Sujet Précédent Sujet Suivant

Security toolbar 7.1 , au secour

Fermé
rajhda - 14 nov. 2007 à 22:25
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 - 22 nov. 2007 à 15:15
Bonjour,
moi aussi je me suis fais infecté par "security toolbar 7.1"
comme lu sur le forum, j'ai utilisé le "hijackthis", dont voici le rapport ci dessous.
je vous remercie de votre aide et merci de me renseigner du dédommagement.




Bonjour,
Logfile of HijackThis v1.99.1
Scan saved at 22:16:14, on 14/11/2007
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
E:\WINDOWS\System32\smss.exe
E:\WINDOWS\system32\winlogon.exe
E:\WINDOWS\system32\services.exe
E:\WINDOWS\system32\lsass.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\Explorer.EXE
E:\WINDOWS\system32\spoolsv.exe
E:\WINDOWS\System32\antiv.exe
E:\WINDOWS\sdir\relpk.exe
D:\ipod\iTunesHelper.exe
E:\WINDOWS\System32\ctfmon.exe
E:\WINDOWS\system\NOTEPAD.exe
E:\Program Files\iPod\bin\iPodService.exe
E:\Program Files\Internet Explorer\iexplore.exe
E:\DOCUME~1\CHASTE~1\LOCALS~1\Temp\wineuje.exe
E:\Program Files\Internet Explorer\iexplore.exe
E:\Program Files\Internet Explorer\iexplore.exe
E:\Program Files\Internet Explorer\iexplore.exe
E:\Documents and Settings\CHASTEL PHILIPPE\Local Settings\Temp\Répertoire temporaire 1 pour hijackthis.zip\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - E:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: Security Toolbar - {11A69AE4-FBED-4832-A2BF-45AF82825583} - E:\WINDOWS\System32\fcgensiy.dll
O4 - HKLM\..\Run: [Application Layer Gateway Service] E:\WINDOWS\System32\algs.exe
O4 - HKLM\..\Run: [Local Security Authority Service] E:\WINDOWS\System32\lssas.exe
O4 - HKLM\..\Run: [Client Server Runtime Process] E:\WINDOWS\System32\csrs.exe
O4 - HKLM\..\Run: [Microsoft Anivirus Monitor Process] antiv.exe
O4 - HKLM\..\Run: [Microsoft Internet Explorer] E:\WINDOWS\System32\iexplore.exe
O4 - HKLM\..\Run: [Advanced DHTML Enable] E:\WINDOWS\sdir\relpk.exe
O4 - HKLM\..\Run: [QuickTime Task] "E:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "D:\ipod\iTunesHelper.exe"
O4 - HKLM\..\Run: [1c581776] rundll32.exe "E:\WINDOWS\System32\rwibxwed.dll",b
O4 - HKLM\..\RunServices: [Microsoft Anivirus Monitor Process] antiv.exe
O4 - HKCU\..\Run: [CTFMON.EXE] E:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\RunOnce: [CleanUp!] E:\Program Files\CleanUp!\Cleanup.exe /WindowsRestart
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O23 - Service: DomainService - Unknown owner - E:\WINDOWS\System32\ylossnuk.exe (file missing)
O23 - Service: h4m0v0k2 - Unknown owner - E:\WINDOWS\system32\svshost.exe (file missing)
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - E:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NOTEPAD - Unknown owner - E:\WINDOWS\system\NOTEPAD.exe
A voir également:

17 réponses

Réponse 1 / 17
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
14 nov. 2007 à 23:00
Salut

retélécharhe hijackthis et installe le sur le bureau

puis : fais un clic droit dessus < renommer < puis nomme le CCM.exe

puis poste un nouveau rapport stp

++
0
Réponse 2 / 17
rajhda
16 nov. 2007 à 19:33
Logfile of HijackThis v1.99.1
Scan saved at 19:10:20, on 16/11/2007
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
E:\WINDOWS\System32\smss.exe
E:\WINDOWS\system32\csrss.exe
E:\WINDOWS\system32\winlogon.exe
E:\WINDOWS\system32\services.exe
E:\WINDOWS\system32\lsass.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\Explorer.EXE
E:\WINDOWS\system32\spoolsv.exe
E:\WINDOWS\System32\antiv.exe
D:\ipod\iTunesHelper.exe
E:\WINDOWS\System32\ctfmon.exe
E:\WINDOWS\system\NOTEPAD.exe
E:\Program Files\iPod\bin\iPodService.exe
E:\WINDOWS\System32\wuauclt.exe
E:\Program Files\Internet Explorer\iexplore.exe
E:\Documents and Settings\CHASTEL PHILIPPE\Bureau\CCM.exe.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: {883b609e-e12f-230b-9074-afc31621a5a3} - {3a5a1261-3cfa-4709-b032-f21ee906b388} - E:\WINDOWS\System32\lpwlxnuf.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - E:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {A95B2816-1D7E-4561-A202-68C0DE02353A} - E:\WINDOWS\System32\fcgensiy.dll
O2 - BHO: (no name) - {DA712462-31B9-409C-8221-1370735B97E5} - E:\WINDOWS\System32\gebbb.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - E:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: Security Toolbar - {11A69AE4-FBED-4832-A2BF-45AF82825583} - E:\WINDOWS\System32\fcgensiy.dll
O4 - HKLM\..\Run: [Application Layer Gateway Service] E:\WINDOWS\System32\algs.exe
O4 - HKLM\..\Run: [Local Security Authority Service] E:\WINDOWS\System32\lssas.exe
O4 - HKLM\..\Run: [Client Server Runtime Process] E:\WINDOWS\System32\csrs.exe
O4 - HKLM\..\Run: [Microsoft Anivirus Monitor Process] antiv.exe
O4 - HKLM\..\Run: [Microsoft Internet Explorer] E:\WINDOWS\System32\iexplore.exe
O4 - HKLM\..\Run: [Advanced DHTML Enable] E:\WINDOWS\sdir\relpk.exe
O4 - HKLM\..\Run: [QuickTime Task] "E:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "D:\ipod\iTunesHelper.exe"
O4 - HKLM\..\Run: [1c581776] rundll32.exe "E:\WINDOWS\System32\fwopmkfi.dll",b
O4 - HKLM\..\Run: [Windows Explorer] E:\WINDOWS\System32\explorer.exe
O4 - HKLM\..\RunServices: [Microsoft Anivirus Monitor Process] antiv.exe
O4 - HKCU\..\Run: [CTFMON.EXE] E:\WINDOWS\System32\ctfmon.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O20 - AppInit_DLLs: E:\WINDOWS\System32\__c0029189.dat
O20 - Winlogon Notify: fccbcba - E:\WINDOWS\SYSTEM32\fccbcba.dll
O20 - Winlogon Notify: fcgensiy - E:\WINDOWS\SYSTEM32\fcgensiy.dll
O23 - Service: DomainService - Unknown owner - E:\WINDOWS\System32\ylossnuk.exe (file missing)
O23 - Service: h4m0v0k2 - Unknown owner - E:\WINDOWS\system32\svshost.exe (file missing)
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - E:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NOTEPAD - Unknown owner - E:\WINDOWS\system\NOTEPAD.exe

j'espère que ce noueau scan te permettra d'avancer
avec mes remerciements
0
Réponse 3 / 17
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
16 nov. 2007 à 19:34
très bien !

Télécharger ComboFix (par sUBs) sur le Bureau : http://download.bleepingcomputer.com/sUBs/ComboFix.exe

* Démarrer en mode sans echec
* Double cliquer combofix.exe.
* Appuyer sur la touche Y (Yes) pour démarrer le scan
* Le rapport sera crée dans: C:\Combofix.txt, poste le stp

++
0
Réponse 4 / 17
rajhda
16 nov. 2007 à 21:27
ComboFix 07-11-08.1 - CHASTEL PHILIPPE 2007-11-16 21:09:40.1 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.1.1252.33.1036.18.345 [GMT 1:00]
Running from: E:\Documents and Settings\CHASTEL PHILIPPE\Bureau\ComboFix.exe
* Created a new restore point
.

Incapable d'obtenir les privilèges Système

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

E:\Documents and Settings\All Users\Menu Démarrer\Live Safety Center.lnk
E:\Documents and Settings\All Users\Menu Démarrer\Online Security Guide.lnk
E:\Documents and Settings\CHASTEL PHILIPPE\Bureau\Live Safety Center.lnk
E:\Documents and Settings\CHASTEL PHILIPPE\Bureau\Online Security Guide.lnk
E:\Documents and Settings\CHASTEL PHILIPPE\Favoris\Online Security Guide.lnk
E:\WINDOWS\cookies.ini
E:\WINDOWS\system32\__c0029189.dat
E:\WINDOWS\system32\__c006CE5D.dat
E:\WINDOWS\system32\__c007DCB2.dat
E:\WINDOWS\system32\__c007ED69.dat
E:\WINDOWS\system32\__c0080E32.dat
E:\WINDOWS\system32\__c0085482.dat
E:\WINDOWS\system32\__c00B197D.dat
E:\WINDOWS\system32\__c00C5304.dat
E:\WINDOWS\system32\__c00E5544.dat
E:\WINDOWS\system32\acrtkbkf.dll
E:\WINDOWS\system32\acvwvjqt.dll
E:\WINDOWS\system32\aqtypbyh.dll
E:\WINDOWS\system32\ascyydhy.dll
E:\WINDOWS\system32\bbbeg.bak1
E:\WINDOWS\system32\bbbeg.bak2
E:\WINDOWS\system32\bbbeg.ini
E:\WINDOWS\system32\bbulyqdd.dll
E:\WINDOWS\system32\cbbmybop.dll
E:\WINDOWS\system32\cbhwehyo.dll
E:\WINDOWS\system32\csrs.exe
E:\WINDOWS\system32\djpoaoup.dll
E:\WINDOWS\system32\eojkxplw.dll
E:\WINDOWS\system32\fcgensiy.dllbox
E:\WINDOWS\system32\fgnfstpw.dll
E:\WINDOWS\system32\firewall.exe
E:\WINDOWS\system32\fjnfdtpe.dll
E:\WINDOWS\system32\gebbb.dll
E:\WINDOWS\system32\glrmuyhw.dll
E:\WINDOWS\system32\gqfyoenp.dll
E:\WINDOWS\system32\hfsdjckk.dll
E:\WINDOWS\system32\httsvejy.dll
E:\WINDOWS\system32\jagobfyo.dll
E:\WINDOWS\system32\jblorwkw.dll
E:\WINDOWS\system32\jyifgxcg.dll
E:\WINDOWS\system32\kiufamem.dll
E:\WINDOWS\system32\kjerjemu.dll
E:\WINDOWS\system32\kperepgk.dll
E:\WINDOWS\system32\ldcitxwg.dll
E:\WINDOWS\system32\leneirbh.dll
E:\WINDOWS\system32\loojrbik.dll
E:\WINDOWS\system32\luvkitum.dll
E:\WINDOWS\system32\mcpagvbh.dll
E:\WINDOWS\system32\mrkscrig.dll
E:\WINDOWS\system32\nedbqbdw.dll
E:\WINDOWS\system32\nuksndvi.dll
E:\WINDOWS\system32\ogtctkjw.dll
E:\WINDOWS\system32\pbfsaawn.dll
E:\WINDOWS\system32\pvigctdu.dll
E:\WINDOWS\system32\pxnyutsd.dll
E:\WINDOWS\system32\rbxrtnek.dll
E:\WINDOWS\system32\sgaadrcw.dll
E:\WINDOWS\system32\siqrxqqk.dll
E:\WINDOWS\system32\svlrcqbp.dll
E:\WINDOWS\system32\ubaoqykg.dll
E:\WINDOWS\system32\ujjhlnwl.dll
E:\WINDOWS\system32\vccxgsot.dll
E:\WINDOWS\system32\yaahpyeh.dll
E:\WINDOWS\system32\ymkhosjd.dll
E:\WINDOWS\system32\ynmiqhla.dll

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))

.
-------\LEGACY_DOMAINSERVICE
-------\DomainService


((((((((((((((((((((((((((((( Fichiers cr‚‚s 2007-10-16 to 2007-11-16 ))))))))))))))))))))))))))))))))))))
.

