Security toolbar 7.1 , au secour

rajhda -  
green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   -
Bonjour,
moi aussi je me suis fais infecté par "security toolbar 7.1"
comme lu sur le forum, j'ai utilisé le "hijackthis", dont voici le rapport ci dessous.
je vous remercie de votre aide et merci de me renseigner du dédommagement.

Bonjour,
Logfile of HijackThis v1.99.1
Scan saved at 22:16:14, on 14/11/2007
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
E:\WINDOWS\System32\smss.exe
E:\WINDOWS\system32\winlogon.exe
E:\WINDOWS\system32\services.exe
E:\WINDOWS\system32\lsass.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\Explorer.EXE
E:\WINDOWS\system32\spoolsv.exe
E:\WINDOWS\System32\antiv.exe
E:\WINDOWS\sdir\relpk.exe
D:\ipod\iTunesHelper.exe
E:\WINDOWS\System32\ctfmon.exe
E:\WINDOWS\system\NOTEPAD.exe
E:\Program Files\iPod\bin\iPodService.exe
E:\Program Files\Internet Explorer\iexplore.exe
E:\DOCUME~1\CHASTE~1\LOCALS~1\Temp\wineuje.exe
E:\Program Files\Internet Explorer\iexplore.exe
E:\Program Files\Internet Explorer\iexplore.exe
E:\Program Files\Internet Explorer\iexplore.exe
E:\Documents and Settings\CHASTEL PHILIPPE\Local Settings\Temp\Répertoire temporaire 1 pour hijackthis.zip\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - E:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: Security Toolbar - {11A69AE4-FBED-4832-A2BF-45AF82825583} - E:\WINDOWS\System32\fcgensiy.dll
O4 - HKLM\..\Run: [Application Layer Gateway Service] E:\WINDOWS\System32\algs.exe
O4 - HKLM\..\Run: [Local Security Authority Service] E:\WINDOWS\System32\lssas.exe
O4 - HKLM\..\Run: [Client Server Runtime Process] E:\WINDOWS\System32\csrs.exe
O4 - HKLM\..\Run: [Microsoft Anivirus Monitor Process] antiv.exe
O4 - HKLM\..\Run: [Microsoft Internet Explorer] E:\WINDOWS\System32\iexplore.exe
O4 - HKLM\..\Run: [Advanced DHTML Enable] E:\WINDOWS\sdir\relpk.exe
O4 - HKLM\..\Run: [QuickTime Task] "E:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "D:\ipod\iTunesHelper.exe"
O4 - HKLM\..\Run: [1c581776] rundll32.exe "E:\WINDOWS\System32\rwibxwed.dll",b
O4 - HKLM\..\RunServices: [Microsoft Anivirus Monitor Process] antiv.exe
O4 - HKCU\..\Run: [CTFMON.EXE] E:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\RunOnce: [CleanUp!] E:\Program Files\CleanUp!\Cleanup.exe /WindowsRestart
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O23 - Service: DomainService - Unknown owner - E:\WINDOWS\System32\ylossnuk.exe (file missing)
O23 - Service: h4m0v0k2 - Unknown owner - E:\WINDOWS\system32\svshost.exe (file missing)
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - E:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NOTEPAD - Unknown owner - E:\WINDOWS\system\NOTEPAD.exe
Configuration: Windows XP
Internet Explorer 6.0

17 réponses

  1. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    Salut

    retélécharhe hijackthis et installe le sur le bureau

    puis : fais un clic droit dessus < renommer < puis nomme le CCM.exe

    puis poste un nouveau rapport stp

    ++
    0
  2. rajhda
     
    Logfile of HijackThis v1.99.1
    Scan saved at 19:10:20, on 16/11/2007
    Platform: Windows XP SP1 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

    Running processes:
    E:\WINDOWS\System32\smss.exe
    E:\WINDOWS\system32\csrss.exe
    E:\WINDOWS\system32\winlogon.exe
    E:\WINDOWS\system32\services.exe
    E:\WINDOWS\system32\lsass.exe
    E:\WINDOWS\system32\svchost.exe
    E:\WINDOWS\System32\svchost.exe
    E:\WINDOWS\System32\svchost.exe
    E:\WINDOWS\System32\svchost.exe
    E:\WINDOWS\Explorer.EXE
    E:\WINDOWS\system32\spoolsv.exe
    E:\WINDOWS\System32\antiv.exe
    D:\ipod\iTunesHelper.exe
    E:\WINDOWS\System32\ctfmon.exe
    E:\WINDOWS\system\NOTEPAD.exe
    E:\Program Files\iPod\bin\iPodService.exe
    E:\WINDOWS\System32\wuauclt.exe
    E:\Program Files\Internet Explorer\iexplore.exe
    E:\Documents and Settings\CHASTEL PHILIPPE\Bureau\CCM.exe.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
    O2 - BHO: {883b609e-e12f-230b-9074-afc31621a5a3} - {3a5a1261-3cfa-4709-b032-f21ee906b388} - E:\WINDOWS\System32\lpwlxnuf.dll
    O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - E:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O2 - BHO: (no name) - {A95B2816-1D7E-4561-A202-68C0DE02353A} - E:\WINDOWS\System32\fcgensiy.dll
    O2 - BHO: (no name) - {DA712462-31B9-409C-8221-1370735B97E5} - E:\WINDOWS\System32\gebbb.dll
    O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - E:\WINDOWS\System32\msdxm.ocx
    O3 - Toolbar: Security Toolbar - {11A69AE4-FBED-4832-A2BF-45AF82825583} - E:\WINDOWS\System32\fcgensiy.dll
    O4 - HKLM\..\Run: [Application Layer Gateway Service] E:\WINDOWS\System32\algs.exe
    O4 - HKLM\..\Run: [Local Security Authority Service] E:\WINDOWS\System32\lssas.exe
    O4 - HKLM\..\Run: [Client Server Runtime Process] E:\WINDOWS\System32\csrs.exe
    O4 - HKLM\..\Run: [Microsoft Anivirus Monitor Process] antiv.exe
    O4 - HKLM\..\Run: [Microsoft Internet Explorer] E:\WINDOWS\System32\iexplore.exe
    O4 - HKLM\..\Run: [Advanced DHTML Enable] E:\WINDOWS\sdir\relpk.exe
    O4 - HKLM\..\Run: [QuickTime Task] "E:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "D:\ipod\iTunesHelper.exe"
    O4 - HKLM\..\Run: [1c581776] rundll32.exe "E:\WINDOWS\System32\fwopmkfi.dll",b
    O4 - HKLM\..\Run: [Windows Explorer] E:\WINDOWS\System32\explorer.exe
    O4 - HKLM\..\RunServices: [Microsoft Anivirus Monitor Process] antiv.exe
    O4 - HKCU\..\Run: [CTFMON.EXE] E:\WINDOWS\System32\ctfmon.exe
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
    O20 - AppInit_DLLs: E:\WINDOWS\System32\__c0029189.dat
    O20 - Winlogon Notify: fccbcba - E:\WINDOWS\SYSTEM32\fccbcba.dll
    O20 - Winlogon Notify: fcgensiy - E:\WINDOWS\SYSTEM32\fcgensiy.dll
    O23 - Service: DomainService - Unknown owner - E:\WINDOWS\System32\ylossnuk.exe (file missing)
    O23 - Service: h4m0v0k2 - Unknown owner - E:\WINDOWS\system32\svshost.exe (file missing)
    O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - E:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: NOTEPAD - Unknown owner - E:\WINDOWS\system\NOTEPAD.exe

    j'espère que ce noueau scan te permettra d'avancer
    avec mes remerciements
    0
  3. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    très bien !

