Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 22/02/2014
Scan Time: 20:17:15
Logfile: Report.txt
Administrator: Yes

Version: 2.00.0.0503
Malware Database: v2014.02.22.03
Rootikt Database: v2014.02.20.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Chameleon: Disabled

OS: Windows XP Service Pack 3
CPU: x86
File System: NTFS
User: Killer_VirusFr

Scan Type: Custom Scan
Result: Completed
Objects Scanned: 208295
Time Elapsed: 6 min, 49 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled

Processes: 7
Process, Backdoor.Agent.DCRSAGen, C:\WINDOWS\system32\MSDCSC\msdcsc.exe, , [d8a5d10d2d4d1c1ad8827e530ef211ef], 
Process, Trojan.Agent.Gen, C:\Documents and Settings\Killer_VirusFr\Application Data\VanToM Folder\VanToM.exe, , [9edf746a007a50e62921f09722de8878], 
Process, Trojan.MSIL, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\intrnet.exe, , [661732ac9ddd7abcfadf8f852bd9e719], 
Process, Backdoor.Agent.TRJ, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Trojan.exe, , [1c61f4eac5b52610157810d83dc3da26], 
Process, Trojan.MSIL.UL, C:\Documents and Settings\Killer_VirusFr\Application Data\svchost.exe, , [433aa737ff7b9f970ca46325b24ff709], 
Process, Trojan.MSIL, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\server.exe, , [7607439babcf37ffb62302120bf9966a], 
Process, Trojan.MSIL, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Svchost.exe, , [f786d806dc9eb97d7c5d18fc4db703fd], 

Modules: 0
(No malicious items detected)

Registry Keys: 3
Registry Key, Malware.Trace, HKCU\SOFTWARE\DC3_FEXEC, , [37468c529fdb6ec8afd046e549ba23dd], 
Registry Key, Malware.Trace, HKCU\SOFTWARE\FAKEMESSAGE, , [780589557dfd8da9e5b32677768c5aa6], 
Registry Key, Malware.Trace, HKCU\SOFTWARE\VB AND VBA PROGRAM SETTINGS\SrvID, , [3a43994598e2c76fd928dc2760a3ec14], 

Registry Values: 33
Registry Value, Backdoor.Agent.DCRSAGen, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|MicroUpdate, , [d8a5d10d2d4d1c1ad8827e530ef211ef], 
Registry Value, Trojan.Agent.Gen, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|VanToM, , [9edf746a007a50e62921f09722de8878], 
Registry Value, Trojan.MSIL, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|f7a74ce8d62a827374f896562655303d, , [661732ac9ddd7abcfadf8f852bd9e719], 
Registry Value, Trojan.MSIL, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|f7a74ce8d62a827374f896562655303d, , [661732ac9ddd7abcfadf8f852bd9e719], 
Registry Value, Backdoor.Agent.TRJ, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|5cd8f17f4086744065eb0992a09e05a2, , [1c61f4eac5b52610157810d83dc3da26], 
Registry Value, Backdoor.Agent.TRJ, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|5cd8f17f4086744065eb0992a09e05a2, , [1c61f4eac5b52610157810d83dc3da26], 
Registry Value, Backdoor.Agent.DCRSAGen, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|loh, , [1d60815dadcd4cea5a00eae704fc1fe1], 
Registry Value, Trojan.MSIL.UL, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|33a02ce3a6dc322bc7e588c3c6d40f38, , [433aa737ff7b9f970ca46325b24ff709], 
Registry Value, Trojan.MSIL.UL, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|33a02ce3a6dc322bc7e588c3c6d40f38, , [433aa737ff7b9f970ca46325b24ff709], 
Registry Value, Trojan.MSIL, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|378d21732268e1971ca57e15bd4a5ad9, , [7607439babcf37ffb62302120bf9966a], 
Registry Value, Trojan.MSIL, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|378d21732268e1971ca57e15bd4a5ad9, , [7607439babcf37ffb62302120bf9966a], 
Registry Value, Trojan.MSIL, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|b6b14442eb327de390e5ed1e983e5ab0, , [f786d806dc9eb97d7c5d18fc4db703fd], 
Registry Value, Trojan.MSIL, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|b6b14442eb327de390e5ed1e983e5ab0, , [f786d806dc9eb97d7c5d18fc4db703fd], 
Registry Value, Backdoor.XTRat, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|HKLM, , [f885dfff29516dc92db09e76fb062ed2], 
