Programme impossible à supprimer

Salut,

• Télécharge Random's System Information Tool (RSIT) (par random/random) sur ton Bureau.
• Double-clique sur RSIT.exe afin de lancer le programme.
• Clique sur Continue à l'écran Disclaimer.
• Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
• Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (c'est celui qui apparaît à l'écran) ainsi que de info.txt (que tu verras dans la barre des tâches).

Note : les rapports sont sauvegardés dans le dossier C:\rsit\.

C'est pour voir des choses que tu n'as peut-être pas vu.

et info.txt:

info.txt logfile of random's system information tool 1.05 2009-02-25 19:32:17

======Uninstall list======

-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Flash Player 9 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete
Adobe Flash Player ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 8.1.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81300000003}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
ASUS Enhanced Display Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{315ACD04-BCEB-478B-9B1D-5431D0E6CB11}\setup.exe" -l0x40c -removeonly
Cener Connector V1-->MsiExec.exe /I{8B4BE99C-9887-43D3-AA9A-641A07DBDD53}
eMule-->"D:\Program Files\eMule\Uninstall.exe"
EPSON Logiciel imprimante-->C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\EPUPDATE.EXE /R
EPSON Scan-->C:\Program Files\epson\escndv\setup\setup.exe /r
FINAL FANTASY XI: Chains of Promathia-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{A9110D4F-86DC-46DC-A1E6-097692C2D2FF}
FINAL FANTASY XI: Les guerriers de la Déesse-->C:\Program Files\InstallShield Installation Information\{19451766-07CE-4A79-9A6A-61FC0395C319}\setup.exe -runfromtemp -l0x040c
FINAL FANTASY XI: Rise of the Zilart-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{A4CC41E4-2AED-448D-9D1C-61EB028C2C6D}
FINAL FANTASY XI: Treasures of Aht Urhgan-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{1EB8607F-C1F8-476E-9D54-AFD8CDA09B6B}
FINAL FANTASY XI-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{45105F2B-0294-4354-A92A-5D1F575E24A5}
GenoPro 2.0.1.6-->D:\Program Files\GenoPro\Uninstall.exe
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
ImgBurn 2.3.2.0 Fr-->"D:\Program Files\ImgBurn\unins000.exe"
Java(TM) 6 Update 11-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Jewel Quest 2 Deluxe-->"C:\Program Files\Zylom Games\Jewel Quest 2 Deluxe\GameInstlr.exe" --uninstall UnInstall.log
K-Lite Mega Codec Pack 1.59-->"d:\Program Files\K-Lite Codec Pack\unins000.exe"
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE}
Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
Microsoft Office Professional Plus 2007-->"C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL
Microsoft Office Professional Plus 2007-->MsiExec.exe /X{90120000-0011-0000-0000-0000000FF1CE}
Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}
Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)-->"C:\WINDOWS\$NtUninstallKB925398_WMP64$\spuninst\spuninst.exe"
Mozilla Firefox (3.0.6)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSXML 4.0 SP2 (KB925672)-->MsiExec.exe /I{A9CF9052-F4A0-475D-A00F-A8388C62DD63}
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 6.0 Parser (KB927977)-->MsiExec.exe /I{025B7033-5D4A-4B72-A1C2-84BE4BE2F72F}
NVIDIA Drivers-->C:\WINDOWS\system32\nvudisp.exe UninstallGUI
OpenOffice.org 3.0-->MsiExec.exe /I{6860B340-530D-46B3-91F8-1AE1F70F7C33}
Orange - Logiciels Internet-->C:\Program Files\OrangeHSS\installation\core\Installgui.exe -u
PDFCreator-->D:\Program Files\PDFCreator\unins000.exe
PlayOnline Viewer and Tetra Master-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{A82B049B-14E7-4E0E-946D-024AC4050EF8}
Realtek High Definition Audio Driver-->RtlUpd.exe -r -m
Security Update for Microsoft .NET Framework 2.0 (KB917283)-->C:\WINDOWS\system32\msiexec.exe /promptrestart /uninstall {967B098A-042D-4367-BAC9-8BC11684174F} /package {7131646D-CD3C-40F4-97B9-CD9E4E6262EF}
Security Update pour Microsoft .NET Framework 2.0 (KB922770)-->C:\WINDOWS\system32\msiexec.exe /promptrestart /uninstall {0E92DD42-76F5-4EF2-B381-F9C1D72BE23D} /package {7131646D-CD3C-40F4-97B9-CD9E4E6262EF}
Skype 3.1-->"C:\Program Files\Skype\Phone\unins000.exe"
Skype Plugin Manager-->MsiExec.exe /I{3D5E5C0A-5B36-4F98-99A7-287F7DBDCE03}
Spybot - Search & Destroy-->"D:\Program Files\Spybot - Search & Destroy\unins000.exe"
USB PC Camera Plus-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{ECD03DA7-5952-406A-8156-5F0C93618D1F}\Setup.exe" -l0x40c
VideoLAN VLC media player 0.8.6c-->D:\Program Files\VideoLAN\VLC\uninstall.exe
Vuze-->D:\Program Files\Vuze\uninstall.exe
Windows Live Messenger-->MsiExec.exe /I{F6326B60-1B1D-4ABF-BFCD-7B7404F44411}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll

======Hosts File======

127.0.0.1 mpa.one.microsoft.com

System event log

Computer Name: ORKAS
Event Code: 4201
Message: Le système a détecté que la carte réseau \DEVICE\TCPIP_{FA76032D-60B7-4E6D-B2CD-1D99A590467B} était connectée au réseau,
et a lancé une opération normale sur la carte réseau.

Record Number: 10109
Source Name: Tcpip
Time Written: 20081122202905.000000+060
Event Type: Informations
User:

Computer Name: ORKAS
Event Code: 8033
Message: L'explorateur a forcé une élection sur le réseau \Device\NetBT_Tcpip_{FA76032D-60B7-4E6D-B2CD-1D99A590467B} car un maître explorateur a été arrêté.

Record Number: 10108
Source Name: BROWSER
Time Written: 20081122202835.000000+060
Event Type: Informations
User:

Computer Name: ORKAS
Event Code: 4202
Message: Le système a détecté que la carte réseau \DEVICE\TCPIP_{FA76032D-60B7-4E6D-B2CD-1D99A590467B} était déconnectée du réseau,
et la configuration réseau de la carte a été abandonnée. Si la carte
réseau n'était pas déconnectée, ceci peut indiquer un disfonctionnement.
Contactez le fabricant pour des pilotes mis à jour.

Record Number: 10107
Source Name: Tcpip
Time Written: 20081122202835.000000+060
Event Type: Informations
User:

Computer Name: ORKAS
Event Code: 4201
Message: Le système a détecté que la carte réseau \DEVICE\TCPIP_{FA76032D-60B7-4E6D-B2CD-1D99A590467B} était connectée au réseau,
et a lancé une opération normale sur la carte réseau.

Record Number: 10106
Source Name: Tcpip
Time Written: 20081122202341.000000+060
Event Type: Informations
User:

Computer Name: ORKAS
Event Code: 7036
Message: Le service Gestionnaire de connexion automatique d'accès distant est entré dans l'état : en cours d'exécution.

Record Number: 10105
Source Name: Service Control Manager
Time Written: 20081122201530.000000+060
Event Type: Informations
User:

Application event log

Computer Name: ORKAS
Event Code: 101
Message: wuauclt (220) Le moteur de base de données est arrêté.

Record Number: 10316
Source Name: ESENT
Time Written: 20090106125614.000000+060
Event Type: Informations
User:

Computer Name: ORKAS
Event Code: 103
Message: wuaueng.dll (220) SUS20ClientDataStore: Le moteur de base de données a arrêté une instance (0).

Record Number: 10315
Source Name: ESENT
Time Written: 20090106125614.000000+060
Event Type: Informations
User:

Computer Name: ORKAS
Event Code: 102
Message: wuaueng.dll (220) SUS20ClientDataStore: Le moteur de base de données a démarré une nouvelle instance (0).

Record Number: 10314
Source Name: ESENT
Time Written: 20090106125114.000000+060
Event Type: Informations
User:

Computer Name: ORKAS
Event Code: 100
Message: wuauclt (220) Le moteur de base de données 5.01.2600.2780 est démarré.

Record Number: 10313
Source Name: ESENT
Time Written: 20090106125114.000000+060
Event Type: Informations
User:

Computer Name: ORKAS
Event Code: 1047
Message: Windows ne peut pas lire l'historique des objets de paramètre de groupe à partir du Registre. Le traitement de la stratégie de groupe continue.

Record Number: 10312
Source Name: Userenv
Time Written: 20090106122752.000000+060
Event Type: erreur
User: AUTORITE NT\SYSTEM

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 95 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=5f02
"NUMBER_OF_PROCESSORS"=1
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"DEVMGR_SHOW_DETAILS"=1

-----------------EOF-----------------

Message édité par Destrio5.

Windows Orkas Ultimate est illégal.

• Télécharge OTMoveIt3 (OldTimer) sur ton Bureau.
• Branche tes sources de données externes à ton PC (clé USB, disque dur externe, carte SD, etc...) sans les ouvrir.
• Double-clique sur OTMoveIt3.exe afin de le lancer.
• Copie (Ctrl+C) le texte suivant ci-dessous :

• Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
• Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.

---> Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.

• Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\

---> Le nom du rapport correspond au moment de sa création : date_heure.log

• Refais un scan RSIT et poste le rapport log.

info.txt logfile of random's system information tool 1.05 2009-02-25 20:57:44

======Uninstall list======

-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Flash Player 9 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete
Adobe Flash Player ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 8.1.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81300000003}
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
ASUS Enhanced Display Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{315ACD04-BCEB-478B-9B1D-5431D0E6CB11}\setup.exe" -l0x40c -removeonly
Cener Connector V1-->MsiExec.exe /I{8B4BE99C-9887-43D3-AA9A-641A07DBDD53}
eMule-->"D:\Program Files\eMule\Uninstall.exe"
EPSON Logiciel imprimante-->C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\EPUPDATE.EXE /R
EPSON Scan-->C:\Program Files\epson\escndv\setup\setup.exe /r
FINAL FANTASY XI: Chains of Promathia-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{A9110D4F-86DC-46DC-A1E6-097692C2D2FF}
FINAL FANTASY XI: Les guerriers de la Déesse-->C:\Program Files\InstallShield Installation Information\{19451766-07CE-4A79-9A6A-61FC0395C319}\setup.exe -runfromtemp -l0x040c
FINAL FANTASY XI: Rise of the Zilart-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{A4CC41E4-2AED-448D-9D1C-61EB028C2C6D}
FINAL FANTASY XI: Treasures of Aht Urhgan-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{1EB8607F-C1F8-476E-9D54-AFD8CDA09B6B}
FINAL FANTASY XI-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{45105F2B-0294-4354-A92A-5D1F575E24A5}
GenoPro 2.0.1.6-->D:\Program Files\GenoPro\Uninstall.exe
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
ImgBurn 2.3.2.0 Fr-->"D:\Program Files\ImgBurn\unins000.exe"
Java(TM) 6 Update 11-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Jewel Quest 2 Deluxe-->"C:\Program Files\Zylom Games\Jewel Quest 2 Deluxe\GameInstlr.exe" --uninstall UnInstall.log
K-Lite Mega Codec Pack 1.59-->"d:\Program Files\K-Lite Codec Pack\unins000.exe"
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
Microsoft Office Access MUI (French) 2007-->MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
Microsoft Office Excel MUI (French) 2007-->MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (French) 2007-->MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE}
Microsoft Office Outlook MUI (French) 2007-->MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (French) 2007-->MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
Microsoft Office Professional Plus 2007-->"C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall PROPLUS /dll OSETUP.DLL
Microsoft Office Professional Plus 2007-->MsiExec.exe /X{90120000-0011-0000-0000-0000000FF1CE}
Microsoft Office Proof (Arabic) 2007-->MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
Microsoft Office Proof (Dutch) 2007-->MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (French) 2007-->MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
Microsoft Office Publisher MUI (French) 2007-->MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}
Microsoft Office Shared MUI (French) 2007-->MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
Microsoft Office Word MUI (French) 2007-->MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)-->"C:\WINDOWS\$NtUninstallKB925398_WMP64$\spuninst\spuninst.exe"
Mozilla Firefox (3.0.6)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSXML 4.0 SP2 (KB925672)-->MsiExec.exe /I{A9CF9052-F4A0-475D-A00F-A8388C62DD63}
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 6.0 Parser (KB927977)-->MsiExec.exe /I{025B7033-5D4A-4B72-A1C2-84BE4BE2F72F}
NVIDIA Drivers-->C:\WINDOWS\system32\nvudisp.exe UninstallGUI
OpenOffice.org 3.0-->MsiExec.exe /I{6860B340-530D-46B3-91F8-1AE1F70F7C33}
Orange - Logiciels Internet-->C:\Program Files\OrangeHSS\installation\core\Installgui.exe -u
PDFCreator-->D:\Program Files\PDFCreator\unins000.exe
PlayOnline Viewer and Tetra Master-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{A82B049B-14E7-4E0E-946D-024AC4050EF8}
Realtek High Definition Audio Driver-->RtlUpd.exe -r -m
Security Update for Microsoft .NET Framework 2.0 (KB917283)-->C:\WINDOWS\system32\msiexec.exe /promptrestart /uninstall {967B098A-042D-4367-BAC9-8BC11684174F} /package {7131646D-CD3C-40F4-97B9-CD9E4E6262EF}
Security Update pour Microsoft .NET Framework 2.0 (KB922770)-->C:\WINDOWS\system32\msiexec.exe /promptrestart /uninstall {0E92DD42-76F5-4EF2-B381-F9C1D72BE23D} /package {7131646D-CD3C-40F4-97B9-CD9E4E6262EF}
Skype 3.1-->"C:\Program Files\Skype\Phone\unins000.exe"
Skype Plugin Manager-->MsiExec.exe /I{3D5E5C0A-5B36-4F98-99A7-287F7DBDCE03}
Spybot - Search & Destroy-->"D:\Program Files\Spybot - Search & Destroy\unins000.exe"
USB PC Camera Plus-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{ECD03DA7-5952-406A-8156-5F0C93618D1F}\Setup.exe" -l0x40c
UsbFix-->C:\Program Files\UsbFix\Uninstal.exe
VideoLAN VLC media player 0.8.6c-->D:\Program Files\VideoLAN\VLC\uninstall.exe
Vuze-->D:\Program Files\Vuze\uninstall.exe
Windows Live Messenger-->MsiExec.exe /I{F6326B60-1B1D-4ABF-BFCD-7B7404F44411}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll

======Hosts File======

127.0.0.1 mpa.one.microsoft.com

System event log

Computer Name: ORKAS
Event Code: 8033
Message: L'explorateur a forcé une élection sur le réseau \Device\NetBT_Tcpip_{FA76032D-60B7-4E6D-B2CD-1D99A590467B} car un maître explorateur a été arrêté.

Record Number: 10154
Source Name: BROWSER
Time Written: 20081122210715.000000+060
Event Type: Informations
User:

Computer Name: ORKAS
Event Code: 7036
Message: Le service Gestionnaire de connexion automatique d'accès distant est entré dans l'état : en cours d'exécution.

Record Number: 10153
Source Name: Service Control Manager
Time Written: 20081122210541.000000+060
Event Type: Informations
User:

Computer Name: ORKAS
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Gestionnaire de connexion automatique d'accès distant.

Record Number: 10152
Source Name: Service Control Manager
Time Written: 20081122210541.000000+060
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: ORKAS
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service PCAMPR5 NDIS Protocol Driver.

Record Number: 10151
Source Name: Service Control Manager
Time Written: 20081122210425.000000+060
Event Type: Informations
User: ORKAS\Administrateur

Computer Name: ORKAS
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service PCANDIS5 NDIS Protocol Driver.

Record Number: 10150
Source Name: Service Control Manager
Time Written: 20081122210425.000000+060
Event Type: Informations
User: ORKAS\Administrateur

Application event log

Computer Name: ORKAS
Event Code: 701
Message: msnmsgr (1272) La défragmentation en ligne a terminé un passage complet dans la base de données '\\.\C:\Documents and Settings\Administrateur\Local Settings\Application Data\Microsoft\Messenger\pamoulette@hotmail.fr\SharingMetadata\Working\database_B6C0_7F16_C07E_DC55\dfsr.db'.

Record Number: 10328
Source Name: ESENT
Time Written: 20090106160004.000000+060
Event Type: Informations
User:

Computer Name: ORKAS
Event Code: 700
Message: msnmsgr (1272) La défragmentation en ligne commence un passage complet dans la base de données '\\.\C:\Documents and Settings\Administrateur\Local Settings\Application Data\Microsoft\Messenger\pamoulette@hotmail.fr\SharingMetadata\Working\database_B6C0_7F16_C07E_DC55\dfsr.db'.

Record Number: 10327
Source Name: ESENT
Time Written: 20090106160004.000000+060
Event Type: Informations
User:

Computer Name: ORKAS
Event Code: 1047
Message: Windows ne peut pas lire l'historique des objets de paramètre de groupe à partir du Registre. Le traitement de la stratégie de groupe continue.

Record Number: 10326
Source Name: Userenv
Time Written: 20090106154353.000000+060
Event Type: erreur
User: AUTORITE NT\SYSTEM

Computer Name: ORKAS
Event Code: 1047
Message: Windows ne peut pas lire l'historique des objets de paramètre de groupe à partir du Registre. Le traitement de la stratégie de groupe continue.

Record Number: 10325
Source Name: Userenv
Time Written: 20090106154353.000000+060
Event Type: erreur
User: AUTORITE NT\SYSTEM

Computer Name: ORKAS
Event Code: 701
Message: msnmsgr (1272) La défragmentation en ligne a terminé un passage complet dans la base de données '\\.\C:\Documents and Settings\Administrateur\Local Settings\Application Data\Microsoft\Messenger\pamoulette@hotmail.fr\SharingMetadata\Working\database_B6C0_7F16_C07E_DC55\dfsr.db'.

Record Number: 10324
Source Name: ESENT
Time Written: 20090106150004.000000+060
Event Type: Informations
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 95 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=5f02
"NUMBER_OF_PROCESSORS"=1
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"DEVMGR_SHOW_DETAILS"=1

-----------------EOF-----------------

-------------- UsbFix V2.414.3 ---------------

* User : Administrateur - ORKAS
* Outils mis a jours le 18/01/2009 par Chiquitine29 et Chimay8
* Recherche effectuée à 21:09:24 le 25/02/2009
* Windows Xp - Internet Explorer 7.0.5730.11


--------------- [ Processus actifs ] ----------------



--------------- [ Informations lecteurs ] ----------------

C: - Lecteur fixe

D: - Lecteur fixe

F: - Lecteur fixe

G: - Lecteur amovible

H: - Lecteur amovible


+- Contenu de l'autorun : C:\autorun.inf



+- Contenu de l'autorun : D:\autorun.inf



+- Contenu de l'autorun : F:\autorun.inf



+- Contenu de l'autorun : G:\autorun.inf



+- Contenu de l'autorun : H:\autorun.inf



--------------- [ Lecteur C ] ----------------

C: - Lecteur fixe


+- Listing des fichiers présents :

[13/04/2007 21:09 Orkas Ultimate][--a------] C:\AUTOEXEC.BAT
[03/08/2004 22:38 Orkas Ultimate][-rahs----] C:\NTDETECT.COM
[29/11/2006 20:40 Orkas Ultimate][---------] C:\jqrugftho.exe
[24/02/2009 23:24 Orkas Ultimate][---hs----] C:\boot.ini
[25/02/2009 20:06 Orkas Ultimate][d--h-----] C:\autorun.inf
[25/02/2009 21:09 Orkas Ultimate][--a------] C:\UsbFix.txt
[13/04/2007 21:09 Orkas Ultimate][--a------] C:\CONFIG.SYS
[13/04/2007 21:09 Orkas Ultimate][--a------] C:\IO.SYS
[13/04/2007 21:09 Orkas Ultimate][--a------] C:\MSDOS.SYS
[13/04/2007 21:09 Orkas Ultimate][--a------] C:\pagefile.sys

--------------- [ Lecteur D ] ----------------

D: - Lecteur fixe


+- Listing des fichiers présents :

[29/11/2006 20:40 Orkas Ultimate][---h-----] D:\jqrugftho.exe
[25/02/2009 20:06 Orkas Ultimate][d--h-----] D:\autorun.inf

--------------- [ Lecteur F ] ----------------

F: - Lecteur fixe


+- Listing des fichiers présents :

[29/11/2006 20:40 Orkas Ultimate][---h-----] F:\jqrugftho.exe
[25/02/2009 20:06 Orkas Ultimate][d--h-----] F:\autorun.inf

--------------- [ Lecteur G ] ----------------

G: - Lecteur amovible


+- Listing des fichiers présents :

[29/11/2006 20:40 Orkas Ultimate][---h-----] G:\jqrugftho.exe
[25/02/2009 20:06 Orkas Ultimate][d--h-----] G:\autorun.inf

--------------- [ Lecteur H ] ----------------

H: - Lecteur amovible


+- Listing des fichiers présents :

[29/11/2006 20:40 Orkas Ultimate][---h-----] H:\jqrugftho.exe
[10/05/2008 11:29 Orkas Ultimate][--a------] H:\_DS_MENU.INI
[25/02/2009 20:06 Orkas Ultimate][d--h-----] H:\autorun.inf
[24/02/2009 20:11 Orkas Ultimate][--a------] H:\_DS_MENU.SYS

--------------- [ Registre / Startup ] ----------------

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://windows-unattended.fr"
"Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
3D=C:\program Files\Topdesk\topdesk.exe
Horlorge=C:\program Files\Clock\Clock.exe
Sidebar=C:\program Files\Windows Sidebar\sidebar.exe
ctfmon.exe=C:\WINDOWS\system32\ctfmon.exe
SpybotSD TeaTimer=D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
RTHDCPL=RTHDCPL.EXE
Alcmtr=ALCMTR.EXE
NvCplDaemon=RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
KernelFaultCheck=%systemroot%\system32\dumprep 0 -k
NvMediaCenter=RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
tsnpstd3=C:\WINDOWS\tsnpstd3.exe
snpstd3=C:\WINDOWS\vsnpstd3.exe
MDM Rock 4=C:\WINDOWS\system32\havlopnde.exe
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents=
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL=
Installed=1
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI=
NoChange=1
Installed=1
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS=
Installed=1
<NO NAME>=

--------------- [ Registre / Mountpoint2 ] ----------------


-> Recherche négative.

