× Aidez la recherche contre le COVID-19 avec votre ordi ! Rejoignez l'équipe PC Astuces Folding@home
 > Tous les forums > Forum Sécurité
 Fraud.virus remover 2009Sujet résolu
Ajouter un message à la discussion
Page : [1] 
Page 1 sur 1
clem3321
  Posté le 05/07/2010 @ 11:44 
Aller en bas de la page 
Petite astucienne

Bonjour, j'ai un virus sur mon ordinateur: Fraud.virus remover 2009. J'ai effectué une analyse avec HIjack. Depuis que je l'ai, je n'arrive plus à avoir mes mails sur Hotmail, alors que j'ai du monde qui m'en envoie. C'est comme si je ne les recevais pas. Voici le rapport:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:43:01, on 05/07/2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ACS.exe
C:\Program Files\Avast4\aswUpdSv.exe
C:\Program Files\Avast4\ashServ.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\TOSHIBA\PadTouch\PadExe.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\PROGRA~1\Avast4\ashDisp.exe
C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Avast4\ashMaiSv.exe
C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\CPSHelpRunner.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_clipbook.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.imesh.com/sidebar.html?src=ssb
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/keyword/%s
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - c:\program files\real\realplayer\rpbrowserrecordplugin.dll
O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [PadTouch] "C:\Program Files\TOSHIBA\PadTouch\PadExe.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Family Safety\fsui.exe" -autorun
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: HP Image Zone Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Afficher ou masquer l'HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{1DBECA3B-4EEC-458B-AFC4-57EF58759941}: NameServer = 86.64.233.84 109.0.64.242
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: Atheros Configuration Service (ACS) - Unknown owner - C:\WINDOWS\system32\ACS.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Avast4\ashWebSv.exe
O23 - Service: Boonty Games - Unknown owner - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe (file missing)
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files\HP Games\HP Game Console\GameConsoleService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Roxio UPnP Renderer 9 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe
O23 - Service: Roxio Upnp Server 9 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 9\RoxioUpnpService9.exe
O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Fichiers communs\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe

--
End of file - 10475 bytes

Merci beaucoup pour votre aide.

Publicité
no.ppp
 Posté le 05/07/2010 à 11:56 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Astucien

Salut,

Je suis no.ppp et je vais t'aider dans la résolution de ton problème.

Avant de commencer, quelques "règles" s'imposent :

  • Tu ne dois suivre les procédures que d'un seul membre. Des procédures différentes pourraient endommager ta machine. Si tu te fais aider ailleurs, préviens-moi !
  • Même si tu constates une nette amélioration, attends que je te dise que tout est fini.
  • Tout au long de mes messages, tu verras "Image IPB" qui indique le début de chaque nouvelle procédure à exécuter.
  • Exécute-les toutes dans l'ordre indiqué sans en oublier.
  • N'utilise pas d'autres outils que ceux que je t'indique : d'une part car cela peut s'avérer dangereux et d'autre part pour que je sache où nous en sommes des éléments supprimés.
  • Tu peux, si tu le souhaites, imprimer les démarches à effectuer au cas où tu n'aurais pas accès au net.
  • N'hésite pas à poser des questions si certains éléments te paraissent obscurs.

------------------------------------------------------------------------
------------------------------------------------------------------------

Ton système est carrément pas à jour !

Télécharge OTL sur ton Bureau.

  • Fais un double clic sur l'icône pour le lancer. Vérifie que toutes les autres fenêtres sont fermées afin qu'il s'exécute sans interruption.
  • Quand la fenêtre apparaît, sous Rapport en haut, vérifie que Rapport standard est coché.
  • Sous Registre: standard coche Tous.
  • Coche les cases à coté de Recherche Lop et Recherche Purity.
  • Clique sur le bouton Analyse. Ne modifie aucun paramètre sans qu'on t'ait dit de le faire. L'analyse ne va pas durer longtemps.
  • Quand l'analyse est terminée, deux fenêtres du Bloc-notes vont s'ouvrir. OTL.Txt et Extras.Txt. Ces fichiers sont sauvegardés au même endroit que OTL.
  • Copie (Edition->Sélectionner tout, Edition->Copier) le contenu de ces fichiers, l'un après l'autre, et envoie-les dans ta prochaine réponse.

clem3321
 Posté le 05/07/2010 à 12:52 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Petite astucienne

Le site ne veut pas que j'envoie les rapport.Quand je fais envoyer message, voilà ce qu'il me met:

Objet Request erreur 'ASP 0104 : 80004005'

Opération non autorisée

/inc_haut.asp, ligne 46

Que se passe t-il?

no.ppp
 Posté le 05/07/2010 à 13:12 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Astucien

Héberge-le sur http://cjoint.com

clem3321
 Posté le 05/07/2010 à 14:09 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Petite astucienne

Voici les adresses des rapports: http://cjoint.com/?hfodPGHlAQ

http://cjoint.com/?hfoir7cTW8

Je ne sais pas insérer les liens hypertexte dez

no.ppp
 Posté le 05/07/2010 à 22:18 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Astucien

Salut,

T'as 2 antivirus, supprimes-en un !

