[VIRUS] Infecté par Backdoor.Small.DC
AkanleGrand
Messages postés
11
Statut
Membre
-
AkanleGrand Messages postés 11 Statut Membre -
AkanleGrand Messages postés 11 Statut Membre -
Comme indiqué dans le titre j'ai quelques petits soucis de virus et de trojan en ce moment. Comme il commence à y'en avoir un peu trop j'aimerai bien essayé de faire le ménage. Et puis on va commencer par le plus vieux : Backdoor.Small.DC (+ Generic.Malware.Ssp et Trojan.Downloader.Zlob.JF mais on verra plus tard).
Si quelqu'un pouvait m'aider se serait sympa. Merci.
Si quelqu'un pouvait m'aider se serait sympa. Merci.
A voir également:
- [VIRUS] Infecté par Backdoor.Small.DC
- Virus mcafee - Accueil - Piratage
- Virus informatique - Guide
- Panda anti virus gratuit - Télécharger - Antivirus & Antimalwares
- Undisclosed-recipients virus - Guide
- Ordinateur bloqué virus - Accueil - Arnaque
9 réponses
Vonjour,
Commençe par ça pour le nettoyage :
https://www.commentcamarche.net/faq/2490-supprimer-les-adwares-publicites-intempestives-pop-up-etc
Colle bien les 3 rapports
A++
Commençe par ça pour le nettoyage :
https://www.commentcamarche.net/faq/2490-supprimer-les-adwares-publicites-intempestives-pop-up-etc
Colle bien les 3 rapports
A++
---------------------------------------------------------
ewido anti-malware - Rapport de scan
---------------------------------------------------------
+ Créé le: 15:51:37, 11/05/2006
+ Somme de contrôle: 7EC600FF
+ Résultats du scan:
:mozilla.6:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.7:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.8:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.9:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.10:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.11:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.13:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
:mozilla.18:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyer et sauvegarder
:mozilla.19:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyer et sauvegarder
:mozilla.20:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyer et sauvegarder
:mozilla.28:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Sextracker : Nettoyer et sauvegarder
:mozilla.29:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Sextracker : Nettoyer et sauvegarder
:mozilla.30:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyer et sauvegarder
:mozilla.31:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder
:mozilla.32:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder
:mozilla.33:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder
:mozilla.34:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder
:mozilla.35:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder
:mozilla.36:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder
:mozilla.45:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Valuead : Nettoyer et sauvegarder
:mozilla.46:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Valuead : Nettoyer et sauvegarder
:mozilla.47:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Valuead : Nettoyer et sauvegarder
:mozilla.48:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Valuead : Nettoyer et sauvegarder
:mozilla.54:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
:mozilla.55:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
:mozilla.74:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Estat : Nettoyer et sauvegarder
:mozilla.112:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Com : Nettoyer et sauvegarder
:mozilla.129:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Trafic : Nettoyer et sauvegarder
:mozilla.131:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder
:mozilla.132:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder
:mozilla.138:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder
:mozilla.142:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyer et sauvegarder
:mozilla.143:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyer et sauvegarder
:mozilla.153:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder
C:\Documents and Settings\Charles-Antoine\Cookies\charles-antoine@weborama[2].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