--------------- [ Nettoyage des disques ] ----------------

Echec de la supression !! - [25/02/2009 21:09 Orkas Ultimate] C:\autorun.inf
Supprimé ! - [25/02/2009 21:09 Orkas Ultimate][d--------] C:\autorun.inf
Echec de la supression !! - [25/02/2009 21:09 Orkas Ultimate] D:\autorun.inf
Supprimé ! - [25/02/2009 21:09 Orkas Ultimate][d--------] D:\autorun.inf
Echec de la supression !! - [25/02/2009 20:06 Orkas Ultimate] F:\autorun.inf
Supprimé ! - [25/02/2009 20:06 Orkas Ultimate][d--------] F:\autorun.inf
Echec de la supression !! - [25/02/2009 20:06 Orkas Ultimate] G:\autorun.inf
Supprimé ! - [25/02/2009 20:06 Orkas Ultimate][d--------] G:\autorun.inf
Echec de la supression !! - [25/02/2009 20:06 Orkas Ultimate] H:\autorun.inf
Supprimé ! - [25/02/2009 20:06 Orkas Ultimate][d--------] H:\autorun.inf

--------------- [ Resumé ] ----------------

-> /!\ Le resultat doit etre [http://www.virustotal.com/fr/ interprété] par un spécialiste /!\

[13/04/2007 21:09 Orkas Ultimate][--a------] C:\AUTOEXEC.BAT
[03/08/2004 22:38 Orkas Ultimate][-rahs----] C:\NTDETECT.COM
[29/11/2006 20:40 Orkas Ultimate][---------] C:\jqrugftho.exe
[24/02/2009 23:24 Orkas Ultimate][---hs----] C:\boot.ini
[29/11/2006 20:40 Orkas Ultimate][---h-----] D:\jqrugftho.exe
[29/11/2006 20:40 Orkas Ultimate][---h-----] F:\jqrugftho.exe
[29/11/2006 20:40 Orkas Ultimate][---h-----] G:\jqrugftho.exe
[29/11/2006 20:40 Orkas Ultimate][---h-----] H:\jqrugftho.exe
[10/05/2008 11:29 Orkas Ultimate][--a------] H:\_DS_MENU.INI

--------------- [ Vaccination ] ----------------

C:\autorun.inf -> Dossier autorun.inf crée par UsbFix !
D:\autorun.inf -> Dossier autorun.inf crée par UsbFix !
F:\autorun.inf -> Dossier autorun.inf crée par UsbFix !
G:\autorun.inf -> Dossier autorun.inf crée par UsbFix !
H:\autorun.inf -> Dossier autorun.inf crée par UsbFix !

--------------- ! Fin du rapport ! ----------------

le pc s'est éteint suite à l'éxécution de OTMoveIt3 et ne veut plus redémarrer sauf en mode sans echec

il démarre presque jusqu'à l'affichage du bureau. mais aucune icône n'apparait, pas de barre des tâches, rien.

Non, il ne réagit pas au ctrl alt suppr

Mais je n'arrive pas à me connecter à internet en mode sans echec, donc je ne peux rien télécharger.
là je suis obligé de profiter de la gentillesse des voisins pour vous répondre.

Malwarebytes' Anti-Malware 1.34
Version de la base de données: 1802
Windows 5.1.2600 Service Pack 2

25/02/2009 22:50:53
mbam-log-2009-02-25 (22-50-53).txt

Type de recherche: Examen rapide
Eléments examinés: 60267
Temps écoulé: 2 minute(s), 16 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)

SDFix: Version 1.240
Run by Administrateur on 25/02/2009 at 23:11 Orkas Ultimate

Microsoft Windows XP [version 5.1.2600]
Running From: C:\SDFix

Checking Services :


Restoring Default Security Values
Restoring Default Hosts File

Rebooting


Checking Files :

No Trojan Files Found






Removing Temp Files

ADS Check :



Final Check :

catchme 0.3.1361.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-02-25 23:18:18
Windows 5.1.2600 Service Pack 2 NTFS

detected NTDLL code modification:
ZwOpenFile

scanning hidden processes ...

scanning hidden services & system hive ...

scanning hidden registry entries ...

scanning hidden files ...

scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 0


Remaining Services :




Authorized Application Key Export:

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\FileZilla\\FileZilla.exe"="C:\\Program Files\\FileZilla\\FileZilla.exe:*:Enabled:FileZilla"
"D:\\PlayOnline\\SquareEnix\\PlayOnlineViewer\\pol.exe"="D:\\PlayOnline\\SquareEnix\\PlayOnlineViewer\\pol.exe:*:EnabledlayOnline Viewer"
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"D:\\Program Files\\VideoLAN\\VLC\\vlc.exe"="D:\\Program Files\\VideoLAN\\VLC\\vlc.exe:*:Enabled:VLC media player"
"D:\\Program Files\\Vuze\\Azureus.exe"="D:\\Program Files\\Vuze\\Azureus.exe:*:Enabled:Azureus"
"D:\\Program Files\\eMule\\emule.exe"="D:\\Program Files\\eMule\\emule.exe:*:Enabled:eMule"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype. Take a deep breath "
"C:\\Program Files\\OrangeHSS\\Connectivity\\ConnectivityManager.exe"="C:\\Program Files\\OrangeHSS\\Connectivity\\ConnectivityManager.exe:*:enabled:CSS"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

Remaining Files :



Files with Hidden Attributes :

Tue 24 Feb 2009 33,280 A..H. --- "C:\Program Files\Clock\tcplayer.exe"
Tue 24 Feb 2009 83,968 A..H. --- "C:\Program Files\Clock\tcprop.exe"
Tue 24 Feb 2009 37,888 A..H. --- "C:\Program Files\Clock\tcsntp.exe"
Tue 24 Feb 2009 37,888 A..H. --- "C:\Program Files\Clock\tctimer.exe"
Tue 24 Feb 2009 1,249,280 A..H. --- "C:\Program Files\Windows Sidebar\sidebar_clear.exe"
Wed 8 Nov 2006 40,960 A..H. --- "C:\Program Files\Windows Sidebar\vadvapi32.dll"
Wed 8 Nov 2006 40,960 A..H. --- "C:\Program Files\Windows Sidebar\vadvapi32.dll001"
Wed 8 Nov 2006 137,216 A..H. --- "C:\Program Files\Windows Sidebar\vcomctl32.dll"
Wed 8 Nov 2006 137,216 A..H. --- "C:\Program Files\Windows Sidebar\vcomctl32.dll001"
Wed 8 Nov 2006 8,704 A..H. --- "C:\Program Files\Windows Sidebar\vduser.dll"
Wed 8 Nov 2006 8,704 A..H. --- "C:\Program Files\Windows Sidebar\vduser.dll001"
Wed 8 Nov 2006 3,072 A..H. --- "C:\Program Files\Windows Sidebar\vdwmapi.dll"
Wed 8 Nov 2006 3,072 A..H. --- "C:\Program Files\Windows Sidebar\vdwmapi.dll001"
Wed 8 Nov 2006 9,216 A..H. --- "C:\Program Files\Windows Sidebar\viphlpapi.dll"
Wed 8 Nov 2006 9,216 A..H. --- "C:\Program Files\Windows Sidebar\viphlpapi.dll001"
Wed 8 Nov 2006 51,200 A..H. --- "C:\Program Files\Windows Sidebar\vkernel32.dll"
Wed 8 Nov 2006 51,200 A..H. --- "C:\Program Files\Windows Sidebar\vkernel32.dll001"
Wed 8 Nov 2006 10,752 A..H. --- "C:\Program Files\Windows Sidebar\vmsvcrt.dll"
Wed 8 Nov 2006 10,752 A..H. --- "C:\Program Files\Windows Sidebar\vmsvcrt.dll001"
Wed 8 Nov 2006 2,560 A..H. --- "C:\Program Files\Windows Sidebar\vnetapi32.dll"
Wed 8 Nov 2006 2,560 A..H. --- "C:\Program Files\Windows Sidebar\vnetapi32.dll001"
Wed 8 Nov 2006 77,312 A..H. --- "C:\Program Files\Windows Sidebar\vntdll.dll"
Wed 8 Nov 2006 77,312 A..H. --- "C:\Program Files\Windows Sidebar\vntdll.dll001"
Wed 8 Nov 2006 3,584 A..H. --- "C:\Program Files\Windows Sidebar\vpropsys.dll"
Wed 8 Nov 2006 3,584 A..H. --- "C:\Program Files\Windows Sidebar\vpropsys.dll001"
Wed 8 Nov 2006 21,504 A..H. --- "C:\Program Files\Windows Sidebar\vshell32.dll"
Wed 8 Nov 2006 21,504 A..H. --- "C:\Program Files\Windows Sidebar\vshell32.dll001"
Wed 8 Nov 2006 38,912 A..H. --- "C:\Program Files\Windows Sidebar\vshellext.dll"
Wed 8 Nov 2006 147,968 A..H. --- "C:\Program Files\Windows Sidebar\vslc.dll"
Wed 8 Nov 2006 147,968 A..H. --- "C:\Program Files\Windows Sidebar\vslc.dll001"
Wed 8 Nov 2006 35,328 A..H. --- "C:\Program Files\Windows Sidebar\vuser32.dll"
Wed 8 Nov 2006 35,328 A..H. --- "C:\Program Files\Windows Sidebar\vuser32.dll001"
Wed 8 Nov 2006 6,144 A..H. --- "C:\Program Files\Windows Sidebar\vuxtheme.dll"
Wed 8 Nov 2006 6,144 A..H. --- "C:\Program Files\Windows Sidebar\vuxtheme.dll001"
Wed 8 Nov 2006 3,072 A..H. --- "C:\Program Files\Windows Sidebar\vwlanapi.dll"
Wed 8 Nov 2006 3,072 A..H. --- "C:\Program Files\Windows Sidebar\vwlanapi.dll001"
Wed 8 Nov 2006 3,072 A..H. --- "C:\Program Files\Windows Sidebar\vwlanutil.dll"
Wed 8 Nov 2006 3,072 A..H. --- "C:\Program Files\Windows Sidebar\vwlanutil.dll001"
Tue 24 Feb 2009 435,353 A..H. --- "C:\WINDOWS\Drive\SIGN.exe"
Wed 29 Nov 2006 90,624 A..H. --- "C:\_OTMoveIt\MovedFiles\02252009_212422\jqrugftho.exe"
Wed 29 Nov 2006 90,624 A.SHR --- "C:\_OTMoveIt\MovedFiles\02252009_202607\WINDOWS\system32\gfcfrhqhg.exe"
Wed 29 Nov 2006 90,624 A.SHR --- "C:\_OTMoveIt\MovedFiles\02252009_202607\WINDOWS\system32\mgdrwfsvl.exe"
Wed 29 Nov 2006 90,624 A.SHR --- "C:\_OTMoveIt\MovedFiles\02252009_202607\WINDOWS\system32\tdwenvxpq.exe"
Tue 24 Feb 2009 150,528 A..H. --- "C:\Documents and Settings\Administrateur\Bureau\sauvegarde pampam\Projet Master 2\Ecrits\~WRL0001.tmp"

