1% n'est pa une aplication win32 valide

bouda -  
bragon18 Messages postés 26 Statut Membre -
Bonjour,
voila quand je veux installer un anti virus kan mon ordinateur me di instaler je l'installe et une foi que c'est fini sa me met 1% n'est pa une aplication win32 valide si quelqu'un pe maider svp urgent !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
merci de votre aide
A voir également:

17 réponses

Réponse 1 / 17
Destrio5 Messages postés 99820 Statut Modérateur 10 304
 
Salut,

Fallait pas t'amuser à télécharger des cracks.

Maintenant, tu es infecté par Bagle.
0
bouda
 
merci mai comment l'enlever
0
bouda > bouda
 
quelqu'un pe m'aider svp ????!!!!
0
Réponse 2 / 17
Destrio5 Messages postés 99820 Statut Modérateur 10 304
 
---> Désactive l'UAC le temps de la désinfection :
http://www.commentcamarche.net/faq/sujet 8343 vista desactiver l uac

--> Télécharge FindyKill (par Chiquitine29) sur ton Bureau :
http://sd-1.archive-host.com/membres/up/116615172019703188/FindyKill.exe

--> Lance l'installation avec les paramètres par défaut.

--> Clique droit sur le raccourci FindyKill situé sur ton Bureau et choisis Exécuter en tant qu'administrateur.

--> Au menu principal, choisis l'option 1 (Recherche).

--> Poste le rapport FindyKill.txt

Note : le rapport FindyKill.txt est sauvegardé à la racine du disque.
0
bouda
 
voici le raport


----------------- FindyKill V4.709 ------------------

* User : jerome sylvie - PC-DE-JEROMESYL
* Emplacement : C:\Program Files\FindyKill
* Outils Mis a jours le 10/12/08 par Chiquitine29
* Recherche effectuée à 19:27:56 le 17/12/2008
* Windows Vista - Internet Explorer 7.0.6000.16711

((((((((((((((((( *** Recherche *** ))))))))))))))))))


--------------- [ Processus actifs ] ----------------


C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\Windows\system32\lxddcoms.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Users\jerome sylvie\AppData\Roaming\Microsoft\cmstp.exe
C:\Windows\system32\WUDFHost.exe
C:\Users\jerome sylvie\AppData\Local\rdatg.exe
C:\Windows\system32\taskeng.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\System32\rundll32.exe
C:\Windows\system32\rundll32.exe
C:\Windows\system32\rundll32.exe
C:\Windows\system32\rundll32.exe
C:\Windows\system32\rundll32.exe
C:\Windows\system32\rundll32.exe
C:\Windows\system32\conime.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe

--------------- [ Fichiers/Dossiers infectieux ] ----------------


»»»» Presence des fichiers dans C:

Found ! [06/12/2008 21:30] - C:\InfoSat.txt

»»»» Presence des fichiers dans C:\Windows


»»»» Presence des fichiers dans C:\Windows\Prefetch


»»»» Presence des fichiers dans C:\Windows\system32

Found ! [06/12/2008 19:09] - C:\Windows\system32\mdelk.exe
Found ! [06/12/2008 19:09] - C:\Windows\system32\wintems.exe
Found ! [17/12/2008 19:24] - C:\Windows\system32\ban_list.txt

»»»» Presence des fichiers dans C:\Windows\system32\config\systemprofile\AppData\Roaming


»»»» Presence des fichiers dans C:\Windows\system32\drivers

Found ! [10/05/2004 04:06] - C:\Windows\system32\drivers\mdelk.exe
Found ! [17/12/2008 19:23] - C:\Windows\system32\drivers\srosa.sys
Found ! [10/05/2004 04:06] - C:\Windows\system32\drivers\hldrrr.exe
Found ! [06/12/2008 19:13] - "C:\Windows\system32\drivers\downld"
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\100954830.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\100957919.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\101014079.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\101019898.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\101122016.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\101330792.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\101403364.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1023023.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\102601.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\105082.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1055643.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\107781.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\108171.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\109590.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\111041.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\111431.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\112273.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1129400.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\112991.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\11303504.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\11314346.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\11315657.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\11335469.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\11340087.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1141350.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1143924.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\115191.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\115940161.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\115941846.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\115994652.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\116003653.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\116007975.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\116093728.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\116127.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\116142.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\116258200.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\116297232.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1164438.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\116953.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\117187.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\117250.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\117421.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\117749.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\12092542.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\12103072.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\12104320.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\12119842.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1215637.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1218789.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\12199527.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1231191.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1232751.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\12329242.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\123303.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\12377836.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1241955.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\124301.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\124956.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\126251.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\127265.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\127920.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\128570735.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\128574027.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\128600001.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\128686223.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\128688984.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\128761790.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\128834330.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\128870304.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\129130186.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\129145677.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\129146816.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\129166113.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\129255626.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\129261258.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\129340647.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\129402.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\129421284.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\129457991.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\130479.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\131446.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\133209.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\134270.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\134909.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\13634799.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\13646811.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\13648059.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\13673238.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\13682941.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1410997.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1421699.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1423275.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1435864.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\143895.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1439405.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\143947988.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\143949922.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\143974445.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\144086033.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\144088498.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\144166514.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\144249023.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\144293077.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\145236.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\145392.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\145689.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\146453.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\147639.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\14979309.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\14980464.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\14998716.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\15003271.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\150213.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\15024284.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\15118540.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\15124936.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\15235088.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\15276865.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\15353493.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\15392384.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\154238.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\15442726.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\15452632.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\15453895.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\15483582.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\15502599.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\15508605.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\15594015.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\156578.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\15683279.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\157155.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\15717053.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\15755773.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\15782043.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\158762981.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\158764323.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\158790952.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\158794962.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\158878001.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\158940308.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\158998699.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\159028417.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\16055856.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\16062611.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\16063454.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\16077431.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\16080645.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\16110160.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1614017.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\16140690.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1626903.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1627262.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\16272838.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\16281465.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1629524.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1633923.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1639445.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1640194.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1645139.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1648384.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1655903.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\165626.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1664608.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1690458.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\169495.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\173395.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\173481067.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\173500833.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\173502767.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\173544794.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\173548943.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\173635446.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\173699282.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\173757751.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\173788904.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\174034.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\17437963.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\17447916.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\17449101.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\17473812.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\17479834.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\17498132.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\17514497.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\17519520.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\176203.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\17629048.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1765447.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\17742664.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\17754816.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\17761665.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\17779449.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\17780806.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\17789355.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\17821913.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\17839400.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\17857216.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\17862332.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\17958211.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\18092106.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\183113.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1853479.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\186296.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\188870.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1890576.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\189837.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\191834.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\192552.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\1926409.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\193176.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\19454042.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\19456975.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\19462559.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\19463339.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\19467661.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\19471951.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\19478830.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\19492792.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\19509188.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\195110.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\19599310.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\19643021.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\19650010.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\19707107.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\197232.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\19723627.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\19724797.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\19740678.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\19744859.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\19762409.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\19777026.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\19779756.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\19855760.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\198760.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\19904900.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\19913730.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\200414.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\20091477.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\20103380.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\20109106.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\20123286.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2013629.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2014815.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\20225872.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\20270255.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\20311345.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\20312578.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\20342421.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\20373137.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\20389205.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2048464.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2054221.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2055001.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\205827.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\210382.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2108883.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\211209.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\212005.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\212114.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2132752.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\21342340.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\21348924.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\21358674.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\21359563.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\21364976.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\21370452.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\214407.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\21459481.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\21497655.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\21524737.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\21525844.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\21552474.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\21581864.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\21604094.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\217683.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\218042.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\218104.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\220242.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\220757.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\220835.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2209036.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\22114218.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\221162.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\22123297.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\22124170.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\221583.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\22177008.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\22254041.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\222707.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\22291466.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\22314726.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\22315818.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\22342151.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\22375223.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\22387095.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\22418123.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\22419262.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\22425783.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\22442818.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\224735.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\22527121.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\226061.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\22672654.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\22709720.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\227355.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\227901.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\228978.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\229477.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\230226.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\230631.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\231177.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2336894.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2339640.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2342401.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\235046.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\235265.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2354445.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2356254.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2363493.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\236856.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2376612.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\241676.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\242019.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\242066.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\242799.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\243127.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\244515.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2446860.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2454472.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\245467.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2455642.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2465970.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\24940067.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\24978926.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\24980143.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\25009035.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\25016382.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\25021234.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\25097721.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\251270.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\25232678.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2526482.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\25266358.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2527902.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2541849.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2564188.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2569133.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\258649.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\260755.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\261956.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\262939.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26478689.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26479999.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26494102.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26523742.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26529358.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26532774.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\266059.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26614753.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26616672.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26690663.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26719492.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26761815.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26789755.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26802500.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26803498.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26836165.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26868254.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26894868.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26895757.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26899143.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26906241.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26907052.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26912699.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26918939.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26960123.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26980404.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26981215.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\26999280.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\27007953.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\27010746.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\27014115.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\27019435.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\27030215.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\27050651.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\27097451.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\27242501.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\27260238.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\27275495.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\27276821.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\27291922.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\27293326.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\27304948.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\27374103.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\27410982.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\27435162.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\27473897.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\27501931.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\27527764.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\275435.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\275950.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\277931.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\279647.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\279772.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2800951.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\28016500.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\28055344.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\28056592.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\28078994.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\28086482.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2812245.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2813634.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\28195870.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\28262654.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\28263980.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\28278800.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2829405.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\28310749.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\28324399.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2832681.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2834116.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2836113.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\284124.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\286215.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2868780.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2869919.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2877251.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2879544.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2882945.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\2892289.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\291581.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\294467.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\296698.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\298164.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\302782.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\307415.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\3081425.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\308694.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\3088616.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\3089443.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\310519.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\310831.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\3117024.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\313468.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\313515.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\322953.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\3237925.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\323873.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\3335145.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\3351369.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\3352118.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\335963.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\3380682.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\339785.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\3406250.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\34087107.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\34087903.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\34093628.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\34099088.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\34113050.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\34131708.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\34221923.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\342546.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\34264683.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\34271532.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\34353073.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\34353900.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\34358970.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\34364165.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\34366318.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\34381855.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\34396067.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\34398438.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\34468218.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\344996.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\34512085.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\34520182.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\3453534.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\345370.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\345713.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\348209.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\3482659.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\3500007.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\3501177.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\3508805.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\351345.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\3515217.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\354153.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\3611251.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\361719.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\361906.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\3654619.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\366664.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\367101.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\36854081.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\36855033.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\36859385.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\36880118.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\36955076.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\37014045.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\37015215.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\37041501.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\37070392.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\37077366.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\373965.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\3749094.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\3751231.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\3761901.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\3765396.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\3773632.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\380377.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\382358.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\383356.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\386742.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\389097.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\394011.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\395259.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\404775.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\410360.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\411015.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\413839.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\417162.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\41811341.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\41812355.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\41860247.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\41866456.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\41946001.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\42102563.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\42135230.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\421499.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\422107.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\427583.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\4335127.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\4336968.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\434072.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\434462.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\4344627.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\434837.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\4352334.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\440936.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\445273.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\448378.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\451685.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\468439.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\472495.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\4739013.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\4746985.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\4748264.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\475428.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\4775565.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\4804253.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\480826.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\4822349.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\484149.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\48704791.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\487066.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\48711000.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\48711858.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\48716756.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\48724229.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\48767800.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\488064.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\48840371.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\48882866.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\48894566.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\489078.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\48968355.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\48977793.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\48979103.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\48988229.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\48990772.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\48996185.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\49019211.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\49040864.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\49044374.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\49143949.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\4920599.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\49207598.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\49228767.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\494070.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\494913.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\4972017.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5000128.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5037506.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5045087.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5051764.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5051936.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5052794.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5061046.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5062388.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5065056.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5067520.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5070282.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5083573.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5084337.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5085242.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5100000.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5102262.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\511433.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5117675.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\514226.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\51511857.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\51524930.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\51530733.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\51531607.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\51536022.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\51540468.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\51545850.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\51602151.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\51672819.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\51674020.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\51700291.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\51728979.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\51736031.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\520169.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5221493.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5223412.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5239137.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5246032.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5265782.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5280821.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5282693.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5292209.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5298636.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5302785.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5332862.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5366247.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5403422.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\547251.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\565581.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\56585478.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\56590657.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\56591640.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\56596725.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\56601905.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\56603948.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\56679968.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\56687175.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\56823847.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\56855281.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5736125.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5739448.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5750337.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\5758574.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\591181.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\595955.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\604519.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\606391.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\611180.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\661303.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\66983303.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\66991805.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\66992757.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\67034518.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\67094797.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\67138477.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\67217788.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\67261406.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\67283590.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\673768.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\71325544.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\71346012.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\71347088.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\71457069.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\71602009.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\71630620.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\749444.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\750349.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\755356.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\756214.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\762111.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\783639.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\806946.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\81744009.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\81801760.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\81802821.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\81833881.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\81839793.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\81855799.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\81885408.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\82050941.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\82061393.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\86082584.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\86096390.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\86097450.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\86149227.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\86153377.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\86237383.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\86414476.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\86459264.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\870391.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\896568.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\897660.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\937191.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\96517.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\97422.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\976550.exe
Found ! [06/12/2008 19:13] - C:\Windows\system32\drivers\downld\98358.exe

»»»» Presence des fichiers dans C:\Users\jerome sylvie\AppData\Roaming

Found ! [10/05/2004 04:06] - "C:\Users\jerome sylvie\AppData\Roaming\m\flec006.exe"
Found ! [06/12/2008 22:05] - "C:\Users\jerome sylvie\AppData\Roaming\m\list.oct"
Found ! [06/12/2008 19:12] - "C:\Users\jerome sylvie\AppData\Roaming\m\shared"
Found ! [06/12/2008 22:05] - "C:\Users\jerome sylvie\AppData\Roaming\m"

»»»» Presence des fichiers dans C:\Users\JEROME~1\AppData\Local\Temp


»»»» Presence des fichiers dans C:\Users\jerome sylvie\Local Settings\Temporary Internet Files\Content.IE5

Found ! [17/06/2008 11:18] - C:\Users\jerome sylvie\Music\AlbumArt_{05EA33E2-D701-4096-B648-DAF1C52E8D4E}_Large.jpg
Found ! [17/06/2008 11:18] - C:\Users\jerome sylvie\Music\AlbumArt_{05EA33E2-D701-4096-B648-DAF1C52E8D4E}_Small.jpg

--------------- [ Registre / Startup ] ----------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
rdatg="c:\users\jerome sylvie\appdata\local\rdatg.exe" rdatg
WMPNSCFG=C:\Program Files\Windows Media Player\WMPNSCFG.exe
CPM9f143de2=Rundll32.exe "c:\windows\system32\seruyone.dll",a
9c270e7e=rundll32.exe "C:\ProgramData\tohuzeno\tohuzeno.dll",b
yegovizilo=Rundll32.exe "C:\Windows\system32\hetiguta.dll",s
ccleaner="C:\Program Files\CCleaner\CCleaner.exe" /AUTO
swg=C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run\AdobeUpdater=
<NO NAME>=

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
CPM9f143de2=Rundll32.exe "c:\PROGRA~2\remowoka\remowoka.dll",a
yegovizilo=Rundll32.exe "C:\Windows\system32\habupawe.dll",s
MSConfig="C:\Windows\System32\msconfig.exe" /auto
9c270e7e=rundll32.exe "C:\ProgramData\tohuzeno\tohuzeno.dll",b

[HKEY_CURRENT_USER\software\local appwizard-generated applications\flec006]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\hldrrr]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\mdelk]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\nideiect]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\Registrar]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\SmpSys]

--------------- [ Registre / Clés infectieuses ] ----------------


Found ! - HKEY_USERS\
0
bouda > bouda
 
que doi-je faire???
0
Réponse 3 / 17
Destrio5 Messages postés 99820 Statut Modérateur 10 304
 
Effectivement, et puis il n'y a pas que du Bagle, t'as aussi du Vundo...

---> Supprime tes cracks et keygens sinon l'infection se relancera.

--> Branche tes disques amovibles à ton PC (clefs USB, disque dur externe, etc...) sans les ouvrir.

--> Clique droit sur le raccourci FindyKill situé sur ton Bureau et choisis Exécuter en tant qu'administrateur.

--> Au menu principal, choisis l'option 2 (Suppression).