C:\Documents and Settings\Charles-Antoine\Cookies\charles-antoine@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.7:C:\Documents and Settings\Marianne\Application Data\Mozilla\Firefox\Profiles\032g2r2m.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.23:C:\Documents and Settings\Marianne\Application Data\Mozilla\Firefox\Profiles\032g2r2m.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder
:mozilla.24:C:\Documents and Settings\Marianne\Application Data\Mozilla\Firefox\Profiles\032g2r2m.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.25:C:\Documents and Settings\Marianne\Application Data\Mozilla\Firefox\Profiles\032g2r2m.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.28:C:\Documents and Settings\Marianne\Application Data\Mozilla\Firefox\Profiles\032g2r2m.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.10:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\l8w7f5ze.default\cookies.txt -> TrackingCookie.Estat : Nettoyer et sauvegarder
C:\Documents and Settings\Pascal\Cookies\pascal@estat[1].txt -> TrackingCookie.Estat : Nettoyer et sauvegarder
C:\Documents and Settings\Pascal\Cookies\pascal@weborama[1].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
C:\OEMCUST\TOOLS\WIN32\PSKILL.EXE -> Not-A-Virus.NetTool.Win32.PsKill : Nettoyer et sauvegarder
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP787\A0211840.EXE -> Not-A-Virus.NetTool.Win32.PsKill : Nettoyer et sauvegarder
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP789\A0212036.EXE -> Not-A-Virus.NetTool.Win32.PsKill : Nettoyer et sauvegarder
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP789\A0212149.EXE -> Not-A-Virus.NetTool.Win32.PsKill : Nettoyer et sauvegarder
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP789\A0212259.EXE -> Not-A-Virus.NetTool.Win32.PsKill : Nettoyer et sauvegarder
::Fin du rapport
ewido anti-malware - Rapport de scan
---------------------------------------------------------
+ Créé le: 15:51:37, 11/05/2006
+ Somme de contrôle: 7EC600FF
+ Résultats du scan:
:mozilla.6:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.7:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.8:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.9:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
:mozilla.10:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.11:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.13:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyer et sauvegarder
:mozilla.18:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyer et sauvegarder
:mozilla.19:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyer et sauvegarder
:mozilla.20:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyer et sauvegarder
:mozilla.28:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Sextracker : Nettoyer et sauvegarder
:mozilla.29:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Sextracker : Nettoyer et sauvegarder
:mozilla.30:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Casalemedia : Nettoyer et sauvegarder
:mozilla.31:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder
:mozilla.32:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder
:mozilla.33:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder
:mozilla.34:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder
:mozilla.35:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder
:mozilla.36:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Zedo : Nettoyer et sauvegarder
:mozilla.45:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Valuead : Nettoyer et sauvegarder
:mozilla.46:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Valuead : Nettoyer et sauvegarder
:mozilla.47:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Valuead : Nettoyer et sauvegarder
:mozilla.48:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Valuead : Nettoyer et sauvegarder
:mozilla.54:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
:mozilla.55:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyer et sauvegarder
:mozilla.74:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Estat : Nettoyer et sauvegarder
:mozilla.112:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Com : Nettoyer et sauvegarder
:mozilla.129:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Trafic : Nettoyer et sauvegarder
:mozilla.131:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder
:mozilla.132:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyer et sauvegarder
:mozilla.138:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyer et sauvegarder
:mozilla.142:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyer et sauvegarder
