: ZIP
--> VIDEO26.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47ba7c33.qua'!
C:\WINDOWS\VIDEO29.zip
[0] Archive type: ZIP
--> VIDEO29.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '463edb1c.qua'!
C:\WINDOWS\VIDEO41.zip
[0] Archive type: ZIP
--> VIDEO41.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47ba7c35.qua'!
C:\WINDOWS\VIDEO44.zip
[0] Archive type: ZIP
--> VIDEO44.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '463edb1e.qua'!
C:\WINDOWS\VIDEO50.zip
[0] Archive type: ZIP
--> VIDEO50.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47ba7c34.qua'!
C:\WINDOWS\VIDEO62.zip
[0] Archive type: ZIP
--> VIDEO62.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '463edb1d.qua'!
C:\WINDOWS\VIDEO68.zip
[0] Archive type: ZIP
--> VIDEO68.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47ba7c36.qua'!
C:\WINDOWS\VIDEO71.zip
[0] Archive type: ZIP
--> VIDEO71.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47ba7c37.qua'!
C:\WINDOWS\VIDEO8.zip
[0] Archive type: ZIP
--> VIDEO8.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '463edb10.qua'!
C:\WINDOWS\VIDEO83.zip
[0] Archive type: ZIP
--> VIDEO83.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47ba7c39.qua'!
C:\WINDOWS\VIDEO86.zip
[0] Archive type: ZIP
--> VIDEO86.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '463edb1f.qua'!
C:\WINDOWS\VIDEO95.zip
[0] Archive type: ZIP
--> VIDEO95.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47ba7c08.qua'!
C:\WINDOWS\webcam-photos068.zip
[0] Archive type: ZIP
--> webcam-photos068.scr
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '47d87c52.qua'!
C:\WINDOWS\youtube12.zip
[0] Archive type: ZIP
--> youtube12.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47eb7c5e.qua'!
C:\WINDOWS\youtube18.zip
[0] Archive type: ZIP
--> youtube18.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47eb7c5f.qua'!
C:\WINDOWS\youtube21.zip
[0] Archive type: ZIP
--> youtube21.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '466fdb48.qua'!
C:\WINDOWS\youtube24.zip
[0] Archive type: ZIP
--> youtube24.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47eb7c61.qua'!
C:\WINDOWS\youtube39.zip
[0] Archive type: ZIP
--> youtube39.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47eb7c60.qua'!
C:\WINDOWS\youtube42.zip
[0] Archive type: ZIP
--> youtube42.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '466fdb49.qua'!
C:\WINDOWS\youtube48.zip
[0] Archive type: ZIP
--> youtube48.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47eb7c62.qua'!
C:\WINDOWS\youtube51.zip
[0] Archive type: ZIP
--> youtube51.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '466fdb4b.qua'!
C:\WINDOWS\youtube54.zip
[0] Archive type: ZIP
--> youtube54.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '466fdb4a.qua'!
C:\WINDOWS\youtube60.zip
[0] Archive type: ZIP
--> youtube60.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47eb7c63.qua'!
C:\WINDOWS\youtube63.zip
[0] Archive type: ZIP
--> youtube63.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '466fdb4c.qua'!
C:\WINDOWS\youtube66.zip
[0] Archive type: ZIP
--> youtube66.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47eb7c64.qua'!
C:\WINDOWS\youtube75.zip
[0] Archive type: ZIP
--> youtube75.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '466fdb4d.qua'!
C:\WINDOWS\youtube84.zip
[0] Archive type: ZIP
--> youtube84.scr
[DETECTION] Is the Trojan horse TR/PSW.Brenda.B
[INFO] The file was moved to '47eb7c66.qua'!
C:\WINDOWS\system32\xpdx.sys
[WARNING] The file could not be opened!
C:\WINDOWS\Temp\00261837.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a88031.qua'!
C:\WINDOWS\Temp\01D26BBE.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ba8032.qua'!
C:\WINDOWS\Temp\01E3F212.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bb8033.qua'!
C:\WINDOWS\Temp\034A5DF2.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47aa8035.qua'!
C:\WINDOWS\Temp\056D6386.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ac8037.qua'!
C:\WINDOWS\Temp\0710FE16.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a7803a.qua'!
C:\WINDOWS\Temp\07A679B7.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b7803a.qua'!
C:\WINDOWS\Temp\08474A8D.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47aa803b.qua'!
C:\WINDOWS\Temp\08BDE96B.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b8803c.qua'!
C:\WINDOWS\Temp\094CAEE7.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47aa803d.qua'!
C:\WINDOWS\Temp\09E13D10.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bb803d.qua'!
C:\WINDOWS\Temp\0B3A1482.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a98046.qua'!
C:\WINDOWS\Temp\0B60CC2A.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ac8047.qua'!
C:\WINDOWS\Temp\0D473CCC.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47aa8049.qua'!
C:\WINDOWS\Temp\0D4D0C42.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '462f2cfa.qua'!
C:\WINDOWS\Temp\0D7051F8.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ad804a.qua'!
C:\WINDOWS\Temp\0E2493A6.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47a8804b.qua'!
C:\WINDOWS\Temp\0EB7B9FB.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b8804b.qua'!
C:\WINDOWS\Temp\0F0B8CEE.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a6804d.qua'!
C:\WINDOWS\Temp\0F140593.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a7804d.qua'!
C:\WINDOWS\Temp\0F5CA238.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ab804d.qua'!
C:\WINDOWS\Temp\0F675A04.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ac804d.qua'!
C:\WINDOWS\Temp\103761EF.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a98038.qua'!