    Télécharger ComboFix (par sUBs) sur le Bureau : http://download.bleepingcomputer.com/sUBs/ComboFix.exe

    * Démarrer en mode sans echec
    * Double cliquer combofix.exe.
    * Appuyer sur la touche Y (Yes) pour démarrer le scan
    * Le rapport sera crée dans: C:\Combofix.txt, poste le stp

    ++
    0
  4. rajhda
     
    ComboFix 07-11-08.1 - CHASTEL PHILIPPE 2007-11-16 21:09:40.1 - NTFSx86
    Microsoft Windows XP Professionnel 5.1.2600.1.1252.33.1036.18.345 [GMT 1:00]
    Running from: E:\Documents and Settings\CHASTEL PHILIPPE\Bureau\ComboFix.exe
    * Created a new restore point
    .

    Incapable d'obtenir les privilèges Système

    (((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
    .

    E:\Documents and Settings\All Users\Menu Démarrer\Live Safety Center.lnk
    E:\Documents and Settings\All Users\Menu Démarrer\Online Security Guide.lnk
    E:\Documents and Settings\CHASTEL PHILIPPE\Bureau\Live Safety Center.lnk
    E:\Documents and Settings\CHASTEL PHILIPPE\Bureau\Online Security Guide.lnk
    E:\Documents and Settings\CHASTEL PHILIPPE\Favoris\Online Security Guide.lnk
    E:\WINDOWS\cookies.ini
    E:\WINDOWS\system32\__c0029189.dat
    E:\WINDOWS\system32\__c006CE5D.dat
    E:\WINDOWS\system32\__c007DCB2.dat
    E:\WINDOWS\system32\__c007ED69.dat
    E:\WINDOWS\system32\__c0080E32.dat
    E:\WINDOWS\system32\__c0085482.dat
    E:\WINDOWS\system32\__c00B197D.dat
    E:\WINDOWS\system32\__c00C5304.dat
    E:\WINDOWS\system32\__c00E5544.dat
    E:\WINDOWS\system32\acrtkbkf.dll
    E:\WINDOWS\system32\acvwvjqt.dll
    E:\WINDOWS\system32\aqtypbyh.dll
    E:\WINDOWS\system32\ascyydhy.dll
    E:\WINDOWS\system32\bbbeg.bak1
    E:\WINDOWS\system32\bbbeg.bak2
    E:\WINDOWS\system32\bbbeg.ini
    E:\WINDOWS\system32\bbulyqdd.dll
    E:\WINDOWS\system32\cbbmybop.dll
    E:\WINDOWS\system32\cbhwehyo.dll
    E:\WINDOWS\system32\csrs.exe
    E:\WINDOWS\system32\djpoaoup.dll
    E:\WINDOWS\system32\eojkxplw.dll
    E:\WINDOWS\system32\fcgensiy.dllbox
    E:\WINDOWS\system32\fgnfstpw.dll
    E:\WINDOWS\system32\firewall.exe
    E:\WINDOWS\system32\fjnfdtpe.dll
    E:\WINDOWS\system32\gebbb.dll
    E:\WINDOWS\system32\glrmuyhw.dll
    E:\WINDOWS\system32\gqfyoenp.dll
    E:\WINDOWS\system32\hfsdjckk.dll
    E:\WINDOWS\system32\httsvejy.dll
    E:\WINDOWS\system32\jagobfyo.dll
    E:\WINDOWS\system32\jblorwkw.dll
    E:\WINDOWS\system32\jyifgxcg.dll
    E:\WINDOWS\system32\kiufamem.dll
    E:\WINDOWS\system32\kjerjemu.dll
    E:\WINDOWS\system32\kperepgk.dll
    E:\WINDOWS\system32\ldcitxwg.dll
    E:\WINDOWS\system32\leneirbh.dll
    E:\WINDOWS\system32\loojrbik.dll
    E:\WINDOWS\system32\luvkitum.dll
    E:\WINDOWS\system32\mcpagvbh.dll
    E:\WINDOWS\system32\mrkscrig.dll
    E:\WINDOWS\system32\nedbqbdw.dll
    E:\WINDOWS\system32\nuksndvi.dll
    E:\WINDOWS\system32\ogtctkjw.dll
    E:\WINDOWS\system32\pbfsaawn.dll
    E:\WINDOWS\system32\pvigctdu.dll
    E:\WINDOWS\system32\pxnyutsd.dll
    E:\WINDOWS\system32\rbxrtnek.dll
    E:\WINDOWS\system32\sgaadrcw.dll
    E:\WINDOWS\system32\siqrxqqk.dll
    E:\WINDOWS\system32\svlrcqbp.dll
    E:\WINDOWS\system32\ubaoqykg.dll
    E:\WINDOWS\system32\ujjhlnwl.dll
    E:\WINDOWS\system32\vccxgsot.dll
    E:\WINDOWS\system32\yaahpyeh.dll
    E:\WINDOWS\system32\ymkhosjd.dll
    E:\WINDOWS\system32\ynmiqhla.dll

    .
    ((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))

    .
    -------\LEGACY_DOMAINSERVICE
    -------\DomainService

    ((((((((((((((((((((((((((((( Fichiers cr‚‚s 2007-10-16 to 2007-11-16 ))))))))))))))))))))))))))))))))))))
    .