Registry Value, Backdoor.XTRat, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|svchost, , [f885dfff29516dc92db09e76fb062ed2], 
Registry Value, Backdoor.XTRat, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER\RUN|svchost, , [f885dfff29516dc92db09e76fb062ed2], 
Registry Value, Backdoor.XTRat, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|HKCU, , [f885dfff29516dc92db09e76fb062ed2], 
Registry Value, Backdoor.XTRat, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|svchost, , [f885dfff29516dc92db09e76fb062ed2], 
Registry Value, Backdoor.XTRat, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER\RUN|svchost, , [f885dfff29516dc92db09e76fb062ed2], 
Registry Value, Worm.Autorun, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|asaba3tsh, , [1b62d40af38734029c3d908b28d958a8], 
Registry Value, Trojan.Neurevt.FakeFB, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|Kydixirina, , [245935a969110f27b3ce3d50e71ad42c], 
Registry Value, Trojan.Kryptik, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|+obOwJbRAzd34AXM, , [9fdeb02ee892999de08e3fdc0202ae52], 
Registry Value, Spyware.Zbot.ED, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|Ipaxp, , [c3ba5d818deda0963b3d1c807c856b95], 
Registry Value, Trojan.Banker.ITL, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|IntelService, , [bcc10fcf7a000d29afcb90284ab9a25e], 
Registry Value, Malware.Trace, HKCU\SOFTWARE\FAKEMESSAGE|FakeMessage, , [780589557dfd8da9e5b32677768c5aa6], 
Registry Value, Hijack.FolderOptions, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER|NoFolderOptions, , [136ae4fa1c5e68ce8b32c83159a9ea16], 
Registry Value, Backdoor.Agent.DC, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER\RUN|Facebook Update, , [d9a4f8e67a00a6908d174a4238cbdc24], 
Registry Value, Worm.AutoRun.Gen, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|antaw4r19, , [add0aa34c2b80a2ce38b555956aca957], 
Registry Value, Trojan.SpyEyes, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|b1e1pr00, , [89f49f3f562481b50db0fbad9c66eb15], 
Registry Value, Malware.Trace.E, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|LoftWare, , [1c619d4197e36acc019d394f3ec48080], 
Registry Value, Backdoor.Agent.DC, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|Facebook Update, , [6815815d0971d06602a3b5d7fb080ff1], 
Registry Value, Trojan.Agent.AIVB, HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE|4gr75b2k2, , [8af35589fe7cb185519588fb986a1ee2], 
Registry Value, Trojan.Agent, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON|Taskman, , [ed906e70aad02412d28e28e6be459769], 

Registry Data: 2
Registry Data, Worm.Autorun, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON|Taskman, , [1b62d40af38734029c3d908b28d958a8], 
Registry Data, PUM.Hijack.CMDPrompt, HKCU\SOFTWARE\POLICIES\MICROSOFT\WINDOWS\SYSTEM|disablecmd, , [5c2124ba81f9ae8811a7f72e34d0f010], 

Folders: 5
Folder, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0, , [0875e5f976043cfa9f65d5c7ab578f71], 
Folder, Stolen.Data, C:\Documents and Settings\Killer_VirusFr\Application Data\dclogs, , [9ae3687685f551e5ad9831290003c838], 
Folder, Trojan.Logger, C:\Program Files\Accessories\Common, , [b2cb36a8ec8e0b2b8c57b6b9e022a35d], 
Folder, Trojan.Logger, C:\Program Files\Accessories\Common\WC, , [b2cb36a8ec8e0b2b8c57b6b9e022a35d], 
Folder, Trojan.Agent.BCM, C:\{$6975-5712-2121-7619$}, , [4439f1edef8b53e39e38d1ae51b1f50b], 

Files: 186
File, Backdoor.Agent.DCRSAGen, C:\WINDOWS\system32\MSDCSC\msdcsc.exe, , [d8a5d10d2d4d1c1ad8827e530ef211ef], 
File, Trojan.Agent.Gen, C:\Documents and Settings\Killer_VirusFr\Application Data\VanToM Folder\VanToM.exe, , [9edf746a007a50e62921f09722de8878], 
File, Trojan.MSIL, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\intrnet.exe, , [661732ac9ddd7abcfadf8f852bd9e719], 
File, Backdoor.Agent.TRJ, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Trojan.exe, , [1c61f4eac5b52610157810d83dc3da26], 