Relance OTL

  • Copie-colle le contenu de citation dans la fenêtre personnalisation

:OTL
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [KernelFaultCheck] File not found
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
@Alternate Data Stream - 99 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:2BC498A4
@Alternate Data Stream - 99 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:07536DA3
@Alternate Data Stream - 98 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7E927D7D
@Alternate Data Stream - 98 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:45FE2B4E
@Alternate Data Stream - 98 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4363DE71
@Alternate Data Stream - 98 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:164FA86E
@Alternate Data Stream - 97 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:FC4EA67C
@Alternate Data Stream - 97 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A411DD58
@Alternate Data Stream - 97 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8BB7AE6E
@Alternate Data Stream - 97 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:52E3B819
@Alternate Data Stream - 96 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D708EEF9
@Alternate Data Stream - 96 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:94D41096
@Alternate Data Stream - 96 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8140CB50
@Alternate Data Stream - 96 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:52B72A7C
@Alternate Data Stream - 95 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5A99DEB7
@Alternate Data Stream - 94 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B2CD146E
@Alternate Data Stream - 94 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:975EDE2B
@Alternate Data Stream - 94 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:2032CC2B
@Alternate Data Stream - 363 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:54ECDCF4
@Alternate Data Stream - 157 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:23B59626
@Alternate Data Stream - 152 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4B49E3BC
@Alternate Data Stream - 151 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DE38CB5F
@Alternate Data Stream - 150 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CBCE0A92
@Alternate Data Stream - 148 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CAF8DAC8
@Alternate Data Stream - 148 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A93CBF2B
@Alternate Data Stream - 147 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:902B6A44
@Alternate Data Stream - 147 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:6E11933F
@Alternate Data Stream - 147 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:6CFD36EA
@Alternate Data Stream - 146 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A00BCDEF
@Alternate Data Stream - 146 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:88C0A705
@Alternate Data Stream - 146 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3780BCC3
@Alternate Data Stream - 145 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E1F04E8D
@Alternate Data Stream - 145 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B83BF1A6
@Alternate Data Stream - 145 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:93D985FC
@Alternate Data Stream - 145 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:816255C3
@Alternate Data Stream - 144 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F8F070C2
@Alternate Data Stream - 144 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CF1334B0
@Alternate Data Stream - 144 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A18121AD
@Alternate Data Stream - 144 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:9B0F9E15
@Alternate Data Stream - 144 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:69AF9D20
@Alternate Data Stream - 144 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:14168AA3
@Alternate Data Stream - 143 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:908A1B53
@Alternate Data Stream - 143 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4C745529
@Alternate Data Stream - 143 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:42A3BDD7
@Alternate Data Stream - 142 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E14FA16F
@Alternate Data Stream - 142 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DB0CD29E
@Alternate Data Stream - 142 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DAFD38AE
@Alternate Data Stream - 142 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C40E212B
@Alternate Data Stream - 142 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:016C09C5
@Alternate Data Stream - 141 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F878F14A
@Alternate Data Stream - 141 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:AC73CDCE
@Alternate Data Stream - 141 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:953FDC1A
@Alternate Data Stream - 141 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:41B89F80
@Alternate Data Stream - 141 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:2E0A3B1D
@Alternate Data Stream - 141 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0F38B460
@Alternate Data Stream - 140 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F0A06891
@Alternate Data Stream - 140 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:EA10407C
@Alternate Data Stream - 140 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E7C9DAAE
@Alternate Data Stream - 139 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:FEEEFFAD
@Alternate Data Stream - 139 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:EDC744FB
@Alternate Data Stream - 139 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:EBE4F6FC
@Alternate Data Stream - 139 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B54102AD
@Alternate Data Stream - 139 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7FCB9D0D
@Alternate Data Stream - 139 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:79F970BE
@Alternate Data Stream - 138 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DA18D4E3
@Alternate Data Stream - 138 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C24B973A
@Alternate Data Stream - 138 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:74BB299D
@Alternate Data Stream - 138 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:73461BFA
@Alternate Data Stream - 138 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:71F04C26
@Alternate Data Stream - 138 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:551BED5F
@Alternate Data Stream - 138 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3AE22B1A
@Alternate Data Stream - 138 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:32A82570
@Alternate Data Stream - 138 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:178093AE
@Alternate Data Stream - 138 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:13B137AF
@Alternate Data Stream - 137 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:AAA9C7BF
@Alternate Data Stream - 137 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A7B70C4E
@Alternate Data Stream - 137 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7E100A8C
@Alternate Data Stream - 137 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7079A696
@Alternate Data Stream - 137 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:6E86D926
@Alternate Data Stream - 137 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:523B97A0
@Alternate Data Stream - 137 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:35A821F5
@Alternate Data Stream - 137 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:04893BD0
@Alternate Data Stream - 136 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:EA701346
@Alternate Data Stream - 136 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:87452B14
@Alternate Data Stream - 135 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F9E46E4C
@Alternate Data Stream - 135 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DF5BAC78
@Alternate Data Stream - 135 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DC21D414
@Alternate Data Stream - 135 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D05E7A8B
@Alternate Data Stream - 135 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C35B4B19
@Alternate Data Stream - 135 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:700B9342
@Alternate Data Stream - 135 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:6F0B6A5A
@Alternate Data Stream - 135 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:69EC5FA7
@Alternate Data Stream - 135 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:50A11A00
@Alternate Data Stream - 134 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F986CC21
@Alternate Data Stream - 134 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F880DE59
@Alternate Data Stream - 134 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E6A84C9D
@Alternate Data Stream - 134 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8EEE3BBB
@Alternate Data Stream - 134 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5E413CD6
@Alternate Data Stream - 134 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4A448DB2
@Alternate Data Stream - 134 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:413E2927
@Alternate Data Stream - 134 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:38849DE5
@Alternate Data Stream - 134 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:37F44C44
@Alternate Data Stream - 133 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:940ECC98
@Alternate Data Stream - 133 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:471AD3D0
@Alternate Data Stream - 133 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:1AF93AF4
@Alternate Data Stream - 133 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:147A3409
@Alternate Data Stream - 133 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:11EFE63D
@Alternate Data Stream - 133 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:058A7351
@Alternate Data Stream - 133 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:03D08225
@Alternate Data Stream - 132 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D390A6A7
@Alternate Data Stream - 132 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A724744F
@Alternate Data Stream - 132 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:81ED9272
@Alternate Data Stream - 132 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5EBA4934
@Alternate Data Stream - 132 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0E341035
@Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DD3F5AF4
@Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CF6A6C8A
@Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C6D0ABC3
@Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B5E5C967
@Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:84499DA6
@Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:48F0FFF8
@Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3D186293
@Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:2FF4577A
@Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0EE601C7
@Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0EC7A545
@Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0860D6D6
@Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:FDCAE7B5
@Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E33D6212
@Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DF0BC727
@Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:BD9F7E4E
@Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B3B92717
@Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8FBE0E9C
@Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:6A16A184
@Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:68DA8CC0
@Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:53DF4438
@Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:28CDD861
@Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:02B823FE
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:FF9C44FE
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:EC7C9796
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E774F04D
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:93226FE3
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:561B1D2B
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5025C6E4
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4D7FCCD3
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3FC4A10A
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:002640E3
@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:FF818E2B
@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E8CB831A
@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E732B44B
@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E41267F2
@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DE6EED8B
@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B8384DB6
@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:9C504A4D
@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7B52659E
@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:71FA8B7F
@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:62197B73
@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5E9B629B
@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5466F106
@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5345C8F6
@Alternate Data Stream - 128 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:206470A5
@Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C482F8D4
@Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:AED33A42
@Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:AE78B77A
@Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:9B750A13
@Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:814B9485
@Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:6D4F7F2B
@Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5B09C4D9
@Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:596E2371
@Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4F58D818
@Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:393F7B1E
@Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3612C9BE
@Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:2871B698
@Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:1A4BF204
@Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:101708D3
@Alternate Data Stream - 127 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0DFE2AE1
@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:F14D1F80
@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E51234A9
@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B894C266
@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:AA60673F
@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:98982C88
@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8CCDAB14
@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:6DD87D86
@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:6CBAF5F3
@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:50636E35
@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:48529647
@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:226A6E31
@Alternate Data Stream - 126 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:078B239B
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DCF7E75A
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D3A8AA31
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D2A5A561
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C611D6C8
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B845F669
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B64F7263
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A1B23042
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:896E1EFF
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7A0FEE87
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:57176330
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:39C7B7C6
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:1DECED1B
@Alternate Data Stream - 125 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:00811B66
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:FF8F1AE3
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D9F6664C
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D31BE97C
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D226F1A4
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:988216DA
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8A9C3AF2
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7E082023
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:74091520
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:6C08335F
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:61F0C8FB
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5AE33054