2007-11-16 21:14 74,996 E:\WINDOWS\system32\djvdt.exe
2007-11-16 21:08 51,200 --a------ E:\WINDOWS\NirCmd.exe
2007-11-16 20:46 31,193 --a------ E:\WINDOWS\system32\snck.exe
2007-11-16 20:46 30,841 --a------ E:\WINDOWS\system32\qpqtp.exe
2007-11-16 18:42 2,432 --a------ E:\WINDOWS\system32\unpr.sys
2007-11-15 14:34 79,936 --a------ E:\WINDOWS\system32\lpwlxnuf.dll
2007-11-15 14:32 <REP> d-------- E:\Program Files\Java
2007-11-15 14:28 85,056 --a------ E:\WINDOWS\system32\fwopmkfi.dll
2007-11-13 18:21 <REP> d-------- E:\Program Files\Lavasoft
2007-11-13 18:20 <REP> d-------- E:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2007-11-13 14:26 94,992 --a------ E:\WINDOWS\system32\Vb5fr.dll
2007-11-13 13:58 144,480 --a------ E:\WINDOWS\system32\qacnswkm.dll
2007-11-13 13:58 144,480 --a------ E:\WINDOWS\system32\fcgensiy.dll
2007-11-13 13:55 71,232 --a------ E:\WINDOWS\system32\fovsyufv.exe
2007-11-12 14:03 89,664 --a------ E:\WINDOWS\system32\ysesmewc.dll
2007-11-12 13:57 81,472 --a------ E:\WINDOWS\system32\isigkark.dll
2007-11-12 13:49 71,232 --a------ E:\WINDOWS\system32\muelqlko.exe
2007-11-11 15:50 <REP> d-------- E:\programme
2007-11-11 14:57 <REP> d-------- E:\Program Files\PAN vision
2007-11-11 14:57 222,208 --a------ E:\WINDOWS\IsUn040c.exe
2007-11-11 12:52 <REP> d--h----- E:\Program Files\InstallShield Installation Information
2007-11-11 12:51 <REP> d-------- E:\Program Files\Fichiers communs\InstallShield
2007-11-11 08:28 79,936 --a------ E:\WINDOWS\system32\bpafomtg.dll
2007-11-11 08:24 71,232 --a------ E:\WINDOWS\system32\vqvqqebh.exe
2007-11-09 15:30 71,232 --a------ E:\WINDOWS\system32\ahrqslca.exe
2007-11-08 17:06 <REP> d-------- E:\Documents and Settings\CHASTEL PHILIPPE\Application Data\vlc
2007-11-07 18:56 79,936 --a------ E:\WINDOWS\system32\jcabhpne.dll
2007-11-07 18:51 71,232 --a------ E:\WINDOWS\system32\kfsafbjh.exe
2007-11-05 16:03 83,008 --a------ E:\WINDOWS\system32\ktagdjsf.dll
2007-11-04 18:19 21,760 --a--c--- E:\WINDOWS\system32\dllcache\usbstor.sys
2007-11-04 18:17 <REP> d-------- E:\Program Files\iPod
2007-11-04 18:17 <REP> d-------- E:\Documents and Settings\CHASTEL PHILIPPE\Application Data\Apple Computer
2007-11-04 18:16 <REP> d-------- E:\Program Files\QuickTime
2007-11-04 18:16 <REP> d-------- E:\Documents and Settings\All Users\Application Data\Apple Computer
2007-11-04 18:15 <REP> d-------- E:\Program Files\Apple Software Update
2007-11-04 18:15 <REP> d-------- E:\Documents and Settings\All Users\Application Data\Apple
2007-11-04 18:04 549,720 --a------ E:\WINDOWS\system32\wuapi.dll
2007-11-04 18:04 325,976 --a------ E:\WINDOWS\system32\wucltui.dll
2007-11-04 18:04 43,352 --a------ E:\WINDOWS\system32\wups2.dll
2007-11-04 18:04 33,624 --a------ E:\WINDOWS\system32\wups.dll
2007-11-04 18:03 <REP> d---s---- E:\Documents and Settings\CHASTEL PHILIPPE\UserData
2007-11-04 17:54 <REP> d---s---- E:\WINDOWS\system32\Microsoft
2007-11-04 17:45 <REP> d--hs---- E:\WINDOWS\Installer
2007-11-04 17:44 <REP> d--h----- E:\Documents and Settings\CHASTEL PHILIPPE\Voisinage r‚seau
2007-11-04 17:44 <REP> d--h----- E:\Documents and Settings\CHASTEL PHILIPPE\Voisinage d'impression
2007-11-04 17:44 <REP> d--h----- E:\Documents and Settings\CHASTEL PHILIPPE\ModŠles
2007-11-04 17:44 <REP> dr------- E:\Documents and Settings\CHASTEL PHILIPPE\Mes documents
2007-11-04 17:44 <REP> dr------- E:\Documents and Settings\CHASTEL PHILIPPE\Menu D‚marrer
2007-11-04 17:44 <REP> dr------- E:\Documents and Settings\CHASTEL PHILIPPE\Favoris
2007-11-04 17:44 <REP> d-------- E:\Documents and Settings\CHASTEL PHILIPPE\Bureau
2007-11-04 16:35 <REP> d--h----- E:\WINDOWS\system32\config\systemprofile\Voisinage r‚seau
2007-11-04 16:35 <REP> d--h----- E:\WINDOWS\system32\config\systemprofile\Voisinage d'impression
2007-11-04 16:35 <REP> d--h----- E:\WINDOWS\system32\config\systemprofile\ModŠles
2007-11-04 16:35 <REP> d-------- E:\WINDOWS\system32\config\systemprofile\Mes documents
2007-11-04 16:35 <REP> dr------- E:\WINDOWS\system32\config\systemprofile\Menu D‚marrer
2007-11-04 16:35 <REP> d-------- E:\WINDOWS\system32\config\systemprofile\Favoris
2007-11-04 16:35 <REP> d-------- E:\WINDOWS\system32\config\systemprofile\Bureau
2007-11-04 16:27 39,424 --a--c--- E:\WINDOWS\system32\dllcache\davcdata.exe
2007-11-04 16:24 19,456 --a--c--- E:\WINDOWS\system32\dllcache\cprofile.exe
2007-11-04 16:23 57,400 --a--c--- E:\WINDOWS\system32\dllcache\cplexe.exe
2007-11-04 16:23 56,832 --a--c--- E:\WINDOWS\system32\dllcache\convlog.exe
2007-11-04 16:23 20,480 --a--c--- E:\WINDOWS\system32\dllcache\counters.dll
2007-11-04 16:22 33,792 --a--c--- E:\WINDOWS\system32\dllcache\controt.dll
2007-11-04 16:19 22,016 --a--c--- E:\WINDOWS\system32\dllcache\compfilt.dll
2007-11-04 16:17 480,256 --a--c--- E:\WINDOWS\system32\dllcache\cintsetp.exe
2007-11-04 16:17 201,216 --a--c--- E:\WINDOWS\system32\dllcache\cintime.dll
2007-11-04 16:16 1,677,824 --a--c--- E:\WINDOWS\system32\dllcache\chsbrkr.dll
2007-11-04 16:16 838,144 --a--c--- E:\WINDOWS\system32\dllcache\chtbrkr.dll
2007-11-04 16:16 173,568 --a--c--- E:\WINDOWS\system32\dllcache\chtskf.dll
2007-11-04 16:16 97,792 --a--c--- E:\WINDOWS\system32\dllcache\chtmbx.dll
2007-11-04 16:16 56,320 --a--c--- E:\WINDOWS\system32\dllcache\chtskdic.dll
2007-11-04 16:15 15,872 --a--c--- E:\WINDOWS\system32\dllcache\chgport.exe
2007-11-04 16:15 14,848 --a--c--- E:\WINDOWS\system32\dllcache\chgusr.exe
2007-11-04 16:15 13,824 --a--c--- E:\WINDOWS\system32\dllcache\chglogon.exe
2007-11-04 16:15 10,240 --a--c--- E:\WINDOWS\system32\dllcache\change.exe
2007-11-04 16:14 54,528 --a--c--- E:\WINDOWS\system32\dllcache\cap7146.sys
2007-11-04 16:13 218,112 --a--c--- E:\WINDOWS\system32\dllcache\c_g18030.dll
2007-11-04 16:13 45,568 --a--c--- E:\WINDOWS\system32\dllcache\browscap.dll
2007-11-04 16:13 10,752 --a--c--- E:\WINDOWS\system32\dllcache\c_iscii.dll
2007-11-04 16:13 6,656 --a--c--- E:\WINDOWS\system32\dllcache\c_is2022.dll
2007-11-04 16:12 9,216 --a--c--- E:\WINDOWS\system32\dllcache\authfilt.dll
2007-11-04 16:11 29,184 --a--c--- E:\WINDOWS\system32\dllcache\asptxn.dll
2007-11-04 16:11 10,240 --a--c--- E:\WINDOWS\system32\dllcache\aspperf.dll
2007-11-04 16:10 347,136 --a--c--- E:\WINDOWS\system32\dllcache\asp51.dll
2007-11-04 16:10 315,904 --a--c--- E:\WINDOWS\system32\dllcache\EXCH_aqueue.dll
2007-11-04 16:10 99,840 --a--c--- E:\WINDOWS\system32\dllcache\appconf.dll
2007-11-04 16:10 45,056 --a--c--- E:\WINDOWS\system32\dllcache\EXCH_aqadmin.dll
2007-11-04 16:09 19,456 --a--c--- E:\WINDOWS\system32\dllcache\agt0804.dll
2007-11-04 16:09 19,456 --a--c--- E:\WINDOWS\system32\dllcache\agt0412.dll
2007-11-04 16:09 19,456 --a--c--- E:\WINDOWS\system32\dllcache\agt0411.dll
2007-11-04 16:09 19,456 --a--c--- E:\WINDOWS\system32\dllcache\agt040d.dll
2007-11-04 16:09 19,456 --a--c--- E:\WINDOWS\system32\dllcache\agt0404.dll
2007-11-04 16:09 19,456 --a--c--- E:\WINDOWS\system32\dllcache\agt0401.dll
2007-11-04 16:08 50,176 --a--c--- E:\WINDOWS\system32\dllcache\adrot.dll
2007-11-04 16:08 6,144 --a--c--- E:\WINDOWS\system32\dllcache\admxprox.dll
2007-11-04 16:08 5,632 --a--c--- E:\WINDOWS\system32\dllcache\EXCH_adsiisex.dll
2007-11-04 16:07 27,136 --a--c--- E:\WINDOWS\system32\dllcache\admexs.dll
2007-11-04 16:04 7,168 --a--c--- E:\WINDOWS\system32\dllcache\wamregps.dll
2007-11-04 16:03 32,827 --a--c--- E:\WINDOWS\system32\dllcache\tcptest.exe
2007-11-04 16:03 16,384 --a--c--- E:\WINDOWS\system32\dllcache\tcptsat.dll

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-11-16 20:15 5,109 ----a-w E:\WINDOWS\system32\drivers\vnlmn.sys
2007-11-16 20:14 39,936 ----a-w E:\WINDOWS\system32\wmfptc32.dll
2007-11-04 14:50 --------- d-----w E:\Program Files\microsoft frontpage
2007-11-04 14:44 61,440 ---ha-w E:\WINDOWS\system32\htkg.exe
2007-11-04 14:44 1,134,080 ----a-w E:\WINDOWS\system32\rwv.exe
2007-11-04 14:38 38,649 ----a-w E:\WINDOWS\system32\kl.exe
2007-11-04 14:35 30,660 ---ha-w E:\WINDOWS\system32\oltvrolg.exe
2007-11-04 14:32 66,048 ----a-w E:\WINDOWS\winvyidu.exe
2007-11-04 14:31 35,328 ----a-w E:\WINDOWS\system32\fccbcba.dll
2007-11-04 14:30 6,546,276 ----a-w E:\WINDOWS\system32\setup_68555.exe
2007-11-04 14:30 102,400 ----a-r E:\WINDOWS\system32\antiv.exe
2007-11-04 14:28 30,750 ----a-w E:\WINDOWS\system32\rieym.exe
2007-11-04 14:28 --------- d-----w E:\Program Files\Services en ligne
2007-11-04 14:26 --------- d-----w E:\Program Files\Fichiers communs\MSSoap
2007-11-04 14:23 107,520 ---ha-w E:\WINDOWS\system32\cbio.exe
.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3a5a1261-3cfa-4709-b032-f21ee906b388}]
2007-11-15 14:34 79936 --a------ E:\WINDOWS\System32\lpwlxnuf.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A95B2816-1D7E-4561-A202-68C0DE02353A}]
2007-11-13 13:58 144480 --a------ E:\WINDOWS\system32\fcgensiy.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{11A69AE4-FBED-4832-A2BF-45AF82825583}"= E:\WINDOWS\system32\fcgensiy.dll [2007-11-13 13:58 144480]