    2007-11-16 21:14 74,996 E:\WINDOWS\system32\djvdt.exe
    2007-11-16 21:08 51,200 --a------ E:\WINDOWS\NirCmd.exe
    2007-11-16 20:46 31,193 --a------ E:\WINDOWS\system32\snck.exe
    2007-11-16 20:46 30,841 --a------ E:\WINDOWS\system32\qpqtp.exe
    2007-11-16 18:42 2,432 --a------ E:\WINDOWS\system32\unpr.sys
    2007-11-15 14:34 79,936 --a------ E:\WINDOWS\system32\lpwlxnuf.dll
    2007-11-15 14:32 <REP> d-------- E:\Program Files\Java
    2007-11-15 14:28 85,056 --a------ E:\WINDOWS\system32\fwopmkfi.dll
    2007-11-13 18:21 <REP> d-------- E:\Program Files\Lavasoft
    2007-11-13 18:20 <REP> d-------- E:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
    2007-11-13 14:26 94,992 --a------ E:\WINDOWS\system32\Vb5fr.dll
    2007-11-13 13:58 144,480 --a------ E:\WINDOWS\system32\qacnswkm.dll
    2007-11-13 13:58 144,480 --a------ E:\WINDOWS\system32\fcgensiy.dll
    2007-11-13 13:55 71,232 --a------ E:\WINDOWS\system32\fovsyufv.exe
    2007-11-12 14:03 89,664 --a------ E:\WINDOWS\system32\ysesmewc.dll
    2007-11-12 13:57 81,472 --a------ E:\WINDOWS\system32\isigkark.dll
    2007-11-12 13:49 71,232 --a------ E:\WINDOWS\system32\muelqlko.exe
    2007-11-11 15:50 <REP> d-------- E:\programme
    2007-11-11 14:57 <REP> d-------- E:\Program Files\PAN vision
    2007-11-11 14:57 222,208 --a------ E:\WINDOWS\IsUn040c.exe
    2007-11-11 12:52 <REP> d--h----- E:\Program Files\InstallShield Installation Information
    2007-11-11 12:51 <REP> d-------- E:\Program Files\Fichiers communs\InstallShield
    2007-11-11 08:28 79,936 --a------ E:\WINDOWS\system32\bpafomtg.dll
    2007-11-11 08:24 71,232 --a------ E:\WINDOWS\system32\vqvqqebh.exe
    2007-11-09 15:30 71,232 --a------ E:\WINDOWS\system32\ahrqslca.exe
    2007-11-08 17:06 <REP> d-------- E:\Documents and Settings\CHASTEL PHILIPPE\Application Data\vlc
    2007-11-07 18:56 79,936 --a------ E:\WINDOWS\system32\jcabhpne.dll
    2007-11-07 18:51 71,232 --a------ E:\WINDOWS\system32\kfsafbjh.exe
    2007-11-05 16:03 83,008 --a------ E:\WINDOWS\system32\ktagdjsf.dll
    2007-11-04 18:19 21,760 --a--c--- E:\WINDOWS\system32\dllcache\usbstor.sys
    2007-11-04 18:17 <REP> d-------- E:\Program Files\iPod
    2007-11-04 18:17 <REP> d-------- E:\Documents and Settings\CHASTEL PHILIPPE\Application Data\Apple Computer
    2007-11-04 18:16 <REP> d-------- E:\Program Files\QuickTime
    2007-11-04 18:16 <REP> d-------- E:\Documents and Settings\All Users\Application Data\Apple Computer
    2007-11-04 18:15 <REP> d-------- E:\Program Files\Apple Software Update
    2007-11-04 18:15 <REP> d-------- E:\Documents and Settings\All Users\Application Data\Apple
    2007-11-04 18:04 549,720 --a------ E:\WINDOWS\system32\wuapi.dll
    2007-11-04 18:04 325,976 --a------ E:\WINDOWS\system32\wucltui.dll
    2007-11-04 18:04 43,352 --a------ E:\WINDOWS\system32\wups2.dll
    2007-11-04 18:04 33,624 --a------ E:\WINDOWS\system32\wups.dll
    2007-11-04 18:03 <REP> d---s---- E:\Documents and Settings\CHASTEL PHILIPPE\UserData
    2007-11-04 17:54 <REP> d---s---- E:\WINDOWS\system32\Microsoft
    2007-11-04 17:45 <REP> d--hs---- E:\WINDOWS\Installer
    2007-11-04 17:44 <REP> d--h----- E:\Documents and Settings\CHASTEL PHILIPPE\Voisinage r‚seau
    2007-11-04 17:44 <REP> d--h----- E:\Documents and Settings\CHASTEL PHILIPPE\Voisinage d'impression
    2007-11-04 17:44 <REP> d--h----- E:\Documents and Settings\CHASTEL PHILIPPE\ModŠles
    2007-11-04 17:44 <REP> dr------- E:\Documents and Settings\CHASTEL PHILIPPE\Mes documents
    2007-11-04 17:44 <REP> dr------- E:\Documents and Settings\CHASTEL PHILIPPE\Menu D‚marrer
    2007-11-04 17:44 <REP> dr------- E:\Documents and Settings\CHASTEL PHILIPPE\Favoris
    2007-11-04 17:44 <REP> d-------- E:\Documents and Settings\CHASTEL PHILIPPE\Bureau
    2007-11-04 16:35 <REP> d--h----- E:\WINDOWS\system32\config\systemprofile\Voisinage r‚seau
    2007-11-04 16:35 <REP> d--h----- E:\WINDOWS\system32\config\systemprofile\Voisinage d'impression
    2007-11-04 16:35 <REP> d--h----- E:\WINDOWS\system32\config\systemprofile\ModŠles
    2007-11-04 16:35 <REP> d-------- E:\WINDOWS\system32\config\systemprofile\Mes documents
    2007-11-04 16:35 <REP> dr------- E:\WINDOWS\system32\config\systemprofile\Menu D‚marrer
    2007-11-04 16:35 <REP> d-------- E:\WINDOWS\system32\config\systemprofile\Favoris
    2007-11-04 16:35 <REP> d-------- E:\WINDOWS\system32\config\systemprofile\Bureau
    2007-11-04 16:27 39,424 --a--c--- E:\WINDOWS\system32\dllcache\davcdata.exe
    2007-11-04 16:24 19,456 --a--c--- E:\WINDOWS\system32\dllcache\cprofile.exe
    2007-11-04 16:23 57,400 --a--c--- E:\WINDOWS\system32\dllcache\cplexe.exe
    2007-11-04 16:23 56,832 --a--c--- E:\WINDOWS\system32\dllcache\convlog.exe
    2007-11-04 16:23 20,480 --a--c--- E:\WINDOWS\system32\dllcache\counters.dll
    2007-11-04 16:22 33,792 --a--c--- E:\WINDOWS\system32\dllcache\controt.dll
    2007-11-04 16:19 22,016 --a--c--- E:\WINDOWS\system32\dllcache\compfilt.dll
    2007-11-04 16:17 480,256 --a--c--- E:\WINDOWS\system32\dllcache\cintsetp.exe
    2007-11-04 16:17 201,216 --a--c--- E:\WINDOWS\system32\dllcache\cintime.dll
    2007-11-04 16:16 1,677,824 --a--c--- E:\WINDOWS\system32\dllcache\chsbrkr.dll
    2007-11-04 16:16 838,144 --a--c--- E:\WINDOWS\system32\dllcache\chtbrkr.dll
    2007-11-04 16:16 173,568 --a--c--- E:\WINDOWS\system32\dllcache\chtskf.dll
    2007-11-04 16:16 97,792 --a--c--- E:\WINDOWS\system32\dllcache\chtmbx.dll
    2007-11-04 16:16 56,320 --a--c--- E:\WINDOWS\system32\dllcache\chtskdic.dll
    2007-11-04 16:15 15,872 --a--c--- E:\WINDOWS\system32\dllcache\chgport.exe
    2007-11-04 16:15 14,848 --a--c--- E:\WINDOWS\system32\dllcache\chgusr.exe
    2007-11-04 16:15 13,824 --a--c--- E:\WINDOWS\system32\dllcache\chglogon.exe
    2007-11-04 16:15 10,240 --a--c--- E:\WINDOWS\system32\dllcache\change.exe
    2007-11-04 16:14 54,528 --a--c--- E:\WINDOWS\system32\dllcache\cap7146.sys
    2007-11-04 16:13 218,112 --a--c--- E:\WINDOWS\system32\dllcache\c_g18030.dll
    2007-11-04 16:13 45,568 --a--c--- E:\WINDOWS\system32\dllcache\browscap.dll
    2007-11-04 16:13 10,752 --a--c--- E:\WINDOWS\system32\dllcache\c_iscii.dll
    2007-11-04 16:13 6,656 --a--c--- E:\WINDOWS\system32\dllcache\c_is2022.dll
    2007-11-04 16:12 9,216 --a--c--- E:\WINDOWS\system32\dllcache\authfilt.dll
    2007-11-04 16:11 29,184 --a--c--- E:\WINDOWS\system32\dllcache\asptxn.dll
    2007-11-04 16:11 10,240 --a--c--- E:\WINDOWS\system32\dllcache\aspperf.dll
    2007-11-04 16:10 347,136 --a--c--- E:\WINDOWS\system32\dllcache\asp51.dll
    2007-11-04 16:10 315,904 --a--c--- E:\WINDOWS\system32\dllcache\EXCH_aqueue.dll
    2007-11-04 16:10 99,840 --a--c--- E:\WINDOWS\system32\dllcache\appconf.dll
    2007-11-04 16:10 45,056 --a--c--- E:\WINDOWS\system32\dllcache\EXCH_aqadmin.dll
    2007-11-04 16:09 19,456 --a--c--- E:\WINDOWS\system32\dllcache\agt0804.dll
    2007-11-04 16:09 19,456 --a--c--- E:\WINDOWS\system32\dllcache\agt0412.dll
    2007-11-04 16:09 19,456 --a--c--- E:\WINDOWS\system32\dllcache\agt0411.dll
    2007-11-04 16:09 19,456 --a--c--- E:\WINDOWS\system32\dllcache\agt040d.dll
    2007-11-04 16:09 19,456 --a--c--- E:\WINDOWS\system32\dllcache\agt0404.dll
    2007-11-04 16:09 19,456 --a--c--- E:\WINDOWS\system32\dllcache\agt0401.dll
    2007-11-04 16:08 50,176 --a--c--- E:\WINDOWS\system32\dllcache\adrot.dll
    2007-11-04 16:08 6,144 --a--c--- E:\WINDOWS\system32\dllcache\admxprox.dll
    2007-11-04 16:08 5,632 --a--c--- E:\WINDOWS\system32\dllcache\EXCH_adsiisex.dll
    2007-11-04 16:07 27,136 --a--c--- E:\WINDOWS\system32\dllcache\admexs.dll
    2007-11-04 16:04 7,168 --a--c--- E:\WINDOWS\system32\dllcache\wamregps.dll
    2007-11-04 16:03 32,827 --a--c--- E:\WINDOWS\system32\dllcache\tcptest.exe
    2007-11-04 16:03 16,384 --a--c--- E:\WINDOWS\system32\dllcache\tcptsat.dll