:mozilla.143:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyer et sauvegarder
:mozilla.153:C:\Documents and Settings\Charles-Antoine\Application Data\Mozilla\Firefox\Profiles\g1hq6ldq.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyer et sauvegarder
C:\Documents and Settings\Charles-Antoine\Cookies\charles-antoine@weborama[2].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
C:\Documents and Settings\Charles-Antoine\Cookies\charles-antoine@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.7:C:\Documents and Settings\Marianne\Application Data\Mozilla\Firefox\Profiles\032g2r2m.default\cookies.txt -> TrackingCookie.2o7 : Nettoyer et sauvegarder
:mozilla.23:C:\Documents and Settings\Marianne\Application Data\Mozilla\Firefox\Profiles\032g2r2m.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyer et sauvegarder
:mozilla.24:C:\Documents and Settings\Marianne\Application Data\Mozilla\Firefox\Profiles\032g2r2m.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.25:C:\Documents and Settings\Marianne\Application Data\Mozilla\Firefox\Profiles\032g2r2m.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.28:C:\Documents and Settings\Marianne\Application Data\Mozilla\Firefox\Profiles\032g2r2m.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyer et sauvegarder
:mozilla.10:C:\Documents and Settings\Pascal\Application Data\Mozilla\Firefox\Profiles\l8w7f5ze.default\cookies.txt -> TrackingCookie.Estat : Nettoyer et sauvegarder
C:\Documents and Settings\Pascal\Cookies\pascal@estat[1].txt -> TrackingCookie.Estat : Nettoyer et sauvegarder
C:\Documents and Settings\Pascal\Cookies\pascal@weborama[1].txt -> TrackingCookie.Weborama : Nettoyer et sauvegarder
C:\OEMCUST\TOOLS\WIN32\PSKILL.EXE -> Not-A-Virus.NetTool.Win32.PsKill : Nettoyer et sauvegarder
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP787\A0211840.EXE -> Not-A-Virus.NetTool.Win32.PsKill : Nettoyer et sauvegarder
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP789\A0212036.EXE -> Not-A-Virus.NetTool.Win32.PsKill : Nettoyer et sauvegarder
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP789\A0212149.EXE -> Not-A-Virus.NetTool.Win32.PsKill : Nettoyer et sauvegarder
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP789\A0212259.EXE -> Not-A-Virus.NetTool.Win32.PsKill : Nettoyer et sauvegarder
::Fin du rapport
'lu,
Fais ceci :
Fais ceci :::
CleanUp! :
http://pageperso.aol.fr/Balltrap34/CleanUp40.exe
- Aide en image (merci à Balltrap34) :
http://pageperso.aol.fr/balltrap34/democleanup.htm
Et tu refais un EWIDO. (tu verras la différence)
Fais ceci :
Fais ceci :::
CleanUp! :
http://pageperso.aol.fr/Balltrap34/CleanUp40.exe
- Aide en image (merci à Balltrap34) :
http://pageperso.aol.fr/balltrap34/democleanup.htm
Et tu refais un EWIDO. (tu verras la différence)
BitDefender Online Scanner
Scan report generated at: Thu, May 11, 2006 - 17:17:46
Scan path: A:\;C:\;
Statistics
Time
01:15:54
Files
276741
Folders
6336
Boot Sectors
3
Archives
8057
Packed Files
22389
Results
Identified Viruses
2
Infected Files
3
Suspect Files
2
Warnings
0
Disinfected
0
Deleted Files
5
Engines Info
Virus Definitions
374371
Engine build
AVCORE v1.0 (build 2310) (i386) (Apr 17 2006 16:24:38)
Scan plugins
13
Archive plugins
40
Unpack plugins
4
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\Program Files\Softwin\BitDefender Free Edition\Infected\A0209951.exe
Infected with: Trojan.Downloader.Zlob.JF
C:\Program Files\Softwin\BitDefender Free Edition\Infected\A0209951.exe
Disinfection failed
C:\Program Files\Softwin\BitDefender Free Edition\Infected\A0209951.exe
Deleted
C:\Program Files\Softwin\BitDefender Free Edition\Suspect\A0211035.exe
Suspected of: Generic.Malware.Ssp.2F518A03
C:\Program Files\Softwin\BitDefender Free Edition\Suspect\A0211035.exe
Disinfection failed
C:\Program Files\Softwin\BitDefender Free Edition\Suspect\A0211035.exe
Deleted
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP792\A0212601.exe
Infected with: Trojan.Downloader.Zlob.JF
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP792\A0212601.exe
Disinfection failed
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP792\A0212601.exe
Deleted
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP792\A0212602.exe
Suspected of: Generic.Malware.Ssp.2F518A03
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP792\A0212602.exe
Disinfection failed