File, Backdoor.Agent.DCRSAGen, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\loh.exe, , [1d60815dadcd4cea5a00eae704fc1fe1], 
File, Trojan.MSIL.UL, C:\Documents and Settings\Killer_VirusFr\Application Data\svchost.exe, , [433aa737ff7b9f970ca46325b24ff709], 
File, Trojan.MSIL, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\server.exe, , [7607439babcf37ffb62302120bf9966a], 
File, Trojan.MSIL, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Svchost.exe, , [f786d806dc9eb97d7c5d18fc4db703fd], 
File, Backdoor.XTRat, C:\WINDOWS\WIN 7\HACKO.exe, , [f885dfff29516dc92db09e76fb062ed2], 
File, Worm.Autorun, C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-839714475\asaba3tsh.exe, , [1b62d40af38734029c3d908b28d958a8], 
File, Trojan.Neurevt.FakeFB, C:\Documents and Settings\Killer_VirusFr\Application Data\Hoduaw\lauz.exe, , [245935a969110f27b3ce3d50e71ad42c], 
File, Trojan.Kryptik, C:\Documents and Settings\Killer_VirusFr\Application Data\Microsoft\CryptnetUrlCache\MetaData\sysedit.exe, , [9fdeb02ee892999de08e3fdc0202ae52], 
File, Spyware.Zbot.ED, C:\Documents and Settings\Killer_VirusFr\Application Data\Ziak\ipaxp.exe, , [c3ba5d818deda0963b3d1c807c856b95], 
File, Trojan.Agent.AI, C:\Documents and Settings\Killer_VirusFr\Application Data\Microsoft\update.exe, , [6d102ab46d0d73c39c0364205ba56b95], 
File, Virus.Ramnit, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\$$$$$$.exe, , [86f7a23c7901ba7c5a60cde9bd4316ea], 
File, Backdoor.Bot.MSIL, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\11111-GNP.Scr, , [0578e6f82c4e92a4d3745eefe9187789], 
File, Trojan.Agent, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\64xbit.data, , [532a07d765152016a794e7334cb87090], 
File, Backdoor.Agent.DC, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\payment slip.exe, , [0479a03e5d1d0b2bcc98ed21827fa759], 
File, Trojan.Downloader, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\PolinaChat.sfx.exe, , [eb92fde1e8922d090592875c60a315eb], 
File, Trojan.Agent, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\Popular.exe, , [5429ad3124560f27e60167774eb59e62], 
File, Trojan.Dropper.MSIL, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\all song.EXE, , [b7c60bd385f513239ba860ee887c649c], 
File, Backdoor.Bot.MSIL, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\anor-gpj.Scr, , [1c61746ae09a300696b11736d52cc739], 
File, Trojan.JavaBun, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\App-SEDEX-00573210002001.scr, , [85f8b826b4c6c86e4b059c7fa65eab55], 
File, Worm.Autorun, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\ASIS.exe, , [2d50c21c1961072f9c3d6bb041c08b75], 
File, Trojan.PWS.LDPinch, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\automatic like.exe, , [81fc26b82d4dd2646a89ac5841c08779], 
File, Spyware.Password.Usteal, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\BlackGener.exe, , [0e6f815d0872a591d00316099f62916f], 
File, Trojan.MSIL, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\Dex.exe, , [b9c402dc700aec4a805951c356ae53ad], 
File, Spyware.WinSpy, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\Document.exe, , [58250bd342386bcbea763a5fec15b44c], 
File, Trojan.Agent.AI, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\Facebook-Hack-2014-NEW-!!.exe, , [c9b4fae4a0da88ae34400b1040c4a759], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\ask.exe, , [8bf220be4c2ea09623b63bc7c4405ba5], 
File, Trojan.MSIL, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\hack-facebook-v1.0.exe, , [c6b7ba24cfabc67087a508066e96fa06], 
File, Backdoor.Bot.MSIL, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\messi-gpj.Scr, , [4f2ebb2356247eb85deaea633fc2a35d], 
File, Trojan.CallH, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\vir (5).scr, , [2c51914d6d0db18544d976a5bd47dd23], 
File, Backdoor.Agent.DC, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\favorite.exe, , [37469648007a71c583e18e800ef3ec14], 