Finished!

oui, le pc démarre maintenant en mode normal. merci beaucoup.
est-ce synonyme de succès total?

voici le rapport d'usbfix:



-------------- UsbFix V2.414.3 ---------------

* User : Administrateur - ORKAS
* Outils mis a jours le 18/01/2009 par Chiquitine29 et Chimay8
* Recherche effectuée à 23:50:09 le 25/02/2009
* Windows Xp - Internet Explorer 7.0.5730.11


--------------- [ Processus actifs ] ----------------



--------------- [ Informations lecteurs ] ----------------

C: - Lecteur fixe D: - Lecteur fixe F: - Lecteur fixe G: - Lecteur amovible H: - Lecteur amovible
+- Contenu de l'autorun : C:\autorun.inf



+- Contenu de l'autorun : D:\autorun.inf



+- Contenu de l'autorun : F:\autorun.inf



+- Contenu de l'autorun : G:\autorun.inf



+- Contenu de l'autorun : H:\autorun.inf



--------------- [ Lecteur C ] ----------------

C: - Lecteur fixe
+- Listing des fichiers présents :

[13/04/2007 21:09 Orkas Ultimate][--a------] C:\AUTOEXEC.BAT
[03/08/2004 22:38 Orkas Ultimate][-rahs----] C:\NTDETECT.COM
[24/02/2009 23:24 Orkas Ultimate][---hs----] C:\boot.ini
[25/02/2009 21:09 Orkas Ultimate][d--h-----] C:\autorun.inf
[25/02/2009 23:50 Orkas Ultimate][--a------] C:\UsbFix.txt
[13/04/2007 21:09 Orkas Ultimate][--a------] C:\CONFIG.SYS
[13/04/2007 21:09 Orkas Ultimate][--a------] C:\IO.SYS
[13/04/2007 21:09 Orkas Ultimate][--a------] C:\MSDOS.SYS
[13/04/2007 21:09 Orkas Ultimate][--a------] C:\pagefile.sys

--------------- [ Lecteur D ] ----------------

D: - Lecteur fixe
+- Listing des fichiers présents :

[25/02/2009 21:09 Orkas Ultimate][d--h-----] D:\autorun.inf

--------------- [ Lecteur F ] ----------------

F: - Lecteur fixe
+- Listing des fichiers présents :

[25/02/2009 21:09 Orkas Ultimate][d--h-----] F:\autorun.inf

--------------- [ Lecteur G ] ----------------

G: - Lecteur amovible
+- Listing des fichiers présents :

[25/02/2009 21:09 Orkas Ultimate][d--h-----] G:\autorun.inf

--------------- [ Lecteur H ] ----------------

H: - Lecteur amovible
+- Listing des fichiers présents :

[10/05/2008 11:29 Orkas Ultimate][--a------] H:\_DS_MENU.INI
[25/02/2009 21:09 Orkas Ultimate][d--h-----] H:\autorun.inf
[24/02/2009 20:11 Orkas Ultimate][--a------] H:\_DS_MENU.SYS

--------------- [ Registre / Startup ] ----------------

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://windows-unattended.fr"
"Start Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
3D=C:\program Files\Topdesk\topdesk.exe
Horlorge=C:\program Files\Clock\Clock.exe
Sidebar=C:\program Files\Windows Sidebar\sidebar.exe
ctfmon.exe=C:\WINDOWS\system32\ctfmon.exe
SpybotSD TeaTimer=D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\run]
RTHDCPL=RTHDCPL.EXE
Alcmtr=ALCMTR.EXE
NvCplDaemon=RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
NvMediaCenter=RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
tsnpstd3=C:\WINDOWS\tsnpstd3.exe
snpstd3=C:\WINDOWS\vsnpstd3.exe
MDM Rock 4=C:\WINDOWS\system32\havlopnde.exe
SunJavaUpdateSched="D:\Program Files\Java\jre6\bin\jusched.exe"
Adobe Reader Speed Launcher="D:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents=
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL=
Installed=1
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI=
NoChange=1
Installed=1
<NO NAME>=
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS=
Installed=1
<NO NAME>=

--------------- [ Registre / Mountpoint2 ] ----------------


-> Recherche négative.

--------------- [ Nettoyage des disques ] ----------------

Echec de la supression !! - [25/02/2009 23:50 Orkas Ultimate] C:\autorun.inf
Supprimé ! - [25/02/2009 23:50 Orkas Ultimate][d--------] C:\autorun.inf
Echec de la supression !! - [25/02/2009 23:50 Orkas Ultimate] D:\autorun.inf
Supprimé ! - [25/02/2009 23:50 Orkas Ultimate][d--------] D:\autorun.inf
Echec de la supression !! - [25/02/2009 21:09 Orkas Ultimate] F:\autorun.inf
Supprimé ! - [25/02/2009 21:09 Orkas Ultimate][d--------] F:\autorun.inf
Echec de la supression !! - [25/02/2009 21:09 Orkas Ultimate] G:\autorun.inf
Supprimé ! - [25/02/2009 21:09 Orkas Ultimate][d--------] G:\autorun.inf
Echec de la supression !! - [25/02/2009 21:09 Orkas Ultimate] H:\autorun.inf
Supprimé ! - [25/02/2009 21:09 Orkas Ultimate][d--------] H:\autorun.inf

--------------- [ Resumé ] ----------------

-> /!\ Le resultat doit etre [http://www.virustotal.com/fr/ interprété] par un spécialiste /!\

[13/04/2007 21:09 Orkas Ultimate][--a------] C:\AUTOEXEC.BAT
[03/08/2004 22:38 Orkas Ultimate][-rahs----] C:\NTDETECT.COM
[24/02/2009 23:24 Orkas Ultimate][---hs----] C:\boot.ini
[10/05/2008 11:29 Orkas Ultimate][--a------] H:\_DS_MENU.INI

--------------- [ Vaccination ] ----------------

C:\autorun.inf -> Dossier autorun.inf crée par UsbFix !
D:\autorun.inf -> Dossier autorun.inf crée par UsbFix !
F:\autorun.inf -> Dossier autorun.inf crée par UsbFix !
G:\autorun.inf -> Dossier autorun.inf crée par UsbFix !
H:\autorun.inf -> Dossier autorun.inf crée par UsbFix !

--------------- ! Fin du rapport ! ----------------

UsbFix ne veut pas se désinstaller.
dans ajouter/supprimer des programmes, j'ai une fenêtre popup avec un "!" dans une bulle à acquitter et rien se se passe

autre pb, antivir n'arrive pas à s'installer.

j'ai le pop up suivant:
La somme CRC de
C:\DOCUMEN~1\ADMINI~1\LOCALS~1\Temp\RarSFX0\basic\setup.exe
été modifié ! Cela pourrait avoir été provoqué par un virus !


Est-ce que je peux vous proposer de continuer cette discussion demain svp? Je commence à fatiguer et j'ai bien peur que ce n'est pas bientôt terminé^^

Dans tous les cas, je vous remercie déjà pour votre patience et pour le temps que vous m'avez accordé ce soir!

D.

Bonjour, me revoilà!

Verdict, antivir s'est installé mais il ne démarre pas. il est impossible à désinstaller.
Quant à AVG, il ne s'installe pas.
Je ne peux pas non plus désinstaller usbfix.

le comportement est le même en mode sans echec.