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:517B507A
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:30C46519
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:2D7D575C
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:2AFE7797
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:128A6DC9
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:094B2B4C
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:090FB735
@Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CDFF58FE
@Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C928F3BE
@Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B904C348
@Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B6FA1F20
@Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A5FC8FA1
@Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:95B7F1EC
@Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8DCF53BE
@Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:708BB0FA
@Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:68B61847
@Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5B3A4EC2
@Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3815BC84
@Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3651A580
@Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:2CDB9CA3
@Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:2A5BC0A9
@Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:275AA066
@Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:1941675B
@Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0D52F295
@Alternate Data Stream - 123 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0C167A8C
@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:EB40BC91
@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC179F0
@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D26DD363
@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B30D9A49
@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B0EB578B
@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A7DA2BCD
@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:971DCCE2
@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:90E3641D
@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8ADA53F6
@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7DFDF9DF
@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7CEDF9F3
@Alternate Data Stream - 122 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:33384BC0
@Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D8F9D810
@Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B4980368
@Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:ADF0A5DD
@Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:981349EA
@Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:89C28CF6
@Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:89123481
@Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:60C897F3
@Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:405D842B
@Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:27F44544
@Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E945C214
@Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E8435752
@Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E764BA3E
@Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D226A81A
@Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:BFBB0142
@Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:ABE89FFE
@Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:97AB2056
@Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7C60A173
@Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:70E897B5
@Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:614F17D3
@Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4A2862FF
@Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:41099CE9
@Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3B5038B1
@Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3AED98EA
@Alternate Data Stream - 120 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:17F7AEA3
@Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:FC336C22
@Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CEE4A457
@Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:BB71BBA2
@Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A3B8F70C
@Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:918B7566
@Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7AF9CAEB
@Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:588B60C7
@Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4D066AD2
@Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:38317199
@Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:370E4EFB
@Alternate Data Stream - 119 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3539CD43
@Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E962FBDB
@Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E5F8E280
@Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D994162E
@Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D055FC10
@Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:BD8C785E
@Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:BBA245E5
@Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A4BF246C
@Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:9446E8B9
@Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3C75E5BE
@Alternate Data Stream - 117 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:FED25C29
@Alternate Data Stream - 117 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CBEB737E
@Alternate Data Stream - 117 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:81F83028
@Alternate Data Stream - 117 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:817F0659
@Alternate Data Stream - 117 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4B1195DD
@Alternate Data Stream - 117 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0F0A5896
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D61069DE
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A05F750A
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:89C22C79
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:87FA5E8A
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7881FECE
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7547DA5B
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:700CD00E
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:680086AB
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:62E437EB
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4C49306C
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3790BACD
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:072F1F69
@Alternate Data Stream - 115 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:FFA09FC6
@Alternate Data Stream - 115 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CE7C61DF
@Alternate Data Stream - 115 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7F66BF58
@Alternate Data Stream - 115 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:76BE9842
@Alternate Data Stream - 115 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4249A835
@Alternate Data Stream - 115 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:273A8657
@Alternate Data Stream - 115 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:12D9D48F
@Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E54FA796
@Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DF3CC840
@Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CF61CE5A
@Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C9FD258B
@Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:84415AE8
@Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:72E546C1
@Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:55374FBA
@Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4673E9EA
@Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:20FFCF0B
@Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:1CE87230
@Alternate Data Stream - 114 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:1880E7FA
@Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:AFFC859A
@Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:ABC43604
@Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A0A7408F
@Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:848CC150
@Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:47A24D4B
@Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:35C78DCC
@Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:2B1EA607
@Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:27D664B8
@Alternate Data Stream - 113 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:12EA4DC9
@Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:EC9787B3
@Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E40EED9B
@Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C8EC0F43
@Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:BDCD0530
@Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A6CDBCAC
@Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A02025CE
@Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:9F50A55A
@Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:96C05DC7
@Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:76986D86
@Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:6FE17A89
@Alternate Data Stream - 111 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C22674B6
@Alternate Data Stream - 111 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A4F0E644
@Alternate Data Stream - 111 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8BB2EC84
@Alternate Data Stream - 111 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:737160C1
@Alternate Data Stream - 111 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:70F0A2F4
@Alternate Data Stream - 111 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5C826C73
@Alternate Data Stream - 111 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:569CEE83
@Alternate Data Stream - 111 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:551E1CB4
@Alternate Data Stream - 111 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:443268A9
@Alternate Data Stream - 111 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3C282BEA
@Alternate Data Stream - 111 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:204C7BBB
@Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:69329C29
@Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3B3A35EC
@Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:331B76C7
@Alternate Data Stream - 110 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:25005EFA
@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D936299C
@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D92485C9
@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C07A6A6B
@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:AD727397
@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:741CA49D
@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:627B7F7C
@Alternate Data Stream - 109 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:2D0C22DC
@Alternate Data Stream - 108 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DE892EFB
@Alternate Data Stream - 108 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D48500F8
@Alternate Data Stream - 108 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:D1D597D0
@Alternate Data Stream - 108 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:CB52BE62
@Alternate Data Stream - 108 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C472D998
@Alternate Data Stream - 108 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A23D24E7
@Alternate Data Stream - 108 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:9398DBB4
@Alternate Data Stream - 108 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:870EB3F5
@Alternate Data Stream - 108 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7A0EFE63
@Alternate Data Stream - 108 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:63F8EC77
@Alternate Data Stream - 108 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:48372097
@Alternate Data Stream - 108 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:37CE0F2E
@Alternate Data Stream - 108 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3447AB86
@Alternate Data Stream - 107 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:EEB25EAE
@Alternate Data Stream - 107 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:9726EA15
@Alternate Data Stream - 107 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8F99E623
@Alternate Data Stream - 107 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:7624E8B8
@Alternate Data Stream - 107 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:49EB0FDC
@Alternate Data Stream - 107 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:49AC9A9A
@Alternate Data Stream - 107 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:30376ACC
@Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E02A4437
@Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A6346EE9
@Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:55818279
@Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4F60ACF1
@Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4E6B8D68
@Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:491EFB75
@Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:13AA281B
@Alternate Data Stream - 106 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0AC32449
@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:FE9F7F81
@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:FC8FFA4E
@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:EE39C93C
@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E90251A2
@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:E32966C0
@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:C0A9D0E7
@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:BCD2C50C
@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A42A9F39
@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:74699137
@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:663B62CA
@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:51E1A4D8
@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:4A1628E5
@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3C9CF9A7
@Alternate Data Stream - 105 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:18AE7C5A
@Alternate Data Stream - 104 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A31B5E9B
@Alternate Data Stream - 104 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:997E6AF4
@Alternate Data Stream - 104 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:842B0AED
@Alternate Data Stream - 104 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:53DF59D1
@Alternate Data Stream - 104 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3E06C78F
@Alternate Data Stream - 104 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:05816AFA
@Alternate Data Stream - 103 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B0193F8E
@Alternate Data Stream - 103 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A91EC54E
@Alternate Data Stream - 103 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:406E1738
@Alternate Data Stream - 103 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:00190653
@Alternate Data Stream - 102 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B6DD2C7E
@Alternate Data Stream - 102 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B2735F9E
@Alternate Data Stream - 102 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:9E3E060F
@Alternate Data Stream - 102 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8DF68137
@Alternate Data Stream - 102 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:3D36932D
@Alternate Data Stream - 101 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:FDDD8917
@Alternate Data Stream - 101 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:B12D1A7D
@Alternate Data Stream - 101 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:9DF07E8F
@Alternate Data Stream - 101 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:98AE08EA
@Alternate Data Stream - 101 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:89C7D132
@Alternate Data Stream - 101 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8344D5B2
@Alternate Data Stream - 101 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5D351BC6
@Alternate Data Stream - 101 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:453190EC
@Alternate Data Stream - 101 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:1DEE6B65
@Alternate Data Stream - 100 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:A688EF17
@Alternate Data Stream - 100 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:90865A6D
@Alternate Data Stream - 100 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8BA6C9F8
@Alternate Data Stream - 100 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:8AA99C0C
@Alternate Data Stream - 100 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0E684AC9
:files