C:\WINDOWS\Temp\103BFBD3.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '462c2c89.qua'!
C:\WINDOWS\Temp\109C919E.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47af8038.qua'!
C:\WINDOWS\Temp\118401FB.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ae803a.qua'!
C:\WINDOWS\Temp\126029A6.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ac803b.qua'!
C:\WINDOWS\Temp\13080B33.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a6803c.qua'!
C:\WINDOWS\Temp\137938DD.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ad803d.qua'!
C:\WINDOWS\Temp\1395CDB9.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47af803d.qua'!
C:\WINDOWS\Temp\1795DC4E.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47af8041.qua'!
C:\WINDOWS\Temp\182036A9.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a88043.qua'!
C:\WINDOWS\Temp\18DC4F4D.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ba8043.qua'!
C:\WINDOWS\Temp\190F05F5.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a68044.qua'!
C:\WINDOWS\Temp\1B67289A.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ac804e.qua'!
C:\WINDOWS\Temp\1C981388.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47af804f.qua'!
C:\WINDOWS\Temp\1E54A3AE.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ab8051.qua'!
C:\WINDOWS\Temp\1FCAF480.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b98052.qua'!
C:\WINDOWS\Temp\20822403.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ae803d.qua'!
C:\WINDOWS\Temp\2294BB1E.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47af803f.qua'!
C:\WINDOWS\Temp\22EAACB1.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bb803f.qua'!
C:\WINDOWS\Temp\23BE0117.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b88041.qua'!
C:\WINDOWS\Temp\23C20427.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47b98041.qua'!
C:\WINDOWS\Temp\246857EF.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ac8042.qua'!
C:\WINDOWS\Temp\24BF0B4F.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b88043.qua'!
C:\WINDOWS\Temp\24DDF281.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '463f2cf4.qua'!
C:\WINDOWS\Temp\2514AE4A.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a78044.qua'!
C:\WINDOWS\Temp\26A3117B.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b78046.qua'!
C:\WINDOWS\Temp\26D3B044.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ba8046.qua'!
C:\WINDOWS\Temp\2807F864.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a68048.qua'!
C:\WINDOWS\Temp\2842BFE3.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47aa804b.qua'!
C:\WINDOWS\Temp\28A6AA90.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b78049.qua'!
C:\WINDOWS\Temp\28BD4AEA.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b88049.qua'!
C:\WINDOWS\Temp\2913ACD5.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a7804b.qua'!
C:\WINDOWS\Temp\29F17987.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bc804b.qua'!
C:\WINDOWS\Temp\2AAD0677.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47b78053.qua'!
C:\WINDOWS\Temp\2BE94CD9.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bb8055.qua'!
C:\WINDOWS\Temp\2C2BFD39.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a88056.qua'!
C:\WINDOWS\Temp\2EF7385D.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bc8058.qua'!
C:\WINDOWS\Temp\314BF1FC.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47aa8045.qua'!
C:\WINDOWS\Temp\314EA3E9.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '462f2cf6.qua'!
C:\WINDOWS\Temp\32917ABA.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47af8046.qua'!
C:\WINDOWS\Temp\3457523A.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ab8049.qua'!
C:\WINDOWS\Temp\354FCD0F.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47aa804a.qua'!
C:\WINDOWS\Temp\35AFF22E.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b7804a.qua'!
C:\WINDOWS\Temp\35F6CF18.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '46392cfc.qua'!
C:\WINDOWS\Temp\35FC6CE0.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bc804d.qua'!
C:\WINDOWS\Temp\36BD99F6.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b8804c.qua'!
C:\WINDOWS\Temp\37CA6E26.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b9804d.qua'!
C:\WINDOWS\Temp\3AD7C3EB.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47ba8058.qua'!
C:\WINDOWS\Temp\3B864135.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47ae8059.qua'!
C:\WINDOWS\Temp\3C137AFF.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a7805b.qua'!
C:\WINDOWS\Temp\3CBCC186.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b8805b.qua'!
C:\WINDOWS\Temp\3CDF19CF.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ba805b.qua'!
C:\WINDOWS\Temp\3DA484E0.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b7805c.qua'!
C:\WINDOWS\Temp\3DDB2ABD.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ba805d.qua'!
C:\WINDOWS\Temp\3DE2A544.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bb805d.qua'!
C:\WINDOWS\Temp\3ED97DA0.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ba805e.qua'!
C:\WINDOWS\Temp\3F70054B.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ad8060.qua'!
C:\WINDOWS\Temp\40CD32E4.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b9804a.qua'!
C:\WINDOWS\Temp\413EFCEC.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a9804b.qua'!
C:\WINDOWS\Temp\41B660EB.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '463d2cfd.qua'!
C:\WINDOWS\Temp\41D4A66F.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ba804c.qua'!
C:\WINDOWS\Temp\421506AE.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '46222cfe.qua'!