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP792\A0212602.exe
Deleted
C:\WINDOWS\winnt256.bmp=>:vmhmpq:$DATA
Infected with: Backdoor.Small.DC
C:\WINDOWS\winnt256.bmp=>:vmhmpq:$DATA
Disinfection failed
C:\WINDOWS\winnt256.bmp=>:vmhmpq:$DATA
Deleted
C:\WINDOWS\winnt256.bmp
Updated
Scan report generated at: Thu, May 11, 2006 - 17:17:46
Scan path: A:\;C:\;
Statistics
Time
01:15:54
Files
276741
Folders
6336
Boot Sectors
3
Archives
8057
Packed Files
22389
Results
Identified Viruses
2
Infected Files
3
Suspect Files
2
Warnings
0
Disinfected
0
Deleted Files
5
Engines Info
Virus Definitions
374371
Engine build
AVCORE v1.0 (build 2310) (i386) (Apr 17 2006 16:24:38)
Scan plugins
13
Archive plugins
40
Unpack plugins
4
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\Program Files\Softwin\BitDefender Free Edition\Infected\A0209951.exe
Infected with: Trojan.Downloader.Zlob.JF
C:\Program Files\Softwin\BitDefender Free Edition\Infected\A0209951.exe
Disinfection failed
C:\Program Files\Softwin\BitDefender Free Edition\Infected\A0209951.exe
Deleted
C:\Program Files\Softwin\BitDefender Free Edition\Suspect\A0211035.exe
Suspected of: Generic.Malware.Ssp.2F518A03
C:\Program Files\Softwin\BitDefender Free Edition\Suspect\A0211035.exe
Disinfection failed
C:\Program Files\Softwin\BitDefender Free Edition\Suspect\A0211035.exe
Deleted
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP792\A0212601.exe
Infected with: Trojan.Downloader.Zlob.JF
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP792\A0212601.exe
Disinfection failed
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP792\A0212601.exe
Deleted
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP792\A0212602.exe
Suspected of: Generic.Malware.Ssp.2F518A03
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP792\A0212602.exe
Disinfection failed
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP792\A0212602.exe
Deleted
C:\WINDOWS\winnt256.bmp=>:vmhmpq:$DATA
Infected with: Backdoor.Small.DC
C:\WINDOWS\winnt256.bmp=>:vmhmpq:$DATA
Disinfection failed
C:\WINDOWS\winnt256.bmp=>:vmhmpq:$DATA
Deleted
C:\WINDOWS\winnt256.bmp
Updated
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Logfile of HijackThis v1.99.1
Scan saved at 17:22:27, on 11/05/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Norton Internet Security\NISUM.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Norton Internet Security\ccPxySvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Virtual CD v4 SDK\system\vcsplay.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
C:\WINDOWS\system32\winlogon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Charles-Antoine\Mes documents\Download\Ewido\ewido anti-malware\ewidoguard.exe
C:\Documents and Settings\Charles-Antoine\Mes documents\Download\Ewido\ewido anti-malware\ewidoctrl.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
c:\progra~1\softwin\bitdef~1\bdmcon.exe
C:\Documents and Settings\Charles-Antoine\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Packard Bell
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {b0398eca-0bcd-4645-8261-5e9dc70248d0} - C:\WINDOWS\system32\hp9ED0.tmp (file missing)
O4 - HKLM\..\Run: [VCSPlayer] "C:\Program Files\Virtual CD v4 SDK\system\vcsplay.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [EPSON Stylus C84 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P23 "EPSON Stylus C84 Series" /O5 "LPT1:" /M "Stylus C84"
O4 - HKLM\..\Run: [ccRegVfy] "C:\Program Files\Fichiers communs\Symantec Shared\ccRegVfy.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [ATIPTA] C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [BDMCon] C:\progra~1\softwin\bitdef~1\bdmcon.exe
O4 - HKLM\..\Run: [BDNewsAgent] C:\progra~1\softwin\bitdef~1\bdnagent.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [TotalRecorderScheduler] "C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll (file missing)
O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll (file missing)
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O16 - DPF: teleir_cert - https://static.ir.dgi.minefi.gouv.fr/secure/connexion/archives/ie4n4/teleir_cert.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - https://onedrive.live.com/
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{883F80E0-FD8C-4BA0-8B3C-581952A32646}: NameServer = 194.51.251.1 194.51.251.2
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe" /service (file missing)