File, Trojan.MSIL, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\fe9965ccbc6ed2349e654c0e6ea3a671.exe, , [b6c7736b225893a394457f95e91bae52], 
File, Trojan.PWS.LDPinch, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\GooD.txt.exe, , [007d805ebdbd1521f8fb42c2768b857b], 
File, Trojan.MSIL.Agent, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\Hot Video S.exe, , [d1ac746a2f4b6dc9ef87c2591ee6c33d], 
File, Trojan.PWS.LDPinch, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\i'm not stiller.exe, , [ff7e805ee397122434bf3ec62bd6ee12], 
File, Trojan.PWS.LDPinch, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\JLeGioH_Utils.exe, , [5b22d10d6713b77f856ea460b64bce32], 
File, Virus.Neshta, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\Mail.ru Private only hiden10050010032352354 By sven.txt.exe, , [3c41786674068ea85e7a3c6102ff639d], 
File, Trojan.Banker, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\mal.exe, , [a8d5944a5327989e477a79493dc6c23e], 
File, Trojan.MSIL.Bladabindi, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\rar uploader.exe, , [e697f1edbbbf1c1a3eb4d6c30ff2936d], 
File, Trojan.PWS.LDPinch, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\result.exe, , [e39af2ecafcb83b335be2ed660a122de], 
File, Trojan.MSIL, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\Server (2).exe, , [82fba23cbfbbde58459456be47bd867a], 
File, Trojan.MSIL, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\Server.exe, , [453819c5bbbf8da94fdd937b90749868], 
File, Trojan.MSIL, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\Server.rar.exe, , [3c4111cd3941171ff13b19f5fc083dc3], 
File, Trojan.MSIL, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\Sunshine photo.exe, , [d1ac15c94b2f39fdba346c8945bb827e], 
File, Trojan.MSIL.Agent, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\Today News.exe, , [304d1ac4dd9d0c2a3650081309fb966a], 
File, Backdoor.Agent.DC, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\two.exe, , [265711cd35452a0cd490729cb44d44bc], 
File, Trojan.Downloader.DF, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\update.exe, , [621ba8364931b87e64fee13a22e245bb], 
File, Trojan.MSIL, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\upload.exe, , [aecfcc127a00ab8b9070356458a9bb45], 
File, Trojan.Banload, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\vir (1).cpl, , [8df08d514e2ce551f4e05f395da421df], 
File, Trojan.Dropper.SFX, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\vir (1).scr, , [205d0ed0f882fc3a970a80b436cc867a], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\vir (12).exe, , [54299d4188f283b359bfd04b9b69d12f], 
File, Trojan.Banker, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\vir (2).cpl, , [5825bc22a8d259dda6ec59db7d85bd43], 
File, Backdoor.Bladabindi.MSIL, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\vir (2).scr, , [403d6c7282f89c9af1c99bfdd92830d0], 
File, Trojan.Banload, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\vir (3).cpl, , [453826b8dc9e1b1b14818aaacc365da3], 
File, Trojan.Agent, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\vir (3).scr, , [691498461f5b32041caffb88a15f0ef2], 
File, Trojan.MSIL.CC, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\vir (30).exe, , [790408d6c4b6ac8a34efe03b9c68a858], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\vir (37).exe, , [ccb1cd11f189a78fff193cdfef15eb15], 
File, Spyware.ZeuS, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\vir (4).scr, , [0b722eb00f6b94a2438ba8f0af52f20e], 
File, Trojan.Dropper.FKS, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\vir (6).exe, , [a4d9eaf497e38da9b076f02b29db4fb1], 
File, Trojan.Dropper.TST, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\vir (7).exe, , [3b4235a9aeccf44282a28893669eed13], 
File, Trojan.Agent, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\Viruses_Dowloader.exe, , [0c715a84c6b4171f3a917726c23fc040], 
File, Backdoor.Fynloski, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\Windows 9.exe, , [7ffede00730782b49785a43b16edbb45], 