/!\ Il y aura 2 redémarrages, laisse travailler l'outil jusqu'à l'apparition du message "nettoyage effectué" /!\

--> Ensuite, poste le rapport FindyKill.txt

Note : le rapport FindyKill.txt est sauvegardé à la racine du disque.
0
bouda
 
voila le raport


----------------- FindyKill V4.709 ------------------

* User : jerome sylvie - PC-DE-JEROMESYL
* executed from : C:\Program Files\FindyKill
* Update on 10/12/08 par Chiquitine29
* Start at 20:10:27 the 17/12/2008
* Windows Vista - Internet Explorer 7.0.6000.16711


((((((((((((((( *** deleting *** ))))))))))))))))))


--------------- [ Active Processes ] ----------------


C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\LogonUI.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
C:\Windows\system32\lxddcoms.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\runonce.exe
C:\Program Files\Windows Calendar\WinCal.exe
C:\Windows\system32\conime.exe

--------------- [ Infected files / folders ] ----------------


»»»» Supression files in C:


»»»» Supression files in C:\Windows


»»»» Supression files in C:\Windows\Prefetch


»»»» Supression files in C:\Windows\system32


»»»» Supression files in C:\Windows\system32\config\systemprofile\AppData\Roaming


»»»» Supression files in C:\Windows\system32\drivers


»»»» Supression files in C:\Users\jerome sylvie\AppData\Roaming


»»»» Supression files in C:\Users\JEROME~1\AppData\Local\Temp


»»»» Supression files in C:\Users\jerome sylvie\Local Settings\Temporary Internet Files\Content.IE5

Deleted ! - C:\Users\jerome sylvie\Music\AlbumArt_{05EA33E2-D701-4096-B648-DAF1C52E8D4E}_Large.jpg
Deleted ! - C:\Users\jerome sylvie\Music\AlbumArt_{05EA33E2-D701-4096-B648-DAF1C52E8D4E}_Small.jpg
Deleted ! - C:\Users\jerome sylvie\Shared\AlbumArt_{47B640AC-425C-413F-83C0-985166D3ADA1}_Large.jpg
Deleted ! - C:\Users\jerome sylvie\Shared\AlbumArt_{47B640AC-425C-413F-83C0-985166D3ADA1}_Small.jpg
Deleted ! - C:\Users\jerome sylvie\Shared\AlbumArt_{AF5E8A74-0936-451A-AB64-21AFDF158AB1}_Large.jpg
Deleted ! - C:\Users\jerome sylvie\Shared\AlbumArt_{AF5E8A74-0936-451A-AB64-21AFDF158AB1}_Small.jpg

--------------- [ Registry / Infected keys ] ----------------

Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA
Deleted ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SROSA

--------------- [ States / Restarting of services ] ----------------



+- Services : [ Auto=2 / Request=3 / Disable=4 ]

Ndisuio - Type of startup = 3

EapHost - Type of startup = 2

Wlansvc - Type of startup = 2

SharedAccess - Type of startup = 2

wuauserv - Type of startup = 2

wscsvc - Type of startup = 2

WinDefend - Type of startup = 2


--------------- [ Cleaning removable drives ] ----------------

+- Informations :

C: - Lecteur fixe

+- deleting files :


--------------- [ Registry / Mountpoint2 ] ----------------


-> Not found !


--------------- [ Searching Cracks / Keygen ] ----------------

C:\Users\jerome sylvie\Music\zik new tel\album\Rim-K-Famille_Nombreuse-FR-2007-H5N1\11-rim-k-pilotes_crack_musik_feat._hamza.mp3


---------------- ! End of report ! ------------------
0
bouda > bouda
 
je doi faire quoi maintenan???
0
Réponse 4 / 17
Destrio5 Messages postés 99820 Statut Modérateur 10 304
 
---> Télécharge ComboFix.exe de sUBs sur ton Bureau :
http://download.bleepingcomputer.com/sUBs/ComboFix.exe

/!\ Déconnecte-toi du net et ferme toutes les applications, antivirus et antispyware y compris /!\

---> Double-clique sur Combofix.exe
Un "pop-up" va apparaître qui dit que "ComboFix est utilisé à vos risques et avec aucune garantie...".
Accepte en cliquant sur "Oui"

---> Je te conseille vivement d'installer la Console de récupération.

---> Mets-le en langue française F
Tape sur la touche 1 (Yes) pour démarrer le scan.

/!\ Ne touche à rien tant que le scan n'est pas terminé. /!\

En fin de scan, il est possible que ComboFix ait besoin de redémarrer le PC pour finaliser la désinfection, laisse-le faire.

Une fois le scan achevé, un rapport va s'afficher : Poste son contenu

/!\ Réactive la protection en temps réel de ton antivirus et de ton antispyware avant de te reconnecter à Internet. /!\

Note : Le rapport se trouve également là : C:\Combofix.txt

Tutoriel officiel :
https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix
0
bouda
 
voila le raport
ComboFix 08-12-16.03 - jerome sylvie 2008-12-17 20:37:24.1 - NTFSx86
Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6000.0.1252.1.1036.18.767.273 [GMT 1:00]
Lancé depuis: c:\users\jerome sylvie\Desktop\test.exe
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\progra~2\MICROS~1\Windows\STARTM~1\Programs\MessengerSkinner
c:\progra~2\MICROS~1\Windows\STARTM~1\Programs\MessengerSkinner\Conditions générales.lnk
c:\progra~2\MICROS~1\Windows\STARTM~1\Programs\MessengerSkinner\Confidentialité.lnk
c:\progra~2\MICROS~1\Windows\STARTM~1\Programs\MessengerSkinner\Website.lnk
c:\progra~2\MICROS~1\Windows\STARTM~1\Programs\Spyware-Secure
c:\progra~2\MICROS~1\Windows\STARTM~1\Programs\Spyware-Secure\Spyware-Secure.lnk
c:\progra~2\MICROS~1\Windows\STARTM~1\Programs\Spyware-Secure\Website.lnk
c:\progra~2\Microsoft\Network\Downloader\qmgr0.dat
c:\progra~2\Microsoft\Network\Downloader\qmgr1.dat
c:\progra~2\Starware370
c:\progra~2\Starware370\buttons\563_button_1b_def.bmp
c:\progra~2\Starware370\buttons\563_button_1b_over.bmp
c:\progra~2\Starware370\buttons\572_button_1b_def.bmp
c:\progra~2\Starware370\buttons\572_button_1b_over.bmp
c:\progra~2\Starware370\buttons\573_button_1b_def.bmp
c:\progra~2\Starware370\buttons\573_button_1b_over.bmp
c:\progra~2\Starware370\buttons\FindIt.bmp
c:\progra~2\Starware370\buttons\FindItHot.bmp
c:\progra~2\Starware370\buttons\findithotxp.png
c:\progra~2\Starware370\buttons\finditxp.png
c:\progra~2\Starware370\buttons\logo.bmp
c:\progra~2\Starware370\buttons\logoxp.bmp
c:\progra~2\Starware370\contexts\error.xml
c:\progra~2\Starware370\contexts\related.xml
c:\progra~2\Starware370\contexts\travel.xml
c:\program files\Altnet
c:\program files\Starware370
c:\program files\Starware370\bin\IELauncher.exe
c:\program files\Starware370\icons\star_16.ico
c:\program files\Starware370\Starware370Config.xml
c:\program files\Starware370\Starware370Uninstall.exe
c:\programdata\waseyibe\waseyibe.dll
c:\users\jerome sylvie\AppData\Local\rdatg.dat
c:\users\jerome sylvie\AppData\Local\rdatg.exe
c:\users\jerome sylvie\AppData\Local\rdatg_nav.dat
c:\users\jerome sylvie\AppData\Local\rdatg_navps.dat
c:\users\jerome sylvie\AppData\Local\sicsw.dat
c:\users\jerome sylvie\AppData\Local\sicsw.exe
c:\users\jerome sylvie\AppData\Local\sicsw_nav.dat
c:\users\jerome sylvie\AppData\Local\sicsw_navps.dat
c:\users\jerome sylvie\AppData\Local\sicsw_navup.dat
c:\users\jerome sylvie\AppData\Roaming\comrepl.exe
c:\users\jerome sylvie\AppData\Roaming\MessengerSkinner
c:\users\jerome sylvie\AppData\Roaming\MessengerSkinner\Userdata\languages_v2.xml
c:\users\jerome sylvie\AppData\Roaming\MessengerSkinner\Userdata\pack1.cab
c:\users\jerome sylvie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MessengerSkinner
c:\users\jerome sylvie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spyware-Secure
c:\users\jerome sylvie\jerome sylvie.exe
c:\users\JEROME~1\AppData\Local\rdatg.dat
c:\users\JEROME~1\AppData\Local\rdatg.exe
c:\users\JEROME~1\AppData\Local\rdatg_nav.dat
c:\users\JEROME~1\AppData\Local\rdatg_navps.dat
c:\users\JEROME~1\AppData\Local\sicsw.dat
c:\users\JEROME~1\AppData\Local\sicsw.exe
c:\users\JEROME~1\AppData\Local\sicsw_nav.dat
c:\users\JEROME~1\AppData\Local\sicsw_navps.dat
c:\users\JEROME~1\AppData\Local\sicsw_navup.dat
c:\users\JEROME~1\AppData\Roaming\comrepl.exe
c:\users\JEROME~1\AppData\Roaming\MessengerSkinner\Userdata\languages_v2.xml
c:\users\JEROME~1\AppData\Roaming\MessengerSkinner\Userdata\pack1.cab
c:\windows\fxstaller.exe
c:\windows\hosts
c:\windows\mstray.exe
c:\windows\pack.epk
c:\windows\system32\efCuUolJ.dll
c:\windows\system32\foyaviti.dll
c:\windows\system32\habupawe.dll
c:\windows\system32\hetiguta.dll
c:\windows\System32\JkUuFMSs.ini
c:\windows\system32\JkUuFMSs.ini2
c:\windows\system32\kHArqoPF.dll
c:\windows\system32\lakenade.dll
c:\windows\system32\lesetate.dll
c:\windows\system32\lonayemu.dll
c:\windows\system32\nvs2.inf
c:\windows\system32\punehomi.dll
c:\windows\system32\saperiho.dll
c:\windows\system32\sogidona.dll
c:\windows\system32\sSMFuUkJ.dll
c:\windows\system32\wVpPfcyA.dll
c:\windows\system32\yenuhaja.dll
c:\windows\system32\yubiyufo.dll