:commands
[emptytemp]
[emptyflash]
[createrestorepoint]
[resethosts]
[reboot]
  • Clique ensuite sur Correction et laisse l'outil travailler.
  • Poste le contenu du nouveau rapport.

Télécharge et installe Malwarebyte's Anti-Malware

  • A la fin de l'installation, coche Mettre à jour Malwarebytes' Anti-Malware si ce n'est déjà fait.
  • Clique sur "Terminer".
  • Lance MBAM en double-cliquant sur l'icône sur le Bureau.
  • Au premier lancement, une fenêtre t'annonce que la version est Free. Clique alors sur ok.
  • Les Mises à jour se téléchargent, patiente.
  • Lance Malwarebyte's Anti-Malware.
  • Choisis ceci Onglet "Recherche". Coche Exécuter un examen complet puis Rechercher.
  • Sélectionne ton disque dur et clique clic sur "lancer l'examen".
  • A la fin du scan, clique sur Afficher les résultats.
  • Suppression des éléments détectés : Clique sur Supprimer la sélection.
  • Si un redémarrage est demandé, clique sur "Yes".
  • Un rapport de scan s'ouvre, poste le rapport.
  • Si tu as besoin d'aide, rends-toi ici : https://forum.pcastuces.com/malwarebytes_antimalwares___tutoriel-f31s3.htm



Modifié par no.ppp le 05/07/2010 22:21
clem3321
 Posté le 05/07/2010 à 23:20 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Petite astucienne