File, Trojan.MSIL, C:\Documents and Settings\Killer_VirusFr\Bureau\2014-02-14\xxxxx.exe, , [7706c915a7d3999d314cacee2fd224dc], 
File, Backdoor.Bot.MSIL, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\2968, , [215cc8168ded2016bffbf5a4df226b95], 
File, Trojan.VBAgent, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\HF.EXE, , [324b66782b4f44f29c29efdc2ad6d52b], 
File, Spyware.WinSpy, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\java.exe, , [334a1fbf4d2d69cd80e0316868995aa6], 
File, Spyware.Password, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\messenger.exe, , [7607835b2f4b96a0500d3267f0113bc5], 
File, Spyware.Password, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\rdbms.exe, , [84f93da186f43bfb4814c7d2b051bd43], 
File, Spyware.InfoStealer, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\RDS.exe, , [7ffe3f9ffd7d3df96feb02979e633cc4], 
File, Spyware.Password, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\windns.exe, , [e7965c82cfab1a1c035bb8e17a8736ca], 
File, Trojan.MSIL.UL, C:\Documents and Settings\Killer_VirusFr\Menu Démarrer\Programmes\Démarrage\33a02ce3a6dc322bc7e588c3c6d40f38.exe, , [c2bb6876215976c0357b2761e71a32ce], 
File, Trojan.MSIL.GenX, C:\Documents and Settings\Killer_VirusFr\Menu Démarrer\Programmes\Démarrage\378d21732268e1971ca57e15bd4a5ad9.exe, , [df9e20be215940f6f277c07bcd34b34d], 
File, Trojan.MSIL.GenX, C:\Documents and Settings\Killer_VirusFr\Menu Démarrer\Programmes\Démarrage\5cd8f17f4086744065eb0992a09e05a2.exe, , [e89532acd1a937ff82e73ffc50b1f907], 
File, Trojan.MSIL.GenX, C:\Documents and Settings\Killer_VirusFr\Menu Démarrer\Programmes\Démarrage\b6b14442eb327de390e5ed1e983e5ab0.exe, , [2a53b925cab078bed49552e99d64f010], 
File, Spyware.Password, C:\Program Files\VbNet\messenger.exe, , [dba2d00e403aef47233a2d6ca65b837d], 
File, Spyware.Password, C:\Program Files\VbNet\rdbms.exe, , [0e6f03db5f1b7eb8b5a71c7d946d5ea2], 
File, Spyware.InfoStealer, C:\Program Files\VbNet\RDS.exe, , [512c459944367fb7a6b49603cc359e62], 
File, Spyware.Password, C:\Program Files\VbNet\windns.exe, , [285508d66b0fe74f035b8514cf3235cb], 
File, Trojan.Dropper, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011642.exe, , [720b1bc34436102603aa1b7d12ef19e7], 
File, Backdoor.Agent, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011646.exe, , [b3ca6975e09ad3630fae92a3fd0745bb], 
File, Backdoor.CyberGate, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011647.exe, , [5a234a94dd9d999d9325fc217b8606fa], 
File, Trojan.Downloader.Agent, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011648.exe, , [87f659856c0eed4984857e1c847d817f], 
File, Backdoor.Agent.DCRSAGen, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011649.exe, , [730ac618c9b1280e95c516bbc33d669a], 
File, Trojan.Agent.FSA74, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011650.exe, , [c9b404da9ddd65d12422c5931ae78a76], 
File, Trojan.Dropper.MSIL, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011651.exe, , [651878664b2f191d47fc9bb3d82c9868], 
File, Spyware.WinSpy, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011652.exe, , [bebfa7377ffbf64074ecdebbf50c5ba5], 
File, Backdoor.Agent.DCRSAGen, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011653.exe, , [f98469759fdbab8bf664b71ab34d8b75], 
File, Trojan.Agent.FSA74, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011654.exe, , [116c0dd176048aac9aac263225dcb050], 
File, Trojan.Dropper.Dapato, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011655.exe, , [ff7e1fbff3877bbbaa449aff2fd29a66], 
File, Trojan.Neurevt.FakeFB, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011656.exe, , [7805716d1961ed49acd5028bdf2220e0], 
File, Spyware.Zbot.ED, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011658.exe, , [7c01706e87f30234b6913d56bc457888], 
File, Backdoor.Agent.DCRSAGen, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011659.exe, , [90edbf1fd8a2d85e5cfe02cfce32837d], 