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Proxy Service (ccPxySvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\ccPxySvc.exe
O23 - Service: ewido security suite control - ewido networks - C:\Documents and Settings\Charles-Antoine\Mes documents\Download\Ewido\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Documents and Settings\Charles-Antoine\Mes documents\Download\Ewido\ewido anti-malware\ewidoguard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Norton Internet Security Accounts Manager (NISUM) - Symantec Corporation - C:\Program Files\Norton Internet Security\NISUM.EXE
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: Virtual CD v4 Security service (SDK - Version) (VCSSecS) - H+H Software GmbH - C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
O23 - Service: BitDefender Communicator (XCOMM) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe" /service (file missing)
Scan saved at 17:22:27, on 11/05/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Norton Internet Security\NISUM.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Norton Internet Security\ccPxySvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Virtual CD v4 SDK\system\vcsplay.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe
C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
C:\WINDOWS\system32\winlogon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Charles-Antoine\Mes documents\Download\Ewido\ewido anti-malware\ewidoguard.exe
C:\Documents and Settings\Charles-Antoine\Mes documents\Download\Ewido\ewido anti-malware\ewidoctrl.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
c:\progra~1\softwin\bitdef~1\bdmcon.exe
C:\Documents and Settings\Charles-Antoine\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.google.fr/?gws_rd=ssl
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Packard Bell
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {b0398eca-0bcd-4645-8261-5e9dc70248d0} - C:\WINDOWS\system32\hp9ED0.tmp (file missing)
O4 - HKLM\..\Run: [VCSPlayer] "C:\Program Files\Virtual CD v4 SDK\system\vcsplay.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [EPSON Stylus C84 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P23 "EPSON Stylus C84 Series" /O5 "LPT1:" /M "Stylus C84"
O4 - HKLM\..\Run: [ccRegVfy] "C:\Program Files\Fichiers communs\Symantec Shared\ccRegVfy.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [ATIPTA] C:\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [BDMCon] C:\progra~1\softwin\bitdef~1\bdmcon.exe
O4 - HKLM\..\Run: [BDNewsAgent] C:\progra~1\softwin\bitdef~1\bdnagent.exe
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [TotalRecorderScheduler] "C:\Program Files\HighCriteria\TotalRecorder\TotRecSched.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll (file missing)
O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll (file missing)
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O16 - DPF: teleir_cert - https://static.ir.dgi.minefi.gouv.fr/secure/connexion/archives/ie4n4/teleir_cert.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - https://onedrive.live.com/
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{883F80E0-FD8C-4BA0-8B3C-581952A32646}: NameServer = 194.51.251.1 194.51.251.2
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe" /service (file missing)
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Proxy Service (ccPxySvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\ccPxySvc.exe
O23 - Service: ewido security suite control - ewido networks - C:\Documents and Settings\Charles-Antoine\Mes documents\Download\Ewido\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Documents and Settings\Charles-Antoine\Mes documents\Download\Ewido\ewido anti-malware\ewidoguard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Norton Internet Security Accounts Manager (NISUM) - Symantec Corporation - C:\Program Files\Norton Internet Security\NISUM.EXE
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: Virtual CD v4 Security service (SDK - Version) (VCSSecS) - H+H Software GmbH - C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
O23 - Service: BitDefender Communicator (XCOMM) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe" /service (file missing)
Voila je viens de faire un CleanUp, c'est un peu flippant comme ça fait le ménage, j'ai pas trop eu le temps de comprendre ce qui se passait et maintenant un nouveau Ewido...