----- File Replicators -----

c:\download\download.exe
c:\download\drivers\13405\13405.exe
c:\download\drivers\drivers.exe
c:\drivers\MOBO\MOBO.exe
c:\drivers\MOBO\VIDEO\VIDEO.exe
c:\drivers\MOBO\VIDEO\VistaX86\VistaX86.exe
c:\program files\AxBx\AxBx.exe
c:\program files\AxBx\Clean Virus MSN\Clean Virus MSN.exe
c:\program files\Common Files\France Telecom\Shared Modules\AlertModule\[u]0/u\Uninstall\Shell.exe
c:\program files\Common Files\France Telecom\Shared Modules\Autodial\[u]0/u\Uninstall\Shell.exe
c:\program files\Common Files\France Telecom\Shared Modules\FTCOMModule\[u]0/u\Uninstall\Shell.exe
c:\program files\Common Files\France Telecom\Shared Modules\FTRTSVC\[u]0/u\Uninstall\Shell.exe
c:\program files\Common Files\France Telecom\Shared Modules\FTServiceProvider\[u]0/u\Uninstall\Shell.exe
c:\program files\Common Files\France Telecom\Shared Modules\PTPCommunication\[u]0/u\Uninstall\Shell.exe
c:\program files\Orange\Installation\Core\Shell.exe
c:\program files\Orange\Launcher\Shell.exe
c:\program files\Orange\Uninstall\AlertModule\Shell.exe
c:\program files\Orange\Uninstall\Autodial\Shell.exe
c:\program files\Orange\Uninstall\Browser\shell.exe
c:\program files\Orange\Uninstall\Browser_Settings\shell.exe
c:\program files\Orange\Uninstall\CD_Custo_LBMINI_RTC\shell.exe
c:\program files\Orange\Uninstall\Connectivity\shell.exe
c:\program files\Orange\Uninstall\Connectivity_Corecom\shell.exe
c:\program files\Orange\Uninstall\Connectivity_Corecom_PCausaRawether55\shell.exe
c:\program files\Orange\Uninstall\DashBoard\shell.exe
c:\program files\Orange\Uninstall\Deskboard\shell.exe
c:\program files\Orange\Uninstall\Deskboard_Settings\shell.exe
c:\program files\Orange\Uninstall\Deskboard_WOO_Plugins\shell.exe
c:\program files\Orange\Uninstall\Extractor\shell.exe
c:\program files\Orange\Uninstall\FTCOMModule\Shell.exe
c:\program files\Orange\Uninstall\FTRTSVC\Shell.exe
c:\program files\Orange\Uninstall\FTServiceProvider\Shell.exe
c:\program files\Orange\Uninstall\Haut_Debit_CustoUpdate\shell.exe
c:\program files\Orange\Uninstall\HNMClient\shell.exe
c:\program files\Orange\Uninstall\InfoDisplay\shell.exe
c:\program files\Orange\Uninstall\InfoDisplay_DispAbout\shell.exe
c:\program files\Orange\Uninstall\InfoDisplay_DispDiagnosis\shell.exe
c:\program files\Orange\Uninstall\KillSuite\Shell.exe
c:\program files\Orange\Uninstall\Lan_CustoUpdate\shell.exe
c:\program files\Orange\Uninstall\Launcher\shell.exe
c:\program files\Orange\Uninstall\Launcher_ConnectivitySettings\shell.exe
c:\program files\Orange\Uninstall\Launcher_HelpFactory\shell.exe
c:\program files\Orange\Uninstall\Launcher_HelpFiles\shell.exe
c:\program files\Orange\Uninstall\Launcher_Inactivity\shell.exe
c:\program files\Orange\Uninstall\Launcher_PluginRecovery\shell.exe
c:\program files\Orange\Uninstall\Launcher_PluginShell\shell.exe
c:\program files\Orange\Uninstall\Launcher_PollingModule\shell.exe
c:\program files\Orange\Uninstall\launcher_PromptManager\shell.exe
c:\program files\Orange\Uninstall\Launcher_Settings\shell.exe
c:\program files\Orange\Uninstall\Launcher_Toaster\shell.exe
c:\program files\Orange\Uninstall\launcher_Update\shell.exe
c:\program files\Orange\Uninstall\Launcher_WOO_Identity\shell.exe
c:\program files\Orange\Uninstall\Livebox_CustoUpdate\shell.exe
c:\program files\Orange\Uninstall\LiveboxUtilities\shell.exe
c:\program files\Orange\Uninstall\MICSequencer\shell.exe
c:\program files\Orange\Uninstall\MICSequencer_FirstLaunch\shell.exe
c:\program files\Orange\Uninstall\MigrationTool\shell.exe
c:\program files\Orange\Uninstall\Mobile_CustoUpdate\shell.exe
c:\program files\Orange\Uninstall\PTPCommunication\Shell.exe
c:\program files\Orange\Uninstall\SearchURLHook\shell.exe
c:\program files\Orange\Uninstall\SessionManager\shell.exe
c:\program files\Orange\Uninstall\Splash\shell.exe
c:\program files\Orange\Uninstall\Systray_WOO\shell.exe
c:\program files\Orange\Uninstall\UninstallSuite\Shell.exe
c:\program files\Orange\Uninstall\Wancatcher\shell.exe
c:\program files\Orange\Uninstall\Wifi_CustoUpdate\shell.exe
c:\program files\Program Files.exe
c:\rmd\RMD.exe
c:\users\jerome sylvie\AppData\Local\cmstp.exe
c:\users\jerome sylvie\AppData\Local\dllhst3g.exe
c:\users\jerome sylvie\AppData\Local\esentutl.exe
c:\users\jerome sylvie\AppData\Local\ieudinit.exe
c:\users\jerome sylvie\AppData\Local\logman.exe
c:\users\jerome sylvie\AppData\Local\Microsoft\cisvc.exe
c:\users\jerome sylvie\AppData\Local\Microsoft\cmstp.exe
c:\users\jerome sylvie\AppData\Local\Microsoft\comrepl.exe
c:\users\jerome sylvie\AppData\Local\Microsoft\esentutl.exe
c:\users\jerome sylvie\AppData\Local\Microsoft\mstinit.exe
c:\users\jerome sylvie\AppData\Local\Microsoft\rsvp.exe
c:\users\jerome sylvie\AppData\Local\Microsoft\Windows Sidebar\Gadgets\AFP-Photos[1].Gadget\AFP-Photos[1].Gadget.exe
c:\users\jerome sylvie\AppData\Roaming\clipsrv.exe
c:\users\jerome sylvie\AppData\Roaming\cmstp.exe
c:\users\jerome sylvie\AppData\Roaming\esentutl.exe
c:\users\jerome sylvie\AppData\Roaming\Microsoft\cisvc.exe
c:\users\jerome sylvie\AppData\Roaming\Microsoft\cmstp.exe
c:\users\jerome sylvie\AppData\Roaming\Microsoft\mqtgsvc.exe
c:\users\jerome sylvie\AppData\Roaming\Microsoft\mstsc.exe
c:\users\jerome sylvie\AppData\Roaming\Microsoft\rsvp.exe
c:\users\jerome sylvie\AppData\Roaming\Microsoft\sessmgr.exe
c:\users\jerome sylvie\AppData\Roaming\sessmgr.exe
c:\users\jerome sylvie\Desktop\Desktop.exe
c:\users\jerome sylvie\Desktop\jeux\jeux pc\jeux pc.exe
c:\users\jerome sylvie\Desktop\jeux\jeux.exe
c:\users\jerome sylvie\Documents\Documents.exe
c:\users\jerome sylvie\Documents\logiciel\logiciel.exe
c:\users\jerome sylvie\Documents\Mes fichiers reçus\Mes fichiers reçus.exe
c:\users\jerome sylvie\Documents\Mes Historiques de Conversation\Mes Historiques de Conversation.exe
c:\users\jerome sylvie\Downloads\eMule\eMule.exe
c:\users\jerome sylvie\Downloads\eMule\Incoming\Incoming.exe
c:\users\jerome sylvie\Music\Music.exe
c:\users\jerome sylvie\Music\zik ancien tel\zik ancien tel.exe
c:\users\jerome sylvie\Music\zik new tel\album\1992 - 2Pacalypse Now\1992 - 2Pacalypse Now.exe
c:\users\jerome sylvie\Music\zik new tel\album\1995 - Me Against The World\1995 - Me Against The World.exe
c:\users\jerome sylvie\Music\zik new tel\album\1996 - All Eyez On Me\Cd 1\Cd 1.exe
c:\users\jerome sylvie\Music\zik new tel\album\2008 Babylon A.D\2008 Babylon A.D.exe
c:\users\jerome sylvie\Music\zik new tel\album\2Pac-Loyal_To_The_Game-(Advance)-2004-MoB\2Pac-Loyal_To_The_Game-(Advance)-2004-MoB.exe
c:\users\jerome sylvie\Music\zik new tel\album\2pac - 2 pac - tupac - best remixtape 2006\2pac - 2 pac - tupac - best remixtape 2006.exe
c:\users\jerome sylvie\Music\zik new tel\album\2Pac - CD_1\2Pac - CD_1.exe
c:\users\jerome sylvie\Music\zik new tel\album\2Pac - CD_2\2Pac - CD_2.exe
c:\users\jerome sylvie\Music\zik new tel\album\Akon-Freedom-2008-H3X\Akon-Freedom-2008-H3X.exe
c:\users\jerome sylvie\Music\zik new tel\album\album.exe
c:\users\jerome sylvie\Music\zik new tel\album\alibi_montana_et_lim-rue-fr-2005-yum\alibi_montana_et_lim-rue-fr-2005-yum.exe
c:\users\jerome sylvie\Music\zik new tel\album\alibie montana toujour ghetto volume 1\alibie montana toujour ghetto volume 1.exe
c:\users\jerome sylvie\Music\zik new tel\album\Bolo-Lyrix.Illicites.2008.By.Apache\Bolo-Lyrix.Illicites.2008.By.Apache.exe
c:\users\jerome sylvie\Music\zik new tel\album\Booba-Ouest_Side-FR-2006-OGV\Booba-Ouest_Side-FR-2006-OGV.exe
c:\users\jerome sylvie\Music\zik new tel\album\Booba-Temps_Mort_(RETAiL)-FR-2002-FSP\Booba-Temps_Mort_(RETAiL)-FR-2002-FSP.exe
c:\users\jerome sylvie\Music\zik new tel\album\Booba - Autopsie Vol.1\Booba - Autopsie Vol.1.exe
c:\users\jerome sylvie\Music\zik new tel\album\Booba - Autopsie Vol.1\Mixtape CD1\Mixtape CD1.exe
c:\users\jerome sylvie\Music\zik new tel\album\Booba - Panthéon (2004)\Booba - Panthéon (2004).exe
c:\users\jerome sylvie\Music\zik new tel\album\booba sous les bombes 2008 advance by tek\booba sous les bombes 2008 advance by tek.exe
c:\users\jerome sylvie\Music\zik new tel\album\chronike de mars\chronike de mars.exe
c:\users\jerome sylvie\Music\zik new tel\album\Hancock [2008] Soundtrack OST\Hancock [2008] Soundtrack OST.exe
c:\users\jerome sylvie\Music\zik new tel\album\Iam-Saison.5.2007.By.Apache\Iam-Saison.5.2007.By.Apache.exe
c:\users\jerome sylvie\Music\zik new tel\album\Ice_Cube-The_Essentials-2008-RAGEMP3\Ice_Cube-The_Essentials-2008-RAGEMP3.exe
c:\users\jerome sylvie\Music\zik new tel\album\Keen V - Phénom'n - Album 2008 Complet - 14 titres+Covers\Keen V - Phénom'n - Album 2008 Complet - 14 titres+Covers.exe
c:\users\jerome sylvie\Music\zik new tel\album\La Fouine-Capitale Du Crime-2008\La Fouine-Capitale Du Crime-2008.exe
c:\users\jerome sylvie\Music\zik new tel\album\Larsen-Du_Seum_Bien_Vicere-2CD-2008-BY POPOF\Larsen-Du_Seum_Bien_Vicere-2CD-2008-BY POPOF.exe
c:\users\jerome sylvie\Music\zik new tel\album\LIM-Delinquant-2CD-Retail-FR-2007-Mwk ForumZ\CD1\CD1.exe
c:\users\jerome sylvie\Music\zik new tel\album\LIM-Delinquant-2CD-Retail-FR-2007-Mwk ForumZ\CD2\CD2.exe
c:\users\jerome sylvie\Music\zik new tel\album\LIM-Delinquant-2CD-Retail-FR-2007-Mwk ForumZ\LIM-Delinquant-2CD-Retail-FR-2007-Mwk ForumZ.exe
c:\users\jerome sylvie\Music\zik new tel\album\lim delincant\lim delincant.exe
c:\users\jerome sylvie\Music\zik new tel\album\LIM_Violence urbaines\LIM_Violence urbaines.exe
c:\users\jerome sylvie\Music\zik new tel\album\Mac Tyer - D'ou je viens\Mac Tyer - D'ou je viens.exe
c:\users\jerome sylvie\Music\zik new tel\album\mafia k1 fry la cerise sur le ghetto\mafia k1 fry la cerise sur le ghetto.exe
c:\users\jerome sylvie\Music\zik new tel\album\Medine - Jihad - Fr-2005-Louisville\Mafia_K1_Fry-Jusqua_La_Mort-FR-2007-BY POPOF\Mafia_K1_Fry-Jusqua_La_Mort-FR-2007-BY POPOF.exe
c:\users\jerome sylvie\Music\zik new tel\album\Movez Lang 2008associes a la vieCDR-EXCEL\Movez Lang 2008associes a la vieCDR-EXCEL.exe
c:\users\jerome sylvie\Music\zik new tel\album\Nysay-Au_Pied_Du_Mur-2CD-FR-2006-JiGsAw-OP\cd 1\cd 1.exe
c:\users\jerome sylvie\Music\zik new tel\album\raï\raï.exe
c:\users\jerome sylvie\Music\zik new tel\album\rap megamix\rap megamix.exe
c:\users\jerome sylvie\Music\zik new tel\album\salif prolongations\salif prolongations.exe
c:\users\jerome sylvie\Music\zik new tel\album\Shirde-Drive_By_Music-FR-2008-by-bidjoulay\Shirde-Drive_By_Music-FR-2008-by-bidjoulay.exe
c:\users\jerome sylvie\Music\zik new tel\album\Shirde-Son.Of.The.Beach.2007.By.Apache\Shirde-Son.Of.The.Beach.2007.By.Apache.exe
c:\users\jerome sylvie\Music\zik new tel\album\sniper du rire o larme\sniper du rire o larme.exe
c:\users\jerome sylvie\Music\zik new tel\album\Snoop_Dogg-Ego_Trippin-(Explicit)-2008-SNOOPDOGG\Snoop_Dogg-Ego_Trippin-(Explicit)-2008-SNOOPDOGG.exe
c:\users\jerome sylvie\Music\zik new tel\album\soprano psykanalise avan l'album\soprano psykanalise avan l'album.exe
c:\users\jerome sylvie\Music\zik new tel\album\Soundkail - Racaille Sound Systeme\Soundkail - Racaille Sound Systeme.exe
c:\users\jerome sylvie\Music\zik new tel\album\The_Game-LAX_(Explicit)-2008-THEGAME\The_Game-LAX_(Explicit)-2008-THEGAME.exe
c:\users\jerome sylvie\Music\zik new tel\album\Westside_Connection-Terrorist_Threats-2003-R3D\Westside_Connection-Terrorist_Threats-2003-R3D.exe
c:\users\jerome sylvie\Music\zik new tel\les 2 minutes du peuple\les 2 minutes du peuple.exe
c:\users\jerome sylvie\Music\zik new tel\zik new tel.exe
c:\users\jerome sylvie\Pictures\images a flavien\images a flavien.exe
c:\users\jerome sylvie\Pictures\photo numrike\photo numrike.exe
c:\users\jerome sylvie\Pictures\Pictures.exe
c:\users\jerome sylvie\Videos\clip\clip.exe
c:\users\jerome sylvie\Videos\film\film.exe
c:\users\jerome sylvie\Videos\video tel\video tel.exe
c:\users\jerome sylvie\Videos\Videos.exe
c:\users\jfk\AppData\Roaming\Microsoft\esentutl.exe
c:\users\jfk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessories.exe
c:\users\jfk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\System Tools.exe
c:\users\jfk\Documents\Documents.exe
c:\users\jfk\Documents\Mes fichiers reçus\Mes fichiers reçus.exe
c:\users\jfk\Downloads\eMule\Incoming\Incoming.exe
c:\users\jfk\Music\Music.exe
c:\users\jfk\Pictures\Pictures.exe
c:\windows\cisvc.exe
c:\windows\dllhst3g.exe
c:\windows\ieudinit.exe
c:\windows\mqtgsvc.exe
c:\windows\Mstray1.exe
c:\windows\mstsc.exe
c:\windows\rsvp.exe
c:\windows\sessmgr.exe
c:\windows\system\clipsrv.exe
c:\windows\System32\drivers\mqtgsvc.exe
c:\windows\System32\drivers\mstinit.exe
c:\windows\System32\drivers\rsvp.exe
c:\windows\System32\FINWINFILE.EXE
c:\windows\System32\OrbWINFILE.EXE
.
----- BITS: Il y a peut-être des sites infectés -----

hxxp://childhe.com
.
((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_ISODRIVE
-------\Service_ISODrive


((((((((((((((((((((((((((((( Fichiers créés du 2008-11-17 au 2008-12-17 ))))))))))))))))))))))))))))))))))))
.

2008-12-17 19:47 . 2008-12-17 19:49 0 --a------ c:\users\jerome
2008-12-17 19:26 . 2008-12-17 20:16 <REP> d-------- c:\program files\FindyKill
2008-12-17 18:17 . 2008-12-17 18:43 <REP> d-------- c:\program files\Spybot - Search & Destroy
2008-12-17 17:38 . 2008-12-17 17:38 110,592 --a------ c:\windows\System32\DVC.dll
2008-12-17 17:38 . 2008-12-17 17:38 86,016 --a------ c:\windows\System32\Dversion.dll
2008-12-17 17:38 . 2008-12-17 17:38 45,056 --a------ c:\windows\System32\Fsinst32.dll
2008-12-17 17:38 . 2008-12-17 17:38 5,120 --a------ c:\windows\System32\Fsinst16.DLL
2008-12-17 17:20 . 2008-12-17 17:20 <REP> d-------- c:\program files\CCleaner
2008-12-17 12:44 . 2008-12-17 20:51 <REP> d-------- c:\users\All Users\tohuzeno
2008-12-17 12:44 . 2008-12-17 12:44 <REP> d-------- c:\users\All Users\remowoka
2008-12-17 12:44 . 2008-12-17 20:51 <REP> d-------- c:\progra~2\tohuzeno
2008-12-17 12:44 . 2008-12-17 12:44 <REP> d-------- c:\progra~2\remowoka
2008-12-16 20:54 . 2008-12-16 20:54 55 --a------ C:\$DRVLTR$
2008-12-16 20:49 . 2008-12-16 20:49 0 -rahs---- C:\$lsdrive$
2008-12-16 20:49 . 2008-12-16 20:49 0 -rahs---- C:\$dwnlvldrive$
2008-12-16 20:49 . 2008-12-16 20:49 0 -rahs---- C:\$bootdrive$
2008-12-16 19:36 . 2008-12-16 19:36 2 -rahs---- C:\$drvmig$
2008-12-16 19:31 . 2008-12-16 20:00 <REP> d-------- C:\$UPGRADE.~OS
2008-12-16 16:55 . 2008-12-16 16:55 <REP> d-------- c:\windows\PCHEALTH
2008-12-14 13:01 . 2008-12-15 17:21 <REP> d-a------ c:\users\All Users\TEMP
2008-12-14 13:01 . 2008-12-15 17:21 <REP> d-a------ c:\progra~2\TEMP
2008-12-14 12:27 . 2008-12-14 12:27 <REP> d-------- c:\users\jerome sylvie\AppData\Roaming\Symantec
2008-12-14 00:17 . 2008-12-14 00:21 <REP> d-------- c:\users\jerome sylvie\AppData\Roaming\IDM
2008-12-14 00:17 . 2008-12-14 00:20 <REP> d-------- c:\users\jerome sylvie\AppData\Roaming\DMCache
2008-12-13 16:13 . 2008-12-13 16:13 <REP> d-------- c:\users\All Users\rilonake
2008-12-13 16:13 . 2008-12-13 16:13 <REP> d-------- c:\users\All Users\bapuzotu
2008-12-13 16:13 . 2008-12-13 16:13 <REP> d-------- c:\progra~2\rilonake
2008-12-13 16:13 . 2008-12-13 16:13 <REP> d-------- c:\progra~2\bapuzotu
2008-12-12 21:03 . 2008-12-13 00:06 <REP> d-------- c:\users\jfk\Tracing
2008-12-12 20:30 . 2008-12-12 20:30 <REP> d-------- c:\program files\MSNFix
2008-12-12 18:23 . 2008-12-13 16:14 <REP> d-------- c:\users\jerome sylvie\Tracing
2008-12-12 18:22 . 2008-12-12 18:22 <REP> d-------- c:\program files\Microsoft
2008-12-12 18:17 . 2008-12-12 18:17 <REP> d-------- c:\program files\Common Files\Windows Live
2008-12-12 16:31 . 2008-12-12 16:31 <REP> d-------- c:\users\All Users\yisiwusu
2008-12-12 16:31 . 2008-12-12 16:31 <REP> d-------- c:\users\All Users\ropenoya
2008-12-12 16:31 . 2008-12-12 16:31 <REP> d-------- c:\progra~2\yisiwusu
2008-12-12 16:31 . 2008-12-12 16:31 <REP> d-------- c:\progra~2\ropenoya
2008-12-11 19:24 . 2008-12-11 19:24 <REP> d-------- c:\program files\AVG
2008-12-11 17:37 . 2008-12-11 17:37 <REP> d-------- c:\users\All Users\veyoroda
2008-12-11 17:37 . 2008-12-11 21:24 <REP> d-------- c:\users\All Users\dapatudi
2008-12-11 17:37 . 2008-12-11 17:37 <REP> d-------- c:\progra~2\veyoroda
2008-12-11 17:37 . 2008-12-11 21:24 <REP> d-------- c:\progra~2\dapatudi
2008-12-11 15:13 . 2008-12-17 12:54 <REP> d-------- c:\users\All Users\wopebulu
2008-12-11 15:13 . 2008-12-17 20:45 <REP> d-------- c:\users\All Users\waseyibe
2008-12-11 15:13 . 2008-12-17 12:54 <REP> d-------- c:\users\All Users\rewikupe
2008-12-11 15:13 . 2008-12-11 15:13 <REP> d-------- c:\users\All Users\debabawe
2008-12-11 15:13 . 2008-12-17 12:54 <REP> d-------- c:\progra~2\wopebulu
2008-12-11 15:13 . 2008-12-17 20:45 <REP> d-------- c:\progra~2\waseyibe
2008-12-11 15:13 . 2008-12-17 12:54 <REP> d-------- c:\progra~2\rewikupe
2008-12-11 15:13 . 2008-12-11 15:13 <REP> d-------- c:\progra~2\debabawe
2008-12-11 15:12 . 2008-12-11 15:12 <REP> d-------- c:\users\All Users\vuvimuwe
2008-12-11 15:12 . 2008-12-11 15:12 <REP> d-------- c:\users\All Users\neyirano
2008-12-11 15:12 . 2008-12-11 15:12 <REP> d-------- c:\progra~2\vuvimuwe
2008-12-11 15:12 . 2008-12-11 15:12 <REP> d-------- c:\progra~2\neyirano
2008-12-10 19:44 . 2008-12-10 19:44 <REP> d-------- c:\users\jerome sylvie\Nouveau dossier
2008-12-10 19:00 . 2008-12-10 19:00 230,424 --a------ C:\img1-003.raw
2008-12-09 18:29 . 2008-12-09 18:29 <REP> d-------- C:\HOTZIC
2008-12-09 18:26 . 2008-12-09 18:26 <REP> d-------- c:\windows\System32\hdined32.nls.{00021401-0000-0000-C000-000000000046}
2008-12-09 17:44 . 2008-12-09 17:44 <REP> d-------- c:\program files\Trust
2008-12-09 17:44 . 2008-12-17 12:31 <REP> d-------- c:\program files\Common Files\PAC207
2008-12-09 17:44 . 2006-11-03 10:59 48,128 --a------ c:\windows\System32\Remove.exe
2008-12-09 17:44 . 2007-01-04 01:20 314 --a------ c:\windows\System32\Remover.ini
2008-12-09 14:03 . 2008-12-09 14:03 <REP> d-------- C:\Toolbar4Free Toolbar images
2008-12-08 20:15 . 2008-12-08 20:15 <REP> d-------- c:\users\All Users\TuneUp Software
2008-12-08 20:15 . 2008-12-08 20:15 <REP> d-------- c:\progra~2\TuneUp Software
2008-12-06 19:16 . 2008-12-17 20:47 <REP> d-------- c:\program files\AxBx
2008-12-06 11:36 . 2008-12-06 11:36 697 ---hs---- c:\windows\System32\Orbcomment.htt
2008-12-06 11:36 . 2008-12-06 11:36 72 ---hs---- c:\windows\System32\Orbdesktop.ini
2008-12-03 12:59 . 2008-12-03 12:59 <REP> d-------- c:\program files\Common Files\PC SOFT
2008-11-30 16:45 . 2008-12-11 19:36 <REP> d-------- C:\Everest Poker
2008-11-29 22:31 . 2008-11-29 22:32 <REP> d-------- c:\users\jfk\[u]0/u48298C9A4D3490B9FF9AB023A9238F3.TMP
2008-11-26 17:36 . 2008-11-26 17:36 <REP> d-------- c:\users\All Users\Winamp Toolbar
2008-11-26 17:36 . 2008-11-26 21:35 <REP> d-------- c:\users\All Users\OrbNetworks
2008-11-26 17:36 . 2008-11-26 17:36 <REP> d-------- c:\program files\Winamp Toolbar
2008-11-26 17:36 . 2008-11-26 17:36 <REP> d-------- c:\progra~2\Winamp Toolbar
2008-11-26 17:36 . 2008-11-26 21:35 <REP> d-------- c:\progra~2\OrbNetworks
2008-11-26 17:35 . 2008-11-26 17:36 <REP> d-------- c:\program files\Winamp Remote
2008-11-26 17:34 . 2008-11-26 17:51 <REP> d-------- c:\users\jerome sylvie\AppData\Roaming\Winamp
2008-11-26 17:34 . 2008-11-26 17:36 <REP> d-------- c:\program files\Winamp
2008-11-26 14:07 . 2008-04-17 13:12 107,368 --a------ c:\windows\System32\GEARAspi.dll
2008-11-26 14:07 . 2008-04-17 13:12 15,464 --a------ c:\windows\System32\drivers\GEARAspiWDM.sys
2008-11-26 14:06 . 2008-11-26 14:07 <REP> d-------- c:\users\All Users\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2008-11-26 14:06 . 2008-11-26 14:07 <REP> d-------- c:\program files\iTunes
2008-11-26 14:06 . 2008-11-26 14:06 <REP> d-------- c:\program files\iPod
2008-11-26 14:06 . 2008-11-26 14:07 <REP> d-------- c:\progra~2\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2008-11-26 14:00 . 2008-11-26 14:00 <REP> d-------- c:\users\jerome sylvie\AppData\Roaming\iTunes Agent
2008-11-26 14:00 . 2008-11-26 14:00 <REP> d-------- c:\program files\iTunes Agent
2008-11-20 18:55 . 2008-11-20 19:03 <REP> d-------- c:\program files\BitComet
2008-11-20 18:44 . 2008-11-20 18:44 <REP> d-------- c:\program files\Camtech
2008-11-20 18:02 . 2008-11-20 18:02 <REP> d-------- c:\users\jerome sylvie\AppData\Roaming\Yahoo!
2008-11-20 18:02 . 2008-11-20 18:23 <REP> d-------- c:\users\All Users\Yahoo! Companion
2008-11-20 18:02 . 2008-11-20 18:02 <REP> d-------- c:\program files\YouTube Downloader
2008-11-20 18:02 . 2008-11-20 18:02 <REP> d-------- c:\program files\Yahoo!
2008-11-20 18:02 . 2008-11-20 18:23 <REP> d-------- c:\progra~2\Yahoo! Companion
2008-11-20 17:59 . 2008-11-20 17:59 <REP> d-------- c:\program files\YouTUBE (TM) movie downloader
2008-11-19 21:50 . 2001-06-19 17:53 266,293 --a------ c:\windows\System32\temp.041
2008-11-19 21:46 . 2001-06-19 17:53 266,293 --a------ c:\windows\System32\temp.040
2008-11-19 21:45 . 2001-06-19 17:53 266,293 --a------ c:\windows\System32\temp.03F
2008-11-19 21:32 . 2008-11-19 21:32 <REP> d-------- c:\windows\System32\ZoneLabs
2008-11-19 21:32 . 2008-11-19 21:32 <REP> d-------- c:\program files\Zone Labs
2008-11-19 21:32 . 2003-10-16 15:11 70 --ah----- c:\windows\System32\drivers\vsconfig.xml
2008-11-19 21:31 . 2008-11-19 21:33 <REP> d-------- c:\windows\Internet Logs
2008-11-19 21:00 . 2008-12-03 12:51 <REP> d-------- c:\windows\System32\Adobe
2008-11-19 20:47 . 2008-11-19 20:47 <REP> d-------- c:\program files\Sunbelt Software
2008-11-19 20:47 . 2008-10-31 07:09 270,888 -ra------ c:\windows\System32\drivers\SbFw.sys
2008-11-19 20:47 . 2008-06-21 04:54 65,576 --a------ c:\windows\System32\drivers\SbFwIm.sys
2008-11-18 17:17 . 2008-11-18 17:17 2,560 --a------ c:\windows\_MSRSTRT.EXE
2008-11-18 16:25 . 2008-11-18 16:26 2,070 --a------ c:\windows\EXTRADNS.INI
2008-11-18 16:15 . 2008-11-18 16:15 <REP> d-------- c:\program files\ExtraTools
2008-11-17 21:15 . 2008-11-17 21:15 <REP> d-------- c:\program files\Reverse & Upper