File, Backdoor.Agent.DCRSAGen, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011660.exe, , [1e5f01ddadcddd592238e9e854ac33cd], 
File, Trojan.Winlock, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011662.exe, , [7ffe4698e5959f9724f451337f814cb4], 
File, Trojan.Zbot, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011663.exe, , [3746a539700a15217ac399fe32cf56aa], 
File, Trojan.Agent.ED, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011664.exe, , [631af9e5bebc81b5c174c4d6a061f50b], 
File, Trojan.Inject, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011665.exe, , [f18c706eee8c9c9ab6a20791a55c8f71], 
File, Trojan.Winlock, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011666.exe, , [b6c77a64126845f11800572d4eb24ab6], 
File, Trojan.Zbot, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011667.exe, , [b4c94995cbaf84b2ff3ef1a6fd04d12f], 
File, Trojan.Banker, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011668.exe, , [403d78666e0cf3439fdcf19327d94db3], 
File, Backdoor.Bot.MSIL, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011670.exe, , [631ad00e3149a88e2892bbde748d27d9], 
File, Backdoor.Agent.TRJ, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011671.exe, , [b4c9b42ab1c938fe800d33b551af0df3], 
File, Trojan.MSIL.UL, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011672.exe, , [126b7569ec8ee1554769691f4ab7ea16], 
File, Trojan.MSIL, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011673.exe, , [3e3f99459fdb0234a138ae66c53fa55b], 
File, Trojan.MSIL, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011674.exe, , [9de0fbe397e30a2c914842d2be4649b7], 
File, Trojan.Zbot, C:\System Volume Information\_restore{77A0220E-C3D6-4205-A2BE-1CAB9B5AED94}\RP6\A0011661.exe, , [b4c96c7208720333102defa843be37c9], 
File, Virus.Neshta, C:\WINDOWS\svchost.com, , [5627904e09719e989f11baec9b6552ae], 
File, Trojan.Dropper.MST, C:\Documents and Settings\Killer_VirusFr\Local Settings\Application DataDSWixtEyfn.exe, , [17664599ccae8caa51b2b8cd20e28e72], 
File, Trojan.Dropper.MST, C:\Documents and Settings\Killer_VirusFr\Local Settings\Application DataKNkwtDUbRc.exe, , [2855a23c3545a88ef90abbcac43e3ac6], 
File, Trojan.Dropper.MST, C:\Documents and Settings\Killer_VirusFr\Local Settings\Application DataSJTJsWYQNt.PNG, , [6b12b9254b2fa98da360e69f50b2d22e], 
File, Trojan.Dropper.MST, C:\Documents and Settings\Killer_VirusFr\Local Settings\Application DataxAGuyctg_I.jpg, , [6518f1ed344675c111f21c690101af51], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\zipinfo.txt, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\inmsg.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\resu.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\ass.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\delkl.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\dete.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\dunin.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\emdc.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\emfz.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\emfzb.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\emine.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\eminu.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\emon.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\emoo.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\ftde.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\ften.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\ftin.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\ftpa.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\ftps.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\ftsv.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\fttx.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\ftus.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\inter.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\inuser.