All processes killed
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\KernelFaultCheck deleted successfully.
C:\WINDOWS\msdownld.tmp folder deleted successfully.
C:\WINDOWS\SET29.tmp deleted successfully.
C:\WINDOWS\SET3.tmp deleted successfully.
C:\WINDOWS\SET4.tmp deleted successfully.
C:\WINDOWS\SET8.tmp deleted successfully.
C:\WINDOWS\System32\CONFIG.TMP deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:2BC498A4 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:07536DA3 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:7E927D7D deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:45FE2B4E deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:4363DE71 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:164FA86E deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:FC4EA67C deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:A411DD58 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:8BB7AE6E deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:52E3B819 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:D708EEF9 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:94D41096 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:8140CB50 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:52B72A7C deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:5A99DEB7 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:B2CD146E deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:975EDE2B deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:2032CC2B deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:54ECDCF4 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:23B59626 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:4B49E3BC deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:DE38CB5F deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:CBCE0A92 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:CAF8DAC8 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:A93CBF2B deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:902B6A44 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:6E11933F deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:6CFD36EA deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:A00BCDEF deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:88C0A705 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:3780BCC3 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:E1F04E8D deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:B83BF1A6 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:93D985FC deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:816255C3 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:F8F070C2 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:CF1334B0 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:A18121AD deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:9B0F9E15 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:69AF9D20 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:14168AA3 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:908A1B53 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:4C745529 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:42A3BDD7 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:E14FA16F deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:DB0CD29E deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:DAFD38AE deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:C40E212B deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:016C09C5 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:F878F14A deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:AC73CDCE deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:953FDC1A deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:41B89F80 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:2E0A3B1D deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:0F38B460 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:F0A06891 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:EA10407C deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:E7C9DAAE deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:FEEEFFAD deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:EDC744FB deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:EBE4F6FC deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:B54102AD deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:7FCB9D0D deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:79F970BE deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:DA18D4E3 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:C24B973A deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:74BB299D deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:73461BFA deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:71F04C26 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:551BED5F deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:3AE22B1A deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:32A82570 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:178093AE deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:13B137AF deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:AAA9C7BF deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:A7B70C4E deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:7E100A8C deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:7079A696 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:6E86D926 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:523B97A0 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:35A821F5 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:04893BD0 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:EA701346 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:87452B14 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:F9E46E4C deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:DF5BAC78 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:DC21D414 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:D05E7A8B deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:C35B4B19 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:700B9342 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:6F0B6A5A deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:69EC5FA7 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:50A11A00 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:F986CC21 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:F880DE59 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:E6A84C9D deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:8EEE3BBB deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:5E413CD6 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:4A448DB2 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:413E2927 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:38849DE5 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:37F44C44 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:940ECC98 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:471AD3D0 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:1AF93AF4 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:147A3409 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:11EFE63D deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:058A7351 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:03D08225 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:D390A6A7 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:A724744F deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:81ED9272 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:5EBA4934 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:0E341035 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:DD3F5AF4 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:CF6A6C8A deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:C6D0ABC3 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:B5E5C967 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:84499DA6 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:48F0FFF8 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:3D186293 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:2FF4577A deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:0EE601C7 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:0EC7A545 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:0860D6D6 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:FDCAE7B5 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:E33D6212 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:DF0BC727 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:BD9F7E4E deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:B3B92717 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:8FBE0E9C deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:6A16A184 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:68DA8CC0 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:53DF4438 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:28CDD861 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:02B823FE deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:FF9C44FE deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:EC7C9796 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:E774F04D deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:93226FE3 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:561B1D2B deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:5025C6E4 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:4D7FCCD3 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:3FC4A10A deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:002640E3 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:FF818E2B deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:E8CB831A deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:E732B44B deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:E41267F2 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:DE6EED8B deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:B8384DB6 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:9C504A4D deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:7B52659E deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:71FA8B7F deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:62197B73 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:5E9B629B deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:5466F106 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:5345C8F6 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:206470A5 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:C482F8D4 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:AED33A42 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:AE78B77A deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:9B750A13 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:814B9485 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:6D4F7F2B deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:5B09C4D9 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:596E2371 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:4F58D818 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:393F7B1E deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:3612C9BE deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:2871B698 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:1A4BF204 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:101708D3 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:0DFE2AE1 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:F14D1F80 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:E51234A9 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:B894C266 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:AA60673F deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:98982C88 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:8CCDAB14 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:6DD87D86 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:6CBAF5F3 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:50636E35 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:48529647 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:226A6E31 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:078B239B deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:DCF7E75A deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:D3A8AA31 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:D2A5A561 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:C611D6C8 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:B845F669 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:B64F7263 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:A1B23042 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:896E1EFF deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:7A0FEE87 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:57176330 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:39C7B7C6 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:1DECED1B deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:00811B66 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:FF8F1AE3 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:D9F6664C deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:D31BE97C deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:D226F1A4 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:988216DA deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:8A9C3AF2 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:7E082023 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:74091520 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:6C08335F deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:61F0C8FB deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:5AE33054 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:517B507A deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:30C46519 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:2D7D575C deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:2AFE7797 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:128A6DC9 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:094B2B4C deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:090FB735 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:CDFF58FE deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:C928F3BE deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:B904C348 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:B6FA1F20 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:A5FC8FA1 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:95B7F1EC deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:8DCF53BE deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:708BB0FA deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:68B61847 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:5B3A4EC2 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:3815BC84 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:3651A580 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:2CDB9CA3 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:2A5BC0A9 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:275AA066 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:1941675B deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:0D52F295 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:0C167A8C deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:EB40BC91 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:DFC179F0 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:D26DD363 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:B30D9A49 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:B0EB578B deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:A7DA2BCD deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:971DCCE2 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:90E3641D deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:8ADA53F6 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:7DFDF9DF deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:7CEDF9F3 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:33384BC0 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:D8F9D810 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:B4980368 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:ADF0A5DD deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:981349EA deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:89C28CF6 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:89123481 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:60C897F3 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:405D842B deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:27F44544 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:E945C214 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:E8435752 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:E764BA3E deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:D226A81A deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:BFBB0142 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:ABE89FFE deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:97AB2056 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:7C60A173 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:70E897B5 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:614F17D3 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:4A2862FF deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:41099CE9 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:3B5038B1 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:3AED98EA deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:17F7AEA3 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:FC336C22 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:CEE4A457 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:BB71BBA2 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:A3B8F70C deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:918B7566 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:7AF9CAEB deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:588B60C7 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:4D066AD2 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:38317199 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:370E4EFB deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:3539CD43 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:E962FBDB deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:E5F8E280 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:D994162E deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:D055FC10 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:BD8C785E deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:BBA245E5 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:A4BF246C deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:9446E8B9 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:3C75E5BE deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:FED25C29 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:CBEB737E deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:81F83028 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:817F0659 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:4B1195DD deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:0F0A5896 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:D61069DE deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:A05F750A deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:89C22C79 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:87FA5E8A deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:7881FECE deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:7547DA5B deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:700CD00E deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:680086AB deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:62E437EB deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:4C49306C deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:3790BACD deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:072F1F69 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:FFA09FC6 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:CE7C61DF deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:7F66BF58 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:76BE9842 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:4249A835 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:273A8657 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:12D9D48F deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:E54FA796 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:DF3CC840 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:CF61CE5A deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:C9FD258B deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:84415AE8 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:72E546C1 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:55374FBA deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:4673E9EA deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:20FFCF0B deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:1CE87230 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:1880E7FA deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:AFFC859A deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:ABC43604 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:A0A7408F deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:848CC150 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:47A24D4B deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:35C78DCC deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:2B1EA607 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:27D664B8 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:12EA4DC9 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:EC9787B3 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:E40EED9B deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:C8EC0F43 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:BDCD0530 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:A6CDBCAC deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:A02025CE deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:9F50A55A deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:96C05DC7 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:76986D86 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:6FE17A89 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:C22674B6 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:A4F0E644 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:8BB2EC84 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:737160C1 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:70F0A2F4 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:5C826C73 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:569CEE83 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:551E1CB4 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:443268A9 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:3C282BEA deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:204C7BBB deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:69329C29 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:3B3A35EC deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:331B76C7 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:25005EFA deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:D936299C deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:D92485C9 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:C07A6A6B deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:AD727397 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:741CA49D deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:627B7F7C deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:2D0C22DC deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:DE892EFB deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:D48500F8 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:D1D597D0 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:CB52BE62 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:C472D998 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:A23D24E7 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:9398DBB4 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:870EB3F5 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:7A0EFE63 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:63F8EC77 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:48372097 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:37CE0F2E deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:3447AB86 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:EEB25EAE deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:9726EA15 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:8F99E623 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:7624E8B8 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:49EB0FDC deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:49AC9A9A deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:30376ACC deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:E02A4437 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:A6346EE9 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:55818279 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:4F60ACF1 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:4E6B8D68 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:491EFB75 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:13AA281B deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:0AC32449 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:FE9F7F81 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:FC8FFA4E deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:EE39C93C deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:E90251A2 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:E32966C0 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:C0A9D0E7 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:BCD2C50C deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:A42A9F39 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:74699137 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:663B62CA deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:51E1A4D8 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:4A1628E5 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:3C9CF9A7 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:18AE7C5A deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:A31B5E9B deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:997E6AF4 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:842B0AED deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:53DF59D1 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:3E06C78F deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:05816AFA deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:B0193F8E deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:A91EC54E deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:406E1738 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:00190653 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:B6DD2C7E deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:B2735F9E deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:9E3E060F deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:8DF68137 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:3D36932D deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:FDDD8917 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:B12D1A7D deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:9DF07E8F deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:98AE08EA deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:89C7D132 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:8344D5B2 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:5D351BC6 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:453190EC deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:1DEE6B65 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:A688EF17 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:90865A6D deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:8BA6C9F8 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:8AA99C0C deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:0E684AC9 deleted successfully.
========== FILES ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrateur
->Temp folder emptied: 11691102485 bytes
->Temporary Internet Files folder emptied: 120933131 bytes
->Java cache emptied: 6553845 bytes
->FireFox cache emptied: 38193478 bytes
->Google Chrome cache emptied: 10262723 bytes
->Flash cache emptied: 216388 bytes

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: LocalService
->Temp folder emptied: 65984 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 65563504 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 74432358 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 11 451,00 mb


[EMPTYFLASH]

User: Administrateur
->Flash cache emptied: 0 bytes

User: All Users

User: Default User

User: LocalService

User: NetworkService

Total Flash Files Cleaned = 0,00 mb

Restore point Set: OTL Restore Point (0)
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

OTL by OldTimer - Version 3.2.7.1 log created on 07052010_225918

Files\Folders moved on Reboot...
C:\WINDOWS\temp\Perflib_Perfdata_548.dat moved successfully.