[HKEY_CLASSES_ROOT\CLSID\{11A69AE4-FBED-4832-A2BF-45AF82825583}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Application Layer Gateway Service"="E:\WINDOWS\System32\algs.exe" []
"Local Security Authority Service"="E:\WINDOWS\System32\Isass.exe" []
"Client Server Runtime Process"="E:\WINDOWS\System32\csrs.exe" [2002-08-30 13:00]
"Microsoft Anivirus Monitor Process"="antiv.exe" [2007-11-04 15:30 E:\WINDOWS\system32\antiv.exe]
"Advanced DHTML Enable"="E:\WINDOWS\sdir\relpk.exe" [2007-10-23 01:16]
"QuickTime Task"="E:\Program Files\QuickTime\qttask.exe" [2007-06-29 06:24]
"iTunesHelper"="D:\ipod\iTunesHelper.exe" [2007-09-26 14:42]
"1c581776"="E:\WINDOWS\System32\fwopmkfi.dll" [2007-11-15 14:28]
"Windows Explorer"="E:\WINDOWS\System32\explorer.exe" []
"Windows Logon Application"="E:\WINDOWS\System32\winIogon.exe" []
"Windows Network Firewall"="E:\WINDOWS\System32\firewall.exe" []

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="E:\WINDOWS\System32\ctfmon.exe" [2002-08-30 13:00]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runservices]
"Microsoft Anivirus Monitor Process"=antiv.exe

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\fccbcba]
fccbcba.dll 2007-11-04 15:31 35328 E:\WINDOWS\system32\fccbcba.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\fcgensiy]
fcgensiy.dll 2007-11-13 13:58 144480 E:\WINDOWS\system32\fcgensiy.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
"Authentication Packages"= msv1_0 E:\WINDOWS\System32\gebbb.dll

[color=red]SafeBoot registry key needs repairs. This machine cannot enter Safe Mode.[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\File system]
@="Driver Group"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vgasave.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}]
@="DiskDrive"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}]
@="Hdc"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}]
@="Keyboard"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}]
@="Mouse"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}]
@="System"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
@="Volume"

R0 UNPR;UNPR;E:\WINDOWS\System32\unpr.sys
R2 NdisFileServices32;NdisFileServices32;\??\E:\WINDOWS\System32\drivers\vnlmn.sys
R2 NOTEPAD;NOTEPAD;"E:\WINDOWS\system\NOTEPAD.exe"
S2 h4m0v0k2;h4m0v0k2;"E:\WINDOWS\system32\svshost.exe"

.
**************************************************************************

catchme 0.3.1250 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-11-16 21:14:57
Windows 5.1.2600 Service Pack 1 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

**************************************************************************
.
Completion time: 2007-11-16 21:16:19 - machine was rebooted
.
--- E O F ---
je n a pu redemmarer en mode sans echec
j esperfe que cela a marcher
merci
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 17
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
16 nov. 2007 à 21:53
ok,

Télécharger Vundofix.exe (par Atribune) sur votre Bureau : http://www.atribune.org/ccount/click.php?id=4

* Double-cliquer sur VundoFix.exe afin de le lancer.
* Cliquer sur le bouton Scan for Vundo.
* Lorsque le scan est complété, cliquer sur le bouton Remove Vundo.
* Une invite de commande demandera si l’on souhaite supprimer les fichiers, cliquer sur YES
* Après avoir cliqué "YES", le Bureau disparaîtra un moment lors de la suppression des fichiers.
* Une nouvelle invite de commende annoncera que le PC devra s'éteindre ("shutdown"). Cliquer sur OK , puis laisser le redémarrer.
* Le contenu du rapport est situé dans C:\vundofix.txt, poste le stp

++
0
Réponse 6 / 17
rajhda
16 nov. 2007 à 22:28
Beginning removal...

Beginning removal...

VundoFix V6.6.1

Checking Java version...

Scan started at 22:18:04 16/11/2007

Listing files found while scanning....

E:\windows\system32\fccbcba.dll
E:\WINDOWS\system32\fcgensiy.dll

Beginning removal...

Attempting to delete E:\windows\system32\fccbcba.dll
E:\windows\system32\fccbcba.dll Has been deleted!

Attempting to delete E:\WINDOWS\system32\fcgensiy.dll
E:\WINDOWS\system32\fcgensiy.dll Has been deleted!

Performing Repairs to the registry.
Done!

que dois je faire, je suis suspendu à vos lettres:::
0
Réponse 7 / 17
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
16 nov. 2007 à 22:31
ok ! on continue !

Télécharger VirtumundoBegone sur le bureau : http://secured2k.home.comcast.net/tools/VirtumundoBeGone.exe


Double cliquer sur VirtumundoBeGone.exe et suivre les instructions.
Une fois terminé, redémarrer le PC, le rapport VBG.TXT sera crée sur le bureau , poste le stp

++
0
Réponse 8 / 17
rajhda
16 nov. 2007 à 23:03
[11/16/2007, 23:02:54] - VirtumundoBeGone v1.5 ( "E:\Documents and Settings\CHASTEL PHILIPPE\Bureau\VirtumundoBeGone.exe" )
[11/16/2007, 23:03:02] - Detected System Information:
[11/16/2007, 23:03:02] - Windows Version: 5.1.2600, Service Pack 1
[11/16/2007, 23:03:02] - Current Username: CHASTEL PHILIPPE (Admin)
[11/16/2007, 23:03:02] - Windows is in NORMAL mode.
[11/16/2007, 23:03:02] - Searching for Browser Helper Objects:
[11/16/2007, 23:03:02] - BHO 1: {3a5a1261-3cfa-4709-b032-f21ee906b388} ()
[11/16/2007, 23:03:02] - WARNING: BHO has no default name. Checking for Winlogon reference.
[11/16/2007, 23:03:02] - Checking for HKLM\...\Winlogon\Notify\lpwlxnuf
[11/16/2007, 23:03:02] - Key not found: HKLM\...\Winlogon\Notify\lpwlxnuf, continuing.
[11/16/2007, 23:03:02] - BHO 2: {53707962-6F74-2D53-2644-206D7942484F} ()
[11/16/2007, 23:03:02] - WARNING: BHO has no default name. Checking for Winlogon reference.
[11/16/2007, 23:03:02] - Checking for HKLM\...\Winlogon\Notify\SDHelper
[11/16/2007, 23:03:02] - Key not found: HKLM\...\Winlogon\Notify\SDHelper, continuing.
[11/16/2007, 23:03:02] - Finished Searching Browser Helper Objects
[11/16/2007, 23:03:02] - Finishing up...
[11/16/2007, 23:03:02] - Nothing found! Exiting...


comment ça avance doc!
0
Réponse 9 / 17
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
16 nov. 2007 à 23:08
ok !

Télécharge SDFix sur ton bureau

http://downloads.andymanchesta.com/RemovalTools/SDFix.exe

Double clique sur SDFix.exe et choisis Install pour l'extraire dans un dossier dédié sur le Bureau.
Redémarre ton ordinateur en mode sans échec
Ouvre le dossier SDFix qui vient d'être créé sur le Bureau et double clique sur RunThis.bat pour lancer le script.
Appuie sur Y pour commencer le processus de nettoyage.
Il va supprimer les services et les entrées du Registre de certains trojans trouvés puis te demandera d'appuyer sur une touche pour redémarrer.
Appuie sur une touche pour redémarrer le PC.
Ton système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
Appuie sur une touche pour finir l'exécution du script et charger les icônes de ton Bureau.
Les icônes du Bureau affichées, le rapport SDFix s'ouvrira à l'écran et s'enregistrera aussi dans le dossier SDFix sous le nom Report.txt.
Enfin, copie/colle le contenu du fichier Report.txt dans ta prochaine réponse sur le forum, avec un nouveau log Hijackthis !

++
0
Réponse 10 / 17
rajhda
17 nov. 2007 à 00:14
je n arrive pas a ouvrir en mode sans echec, je pense que la config de mon ordi n'est pas top, conflit carte mèer et xp.
bref, j'ai fait un scan avec Norman mais aucun fichier txt ne s'est créer et j'ai fait un scan avec a2cm
lui m'a donne ceci:
a-squared Command Line Scanner - Version 3.0
Last update: N/A

Scan settings:

Objects: Memory, Traces, Cookies, E:
Scan archives: On
Heuristics: Off
ADS Scan: On

Scan start: 16/11/2007 23:47:58

[1648] E:\WINDOWS\system\NOTEPAD.exe detected: Backdoor.Win32.SdBot.bzj
Value: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run --> windows logon application detected: Trace.Registry.MultiBotPro
E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@247realmedia[1].txt detected: Trace.TrackingCookie
E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@2o7[1].txt detected: Trace.TrackingCookie
E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@adserver.aol[1].txt detected: Trace.TrackingCookie
E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@adtech[1].txt detected: Trace.TrackingCookie
E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@advertising[1].txt detected: Trace.TrackingCookie
E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@atdmt[2].txt detected: Trace.TrackingCookie
E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@bluestreak[2].txt detected: Trace.TrackingCookie
E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@bs.serving-sys[2].txt detected: Trace.TrackingCookie
E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@commentcamarche[2].txt detected: Trace.TrackingCookie
E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@doubleclick[1].txt detected: Trace.TrackingCookie
E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@pacificpoker[2].txt detected: Trace.TrackingCookie
E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@serving-sys[2].txt detected: Trace.TrackingCookie
E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@smartadserver[1].txt detected: Trace.TrackingCookie
E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@stat.onestat[2].txt detected: Trace.TrackingCookie
E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@statcounter[1].txt detected: Trace.TrackingCookie
E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@statse.webtrendslive[2].txt detected: Trace.TrackingCookie
E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@tradedoubler[1].txt detected: Trace.TrackingCookie
E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@weborama[2].txt detected: Trace.TrackingCookie
E:\qoobox\Quarantine\catchme2007-11-16_211443.18.zip/__c0029189.dat detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\acrtkbkf.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\acvwvjqt.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\aqtypbyh.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\ascyydhy.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\bbulyqdd.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\cbbmybop.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\cbhwehyo.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\djpoaoup.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\eojkxplw.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\fgnfstpw.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\firewall.exe.vir detected: Backdoor.Win32.VanBot.do
E:\qoobox\Quarantine\E\WINDOWS\system32\fjnfdtpe.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\glrmuyhw.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\gqfyoenp.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\hfsdjckk.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\httsvejy.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\jagobfyo.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\jblorwkw.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\jyifgxcg.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\kiufamem.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\kjerjemu.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\kperepgk.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\ldcitxwg.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\leneirbh.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\loojrbik.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\luvkitum.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\mcpagvbh.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\mrkscrig.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\nedbqbdw.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\nuksndvi.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\ogtctkjw.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\pbfsaawn.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\pvigctdu.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\pxnyutsd.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\rbxrtnek.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\sgaadrcw.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\siqrxqqk.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\svlrcqbp.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\ubaoqykg.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\ujjhlnwl.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\vccxgsot.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\yaahpyeh.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\ymkhosjd.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\ynmiqhla.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\__c006CE5D.dat.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\__c007ED69.dat.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\__c0080E32.dat.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\__c0085482.dat.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\__c00B197D.dat.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\__c00C5304.dat.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\qoobox\Quarantine\E\WINDOWS\system32\__c00E5544.dat.vir detected: Trojan-Downloader.Win32.ConHook.hl
E:\VundoFix Backups\fccbcba.dll.bad detected: Trojan.Win32.Pakes.ds
E:\WINDOWS\system\NOTEPAD.exe detected: Backdoor.Win32.SdBot.bzj
E:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\QEBA5Z0Q\nn[1].exe/zm.exe detected: Trojan.Win32.Pakes.eg
E:\WINDOWS\system32\kl.exe detected: Backdoor.Win32.SdBot.bzj
E:\WINDOWS\system32\kl.RB0 detected: Backdoor.Win32.SdBot.bzj
E:\WINDOWS\system32\pyimtkif.exe detected: Backdoor.Win32.Agent.apf
E:\WINDOWS\system32\scrcons32.exe detected: Backdoor.Win32.EggDrop.v
E:\WINDOWS\system32\scrcons32.RB0 detected: Backdoor.Win32.EggDrop.v
E:\WINDOWS\system32\wmfptc32.dll detected: Trojan.Win32.KillAV.ka
E:\WINDOWS\system32\xmxw.exe detected: Backdoor.Win32.Agent.apf
E:\WINDOWS\system32\xmxw.RB0 detected: Backdoor.Win32.Agent.apf
E:\WINDOWS\winvyidu.exe detected: Trojan-Downloader.Win32.Agent.dsx
E:\WINDOWS\winvyidu.RB0 detected: Trojan-Downloader.Win32.Agent.dsx
E:\WINDOWS\winvyidu.RB1 detected: Trojan-Downloader.Win32.Agent.dsx