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\kp764.sys, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\kp786.sys, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\kpx.sys, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\mail.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\mailkl.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\mailsc.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\MSWINSCK.OCX, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\ntfsv.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\oem.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\port.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\pwhost.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\refsdm.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\rmdesk.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\rvhost.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\rvport.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\rwce.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\rwci.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\rwcs.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\scan.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\sccle.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\scday.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\scen.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\scint.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\scint2.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\scloc.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\seek.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\seekil.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\sid2.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\ssap.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\type.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\unin.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\update.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\user.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\ushost.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Backdoor.Bot, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Compress0\weben.dll, , [0875e5f976043cfa9f65d5c7ab578f71], 
File, Stolen.Data, C:\Documents and Settings\Killer_VirusFr\Application Data\dclogs\2014-02-22-7.dc, , [9ae3687685f551e5ad9831290003c838], 
File, Trojan.Agent, C:\Documents and Settings\Killer_VirusFr\Application Data\msconfig.ini, , [88f509d5d3a76ec8f6de88f3a261d62a], 
File, Backdoor.Agent.TRJ, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\torjan.exe, , [4e2f13cb2b4ff343b78aa6dfc93a05fb], 
File, Backdoor.Agent.TRJ, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\torjan.exe.tmp, , [de9f409e8befdd591f220a7b02014eb2], 
File, Trojan.Agent, C:\Documents and Settings\Killer_VirusFr\Local Settings\temp\Trojan.exe.tmp, , [99e4ad3184f6ad89219a950234cf41bf], 
File, Trojan.Agent.Gen, C:\Documents and Settings\Killer_VirusFr\Menu Démarrer\Programmes\Démarrage\1.exe, , [81fc3ca258229b9b3b55179824df9c64], 
File, Backdoor.Agent, C:\Documents and Settings\All Users\explorer.exe, , [ed903ea00f6b3ff7a5385c57689bfc04], 
File, Trojan.Banker.ITL, C:\Documents and Settings\Killer_VirusFr\Local Settings\Application Data\IntelService\IntelService.exe, , [bcc10fcf7a000d29afcb90284ab9a25e], 
File, Worm.AutoRun.Gen, C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-5681\atnxwa1.exe, , [add0aa34c2b80a2ce38b555956aca957], 
File, Trojan.SpyEyes, C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-11820146\b12pr100.exe, , [89f49f3f562481b50db0fbad9c66eb15], 
File, Trojan.Agent.AIVB, C:\Documents and Settings\Killer_VirusFr\4gr75b2k2\54402.vbs, , [8af35589fe7cb185519588fb986a1ee2], 
File, Trojan.Logger, C:\Program Files\Accessories\Common\desktop.ini, , [b2cb36a8ec8e0b2b8c57b6b9e022a35d], 
File, Trojan.Agent.BCM, C:\{$6975-5712-2121-7619$}\comhost.exe, , [4439f1edef8b53e39e38d1ae51b1f50b], 

Physical Sectors: 0
(No malicious items detected)


(end)