Modération : suppression du lien par précaution

voici le rapport d'AVPTool :

Scan
----
Scanned: 803767
Detected: 240
Untreated: 2
Start time: 26/02/2009 19:49 Orkas Ultimate
Duration: 03:12:46
Finish time: 26/02/2009 23:02 Orkas Ultimate


Detected
--------
Status Object
------ ------
will be disinfected when the computer is restarted: virus Virus.Win32.Virut.n File: C:\WINDOWS\Explorer.EXE
will be disinfected when the computer is restarted: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ctfmon.exe
disinfected: virus Virus.Win32.Virut.n File: c:\windows\system32\rundll32.exe
disinfected: virus Virus.Win32.Virut.n File: c:\windows\rthdcpl.exe
disinfected: virus Virus.Win32.Virut.n File: c:\windows\tsnpstd3.exe
disinfected: virus Virus.Win32.Virut.n File: c:\program files\avira\antivir personaledition classic\avgnt.exe
disinfected: virus Virus.Win32.Virut.n File: c:\program files\topdesk\topdesk.exe
disinfected: virus Virus.Win32.Virut.n File: c:\program files\clock\clock.exe
disinfected: virus Virus.Win32.Virut.n File: c:\program files\windows sidebar\sidebar.exe
disinfected: virus Virus.Win32.Virut.n File: c:\windows\system32\alg.exe
disinfected: virus Virus.Win32.Virut.n File: c:\program files\avira\antivir personaledition classic\sched.exe
disinfected: virus Virus.Win32.Virut.n File: c:\program files\avira\antivir personaledition classic\avguard.exe
disinfected: virus Virus.Win32.Virut.n File: c:\windows\atkkbservice.exe
disinfected: virus Virus.Win32.Virut.n File: c:\program files\fichiers communs\france telecom\shared modules\ftrtsvc\0\ftrtsvc.exe
disinfected: virus Virus.Win32.Virut.n File: c:\windows\system32\nvsvc32.exe
disinfected: virus Virus.Win32.Virut.n File: c:\windows\system32\spoolsv.exe
disinfected: virus Virus.Win32.Virut.n File: c:\program files\windows media player\wmpnetwk.exe
disinfected: virus Virus.Win32.Virut.n File: c:\program files\malwarebytes' anti-malware\mbam.exe
disinfected: virus Virus.Win32.Virut.n File: c:\documents and settings\administrateur\bureau\virus removal tool\is-v3gg1\startup.exe
will be disinfected when the computer is restarted: virus Virus.Win32.Virut.n File: c:\documents and settings\administrateur\bureau\virus removal tool\is-v3gg1\is-v3gg1.exe
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\_OTMoveIt.rar/_OTMoveIt\MovedFiles\02252009_202607\WINDOWS\system32\gfcfrhqhg.exe
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\_OTMoveIt.rar/_OTMoveIt\MovedFiles\02252009_202607\WINDOWS\system32\havlopnde.exe
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\_OTMoveIt.rar/_OTMoveIt\MovedFiles\02252009_202607\WINDOWS\system32\mgdrwfsvl.exe
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\_OTMoveIt.rar/_OTMoveIt\MovedFiles\02252009_202607\WINDOWS\system32\tdwenvxpq.exe
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\_OTMoveIt.rar/_OTMoveIt\MovedFiles\02252009_212422\jqrugftho.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\aspnet_compiler.exe.bac_a03624//CryptFF.b
disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\aspnet_regbrowsers.exe.bac_a03624//CryptFF.b
disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\aspnet_regsql.exe.bac_a03624//CryptFF.b
disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\CasPol.exe.bac_a03624//CryptFF.b
disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\dfsvc.exe.bac_a03624//CryptFF.b
disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\DotNetInstaller.exe.bac_a03624//CryptFF.b
disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\DvsParse.exe.bac_a03624//CryptFF.b
disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\DvsParse.vshost.exe.bac_a03624//CryptFF.b
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\English-1.25.rar.bac_a03624//CryptFF.b/ryUVC11.com
disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\fpremadm.exe.bac_a03624//CryptFF.b
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\French-1.25.rar.bac_a03432//CryptFF.b/c84E5Vu.com
disinfected: virus Backdoor.Win32.Rbot.itx File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\French-1.25.rar.bac_a03436//CryptFF.b
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\French-1.25.rar.bac_a03624//CryptFF.b/WVsHq5q.com
disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\IEExec.exe.bac_a03624//CryptFF.b
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\images_brand.zip.bac_a01248//CryptFF.b/V6p1b2E.gif .scr
disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\InstallUtil.exe.bac_a03624//CryptFF.b
disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\jsc.exe.bac_a03624//CryptFF.b
disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\launcher_gui.exe.bac_a03624//CryptFF.b
disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\lights.exe.bac_a03624//CryptFF.b
disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\MSBuild.exe.bac_a03624//CryptFF.b
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\npds.zip.bac_a01248//CryptFF.b/xBGP786.gif .scr
disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\nvudisp.exe.bac_a03624//CryptFF.b
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\r4sdhc1.21.rar.bac_a03624//CryptFF.b/xL115n5.com
disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\RegAsm.exe.bac_a03624//CryptFF.b
disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\regedt32.exe.bac_a03624//CryptFF.b
disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\RegSvcs.exe.bac_a03624//CryptFF.b
disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\SpiderSolitaire.exe.bac_a03624//CryptFF.b
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Documents and Settings\Administrateur\Bureau\English-1.25.rar/ryUVC11.com
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Documents and Settings\Administrateur\Bureau\English.1.52_RP.rar/TYfPIg8.com
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Documents and Settings\Administrateur\Bureau\French-1.25.rar/WVsHq5q.com
disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\Administrateur\Bureau\OTMoveIt3.exe
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Documents and Settings\Administrateur\Bureau\r4sdhc1.21.rar/xL115n5.com
disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\Administrateur\Bureau\Virus Removal Tool\is-V3GG1\minst.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Documents and Settings\Administrateur\Bureau\Virus Removal Tool\is-V3GG1\drivers\drvins32.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\avcenter.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\avconfig.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\avnotify.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\avscan.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\fact.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\guardgui.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\licmgr.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\preupd.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\setup.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\update.exe
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1036\AboutBox.zip/g67V8jB.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1036\AssemblyInfo.zip/pg03nH6.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1036\AssemblyInfoInternal.zip/yC0xNG2.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1036\Form.zip/cQs7g4w.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1036\MDIParent.zip/L24iQkR.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1036\UserControl.zip/HR4vYUR.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1036\Visualizer.zip/NotcNg5.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1036\AppConfigurationInternal.zip/op620SW.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1036\AssemblyInfoInternal.zip/DjMc17X.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1036\Dialog.zip/qGNnRXJ.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1036\Explorer.zip/hpHfwWJ.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1036\Form.zip/x5I75X7.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1036\LoginForm.zip/HtCXcG3.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1036\MDIParent.zip/Wj0UOq7.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1036\SplashScreen.zip/tyBer5S.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\VisualBasic\1036\UserControl.zip/tX8o02m.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\OpenOffice.org 3\Basis\share\config\images.zip/yBjGTYN.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\OpenOffice.org 3\Basis\share\config\images_classic.zip/ge201re.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\OpenOffice.org 3\Basis\share\config\images_crystal.zip/dv2e08G.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\OpenOffice.org 3\Basis\share\config\images_hicontrast.zip/OF8IOhj.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\OpenOffice.org 3\Basis\share\config\images_industrial.zip/e4VHDEn.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\OpenOffice.org 3\Basis\share\config\images_tango.zip/C7b2P6R.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\OpenOffice.org 3\Basis\share\config\wizard\web\buttons\glas-blue.zip/f8x40SL.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\OpenOffice.org 3\Basis\share\config\wizard\web\buttons\glas-green.zip/S64425l.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\OpenOffice.org 3\Basis\share\config\wizard\web\buttons\glas-red.zip/M8WxWcE.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\OpenOffice.org 3\Basis\share\config\wizard\web\buttons\round-gorilla.zip/rH4oLSf.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\OpenOffice.org 3\Basis\share\config\wizard\web\buttons\round-white.zip/l2WLD0x.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\OpenOffice.org 3\Basis\share\config\wizard\web\buttons\simple.zip/cL5I3CS.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\OpenOffice.org 3\Basis\share\config\wizard\web\buttons\square-blue.zip/ijiFeMO.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\OpenOffice.org 3\Basis\share\config\wizard\web\buttons\square-gray.zip/cP601C3.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\OpenOffice.org 3\Basis\share\config\wizard\web\buttons\square-green.zip/t76bT28.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\OpenOffice.org 3\Basis\share\config\wizard\web\buttons\square-red.zip/j8vx7T4.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\OpenOffice.org 3\Basis\share\config\wizard\web\buttons\square-yellow.zip/qODuef8.gif .scr
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\OrangeHSS\Uninstall\Mobile_CustoUpdate\shell.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Realtek\InstallShield\Alcmtr.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Realtek\InstallShield\AlcWzrd.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Realtek\InstallShield\ChCfg.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Realtek\InstallShield\CPLUtl64.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Realtek\InstallShield\MicCal.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Realtek\InstallShield\RTHDCPL.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Realtek\InstallShield\RTLCPL.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Realtek\InstallShield\RtlUpd.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Realtek\InstallShield\RtlUpd64.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Realtek\InstallShield\SkyTel.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Realtek\InstallShield\SoundMan.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\UsbFix\Uninstal.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\UsbFix\Tools\Kill.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\UsbFix\Tools\nircmd.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\UsbFix\Tools\Proc.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\UsbFix\Tools\swreg.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Windows Media Connect 2\wmccds.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Windows Media Connect 2\WMCCFG.exe
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\Program Files\Windows Media Player\npdrmv2.zip/r1ySUr2.gif .scr
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Windows Media Player\wmdbexport.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Windows Media Player\wmlaunch.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Windows Media Player\wmpenc.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Windows Media Player\wmpnscfg.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Windows Media Player\wmpshare.exe