C:\WINDOWS\Temp\42F467D7.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bc804e.qua'!
C:\WINDOWS\Temp\47879708.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ae8053.qua'!
C:\WINDOWS\Temp\478EBAF6.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '462b2ce4.qua'!
C:\WINDOWS\Temp\47E0FE00.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bb8054.qua'!
C:\WINDOWS\Temp\483B853A.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a98055.qua'!
C:\WINDOWS\Temp\494148C5.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47aa8056.qua'!
C:\WINDOWS\Temp\497123EC.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ad8056.qua'!
C:\WINDOWS\Temp\49B90E56.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b88057.qua'!
C:\WINDOWS\Temp\4A792E1F.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ad805f.qua'!
C:\WINDOWS\Temp\4BD5A654.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ba8060.qua'!
C:\WINDOWS\Temp\4C8A761B.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ae8062.qua'!
C:\WINDOWS\Temp\4D3F1018.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a98063.qua'!
C:\WINDOWS\Temp\4D8109D0.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ae8063.qua'!
C:\WINDOWS\Temp\4D9A203E.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47af8064.qua'!
C:\WINDOWS\Temp\4DEA8E72.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bb8064.qua'!
C:\WINDOWS\Temp\4E60DA1A.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ac8065.qua'!
C:\WINDOWS\Temp\4F884331.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47ae8067.qua'!
C:\WINDOWS\Temp\4F9D6175.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47af8067.qua'!
C:\WINDOWS\Temp\50C1034C.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b98051.qua'!
C:\WINDOWS\Temp\52C43592.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b98054.qua'!
C:\WINDOWS\Temp\53408111.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47aa8055.qua'!
C:\WINDOWS\Temp\53FFACE9.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bc8055.qua'!
C:\WINDOWS\Temp\55018F5A.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a68058.qua'!
C:\WINDOWS\Temp\55A29C61.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b78058.qua'!
C:\WINDOWS\Temp\5656B1BE.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ab8059.qua'!
C:\WINDOWS\Temp\5723EEEA.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a8805a.qua'!
C:\WINDOWS\Temp\57ED2C91.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bb805b.qua'!
C:\WINDOWS\Temp\580212A2.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a6805c.qua'!
C:\WINDOWS\Temp\58BE780C.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47b8805d.qua'!
C:\WINDOWS\Temp\58DD8F2E.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '463f2cee.qua'!
C:\WINDOWS\Temp\595A5C4C.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ab805e.qua'!
C:\WINDOWS\Temp\5A78DD3C.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ad8067.qua'!
C:\WINDOWS\Temp\5AB79F60.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b88067.qua'!
C:\WINDOWS\Temp\5D986D98.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47af806a.qua'!
C:\WINDOWS\Temp\5DD1E0E4.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ba806a.qua'!
C:\WINDOWS\Temp\5E8BD562.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ae806c.qua'!
C:\WINDOWS\Temp\5F362FBB.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a9806d.qua'!
C:\WINDOWS\Temp\5FA0DF09.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b7806d.qua'!
C:\WINDOWS\Temp\6122AF87.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a88059.qua'!
C:\WINDOWS\Temp\61A71201.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47b78059.qua'!
C:\WINDOWS\Temp\6246CFC5.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47aa805a.qua'!
C:\WINDOWS\Temp\65E6073B.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bb805e.qua'!
C:\WINDOWS\Temp\66584B66.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ab805f.qua'!
C:\WINDOWS\Temp\6660FA02.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ac805f.qua'!
C:\WINDOWS\Temp\6889A365.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ae8061.qua'!
C:\WINDOWS\Temp\69751F35.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ad8063.qua'!
C:\WINDOWS\Temp\6B5B5DED.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ab806c.qua'!
C:\WINDOWS\Temp\6BB1CB20.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b8806c.qua'!
C:\WINDOWS\Temp\6C2D0268.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a8806e.qua'!
C:\WINDOWS\Temp\6D1DD227.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a7806f.qua'!
C:\WINDOWS\Temp\6E01DFF8.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a68070.qua'!
C:\WINDOWS\Temp\6E7FD2EC.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47ad8071.qua'!
C:\WINDOWS\Temp\6E926A62.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47af8071.qua'!
C:\WINDOWS\Temp\6F398D19.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a98072.qua'!
C:\WINDOWS\Temp\707494D8.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ad805d.qua'!
C:\WINDOWS\Temp\71221C0D.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a8805e.qua'!
C:\WINDOWS\Temp\71A802A5.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b7805e.qua'!
C:\WINDOWS\Temp\7208F45C.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a68060.qua'!
C:\WINDOWS\Temp\722FDF96.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a88060.qua'!
C:\WINDOWS\Temp\73830022.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '462b2cd2.qua'!
C:\WINDOWS\Temp\740BC395.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a68063.qua'!