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-12-17 15:17 --------- d-----w c:\program files\eMule
2008-12-17 15:17 --------- d-----w c:\progra~2\eMule
2008-12-17 11:31 --------- d-----w c:\program files\Wanadoo
2008-12-17 11:31 --------- d-----w c:\program files\Everest Poker
2008-12-16 15:56 --------- d-----w c:\program files\Windows Live
2008-12-12 17:38 --------- d-----w c:\program files\Messenger Plus! Live
2008-12-11 18:25 --------- d-----w c:\progra~2\avg8
2008-12-09 16:45 --------- d--h--w c:\program files\InstallShield Installation Information
2008-12-09 16:37 --------- d-----w c:\program files\Logitech
2008-12-09 16:37 --------- d-----w c:\progra~2\Logishrd
2008-12-09 16:30 47,360 ----a-w c:\users\jerome sylvie\AppData\Roaming\pcouffin.sys
2008-12-09 16:30 --------- d-----w c:\users\jerome sylvie\AppData\Roaming\Vso
2008-12-06 21:03 --------- d-----w c:\program files\Common Files\Symantec Shared
2008-12-02 15:00 --------- d-----w c:\progra~2\WLInstaller
2008-11-26 13:02 --------- d-----w c:\program files\Common Files\Apple
2008-11-20 17:34 --------- d-----w c:\program files\LimeWire
2008-11-19 20:49 --------- d-----w c:\program files\GameSpy Arcade
2008-11-16 20:10 --------- d-----w c:\program files\Free Audio Pack
2008-11-16 19:45 --------- d-----w c:\program files\VSO
2008-11-16 19:26 --------- d-----w c:\program files\Audacity
2008-11-16 15:55 --------- d-----w c:\users\jerome sylvie\AppData\Roaming\Smart PC Solutions
2008-11-16 15:55 --------- d-----w c:\program files\Smart PC Solutions
2008-11-16 15:50 --------- d-----w c:\progra~2\Vso
2008-11-16 15:42 232,075 ----a-w c:\windows\Burn4Free_Toolbar_Uninstaller_9844.exe
2008-11-16 15:06 --------- d-----w c:\users\jerome sylvie\AppData\Roaming\GlarySoft
2008-11-16 14:48 --------- d-----w c:\program files\inKline Global
2008-11-16 14:26 --------- d-----w c:\users\jerome sylvie\AppData\Roaming\TuneUp Software
2008-11-16 14:00 --------- d-----w c:\progra~2\Trymedia
2008-11-14 22:06 --------- d-----w c:\progra~2\Messenger Plus!
2008-11-14 15:51 74,752 ----a-w c:\windows\ST6UNST.EXE
2008-11-14 15:51 253,952 ------w c:\windows\Setup1.exe
2008-11-14 15:34 --------- d-----w c:\program files\Electronic Arts
2008-11-14 15:33 --------- d-----w c:\program files\Ultimate Stunts
2008-11-10 17:49 --------- d-----w c:\users\jerome sylvie\AppData\Roaming\LimeWire
2008-11-07 17:55 --------- d-----w c:\program files\MagicISO
2008-11-07 17:47 --------- d-----w c:\progra~2\NCH Swift Sound
2008-10-31 15:58 --------- d-----w c:\program files\EACom
2008-10-31 11:35 --------- d-----w c:\users\jerome sylvie\AppData\Roaming\SoftMaker
2008-10-29 14:01 --------- d-----w c:\program files\3DBELOTE
2008-10-28 17:13 --------- d-----w c:\users\jerome sylvie\AppData\Roaming\OpenOffice.org
2008-10-28 17:04 --------- d-----w c:\program files\OpenOffice.org 3
2008-10-28 17:04 --------- d-----w c:\program files\JRE
2008-10-26 14:22 --------- d-----w c:\program files\UltraISO
2008-10-26 14:22 --------- d-----w c:\program files\Common Files\EZB Systems
2008-10-26 13:40 --------- d-----w c:\users\jerome sylvie\AppData\Roaming\InstallShield
2008-10-26 13:40 --------- d-----w c:\program files\SAGEM
2008-10-26 13:39 --------- d-----w c:\program files\Securitoo
2008-10-23 15:40 --------- d-----w c:\users\jerome sylvie\AppData\Roaming\uTorrent
2008-10-23 15:35 --------- d-----w c:\users\jerome sylvie\AppData\Roaming\Azureus
2008-10-23 15:32 --------- d-----w c:\progra~2\Azureus
2008-10-21 16:15 --------- d-----w c:\program files\ESET
2008-10-21 16:03 --------- d-----w c:\program files\FrostWire
2008-10-21 16:02 --------- d-----w c:\users\jerome sylvie\AppData\Roaming\FrostWire
2008-10-18 20:33 --------- d-----w c:\program files\PowerISO
2008-10-18 20:24 --------- d-----w c:\program files\DAEMON Tools Toolbar
2008-10-18 20:24 --------- d-----w c:\program files\DAEMON Tools Lite
2008-10-18 17:05 717,296 ----a-w c:\windows\system32\drivers\sptd.sys
2008-10-18 17:04 --------- d-----w c:\users\jerome sylvie\AppData\Roaming\DAEMON Tools
2008-10-17 20:53 --------- d-----w c:\program files\LeTarot
2007-09-06 10:41 174 --sha-w c:\program files\desktop.ini
2006-10-11 08:04 61,036 ----a-w c:\program files\mozilla firefox\components\jar50.dll
2006-10-11 08:04 48,742 ----a-w c:\program files\mozilla firefox\components\jsd3250.dll
2006-10-11 08:05 29,313 ----a-w c:\program files\mozilla firefox\components\myspell.dll
2006-10-11 08:05 41,082 ----a-w c:\program files\mozilla firefox\components\spellchk.dll
2006-10-11 08:04 166,510 ----a-w c:\program files\mozilla firefox\components\xpinstal.dll
2007-10-28 20:45 16,384 --sha-w c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
2007-10-28 20:45 32,768 --sha-w c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
2007-10-28 20:45 16,384 --sha-w c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
2008-06-15 20:04 8 --sh--r c:\windows\System32\63A015C3CC.sys
2008-06-15 20:07 2,516 --sha-w c:\windows\System32\KGyGaAvL.sys
.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{57BCA5FA-5DBB-45a2-B558-1755C3F6253B}"= "c:\program files\Winamp Toolbar\winamptb.dll" [2008-07-16 1266992]
"{0579B4B6-0293-4d73-B02D-5EBB0BA0F0A2}"= "c:\program files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL" [2008-08-24 66912]

[HKEY_CLASSES_ROOT\clsid\{57bca5fa-5dbb-45a2-b558-1755c3f6253b}]
[HKEY_CLASSES_ROOT\WINAMPTB.AOLTBSearch.1]
[HKEY_CLASSES_ROOT\TypeLib\{538CD77C-BFDD-49b0-9562-77419CAB89D1}]
[HKEY_CLASSES_ROOT\WINAMPTB.AOLTBSearch]

[HKEY_CLASSES_ROOT\clsid\{0579b4b6-0293-4d73-b02d-5ebb0ba0f0a2}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0579B4B1-0293-4d73-B02D-5EBB0BA0F0A2}]
2008-08-24 14:48 66912 --a------ c:\program files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]
2008-07-28 11:47 160496 --a------ c:\program files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2006-11-02 201728]
"CPM9f143de2"="c:\windows\system32\seruyone.dll" [2008-12-17 93856]
"9c270e7e"="c:\programdata\tohuzeno\tohuzeno.dll" [2008-12-17 85064]
"ccleaner"="c:\program files\CCleaner\CCleaner.exe" [2008-12-01 1406192]
"swg"="c:\program files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe" [2008-09-05 171448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CPM9f143de2"="c:\progra~2\remowoka\remowoka.dll" [2008-12-17 93831]
"MSConfig"="c:\windows\System32\msconfig.exe" [2006-11-02 222208]
"9c270e7e"="c:\programdata\tohuzeno\tohuzeno.dll" [2008-12-17 85064]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\SharedTaskScheduler]
"{EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4}"= "c:\windows\system32\seruyone.dll" [2008-12-17 93856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
"SSODL"= {EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4} - c:\windows\system32\seruyone.dll [2008-12-17 93856]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"appinit_dlls"=c:\progra~2\remowoka\remowoka.dll c:\windows\system32\seruyone.dll
"LoadAppInit_DLLs"=1 (0x1)

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ scecli c:\programdata\waseyibe\waseyibe.dll c:\windows\system32\hetiguta.dll c:\windows\system32\yadihoni.dll c:\windows\system32\habupawe.dll
Authentication Packages REG_MULTI_SZ msv1_0 c:\windows\system32\sSMFuUkJ

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\snpstd]
--a------ 2005-10-11 19:54 339968 c:\windows\vsnpstd.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"WMPNSCFG"=c:\program files\Windows Media Player\WMPNSCFG.exe
"9c270e7e"=rundll32.exe "c:\windows\system32\lonayemu.dll",b
"swg"=c:\program files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
"ehTray.exe"=c:\windows\ehome\ehTray.exe
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" /background
"MSServer"=rundll32.exe c:\users\JEROME~1\AppData\Local\Temp\mlJBRIab.dll,#1
"rdatg"="c:\users\jerome sylvie\appdata\local\rdatg.exe" rdatg
"SmpcSys"=c:\program files\Packard Bell\SetUpMyPC\SmpSys.exe
"Orb"="c:\program files\Winamp Remote\bin\OrbTray.exe" /background
"yegovizilo"=Rundll32.exe "c:\programdata\wopebulu\wopebulu.dll",s

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"WinampAgent"="c:\program files\Winamp\winampa.exe"
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe"
"MSServer"=rundll32.exe c:\windows\system32\wVpPfcyA.dll,#1
"RavTimeXP"=c:\windows\Mstray1.exe
"Windows UDP Control Center"=fxstaller.exe
"yegovizilo"=Rundll32.exe "c:\programdata\wopebulu\wopebulu.dll",s

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-disabled]
"PWRISOVM.EXE"=c:\program files\PowerISO\PWRISOVM.EXE
"Dead Body"="c:\programdata\BIB INTRA INTRA.3y4u9ke"
"RavTimeXP"=c:\windows\Mstray1.exe
"Win Base 4 Download"="c:\programdata\poke part 2.pq0u085"

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"UacDisableNotify"=dword:00000001
"InternetSettingsDisableNotify"=dword:00000001
"AutoUpdateDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-4065919487-3553401957-3751411380-1002]
"EnableNotificationsRef"=dword:00000004