disinfected: virus Virus.Win32.Virut.n File: C:\Program Files\Windows Media Player\wmsetsdk.exe
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\catchme.exe
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\apps\Cghtme.exe
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\apps\cliptext.exe
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\apps\download.exe
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\apps\ERUNT.EXE
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\apps\FixPath.exe
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\apps\grep.exe
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\apps\isadmin.exe
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\apps\LS.exe
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\apps\MD5File.exe
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\apps\moveex.exe
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\apps\Process.exe
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\apps\procs.exe
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\apps\psservice.exe
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\apps\RestartIt!.exe
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\apps\sc.exe
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\apps\sed.exe
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\apps\SF.exe
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\apps\shutdown.exe
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\apps\Swreg.exe
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\apps\swsc.exe
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\apps\UnRAR.exe
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\apps\unzip.exe
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\apps\vfind.exe
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\apps\WINMSG.EXE
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\apps\zip.exe
disinfected: virus Virus.Win32.Virut.n File: C:\SDFix\apps\Replace\regedit.exe
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\WINDOWS\AU_Temp\AU_Down\engine\engv87_nt386.zip/ds6mHUB.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\WINDOWS\AU_Temp\AU_Down\pattern\vsapi863.zip/tHe0Dco.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\WINDOWS\AU_Temp\AU_Down\product\auhccup1.zip/FlexkSs.gif .scr
disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\ERUNT\SDFIX\ERDNT.EXE
disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\ERUNT\SDFIX_First_Run\ERDNT.EXE
disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\Installer\{6860B340-530D-46B3-91F8-1AE1F70F7C33}\soffice.exe
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\WINDOWS\java\Packages\137TJPZ1.ZIP/iiiH8Pp.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\WINDOWS\java\Packages\4N3PZ9J9.ZIP/q7T0Ryi.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\WINDOWS\java\Packages\JTB7P753.ZIP/IrnKqwx.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\WINDOWS\java\Packages\RLBRJPRL.ZIP/H315E02.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\WINDOWS\java\Packages\UO77HFJB.ZIP/uBn6Xq3.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\WINDOWS\java\Packages\YO9B57LV.ZIP/o33e.gif .scr
disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\ChCfg.exe
disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\drmupgds.exe
disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\HdAShCut.exe
disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\nvuide.exe
disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\uwdf.exe
disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\wdfmgr.exe
disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\wpdshextautoplay.exe
disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\wuauclt.exe
disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\WudfHost.exe
disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\author.exe
disinfected: virus Virus.Win32.Virut.n File: C:\WINDOWS\system32\dllcache\shtml.exe
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\_OTMoveIt\MovedFiles\02252009_202607\WINDOWS\system32\gfcfrhqhg.exe
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\_OTMoveIt\MovedFiles\02252009_202607\WINDOWS\system32\havlopnde.exe
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\_OTMoveIt\MovedFiles\02252009_202607\WINDOWS\system32\mgdrwfsvl.exe
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\_OTMoveIt\MovedFiles\02252009_202607\WINDOWS\system32\tdwenvxpq.exe
deleted: Trojan program Backdoor.Win32.Rbot.itx File: C:\_OTMoveIt\MovedFiles\02252009_212422\jqrugftho.exe
deleted: Trojan program Backdoor.Win32.Rbot.itx File: D:\Logiciels\DvsParse-1.7.2.zip/luh46Ht.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: D:\Logiciels\time-adjuster_time_adjuster_3.1_francais_11087.zip/Q364430.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: D:\Logiciels\Windower-3.23.zip/YP3hKQ6.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: D:\Logiciels\Windower-3.26.zip/t4p6y0l.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: D:\Logiciels\Windower-3.3.zip/qQ6gw8Y.gif .scr
disinfected: virus Virus.Win32.Virut.n File: D:\Program Files\Adobe\Reader 9.0\Reader\LogTransport2.exe
deleted: adware not-a-virus:AdWare.Win32.Agent.fub File: D:\Program Files\eMule\Uninstall.exe
deleted: Trojan program Backdoor.Win32.Rbot.itx File: D:\Program Files\eMule\Incoming\Jewel.Quest.III.v1.054.Cracked-F4CG (Razor73)\f4m1268a.zip/fHVK4l1.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: D:\Program Files\eMule\Incoming\Jewel.Quest.III.v1.054.Cracked-F4CG (Razor73)\f4m1268b.zip/l52yNBx.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: D:\Program Files\eMule\Incoming\Jewel.Quest.III.v1.054.Cracked-F4CG (Razor73)\f4m1268c.zip/s0kMOmi.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: D:\Program Files\eMule\Incoming\Jewel.Quest.III.v1.054.Cracked-F4CG (Razor73)\f4m1268d.zip/B5Fqh7R.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: D:\Program Files\eMule\Incoming\Jewel.Quest.III.v1.054.Cracked-F4CG (Razor73)\f4m1268e.zip/j5UJb38.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: D:\Program Files\eMule\Incoming\Jewel.Quest.III.v1.054.Cracked-F4CG (Razor73)\f4m1268f.zip/p74xixg.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: D:\Program Files\eMule\Incoming\Jewel.Quest.III.v1.054.Cracked-F4CG (Razor73)\f4m1268g.zip/w2i433P.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: D:\Program Files\eMule\Incoming\Jewel.Quest.III.v1.054.Cracked-F4CG (Razor73)\f4m1268h.zip/g2Xt686.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: D:\Program Files\eMule\Incoming\Jewel.Quest.III.v1.054.Cracked-F4CG (Razor73)\f4m1268i.zip/L258Di2.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: D:\Program Files\eMule\Incoming\Jewel.Quest.III.v1.054.Cracked-F4CG (Razor73)\f4m1268j.zip/S7qpt0s.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: D:\Program Files\eMule\Incoming\Jewel.Quest.III.v1.054.Cracked-F4CG (Razor73)\f4m1268k.zip/B1L3uGd.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: D:\Program Files\eMule\Incoming\Jewel.Quest.III.v1.054.Cracked-F4CG (Razor73)\f4m1268l.zip/IH6o6pu.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: D:\Program Files\K-Lite Codec Pack\tools\XviD_Quant_Matrices.zip/GJ_Ndf4.gif .scr
disinfected: virus Virus.Win32.Virut.n File: D:\Program Files\Spybot - Search & Destroy\SDFiles.exe
disinfected: virus Virus.Win32.Virut.n File: D:\Program Files\Spybot - Search & Destroy\SDShred.exe
deleted: Trojan program Backdoor.Win32.Rbot.itx File: D:\Program Files\Vuze\jre\lib\deploy\ffjcext.zip/jiy665E.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: D:\travail\Galileo OS SIS ICD 23rd May 2006.zip/Xmjku81.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: D:\travail\Systèmes de navigation et de guidage\Doc M DAURES\geodico\GEODICO_Ed1.zip/HpT6NRL.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\[PC Games] JEWEL QUEST + serial.rar/g4D4Rb4.com
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\Luxor 2 Jewel Quest Magic Ball Zuma deluxe 4---Game.rar/IK2fBC2.com
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\Jewel.Quest.III.v1.054.Cracked-F4CG (Razor73).[sharethefiles.com].zip/jrnSQ6l.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\animes\naruto\Naruto Shippuden[Mirage-Team] - Pack 07 - Episode 031 à 035 - Vostfr - By Berserk.zip/WUS665J.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\animes\naruto\Naruto Shippuden[Mirage-Team] - Pack 01 - Episode 001 à 005 - Vostfr - By Berserk.zip/lmss30p.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\animes\naruto\Naruto Shippuden[Mirage-Team] - Pack 02 - Episode 006 à 010 - Vostfr - By Berserk.zip/mm6uHC1.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\animes\naruto\Naruto Shippuden[Mirage-Team] - Pack 03 - Episode 011 à 015 - Vostfr - By Berserk.zip/ptELoFn.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\animes\naruto\Naruto Shippuden[Mirage-Team] - Pack 04 - Episode 016 à 020 - Vostfr - By Berserk.zip/yn4xH2I.gif .scr
detected: virus Virus.Win32.Virut.n File: F:\animes\naruto\Naruto Shippuden[Mirage-Team] - Pack 05 - Episode 021 à 025 - Vostfr - By Berserk.zip/pH5OkQ4.gif .scr
detected: virus Virus.Win32.Virut.n File: F:\animes\naruto\Naruto Shippuden[Mirage-Team] - Pack 06 - Episode 026 à 030 - Vostfr - By Berserk.zip/b7nbC0d.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\animes\SPAWN\Spawn.English.Subs-VALiOMEDiA.[tvu.org.ru].rar/J65TG3g.com
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\animes\SPAWN\Spawn_10th_Season2_07to12_3languages.rar/n4Vnu8v.com
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\animes\SPAWN\Spawn_10th_Season3_13to18_3languages.rar/S1Q187J.com
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\series\Série Julien\Private Practice\Private_Practice___1x03_In_Which_Addison_Finds_The_Magic__HDTV_CAPH___SubTs_.zip/g4jB8D7.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\series\Série Julien\Burn notice\temp\Burn.Notice.S01.Subs.DVDRip.XviD-TOPAZ.[tvu.org.ru].rar/3io5Pg.com
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\series\Série Julien\Burn notice\temp\Burn.Notice.S01E01.Pilot.DVDRip.XviD-TOPAZ.rar/qm1F5oD.com
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\series\Série Julien\Burn notice\temp\Burn.Notice.S01E02.Identity.DVDRip.XviD-TOPAZ.rar/lvu5QCU.com
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\series\Série Julien\Burn notice\temp\Burn.Notice.S01E03.Fight.Or.Flight.REPACK.DVDRip.XviD-TOPAZ.rar/r485Fsv.com
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\series\Série Julien\Burn notice\temp\Burn.Notice.S01E04.Old.Friends.DVDRip.XviD-TOPAZ.rar/K5Io4o1.com
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\series\Série Julien\Burn notice\temp\Burn.Notice.S01E05.Family.Business.DVDRip.XviD-TOPAZ.rar/nC20j63.com
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\series\Série Julien\Burn notice\temp\Burn.Notice.S01E06.Unpaid.Debts.DVDRip.XviD-TOPAZ.rar/tQl3WRj.com
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\series\Série Julien\Burn notice\temp\Burn.Notice.S01E07.Broken.Rules.DVDRip.XviD-TOPAZ.rar/M743f1k.com
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\series\Série Julien\Burn notice\temp\Burn.Notice.S01E08.Wanted.Man.DVDRip.XviD-TOPAZ.rar/bOOYq5i.com
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\series\Série Julien\Burn notice\temp\Burn.Notice.S01E09.Hard.Bargain.DVDRip.XviD-TOPAZ.rar/l1vT1F0.com
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\series\Série Julien\Burn notice\temp\Burn.Notice.S01E10.False.Flag.DVDRip.XviD-TOPAZ.rar/cxdpin2.com
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\series\Série Julien\Burn notice\temp\Burn.Notice.S01E11.E12.Loose.Ends.DVDRip.XviD-TOPAZ.rar/H17HeI3.com
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\series\Série Julien\Burn notice\temp\Burn.Notice.S02E01.VO.VF.rar/c7SC408.com
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\series\Série Julien\Burn notice\temp\Burn.Notice.S02E02.VO.VF.rar/rMQwu0T.com
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\series\Série Julien\Burn notice\temp\Burn.Notice.S02E05.Scatter.Point.PROPER.HDTV.XviD-FQM.VO.VF.rar/f1H18QE.com
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\series\Série Julien\Burn notice\temp\Burn.Notice.202.VO.VF.zip/bKD72Rx.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: F:\series\Série Julien\Burn notice\temp\Burn.Notice.S02E03.HDTV.XviD-0TV.VO.VF.zip/q3RDVe4.gif .scr
deleted: Trojan program Backdoor.Win32.Rbot.itx File: G:\klmdvorrw.exe