Scanned

Files: 44561
Traces: 149017
Cookies: 109
Processes: 18

Found

Files: 66
Traces: 1
Cookies: 18
Processes: 1

Quarantined

Files: 66
Traces: 1
Cookies: 18
Processes: 1

Scan end: 17/11/2007 00:11:19
Scan time: 0:23:21

avec la creation d'un dossier quarantaine.
rereremerci
0
Réponse 11 / 17
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
17 nov. 2007 à 10:53
Salut

ok, dans ce cas, fais le en mode normal !

++
0
Réponse 12 / 17
rajhda
18 nov. 2007 à 20:44
bonjour,

mon message d'hier ne s'est pas collé. ci dessous le rapport , en plus j'ai relancé les scan et tout mon bureau a disparu, quid???????

20:01:46 18/11/2007
http://update.emsisoft.com/...

; Searching for a-squared updates on 11/18/2007 8:01:33 PM
; -----------------------------------------------------
; Response from http://updates2.emsisoft.com: OK

[General]
valid=1
status=1
expire=4294967296
servertime=1195416093
expiredate=1/1/3000 :)
news=
newslink=
news1=Mamutu 1.0 released!
newslink1=https://blog.emsisoft.com/en/
news2=Beta-Test Invitation: Mamutu 1.0 BETA
newslink2=https://blog.emsisoft.com/en/
news3=A Story About Government Malware - The Federal Trojan
newslink3=https://blog.emsisoft.com/de/4279/tec070820de/
news4=a-squared HiJackFree 3.0 released!
newslink4=https://blog.emsisoft.com/en/
news5=a-squared Anti-Malware and a-squared Free 3.0 released!
newslink5=https://blog.emsisoft.com/en/
base=20070401
num=299

[1]
URL=http://updates2.emsisoft.com/updates/6C7A141F29931155B4F692960257279E.dat
path=Signatures\20070401.sig
name=Signature update
size=6615731
md5=6C7A141F29931155B4F692960257279E
desc=327235 Signatures: 212086 Trojans, 39591 Dialers, 66333 Worms and 9224 Spywares

[2]
URL=http://updates2.emsisoft.com/updates/20FD0FFB3D9E056518CFF712D971FCFA.dat
path=Signatures\20070401.trc
name=Traces signature update
size=3558
md5=20FD0FFB3D9E056518CFF712D971FCFA
desc=394 Spyware Traces

[3]
URL=http://updates2.emsisoft.com/updates/D27B205219BE7607F3D5383658837F2F.dat
path=Signatures\20070402.sig
name=Signature update
size=2533493
md5=D27B205219BE7607F3D5383658837F2F
desc=126951 Signatures: 113886 Trojans, 1567 Dialers, 3677 Worms and 7821 Spywares

[4]
URL=http://updates2.emsisoft.com/updates/E55D3CA94F7E7B01E736BD6F8DB1327A.dat
path=Signatures\20070402.trc
name=Traces signature update
size=817276
md5=E55D3CA94F7E7B01E736BD6F8DB1327A
desc=91710 Spyware Traces

[5]
URL=http://updates2.emsisoft.com/updates/9FFC1B6CD8D25E4A9D0DF2B340F11C12.dat
path=Signatures\20070404.sig
name=Signature update
size=1487706
md5=9FFC1B6CD8D25E4A9D0DF2B340F11C12
desc=74522 Signatures: 62290 Trojans, 1791 Dialers, 2353 Worms and 8088 Spywares

[6]
URL=http://updates2.emsisoft.com/updates/71D1CEA8AF23AA8045FF833B3257BC9B.dat
path=Signatures\20070404.trc
name=Traces signature update
size=213318
md5=71D1CEA8AF23AA8045FF833B3257BC9B
desc=26536 Spyware Traces

[7]
URL=http://updates2.emsisoft.com/updates/EF22245D8AECEFC2A4C5D2225B9E8BEE.dat
path=Signatures\20070406.sig
name=Signature update
size=183085
md5=EF22245D8AECEFC2A4C5D2225B9E8BEE
desc=8785 Signatures: 7201 Trojans, 350 Dialers, 299 Worms and 935 Spywares

[8]
URL=http://updates2.emsisoft.com/updates/1EC486BA97B252F052C3ECCF0EECA81E.dat
path=Signatures\20070406.trc
name=Traces signature update
size=18231
md5=1EC486BA97B252F052C3ECCF0EECA81E
desc=2292 Spyware Traces

[9]
URL=http://updates2.emsisoft.com/updates/99BDC61CCB2CF50629AFD33C0F991311.dat
path=Signatures\20070409.sig
name=Signature update
size=31989
md5=99BDC61CCB2CF50629AFD33C0F991311
desc=1435 Signatures: 1134 Trojans, 17 Dialers, 150 Worms and 134 Spywares

[10]
URL=http://updates2.emsisoft.com/updates/11FEB357EE0F68021819D6B0492053B7.dat
path=Signatures\20070410.sig
name=Signature update
size=16051
md5=11FEB357EE0F68021819D6B0492053B7
desc=873 Signatures: 705 Trojans, 0 Dialers, 4 Worms and 164 Spywares

[11]
URL=http://updates2.emsisoft.com/updates/E6ABF2FBAA8093ACA1AA7A2B298990A8.dat
path=Signatures\20070411.sig
name=Signature update
size=18108
md5=E6ABF2FBAA8093ACA1AA7A2B298990A8
desc=799 Signatures: 629 Trojans, 10 Dialers, 63 Worms and 97 Spywares

[12]
URL=http://updates2.emsisoft.com/updates/4B5E25552A3114CF5A7AE56A61871060.dat
path=Signatures\20070412.sig
name=Signature update
size=80816
md5=4B5E25552A3114CF5A7AE56A61871060
desc=3664 Signatures: 3070 Trojans, 337 Dialers, 26 Worms and 231 Spywares

[13]
URL=http://updates2.emsisoft.com/updates/BCABF47A91183A71F28449F22D7AC2C7.dat
path=Signatures\20070413.sig
name=Signature update
size=23616
md5=BCABF47A91183A71F28449F22D7AC2C7
desc=1059 Signatures: 885 Trojans, 11 Dialers, 78 Worms and 85 Spywares

[14]
URL=http://updates2.emsisoft.com/updates/545E014C7F2DB9DB97E502ACE6E1C3AD.dat
path=Signatures\20070415.sig
name=Signature update
size=83
md5=545E014C7F2DB9DB97E502ACE6E1C3AD
desc=2 Signatures: 2 Trojans, 0 Dialers, 0 Worms and 0 Spywares

[15]
URL=http://updates2.emsisoft.com/updates/D7664F3ECA9EDDB9ADC225EBA25BD6DB.dat
path=Signatures\20070415.trc
name=Traces signature update
size=102
md5=D7664F3ECA9EDDB9ADC225EBA25BD6DB
desc=1 Spyware Traces

[16]
URL=http://updates2.emsisoft.com/updates/DDF352881FC1AF5A65B7473777FF8825.dat
path=Signatures\20070416.sig
name=Signature update
size=40317
md5=DDF352881FC1AF5A65B7473777FF8825
desc=2013 Signatures: 1607 Trojans, 10 Dialers, 87 Worms and 309 Spywares

[17]
URL=http://updates2.emsisoft.com/updates/DB7034610FC4629D2D3AAB3B79B346D6.dat
path=Signatures\20070416.trc
name=Traces signature update
size=5516
md5=DB7034610FC4629D2D3AAB3B79B346D6
desc=536 Spyware Traces

[18]
URL=http://updates2.emsisoft.com/updates/B8E2D70528D1969EFC61C3E6DCCEFDF0.dat
path=Signatures\20070417.trc
name=Traces signature update
size=38872
md5=B8E2D70528D1969EFC61C3E6DCCEFDF0
desc=4703 Spyware Traces

[19]
URL=http://updates2.emsisoft.com/updates/2DBC7A860F7FCC720E0B9A2495505B81.dat
path=Signatures\20070418.sig
name=Signature update
size=23281
md5=2DBC7A860F7FCC720E0B9A2495505B81
desc=1039 Signatures: 856 Trojans, 3 Dialers, 83 Worms and 97 Spywares

[20]
URL=http://updates2.emsisoft.com/updates/60F0000D685723F1B7D905D08EC89447.dat
path=Signatures\20070418.trc
name=Traces signature update
size=2413
md5=60F0000D685723F1B7D905D08EC89447
desc=225 Spyware Traces

[21]
URL=http://updates2.emsisoft.com/updates/AEE117619E9B42BBEFB3663C14C5C87C.dat
path=Signatures\20070419.sig
name=Signature update
size=27617
md5=AEE117619E9B42BBEFB3663C14C5C87C
desc=1182 Signatures: 1013 Trojans, 109 Dialers, 3 Worms and 57 Spywares

[22]
URL=http://updates2.emsisoft.com/updates/38ADAAFAD486B29B01EFE7129985B39B.dat
path=Signatures\20070420.sig
name=Signature update
size=20577
md5=38ADAAFAD486B29B01EFE7129985B39B
desc=931 Signatures: 747 Trojans, 24 Dialers, 69 Worms and 91 Spywares

[23]
URL=http://updates2.emsisoft.com/updates/B7852BA3001BA0B7005FD2C79BE7E0DC.dat
path=Signatures\20070420.trc
name=Traces signature update
size=2490
md5=B7852BA3001BA0B7005FD2C79BE7E0DC
desc=216 Spyware Traces

[24]
URL=http://updates2.emsisoft.com/updates/A3ED5BE44FFB4192A026344C936D2975.dat
path=Signatures\20070421.trc
name=Traces signature update
size=4920
md5=A3ED5BE44FFB4192A026344C936D2975
desc=496 Spyware Traces

[25]
URL=http://updates2.emsisoft.com/updates/917B37A7D8387E1B957799998C7E7D19.dat
path=Signatures\20070422.trc
name=Traces signature update
size=2169
md5=917B37A7D8387E1B957799998C7E7D19
desc=223 Spyware Traces

[26]
URL=http://updates2.emsisoft.com/updates/BB8A1B3760E0EE1A51ABC59E1B3FE27C.dat
path=Signatures\20070423.sig
name=Signature update
size=31621
md5=BB8A1B3760E0EE1A51ABC59E1B3FE27C
desc=1427 Signatures: 1107 Trojans, 33 Dialers, 144 Worms and 143 Spywares