C:\WINDOWS\Temp\741E945E.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a78063.qua'!
C:\WINDOWS\Temp\74758ABC.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '46282cd4.qua'!
C:\WINDOWS\Temp\7479B969.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ad8064.qua'!
C:\WINDOWS\Temp\753630CE.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a98065.qua'!
C:\WINDOWS\Temp\76FCCE12.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bc8066.qua'!
C:\WINDOWS\Temp\78AA76ED.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b78068.qua'!
C:\WINDOWS\Temp\78F96C74.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bc8069.qua'!
C:\WINDOWS\Temp\7A37B1E6.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '462c2cc3.qua'!
C:\WINDOWS\Temp\7AFE5260.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bc8072.qua'!
C:\WINDOWS\Temp\7B3D9D79.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47a98074.qua'!
C:\WINDOWS\Temp\7D2BCDBE.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a88076.qua'!
C:\WINDOWS\Temp\7FC4BF03.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b98078.qua'!
C:\WINDOWS\Temp\7FFFCB7C.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47bc8079.qua'!
C:\WINDOWS\Temp\80F74970.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bc8063.qua'!
C:\WINDOWS\Temp\82C2F8AA.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b98065.qua'!
C:\WINDOWS\Temp\82D274B6.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47ba8065.qua'!
C:\WINDOWS\Temp\838CC07B.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '462b2cd8.qua'!
C:\WINDOWS\Temp\84D39753.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47ba8068.qua'!
C:\WINDOWS\Temp\850A5663.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a68069.qua'!
C:\WINDOWS\Temp\8662F01F.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ac806b.qua'!
C:\WINDOWS\Temp\876C27CA.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ac806c.qua'!
C:\WINDOWS\Temp\88C58A58.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b9806d.qua'!
C:\WINDOWS\Temp\8A26C995.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a88077.qua'!
C:\WINDOWS\Temp\8A3FF8A9.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47a98077.qua'!
C:\WINDOWS\Temp\8B3F6667.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a98078.qua'!
C:\WINDOWS\Temp\8BEE9520.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bb8079.qua'!
C:\WINDOWS\Temp\8D40CA61.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47aa807b.qua'!
C:\WINDOWS\Temp\8EA7F0BD.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b7807c.qua'!
C:\WINDOWS\Temp\8EFA04B7.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bc807c.qua'!
C:\WINDOWS\Temp\8F708B80.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ad807e.qua'!
C:\WINDOWS\Temp\8F75B169.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '46282ccf.qua'!
C:\WINDOWS\Temp\8FBD88B0.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47b8807e.qua'!
C:\WINDOWS\Temp\9265B878.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '46292cdc.qua'!
C:\WINDOWS\Temp\926BBEE1.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ac806d.qua'!
C:\WINDOWS\Temp\939152B1.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47af806c.qua'!
C:\WINDOWS\Temp\946EA508.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ac806e.qua'!
C:\WINDOWS\Temp\94F02275.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bc806e.qua'!
C:\WINDOWS\Temp\95463D6D.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47aa806f.qua'!
C:\WINDOWS\Temp\955FC606.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ab806f.qua'!
C:\WINDOWS\Temp\9656D8CA.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ab8071.qua'!
C:\WINDOWS\Temp\994054D6.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47aa8074.qua'!
C:\WINDOWS\Temp\99618391.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ac8075.qua'!
C:\WINDOWS\Temp\9ACCCD34.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b9807d.qua'!
C:\WINDOWS\Temp\9B605E9B.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ac807e.qua'!
C:\WINDOWS\Temp\9BF6F37F.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bc807e.qua'!
C:\WINDOWS\Temp\9C022A11.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a68080.qua'!
C:\WINDOWS\Temp\9D17DE41.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a78081.qua'!
C:\WINDOWS\Temp\9D401189.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47aa8081.qua'!
C:\WINDOWS\Temp\9F299FC4.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a88084.qua'!
C:\WINDOWS\Temp\A10049B5.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a6806f.qua'!
C:\WINDOWS\Temp\A12655F8.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a8806f.qua'!
C:\WINDOWS\Temp\A12AC0D4.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '462d2cc0.qua'!
C:\WINDOWS\Temp\A265BE4E.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ac8071.qua'!
C:\WINDOWS\Temp\A31CEA5D.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a78072.qua'!
C:\WINDOWS\Temp\A3D71D65.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ba8072.qua'!
C:\WINDOWS\Temp\A4246563.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a88074.qua'!
C:\WINDOWS\Temp\A53BBB1B.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a98075.qua'!
C:\WINDOWS\Temp\A5AEAC4F.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b78075.qua'!
C:\WINDOWS\Temp\A5D5E32B.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ba8076.qua'!
C:\WINDOWS\Temp\A6344D83.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '462c2cc8.qua'!
C:\WINDOWS\Temp\A6B7F909.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b88077.qua'!