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\DomainProfile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{C938B4CE-54CA-47F9-8A07-22B7192C450C}"= UDP:c:\program files\Skype\Phone\Skype.exe:Skype
"{03F326AB-98BD-4A3A-B412-C88BC9549767}"= TCP:c:\program files\Skype\Phone\Skype.exe:Skype
"{20A1BA5B-D537-4616-8F96-2989BA8F1460}"= UDP:c:\program files\LimeWire\LimeWire.exe:LimeWire
"{430804B4-CB26-434D-9B17-6320E22C854E}"= TCP:c:\program files\LimeWire\LimeWire.exe:LimeWire
"{72025254-50EA-4903-8DC7-03530C4D837E}"= UDP:c:\program files\Lexmark 2500 Series\lxddamon.exe:Lexmark Device Monitor
"{77A9126D-057D-494F-80D9-A2E969EA71F9}"= TCP:c:\program files\Lexmark 2500 Series\lxddamon.exe:Lexmark Device Monitor
"{531ACA51-375E-4EAC-90CD-DE619592E6BE}"= UDP:c:\program files\Lexmark 2500 Series\App4R.exe:Lexmark Imaging Studio
"{94D3693F-D26F-44F6-93D3-D8DB394AB2F5}"= TCP:c:\program files\Lexmark 2500 Series\App4R.exe:Lexmark Imaging Studio
"{988BF27E-D5CF-4B8B-A837-683A8651EE77}"= Disabled:UDP:135:TCP Port 135
"{7E0DAAFF-5EAB-4242-AB08-93EB752B6987}"= Disabled:UDP:5000:TCP Port 5000
"{F2B6B7B5-E914-4603-AB66-197F1FE5D29F}"= Disabled:UDP:5001:TCP Port 5001
"{656F2E05-A394-42DC-A616-3883B7053B7C}"= Disabled:UDP:5002:TCP Port 5002
"{88C68F43-80AE-4C84-9AB1-DA39282B73DD}"= Disabled:UDP:5003:TCP Port 5003
"{D7317A10-30D2-4C27-B868-F9F81C051B61}"= Disabled:UDP:5004:TCP Port 5004
"{B3F64656-DAD5-4BF8-91F8-DE607CDFAC16}"= Disabled:UDP:5005:TCP Port 5005
"{C2ABF1FB-A1B4-4D3C-BF79-D27E8CEFBE67}"= Disabled:UDP:5006:TCP Port 5006
"{33144147-C931-4CC6-8B50-FA5481D26828}"= Disabled:UDP:5007:TCP Port 5007
"{3F31C8B5-0C43-4B04-BD82-0E9BE7B1F60A}"= Disabled:UDP:5008:TCP Port 5008
"{44DE72CA-04BE-42A1-AA82-E0977070D7E1}"= Disabled:UDP:5009:TCP Port 5009
"{B6805BB1-BFAB-47E1-80E3-BA9B3EC89E2E}"= Disabled:UDP:5010:TCP Port 5010
"{AEDC15D0-7C49-453B-87D8-124CF2590FE5}"= Disabled:UDP:5011:TCP Port 5011
"{60E788F5-614E-42A2-8E32-3F0F86BC6FA4}"= Disabled:UDP:5012:TCP Port 5012
"{C9E703D4-91F7-4C82-A903-D5678EDE5867}"= Disabled:UDP:5013:TCP Port 5013
"{CB4FBD3F-FB07-4DCE-85CF-70858759A6E6}"= Disabled:UDP:5014:TCP Port 5014
"{AEDA1461-ECFF-4E4B-B06D-660BA7DAD016}"= Disabled:UDP:5015:TCP Port 5015
"{913928FB-0719-4228-A7B9-7103E489B12B}"= Disabled:UDP:5016:TCP Port 5016
"{FA9050B8-7186-48B5-9653-4E84CEA4582A}"= Disabled:UDP:5017:TCP Port 5017
"{7FFDD900-E760-4802-AE16-A5DFF73FDF1B}"= Disabled:UDP:5018:TCP Port 5018
"{5B818F4E-048C-4465-BC27-15B9D6B8E9DA}"= Disabled:UDP:5019:TCP Port 5019
"{323632F4-5F9D-4E06-9B3D-B92CD2D0B191}"= Disabled:UDP:5020:TCP Port 5020
"{8C5B8ED8-11E6-4372-9CD7-E258CD290EF1}"= UDP:c:\windows\System32\lxddcoms.exe:Lexmark Communications System
"{23428BC6-F56F-41BF-8EE9-2CE013456B0C}"= TCP:c:\windows\System32\lxddcoms.exe:Lexmark Communications System
"{255F2721-ED51-470B-934B-E6B7F237765D}"= UDP:c:\program files\Lexmark 2500 Series\lxddmon.exe:
"{63C22536-B1B6-4485-855C-B66C308C7A38}"= TCP:c:\program files\Lexmark 2500 Series\lxddmon.exe:
"{5D99418D-720A-4CF5-AFAC-CDF9BBBF89B4}"= UDP:c:\windows\System32\spool\drivers\w32x86\3\lxddjswx.exe:
"{5AF2100D-1E55-406C-9EC5-135D96B6B475}"= TCP:c:\windows\System32\spool\drivers\w32x86\3\lxddjswx.exe:
"{D6ECBCE6-1900-4B48-8A5B-5B3F6208A177}"= UDP:c:\windows\System32\spool\drivers\w32x86\3\lxddpswx.exe:
"{772117B9-A515-46E2-B06C-2E1B09E04DDF}"= TCP:c:\windows\System32\spool\drivers\w32x86\3\lxddpswx.exe:
"{A909D9D3-ED43-44F3-ACBA-685F87FFDEF3}"= UDP:c:\windows\System32\spool\drivers\w32x86\3\lxddtime.exe:
"{E663AE07-9536-498F-8DAB-981BAA222F03}"= TCP:c:\windows\System32\spool\drivers\w32x86\3\lxddtime.exe:
"{A6875E75-86EC-4433-939B-07ACC2DDC037}"= c:\program files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone)
"{885E8CCA-25EF-4075-BB02-1E007C1EA5FD}"= UDP:c:\windows\System32\wininit.exe:wininit
"{F21AD212-973F-4328-958E-C0A7F589E1B2}"= TCP:c:\windows\System32\wininit.exe:wininit
"{9D58B7F9-C9EE-493F-AF33-7DD4977D2A0B}"= UDP:c:\windows\System32\wininit.exe:wininit
"{115CB0AA-91BC-4D5D-A57D-DCFCC3D4A7A3}"= TCP:c:\windows\System32\wininit.exe:wininit
"{1D7BDDC9-1BDE-470C-A1E0-642D30870DB1}"= UDP:c:\windows\System32\LogonUI.exe:LogonUI
"{0B8F7D15-4B2C-4F1B-BA02-512765348782}"= TCP:c:\windows\System32\LogonUI.exe:LogonUI
"{3351E7BE-C8C2-45D9-87B7-2210CBE37D91}"= UDP:c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe:AppleMobileDeviceService
"{21151B18-950D-4D0B-8993-48922F152610}"= TCP:c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe:AppleMobileDeviceService

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\PublicProfile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\RestrictedServices\Static\System]
"DFSR-1"= RPort=5722|UDP:%SystemRoot%\system32\svchost.exe|Svc=DFSR:Allow inbound TCP traffic|

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List]
"c:\\Program Files\\Orange\\Connectivity\\ConnectivityManager.exe"= c:\program files\Orange\Connectivity\ConnectivityManager.exe:*:enabled:CSS

R0 PzWDM;PzWDM;c:\windows\system32\Drivers\PzWDM.sys [2008-08-26 15172]
R1 IDSvix86;Symantec Intrusion Prevention Driver;\??\c:\progra~2\Symantec\DEFINI~1\SymcData\idsdefs\20071204.001\IDSvix86.sys [2007-12-06 180272]
R1 SbFw;SbFw;c:\windows\system32\drivers\SbFw.sys [2008-11-19 270888]
R2 lxdd_device;lxdd_device;c:\windows\system32\lxddcoms.exe -service []
R3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Miniport;c:\windows\system32\DRIVERS\sbfwim.sys [2008-11-19 65576]
R3 SiS6350;SiS6350;c:\windows\system32\DRIVERS\SISGRKMD.sys [2007-06-23 452984]
R3 SYMNDISV;SYMNDISV;c:\windows\system32\Drivers\SYMNDISV.SYS [2007-10-30 37936]
S2 SbPF.Launcher;SbPF.Launcher;"c:\program files\Sunbelt Software\Personal Firewall\SbPFLnch.exe" []
S3 PCAMp50;PCAMp50 NDIS Protocol Driver;c:\windows\system32\Drivers\PCAMp50.sys [2008-06-14 28224]
S3 Ph3xIB32;Philips 713x Inbox PCI TV Card;c:\windows\system32\DRIVERS\Ph3xIB32.sys [2007-04-03 1131136]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs REG_MULTI_SZ BthServ

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp

*Newly Created Service* - COMHOST
.
- - - - ORPHELINS SUPPRIMES - - - -

BHO-{45a513b0-e66e-4ac3-b142-dddb1cccc916} - c:\programdata\waseyibe\waseyibe.dll
BHO-{58a9977c-7df7-43f3-a77d-0a80c8fea6af} - c:\programdata\waseyibe\waseyibe.dll
BHO-{6FC415B7-93DA-4774-9042-195403AC9CA0} - c:\windows\system32\sSMFuUkJ.dll
WebBrowser-{4F11ACBB-393F-4C86-A214-FF3D0D155CC3} - (no file)
HKCU-Run-rdatg - c:\users\jerome sylvie\appdata\local\rdatg.exe
HKCU-Run-yegovizilo - c:\programdata\wopebulu\wopebulu.dll
HKLM-Run-yegovizilo - c:\windows\system32\habupawe.dll
HKLM-Explorer_Run-MqtgSVC - c:\windows\System32\drivers\mqtgsvc.exe
HKCU-Explorer_Run-CmSTP - c:\users\JEROME~1\AppData\Roaming\MICROS~1\cmstp.exe
HKU-Default-Explorer_Run-ClipSrv - c:\windows\System\clipsrv.exe



**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-17 20:50:34
Windows 6.0.6000 NTFS

Recherche de processus cachés ...

Recherche d'éléments en démarrage automatique cachés ...

Recherche de fichiers cachés ...

Scan terminé avec succès
Fichiers cachés: 0

**************************************************************************
.
--------------------- DLLs chargées dans les processus actifs ---------------------

- - - - - - - > 'winlogon.exe'(672)
c:\windows\system32\seruyone.dll
c:\progra~2\remowoka\remowoka.dll

- - - - - - - > 'lsass.exe'(624)
c:\windows\system32\seruyone.dll
c:\progra~2\remowoka\remowoka.dll

- - - - - - - > 'Explorer.exe'(3276)
c:\progra~2\remowoka\remowoka.dll
c:\windows\system32\seruyone.dll
c:\programdata\tohuzeno\tohuzeno.dll
.
------------------------ Autres processus actifs ------------------------
.
c:\windows\System32\audiodg.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\progra~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\[u]0/u\FTRTSVC.exe
c:\windows\System32\lxddcoms.exe
c:\windows\System32\WUDFHost.exe
c:\windows\System32\conime.exe
c:\windows\System32\rundll32.exe
c:\windows\System32\rundll32.exe
c:\windows\System32\rundll32.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\servicing\TrustedInstaller.exe
c:\windows\System32\dllhost.exe
.
**************************************************************************
.
Heure de fin: 2008-12-17 20:59:02 - La machine a redémarré [jerome sylvie]
ComboFix-quarantined-files.txt 2008-12-17 19:58:47

Avant-CF: 83 706 310 656 octets libres
Après-CF: 83,298,123,776 octets libres

667 --- E O F --- 2008-08-26 22:21:54
0
bouda > bouda
 
voila je fai maintenan ???
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 17
Destrio5 Messages postés 99820 Statut Modérateur 10 304
 
Ton PC est POURRI.

---> Télécharge Malwarebytes' Anti-Malware (MBAM) sur ton Bureau.
---> Double-clique sur le fichier téléchargé pour lancer le processus d'installation.
---> Dans l'onglet Mise à jour, clique sur le bouton Recherche de mise à jour : si le pare-feu demande l'autorisation à MBAM de se connecter à Internet, accepte.
---> Une fois la mise à jour terminée, rends-toi dans l'onglet Recherche.
---> Sélectionne Exécuter un examen complet.
---> Clique sur Rechercher. L'analyse démarre, le scan est relativement long, c'est normal.

A la fin de l'analyse, un message s'affiche :

L'examen s'est terminé normalement. Cliquez sur 'Afficher les résultats' pour afficher tous les objets trouvés.

---> Clique sur OK pour poursuivre. Si MBAM n'a rien trouvé, il te le dira aussi.
---> Ferme tes navigateurs.
Si des malwares ont été détectés, clique sur Afficher les résultats.
---> Sélectionne tout (ou laisse coché) et clique sur Supprimer la sélection, MBAM va détruire les fichiers et clés de registre infectés et en mettre une copie dans la quarantaine.
---> MBAM va ouvrir le Bloc-notes et y copier le rapport d'analyse. Copie-colle ce rapport dans ta prochaine réponse.
0
bouda
 
voici le raport
Malwarebytes' Anti-Malware 1.31
Version de la base de données: 1514
Windows 6.0.6000

18/12/2008 20:07:56
mbam-log-2008-12-18 (20-07-56).txt

Type de recherche: Examen complet (C:\|)
Eléments examinés: 173529
Temps écoulé: 2 hour(s), 0 minute(s), 24 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 3
Clé(s) du Registre infectée(s): 16
Valeur(s) du Registre infectée(s): 8
Elément(s) de données du Registre infecté(s): 3
Dossier(s) infecté(s): 7
Fichier(s) infecté(s): 86

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
c:\Windows\System32\seruyone.dll (Trojan.Vundo.H) -> Delete on reboot.
c:\ProgramData\remowoka\remowoka.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\ProgramData\tohuzeno\tohuzeno.dll (Trojan.Vundo) -> Delete on reboot.

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\CLSID\{ec43e3fd-5c60-46a6-97d7-e0b85dbdd6c4} (Trojan.Vundo.H) -> Delete on reboot.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5f90c0e3-4c0a-4d54-a8ac-5afe6163a99e} (Adware.Starware) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{f0d4b230-da4b-4daf-81e4-dfee4931a4aa} (Adware.AskSBAR) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{f0d4b23a-da4b-4daf-81e4-dfee4931a4aa} (Adware.AskSBAR) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{f0d4b23c-da4b-4daf-81e4-dfee4931a4aa} (Adware.AskSBAR) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{b15fd82e-85bc-430d-90cb-65db1b030510} (Adware.AskSBAR) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f0d4b231-da4b-4daf-81e4-dfee4931a4aa} (Adware.AskSBAR) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{f0d4b231-da4b-4daf-81e4-dfee4931a4aa} (Adware.AskSBAR) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{f0d4b231-da4b-4daf-81e4-dfee4931a4aa} (Adware.AskSBAR) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f0d4b239-da4b-4daf-81e4-dfee4931a4aa} (Adware.AskSBAR) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{f0d4b239-da4b-4daf-81e4-dfee4931a4aa} (Adware.AskSBAR) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{f0d4b23b-da4b-4daf-81e4-dfee4931a4aa} (Adware.AskSBAR) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{f0d4b23b-da4b-4daf-81e4-dfee4931a4aa} (Adware.AskSBAR) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\rdfa (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\contim (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\instkey (Trojan.Vundo) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\cpm9f143de2 (Trojan.Vundo.H) -> Delete on reboot.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\{ec43e3fd-5c60-46a6-97d7-e0b85dbdd6c4} (Trojan.Vundo.H) -> Delete on reboot.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\ssodl (Trojan.Vundo.H) -> Delete on reboot.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\cpm9f143de2 (Trojan.Vundo.H) -> Delete on reboot.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\9c270e7e (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\9c270e7e (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{f0d4b239-da4b-4daf-81e4-dfee4931a4aa} (Adware.AskSBAR) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{f0d4b239-da4b-4daf-81e4-dfee4931a4aa} (Adware.AskSBAR) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Vundo.H) -> Data: c:\windows\system32\seruyone.dll -> Delete on reboot.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Vundo.H) -> Data: system32\seruyone.dll -> Delete on reboot.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Vundo.H) -> Data: c:\progra~2\remowoka\remowoka.dll -> Delete on reboot.