[27]
URL=http://updates2.emsisoft.com/updates/57DAD89AD3D685CF9F903545480FBBDC.dat
path=Signatures\20070423.trc
name=Traces signature update
size=3258
md5=57DAD89AD3D685CF9F903545480FBBDC
desc=434 Spyware Traces

[28]
URL=http://updates2.emsisoft.com/updates/95F13F65ADB4C39DCCA8D9EDF3C9C8F9.dat
path=Signatures\20070424.sig
name=Signature update
size=12638
md5=95F13F65ADB4C39DCCA8D9EDF3C9C8F9
desc=679 Signatures: 544 Trojans, 0 Dialers, 12 Worms and 123 Spywares

[29]
URL=http://updates2.emsisoft.com/updates/20AD682C381C9FB6FBC3B66805826723.dat
path=Signatures\20070425.sig
name=Signature update
size=20427
md5=20AD682C381C9FB6FBC3B66805826723
desc=959 Signatures: 759 Trojans, 32 Dialers, 65 Worms and 103 Spywares

[30]
URL=http://updates2.emsisoft.com/updates/F7E2DA086F52F01DDB093EA747F6264B.dat
path=Signatures\20070425.trc
name=Traces signature update
size=1570
md5=F7E2DA086F52F01DDB093EA747F6264B
desc=168 Spyware Traces

[31]
URL=http://updates2.emsisoft.com/updates/CC42C954190312F1A132ED3535D7688F.dat
path=Signatures\20070426.sig
name=Signature update
size=35531
md5=CC42C954190312F1A132ED3535D7688F
desc=1539 Signatures: 1280 Trojans, 158 Dialers, 7 Worms and 94 Spywares

[32]
URL=http://updates2.emsisoft.com/updates/4349A15078F156A8EF7C78AFEE383824.dat
path=Signatures\20070426.trc
name=Traces signature update
size=1243
md5=4349A15078F156A8EF7C78AFEE383824
desc=136 Spyware Traces

[33]
URL=http://updates2.emsisoft.com/updates/EBC896F68D68775E5FA2CBCCFA04E2A9.dat
path=Signatures\20070427.sig
name=Signature update
size=20451
md5=EBC896F68D68775E5FA2CBCCFA04E2A9
desc=918 Signatures: 758 Trojans, 25 Dialers, 75 Worms and 60 Spywares

[34]
URL=http://updates2.emsisoft.com/updates/9DA1DEFBF08AF090DEA161EFCE3542D6.dat
path=Signatures\20070427.trc
name=Traces signature update
size=1906
md5=9DA1DEFBF08AF090DEA161EFCE3542D6
desc=205 Spyware Traces

[35]
URL=http://updates2.emsisoft.com/updates/F00D40CDE34778BC1AAD9AAD8C1D79AE.dat
path=Signatures\20070430.sig
name=Signature update
size=28268
md5=F00D40CDE34778BC1AAD9AAD8C1D79AE
desc=1238 Signatures: 1014 Trojans, 30 Dialers, 67 Worms and 127 Spywares

[36]
URL=http://updates2.emsisoft.com/updates/B6B68A7BBD63F6EE98C4046E73EBD989.dat
path=Signatures\20070430.trc
name=Traces signature update
size=2495
md5=B6B68A7BBD63F6EE98C4046E73EBD989
desc=230 Spyware Traces

[37]
URL=http://updates2.emsisoft.com/updates/2AEF88A6D7B5722562FF744294C67F3B.dat
path=Signatures\20070501.sig
name=Signature update
size=17751
md5=2AEF88A6D7B5722562FF744294C67F3B
desc=989 Signatures: 794 Trojans, 0 Dialers, 7 Worms and 188 Spywares

[38]
URL=http://updates2.emsisoft.com/updates/A27249CE211B16C48A0DA545684A4A25.dat
path=Signatures\20070501.trc
name=Traces signature update
size=1187
md5=A27249CE211B16C48A0DA545684A4A25
desc=87 Spyware Traces

[39]
URL=http://updates2.emsisoft.com/updates/5347CD568E8B356441F6B9AB069C88FE.dat
path=Signatures\20070502.sig
name=Signature update
size=29825
md5=5347CD568E8B356441F6B9AB069C88FE
desc=1334 Signatures: 1122 Trojans, 40 Dialers, 62 Worms and 110 Spywares

[40]
URL=http://updates2.emsisoft.com/updates/BA2160E900749410B42CD70B36226C9B.dat
path=Signatures\20070503.sig
name=Signature update
size=32079
md5=BA2160E900749410B42CD70B36226C9B
desc=1398 Signatures: 1139 Trojans, 146 Dialers, 4 Worms and 109 Spywares

[41]
URL=http://updates2.emsisoft.com/updates/ACC133327E03E0CE2A6B564CE4E02287.dat
path=Signatures\20070503.trc
name=Traces signature update
size=4712
md5=ACC133327E03E0CE2A6B564CE4E02287
desc=589 Spyware Traces

[42]
URL=http://updates2.emsisoft.com/updates/33DE1FC7F6AED8605B97D95731619A41.dat
path=Signatures\20070504.sig
name=Signature update
size=33550
md5=33DE1FC7F6AED8605B97D95731619A41
desc=1480 Signatures: 1277 Trojans, 37 Dialers, 56 Worms and 110 Spywares

[43]
URL=http://updates2.emsisoft.com/updates/BBDB926141089D7A130DEA258B78B3EB.dat
path=Signatures\20070504.trc
name=Traces signature update
size=2133
md5=BBDB926141089D7A130DEA258B78B3EB
desc=254 Spyware Traces

[44]
URL=http://updates2.emsisoft.com/updates/FE491F5F58385B5887153BB97E0CC6F0.dat
path=Signatures\20070507.sig
name=Signature update
size=31998
md5=FE491F5F58385B5887153BB97E0CC6F0
desc=1393 Signatures: 1136 Trojans, 9 Dialers, 105 Worms and 143 Spywares

[45]
URL=http://updates2.emsisoft.com/updates/8152F708F8F1853406044F70780F6299.dat
path=Signatures\20070507.trc
name=Traces signature update
size=2837
md5=8152F708F8F1853406044F70780F6299
desc=350 Spyware Traces

[46]
URL=http://updates2.emsisoft.com/updates/68AE72230DE87B1EB7F40C84AB899DB0.dat
path=Signatures\20070508.sig
name=Signature update
size=29866
md5=68AE72230DE87B1EB7F40C84AB899DB0
desc=1425 Signatures: 1158 Trojans, 7 Dialers, 62 Worms and 198 Spywares

[47]
URL=http://updates2.emsisoft.com/updates/940E9F6EB5EEC227A9A12AC3A99EB50E.dat
path=Signatures\20070508.trc
name=Traces signature update
size=1755
md5=940E9F6EB5EEC227A9A12AC3A99EB50E
desc=200 Spyware Traces

[48]
URL=http://updates2.emsisoft.com/updates/93387CBA3D6E50008B42A17575C7180D.dat
path=Signatures\20070509.sig
name=Signature update
size=33649
md5=93387CBA3D6E50008B42A17575C7180D
desc=1471 Signatures: 1234 Trojans, 18 Dialers, 92 Worms and 127 Spywares

[49]
URL=http://updates2.emsisoft.com/updates/189D9A59FB2944603BD5C4D65608E97C.dat
path=Signatures\20070509.trc
name=Traces signature update
size=1164
md5=189D9A59FB2944603BD5C4D65608E97C
desc=100 Spyware Traces

[50]
URL=http://updates2.emsisoft.com/updates/C94DECA70B5FE64E5A6EF8977D29B8E1.dat
path=Signatures\20070510.sig
name=Signature update
size=34036
md5=C94DECA70B5FE64E5A6EF8977D29B8E1
desc=1547 Signatures: 1321 Trojans, 60 Dialers, 27 Worms and 139 Spywares

[51]
URL=http://updates2.emsisoft.com/updates/3A9C2C677F42E97C894887F6434954E3.dat
path=Signatures\20070510.trc
name=Traces signature update
size=802
md5=3A9C2C677F42E97C894887F6434954E3
desc=59 Spyware Traces

[52]
URL=http://updates2.emsisoft.com/updates/D625D329479660035AD13BA0355583B1.dat
path=Signatures\20070511.sig
name=Signature update
size=34607
md5=D625D329479660035AD13BA0355583B1
desc=1568 Signatures: 1315 Trojans, 21 Dialers, 99 Worms and 133 Spywares

[53]
URL=http://updates2.emsisoft.com/updates/EE656A6D246A860F44D56F57BA667D41.dat
path=Signatures\20070511.trc
name=Traces signature update
size=3238
md5=EE656A6D246A860F44D56F57BA667D41
desc=432 Spyware Traces

[54]
URL=http://updates2.emsisoft.com/updates/8202E42F8F811C0F25466A47293C4619.dat
path=Signatures\20070512.sig
name=Signature update
size=28529
md5=8202E42F8F811C0F25466A47293C4619
desc=1301 Signatures: 961 Trojans, 12 Dialers, 128 Worms and 200 Spywares

[55]
URL=http://updates2.emsisoft.com/updates/3252AC28BC572C97E3EF07A099CFF2DB.dat
path=Signatures\20070514.trc
name=Traces signature update
size=6072
md5=3252AC28BC572C97E3EF07A099CFF2DB
desc=682 Spyware Traces

[56]
URL=http://updates2.emsisoft.com/updates/C89F8594105F5D5A4C861BB4BFD191F3.dat
path=Signatures\20070515.sig
name=Signature update
size=58511
md5=C89F8594105F5D5A4C861BB4BFD191F3
desc=2726 Signatures: 2275 Trojans, 28 Dialers, 120 Worms and 303 Spywares

[57]
URL=http://updates2.emsisoft.com/updates/5E1F5B8831647DB3E7D9E70012618F55.dat
path=Signatures\20070517.sig
name=Signature update
size=71272
md5=5E1F5B8831647DB3E7D9E70012618F55
desc=3204 Signatures: 2592 Trojans, 215 Dialers, 131 Worms and 266 Spywares

[58]
URL=http://updates2.emsisoft.com/updates/CEEA980D5D86811580EFDE60DF77F894.dat
path=Signatures\20070517.trc
name=Traces signature update
size=2067
md5=CEEA980D5D86811580EFDE60DF77F894
desc=196 Spyware Traces

[59]
URL=http://updates2.emsisoft.com/updates/823C40C88240BBC873FB04A6DBF6FA75.dat
path=Signatures\20070518.sig
name=Signature update
size=29025
md5=823C40C88240BBC873FB04A6DBF6FA75
desc=1273 Signatures: 1102 Trojans, 7 Dialers, 85 Worms and 79 Spywares

[60]
URL=http://updates2.emsisoft.com/updates/521B99C4BD740B9E608294BAC969EF66.dat
path=Signatures\20070518.trc
name=Traces signature update
size=2634
md5=521B99C4BD740B9E608294BAC969EF66
desc=258 Spyware Traces

[61]
URL=http://updates2.emsisoft.com/updates/0BEFF00B23C6C10769EE36DB444AFCEE.dat
path=Signatures\20070521.sig
name=Signature update
size=32864
md5=0BEFF00B23C6C10769EE36DB444AFCEE
desc=1470 Signatures: 1070 Trojans, 8 Dialers, 317 Worms and 75 Spywares

[62]
URL=http://updates2.emsisoft.com/updates/E9A6E9DB7DAF55602463CEF9B84C4656.dat
path=Signatures\20070521.trc
name=Traces signature update
size=3102
md5=E9A6E9DB7DAF55602463CEF9B84C4656
desc=332 Spyware Traces

[63]
URL=http://updates2.emsisoft.com/updates/70A98928195F99E657AE8674226E8B14.dat
path=Signatures\20070522.sig
name=Signature update
size=14671
md5=70A98928195F99E657AE8674226E8B14
desc=828 Signatures: 666 Trojans, 0 Dialers, 6 Worms and 156 Spywares