    .
    (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2007-11-16 20:15 5,109 ----a-w E:\WINDOWS\system32\drivers\vnlmn.sys
    2007-11-16 20:14 39,936 ----a-w E:\WINDOWS\system32\wmfptc32.dll
    2007-11-04 14:50 --------- d-----w E:\Program Files\microsoft frontpage
    2007-11-04 14:44 61,440 ---ha-w E:\WINDOWS\system32\htkg.exe
    2007-11-04 14:44 1,134,080 ----a-w E:\WINDOWS\system32\rwv.exe
    2007-11-04 14:38 38,649 ----a-w E:\WINDOWS\system32\kl.exe
    2007-11-04 14:35 30,660 ---ha-w E:\WINDOWS\system32\oltvrolg.exe
    2007-11-04 14:32 66,048 ----a-w E:\WINDOWS\winvyidu.exe
    2007-11-04 14:31 35,328 ----a-w E:\WINDOWS\system32\fccbcba.dll
    2007-11-04 14:30 6,546,276 ----a-w E:\WINDOWS\system32\setup_68555.exe
    2007-11-04 14:30 102,400 ----a-r E:\WINDOWS\system32\antiv.exe
    2007-11-04 14:28 30,750 ----a-w E:\WINDOWS\system32\rieym.exe
    2007-11-04 14:28 --------- d-----w E:\Program Files\Services en ligne
    2007-11-04 14:26 --------- d-----w E:\Program Files\Fichiers communs\MSSoap
    2007-11-04 14:23 107,520 ---ha-w E:\WINDOWS\system32\cbio.exe
    .

    ((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3a5a1261-3cfa-4709-b032-f21ee906b388}]
    2007-11-15 14:34 79936 --a------ E:\WINDOWS\System32\lpwlxnuf.dll

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A95B2816-1D7E-4561-A202-68C0DE02353A}]
    2007-11-13 13:58 144480 --a------ E:\WINDOWS\system32\fcgensiy.dll

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    "{11A69AE4-FBED-4832-A2BF-45AF82825583}"= E:\WINDOWS\system32\fcgensiy.dll [2007-11-13 13:58 144480]

    [HKEY_CLASSES_ROOT\CLSID\{11A69AE4-FBED-4832-A2BF-45AF82825583}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Application Layer Gateway Service"="E:\WINDOWS\System32\algs.exe" []
    "Local Security Authority Service"="E:\WINDOWS\System32\Isass.exe" []
    "Client Server Runtime Process"="E:\WINDOWS\System32\csrs.exe" [2002-08-30 13:00]
    "Microsoft Anivirus Monitor Process"="antiv.exe" [2007-11-04 15:30 E:\WINDOWS\system32\antiv.exe]
    "Advanced DHTML Enable"="E:\WINDOWS\sdir\relpk.exe" [2007-10-23 01:16]
    "QuickTime Task"="E:\Program Files\QuickTime\qttask.exe" [2007-06-29 06:24]
    "iTunesHelper"="D:\ipod\iTunesHelper.exe" [2007-09-26 14:42]
    "1c581776"="E:\WINDOWS\System32\fwopmkfi.dll" [2007-11-15 14:28]
    "Windows Explorer"="E:\WINDOWS\System32\explorer.exe" []
    "Windows Logon Application"="E:\WINDOWS\System32\winIogon.exe" []
    "Windows Network Firewall"="E:\WINDOWS\System32\firewall.exe" []

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="E:\WINDOWS\System32\ctfmon.exe" [2002-08-30 13:00]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runservices]
    "Microsoft Anivirus Monitor Process"=antiv.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\fccbcba]
    fccbcba.dll 2007-11-04 15:31 35328 E:\WINDOWS\system32\fccbcba.dll

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\fcgensiy]
    fcgensiy.dll 2007-11-13 13:58 144480 E:\WINDOWS\system32\fcgensiy.dll

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
    "Authentication Packages"= msv1_0 E:\WINDOWS\System32\gebbb.dll

    [color=red]SafeBoot registry key needs repairs. This machine cannot enter Safe Mode.[/color]

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\File system]
    @="Driver Group"

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vgasave.sys]
    @="Driver"

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}]
    @="DiskDrive"

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}]
    @="Hdc"

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}]
    @="Keyboard"

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}]
    @="Mouse"

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}]
    @="System"

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}]
    @="Volume"

    R0 UNPR;UNPR;E:\WINDOWS\System32\unpr.sys
    R2 NdisFileServices32;NdisFileServices32;\??\E:\WINDOWS\System32\drivers\vnlmn.sys
    R2 NOTEPAD;NOTEPAD;"E:\WINDOWS\system\NOTEPAD.exe"
    S2 h4m0v0k2;h4m0v0k2;"E:\WINDOWS\system32\svshost.exe"

    .
    **************************************************************************

    catchme 0.3.1250 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2007-11-16 21:14:57
    Windows 5.1.2600 Service Pack 1 NTFS

    scanning hidden processes ...

    scanning hidden autostart entries ...

    scanning hidden files ...