Events
------
Time Name Status Reason
---- ---- ------ ------
26/02/2009 19:49 Orkas Ultimate File: C:\WINDOWS\Explorer.EXE detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:49 Orkas Ultimate File: C:\WINDOWS\Explorer.EXE not disinfected postponed
26/02/2009 19:50 Orkas Ultimate File: C:\WINDOWS\system32\ctfmon.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:50 Orkas Ultimate File: C:\WINDOWS\system32\ctfmon.exe not disinfected postponed
26/02/2009 19:50 Orkas Ultimate File: c:\windows\system32\rundll32.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:50 Orkas Ultimate File: c:\windows\system32\rundll32.exe not disinfected postponed
26/02/2009 19:50 Orkas Ultimate File: C:\WINDOWS\system32\rundll32.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:50 Orkas Ultimate File: C:\WINDOWS\system32\rundll32.exe not disinfected postponed
26/02/2009 19:50 Orkas Ultimate File: c:\windows\explorer.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:50 Orkas Ultimate File: c:\windows\explorer.exe not disinfected postponed
26/02/2009 19:50 Orkas Ultimate File: C:\WINDOWS\explorer.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:50 Orkas Ultimate File: C:\WINDOWS\explorer.exe not disinfected postponed
26/02/2009 19:50 Orkas Ultimate File: c:\windows\rthdcpl.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:50 Orkas Ultimate File: c:\windows\rthdcpl.exe not disinfected postponed
26/02/2009 19:50 Orkas Ultimate File: c:\windows\tsnpstd3.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:50 Orkas Ultimate File: c:\windows\tsnpstd3.exe not disinfected postponed
26/02/2009 19:50 Orkas Ultimate File: c:\program files\avira\antivir personaledition classic\avgnt.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:50 Orkas Ultimate File: c:\program files\avira\antivir personaledition classic\avgnt.exe not disinfected postponed
26/02/2009 19:50 Orkas Ultimate File: c:\program files\topdesk\topdesk.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:50 Orkas Ultimate File: c:\program files\topdesk\topdesk.exe not disinfected postponed
26/02/2009 19:50 Orkas Ultimate File: c:\program files\clock\clock.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:50 Orkas Ultimate File: c:\program files\clock\clock.exe not disinfected postponed
26/02/2009 19:50 Orkas Ultimate File: c:\program files\windows sidebar\sidebar.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:50 Orkas Ultimate File: c:\program files\windows sidebar\sidebar.exe not disinfected postponed
26/02/2009 19:50 Orkas Ultimate File: c:\windows\system32\ctfmon.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:50 Orkas Ultimate File: c:\windows\system32\ctfmon.exe not disinfected postponed
26/02/2009 19:50 Orkas Ultimate File: c:\windows\system32\alg.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:50 Orkas Ultimate File: c:\windows\system32\alg.exe not disinfected postponed
26/02/2009 19:50 Orkas Ultimate File: c:\program files\avira\antivir personaledition classic\sched.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:50 Orkas Ultimate File: c:\program files\avira\antivir personaledition classic\sched.exe not disinfected postponed
26/02/2009 19:50 Orkas Ultimate File: c:\program files\avira\antivir personaledition classic\avguard.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:50 Orkas Ultimate File: c:\program files\avira\antivir personaledition classic\avguard.exe not disinfected postponed
26/02/2009 19:50 Orkas Ultimate File: c:\windows\atkkbservice.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:50 Orkas Ultimate File: c:\windows\atkkbservice.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: c:\progra~1\fichie~1\france telecom\shared modules\ftrtsvc\0\ftrtsvc.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: c:\progra~1\fichie~1\france telecom\shared modules\ftrtsvc\0\ftrtsvc.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: c:\windows\system32\nvsvc32.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: c:\windows\system32\nvsvc32.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: c:\windows\system32\spoolsv.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: c:\windows\system32\spoolsv.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: c:\program files\windows media player\wmpnetwk.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: c:\program files\windows media player\wmpnetwk.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: c:\program files\malwarebytes' anti-malware\mbam.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: c:\program files\malwarebytes' anti-malware\mbam.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: c:\documents and settings\administrateur\bureau\virus removal tool\is-v3gg1\startup.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: c:\documents and settings\administrateur\bureau\virus removal tool\is-v3gg1\startup.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: c:\documents and settings\administrateur\bureau\virus removal tool\is-v3gg1\is-v3gg1.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: c:\documents and settings\administrateur\bureau\virus removal tool\is-v3gg1\is-v3gg1.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: C:\WINDOWS\Explorer.EXE detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: C:\WINDOWS\Explorer.EXE not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: C:\WINDOWS\system32\ctfmon.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: C:\WINDOWS\system32\ctfmon.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: c:\windows\system32\rundll32.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: c:\windows\system32\rundll32.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: C:\WINDOWS\system32\rundll32.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: C:\WINDOWS\system32\rundll32.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: c:\windows\explorer.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: c:\windows\explorer.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: C:\WINDOWS\explorer.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: C:\WINDOWS\explorer.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: c:\windows\rthdcpl.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: c:\windows\rthdcpl.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: c:\windows\tsnpstd3.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: c:\windows\tsnpstd3.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: c:\program files\avira\antivir personaledition classic\avgnt.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: c:\program files\avira\antivir personaledition classic\avgnt.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: c:\program files\topdesk\topdesk.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: c:\program files\topdesk\topdesk.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: c:\program files\clock\clock.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: c:\program files\clock\clock.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: c:\program files\windows sidebar\sidebar.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: c:\program files\windows sidebar\sidebar.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: c:\windows\system32\ctfmon.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: c:\windows\system32\ctfmon.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: c:\windows\system32\alg.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: c:\windows\system32\alg.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: c:\program files\avira\antivir personaledition classic\sched.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: c:\program files\avira\antivir personaledition classic\sched.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: c:\program files\avira\antivir personaledition classic\avguard.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: c:\program files\avira\antivir personaledition classic\avguard.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: c:\windows\atkkbservice.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: c:\windows\atkkbservice.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: c:\progra~1\fichie~1\france telecom\shared modules\ftrtsvc\0\ftrtsvc.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: c:\progra~1\fichie~1\france telecom\shared modules\ftrtsvc\0\ftrtsvc.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: c:\windows\system32\nvsvc32.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: c:\windows\system32\nvsvc32.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: c:\windows\system32\spoolsv.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: c:\windows\system32\spoolsv.exe not disinfected postponed
26/02/2009 19:51 Orkas Ultimate File: c:\program files\windows media player\wmpnetwk.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:51 Orkas Ultimate File: c:\program files\windows media player\wmpnetwk.exe not disinfected postponed
26/02/2009 19:52 Orkas Ultimate File: c:\program files\malwarebytes' anti-malware\mbam.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:52 Orkas Ultimate File: c:\program files\malwarebytes' anti-malware\mbam.exe not disinfected postponed
26/02/2009 19:52 Orkas Ultimate File: c:\documents and settings\administrateur\bureau\virus removal tool\is-v3gg1\startup.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:52 Orkas Ultimate File: c:\documents and settings\administrateur\bureau\virus removal tool\is-v3gg1\startup.exe not disinfected postponed
26/02/2009 19:52 Orkas Ultimate File: c:\documents and settings\administrateur\bureau\virus removal tool\is-v3gg1\is-v3gg1.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:52 Orkas Ultimate File: c:\documents and settings\administrateur\bureau\virus removal tool\is-v3gg1\is-v3gg1.exe not disinfected postponed
26/02/2009 19:52 Orkas Ultimate File: C:\_OTMoveIt.rar/_OTMoveIt\MovedFiles\02252009_202607\WINDOWS\system32\gfcfrhqhg.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:52 Orkas Ultimate File: C:\_OTMoveIt.rar/_OTMoveIt\MovedFiles\02252009_202607\WINDOWS\system32\gfcfrhqhg.exe not disinfected postponed
26/02/2009 19:52 Orkas Ultimate File: C:\_OTMoveIt.rar/_OTMoveIt\MovedFiles\02252009_202607\WINDOWS\system32\havlopnde.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:52 Orkas Ultimate File: C:\_OTMoveIt.rar/_OTMoveIt\MovedFiles\02252009_202607\WINDOWS\system32\havlopnde.exe not disinfected postponed
26/02/2009 19:52 Orkas Ultimate File: C:\_OTMoveIt.rar/_OTMoveIt\MovedFiles\02252009_202607\WINDOWS\system32\mgdrwfsvl.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:52 Orkas Ultimate File: C:\_OTMoveIt.rar/_OTMoveIt\MovedFiles\02252009_202607\WINDOWS\system32\mgdrwfsvl.exe not disinfected postponed
26/02/2009 19:52 Orkas Ultimate File: C:\_OTMoveIt.rar/_OTMoveIt\MovedFiles\02252009_202607\WINDOWS\system32\tdwenvxpq.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:52 Orkas Ultimate File: C:\_OTMoveIt.rar/_OTMoveIt\MovedFiles\02252009_202607\WINDOWS\system32\tdwenvxpq.exe not disinfected postponed
26/02/2009 19:52 Orkas Ultimate File: C:\_OTMoveIt.rar/_OTMoveIt\MovedFiles\02252009_212422\jqrugftho.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:52 Orkas Ultimate File: C:\_OTMoveIt.rar/_OTMoveIt\MovedFiles\02252009_212422\jqrugftho.exe not disinfected postponed
26/02/2009 19:52 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\aspnet_compiler.exe.bac_a03624//CryptFF.b detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:52 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\aspnet_compiler.exe.bac_a03624//CryptFF.b not disinfected postponed
26/02/2009 19:52 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\aspnet_regbrowsers.exe.bac_a03624//CryptFF.b detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:52 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\aspnet_regbrowsers.exe.bac_a03624//CryptFF.b not disinfected postponed
26/02/2009 19:52 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\aspnet_regsql.exe.bac_a03624//CryptFF.b detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:52 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\aspnet_regsql.exe.bac_a03624//CryptFF.b not disinfected postponed
26/02/2009 19:52 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\CasPol.exe.bac_a03624//CryptFF.b detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:52 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\CasPol.exe.bac_a03624//CryptFF.b not disinfected postponed
26/02/2009 19:55 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\dfsvc.exe.bac_a03624//CryptFF.b detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:55 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\dfsvc.exe.bac_a03624//CryptFF.b not disinfected postponed
26/02/2009 19:55 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\DotNetInstaller.exe.bac_a03624//CryptFF.b detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:55 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\DotNetInstaller.exe.bac_a03624//CryptFF.b not disinfected postponed