[64]
URL=http://updates2.emsisoft.com/updates/E9C9AE0C11E1BC4141FEBD9BFFABA48C.dat
path=Signatures\20070522.trc
name=Traces signature update
size=1502
md5=E9C9AE0C11E1BC4141FEBD9BFFABA48C
desc=153 Spyware Traces

[65]
URL=http://updates2.emsisoft.com/updates/267050C8AD254EE652C27CAB1031C10B.dat
path=Signatures\20070523.sig
name=Signature update
size=23046
md5=267050C8AD254EE652C27CAB1031C10B
desc=1047 Signatures: 907 Trojans, 4 Dialers, 99 Worms and 37 Spywares

[66]
URL=http://updates2.emsisoft.com/updates/3854E338BE77B38F4E3E8F0F1708AA67.dat
path=Signatures\20070523.trc
name=Traces signature update
size=2946
md5=3854E338BE77B38F4E3E8F0F1708AA67
desc=334 Spyware Traces

[67]
URL=http://updates2.emsisoft.com/updates/26CABE602FB5AA4EC564ADFF5C23F5FF.dat
path=Signatures\20070524.sig
name=Signature update
size=50041
md5=26CABE602FB5AA4EC564ADFF5C23F5FF
desc=2210 Signatures: 1830 Trojans, 218 Dialers, 18 Worms and 144 Spywares

[68]
URL=http://updates2.emsisoft.com/updates/F060F9DB78D2D593A2C78F44D705C929.dat
path=Signatures\20070524.trc
name=Traces signature update
size=5278
md5=F060F9DB78D2D593A2C78F44D705C929
desc=685 Spyware Traces

[69]
URL=http://updates2.emsisoft.com/updates/029473790EEF9B93489AE2C760222E90.dat
path=Signatures\20070525.sig
name=Signature update
size=23868
md5=029473790EEF9B93489AE2C760222E90
desc=1086 Signatures: 921 Trojans, 7 Dialers, 111 Worms and 47 Spywares

[70]
URL=http://updates2.emsisoft.com/updates/532AC8022466066F84652B1D70A3CAE2.dat
path=Signatures\20070527.sig
name=Signature update
size=31380
md5=532AC8022466066F84652B1D70A3CAE2
desc=1396 Signatures: 1212 Trojans, 5 Dialers, 135 Worms and 44 Spywares

[71]
URL=http://updates2.emsisoft.com/updates/A098DD685389E50DFCFEAF0B489B5CCF.dat
path=Signatures\20070527.trc
name=Traces signature update
size=3280
md5=A098DD685389E50DFCFEAF0B489B5CCF
desc=340 Spyware Traces

[72]
URL=http://updates2.emsisoft.com/updates/99497DD0D43615667B2441E0FAB92528.dat
path=Signatures\20070528.trc
name=Traces signature update
size=1985
md5=99497DD0D43615667B2441E0FAB92528
desc=199 Spyware Traces

[73]
URL=http://updates2.emsisoft.com/updates/F38A960DBD83E703BD2786291E2776AD.dat
path=Signatures\20070529.sig
name=Signature update
size=24673
md5=F38A960DBD83E703BD2786291E2776AD
desc=1175 Signatures: 963 Trojans, 1 Dialers, 57 Worms and 154 Spywares

[74]
URL=http://updates2.emsisoft.com/updates/EDFAB33B13C7B91368F09A75375108F4.dat
path=Signatures\20070530.sig
name=Signature update
size=24862
md5=EDFAB33B13C7B91368F09A75375108F4
desc=1122 Signatures: 951 Trojans, 2 Dialers, 139 Worms and 30 Spywares

[75]
URL=http://updates2.emsisoft.com/updates/DB601BE089135551CE0A2FCFACD6C27A.dat
path=Signatures\20070530.trc
name=Traces signature update
size=1041
md5=DB601BE089135551CE0A2FCFACD6C27A
desc=85 Spyware Traces

[76]
URL=http://updates2.emsisoft.com/updates/A142B1119D59BC54EE1EB19C7286F633.dat
path=Signatures\20070531.sig
name=Signature update
size=49814
md5=A142B1119D59BC54EE1EB19C7286F633
desc=2222 Signatures: 1858 Trojans, 225 Dialers, 16 Worms and 123 Spywares

[77]
URL=http://updates2.emsisoft.com/updates/A8D7903C10163FDC3DD09F2E05BE5EA2.dat
path=Signatures\20070531.trc
name=Traces signature update
size=2781
md5=A8D7903C10163FDC3DD09F2E05BE5EA2
desc=298 Spyware Traces

[78]
URL=http://updates2.emsisoft.com/updates/54FE77C2DEF06F46B4E1B0FF5EB59DB6.dat
path=Signatures\20070601.sig
name=Signature update
size=13847
md5=54FE77C2DEF06F46B4E1B0FF5EB59DB6
desc=616 Signatures: 556 Trojans, 1 Dialers, 47 Worms and 12 Spywares

[79]
URL=http://updates2.emsisoft.com/updates/B1BA2947E4E1D292B4C405295C5934F0.dat
path=Signatures\20070601.trc
name=Traces signature update
size=2879
md5=B1BA2947E4E1D292B4C405295C5934F0
desc=345 Spyware Traces

[80]
URL=http://updates2.emsisoft.com/updates/50D5FD5BBEF36F33AD209CB92BB6F2FD.dat
path=Signatures\20070603.trc
name=Traces signature update
size=2180
md5=50D5FD5BBEF36F33AD209CB92BB6F2FD
desc=227 Spyware Traces

[81]
URL=http://updates2.emsisoft.com/updates/AA989923F608D8034DFDC6DFE7613DF1.dat
path=Signatures\20070604.sig
name=Signature update
size=42371
md5=AA989923F608D8034DFDC6DFE7613DF1
desc=1938 Signatures: 1758 Trojans, 8 Dialers, 112 Worms and 60 Spywares

[82]
URL=http://updates2.emsisoft.com/updates/8D0FA168CA704BC548A750F0D9A887C6.dat
path=Signatures\20070605.sig
name=Signature update
size=17601
md5=8D0FA168CA704BC548A750F0D9A887C6
desc=1035 Signatures: 762 Trojans, 0 Dialers, 20 Worms and 253 Spywares

[83]
URL=http://updates2.emsisoft.com/updates/E23F88945AD90C3DBB36E5CD8E38A583.dat
path=Signatures\20070605.trc
name=Traces signature update
size=2774
md5=E23F88945AD90C3DBB36E5CD8E38A583
desc=271 Spyware Traces

[84]
URL=http://updates2.emsisoft.com/updates/D68188826F838FE5B8C682941FFB027C.dat
path=Signatures\20070606.sig
name=Signature update
size=55740
md5=D68188826F838FE5B8C682941FFB027C
desc=2584 Signatures: 2094 Trojans, 12 Dialers, 342 Worms and 136 Spywares

[85]
URL=http://updates2.emsisoft.com/updates/1FA33A2F49A2B08E09B5D8F6B37762B0.dat
path=Signatures\20070607.sig
name=Signature update
size=47753
md5=1FA33A2F49A2B08E09B5D8F6B37762B0
desc=2095 Signatures: 1769 Trojans, 184 Dialers, 19 Worms and 123 Spywares

[86]
URL=http://updates2.emsisoft.com/updates/4BC8149954594B8A5D4C74A19C713E36.dat
path=Signatures\20070607.trc
name=Traces signature update
size=1255
md5=4BC8149954594B8A5D4C74A19C713E36
desc=99 Spyware Traces

[87]
URL=http://updates2.emsisoft.com/updates/81E2B1FE9FBCF03363810E9E79EBC699.dat
path=Signatures\20070608.sig
name=Signature update
size=25123
md5=81E2B1FE9FBCF03363810E9E79EBC699
desc=1133 Signatures: 1001 Trojans, 7 Dialers, 74 Worms and 51 Spywares

[88]
URL=http://updates2.emsisoft.com/updates/6AF8ED79D588987662BD610B7FFCC7C5.dat
path=Signatures\20070611.sig
name=Signature update
size=31088
md5=6AF8ED79D588987662BD610B7FFCC7C5
desc=1387 Signatures: 1228 Trojans, 5 Dialers, 102 Worms and 52 Spywares

[89]
URL=http://updates2.emsisoft.com/updates/0E8B5C4E6908517FD119B8355DC4C944.dat
path=Signatures\20070611.trc
name=Traces signature update
size=5667
md5=0E8B5C4E6908517FD119B8355DC4C944
desc=727 Spyware Traces

[90]
URL=http://updates2.emsisoft.com/updates/DCFB45D9B77DB154B8D533CA741DF80C.dat
path=Signatures\20070612.sig
name=Signature update
size=12079
md5=DCFB45D9B77DB154B8D533CA741DF80C
desc=622 Signatures: 463 Trojans, 0 Dialers, 4 Worms and 155 Spywares

[91]
URL=http://updates2.emsisoft.com/updates/5EA30C21698AB910A1697F08AA5194C9.dat
path=Signatures\20070612.trc
name=Traces signature update
size=3707
md5=5EA30C21698AB910A1697F08AA5194C9
desc=491 Spyware Traces

[92]
URL=http://updates2.emsisoft.com/updates/463020517D941B70E0EF1830A75B37CC.dat
path=Signatures\20070613.sig
name=Signature update
size=33704
md5=463020517D941B70E0EF1830A75B37CC
desc=1530 Signatures: 1224 Trojans, 14 Dialers, 141 Worms and 151 Spywares

[93]
URL=http://updates2.emsisoft.com/updates/0A92A8E229B98BA2B5D27D3B04DE7A59.dat
path=Signatures\20070613.trc
name=Traces signature update
size=2908
md5=0A92A8E229B98BA2B5D27D3B04DE7A59
desc=516 Spyware Traces

[94]
URL=http://updates2.emsisoft.com/updates/5795A3CB1B07ED35C74ACFE6C4E84BA0.dat
path=Signatures\20070614.sig
name=Signature update
size=51275
md5=5795A3CB1B07ED35C74ACFE6C4E84BA0
desc=2284 Signatures: 1914 Trojans, 210 Dialers, 19 Worms and 141 Spywares

[95]
URL=http://updates2.emsisoft.com/updates/6175EF3CAE33532881C1ADC5FD7197F1.dat
path=Signatures\20070614.trc
name=Traces signature update
size=1968
md5=6175EF3CAE33532881C1ADC5FD7197F1
desc=200 Spyware Traces

[96]
URL=http://updates2.emsisoft.com/updates/69EBD4951CBC4A305D62BDBAD6FF5E56.dat
path=Signatures\20070615.sig
name=Signature update
size=23556
md5=69EBD4951CBC4A305D62BDBAD6FF5E56
desc=1056 Signatures: 938 Trojans, 5 Dialers, 74 Worms and 39 Spywares

[97]
URL=http://updates2.emsisoft.com/updates/43BAF740FC1A19AC4E187AB6F6EC9DF0.dat
path=Signatures\20070615.trc
name=Traces signature update
size=1044
md5=43BAF740FC1A19AC4E187AB6F6EC9DF0
desc=96 Spyware Traces

[98]
URL=http://updates2.emsisoft.com/updates/547EBA9639D115EDE45E99AB0BD8102B.dat
path=Signatures\20070618.sig
name=Signature update
size=31578
md5=547EBA9639D115EDE45E99AB0BD8102B
desc=1391 Signatures: 1223 Trojans, 5 Dialers, 115 Worms and 48 Spywares

[99]
URL=http://updates2.emsisoft.com/updates/02B94BC54E3E157EA0C0DAE8FF07D2E2.dat
path=Signatures\20070618.trc
name=Traces signature update
size=4508
md5=02B94BC54E3E157EA0C0DAE8FF07D2E2
desc=609 Spyware Traces

[100]
URL=http://updates2.emsisoft.com/updates/1B4A9AA72B7397CA898C6886895CA825.dat
path=Signatures\20070619.sig
name=Signature update
size=11173
md5=1B4A9AA72B7397CA898C6886895CA825
desc=594 Signatures: 434 Trojans, 0 Dialers, 2 Worms and 158 Spywares