    **************************************************************************
    .
    Completion time: 2007-11-16 21:16:19 - machine was rebooted
    .
    --- E O F ---
    je n a pu redemmarer en mode sans echec
    j esperfe que cela a marcher
    merci
    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    ok,

    Télécharger Vundofix.exe (par Atribune) sur votre Bureau : http://www.atribune.org/ccount/click.php?id=4

    * Double-cliquer sur VundoFix.exe afin de le lancer.
    * Cliquer sur le bouton Scan for Vundo.
    * Lorsque le scan est complété, cliquer sur le bouton Remove Vundo.
    * Une invite de commande demandera si l’on souhaite supprimer les fichiers, cliquer sur YES
    * Après avoir cliqué "YES", le Bureau disparaîtra un moment lors de la suppression des fichiers.
    * Une nouvelle invite de commende annoncera que le PC devra s'éteindre ("shutdown"). Cliquer sur OK , puis laisser le redémarrer.
    * Le contenu du rapport est situé dans C:\vundofix.txt, poste le stp

    ++
    0
  7. rajhda
     
    Beginning removal...

    Beginning removal...

    VundoFix V6.6.1

    Checking Java version...

    Scan started at 22:18:04 16/11/2007

    Listing files found while scanning....

    E:\windows\system32\fccbcba.dll
    E:\WINDOWS\system32\fcgensiy.dll

    Beginning removal...

    Attempting to delete E:\windows\system32\fccbcba.dll
    E:\windows\system32\fccbcba.dll Has been deleted!

    Attempting to delete E:\WINDOWS\system32\fcgensiy.dll
    E:\WINDOWS\system32\fcgensiy.dll Has been deleted!

    Performing Repairs to the registry.
    Done!

    que dois je faire, je suis suspendu à vos lettres:::
    0
  8. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    ok ! on continue !

    Télécharger VirtumundoBegone sur le bureau : http://secured2k.home.comcast.net/tools/VirtumundoBeGone.exe

    Double cliquer sur VirtumundoBeGone.exe et suivre les instructions.
    Une fois terminé, redémarrer le PC, le rapport VBG.TXT sera crée sur le bureau , poste le stp

    ++
    0
  9. rajhda
     
    [11/16/2007, 23:02:54] - VirtumundoBeGone v1.5 ( "E:\Documents and Settings\CHASTEL PHILIPPE\Bureau\VirtumundoBeGone.exe" )
    [11/16/2007, 23:03:02] - Detected System Information:
    [11/16/2007, 23:03:02] - Windows Version: 5.1.2600, Service Pack 1
    [11/16/2007, 23:03:02] - Current Username: CHASTEL PHILIPPE (Admin)
    [11/16/2007, 23:03:02] - Windows is in NORMAL mode.
    [11/16/2007, 23:03:02] - Searching for Browser Helper Objects:
    [11/16/2007, 23:03:02] - BHO 1: {3a5a1261-3cfa-4709-b032-f21ee906b388} ()
    [11/16/2007, 23:03:02] - WARNING: BHO has no default name. Checking for Winlogon reference.
    [11/16/2007, 23:03:02] - Checking for HKLM\...\Winlogon\Notify\lpwlxnuf
    [11/16/2007, 23:03:02] - Key not found: HKLM\...\Winlogon\Notify\lpwlxnuf, continuing.
    [11/16/2007, 23:03:02] - BHO 2: {53707962-6F74-2D53-2644-206D7942484F} ()
    [11/16/2007, 23:03:02] - WARNING: BHO has no default name. Checking for Winlogon reference.
    [11/16/2007, 23:03:02] - Checking for HKLM\...\Winlogon\Notify\SDHelper
    [11/16/2007, 23:03:02] - Key not found: HKLM\...\Winlogon\Notify\SDHelper, continuing.
    [11/16/2007, 23:03:02] - Finished Searching Browser Helper Objects
    [11/16/2007, 23:03:02] - Finishing up...
    [11/16/2007, 23:03:02] - Nothing found! Exiting...

    comment ça avance doc!
    0
  10. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    ok !

    Télécharge SDFix sur ton bureau

    http://downloads.andymanchesta.com/RemovalTools/SDFix.exe

    Double clique sur SDFix.exe et choisis Install pour l'extraire dans un dossier dédié sur le Bureau.
    Redémarre ton ordinateur en mode sans échec
    Ouvre le dossier SDFix qui vient d'être créé sur le Bureau et double clique sur RunThis.bat pour lancer le script.
    Appuie sur Y pour commencer le processus de nettoyage.
    Il va supprimer les services et les entrées du Registre de certains trojans trouvés puis te demandera d'appuyer sur une touche pour redémarrer.
    Appuie sur une touche pour redémarrer le PC.
    Ton système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
    Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
    Appuie sur une touche pour finir l'exécution du script et charger les icônes de ton Bureau.
    Les icônes du Bureau affichées, le rapport SDFix s'ouvrira à l'écran et s'enregistrera aussi dans le dossier SDFix sous le nom Report.txt.
    Enfin, copie/colle le contenu du fichier Report.txt dans ta prochaine réponse sur le forum, avec un nouveau log Hijackthis !

    ++
    0
  11. rajhda
     
    je n arrive pas a ouvrir en mode sans echec, je pense que la config de mon ordi n'est pas top, conflit carte mèer et xp.
    bref, j'ai fait un scan avec Norman mais aucun fichier txt ne s'est créer et j'ai fait un scan avec a2cm
    lui m'a donne ceci:
    a-squared Command Line Scanner - Version 3.0
    Last update: N/A

    Scan settings:

    Objects: Memory, Traces, Cookies, E:
    Scan archives: On
    Heuristics: Off
    ADS Scan: On