C:\WINDOWS\Temp\A8881831.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ae807a.qua'!
C:\WINDOWS\Temp\A8ED3164.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bb807a.qua'!
C:\WINDOWS\Temp\AA2762DC.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a88083.qua'!
C:\WINDOWS\Temp\AA63846A.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ac8083.qua'!
C:\WINDOWS\Temp\AB2DFB9D.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a88085.qua'!
C:\WINDOWS\Temp\AB2E749B.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '462d2c36.qua'!
C:\WINDOWS\Temp\ACAEA3CD.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b78086.qua'!
C:\WINDOWS\Temp\AD252DF3.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a88088.qua'!
C:\WINDOWS\Temp\AEB817F0.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b88089.qua'!
C:\WINDOWS\Temp\AF7C4EE8.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ad808a.qua'!
C:\WINDOWS\Temp\AF9CABC8.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47af808b.qua'!
C:\WINDOWS\Temp\B00B8EEC.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a68075.qua'!
C:\WINDOWS\Temp\B1D154B3.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '463f2cc7.qua'!
C:\WINDOWS\Temp\B209A929.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a68078.qua'!
C:\WINDOWS\Temp\B2379884.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '462c2cc9.qua'!
C:\WINDOWS\Temp\B2901D88.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47af8078.qua'!
C:\WINDOWS\Temp\B2DBB415.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ba8079.qua'!
C:\WINDOWS\Temp\B4EB6DBF.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bb807b.qua'!
C:\WINDOWS\Temp\B5E740F0.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bb807c.qua'!
C:\WINDOWS\Temp\B6997A1F.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47af807d.qua'!
C:\WINDOWS\Temp\B7A572D7.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b7807f.qua'!
C:\WINDOWS\Temp\B7B67C32.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47b8807f.qua'!
C:\WINDOWS\Temp\B84392D4.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47aa8080.qua'!
C:\WINDOWS\Temp\B9533159.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ab8082.qua'!
C:\WINDOWS\Temp\BA1F7661.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a7808a.qua'!
C:\WINDOWS\Temp\BA6535DA.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ac808a.qua'!
C:\WINDOWS\Temp\BA80ED60.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ae808b.qua'!
C:\WINDOWS\Temp\BB56FEB3.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ab808c.qua'!
C:\WINDOWS\Temp\BD337E3D.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a9808e.qua'!
C:\WINDOWS\Temp\BF7410D1.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ad8091.qua'!
C:\WINDOWS\Temp\BF8C90A3.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47ae8091.qua'!
C:\WINDOWS\Temp\C0A7D484.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b7807b.qua'!
C:\WINDOWS\Temp\C11D2F67.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a7807d.qua'!
C:\WINDOWS\Temp\C2B7EB3D.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '463d2ccf.qua'!
C:\WINDOWS\Temp\C30E12E5.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a6807f.qua'!
C:\WINDOWS\Temp\C6099AC1.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a68082.qua'!
C:\WINDOWS\Temp\C74CA93B.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47aa8084.qua'!
C:\WINDOWS\Temp\C77D6C4A.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ad8084.qua'!
C:\WINDOWS\Temp\C79892AB.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47af8084.qua'!
C:\WINDOWS\Temp\C81EE6E7.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a78086.qua'!
C:\WINDOWS\Temp\C9720990.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47ad8087.qua'!
C:\WINDOWS\Temp\C99F42DE.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47af8087.qua'!
C:\WINDOWS\Temp\CA147E45.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a78090.qua'!
C:\WINDOWS\Temp\CA589E6A.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ab8090.qua'!
C:\WINDOWS\Temp\CA598096.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '462e2c21.qua'!
C:\WINDOWS\Temp\CA927F2C.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47af8091.qua'!
C:\WINDOWS\Temp\CAB1D357.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b88091.qua'!
C:\WINDOWS\Temp\CB06FF9F.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a68092.qua'!
C:\WINDOWS\Temp\CB58411D.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ab8092.qua'!
C:\WINDOWS\Temp\CBE08CE6.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bb8093.qua'!
C:\WINDOWS\Temp\CD9A2613.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47af8095.qua'!
C:\WINDOWS\Temp\CECA317C.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b98096.qua'!
C:\WINDOWS\Temp\D0BEB792.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b88082.qua'!
C:\WINDOWS\Temp\D17D0F65.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ad8083.qua'!
C:\WINDOWS\Temp\D19BD16F.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47af8083.qua'!
C:\WINDOWS\Temp\D1C8BACF.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b98083.qua'!
C:\WINDOWS\Temp\D2A09531.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b78085.qua'!
C:\WINDOWS\Temp\D4F12701.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bc8087.qua'!
C:\WINDOWS\Temp\D4F2C6F4.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '46392c38.qua'!
C:\WINDOWS\Temp\D589C7BC.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ae8089.qua'!
C:\WINDOWS\Temp\D6270F50.exe
0
Réponse 7 / 17
gaston77 Messages postés 495 Statut Membre 34
 