[101]
URL=http://updates2.emsisoft.com/updates/BE974C209EA6EE6EA79DBDFB95681080.dat
path=Signatures\20070619.trc
name=Traces signature update
size=1109
md5=BE974C209EA6EE6EA79DBDFB95681080
desc=109 Spyware Traces

[102]
URL=http://updates2.emsisoft.com/updates/3DA024785935AAC0E4610F711B97C207.dat
path=cabinet.dll
name=Engine Component
size=65536
md5=3DA024785935AAC0E4610F711B97C207
desc=Unpacking component for CAB files 1.0.601.0

[103]
URL=http://updates2.emsisoft.com/updates/A5FE51B8CE661A935A165803C65A4BF1.dat
path=unrar.dll
name=Engine Component
size=160768
md5=A5FE51B8CE661A935A165803C65A4BF1
desc=Unpacking component for RAR files 3.50.0.214

[104]
URL=http://updates2.emsisoft.com/updates/139AB0F80461AD036FB0AFC39DD59A81.dat
path=Signatures\20070620.sig
name=Signature update
size=34460
md5=139AB0F80461AD036FB0AFC39DD59A81
desc=1565 Signatures: 1263 Trojans, 9 Dialers, 163 Worms and 130 Spywares

[105]
URL=http://updates2.emsisoft.com/updates/78EE9DBEEE97C36AC151703B6343B6E5.dat
path=Signatures\20070620.trc
name=Traces signature update
size=1716
md5=78EE9DBEEE97C36AC151703B6343B6E5
desc=219 Spyware Traces

[106]
URL=http://updates2.emsisoft.com/updates/1EB57AC49DDF290BFF9F527B3DE40262.dat
path=Signatures\20070621.sig
name=Signature update
size=45987
md5=1EB57AC49DDF290BFF9F527B3DE40262
desc=2059 Signatures: 1656 Trojans, 234 Dialers, 19 Worms and 150 Spywares

[107]
URL=http://updates2.emsisoft.com/updates/4E40D3F892882AB4B9A19CEB1D0A5545.dat
path=Signatures\20070621.trc
name=Traces signature update
size=1222
md5=4E40D3F892882AB4B9A19CEB1D0A5545
desc=122 Spyware Traces

[108]
URL=http://updates2.emsisoft.com/updates/84072B5D5A21C8AE9C8D76556B54D5E3.dat
path=Signatures\20070622.sig
name=Signature update
size=24235
md5=84072B5D5A21C8AE9C8D76556B54D5E3
desc=1092 Signatures: 980 Trojans, 5 Dialers, 71 Worms and 36 Spywares

[109]
URL=http://updates2.emsisoft.com/updates/40C43E662AAF30344E31FC9D2356DBBB.dat
path=Signatures\20070622.trc
name=Traces signature update
size=1349
md5=40C43E662AAF30344E31FC9D2356DBBB
desc=139 Spyware Traces

[110]
URL=http://updates2.emsisoft.com/updates/7D0B55EAC07C30C916323F2983E72ACB.dat
path=Signatures\20070625.sig
name=Signature update
size=22736
md5=7D0B55EAC07C30C916323F2983E72ACB
desc=1004 Signatures: 915 Trojans, 7 Dialers, 50 Worms and 32 Spywares

[111]
URL=http://updates2.emsisoft.com/updates/AD59569D06803429AA25BD297871F9C4.dat
path=Signatures\20070625.trc
name=Traces signature update
size=2782
md5=AD59569D06803429AA25BD297871F9C4
desc=319 Spyware Traces

[112]
URL=http://updates2.emsisoft.com/updates/EAF251470CF2A41571867A51CB5BDC57.dat
path=Signatures\20070626.sig
name=Signature update
size=12236
md5=EAF251470CF2A41571867A51CB5BDC57
desc=639 Signatures: 445 Trojans, 0 Dialers, 3 Worms and 191 Spywares

[113]
URL=http://updates2.emsisoft.com/updates/D1D642E92356AE4C89FC07F16A711BEC.dat
path=Signatures\20070626.trc
name=Traces signature update
size=1914
md5=D1D642E92356AE4C89FC07F16A711BEC
desc=179 Spyware Traces

[114]
URL=http://updates2.emsisoft.com/updates/57ED369858193701C4EFE71E30751FF9.dat
path=Signatures\20070627.sig
name=Signature update
size=26297
md5=57ED369858193701C4EFE71E30751FF9
desc=1192 Signatures: 1092 Trojans, 0 Dialers, 69 Worms and 31 Spywares

[115]
URL=http://updates2.emsisoft.com/updates/AAD634A65A50834F5B61E8FE4A089F96.dat
path=Signatures\20070627.trc
name=Traces signature update
size=2518
md5=AAD634A65A50834F5B61E8FE4A089F96
desc=273 Spyware Traces

[116]
URL=http://updates2.emsisoft.com/updates/BC1DC26EC3D73B4AA1DF7A282D50DA8B.dat
path=Signatures\20070628.sig
name=Signature update
size=63884
md5=BC1DC26EC3D73B4AA1DF7A282D50DA8B
desc=2844 Signatures: 2318 Trojans, 265 Dialers, 53 Worms and 208 Spywares

[117]
URL=http://updates2.emsisoft.com/updates/A6CC169083320441F6F3ACB67CAE05BE.dat
path=Signatures\20070628.trc
name=Traces signature update
size=2438
md5=A6CC169083320441F6F3ACB67CAE05BE
desc=252 Spyware Traces

[118]
URL=http://updates2.emsisoft.com/updates/EC316462A821B8A000D94292F973E786.dat
path=Signatures\20070629.sig
name=Signature update
size=24939
md5=EC316462A821B8A000D94292F973E786
desc=1132 Signatures: 1039 Trojans, 5 Dialers, 65 Worms and 23 Spywares

[119]
URL=http://updates2.emsisoft.com/updates/48E2B8C4F4380784E0E367E18AB59824.dat
path=Signatures\20070702.sig
name=Signature update
size=37690
md5=48E2B8C4F4380784E0E367E18AB59824
desc=1693 Signatures: 1532 Trojans, 7 Dialers, 90 Worms and 64 Spywares

[120]
URL=http://updates2.emsisoft.com/updates/FDC4455380D30C355B537BFDEC6E75ED.dat
path=Signatures\20070702.trc
name=Traces signature update
size=4146
md5=FDC4455380D30C355B537BFDEC6E75ED
desc=391 Spyware Traces

[121]
URL=http://updates2.emsisoft.com/updates/5D71B7EECBA6B584189B9F9A35F6999E.dat
path=Signatures\20070703.sig
name=Signature update
size=17219
md5=5D71B7EECBA6B584189B9F9A35F6999E
desc=857 Signatures: 688 Trojans, 0 Dialers, 9 Worms and 160 Spywares

[122]
URL=http://updates2.emsisoft.com/updates/1076945FB76EBA2E02EAEE04CB44C5AE.dat
path=Signatures\20070703.trc
name=Traces signature update
size=4894
md5=1076945FB76EBA2E02EAEE04CB44C5AE
desc=557 Spyware Traces

[123]
URL=http://updates2.emsisoft.com/updates/8C30CFA4AADFFE4F8F74B849EFA49507.dat
path=Signatures\20070704.sig
name=Signature update
size=27356
md5=8C30CFA4AADFFE4F8F74B849EFA49507
desc=1229 Signatures: 1128 Trojans, 4 Dialers, 71 Worms and 26 Spywares

[124]
URL=http://updates2.emsisoft.com/updates/D850B099A0CD0BCEDF1F93A1AA620E56.dat
path=Signatures\20070704.trc
name=Traces signature update
size=3378
md5=D850B099A0CD0BCEDF1F93A1AA620E56
desc=397 Spyware Traces

[125]
URL=http://updates2.emsisoft.com/updates/205D3ECA36472C0821C60E53EDF85DEB.dat
path=Signatures\20070705.sig
name=Signature update
size=55913
md5=205D3ECA36472C0821C60E53EDF85DEB
desc=2472 Signatures: 2021 Trojans, 230 Dialers, 36 Worms and 185 Spywares

[126]
URL=http://updates2.emsisoft.com/updates/482254D14E17F6984E1B6CABE5421C1A.dat
path=Signatures\20070705.trc
name=Traces signature update
size=3996
md5=482254D14E17F6984E1B6CABE5421C1A
desc=496 Spyware Traces

[127]
URL=http://updates2.emsisoft.com/updates/98A2D1634257054276844CE0396CF267.dat
path=Signatures\20070706.sig
name=Signature update
size=24446
md5=98A2D1634257054276844CE0396CF267
desc=1104 Signatures: 1017 Trojans, 2 Dialers, 59 Worms and 26 Spywares

[128]
URL=http://updates2.emsisoft.com/updates/629F6E89CA046A3939D718E08792B517.dat
path=Signatures\20070706.trc
name=Traces signature update
size=1424
md5=629F6E89CA046A3939D718E08792B517
desc=158 Spyware Traces

[129]
URL=http://updates2.emsisoft.com/updates/4F4D713627B5A3CC94DC81F232DE9D9B.dat
path=Signatures\20070709.sig
name=Signature update
size=29937
md5=4F4D713627B5A3CC94DC81F232DE9D9B
desc=1333 Signatures: 1163 Trojans, 4 Dialers, 114 Worms and 52 Spywares

[130]
URL=http://updates2.emsisoft.com/updates/22D53EF7F4974E5608EC0D0D8869B793.dat
path=Signatures\20070709.trc
name=Traces signature update
size=7238
md5=22D53EF7F4974E5608EC0D0D8869B793
desc=912 Spyware Traces

[131]
URL=http://updates2.emsisoft.com/updates/E26D207568EF7776B93698F17D0AEAC3.dat
path=Signatures\20070710.sig
name=Signature update
size=18240
md5=E26D207568EF7776B93698F17D0AEAC3
desc=900 Signatures: 736 Trojans, 0 Dialers, 8 Worms and 156 Spywares

[132]
URL=http://updates2.emsisoft.com/updates/DC0F9D3CA15F2E12DFF1969A1EC4E7ED.dat
path=Signatures\20070711.sig
name=Signature update
size=23520
md5=DC0F9D3CA15F2E12DFF1969A1EC4E7ED
desc=1053 Signatures: 951 Trojans, 2 Dialers, 64 Worms and 36 Spywares

[133]
URL=http://updates2.emsisoft.com/updates/B268477A81C2A8CC042C61D761C7F5EF.dat
path=Signatures\20070711.trc
name=Traces signature update
size=3470
md5=B268477A81C2A8CC042C61D761C7F5EF
desc=493 Spyware Traces

[134]
URL=http://updates2.emsisoft.com/updates/02BDFABF585D1F835F471F2FDC5E7CE5.dat
path=Signatures\20070712.sig
name=Signature update
size=52138
md5=02BDFABF585D1F835F471F2FDC5E7CE5
desc=2300 Signatures: 1919 Trojans, 210 Dialers, 19 Worms and 152 Spywares

[135]
URL=http://updates2.emsisoft.com/updates/7DB645141A525A9A8C8C729E4D4EB622.dat
path=Signatures\20070712.trc
name=Traces signature update
size=1424
md5=7DB645141A525A9A8C8C729E4D4EB622
desc=138 Spyware Traces

[136]
URL=http://updates2.emsisoft.com/updates/436F7D60C7534D20023028FF82FF37BB.dat
path=Signatures\20070713.sig
name=Signature update
size=18427
md5=436F7D60C7534D20023028FF82FF37BB
desc=827 Signatures: 750 Trojans, 5 Dialers, 52 Worms and 20 Spywares

[137]
URL=http://updates2.emsisoft.com/updates/F7113490064FD0AE1FFCAAADB57BDA81.dat
path=Signatures\20070713.trc
name=Traces signature update
size=1228
md5=F7113490064FD0AE1FFCAAADB57BDA81
desc=118 Spyware Traces

[138]
URL=http://updates2.emsisoft.com/updates/685FD5F0C82350B10408A855B14E0073.dat
path=Signatures\20070716.sig
name=Signature update
size=28450
md5=685FD5F0C82350B10408A855B14E0073
desc=1281 Signatures: 1116 Trojans, 8 Dialers, 105 Worms and 52 Spywares