Registry entries deleted on Reboot...

no.ppp
 Posté le 05/07/2010 à 23:53 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Astucien

Salut,

J'attends la suite

clem3321
 Posté le 06/07/2010 à 02:02 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Petite astucienne

Voici le rapport après une analyse avec Malwarebytes'Antimalwares:

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Version de la base de données: 4281

Windows 5.1.2600 Service Pack 2
Internet Explorer 6.0.2900.2180

06/07/2010 01:59:55
mbam-log-2010-07-06 (01-59-55).txt

Type d'examen: Examen complet (C:\|)
Elément(s) analysé(s): 233375
Temps écoulé: 2 heure(s), 32 minute(s), 30 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 3
Valeur(s) du Registre infectée(s): 1
Elément(s) de données du Registre infecté(s): 4
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 16

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1a93c934-025b-4c3a-b38e-9654a7003239} (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6f282b65-56bf-4bd1-a8b2-a4449a05863d} (Adware.Gamesbar) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\fcn (Rogue.Residue) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{b7d3e479-cc68-42b5-a338-938ece35f419} (Adware.Softomate) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSMHelp (Hijack.Help) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
C:\Documents and Settings\Administrateur\Mes documents\telechargement\3DaysZooMystery_dwn.exe (Adware.Fenomen) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Mes documents\telechargement\CLUEAccusationsandAlibis_dwn.exe (Adware.Fenomen) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Mes documents\telechargement\DinerTownTycoon_dwn.exe (Adware.Fenomen) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Mes documents\telechargement\DreamDayWedding_dwn.exe (Adware.Fenomen) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Mes documents\telechargement\EscapeFromParadise_dwn(2).exe (Adware.Fenomen) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Mes documents\telechargement\EscapeFromParadise_dwn.exe (Adware.Fenomen) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Mes documents\telechargement\FlowerParadise_dwn.exe (Adware.Fenomen) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Mes documents\telechargement\GoldMinerVegas_dwn.exe (Adware.Fenomen) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Mes documents\telechargement\MagicFarmtheUltimateFlower_dwn.exe (Adware.Fenomen) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Mes documents\telechargement\MyFarm_dwn.exe (Adware.Fenomen) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Mes documents\telechargement\MysteryStoriesIslandofHope_dwn.exe (Adware.Fenomen) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Mes documents\telechargement\PlanItGreen_dwn.exe (Adware.Fenomen) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Mes documents\telechargement\PocahontasPrincessofthePowhatan_dwn.exe (Adware.Fenomen) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Mes documents\telechargement\VirtualFamilies_dwn.exe (Adware.Fenomen) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrateur\Mes documents\telechargement\WinemakerExtraordinaire_dwn.exe (Adware.Fenomen) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\Crypt.dll (Hacktool) -> Quarantined and deleted successfully.

Publicité
no.ppp
 Posté le 06/07/2010 à 10:36 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Astucien

Salut,

Désinstalle Avast! moins performant qu'AntiVir : http://www.avast.com/fr-fr/uninstall-utility

Installe AntiVir : http://www.libellules.ch/tuto_antivir.php

Lance un scan et copie-colle le rapport.

clem3321
 Posté le 06/07/2010 à 12:14 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Petite astucienne

Bonjour,

Vous faîtes comment pour enlever la protection d'Avast. J'ai chercher dans son programme et je n'ai pas trouver. Quant à redémarrer en mode sans echec. je ne sais pas faire.

Merci.

no.ppp
 Posté le 06/07/2010 à 12:16 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Astucien

Salut,

Clique-droit sur l'icône d'Avast! et tu dois avoir un truc genre Quitter ou Arrêter les protections résidentes.

clem3321
 Posté le 06/07/2010 à 12:37 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Petite astucienne

J'ai bien l'enlever la protection mais il ne veut pas me demarrer aswclear5.exe. Qu'est-ce que je fais?

no.ppp
 Posté le 06/07/2010 à 12:41 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Astucien

Un message d'erreur ?

clem3321
 Posté le 06/07/2010 à 12:46 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Petite astucienne

OUI:

The avast! self protection is enabled. For this reason, the operation can not completed.

To complete this operation, either run this program from windows safe mode, or disable the avast! protection (via settings troubles shooting page)

no.ppp
 Posté le 06/07/2010 à 12:51 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Astucien

Re,

Bon, redémarre en mode sans échec, tu tapotes F8 au démarrage de ton PC. Attention, tu dois avoir téléchargé le fichier au préalable, tu n'as pas de connexion dans ce mode.

clem3321
 Posté le 06/07/2010 à 15:56 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Petite astucienne



Avira AntiVir Personal
Date de création du fichier de rapport : mardi 6 juillet 2010 13:44

La recherche porte sur 2298039 souches de virus.

Détenteur de la licence :Avira AntiVir Personal - FREE Antivirus
Numéro de série : 0000149996-ADJIE-0000001
Plateforme : Windows XP
Version de Windows :(Service Pack 2) [5.1.2600]
Mode Boot : Démarré normalement
Identifiant : SYSTEM
Nom de l'ordinateur :XPSP2PRO

Informations de version :
BUILD.DAT : 8.2.0.62 17752 Bytes 23/10/2009 13:16:00
AVSCAN.EXE : 8.1.4.10 315649 Bytes 18/11/2008 07:21:00
AVSCAN.DLL : 8.1.4.1 49921 Bytes 21/07/2008 12:44:27
LUKE.DLL : 8.1.4.5 164097 Bytes 12/06/2008 11:44:16
LUKERES.DLL : 8.1.4.0 13057 Bytes 04/07/2008 06:30:27
ANTIVIR0.VDF : 7.10.0.0 19875328 Bytes 06/11/2009 11:23:13
ANTIVIR1.VDF : 7.10.7.224 11894128 Bytes 02/06/2010 11:23:35
ANTIVIR2.VDF : 7.10.9.6 1584544 Bytes 04/07/2010 11:23:40
ANTIVIR3.VDF : 7.10.9.14 89088 Bytes 06/07/2010 11:37:46
Version du moteur: 8.2.4.2
AEVDF.DLL : 8.1.2.0 106868 Bytes 06/07/2010 11:23:54
AESCRIPT.DLL : 8.1.3.33 1356155 Bytes 06/07/2010 11:23:53
AESCN.DLL : 8.1.6.1 127347 Bytes 06/07/2010 11:23:52
AESBX.DLL : 8.1.3.1 254324 Bytes 06/07/2010 11:23:51
AERDL.DLL : 8.1.4.6 541043 Bytes 06/07/2010 11:23:50
AEPACK.DLL : 8.2.2.5 430453 Bytes 06/07/2010 11:23:49
AEOFFICE.DLL : 8.1.1.0 201081 Bytes 06/07/2010 11:23:48
AEHEUR.DLL : 8.1.1.38 2724214 Bytes 06/07/2010 11:23:47
AEHELP.DLL : 8.1.11.6 242038 Bytes 06/07/2010 11:23:44
AEGEN.DLL : 8.1.3.12 377204 Bytes 06/07/2010 11:23:43
AEEMU.DLL : 8.1.2.0 393588 Bytes 06/07/2010 11:23:42
AECORE.DLL : 8.1.15.3 192886 Bytes 06/07/2010 11:23:42
AEBB.DLL : 8.1.1.0 53618 Bytes 06/07/2010 11:23:41
AVWINLL.DLL : 1.0.0.12 15105 Bytes 09/07/2008 07:40:02
AVPREF.DLL : 8.0.2.0 38657 Bytes 16/05/2008 08:27:58
AVREP.DLL : 8.0.0.7 159784 Bytes 06/07/2010 11:23:41
AVREG.DLL : 8.0.0.1 33537 Bytes 09/05/2008 10:26:37
AVARKT.DLL : 1.0.0.23 307457 Bytes 12/02/2008 07:29:19
AVEVTLOG.DLL : 8.0.0.16 119041 Bytes 12/06/2008 11:27:46
SQLITE3.DLL : 3.3.17.1 339968 Bytes 22/01/2008 16:28:02
SMTPLIB.DLL : 1.2.0.23 28929 Bytes 12/06/2008 11:49:36
NETNT.DLL : 8.0.0.1 7937 Bytes 25/01/2008 11:05:07
RCIMAGE.DLL : 8.0.0.51 2371841 Bytes 04/07/2008 06:23:16
RCTEXT.DLL : 8.0.52.1 86273 Bytes 17/07/2008 09:08:43