Dossier(s) infecté(s):
C:\Program Files\Spyware-Secure (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\images (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\images\FR (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\rubs (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\resources (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
c:\Windows\System32\seruyone.dll (Trojan.Vundo.H) -> Delete on reboot.
c:\ProgramData\remowoka\remowoka.dll (Trojan.Vundo.H) -> Delete on reboot.
C:\ProgramData\tohuzeno\tohuzeno.dll (Trojan.Vundo) -> Delete on reboot.
C:\Program Files\AskSBar\bar\1.bin\A2HIGHIN.EXE (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files\AskSBar\bar\1.bin\A2PLUGIN.DLL (Adware.MyWebSearch) -> Quarantined and deleted successfully.
C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL (Adware.AskSBAR) -> Quarantined and deleted successfully.
C:\Program Files\AskSBar\bar\1.bin\NPASKSBR.DLL (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Mozilla Firefox\plugins\NPAskSBr.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Everest Casino\CStart.exe (Adware.Adorable casino) -> Quarantined and deleted successfully.
C:\Program Files\Everest Casino\Everest Casino.exe (Adware.Adorable casino) -> Quarantined and deleted successfully.
C:\ProgramData\1 grid\kyyovvbf.exe (Trojan.Swizzor) -> Quarantined and deleted successfully.
C:\ProgramData\bapuzotu\bapuzotu.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\ProgramData\dapatudi\dapatudi.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\ProgramData\neyirano\neyirano.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\ProgramData\yisiwusu\yisiwusu.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Qoobox\Quarantine\C\Windows\fxstaller.exe.vir (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Qoobox\Quarantine\C\Windows\System32\efCuUolJ.dll.vir (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Qoobox\Quarantine\C\Windows\System32\kHArqoPF.dll.vir (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Qoobox\Quarantine\C\Windows\System32\lakenade.dll.vir (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Qoobox\Quarantine\C\Windows\System32\lonayemu.dll.vir (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Qoobox\Quarantine\C\Windows\System32\sogidona.dll.vir (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Qoobox\Quarantine\C\Windows\System32\sSMFuUkJ.dll.vir (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Qoobox\Quarantine\C\Windows\System32\wVpPfcyA.dll.vir (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Windows\System32\wutilowu.dll (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\config.s3db (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\Gfx_fr.bin (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\language (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\Launcher.exe (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\nbmw (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\quarantine.s3db (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\skin (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\Spyware-Secure.url (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\sqlite3.dll (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\uninst.exe (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\unrar.dll (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR.zip (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\explo_intro.htm (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\explo_menu.htm (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\file.gif (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\folder.gif (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\folder_f.gif (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\folder_o.gif (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\index.htm (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\menu3.js (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\spy.gif (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\trait_coud.gif (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\trait_droit.gif (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\trait_vert.gif (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\images\fleche.gif (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\images\folder.gif (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\images\key.gif (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\images\menu.gif (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\images\support.gif (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\images\title-hepfile.gif (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\images\FR\dowload-file-antispyware.gif (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\images\FR\menu.gif (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\images\FR\scstep2.gif (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\rubs\3differentscan.htm (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\rubs\contactus.htm (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\rubs\found-objects.htm (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\rubs\lexic.htm (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\rubs\navigtabs.htm (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\rubs\quarantine.htm (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\help\help_Trial_FR\rubs\register.htm (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\resources\cookies_1-11.dat (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\resources\cookies_1-12.dat (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\resources\filesDesc_1-10.dic (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\resources\filesDesc_1-11.dat (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\resources\filesDesc_1-11.dic (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\resources\filesDesc_1-12.dat (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\resources\filesDesc_1-12.dic (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\resources\filesExt_1-11.dat (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\resources\filesExt_1-12.dat (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\resources\filesMulti_1-11.idx (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\resources\filesMulti_1-12.idx (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\resources\filesSimple_1-11.idx (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\resources\filesSimple_1-12.idx (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\resources\malwaresDB_1-10 (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\resources\malwaresDB_1-11 (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\resources\malwaresDB_1-12 (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\resources\register_1-11.dat (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\resources\register_1-12.dat (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\resources\trad_demo_EN.txt (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\resources\trad_demo_ES.txt (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\Spyware-Secure\resources\trad_demo_FR.txt (Rogue.Spyware-Secure) -> Quarantined and deleted successfully.
C:\Program Files\EoRezo (Rogue.Eorezo) -> Delete on reboot.
0
bouda > bouda
 
ensuite que doi-je faire
0
Réponse 6 / 17
Destrio5 Messages postés 99820 Statut Modérateur 10 304
 
---> Relance MBAM, va dans Quarantaine et supprime tout.

● Télécharge AD-Remover (de Cyrildu17 / C_XX) sur ton Bureau.

/!\ Déconnecte-toi et ferme toutes applications en cours /!\

● Double-clique sur le programme d'installation, installe-le dans son emplacement par défaut (C:\Program files).
● Clique droit sur l'icône Ad-remover située sur ton Bureau et choisis Exécuter en tant qu'administrateur.
● Au menu principal, choisis l'option "A".
● Poste le rapport qui apparaît à la fin.

(Le rapport est sauvegardé aussi sous C:\Ad-report(date).log)

(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)

Note :

"Process.exe", une composante de l'outil, est détectée par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
0
bouda
 
quand je l'execute en tant que administrateur il me marque erreur cmdow.exe manquant
0
bouda > bouda
 
comment faire
0
Réponse 7 / 17
Destrio5 Messages postés 99820 Statut Modérateur 10 304
 
http://www.commandline.co.uk/cmdow/cmdow.zip

Tu le mets dans C:\Program Files\AD-Remover\
0
bouda
 
sa ne marche pa il me marque toujours la meme chose
0
Réponse 8 / 17
Destrio5 Messages postés 99820 Statut Modérateur 10 304
 
---> Désinstalle AD-Remover.

- Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.

- Double-clique sur RSIT.exe afin de lancer le programme.

- Clique sur Continue à l'écran Disclaimer.

- Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.

- Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).

Note : Les rapports sont sauvegardés dans le dossier C:\rsit.
0
bouda
 
sa c log
Logfile of random's system information tool 1.05 (written by random/random)
Run by jerome sylvie at 2008-12-18 21:03:28
Microsoft® Windows Vista™ Édition Familiale Premium
System drive C: has 93 GB (64%) free of 144 GB
Total RAM: 767 MB (12% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:03:48, on 18/12/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16764)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Orange\Systray\SystrayApp.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\conime.exe
C:\Users\jerome sylvie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZQ7FNH3K\RSIT[1].exe
C:\Program Files\trend micro\jerome sylvie.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.01net.com/telecharger/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.01net.com/telecharger/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange\SearchURLHook\SearchPageURL.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Ask Search Assistant BHO - {0579B4B1-0293-4d73-B02D-5EBB0BA0F0A2} - C:\Program Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL
O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: DealioBHO Class - {6A87B991-A31F-4130-AE72-6D0C294BF082} - C:\Program Files\Dealio\kb127\Dealio.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
O3 - Toolbar: Dealio - {E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} - C:\Program Files\Dealio\kb127\Dealio.dll
O3 - Toolbar: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll
O4 - HKLM\..\Run: [MSConfig] "C:\Windows\System32\msconfig.exe" /auto
O4 - HKLM\..\Run: [SystrayORAHSS] "C:\Program Files\Orange\Systray\SystrayApp.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra button: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb127\Dealio.dll
O9 - Extra 'Tools' menuitem: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb127\Dealio.dll
O9 - Extra button: (no name) - Cmdmapping - (no file) (HKCU)
O13 - Gopher Prefix:
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file)
O20 - AppInit_DLLs:
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Unknown owner - C:\Program Files\Norton Internet Security\isPwdSvc.exe (file missing)
O23 - Service: lxdd_device - - C:\Windows\system32\lxddcoms.exe
O23 - Service: SbPF.Launcher - Unknown owner - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: stllssvr - Unknown owner - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe (file missing)
O23 - Service: Symantec AppCore Service (SymAppCore) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe (file missing)
O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software GmbH - C:\Windows\System32\TuneUpDefragService.exe
0
Réponse 9 / 17
bouda
 
ensuite ques que je fait??
0
Réponse 10 / 17
Destrio5 Messages postés 99820 Statut Modérateur 10 304
 
Ce n'est pas bon.

Supprime ceci : C:\rsit

Pour lancer RSIT, clique droit sur RSIT et choisis Exécuter en tant qu'administrateur.
0
bouda
 
voici le raport log
Logfile of random's system information tool 1.05 (written by random/random)
Run by jerome sylvie at 2008-12-18 21:31:18
Microsoft® Windows Vista™ Édition Familiale Premium
System drive C: has 93 GB (64%) free of 144 GB
Total RAM: 767 MB (30% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:31:25, on 18/12/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16764)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Orange\Systray\SystrayApp.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\AlertModule\0\AlertModule.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\jerome sylvie\Desktop\RSIT.exe
C:\Program Files\trend micro\jerome sylvie.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.01net.com/telecharger/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.01net.com/telecharger/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange\SearchURLHook\SearchPageURL.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Ask Search Assistant BHO - {0579B4B1-0293-4d73-B02D-5EBB0BA0F0A2} - C:\Program Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL
O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: DealioBHO Class - {6A87B991-A31F-4130-AE72-6D0C294BF082} - C:\Program Files\Dealio\kb127\Dealio.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
O3 - Toolbar: Dealio - {E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} - C:\Program Files\Dealio\kb127\Dealio.dll
O3 - Toolbar: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll
O4 - HKLM\..\Run: [MSConfig] "C:\Windows\System32\msconfig.exe" /auto
O4 - HKLM\..\Run: [SystrayORAHSS] "C:\Program Files\Orange\Systray\SystrayApp.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra button: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb127\Dealio.dll
O9 - Extra 'Tools' menuitem: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb127\Dealio.dll
O9 - Extra button: (no name) - Cmdmapping - (no file) (HKCU)
O13 - Gopher Prefix:
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file)
O20 - AppInit_DLLs:
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom SA - C:\PROGRA~1\COMMON~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Validation de mot de passe Symantec IS (ISPwdSvc) - Unknown owner - C:\Program Files\Norton Internet Security\isPwdSvc.exe (file missing)
O23 - Service: lxdd_device - - C:\Windows\system32\lxddcoms.exe
O23 - Service: SbPF.Launcher - Unknown owner - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: stllssvr - Unknown owner - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe (file missing)
O23 - Service: Symantec AppCore Service (SymAppCore) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe (file missing)
O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software GmbH - C:\Windows\System32\TuneUpDefragService.exe
0
Réponse 11 / 17
bouda
 
alor c'est bon cette fois???
0
Réponse 12 / 17
Destrio5 Messages postés 99820 Statut Modérateur 10 304
 
Je ne suis pas tout le temps devant le PC.

Je pense que ton PC a besoin d'un formatage, tu as beaucoup d'infections.
0
bouda
 
en gro ce qur tu me di c'est que j'ai fait tout ça dans le vide???
0
bouda > bouda
 
mai est que je peux instaler un anti virus ??
0
Destrio5 Messages postés 99820 Statut Modérateur 10 304 > bouda
 
Oui.

---> Installe Antivir et mets-le à jour :
http://www.commentcamarche.net/telecharger/telecharger 55 antivir

---> Double-clique sur l'icône d'Antivir (Parapluie) dans la barre des tâches.

---> Dans Antivir, choisis Outils puis Configuration.

---> Coche Mode Expert et coche Rech. Rootkit au dém. de la recherche à droite dans Autres réglages.

---> Fais un scan complet et poste le rapport.
0
Réponse 13 / 17
Destrio5 Messages postés 99820 Statut Modérateur 10 304
 
"en gro ce qur tu me di c'est que j'ai fait tout ça dans le vide???"
---> Je dis ça pour toi, ton PC est bourré d'infections et même je te fais supprimer les infections une par une, je ne suis pas sûr de pouvoir supprimer toutes les infections.

Si tu sais formater et réinstaller Windows, ça va te prendre 1h-2h alors que là, je sais pas combien de temps la désinfection va durer vu le PC.
0
Réponse 14 / 17
Destrio5 Messages postés 99820 Statut Modérateur 10 304
 
Des nouvelles ?
0
Réponse 15 / 17
bragon18 Messages postés 26 Statut Membre
 
----------------- FindyKill V4.709 ------------------

* User : bernard ragon - RAGON
* Emplacement : C:\Program Files\FindyKill
* Outils Mis a jours le 10/12/08 par Chiquitine29
* Recherche effectuée à 22:12:28 le 20/12/2008
* Windows XP - Internet Explorer 7.0.5730.13

((((((((((((((((( *** Recherche *** ))))))))))))))))))


--------------- [ Processus actifs ] ----------------


C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
C:\Program Files\SuperCopier2\SuperCopier2.exe
C:\Program Files\Microsoft ActiveSync\Wcescomm.exe
C:\PROGRA~1\MICROS~3\rapimgr.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\devldr32.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe

--------------- [ Fichiers/Dossiers infectieux ] ----------------


»»»» Presence des fichiers dans C:


»»»» Presence des fichiers dans C:\WINDOWS


»»»» Presence des fichiers dans C:\WINDOWS\Prefetch

Found ! - C:\WINDOWS\prefetch\109781.EXE-34A4C666.pf
Found ! - C:\WINDOWS\prefetch\111140.EXE-114183EE.pf
Found ! - C:\WINDOWS\prefetch\159453.EXE-32BD0292.pf
Found ! - C:\WINDOWS\prefetch\160312.EXE-0B28BF68.pf
Found ! - C:\WINDOWS\prefetch\176109.EXE-371CC2DD.pf
Found ! - C:\WINDOWS\prefetch\265406.EXE-2E091CC3.pf
Found ! - C:\WINDOWS\prefetch\278625.EXE-01F1BD91.pf
Found ! - C:\WINDOWS\prefetch\286265.EXE-0941EC11.pf
Found ! - C:\WINDOWS\prefetch\294359.EXE-01A0FB07.pf
Found ! - C:\WINDOWS\prefetch\313609.EXE-29FF7D07.pf
Found ! - C:\WINDOWS\prefetch\324343.EXE-367F2BB3.pf
Found ! - C:\WINDOWS\prefetch\326718.EXE-0F5A94E3.pf
Found ! - C:\WINDOWS\prefetch\FLEC006.EXE-2E5C3C8D.pf
Found ! - C:\WINDOWS\prefetch\MDELK.EXE-1D176F91.pf
Found ! - C:\WINDOWS\prefetch\WINTEMS.EXE-2A563F9B.pf
Found ! - C:\WINDOWS\Prefetch\CRAC.EXE-1C01BB82.pf

»»»» Presence des fichiers dans C:\WINDOWS\system32

Found ! [20/12/2008 19:59] - C:\WINDOWS\system32\mdelk.exe
Found ! [20/12/2008 19:59] - C:\WINDOWS\system32\wintems.exe
Found ! [20/12/2008 21:26] - C:\WINDOWS\system32\ban_list.txt

»»»» Presence des fichiers dans C:\WINDOWS\system32\config\systemprofile\AppData\Roaming


»»»» Presence des fichiers dans C:\WINDOWS\system32\drivers


»»»» Presence des fichiers dans C:\Documents and Settings\bernard ragon\Application Data

Found ! [20/12/2008 19:35] - "C:\Documents and Settings\bernard ragon\Application Data\m\flec006.exe"
Found ! [20/12/2008 19:35] - "C:\Documents and Settings\bernard ragon\Application Data\m\list.oct"
Found ! [20/12/2008 19:35] - "C:\Documents and Settings\bernard ragon\Application Data\m\data.oct"
Found ! [20/12/2008 19:35] - "C:\Documents and Settings\bernard ragon\Application Data\m\srvlist.oct"
Found ! [20/12/2008 20:25] - "C:\Documents and Settings\bernard ragon\Application Data\m\shared"
Found ! [20/12/2008 19:35] - "C:\Documents and Settings\bernard ragon\Application Data\m"
Found ! [19/12/2008 23:44] - "C:\Documents and Settings\bernard ragon\Application Data\drivers"
Found ! [20/12/2008 20:24] - "C:\Documents and Settings\bernard ragon\Application Data\drivers\srosa.sys"
Found ! [20/12/2008 20:24] - "C:\Documents and Settings\bernard ragon\Application Data\drivers\srosa2.sys"
Found ! [19/12/2008 23:38] - "C:\Documents and Settings\bernard ragon\Application Data\drivers\winupgro.exe"
Found ! [20/12/2008 20:48] - "C:\Documents and Settings\bernard ragon\Application Data\drivers\downld"
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\100921.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\100968.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\101218.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\102578.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\102593.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\102765.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\103078.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\103671.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\104921.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\105390.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\105500.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\106390.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\106625.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\107000.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\109781.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\111140.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\111171.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\111593.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\112500.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\112703.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\112984.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\113265.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\113453.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\113718.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\113921.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\115031.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\115406.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\116453.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\117062.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\117406.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\118031.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\122843.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\123640.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\123906.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\124562.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\124687.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\125421.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\125546.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\125953.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\126265.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\126656.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\126890.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\128078.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\128765.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\128921.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\129906.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\130156.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\133062.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\133843.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\134218.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\135703.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\136218.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\136390.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\136421.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\136437.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\137031.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\137515.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\139640.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\139812.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\141375.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\141390.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\141421.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\142062.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\142859.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\143812.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\144281.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\145234.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\146687.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\147812.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\159453.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\160312.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\162703.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\163031.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\163781.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\164156.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\164625.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\165093.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\165718.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\166656.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\176109.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\184218.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\185328.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\185546.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\186500.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\188031.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\188281.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\200796.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\201015.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\201640.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\201953.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\202250.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\202531.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\202656.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\202921.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\204125.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\204203.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\205609.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\205906.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\214906.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\216203.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\216578.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\217046.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\217421.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\217781.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\218062.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\218218.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\218734.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\219250.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\219296.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\219484.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\219515.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\219671.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\220093.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\220140.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\220156.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\220578.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\222406.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\222890.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\222937.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\233843.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\235046.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\235296.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\235718.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\235843.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\236531.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\236843.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\236968.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\237718.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\237968.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\238812.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\238953.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\239250.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\239781.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\239859.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\240734.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\241140.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\243156.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\244296.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\245125.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\250046.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\253015.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\253687.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\254500.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\255203.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\255687.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\256609.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\259234.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\259640.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\259968.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\260390.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\260609.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\260937.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\261812.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\262187.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\265406.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\265625.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\266500.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\266828.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\271218.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\272937.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\273625.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\278312.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\278625.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\279046.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\279359.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\286265.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\289796.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\291515.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\291890.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\291921.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\292281.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\293218.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\294359.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\299359.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\300906.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\301687.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\301796.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\302703.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\303328.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\303421.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\304140.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\304750.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\308375.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\309234.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\309531.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\313609.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\322937.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\324343.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\326718.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\329140.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\329859.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\330000.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\338656.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\339718.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\340000.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\340875.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\341421.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\342046.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\342421.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\345296.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\346500.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\348156.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\349968.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\350859.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\396468.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\399546.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\400484.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\427359.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\449046.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\453265.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\454062.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\498984.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\503390.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\504093.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\504187.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\514078.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\516890.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\518250.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\518687.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\519359.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\520359.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\521187.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\541375.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\542343.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\543109.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\548984.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\553296.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\553828.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\561984.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\568187.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\569968.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\570390.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\590359.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\595578.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\598078.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\612171.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\612640.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\612718.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\80531.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\80937.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\81234.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\81859.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\82781.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\86703.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\86765.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\86968.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\87015.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\87031.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\87046.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\87062.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\87109.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\87781.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\88625.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\91187.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\91453.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\92750.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\92890.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\93609.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\94859.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\94953.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\95515.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\96750.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\96984.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\97000.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\97609.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\97781.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\a.bat