    Scan start: 16/11/2007 23:47:58

    [1648] E:\WINDOWS\system\NOTEPAD.exe detected: Backdoor.Win32.SdBot.bzj
    Value: HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run --> windows logon application detected: Trace.Registry.MultiBotPro
    E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@247realmedia[1].txt detected: Trace.TrackingCookie
    E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@2o7[1].txt detected: Trace.TrackingCookie
    E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@adserver.aol[1].txt detected: Trace.TrackingCookie
    E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@adtech[1].txt detected: Trace.TrackingCookie
    E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@advertising[1].txt detected: Trace.TrackingCookie
    E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@atdmt[2].txt detected: Trace.TrackingCookie
    E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@bluestreak[2].txt detected: Trace.TrackingCookie
    E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@bs.serving-sys[2].txt detected: Trace.TrackingCookie
    E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@commentcamarche[2].txt detected: Trace.TrackingCookie
    E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@doubleclick[1].txt detected: Trace.TrackingCookie
    E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@pacificpoker[2].txt detected: Trace.TrackingCookie
    E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@serving-sys[2].txt detected: Trace.TrackingCookie
    E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@smartadserver[1].txt detected: Trace.TrackingCookie
    E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@stat.onestat[2].txt detected: Trace.TrackingCookie
    E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@statcounter[1].txt detected: Trace.TrackingCookie
    E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@statse.webtrendslive[2].txt detected: Trace.TrackingCookie
    E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@tradedoubler[1].txt detected: Trace.TrackingCookie
    E:\Documents and Settings\CHASTEL PHILIPPE\Cookies\chastel philippe@weborama[2].txt detected: Trace.TrackingCookie
    E:\qoobox\Quarantine\catchme2007-11-16_211443.18.zip/__c0029189.dat detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\acrtkbkf.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\acvwvjqt.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\aqtypbyh.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\ascyydhy.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\bbulyqdd.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\cbbmybop.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\cbhwehyo.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\djpoaoup.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\eojkxplw.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\fgnfstpw.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\firewall.exe.vir detected: Backdoor.Win32.VanBot.do
    E:\qoobox\Quarantine\E\WINDOWS\system32\fjnfdtpe.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\glrmuyhw.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\gqfyoenp.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\hfsdjckk.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\httsvejy.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\jagobfyo.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\jblorwkw.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\jyifgxcg.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\kiufamem.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\kjerjemu.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\kperepgk.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\ldcitxwg.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\leneirbh.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\loojrbik.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\luvkitum.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\mcpagvbh.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\mrkscrig.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\nedbqbdw.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\nuksndvi.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\ogtctkjw.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\pbfsaawn.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\pvigctdu.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\pxnyutsd.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\rbxrtnek.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\sgaadrcw.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\siqrxqqk.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\svlrcqbp.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\ubaoqykg.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\ujjhlnwl.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\vccxgsot.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\yaahpyeh.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\ymkhosjd.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\ynmiqhla.dll.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\__c006CE5D.dat.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\__c007ED69.dat.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\__c0080E32.dat.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\__c0085482.dat.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\__c00B197D.dat.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\__c00C5304.dat.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\qoobox\Quarantine\E\WINDOWS\system32\__c00E5544.dat.vir detected: Trojan-Downloader.Win32.ConHook.hl
    E:\VundoFix Backups\fccbcba.dll.bad detected: Trojan.Win32.Pakes.ds
    E:\WINDOWS\system\NOTEPAD.exe detected: Backdoor.Win32.SdBot.bzj
    E:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\QEBA5Z0Q\nn[1].exe/zm.exe detected: Trojan.Win32.Pakes.eg
    E:\WINDOWS\system32\kl.exe detected: Backdoor.Win32.SdBot.bzj
    E:\WINDOWS\system32\kl.RB0 detected: Backdoor.Win32.SdBot.bzj
    E:\WINDOWS\system32\pyimtkif.exe detected: Backdoor.Win32.Agent.apf
    E:\WINDOWS\system32\scrcons32.exe detected: Backdoor.Win32.EggDrop.v
    E:\WINDOWS\system32\scrcons32.RB0 detected: Backdoor.Win32.EggDrop.v
    E:\WINDOWS\system32\wmfptc32.dll detected: Trojan.Win32.KillAV.ka
    E:\WINDOWS\system32\xmxw.exe detected: Backdoor.Win32.Agent.apf
    E:\WINDOWS\system32\xmxw.RB0 detected: Backdoor.Win32.Agent.apf
    E:\WINDOWS\winvyidu.exe detected: Trojan-Downloader.Win32.Agent.dsx
    E:\WINDOWS\winvyidu.RB0 detected: Trojan-Downloader.Win32.Agent.dsx
    E:\WINDOWS\winvyidu.RB1 detected: Trojan-Downloader.Win32.Agent.dsx

    Scanned

    Files: 44561
    Traces: 149017
    Cookies: 109
    Processes: 18

    Found

    Files: 66
    Traces: 1
    Cookies: 18
    Processes: 1

    Quarantined

    Files: 66
    Traces: 1
    Cookies: 18
    Processes: 1

    Scan end: 17/11/2007 00:11:19
    Scan time: 0:23:21

    avec la creation d'un dossier quarantaine.
    rereremerci
    0
  12. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    Salut

    ok, dans ce cas, fais le en mode normal !

    ++
    0
  13. rajhda
     
    bonjour,

    mon message d'hier ne s'est pas collé. ci dessous le rapport , en plus j'ai relancé les scan et tout mon bureau a disparu, quid???????

    20:01:46 18/11/2007
    http://update.emsisoft.com/...

    ; Searching for a-squared updates on 11/18/2007 8:01:33 PM
    ; -----------------------------------------------------
    ; Response from http://updates2.emsisoft.com: OK

    [General]
    valid=1
    status=1
    expire=4294967296
    servertime=1195416093
    expiredate=1/1/3000 :)
    news=
    newslink=
    news1=Mamutu 1.0 released!
    newslink1=https://blog.emsisoft.com/en/
    news2=Beta-Test Invitation: Mamutu 1.0 BETA
    newslink2=https://blog.emsisoft.com/en/
    news3=A Story About Government Malware - The Federal Trojan
    newslink3=https://blog.emsisoft.com/de/4279/tec070820de/
    news4=a-squared HiJackFree 3.0 released!
    newslink4=https://blog.emsisoft.com/en/
    news5=a-squared Anti-Malware and a-squared Free 3.0 released!
    newslink5=https://blog.emsisoft.com/en/
    base=20070401
    num=299

    [1]
    URL=http://updates2.emsisoft.com/updates/6C7A141F29931155B4F692960257279E.dat
    path=Signatures\20070401.sig
    name=Signature update
    size=6615731
    md5=6C7A141F29931155B4F692960257279E
    desc=327235 Signatures: 212086 Trojans, 39591 Dialers, 66333 Worms and 9224 Spywares

    [2]
    URL=http://updates2.emsisoft.com/updates/20FD0FFB3D9E056518CFF712D971FCFA.dat
    path=Signatures\20070401.trc
    name=Traces signature update
    size=3558
    md5=20FD0FFB3D9E056518CFF712D971FCFA
    desc=394 Spyware Traces

    [3]
    URL=http://updates2.emsisoft.com/updates/D27B205219BE7607F3D5383658837F2F.dat
    path=Signatures\20070402.sig
    name=Signature update
    size=2533493
    md5=D27B205219BE7607F3D5383658837F2F
    desc=126951 Signatures: 113886 Trojans, 1567 Dialers, 3677 Worms and 7821 Spywares

    [4]
    URL=http://updates2.emsisoft.com/updates/E55D3CA94F7E7B01E736BD6F8DB1327A.dat
    path=Signatures\20070402.trc
    name=Traces signature update
    size=817276
    md5=E55D3CA94F7E7B01E736BD6F8DB1327A
    desc=91710 Spyware Traces

    [5]
    URL=http://updates2.emsisoft.com/updates/9FFC1B6CD8D25E4A9D0DF2B340F11C12.dat
    path=Signatures\20070404.sig
    name=Signature update
    size=1487706
    md5=9FFC1B6CD8D25E4A9D0DF2B340F11C12
    desc=74522 Signatures: 62290 Trojans, 1791 Dialers, 2353 Worms and 8088 Spywares

    [6]
    URL=http://updates2.emsisoft.com/updates/71D1CEA8AF23AA8045FF833B3257BC9B.dat
    path=Signatures\20070404.trc
    name=Traces signature update
    size=213318
    md5=71D1CEA8AF23AA8045FF833B3257BC9B
    desc=26536 Spyware Traces

    [7]
    URL=http://updates2.emsisoft.com/updates/EF22245D8AECEFC2A4C5D2225B9E8BEE.dat
    path=Signatures\20070406.sig
    name=Signature update
    size=183085
    md5=EF22245D8AECEFC2A4C5D2225B9E8BEE
    desc=8785 Signatures: 7201 Trojans, 350 Dialers, 299 Worms and 935 Spywares