[139]
URL=http://updates2.emsisoft.com/updates/AA8ED993517AFCE7E86477A1801C0724.dat
path=Signatures\20070716.trc
name=Traces signature update
size=3574
md5=AA8ED993517AFCE7E86477A1801C0724
desc=386 Spyware Traces

[140]
URL=http://updates2.emsisoft.com/updates/F9398225C6515245A59A169F8DB9F0D5.dat
path=Signatures\20070717.sig
name=Signature update
size=17198
md5=F9398225C6515245A59A169F8DB9F0D5
desc=861 Signatures: 710 Trojans, 0 Dialers, 13 Worms and 138 Spywares

[141]
URL=http://updates2.emsisoft.com/updates/E08BD59822A66E47B0BC4F3F525F2351.dat
path=Signatures\20070717.trc
name=Traces signature update
size=2095
md5=E08BD59822A66E47B0BC4F3F525F2351
desc=212 Spyware Traces

[142]
URL=http://updates2.emsisoft.com/updates/95F75AFD87B4ACDDB2DC3AB96B053A40.dat
path=Signatures\20070718.sig
name=Signature update
size=21200
md5=95F75AFD87B4ACDDB2DC3AB96B053A40
desc=960 Signatures: 848 Trojans, 5 Dialers, 88 Worms and 19 Spywares

[143]
URL=http://updates2.emsisoft.com/updates/5E2B09F3DC8A64C4A6586FD084383FB2.dat
path=Signatures\20070718.trc
name=Traces signature update
size=5058
md5=5E2B09F3DC8A64C4A6586FD084383FB2
desc=629 Spyware Traces

[144]
URL=http://updates2.emsisoft.com/updates/71B5C6FB889C061742991BD84747676B.dat
path=Signatures\20070719.sig
name=Signature update
size=52531
md5=71B5C6FB889C061742991BD84747676B
desc=2341 Signatures: 1907 Trojans, 250 Dialers, 24 Worms and 160 Spywares

[145]
URL=http://updates2.emsisoft.com/updates/BBA75C254C7E0B34F0415055F17F8066.dat
path=Signatures\20070720.sig
name=Signature update
size=21293
md5=BBA75C254C7E0B34F0415055F17F8066
desc=965 Signatures: 845 Trojans, 2 Dialers, 97 Worms and 21 Spywares

[146]
URL=http://updates2.emsisoft.com/updates/4D512FC6600A33AC2031AC8E5231911C.dat
path=Signatures\20070720.trc
name=Traces signature update
size=2695
md5=4D512FC6600A33AC2031AC8E5231911C
desc=284 Spyware Traces

[147]
URL=http://updates2.emsisoft.com/updates/EBE740AE2021CBDEAFDD726F48B51CBC.dat
path=Signatures\20070723.sig
name=Signature update
size=26098
md5=EBE740AE2021CBDEAFDD726F48B51CBC
desc=1170 Signatures: 1012 Trojans, 5 Dialers, 104 Worms and 49 Spywares

[148]
URL=http://updates2.emsisoft.com/updates/11A8D199E415328910BABAA0B5D3347E.dat
path=Signatures\20070723.trc
name=Traces signature update
size=2457
md5=11A8D199E415328910BABAA0B5D3347E
desc=250 Spyware Traces

[149]
URL=http://updates2.emsisoft.com/updates/2417C1F62D1BD2EEC54F274982448E68.dat
path=Signatures\20070724.sig
name=Signature update
size=18601
md5=2417C1F62D1BD2EEC54F274982448E68
desc=951 Signatures: 767 Trojans, 0 Dialers, 9 Worms and 175 Spywares

[150]
URL=http://updates2.emsisoft.com/updates/E487F4E48F80FFB347007A7E8B3B5CB0.dat
path=Signatures\20070724.trc
name=Traces signature update
size=3040
md5=E487F4E48F80FFB347007A7E8B3B5CB0
desc=333 Spyware Traces

[151]
URL=http://updates2.emsisoft.com/updates/5011E59A0102DF6C4B69F1A336CCE5F8.dat
path=Signatures\20070725.sig
name=Signature update
size=22219
md5=5011E59A0102DF6C4B69F1A336CCE5F8
desc=1003 Signatures: 882 Trojans, 1 Dialers, 92 Worms and 28 Spywares

[152]
URL=http://updates2.emsisoft.com/updates/E0C6A3F44537708FF962A6E026447422.dat
path=Signatures\20070725.trc
name=Traces signature update
size=3987
md5=E0C6A3F44537708FF962A6E026447422
desc=489 Spyware Traces

[153]
URL=http://updates2.emsisoft.com/updates/B4A7094E234FD3E8EFB084FF923FA04D.dat
path=Signatures\20070726.sig
name=Signature update
size=57323
md5=B4A7094E234FD3E8EFB084FF923FA04D
desc=2556 Signatures: 2097 Trojans, 236 Dialers, 31 Worms and 192 Spywares

[154]
URL=http://updates2.emsisoft.com/updates/31AC8999D874C4DB6CDF8BD164B77EAC.dat
path=Signatures\20070726.trc
name=Traces signature update
size=4623
md5=31AC8999D874C4DB6CDF8BD164B77EAC
desc=532 Spyware Traces

[155]
URL=http://updates2.emsisoft.com/updates/110CF597CEC1CCC76BC005B962D48C26.dat
path=Signatures\20070727.sig
name=Signature update
size=20680
md5=110CF597CEC1CCC76BC005B962D48C26
desc=946 Signatures: 813 Trojans, 5 Dialers, 101 Worms and 27 Spywares

[156]
URL=http://updates2.emsisoft.com/updates/3C8B5253987C8F428FF7C15CBF44907C.dat
path=Signatures\20070727.trc
name=Traces signature update
size=2610
md5=3C8B5253987C8F428FF7C15CBF44907C
desc=291 Spyware Traces

[157]
URL=http://updates2.emsisoft.com/updates/B303DA4AB9E632220F7E6B80DDDE5EBB.dat
path=Signatures\20070730.sig
name=Signature update
size=28043
md5=B303DA4AB9E632220F7E6B80DDDE5EBB
desc=1274 Signatures: 1119 Trojans, 4 Dialers, 107 Worms and 44 Spywares

[158]
URL=http://updates2.emsisoft.com/updates/65627A2FB38861B9266CB1C3269C2942.dat
path=Signatures\20070730.trc
name=Traces signature update
size=5092
md5=65627A2FB38861B9266CB1C3269C2942
desc=630 Spyware Traces

[159]
URL=http://updates2.emsisoft.com/updates/41056130636B5A1DBF3CACBA778A601F.dat
path=Signatures\20070731.sig
name=Signature update
size=12020
md5=41056130636B5A1DBF3CACBA778A601F
desc=592 Signatures: 491 Trojans, 0 Dialers, 3 Worms and 98 Spywares

[160]
URL=http://updates2.emsisoft.com/updates/68DC140690F11B97227E556DBAD40F33.dat
path=Signatures\20070801.sig
name=Signature update
size=20661
md5=68DC140690F11B97227E556DBAD40F33
desc=930 Signatures: 831 Trojans, 3 Dialers, 79 Worms and 17 Spywares

[161]
URL=http://updates2.emsisoft.com/updates/2BF5CE058489DD0AAD283A607831DA15.dat
path=Signatures\20070801.trc
name=Traces signature update
size=3817
md5=2BF5CE058489DD0AAD283A607831DA15
desc=444 Spyware
0
Réponse 13 / 17
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
20 nov. 2007 à 12:22
Salut

poste le rapport d'sdfix stp

++
0
Réponse 14 / 17
rajhda
20 nov. 2007 à 20:40
voila

Norman Malware Cleaner
Copyright © 1990 - 2007, Norman ASA. Built 2007/11/06 17:01:39

Norman Scanner Engine Version: 5.91.08
Nvcbin.def Version: 5.90.00, Date: 2007/11/06 17:01:39, Variants: 1
Nvcmacro.def Version: 5.90.00, Date: 2007/11/06 17:01:39, Variants: 12
Running pre-scan cleanup routine:
Operating System: Microsoft Windows XP Professional 5.1.2600 Service Pack 1
Logged on user: CHASTEL-6MTREAM\CHASTEL PHILIPPE


Scan started: 16/11/2007 23:19:23


Scanning running processes and process memory...

Number of processes/threads found: 1327
Number of processes/threads scanned: 1327
Number of processes/threads not scanned: 0
Number of infected processes/threads terminated: 0
Total scanning time: 17s


Scanning file system...

Scanning: C:\*.*

Scanning: D:\*.*

Scanning: E:\*.*

E:\System Volume Information\_RESTO~1\RP9\A0015613.exe (Infected with W32/Spybot.CJCS)
Deleted file

E:\System Volume Information\_RESTO~1\RP9\A0015767.exe (Infected with W32/Spybot.CJCS)
Deleted file

E:\System Volume Information\_RESTO~1\RP9\A0015819.exe (Infected with W32/Agent.CYGB)
Deleted file

E:\System Volume Information\_RESTO~1\RP9\A0016007.exe (Infected with SDBot.gen9)
Deleted file

E:\System Volume Information\_RESTO~1\RP9\A0016066.exe (Infected with W32/Spybot.CJCS)
Deleted file

E:\WINDOWS\system32\cbio.exe (Infected with W32/Agent.CYGB)
Deleted file

E:\WINDOWS\system32\cbio.RB0 (Infected with W32/Agent.CYGB)
Deleted file

E:\WINDOWS\system32\rwv.exe (Infected with SDBot.gen9)
Deleted file

E:\WINDOWS\system32\ttrc.exe (Infected with W32/Spybot.CJCS)
Deleted file

Scanning: e:\System Volume Information\*.*

e:\System Volume Information\_RESTO~1\RP9\A0017228.exe (Infected with W32/Agent.CYGB)
Deleted file

e:\System Volume Information\_RESTO~1\RP9\A0017431.exe (Infected with SDBot.gen9)
Deleted file

e:\System Volume Information\_RESTO~1\RP9\A0017505.exe (Infected with W32/Spybot.CJCS)
Deleted file


Running post-scan cleanup routine:

Number of files found: 50933
Number of archives unpacked: 234
Number of files scanned: 50882
Number of files not scanned: 51
Number of files skipped due to exclude list: 0
Number of infected files found: 12
Number of infected files repaired/deleted: 12
Number of infections removed: 12
Total scanning time: 18m 39s

merci pour votre oeil expert
A+
0
Réponse 15 / 17
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
20 nov. 2007 à 20:42
Cf poste 9 ;-)

0
Réponse 16 / 17
rajhda
22 nov. 2007 à 11:48
merci,

mais en fait c'est pas fini du tout, car j'ai perdu mon bureau et la barre de tache.
un second gentil réparateur est en train de s'occuper de moi mais j'ai du boulot et pas bcq de temps pour scanner et détruire dans tout les sens. samedi je pense être plus au calme.

merci bcq encore de ta patience.
0
Réponse 17 / 17
green day Messages postés 26371 Date d'inscription vendredi 30 septembre 2005 Statut Modérateur, Contributeur sécurité Dernière intervention 27 décembre 2019 2 162
22 nov. 2007 à 15:15
Salut

un 2nd réparateur ?!

==> http://www.commentcamarche.net/forum/affich 4092543 bureau vide#0

Merci de ne pas créer plusieurs potse pour le même problème !

Soit tu continue ave Jlpjlp, soit avec moi, mais pas les deux en même temps !

++
0

Discussions similaires

Boîte mail piratée ?
mike the llama -
mike the llama -

4 réponses
Code de réinitialisation mdp facebook sans le demander
Colonel_El_Moustachat -
Colonel_El_Moustachat -

4 réponses
Security boot fail lors du démarrage
Steu -
NBK -

4 réponses
Analyse de l'appli "AI SECURITY"
cl06 -
CCMBot -

1 réponse
SecurityHealth est a désactiver ou pas au démarrage de W10 Pro 64 ?
Walti55 -
Walti55 -

2 réponses