»»»» Presence des fichiers dans C:\DOCUME~1\BERNAR~1\LOCALS~1\Temp


»»»» Presence des fichiers dans C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5

Found ! [20/12/2008 09:02] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\1DQLZY3W\b64[1].jpg
Found ! [20/12/2008 18:25] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\1DQLZY3W\b64[3].jpg
Found ! [20/12/2008 19:37] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\1DQLZY3W\b64_2[1].jpg
Found ! [20/12/2008 18:23] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\1DQLZY3W\b64_3[1].jpg
Found ! [19/12/2008 23:45] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\G0C7WFVE\b64[1].jpg
Found ! [20/12/2008 09:02] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\G0C7WFVE\b64[2].jpg
Found ! [20/12/2008 18:20] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\G0C7WFVE\b64[3].jpg
Found ! [19/12/2008 23:53] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\G0C7WFVE\b64_2[1].jpg
Found ! [20/12/2008 18:30] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\G0C7WFVE\b64_2[2].jpg
Found ! [20/12/2008 19:28] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\G0C7WFVE\b64_2[3].jpg
Found ! [20/12/2008 20:27] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\G0C7WFVE\b64_2[4].jpg
Found ! [19/12/2008 23:45] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\G0C7WFVE\b64_3[1].jpg
Found ! [20/12/2008 18:19] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\G0C7WFVE\b64_3[2].jpg
Found ! [20/12/2008 18:23] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\G0C7WFVE\b64_3[3].jpg
Found ! [20/12/2008 19:33] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\G0C7WFVE\b64_3[4].jpg
Found ! [19/12/2008 23:45] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\JZMKZAF0\b64[1].jpg
Found ! [20/12/2008 09:02] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\JZMKZAF0\b64[2].jpg
Found ! [20/12/2008 18:20] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\JZMKZAF0\b64[3].jpg
Found ! [20/12/2008 18:29] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\JZMKZAF0\b64_1[1].jpg
Found ! [20/12/2008 19:37] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\JZMKZAF0\b64_1[2].jpg
Found ! [20/12/2008 20:02] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\JZMKZAF0\b64_1[3].jpg
Found ! [20/12/2008 18:30] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\JZMKZAF0\b64_2[1].jpg
Found ! [20/12/2008 19:37] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\JZMKZAF0\b64_2[2].jpg
Found ! [20/12/2008 19:35] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\JZMKZAF0\mxd[1].jpg
Found ! [20/12/2008 19:35] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\ZZU0W234\b64[1].jpg
Found ! [20/12/2008 20:25] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\ZZU0W234\b64[2].jpg
Found ! [19/12/2008 23:52] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\ZZU0W234\b64_1[1].jpg
Found ! [20/12/2008 20:27] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\ZZU0W234\b64_1[2].jpg
Found ! [19/12/2008 23:53] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\ZZU0W234\b64_2[1].jpg
Found ! [20/12/2008 20:02] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\ZZU0W234\b64_2[2].jpg
Found ! [20/12/2008 18:19] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\ZZU0W234\b64_3[1].jpg
Found ! [20/12/2008 18:42] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\ZZU0W234\b64_3[2].jpg
Found ! [20/12/2008 19:59] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\ZZU0W234\b64_3[3].jpg
Found ! [05/09/2008 09:30] - C:\Documents and Settings\bernard ragon\Mes documents\Ma musique\ma musique\AlbumArt_{18C4A69F-EEB9-48B9-B70F-78BC2AA9B648}_Large.jpg
Found ! [05/09/2008 09:30] - C:\Documents and Settings\bernard ragon\Mes documents\Ma musique\ma musique\AlbumArt_{18C4A69F-EEB9-48B9-B70F-78BC2AA9B648}_Small.jpg

--------------- [ Registre / Startup ] ----------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
CTFMON.EXE=C:\WINDOWS\system32\ctfmon.exe
MSMSGS="C:\Program Files\Messenger\msmsgs.exe" /background
LDM=C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
SuperCopier2.exe=C:\Program Files\SuperCopier2\SuperCopier2.exe
H/PC Connection Agent="C:\Program Files\Microsoft ActiveSync\Wcescomm.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
HP Software Update="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
Adobe Reader Speed Launcher="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
Logitech Utility=Logi_MwX.Exe
nod32kui="C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents=
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL=
<NO NAME>=
Installed=1
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI=
<NO NAME>=
Installed=1
NoChange=1
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS=
<NO NAME>=
Installed=1

[HKEY_CURRENT_USER\software\local appwizard-generated applications\crac]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\DestComp]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\hprbui]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\msmsgs]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\winupgro]

--------------- [ Registre / Clés infectieuses ] ----------------


Found ! - HKEY_USERS\S-1-5-21-1844237615-436374069-725345543-1004\Software\Local AppWizard-Generated Applications\winupgro
Found ! - HKEY_USERS\S-1-5-21-1844237615-436374069-725345543-1004\Software\bisoft
Found ! - HKEY_USERS\S-1-5-21-1844237615-436374069-725345543-1004\Software\DateTime4
Found ! - HKEY_USERS\S-1-5-21-1844237615-436374069-725345543-1004\Software\FFC
Found ! - HKEY_USERS\S-1-5-21-1844237615-436374069-725345543-1004\Software\FirtR
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\winupgro
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SROSA
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_SROSA
Found ! - HKEY_CURRENT_USER\Software\bisoft
Found ! - HKEY_CURRENT_USER\Software\DateTime4
Found ! - HKEY_CURRENT_USER\Software\FirtR

--------------- [ Etat / Services ] ----------------

Clé manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot

- sans echec non fonctionnel !!

Clé manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal

- sans echec non fonctionnel !!

Clé manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network

- sans echec non fonctionnel !!



+- Services : [ Auto=2 / Demande=3 / Désactivé=4 ]

/!\ Ndisuio - Type de démarrage = 4

EapHost - Type de démarrage = 3

/!\ Ip6Fw - Type de démarrage = 4

/!\ SharedAccess - Type de démarrage = 4

/!\ wuauserv - Type de démarrage = 4

/!\ wscsvc - Type de démarrage = 4



--------------- [ Recherche dans supports amovibles] ----------------


+- Informations :

C: - Lecteur fixe

D: - Lecteur de CD-ROM


+- Contenu de l'autorun : D:\autorun.inf

[AutoRun]
open=setup.exe
icon=setup.exe,0



































+- presence des fichiers :

Found ! [28/08/2001 13:00][-r-------] - D:\autorun.inf


--------------- [ Registre / Mountpoint2 ] ----------------


-> Not found !


------------------- ! Fin du rapport ! --------------------

njour
je viens d'être dirigé sur cette discussion pour le même problème dont voici le rapport findykill

merci

----------------- FindyKill V4.709 ------------------

* User : bernard ragon - RAGON
* Emplacement : C:\Program Files\FindyKill
* Outils Mis a jours le 10/12/08 par Chiquitine29
* Recherche effectuée à 22:12:28 le 20/12/2008
* Windows XP - Internet Explorer 7.0.5730.13

((((((((((((((((( *** Recherche *** ))))))))))))))))))


--------------- [ Processus actifs ] ----------------


C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
C:\Program Files\SuperCopier2\SuperCopier2.exe
C:\Program Files\Microsoft ActiveSync\Wcescomm.exe
C:\PROGRA~1\MICROS~3\rapimgr.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\devldr32.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe

--------------- [ Fichiers/Dossiers infectieux ] ----------------


»»»» Presence des fichiers dans C:


»»»» Presence des fichiers dans C:\WINDOWS


»»»» Presence des fichiers dans C:\WINDOWS\Prefetch

Found ! - C:\WINDOWS\prefetch\109781.EXE-34A4C666.pf
Found ! - C:\WINDOWS\prefetch\111140.EXE-114183EE.pf
Found ! - C:\WINDOWS\prefetch\159453.EXE-32BD0292.pf
Found ! - C:\WINDOWS\prefetch\160312.EXE-0B28BF68.pf
Found ! - C:\WINDOWS\prefetch\176109.EXE-371CC2DD.pf
Found ! - C:\WINDOWS\prefetch\265406.EXE-2E091CC3.pf
Found ! - C:\WINDOWS\prefetch\278625.EXE-01F1BD91.pf
Found ! - C:\WINDOWS\prefetch\286265.EXE-0941EC11.pf
Found ! - C:\WINDOWS\prefetch\294359.EXE-01A0FB07.pf
Found ! - C:\WINDOWS\prefetch\313609.EXE-29FF7D07.pf
Found ! - C:\WINDOWS\prefetch\324343.EXE-367F2BB3.pf
Found ! - C:\WINDOWS\prefetch\326718.EXE-0F5A94E3.pf
Found ! - C:\WINDOWS\prefetch\FLEC006.EXE-2E5C3C8D.pf
Found ! - C:\WINDOWS\prefetch\MDELK.EXE-1D176F91.pf
Found ! - C:\WINDOWS\prefetch\WINTEMS.EXE-2A563F9B.pf
Found ! - C:\WINDOWS\Prefetch\CRAC.EXE-1C01BB82.pf

»»»» Presence des fichiers dans C:\WINDOWS\system32

Found ! [20/12/2008 19:59] - C:\WINDOWS\system32\mdelk.exe
Found ! [20/12/2008 19:59] - C:\WINDOWS\system32\wintems.exe
Found ! [20/12/2008 21:26] - C:\WINDOWS\system32\ban_list.txt

»»»» Presence des fichiers dans C:\WINDOWS\system32\config\systemprofile\AppData\Roaming


»»»» Presence des fichiers dans C:\WINDOWS\system32\drivers


»»»» Presence des fichiers dans C:\Documents and Settings\bernard ragon\Application Data

Found ! [20/12/2008 19:35] - "C:\Documents and Settings\bernard ragon\Application Data\m\flec006.exe"
Found ! [20/12/2008 19:35] - "C:\Documents and Settings\bernard ragon\Application Data\m\list.oct"
Found ! [20/12/2008 19:35] - "C:\Documents and Settings\bernard ragon\Application Data\m\data.oct"
Found ! [20/12/2008 19:35] - "C:\Documents and Settings\bernard ragon\Application Data\m\srvlist.oct"
Found ! [20/12/2008 20:25] - "C:\Documents and Settings\bernard ragon\Application Data\m\shared"
Found ! [20/12/2008 19:35] - "C:\Documents and Settings\bernard ragon\Application Data\m"
Found ! [19/12/2008 23:44] - "C:\Documents and Settings\bernard ragon\Application Data\drivers"
Found ! [20/12/2008 20:24] - "C:\Documents and Settings\bernard ragon\Application Data\drivers\srosa.sys"
Found ! [20/12/2008 20:24] - "C:\Documents and Settings\bernard ragon\Application Data\drivers\srosa2.sys"
Found ! [19/12/2008 23:38] - "C:\Documents and Settings\bernard ragon\Application Data\drivers\winupgro.exe"
Found ! [20/12/2008 20:48] - "C:\Documents and Settings\bernard ragon\Application Data\drivers\downld"
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\100921.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\100968.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\101218.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\102578.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\102593.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\102765.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\103078.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\103671.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\104921.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\105390.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\105500.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\106390.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\106625.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\107000.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\109781.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\111140.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\111171.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\111593.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\112500.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\112703.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\112984.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\113265.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\113453.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\113718.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\113921.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\115031.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\115406.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\116453.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\117062.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\117406.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\118031.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\122843.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\123640.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\123906.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\124562.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\124687.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\125421.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\125546.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\125953.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\126265.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\126656.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\126890.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\128078.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\128765.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\128921.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\129906.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\130156.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\133062.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\133843.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\134218.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\135703.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\136218.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\136390.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\136421.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\136437.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\137031.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\137515.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\139640.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\139812.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\141375.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\141390.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\141421.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\142062.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\142859.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\143812.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\144281.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\145234.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\146687.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\147812.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\159453.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\160312.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\162703.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\163031.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\163781.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\164156.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\164625.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\165093.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\165718.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\166656.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\176109.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\184218.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\185328.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\185546.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\186500.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\188031.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\188281.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\200796.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\201015.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\201640.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\201953.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\202250.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\202531.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\202656.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\202921.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\204125.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\204203.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\205609.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\205906.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\214906.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\216203.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\216578.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\217046.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\217421.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\217781.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\218062.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\218218.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\218734.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\219250.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ra
0
Réponse 16 / 17
bragon18 Messages postés 26 Statut Membre
 
----------------- FindyKill V4.709 ------------------

* User : bernard ragon - RAGON
* Emplacement : C:\Program Files\FindyKill
* Outils Mis a jours le 10/12/08 par Chiquitine29
* Recherche effectuée à 22:12:28 le 20/12/2008
* Windows XP - Internet Explorer 7.0.5730.13

((((((((((((((((( *** Recherche *** ))))))))))))))))))


--------------- [ Processus actifs ] ----------------


C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
C:\Program Files\SuperCopier2\SuperCopier2.exe
C:\Program Files\Microsoft ActiveSync\Wcescomm.exe
C:\PROGRA~1\MICROS~3\rapimgr.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\devldr32.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe

--------------- [ Fichiers/Dossiers infectieux ] ----------------


»»»» Presence des fichiers dans C:


»»»» Presence des fichiers dans C:\WINDOWS


»»»» Presence des fichiers dans C:\WINDOWS\Prefetch

Found ! - C:\WINDOWS\prefetch\109781.EXE-34A4C666.pf
Found ! - C:\WINDOWS\prefetch\111140.EXE-114183EE.pf
Found ! - C:\WINDOWS\prefetch\159453.EXE-32BD0292.pf
Found ! - C:\WINDOWS\prefetch\160312.EXE-0B28BF68.pf
Found ! - C:\WINDOWS\prefetch\176109.EXE-371CC2DD.pf
Found ! - C:\WINDOWS\prefetch\265406.EXE-2E091CC3.pf
Found ! - C:\WINDOWS\prefetch\278625.EXE-01F1BD91.pf
Found ! - C:\WINDOWS\prefetch\286265.EXE-0941EC11.pf
Found ! - C:\WINDOWS\prefetch\294359.EXE-01A0FB07.pf
Found ! - C:\WINDOWS\prefetch\313609.EXE-29FF7D07.pf
Found ! - C:\WINDOWS\prefetch\324343.EXE-367F2BB3.pf
Found ! - C:\WINDOWS\prefetch\326718.EXE-0F5A94E3.pf
Found ! - C:\WINDOWS\prefetch\FLEC006.EXE-2E5C3C8D.pf
Found ! - C:\WINDOWS\prefetch\MDELK.EXE-1D176F91.pf
Found ! - C:\WINDOWS\prefetch\WINTEMS.EXE-2A563F9B.pf
Found ! - C:\WINDOWS\Prefetch\CRAC.EXE-1C01BB82.pf

»»»» Presence des fichiers dans C:\WINDOWS\system32

Found ! [20/12/2008 19:59] - C:\WINDOWS\system32\mdelk.exe
Found ! [20/12/2008 19:59] - C:\WINDOWS\system32\wintems.exe
Found ! [20/12/2008 21:26] - C:\WINDOWS\system32\ban_list.txt

»»»» Presence des fichiers dans C:\WINDOWS\system32\config\systemprofile\AppData\Roaming


»»»» Presence des fichiers dans C:\WINDOWS\system32\drivers


»»»» Presence des fichiers dans C:\Documents and Settings\bernard ragon\Application Data