Configuration pour la recherche actuelle :
Nom de la tâche..................: Contrôle intégral du système
Fichier de configuration.........: C:\Program Files\Avira\AntiVir PersonalEdition Classic\sysscan.avp
Documentation....................: bas
Action principale................: interactif
Action secondaire................: ignorer
Recherche sur les secteurs d'amorçage maître: marche
Recherche sur les secteurs d'amorçage: marche
Secteurs d'amorçage..............: C:,
Recherche dans les programmes actifs: marche
Recherche en cours sur l'enregistrement: marche
Recherche de Rootkits............: arrêt
Fichier mode de recherche........: Sélection de fichiers intelligente
Recherche sur les archives.......: marche
Limiter la profondeur de récursivité: 20
Archive Smart Extensions.........: marche
Heuristique de macrovirus........: marche
Heuristique fichier..............: moyen

Début de la recherche : mardi 6 juillet 2010 13:44

La recherche sur les processus démarrés commence :
Processus de recherche 'avscan.exe' - '1' module(s) sont contrôlés
Processus de recherche 'avcenter.exe' - '1' module(s) sont contrôlés
Processus de recherche 'hpqgpc01.exe' - '1' module(s) sont contrôlés
Processus de recherche 'wlcomm.exe' - '1' module(s) sont contrôlés
Processus de recherche 'hpqbam08.exe' - '1' module(s) sont contrôlés
Processus de recherche 'hpqste08.exe' - '1' module(s) sont contrôlés
Processus de recherche 'wuauclt.exe' - '1' module(s) sont contrôlés
Processus de recherche 'CPSHelpRunner.exe' - '1' module(s) sont contrôlés
Processus de recherche 'alg.exe' - '1' module(s) sont contrôlés
Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés
Processus de recherche 'RoxMediaDB9.exe' - '1' module(s) sont contrôlés
Processus de recherche 'skypePM.exe' - '1' module(s) sont contrôlés
Processus de recherche 'MsPMSPSv.exe' - '1' module(s) sont contrôlés
Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés
Processus de recherche 'SeaPort.exe' - '1' module(s) sont contrôlés
Processus de recherche 'RoxWatch9.exe' - '1' module(s) sont contrôlés
Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés
Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés
Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés
Processus de recherche 'avguard.exe' - '1' module(s) sont contrôlés
Processus de recherche 'hpqgalry.exe' - '1' module(s) sont contrôlés
Processus de recherche 'hpqtra08.exe' - '1' module(s) sont contrôlés
Processus de recherche 'FxSvr2.exe' - '1' module(s) sont contrôlés
Processus de recherche 'NMBgMonitor.exe' - '1' module(s) sont contrôlés
Processus de recherche 'Skype.exe' - '1' module(s) sont contrôlés
Processus de recherche 'ctfmon.exe' - '1' module(s) sont contrôlés
Processus de recherche 'msnmsgr.exe' - '1' module(s) sont contrôlés
Processus de recherche 'TOSCDSPD.exe' - '1' module(s) sont contrôlés
Processus de recherche 'avgnt.exe' - '1' module(s) sont contrôlés
Processus de recherche 'hpwuSchd2.exe' - '1' module(s) sont contrôlés
Processus de recherche 'realsched.exe' - '1' module(s) sont contrôlés
Processus de recherche 'issch.exe' - '1' module(s) sont contrôlés
Processus de recherche 'RoxWatchTray9.exe' - '1' module(s) sont contrôlés
Processus de recherche 'hpcmpmgr.exe' - '1' module(s) sont contrôlés
Processus de recherche 'LogiTray.exe' - '1' module(s) sont contrôlés
Processus de recherche 'LVCOMSX.EXE' - '1' module(s) sont contrôlés
Processus de recherche 'PadExe.exe' - '1' module(s) sont contrôlés
Processus de recherche 'SynTPEnh.exe' - '1' module(s) sont contrôlés
Processus de recherche 'SynTPLpr.exe' - '1' module(s) sont contrôlés
Processus de recherche 'explorer.exe' - '1' module(s) sont contrôlés
Processus de recherche 'ati2evxx.exe' - '1' module(s) sont contrôlés
Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés
Processus de recherche 'sched.exe' - '1' module(s) sont contrôlés
Processus de recherche 'spoolsv.exe' - '1' module(s) sont contrôlés
Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés
Processus de recherche 'acs.exe' - '1' module(s) sont contrôlés
Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés
Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés
Processus de recherche 'svchost.exe' - '1' module(s) sont contrôlés
Processus de recherche 'ati2evxx.exe' - '1' module(s) sont contrôlés
Processus de recherche 'lsass.exe' - '1' module(s) sont contrôlés
Processus de recherche 'services.exe' - '1' module(s) sont contrôlés
Processus de recherche 'winlogon.exe' - '1' module(s) sont contrôlés
Processus de recherche 'csrss.exe' - '1' module(s) sont contrôlés
Processus de recherche 'smss.exe' - '1' module(s) sont contrôlés
'55' processus ont été contrôlés avec '55' modules

La recherche sur les secteurs d'amorçage maître commence :
Secteur d'amorçage maître HD0
[INFO] Aucun virus trouvé !
Secteur d'amorçage maître HD1
[INFO] Aucun virus trouvé !
[AVERTISSEMENT] Erreur système [21]: Le périphérique n'est pas prêt.

La recherche sur les secteurs d'amorçage commence :
Secteur d'amorçage 'C:\'
[INFO] Aucun virus trouvé !

La recherche sur les renvois aux fichiers exécutables (registre) commence.
Le registre a été contrôlé ( '57' fichiers).