Excuse moi mais le rappot n'est pas complet. Il me manque le plus important. Si tu as supprimer le log tant pis, sinon, reprend le et donne moi le dernier paragraphes où il me dit combien il a trouvé de virus. J'ai pas tellement envie de les compté si tu vois ce que je veux dire!!

0
Réponse 8 / 17
Nerwan Messages postés 14 Statut Membre
 
Oups désolé!

Voici la fin, merci encore!

[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a8808a.qua'!
C:\WINDOWS\Temp\D7D36E6C.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ba808b.qua'!
C:\WINDOWS\Temp\D7F81665.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bc808c.qua'!
C:\WINDOWS\Temp\D7FA7783.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '46392c3d.qua'!
C:\WINDOWS\Temp\D8B064D1.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47b8808d.qua'!
C:\WINDOWS\Temp\DC884DCB.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ae8099.qua'!
C:\WINDOWS\Temp\DE87FEA8.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47ae809b.qua'!
C:\WINDOWS\Temp\DEC5F071.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b9809b.qua'!
C:\WINDOWS\Temp\DEE49505.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47bb809b.qua'!
C:\WINDOWS\Temp\DF64E5D7.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47ac809d.qua'!
C:\WINDOWS\Temp\DF7D0AF2.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ad809d.qua'!
C:\WINDOWS\Temp\DF8DA112.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ae809d.qua'!
C:\WINDOWS\Temp\E0214C00.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '462d2c39.qua'!
C:\WINDOWS\Temp\E05C3D3F.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ab8088.qua'!
C:\WINDOWS\Temp\E07357D9.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47ad8088.qua'!
C:\WINDOWS\Temp\E0AD70EE.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47b78089.qua'!
C:\WINDOWS\Temp\E0E8B8BA.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bb8089.qua'!
C:\WINDOWS\Temp\E1C83252.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b9808a.qua'!
C:\WINDOWS\Temp\E2D80B6D.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '463f2c3c.qua'!
C:\WINDOWS\Temp\E5E4F802.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bb808f.qua'!
C:\WINDOWS\Temp\E5EF0696.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '463e2c20.qua'!
C:\WINDOWS\Temp\E6FAB489.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bc8090.qua'!
C:\WINDOWS\Temp\E768BDE9.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ac8092.qua'!
C:\WINDOWS\Temp\E8460FB4.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47aa8093.qua'!
C:\WINDOWS\Temp\E957FD3E.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ab8094.qua'!
C:\WINDOWS\Temp\E96A7154.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ac8095.qua'!
C:\WINDOWS\Temp\E9BBD49D.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b88095.qua'!
C:\WINDOWS\Temp\E9EA8768.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47bb8095.qua'!
C:\WINDOWS\Temp\EACED0A7.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b9809e.qua'!
C:\WINDOWS\Temp\EBA2FAA8.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b7809f.qua'!
C:\WINDOWS\Temp\EBCE2099.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b9809f.qua'!
C:\WINDOWS\Temp\EC12F366.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a780a0.qua'!
C:\WINDOWS\Temp\EF121E9F.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a780a4.qua'!
C:\WINDOWS\Temp\F012744B.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a7808e.qua'!
C:\WINDOWS\Temp\F09BCF8D.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47af808e.qua'!
C:\WINDOWS\Temp\F11485AA.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '46222c21.qua'!
C:\WINDOWS\Temp\F2D2E65A.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47ba8091.qua'!
C:\WINDOWS\Temp\F3AD4203.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47b78092.qua'!
C:\WINDOWS\Temp\F45A2FCE.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '462e2c25.qua'!
C:\WINDOWS\Temp\F75D1F76.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ab8097.qua'!
C:\WINDOWS\Temp\F787836D.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ae8097.qua'!
C:\WINDOWS\Temp\F7C84F20.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47b98098.qua'!
C:\WINDOWS\Temp\F832810F.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47a98099.qua'!
C:\WINDOWS\Temp\F942E25C.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47aa809a.qua'!
C:\WINDOWS\Temp\F9DEEAB9.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ba809b.qua'!
C:\WINDOWS\Temp\FA199812.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47a780a3.qua'!
C:\WINDOWS\Temp\FA43B165.exe
[DETECTION] Is the Trojan horse TR/Agent.dkv
[INFO] The file was moved to '47aa80a3.qua'!
C:\WINDOWS\Temp\FA9F1488.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47af80a3.qua'!
C:\WINDOWS\Temp\FADFB3E2.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47ba80a4.qua'!
C:\WINDOWS\Temp\FD2B24DD.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a880a7.qua'!
C:\WINDOWS\Temp\FDAE27CC.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b780a8.qua'!
C:\WINDOWS\Temp\FE0B6E07.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47a680a9.qua'!
C:\WINDOWS\Temp\FEB69943.exe
[DETECTION] Is the Trojan horse TR/Agent.djx
[INFO] The file was moved to '47b880a9.qua'!

End of the scan: samedi 29 décembre 2007 18:14
Used time: 2:10:51 min

The scan has been done completely.

4282 Scanning directories
227059 Files were scanned
418 viruses and/or unwanted programs were found
0 Files were classified as suspicious:
0 files were deleted
0 files were repaired
418 files were moved to quarantine
0 files were renamed
2 Files cannot be scanned
226641 Files not concerned
2556 Archives were scanned
2 Warnings
3 Notes
0
Réponse 9 / 17
nardino Messages postés 1634 Statut Membre 119
 
Bonsoir.
Ton pc servait de serveur pour un site de cul selon toute vraisemblance et il est même étonnant que tu n'aies pas reçu de lettre d'avertissement de Orange.
Antivir a détécté 418 fichiers infectés et les a mis en quarantaine.
Il te reste à vider la quaranatine de Avast et celle d'Antivir.

Pour vider la quarantaine d'Antivir, il suffit d'aller dans l'onglet quarantine, de tous sélectionner et de cliquer sur la petite corbeille.
Pour Avast, tu dois savoir le faire.
Puis à désinstaller un de deux antivirus celui que tu juges le plus efficace
Ensuite tu vides tous les fichiers temporaires avec un programme comme CCleaner :
https://www.ccleaner.com/ccleaner/download
CCleaner Slim

http://perso.wanadoo.fr/jesses/Docs/Logiciels/CCleaner.htm
Tutoriel CCleaner

Et tu as intérêt à faire le ménage dans le dossier Mes images dans lequel tu vas trouvé des "surprises".

1-Télécharge Hijackthis de Trend Micro:
http://www.trendsecure.com/portal/en-US/threat_analytics/hijackthis.php?page=download
Installes-le.
Il sera dans C:\Program Files\TrendMicro\HijackThis2.0.2\HijackThis.exe

[*]Lances-le par Do a system scan and save a logfile.
[*]A la fin du scan, un blocnote va s'ouvrir, enregistre le sous HJT1.txt.
[*]Puis sans le fermer :
CTRL+A pour tout sélectionner
CTRL+C pour copier
CTRL+V pour coller dans la réponse
[*]Tu le refermes pour le moment.
[*]Tu attends les résultats de l'analyse.

2-Télécharge Combofix de sUBs :
http://download.bleepingcomputer.com/sUBs/ComboFix.exe

[*]Ferme toutes les fenêtres
[*]Double-clique sur combofix.exe (ne clique pas sur la fenêtre qui s'ouvre)
[*]Appuie sur Y pour lancer le scan
[*]A la fin du scan (cela peut prendre du temps), un rapport sera créé.
[*]Poste ce rapport dans ton prochain message.
0
Réponse 10 / 17
gaston77 Messages postés 495 Statut Membre 34
 
Ahh oui effectivement!! Ca en valait la peine!!