    [8]
    URL=http://updates2.emsisoft.com/updates/1EC486BA97B252F052C3ECCF0EECA81E.dat
    path=Signatures\20070406.trc
    name=Traces signature update
    size=18231
    md5=1EC486BA97B252F052C3ECCF0EECA81E
    desc=2292 Spyware Traces

    [9]
    URL=http://updates2.emsisoft.com/updates/99BDC61CCB2CF50629AFD33C0F991311.dat
    path=Signatures\20070409.sig
    name=Signature update
    size=31989
    md5=99BDC61CCB2CF50629AFD33C0F991311
    desc=1435 Signatures: 1134 Trojans, 17 Dialers, 150 Worms and 134 Spywares

    [10]
    URL=http://updates2.emsisoft.com/updates/11FEB357EE0F68021819D6B0492053B7.dat
    path=Signatures\20070410.sig
    name=Signature update
    size=16051
    md5=11FEB357EE0F68021819D6B0492053B7
    desc=873 Signatures: 705 Trojans, 0 Dialers, 4 Worms and 164 Spywares

    [11]
    URL=http://updates2.emsisoft.com/updates/E6ABF2FBAA8093ACA1AA7A2B298990A8.dat
    path=Signatures\20070411.sig
    name=Signature update
    size=18108
    md5=E6ABF2FBAA8093ACA1AA7A2B298990A8
    desc=799 Signatures: 629 Trojans, 10 Dialers, 63 Worms and 97 Spywares

    [12]
    URL=http://updates2.emsisoft.com/updates/4B5E25552A3114CF5A7AE56A61871060.dat
    path=Signatures\20070412.sig
    name=Signature update
    size=80816
    md5=4B5E25552A3114CF5A7AE56A61871060
    desc=3664 Signatures: 3070 Trojans, 337 Dialers, 26 Worms and 231 Spywares

    [13]
    URL=http://updates2.emsisoft.com/updates/BCABF47A91183A71F28449F22D7AC2C7.dat
    path=Signatures\20070413.sig
    name=Signature update
    size=23616
    md5=BCABF47A91183A71F28449F22D7AC2C7
    desc=1059 Signatures: 885 Trojans, 11 Dialers, 78 Worms and 85 Spywares

    [14]
    URL=http://updates2.emsisoft.com/updates/545E014C7F2DB9DB97E502ACE6E1C3AD.dat
    path=Signatures\20070415.sig
    name=Signature update
    size=83
    md5=545E014C7F2DB9DB97E502ACE6E1C3AD
    desc=2 Signatures: 2 Trojans, 0 Dialers, 0 Worms and 0 Spywares

    [15]
    URL=http://updates2.emsisoft.com/updates/D7664F3ECA9EDDB9ADC225EBA25BD6DB.dat
    path=Signatures\20070415.trc
    name=Traces signature update
    size=102
    md5=D7664F3ECA9EDDB9ADC225EBA25BD6DB
    desc=1 Spyware Traces

    [16]
    URL=http://updates2.emsisoft.com/updates/DDF352881FC1AF5A65B7473777FF8825.dat
    path=Signatures\20070416.sig
    name=Signature update
    size=40317
    md5=DDF352881FC1AF5A65B7473777FF8825
    desc=2013 Signatures: 1607 Trojans, 10 Dialers, 87 Worms and 309 Spywares

    [17]
    URL=http://updates2.emsisoft.com/updates/DB7034610FC4629D2D3AAB3B79B346D6.dat
    path=Signatures\20070416.trc
    name=Traces signature update
    size=5516
    md5=DB7034610FC4629D2D3AAB3B79B346D6
    desc=536 Spyware Traces

    [18]
    URL=http://updates2.emsisoft.com/updates/B8E2D70528D1969EFC61C3E6DCCEFDF0.dat
    path=Signatures\20070417.trc
    name=Traces signature update
    size=38872
    md5=B8E2D70528D1969EFC61C3E6DCCEFDF0
    desc=4703 Spyware Traces

    [19]
    URL=http://updates2.emsisoft.com/updates/2DBC7A860F7FCC720E0B9A2495505B81.dat
    path=Signatures\20070418.sig
    name=Signature update
    size=23281
    md5=2DBC7A860F7FCC720E0B9A2495505B81
    desc=1039 Signatures: 856 Trojans, 3 Dialers, 83 Worms and 97 Spywares

    [20]
    URL=http://updates2.emsisoft.com/updates/60F0000D685723F1B7D905D08EC89447.dat
    path=Signatures\20070418.trc
    name=Traces signature update
    size=2413
    md5=60F0000D685723F1B7D905D08EC89447
    desc=225 Spyware Traces

    [21]
    URL=http://updates2.emsisoft.com/updates/AEE117619E9B42BBEFB3663C14C5C87C.dat
    path=Signatures\20070419.sig
    name=Signature update
    size=27617
    md5=AEE117619E9B42BBEFB3663C14C5C87C
    desc=1182 Signatures: 1013 Trojans, 109 Dialers, 3 Worms and 57 Spywares

    [22]
    URL=http://updates2.emsisoft.com/updates/38ADAAFAD486B29B01EFE7129985B39B.dat
    path=Signatures\20070420.sig
    name=Signature update
    size=20577
    md5=38ADAAFAD486B29B01EFE7129985B39B
    desc=931 Signatures: 747 Trojans, 24 Dialers, 69 Worms and 91 Spywares

    [23]
    URL=http://updates2.emsisoft.com/updates/B7852BA3001BA0B7005FD2C79BE7E0DC.dat
    path=Signatures\20070420.trc
    name=Traces signature update
    size=2490
    md5=B7852BA3001BA0B7005FD2C79BE7E0DC
    desc=216 Spyware Traces

    [24]
    URL=http://updates2.emsisoft.com/updates/A3ED5BE44FFB4192A026344C936D2975.dat
    path=Signatures\20070421.trc
    name=Traces signature update
    size=4920
    md5=A3ED5BE44FFB4192A026344C936D2975
    desc=496 Spyware Traces

    [25]
    URL=http://updates2.emsisoft.com/updates/917B37A7D8387E1B957799998C7E7D19.dat
    path=Signatures\20070422.trc
    name=Traces signature update
    size=2169
    md5=917B37A7D8387E1B957799998C7E7D19
    desc=223 Spyware Traces

    [26]
    URL=http://updates2.emsisoft.com/updates/BB8A1B3760E0EE1A51ABC59E1B3FE27C.dat
    path=Signatures\20070423.sig
    name=Signature update
    size=31621
    md5=BB8A1B3760E0EE1A51ABC59E1B3FE27C
    desc=1427 Signatures: 1107 Trojans, 33 Dialers, 144 Worms and 143 Spywares

    [27]
    URL=http://updates2.emsisoft.com/updates/57DAD89AD3D685CF9F903545480FBBDC.dat
    path=Signatures\20070423.trc
    name=Traces signature update
    size=3258
    md5=57DAD89AD3D685CF9F903545480FBBDC
    desc=434 Spyware Traces