La recherche sur les fichiers sélectionnés commence :

Recherche débutant dans 'C:\'
C:\pagefile.sys
[AVERTISSEMENT] Impossible d'ouvrir le fichier !
C:\Documents and Settings\Administrateur\Mes documents\Ma musique\CarlaBruni\Carla_Bruni_-_Quelqu'un_m'a_dit_-_Full_Album_(Mp3_192_KB).ace
[0] Type d'archive: ACE
--> Carla BRUNI-09-Chanson triste.mp3
[AVERTISSEMENT] Aucun autre fichier n'a pu être décompressé de cette archive. L'archive est refermée.
C:\Documents and Settings\Administrateur\Mes documents\telechargement\EscapeSetup.exe
[0] Type d'archive: NSIS
--> Settings/stg_drm.dll
[RESULTAT] Contient le code suspect : HEUR/Malware
[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c961fd2.qua' !
C:\Documents and Settings\Administrateur\Mes documents\telechargement\favoritnetworkremover_20091201120458s.exe
[RESULTAT] Contient le modèle de détection du virus ADWARE/Adware.Gen
[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4ca92011.qua' !
C:\Documents and Settings\Administrateur\Mes documents\telechargement\Westward3GoldRush_dwn.exe
[RESULTAT] Contient le cheval de Troie TR/Agent.1256585
[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4ca62760.qua' !
C:\System Volume Information\_restore{E04CB4DE-E9B3-4049-809F-AD67175CF81E}\RP664\A0079548.dll
[RESULTAT] Contient le cheval de Troie TR/Trash.Gen
[REMARQUE] Le fichier a été déplacé dans le répertoire de quarantaine sous le nom '4c63324f.qua' !


Fin de la recherche : mardi 6 juillet 2010 15:52
Temps nécessaire: 2:08:15 Heure(s)

La recherche a été effectuée intégralement

16407 Les répertoires ont été contrôlés
624724 Des fichiers ont été contrôlés
3 Des virus ou programmes indésirables ont été trouvés
1 Des fichiers ont été classés comme suspects
0 Des fichiers ont été supprimés
0 Des virus ou programmes indésirables ont été réparés
4 Les fichiers ont été déplacés dans la quarantaine
0 Les fichiers ont été renommés
1 Impossible de contrôler des fichiers
624719 Fichiers non infectés
13035 Les archives ont été contrôlées
3 Avertissements
4 Consignes

Publicité
no.ppp
 Posté le 06/07/2010 à 16:13 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Astucien

C'est OK avec ces dernières manip's :super:

Image IPB Je t'invite à lire ceci :



------------------------------------------------------------------------------------------­­-------------------------

Image IPB Suppression des points de restauration :



------------------------------------------------------------------------------------------­­-------------------------

Image IPB Suppression des outils utilisés :
Relance OTL et clique sur Purge Outils.

------------------------------------------------------------------------------------------­­-------------------------

Image IPB Télécharge Ccleaner :

  • Clique sur le premier Download now > Choisis la version Slim
  • Installe CCleaner.
  • Nettoie Windows et la base de registre en suivant ce tuto :


Tutorial CCleaner

------------------------------------------------------------------------------------------­­-------------------------


Image IPB N'oublie pas que la sécurité de ton PC, c'est toi qui l'a fait, évite le P2P, les cracks, les sites à risques.
Ne sois pas un fou du clic et réfléchis avant de cliquer sur tel ou tel lien. :super:
Un antivirus et un pare-feu ne font pas tout. Tu restes le seul maître de ton PC.


------------------------------------------------------------------------------------------­­-------------------------


Image IPB Passe ton sujet en résolu

clem3321
 Posté le 06/07/2010 à 17:15 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Petite astucienne

j'ai effectué une analyse des fichiers à effacer avec CCleaner et il met dans la liste un programme comme real player SP. Je m'en sers pour lire des fichiers audio et video qui s'ouvrent avec ce programme. Qu'en passez-vous?

clem3321
 Posté le 06/07/2010 à 17:29 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Petite astucienne

il me met egalement dans la liste Windows live messenger. Désolée, je suis nulle en informatique. Je pensais que CCleaner m'aiderait à supprimer jeux telechargés par exemple

no.ppp
 Posté le 06/07/2010 à 20:56 
Aller en bas de la page Revenir au message précédent Revenir en haut de la page
Astucien

Salut,

J'ai rien compris {#}

Page : [1] 
Page 1 sur 1

Vous devez être connecté pour poster des messages. Cliquez ici pour vous identifier.

Vous n'avez pas de compte ? Créez-en un gratuitement !


Les bons plans du moment PC Astuces

Tous les Bons Plans
7,99 €Lot de 4 Piles Duracell Rechargeables type AA 2500mAh à 7,99 €
Valable jusqu'au 12 Avril

Amazon fait une promotion sur le lot de 4 Piles Duracell Rechargeables type AA 2500mAh à 7,99 €. CCes piles sont garanties 5 ans, elles sont pré-chargées, prètes à l'emploi, peuvent être rechargées jusqu'à 100 fois avec n'importe quel chargeur NiMH comme celui-ci (jusqu'à 8 piles AA/AAA et 2 USB).


> Voir l'offre
79,99 €Disque dur externe Western Digital My Passport 2 To + Clé USB 3.0 Sandisk 16 Go + Housse à 79,99 €
Valable jusqu'au 11 Avril

La Fnac fait une promotion sur un pack comprenant un disque dur externe Western Digital My Passport 2 To, un clé USB 3.0 Sandisk 16 Go ainsi qu'une housse à 79,99 € au lieu de 99,99 €.


> Voir l'offre
Gratuit3 mois d'abonnement à Amazon Music Unlimited gratuits
Valable jusqu'au 11 Avril

Amazon vous permet d'essayer son service de streaming musical pendant 3 mois gratuitement. Avec Amazon Music Unlimited, accédez à plus de 50 millions de titres, sans publicité et en illimité sur tous vos appareils : smartphone, tablette, PC/Mac, Fire, Alexa. Vous avez même la possibilité de télécharger vos playlists pour des écoutes hors connexion. A la fin de ces 3 mois, vous pourrez basculer vers l'offre payante à 9,99 € / mois ou bien arrêter sans frais le service. A noter l'existence d'une offre famille à 14,99 € / mois qui permet jusqu'à 6 utilisateurs d'écouter leur musique à tout moment et sur leurs appareils préférés. Vous pouvez annuler l'abonnement à tout moment.


> Voir l'offre

Sujets relatifs
fraud.virus remover 2009
Virus Remover 2009
infection par virus remover 2009
Infection W3i.IQ5.fraud et autres virus ...
ERREUR 1316 et virus HTLM FRAUD G
Virus W31.1.Q5.fraud
Norton Anti-Virus 2010 élu produit de l'année 2009
Comparatif anti-virus Aout 2009
advence virus remover
PC Security Test 2009 9.0.6 - Virus ?
Plus de sujets relatifs à Fraud.virus remover 2009
 > Tous les forums > Forum Sécurité