Et voila mon deuxième rapport d'Ewido
---------------------------------------------------------
ewido anti-malware - Rapport de scan
---------------------------------------------------------
+ Créé le: 18:04:07, 11/05/2006
+ Somme de contrôle: CFE028EF
+ Résultats du scan:
HKU\S-1-5-21-555781202-1787331667-4077210279-1007\Software\Classes\CLSID\{CA14EE13-ED15-C4A2-17FF-DA4D15C1BC5E} -> Adware.SpywareQuake : Nettoyer et sauvegarder
HKU\S-1-5-21-555781202-1787331667-4077210279-1007_Classes\CLSID\{CA14EE13-ED15-C4A2-17FF-DA4D15C1BC5E} -> Adware.SpywareQuake : Nettoyer et sauvegarder
C:\Program Files\backup-20060429-122404-627.dll -> Downloader.Zlob.ms : Nettoyer et sauvegarder
C:\Program Files\backup-20060429-122451-728.dll -> Downloader.Zlob.ms : Nettoyer et sauvegarder
C:\Program Files\backup-20060429-122510-347.dll -> Downloader.Zlob.ms : Nettoyer et sauvegarder
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP778\A0207824.tlb -> Downloader.Zlob.mt : Nettoyer et sauvegarder
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP779\A0207849.tlb -> Downloader.Zlob.mt : Nettoyer et sauvegarder
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP779\A0207871.tlb -> Downloader.Zlob.mt : Nettoyer et sauvegarder
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP779\A0207889.tlb -> Downloader.Zlob.mt : Nettoyer et sauvegarder
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP779\A0208889.tlb -> Downloader.Zlob.mt : Nettoyer et sauvegarder
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP779\A0208903.tlb -> Downloader.Zlob.mt : Nettoyer et sauvegarder
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP779\A0209906.tlb -> Downloader.Zlob.mt : Nettoyer et sauvegarder
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP779\A0209919.tlb -> Downloader.Zlob.mt : Nettoyer et sauvegarder
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP779\A0209936.tlb -> Downloader.Zlob.mt : Nettoyer et sauvegarder
C:\WINDOWS\system32\simpole.tlb -> Downloader.Zlob.mt : Nettoyer et sauvegarder
::Fin du rapport
---------------------------------------------------------
ewido anti-malware - Rapport de scan
---------------------------------------------------------
+ Créé le: 18:04:07, 11/05/2006
+ Somme de contrôle: CFE028EF
+ Résultats du scan:
HKU\S-1-5-21-555781202-1787331667-4077210279-1007\Software\Classes\CLSID\{CA14EE13-ED15-C4A2-17FF-DA4D15C1BC5E} -> Adware.SpywareQuake : Nettoyer et sauvegarder
HKU\S-1-5-21-555781202-1787331667-4077210279-1007_Classes\CLSID\{CA14EE13-ED15-C4A2-17FF-DA4D15C1BC5E} -> Adware.SpywareQuake : Nettoyer et sauvegarder
C:\Program Files\backup-20060429-122404-627.dll -> Downloader.Zlob.ms : Nettoyer et sauvegarder
C:\Program Files\backup-20060429-122451-728.dll -> Downloader.Zlob.ms : Nettoyer et sauvegarder
C:\Program Files\backup-20060429-122510-347.dll -> Downloader.Zlob.ms : Nettoyer et sauvegarder
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP778\A0207824.tlb -> Downloader.Zlob.mt : Nettoyer et sauvegarder
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP779\A0207849.tlb -> Downloader.Zlob.mt : Nettoyer et sauvegarder
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP779\A0207871.tlb -> Downloader.Zlob.mt : Nettoyer et sauvegarder
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP779\A0207889.tlb -> Downloader.Zlob.mt : Nettoyer et sauvegarder
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP779\A0208889.tlb -> Downloader.Zlob.mt : Nettoyer et sauvegarder
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP779\A0208903.tlb -> Downloader.Zlob.mt : Nettoyer et sauvegarder
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP779\A0209906.tlb -> Downloader.Zlob.mt : Nettoyer et sauvegarder
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP779\A0209919.tlb -> Downloader.Zlob.mt : Nettoyer et sauvegarder
C:\System Volume Information\_restore{9AEDEF4B-1977-4657-B854-EFDB21259CFF}\RP779\A0209936.tlb -> Downloader.Zlob.mt : Nettoyer et sauvegarder
C:\WINDOWS\system32\simpole.tlb -> Downloader.Zlob.mt : Nettoyer et sauvegarder
::Fin du rapport