Telecharge ATF cleaner
1 Choisir son navigateur (IE ou firefox ou opera ).
2 Coche Select All.
3 Clique sur Empty Selected.
4 Si tu veux conserver tes mots de passe sauvegardés, clique No à l'invite.
5 Accepte de tout supprimer.

Telecharge AVG anti spyware
Suis le tuto
Poste le rapport de AVG

Telecharge spybot
Suis le tuto

0
Réponse 11 / 17
nardino Messages postés 1634 Statut Membre 119
 
Gaston77, je peux mener cette désinfection seul s'il te plait .
Merci.
0
Réponse 12 / 17
gaston77 Messages postés 495 Statut Membre 34
 
Ouai ouai pas de soucis. T'as pas confiance en moi c'est ça??? :D^^lol

@+ Nerwan!!
0
Réponse 13 / 17
Nerwan Messages postés 14 Statut Membre
 
Mon PC envoie toujours des emails... Je n'arrive pas a les bloquer avec ZoneAlarm
Un moyen efficace de les bloquer?
0
Réponse 14 / 17
nardino Messages postés 1634 Statut Membre 119
 
Bonsoir,
Applique au moins ce que je t'ai proposé à 19:06
0
Réponse 15 / 17
Nerwan Messages postés 14 Statut Membre
 
Voila voila ca vient :)

ComboFix 07-12-21.4 - Vincent 2007-12-29 21:10:49.1 - NTFSx86
Microsoft Windows XP Édition familiale 5.1.2600.2.1252.1.1036.18.893 [GMT 1:00]
Running from: C:\Documents and Settings\Vincent\Bureau\ComboFix.exe
* Created a new restore point
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\WINDOWS\system32\xpdx.sys

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))

.
-------\LEGACY_NTNDIS
-------\xpdx

((((((((((((((((((((((((((((( Fichiers cr‚‚s 2007-11-28 to 2007-12-29 ))))))))))))))))))))))))))))))))))))
.

2007-12-29 21:02 . 2007-12-29 21:02 <REP> d-------- C:\Program Files\Trend Micro
2007-12-29 15:23 . 2007-12-29 15:23 <REP> d-------- C:\Program Files\Avira
2007-12-29 15:23 . 2007-12-29 15:23 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Avira
2007-12-29 13:01 . 2007-12-29 13:01 <REP> d-------- C:\Documents and Settings\All Users\Application Data\MailFrontier
2007-12-29 13:00 . 2007-12-29 13:00 75,932 --a------ C:\WINDOWS\system32\drivers\klick.dat
2007-12-29 13:00 . 2007-06-21 21:54 75,248 --a------ C:\WINDOWS\zllsputility.exe
2007-12-29 13:00 . 2007-12-29 13:00 74,396 --a------ C:\WINDOWS\system32\drivers\klin.dat
2007-12-29 13:00 . 2007-06-21 21:55 54,672 --a------ C:\WINDOWS\system32\vsutil_loc040c.dll
2007-12-29 13:00 . 2007-06-21 21:55 42,384 --a------ C:\WINDOWS\zllsputility_loc040c.dll
2007-12-29 13:00 . 2007-06-21 21:55 21,904 --a------ C:\WINDOWS\system32\imsinstall_loc040c.dll
2007-12-29 13:00 . 2007-06-21 21:55 17,808 --a------ C:\WINDOWS\system32\imslsp_install_loc040c.dll
2007-12-29 13:00 . 2004-04-27 04:40 11,264 --a------ C:\WINDOWS\system32\SpOrder.dll
2007-12-29 13:00 . 2007-12-29 13:04 4,212 ---h----- C:\WINDOWS\system32\zllictbl.dat
2007-12-29 12:59 . 2007-12-29 15:33 385,056 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat
2007-12-29 12:59 . 2007-12-29 13:44 2,036 --ahs---- C:\WINDOWS\system32\drivers\fidbox.idx
2007-12-29 12:21 . 2007-12-29 21:32 <REP> d-------- C:\WINDOWS\Internet Logs
2007-12-28 09:13 . 2007-12-28 09:13 244 --ah----- C:\sqmnoopt04.sqm
2007-12-28 09:13 . 2007-12-28 09:13 232 --ah----- C:\sqmdata04.sqm
2007-12-27 20:47 . 2007-12-27 20:47 <REP> d-------- C:\WINDOWS\temp-rp
2007-12-27 20:47 . 2007-12-27 20:47 400 --a------ C:\WINDOWS\RPCD.ini
2007-12-27 13:42 . 2007-12-27 13:42 <REP> d-------- C:\Program Files\Sunbelt Software