Found ! [20/12/2008 19:35] - "C:\Documents and Settings\bernard ragon\Application Data\m\flec006.exe"
Found ! [20/12/2008 19:35] - "C:\Documents and Settings\bernard ragon\Application Data\m\list.oct"
Found ! [20/12/2008 19:35] - "C:\Documents and Settings\bernard ragon\Application Data\m\data.oct"
Found ! [20/12/2008 19:35] - "C:\Documents and Settings\bernard ragon\Application Data\m\srvlist.oct"
Found ! [20/12/2008 20:25] - "C:\Documents and Settings\bernard ragon\Application Data\m\shared"
Found ! [20/12/2008 19:35] - "C:\Documents and Settings\bernard ragon\Application Data\m"
Found ! [19/12/2008 23:44] - "C:\Documents and Settings\bernard ragon\Application Data\drivers"
Found ! [20/12/2008 20:24] - "C:\Documents and Settings\bernard ragon\Application Data\drivers\srosa.sys"
Found ! [20/12/2008 20:24] - "C:\Documents and Settings\bernard ragon\Application Data\drivers\srosa2.sys"
Found ! [19/12/2008 23:38] - "C:\Documents and Settings\bernard ragon\Application Data\drivers\winupgro.exe"
Found ! [20/12/2008 20:48] - "C:\Documents and Settings\bernard ragon\Application Data\drivers\downld"
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\100921.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\100968.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\101218.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\102578.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\102593.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\102765.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\103078.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\103671.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\104921.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\105390.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\105500.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\106390.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\106625.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\107000.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\109781.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\111140.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\111171.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\111593.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\112500.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\112703.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\112984.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\113265.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\113453.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\113718.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\113921.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\115031.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\115406.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\116453.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\117062.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\117406.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\118031.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\122843.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\123640.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\123906.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\124562.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\124687.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\125421.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\125546.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\125953.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\126265.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\126656.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\126890.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\128078.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\128765.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\128921.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\129906.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\130156.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\133062.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\133843.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\134218.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\135703.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\136218.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\136390.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\136421.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\136437.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\137031.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\137515.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\139640.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\139812.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\141375.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\141390.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\141421.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\142062.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\142859.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\143812.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\144281.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\145234.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\146687.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\147812.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\159453.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\160312.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\162703.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\163031.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\163781.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\164156.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\164625.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\165093.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\165718.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\166656.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\176109.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\184218.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\185328.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\185546.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\186500.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\188031.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\188281.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\200796.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\201015.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\201640.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\201953.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\202250.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\202531.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\202656.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\202921.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\204125.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\204203.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\205609.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\205906.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\214906.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\216203.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\216578.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\217046.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\217421.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\217781.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\218062.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\218218.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\218734.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\219250.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\219296.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\219484.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\219515.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\219671.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\220093.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\220140.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\220156.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\220578.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\222406.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\222890.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\222937.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\233843.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\235046.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\235296.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\235718.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\235843.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\236531.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\236843.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\236968.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\237718.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\237968.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\238812.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\238953.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\239250.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\239781.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\239859.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\240734.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\241140.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\243156.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\244296.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\245125.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\250046.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\253015.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\253687.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\254500.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\255203.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\255687.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\256609.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\259234.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\259640.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\259968.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\260390.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\260609.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\260937.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\261812.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\262187.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\265406.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\265625.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\266500.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\266828.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\271218.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\272937.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\273625.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\278312.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\278625.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\279046.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\279359.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\286265.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\289796.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\291515.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\291890.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\291921.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\292281.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\293218.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\294359.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\299359.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\300906.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\301687.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\301796.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\302703.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\303328.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\303421.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\304140.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\304750.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\308375.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\309234.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\309531.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\313609.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\322937.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\324343.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\326718.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\329140.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\329859.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\330000.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\338656.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\339718.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\340000.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\340875.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\341421.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\342046.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\342421.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\345296.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\346500.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\348156.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\349968.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\350859.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\396468.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\399546.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\400484.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\427359.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\449046.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\453265.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\454062.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\498984.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\503390.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\504093.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\504187.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\514078.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\516890.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\518250.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\518687.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\519359.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\520359.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\521187.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\541375.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\542343.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\543109.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\548984.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\553296.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\553828.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\561984.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\568187.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\569968.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\570390.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\590359.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\595578.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\598078.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\612171.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\612640.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\612718.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\80531.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\80937.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\81234.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\81859.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\82781.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\86703.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\86765.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\86968.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\87015.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\87031.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\87046.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\87062.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\87109.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\87781.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\88625.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\91187.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\91453.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\92750.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\92890.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\93609.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\94859.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\94953.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\95515.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\96750.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\96984.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\97000.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\97609.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\97781.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\a.bat

»»»» Presence des fichiers dans C:\DOCUME~1\BERNAR~1\LOCALS~1\Temp


»»»» Presence des fichiers dans C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5

Found ! [20/12/2008 09:02] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\1DQLZY3W\b64[1].jpg
Found ! [20/12/2008 18:25] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\1DQLZY3W\b64[3].jpg
Found ! [20/12/2008 19:37] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\1DQLZY3W\b64_2[1].jpg
Found ! [20/12/2008 18:23] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\1DQLZY3W\b64_3[1].jpg
Found ! [19/12/2008 23:45] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\G0C7WFVE\b64[1].jpg
Found ! [20/12/2008 09:02] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\G0C7WFVE\b64[2].jpg
Found ! [20/12/2008 18:20] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\G0C7WFVE\b64[3].jpg
Found ! [19/12/2008 23:53] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\G0C7WFVE\b64_2[1].jpg
Found ! [20/12/2008 18:30] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\G0C7WFVE\b64_2[2].jpg
Found ! [20/12/2008 19:28] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\G0C7WFVE\b64_2[3].jpg
Found ! [20/12/2008 20:27] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\G0C7WFVE\b64_2[4].jpg
Found ! [19/12/2008 23:45] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\G0C7WFVE\b64_3[1].jpg
Found ! [20/12/2008 18:19] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\G0C7WFVE\b64_3[2].jpg
Found ! [20/12/2008 18:23] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\G0C7WFVE\b64_3[3].jpg
Found ! [20/12/2008 19:33] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\G0C7WFVE\b64_3[4].jpg
Found ! [19/12/2008 23:45] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\JZMKZAF0\b64[1].jpg
Found ! [20/12/2008 09:02] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\JZMKZAF0\b64[2].jpg
Found ! [20/12/2008 18:20] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\JZMKZAF0\b64[3].jpg
Found ! [20/12/2008 18:29] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\JZMKZAF0\b64_1[1].jpg
Found ! [20/12/2008 19:37] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\JZMKZAF0\b64_1[2].jpg
Found ! [20/12/2008 20:02] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\JZMKZAF0\b64_1[3].jpg
Found ! [20/12/2008 18:30] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\JZMKZAF0\b64_2[1].jpg
Found ! [20/12/2008 19:37] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\JZMKZAF0\b64_2[2].jpg
Found ! [20/12/2008 19:35] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\JZMKZAF0\mxd[1].jpg
Found ! [20/12/2008 19:35] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\ZZU0W234\b64[1].jpg
Found ! [20/12/2008 20:25] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\ZZU0W234\b64[2].jpg
Found ! [19/12/2008 23:52] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\ZZU0W234\b64_1[1].jpg
Found ! [20/12/2008 20:27] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\ZZU0W234\b64_1[2].jpg
Found ! [19/12/2008 23:53] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\ZZU0W234\b64_2[1].jpg
Found ! [20/12/2008 20:02] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\ZZU0W234\b64_2[2].jpg
Found ! [20/12/2008 18:19] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\ZZU0W234\b64_3[1].jpg
Found ! [20/12/2008 18:42] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\ZZU0W234\b64_3[2].jpg
Found ! [20/12/2008 19:59] - C:\Documents and Settings\bernard ragon\Local Settings\Temporary Internet Files\Content.IE5\ZZU0W234\b64_3[3].jpg
Found ! [05/09/2008 09:30] - C:\Documents and Settings\bernard ragon\Mes documents\Ma musique\ma musique\AlbumArt_{18C4A69F-EEB9-48B9-B70F-78BC2AA9B648}_Large.jpg
Found ! [05/09/2008 09:30] - C:\Documents and Settings\bernard ragon\Mes documents\Ma musique\ma musique\AlbumArt_{18C4A69F-EEB9-48B9-B70F-78BC2AA9B648}_Small.jpg

--------------- [ Registre / Startup ] ----------------

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
CTFMON.EXE=C:\WINDOWS\system32\ctfmon.exe
MSMSGS="C:\Program Files\Messenger\msmsgs.exe" /background
LDM=C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
SuperCopier2.exe=C:\Program Files\SuperCopier2\SuperCopier2.exe
H/PC Connection Agent="C:\Program Files\Microsoft ActiveSync\Wcescomm.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
HP Software Update="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
Adobe Reader Speed Launcher="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
Logitech Utility=Logi_MwX.Exe
nod32kui="C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents=
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL=
<NO NAME>=
Installed=1
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI=
<NO NAME>=
Installed=1
NoChange=1
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS=
<NO NAME>=
Installed=1

[HKEY_CURRENT_USER\software\local appwizard-generated applications\crac]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\DestComp]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\hprbui]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\msmsgs]
[HKEY_CURRENT_USER\software\local appwizard-generated applications\winupgro]

--------------- [ Registre / Clés infectieuses ] ----------------


Found ! - HKEY_USERS\S-1-5-21-1844237615-436374069-725345543-1004\Software\Local AppWizard-Generated Applications\winupgro
Found ! - HKEY_USERS\S-1-5-21-1844237615-436374069-725345543-1004\Software\bisoft
Found ! - HKEY_USERS\S-1-5-21-1844237615-436374069-725345543-1004\Software\DateTime4
Found ! - HKEY_USERS\S-1-5-21-1844237615-436374069-725345543-1004\Software\FFC
Found ! - HKEY_USERS\S-1-5-21-1844237615-436374069-725345543-1004\Software\FirtR
Found ! - HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications\winupgro
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\srosa
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_SROSA
Found ! - HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Enum\Root\LEGACY_SROSA
Found ! - HKEY_CURRENT_USER\Software\bisoft
Found ! - HKEY_CURRENT_USER\Software\DateTime4
Found ! - HKEY_CURRENT_USER\Software\FirtR

--------------- [ Etat / Services ] ----------------

Clé manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot

- sans echec non fonctionnel !!

Clé manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal

- sans echec non fonctionnel !!

Clé manquante : HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network

- sans echec non fonctionnel !!



+- Services : [ Auto=2 / Demande=3 / Désactivé=4 ]

/!\ Ndisuio - Type de démarrage = 4

EapHost - Type de démarrage = 3

/!\ Ip6Fw - Type de démarrage = 4

/!\ SharedAccess - Type de démarrage = 4

/!\ wuauserv - Type de démarrage = 4

/!\ wscsvc - Type de démarrage = 4



--------------- [ Recherche dans supports amovibles] ----------------


+- Informations :

C: - Lecteur fixe

D: - Lecteur de CD-ROM


+- Contenu de l'autorun : D:\autorun.inf

[AutoRun]
open=setup.exe
icon=setup.exe,0



































+- presence des fichiers :

Found ! [28/08/2001 13:00][-r-------] - D:\autorun.inf


--------------- [ Registre / Mountpoint2 ] ----------------


-> Not found !


------------------- ! Fin du rapport ! --------------------

njour
je viens d'être dirigé sur cette discussion pour le même problème dont voici le rapport findykill

merci

----------------- FindyKill V4.709 ------------------

* User : bernard ragon - RAGON
* Emplacement : C:\Program Files\FindyKill
* Outils Mis a jours le 10/12/08 par Chiquitine29
* Recherche effectuée à 22:12:28 le 20/12/2008
* Windows XP - Internet Explorer 7.0.5730.13

((((((((((((((((( *** Recherche *** ))))))))))))))))))


--------------- [ Processus actifs ] ----------------


C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
C:\Program Files\SuperCopier2\SuperCopier2.exe
C:\Program Files\Microsoft ActiveSync\Wcescomm.exe
C:\PROGRA~1\MICROS~3\rapimgr.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\devldr32.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe

--------------- [ Fichiers/Dossiers infectieux ] ----------------


»»»» Presence des fichiers dans C:


»»»» Presence des fichiers dans C:\WINDOWS


»»»» Presence des fichiers dans C:\WINDOWS\Prefetch

Found ! - C:\WINDOWS\prefetch\109781.EXE-34A4C666.pf
Found ! - C:\WINDOWS\prefetch\111140.EXE-114183EE.pf
Found ! - C:\WINDOWS\prefetch\159453.EXE-32BD0292.pf
Found ! - C:\WINDOWS\prefetch\160312.EXE-0B28BF68.pf
Found ! - C:\WINDOWS\prefetch\176109.EXE-371CC2DD.pf
Found ! - C:\WINDOWS\prefetch\265406.EXE-2E091CC3.pf
Found ! - C:\WINDOWS\prefetch\278625.EXE-01F1BD91.pf
Found ! - C:\WINDOWS\prefetch\286265.EXE-0941EC11.pf
Found ! - C:\WINDOWS\prefetch\294359.EXE-01A0FB07.pf
Found ! - C:\WINDOWS\prefetch\313609.EXE-29FF7D07.pf
Found ! - C:\WINDOWS\prefetch\324343.EXE-367F2BB3.pf
Found ! - C:\WINDOWS\prefetch\326718.EXE-0F5A94E3.pf
Found ! - C:\WINDOWS\prefetch\FLEC006.EXE-2E5C3C8D.pf
Found ! - C:\WINDOWS\prefetch\MDELK.EXE-1D176F91.pf
Found ! - C:\WINDOWS\prefetch\WINTEMS.EXE-2A563F9B.pf
Found ! - C:\WINDOWS\Prefetch\CRAC.EXE-1C01BB82.pf

»»»» Presence des fichiers dans C:\WINDOWS\system32

Found ! [20/12/2008 19:59] - C:\WINDOWS\system32\mdelk.exe
Found ! [20/12/2008 19:59] - C:\WINDOWS\system32\wintems.exe
Found ! [20/12/2008 21:26] - C:\WINDOWS\system32\ban_list.txt

»»»» Presence des fichiers dans C:\WINDOWS\system32\config\systemprofile\AppData\Roaming


»»»» Presence des fichiers dans C:\WINDOWS\system32\drivers


»»»» Presence des fichiers dans C:\Documents and Settings\bernard ragon\Application Data

Found ! [20/12/2008 19:35] - "C:\Documents and Settings\bernard ragon\Application Data\m\flec006.exe"
Found ! [20/12/2008 19:35] - "C:\Documents and Settings\bernard ragon\Application Data\m\list.oct"
Found ! [20/12/2008 19:35] - "C:\Documents and Settings\bernard ragon\Application Data\m\data.oct"
Found ! [20/12/2008 19:35] - "C:\Documents and Settings\bernard ragon\Application Data\m\srvlist.oct"
Found ! [20/12/2008 20:25] - "C:\Documents and Settings\bernard ragon\Application Data\m\shared"
Found ! [20/12/2008 19:35] - "C:\Documents and Settings\bernard ragon\Application Data\m"
Found ! [19/12/2008 23:44] - "C:\Documents and Settings\bernard ragon\Application Data\drivers"
Found ! [20/12/2008 20:24] - "C:\Documents and Settings\bernard ragon\Application Data\drivers\srosa.sys"
Found ! [20/12/2008 20:24] - "C:\Documents and Settings\bernard ragon\Application Data\drivers\srosa2.sys"
Found ! [19/12/2008 23:38] - "C:\Documents and Settings\bernard ragon\Application Data\drivers\winupgro.exe"
Found ! [20/12/2008 20:48] - "C:\Documents and Settings\bernard ragon\Application Data\drivers\downld"
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\100921.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\100968.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\101218.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\102578.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\102593.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\102765.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\103078.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\103671.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\104921.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\105390.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\105500.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\106390.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\106625.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\107000.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\109781.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\111140.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\111171.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\111593.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\112500.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\112703.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\112984.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\113265.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\113453.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\113718.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\113921.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\115031.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\115406.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\116453.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\117062.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\117406.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\118031.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\122843.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\123640.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\123906.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\124562.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\124687.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\125421.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\125546.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\125953.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\126265.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\126656.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\126890.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\128078.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\128765.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\128921.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\129906.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\130156.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\133062.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\133843.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\134218.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\135703.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\136218.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\136390.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\136421.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\136437.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\137031.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\137515.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\139640.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\139812.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\141375.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\141390.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\141421.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\142062.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\142859.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\143812.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\144281.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\145234.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\146687.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\147812.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\159453.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\160312.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\162703.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\163031.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\163781.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\164156.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\164625.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\165093.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\165718.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\166656.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\176109.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\184218.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\185328.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\185546.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\186500.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\188031.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\188281.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\200796.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\201015.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\201640.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\201953.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\202250.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\202531.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\202656.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\202921.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\204125.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\204203.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\205609.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\205906.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\214906.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\216203.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\216578.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\217046.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\217421.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\217781.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\218062.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\218218.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\218734.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ragon\Application Data\drivers\downld\219250.exe
Found ! [20/12/2008 20:48] - C:\Documents and Settings\bernard ra
0
Réponse 17 / 17
bragon18 Messages postés 26 Statut Membre
 
oups j'au dû l'envoyer plusieurs fois
0

Discussions similaires

Commande en ligne : paiement validé mais commande non confirmé
Davazn -
Framboise99 -

12 réponses
Pb Windows 7, .EXE n'est pas app win32 valide
Witeric -
Lio -

15 réponses
Nom de champs du tableau croisé dynamique non valide
Kazooie123 -
SajDri -

6 réponses
problème reconnaissance url liste iptv avec smartiptv
jo56jo -
Farid43 -

8 réponses
Problème avec "PUADIManager:Win32/OfferCore
Knaki -
bazfile -

3 réponses