26/02/2009 19:55 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\DvsParse.exe.bac_a03624//CryptFF.b detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:55 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\DvsParse.exe.bac_a03624//CryptFF.b not disinfected postponed
26/02/2009 19:55 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\DvsParse.vshost.exe.bac_a03624//CryptFF.b detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:55 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\DvsParse.vshost.exe.bac_a03624//CryptFF.b not disinfected postponed
26/02/2009 19:55 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\English-1.25.rar.bac_a03624//CryptFF.b/ryUVC11.com detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:55 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\English-1.25.rar.bac_a03624//CryptFF.b/ryUVC11.com not disinfected postponed
26/02/2009 19:55 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\fpremadm.exe.bac_a03624//CryptFF.b detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:55 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\fpremadm.exe.bac_a03624//CryptFF.b not disinfected postponed
26/02/2009 19:55 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\French-1.25.rar.bac_a03432//CryptFF.b/c84E5Vu.com detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:55 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\French-1.25.rar.bac_a03432//CryptFF.b/c84E5Vu.com not disinfected postponed
26/02/2009 19:55 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\French-1.25.rar.bac_a03436//CryptFF.b detected virus 'Virus.Win32.Virut.n' by hash
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\French-1.25.rar.bac_a03624//CryptFF.b/WVsHq5q.com detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\French-1.25.rar.bac_a03624//CryptFF.b/WVsHq5q.com not disinfected postponed
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\IEExec.exe.bac_a03624//CryptFF.b detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\IEExec.exe.bac_a03624//CryptFF.b not disinfected postponed
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\images_brand.zip.bac_a01248//CryptFF.b/V6p1b2E.gif .scr detected Trojan program 'Backdoor.Win32.Rbot.itx'
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\images_brand.zip.bac_a01248//CryptFF.b/V6p1b2E.gif .scr not disinfected postponed
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\InstallUtil.exe.bac_a03624//CryptFF.b detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\InstallUtil.exe.bac_a03624//CryptFF.b not disinfected postponed
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\jsc.exe.bac_a03624//CryptFF.b detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\jsc.exe.bac_a03624//CryptFF.b not disinfected postponed
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\launcher_gui.exe.bac_a03624//CryptFF.b detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\launcher_gui.exe.bac_a03624//CryptFF.b not disinfected postponed
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\lights.exe.bac_a03624//CryptFF.b detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\lights.exe.bac_a03624//CryptFF.b not disinfected postponed
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\MSBuild.exe.bac_a03624//CryptFF.b detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\MSBuild.exe.bac_a03624//CryptFF.b not disinfected postponed
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\npds.zip.bac_a01248//CryptFF.b/xBGP786.gif .scr detected Trojan program 'Backdoor.Win32.Rbot.itx'
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\npds.zip.bac_a01248//CryptFF.b/xBGP786.gif .scr not disinfected postponed
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\nvudisp.exe.bac_a03624//CryptFF.b detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\nvudisp.exe.bac_a03624//CryptFF.b not disinfected postponed
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\r4sdhc1.21.rar.bac_a03624//CryptFF.b/xL115n5.com detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\r4sdhc1.21.rar.bac_a03624//CryptFF.b/xL115n5.com not disinfected postponed
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\RegAsm.exe.bac_a03624//CryptFF.b detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\RegAsm.exe.bac_a03624//CryptFF.b not disinfected postponed
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\regedt32.exe.bac_a03624//CryptFF.b detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\regedt32.exe.bac_a03624//CryptFF.b not disinfected postponed
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\RegSvcs.exe.bac_a03624//CryptFF.b detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\RegSvcs.exe.bac_a03624//CryptFF.b not disinfected postponed
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\SpiderSolitaire.exe.bac_a03624//CryptFF.b detected virus 'Virus.Win32.Virut.n'
26/02/2009 19:56 Orkas Ultimate File: C:\Documents and Settings\Administrateur\.housecall6.6\Quarantine\SpiderSolitaire.exe.bac_a03624//CryptFF.b not disinfected postponed
26/02/2009 20:05 Orkas Ultimate File: C:\Documents and Settings\Administrateur\Bureau\English-1.25.rar/ryUVC11.com detected virus 'Virus.Win32.Virut.n'
26/02/2009 20:05 Orkas Ultimate File: C:\Documents and Settings\Administrateur\Bureau\English-1.25.rar/ryUVC11.com not disinfected postponed
26/02/2009 20:05 Orkas Ultimate File: C:\Documents and Settings\Administrateur\Bureau\English.1.52_RP.rar/TYfPIg8.com detected virus 'Virus.Win32.Virut.n'
26/02/2009 20:05 Orkas Ultimate File: C:\Documents and Settings\Administrateur\Bureau\English.1.52_RP.rar/TYfPIg8.com not disinfected postponed
26/02/2009 20:05 Orkas Ultimate File: C:\Documents and Settings\Administrateur\Bureau\French-1.25.rar/WVsHq5q.com detected virus 'Virus.Win32.Virut.n'
26/02/2009 20:05 Orkas Ultimate File: C:\Documents and Settings\Administrateur\Bureau\French-1.25.rar/WVsHq5q.com not disinfected postponed
26/02/2009 20:05 Orkas Ultimate File: C:\Documents and Settings\Administrateur\Bureau\OTMoveIt3.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 20:05 Orkas Ultimate File: C:\Documents and Settings\Administrateur\Bureau\OTMoveIt3.exe not disinfected postponed
26/02/2009 20:05 Orkas Ultimate File: C:\Documents and Settings\Administrateur\Bureau\r4sdhc1.21.rar/xL115n5.com detected virus 'Virus.Win32.Virut.n'
26/02/2009 20:05 Orkas Ultimate File: C:\Documents and Settings\Administrateur\Bureau\r4sdhc1.21.rar/xL115n5.com not disinfected postponed
26/02/2009 20:06 Orkas Ultimate File: C:\Documents and Settings\Administrateur\Bureau\Virus Removal Tool\is-V3GG1\is-V3GG1.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 20:06 Orkas Ultimate File: C:\Documents and Settings\Administrateur\Bureau\Virus Removal Tool\is-V3GG1\is-V3GG1.exe not disinfected postponed
26/02/2009 20:06 Orkas Ultimate File: C:\Documents and Settings\Administrateur\Bureau\Virus Removal Tool\is-V3GG1\minst.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 20:06 Orkas Ultimate File: C:\Documents and Settings\Administrateur\Bureau\Virus Removal Tool\is-V3GG1\minst.exe not disinfected postponed
26/02/2009 20:06 Orkas Ultimate File: C:\Documents and Settings\Administrateur\Bureau\Virus Removal Tool\is-V3GG1\startup.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 20:06 Orkas Ultimate File: C:\Documents and Settings\Administrateur\Bureau\Virus Removal Tool\is-V3GG1\startup.exe not disinfected postponed
26/02/2009 20:06 Orkas Ultimate File: C:\Documents and Settings\Administrateur\Bureau\Virus Removal Tool\is-V3GG1\drivers\drvins32.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 20:06 Orkas Ultimate File: C:\Documents and Settings\Administrateur\Bureau\Virus Removal Tool\is-V3GG1\drivers\drvins32.exe not disinfected postponed
26/02/2009 20:08 Orkas Ultimate File: C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\MailSkinnerrtk.zip/msksetup.log password protected
26/02/2009 20:08 Orkas Ultimate File: C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\MailSkinnerrtk.zip/sbRecovery.ini password protected
26/02/2009 20:08 Orkas Ultimate File: C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\MicrosoftWindowsSecurityCenterAntiVirusOverride.zip/sbRecovery.reg password protected
26/02/2009 20:08 Orkas Ultimate File: C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\MicrosoftWindowsSecurityCenterAntiVirusOverride.zip/sbRecovery.ini password protected
26/02/2009 20:08 Orkas Ultimate File: C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\MicrosoftWindowsSecurityCenterdisabled.zip/sbRecovery.reg password protected
26/02/2009 20:08 Orkas Ultimate File: C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\MicrosoftWindowsSecurityCenterdisabled.zip/sbRecovery.ini password protected
26/02/2009 20:08 Orkas Ultimate File: C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\MicrosoftWindowsSecurityCenterFirewallOverride.zip/sbRecovery.reg password protected
26/02/2009 20:08 Orkas Ultimate File: C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy\Recovery\MicrosoftWindowsSecurityCenterFirewallOverride.zip/sbRecovery.ini password protected
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\avcenter.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\avcenter.exe not disinfected postponed
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\avconfig.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\avconfig.exe not disinfected postponed
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe not disinfected postponed
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe not disinfected postponed
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\avnotify.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\avnotify.exe not disinfected postponed
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\avscan.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\avscan.exe not disinfected postponed
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\fact.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\fact.exe not disinfected postponed
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\guardgui.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\guardgui.exe not disinfected postponed
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\licmgr.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\licmgr.exe not disinfected postponed
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\preupd.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\preupd.exe not disinfected postponed
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe not disinfected postponed
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\setup.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\setup.exe not disinfected postponed
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\update.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Avira\AntiVir PersonalEdition Classic\update.exe not disinfected postponed
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Clock\Clock.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Clock\Clock.exe not disinfected postponed
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Fichiers communs\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 20:14 Orkas Ultimate File: C:\Program Files\Fichiers communs\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe not disinfected postponed
26/02/2009 20:15 Orkas Ultimate File: C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe detected virus 'Virus.Win32.Virut.n'
26/02/2009 20:15 Orkas Ultimate File: C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe not disinfected postponed
26/02/2009 20:17 Orkas Ultimate File: C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1036\AboutBox.zip/g67V8jB.gif .scr detected Trojan program 'Backdoor.Win32.Rbot.itx'
26/02/2009 20:17 Orkas Ultimate File: C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1036\AboutBox.zip/g67V8jB.gif .scr not disinfected postponed
26/02/2009 20:17 Orkas Ultimate File: C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1036\AssemblyInfo.zip/pg03nH6.gif .scr detected Trojan program 'Backdoor.Win32.Rbot.itx'
26/02/2009 20:17 Orkas Ultimate File: C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1036\AssemblyInfo.zip/pg03nH6.gif .scr not disinfected postponed
26/02/2009 20:17 Orkas Ultimate File: C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1036\AssemblyInfoInternal.zip/yC0xNG2.gif .scr detected Trojan program 'Backdoor.Win32.Rbot.itx'
26/02/2009 20:17 Orkas Ultimate File: C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1036\AssemblyInfoInternal.zip/yC0xNG2.gif .scr not disinfected postponed
26/02/2009 20:17 Orkas Ultimate File: C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\VSTA\ItemTemplates\CSharp\1036\Form.zip/cQs7g4w.gif

Ton Windows est mort, il est pourri par Virut.

http://www.commentcamarche.net/faq [...] imer-virut

La majorité de tes questions ont leurs réponses dans l'astuce que je t'ai donné.

S'il reste un seul fichier contaminé par Virut, il réinfectera les autres.

Pour ton deuxième PC, tu peux toujours passer un coup d'AVPTool.

Tiens-moi au courant

Hmmm il ne passe pas. le rapport fait 1.65Mo. il y a une taille max à ne pas dépasser pour poster un message?
Je vais essayer de le poster en 2 fois