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-12-27 11:08 --------- d-----w C:\Program Files\Java
2007-12-13 02:03 --------- d-----w C:\Documents and Settings\All Users\Application Data\Microsoft Help
2007-11-13 10:25 20,480 ----a-w C:\WINDOWS\system32\drivers\secdrv.sys
2007-11-04 10:48 --------- d-----w C:\Documents and Settings\Vincent\Application Data\dvdcss
2007-05-23 09:38 16,368 ----a-w C:\Documents and Settings\Vincent\Application Data\GDIPFONTCACHEV1.DAT
.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="C:\Program Files\MSN Messenger\msnmsgr.exe" [2007-01-19 11:55]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="RUNDLL32.exe" [2004-08-05 13:00 C:\WINDOWS\system32\rundll32.exe]
"nwiz"="nwiz.exe" [2004-12-22 22:40 C:\WINDOWS\system32\nwiz.exe]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-09-06 11:06]
"High Definition Audio Property Page Shortcut"="HDAudPropShortcut.exe" [2004-08-12 16:45 C:\WINDOWS\system32\Hdaudpropshortcut.exe]
"SoundMan"="SOUNDMAN.EXE" [2004-11-02 13:53 C:\WINDOWS\SOUNDMAN.EXE]
"AlcWzrd"="ALCWZRD.EXE" [2004-12-10 14:38 C:\WINDOWS\ALCWZRD.EXE]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 01:11]
"Adobe Photo Downloader"="C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe" []
"ZoneAlarm Client"="C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" [2007-06-21 21:54]
"avgnt"="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2007-12-29 15:42]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-05 13:00]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Photo Downloader]
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2007-10-10 19:51 39792 --a------ C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
C:\Program Files\MSN Messenger\MsnMsgr.Exe /background

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe /nosplash /minimized

R3 Cap7134;LifeView WDM Video Capture;C:\WINDOWS\system32\DRIVERS\lvcap214.sys [2004-10-04 19:01]
R3 PhTVTune;Philips WDM TVTuner;C:\WINDOWS\system32\DRIVERS\Silicon.sys [2004-10-04 19:02]
R3 Slazldrv;SmartLink AMR_PCI Driver;C:\WINDOWS\system32\DRIVERS\SLDRV\slazldrv.sys [2005-01-05 18:48]
S3 EU3_USB;WLAN miniUSB Adapter Driver;C:\WINDOWS\system32\DRIVERS\EU3USB.sys [2002-10-01 10:49]

.
Contenu du dossier 'Scheduled Tasks/Tƒches planifi‚es'
"2007-10-19 17:19:59 C:\WINDOWS\Tasks\FRU Task #Hewlett-Packard#hp psc 1200 series#1184584362.job"
- C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpqfrucl.exe4-I
.
**************************************************************************

catchme 0.3.1333 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-12-29 21:36:34
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2007-12-29 21:37:51 - machine was rebooted
.
2007-12-27 09:41:55 --- E O F ---

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:04:13, on 29/12/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wlancfg.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://actus.sfr.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\PROGRA~1\Skype\Phone\IEPlugin\SKYPEI~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAudPropShortcut.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKLM\..\Policies\Explorer\Run: [0G92U7F46J] C:\WINDOWS\service32.exe
O4 - HKLM\..\Policies\Explorer\Run: [4F27V1D89M] C:\WINDOWS\service32.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: hp psc 1000 series.lnk = ?
O4 - Global Startup: hpoddt01.exe.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\PROGRA~1\Skype\Phone\IEPlugin\SKYPEI~1.DLL
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab57213.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\WINDOWS\wlancfg.exe
0
Réponse 16 / 17
nardino Messages postés 1634 Statut Membre 119
 
Bonsoir.

Télécharge sur ton bureau [b]OAD[/b] (Outil Aide Diagnostic) de !aur3n7 :
http://sosvirus.changelog.fr/OAD.exe

Clique sur OAD.exe, entre le nom du fichier suivant, puis Entrée.

service32.exe

Dans la fenêtre suivante tape 6 puis entrée et laisse le scan se terminer.
Enregistre la totalité du rapport qui s'ouvre dans le blocnote sous service32.txt
Puis poste-le dans ta réponse.

Lances Hijackthis toute application fermée, par Scan only et coche:

O4 - HKLM\..\Policies\Explorer\Run: [0G92U7F46J] C:\WINDOWS\service32.exe
O4 - HKLM\..\Policies\Explorer\Run: [4F27V1D89M] C:\WINDOWS\service32.exe

Cliques sur Fix checked

Poste un nouveau rapport Hijackthis et des infos sur l'évolution de tes problèmes.
0
Réponse 17 / 17
Nerwan Messages postés 14 Statut Membre
 
Résultat :

29/12/2007 ---- 22:23:10,07

----------------------------------
§§§§§§ [service32.exe] §§§§§§
----------------------------------
[X] Registre

-------------- [ ] rapide
-- Fichier --- [ ] disque systeme
------------- [X] complete

********************
[Registre]
********************

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run]
"0G92U7F46J"="C:\\WINDOWS\\service32.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run]
"4F27V1D89M"="C:\\WINDOWS\\service32.exe"

*******************
[Fichier]
*******************

*********************
[Même date]
*********************

Aucun fichier créé à la même date détecté

Outil Aide Diagnostic By !aur3n7 Version 1.1
----------------------------------
§§§§§ Fin Rapport §§§§§
----------------------------------

Nouveau HJT après les manips

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:26:11, on 29/12/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wlancfg.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
C:\WINDOWS\system32\notepad.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://actus.sfr.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\PROGRA~1\Skype\Phone\IEPlugin\SKYPEI~1.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAudPropShortcut.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: hp psc 1000 series.lnk = ?
O4 - Global Startup: hpoddt01.exe.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\PROGRA~1\Skype\Phone\IEPlugin\SKYPEI~1.DLL
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab57213.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Inventel - C:\WINDOWS\wlancfg.exe
0

Discussions similaires

Echec d'envoi message sur Messenger
Kris68 -
Colibri -

2 réponses
Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
Envoie impossible messenger
LynaMorgana -
Kuroni -

1 réponse