    [28]
    URL=http://updates2.emsisoft.com/updates/95F13F65ADB4C39DCCA8D9EDF3C9C8F9.dat
    path=Signatures\20070424.sig
    name=Signature update
    size=12638
    md5=95F13F65ADB4C39DCCA8D9EDF3C9C8F9
    desc=679 Signatures: 544 Trojans, 0 Dialers, 12 Worms and 123 Spywares

    [29]
    URL=http://updates2.emsisoft.com/updates/20AD682C381C9FB6FBC3B66805826723.dat
    path=Signatures\20070425.sig
    name=Signature update
    size=20427
    md5=20AD682C381C9FB6FBC3B66805826723
    desc=959 Signatures: 759 Trojans, 32 Dialers, 65 Worms and 103 Spywares

    [30]
    URL=http://updates2.emsisoft.com/updates/F7E2DA086F52F01DDB093EA747F6264B.dat
    path=Signatures\20070425.trc
    name=Traces signature update
    size=1570
    md5=F7E2DA086F52F01DDB093EA747F6264B
    desc=168 Spyware Traces

    [31]
    URL=http://updates2.emsisoft.com/updates/CC42C954190312F1A132ED3535D7688F.dat
    path=Signatures\20070426.sig
    name=Signature update
    size=35531
    md5=CC42C954190312F1A132ED3535D7688F
    desc=1539 Signatures: 1280 Trojans, 158 Dialers, 7 Worms and 94 Spywares

    [32]
    URL=http://updates2.emsisoft.com/updates/4349A15078F156A8EF7C78AFEE383824.dat
    path=Signatures\20070426.trc
    name=Traces signature update
    size=1243
    md5=4349A15078F156A8EF7C78AFEE383824
    desc=136 Spyware Traces

    [33]
    URL=http://updates2.emsisoft.com/updates/EBC896F68D68775E5FA2CBCCFA04E2A9.dat
    path=Signatures\20070427.sig
    name=Signature update
    size=20451
    md5=EBC896F68D68775E5FA2CBCCFA04E2A9
    desc=918 Signatures: 758 Trojans, 25 Dialers, 75 Worms and 60 Spywares

    [34]
    URL=http://updates2.emsisoft.com/updates/9DA1DEFBF08AF090DEA161EFCE3542D6.dat
    path=Signatures\20070427.trc
    name=Traces signature update
    size=1906
    md5=9DA1DEFBF08AF090DEA161EFCE3542D6
    desc=205 Spyware Traces

    [35]
    URL=http://updates2.emsisoft.com/updates/F00D40CDE34778BC1AAD9AAD8C1D79AE.dat
    path=Signatures\20070430.sig
    name=Signature update
    size=28268
    md5=F00D40CDE34778BC1AAD9AAD8C1D79AE
    desc=1238 Signatures: 1014 Trojans, 30 Dialers, 67 Worms and 127 Spywares

    [36]
    URL=http://updates2.emsisoft.com/updates/B6B68A7BBD63F6EE98C4046E73EBD989.dat
    path=Signatures\20070430.trc
    name=Traces signature update
    size=2495
    md5=B6B68A7BBD63F6EE98C4046E73EBD989
    desc=230 Spyware Traces

    [37]
    URL=http://updates2.emsisoft.com/updates/2AEF88A6D7B5722562FF744294C67F3B.dat
    path=Signatures\20070501.sig
    name=Signature update
    size=17751
    md5=2AEF88A6D7B5722562FF744294C67F3B
    desc=989 Signatures: 794 Trojans, 0 Dialers, 7 Worms and 188 Spywares

    [38]
    URL=http://updates2.emsisoft.com/updates/A27249CE211B16C48A0DA545684A4A25.dat
    path=Signatures\20070501.trc
    name=Traces signature update
    size=1187
    md5=A27249CE211B16C48A0DA545684A4A25
    desc=87 Spyware Traces

    [39]
    URL=http://updates2.emsisoft.com/updates/5347CD568E8B356441F6B9AB069C88FE.dat
    path=Signatures\20070502.sig
    name=Signature update
    size=29825
    md5=5347CD568E8B356441F6B9AB069C88FE
    desc=1334 Signatures: 1122 Trojans, 40 Dialers, 62 Worms and 110 Spywares

    [40]
    URL=http://updates2.emsisoft.com/updates/BA2160E900749410B42CD70B36226C9B.dat
    path=Signatures\20070503.sig
    name=Signature update
    size=32079
    md5=BA2160E900749410B42CD70B36226C9B
    desc=1398 Signatures: 1139 Trojans, 146 Dialers, 4 Worms and 109 Spywares

    [41]
    URL=http://updates2.emsisoft.com/updates/ACC133327E03E0CE2A6B564CE4E02287.dat
    path=Signatures\20070503.trc
    name=Traces signature update
    size=4712
    md5=ACC133327E03E0CE2A6B564CE4E02287
    desc=589 Spyware Traces

    [42]
    URL=http://updates2.emsisoft.com/updates/33DE1FC7F6AED8605B97D95731619A41.dat
    path=Signatures\20070504.sig
    name=Signature update
    size=33550
    md5=33DE1FC7F6AED8605B97D95731619A41
    desc=1480 Signatures: 1277 Trojans, 37 Dialers, 56 Worms and 110 Spywares

    [43]
    URL=http://updates2.emsisoft.com/updates/BBDB926141089D7A130DEA258B78B3EB.dat
    path=Signatures\20070504.trc
    name=Traces signature update
    size=2133
    md5=BBDB926141089D7A130DEA258B78B3EB
    desc=254 Spyware Traces

    [44]
    URL=http://updates2.emsisoft.com/updates/FE491F5F58385B5887153BB97E0CC6F0.dat
    path=Signatures\20070507.sig
    name=Signature update
    size=31998
    md5=FE491F5F58385B5887153BB97E0CC6F0
    desc=1393 Signatures: 1136 Trojans, 9 Dialers, 105 Worms and 143 Spywares

    [45]
    URL=http://updates2.emsisoft.com/updates/8152F708F8F1853406044F70780F6299.dat
    path=Signatures\20070507.trc
    name=Traces signature update
    size=2837
    md5=8152F708F8F1853406044F70780F6299
    desc=350 Spyware Traces

    [46]
    URL=http://updates2.emsisoft.com/updates/68AE72230DE87B1EB7F40C84AB899DB0.dat
    path=Signatures\20070508.sig
    name=Signature update
    size=29866
    md5=68AE72230DE87B1EB7F40C84AB899DB0
    desc=1425 Signatures: 1158 Trojans, 7 Dialers, 62 Worms and 198 Spywares

    [47]
    URL=http://updates2.emsisoft.com/updates/940E9F6EB5EEC227A9A12AC3A99EB50E.dat
    path=Signatures\20070508.trc
    name=Traces signature update
    size=1755
    md5=940E9F6EB5EEC227A9A12AC3A99EB50E
    desc=200 Spyware Traces

    [48]
    URL=http://updates2.emsisoft.com/updates/93387CBA3D6E50008B42A17575C7180D.dat
    path=Signatures\20070509.sig
    name=Signature update
    size=33649
    md5=93387CBA3D6E50008B42A17575C7180D
    desc=1471 Signatures: 1234 Trojans, 18 Dialers, 92 Worms and 127 Spywares

    [49]
    URL=http://updates2.emsisoft.com/updates/189D9A59FB2944603BD5C4D65608E97C.dat
    path=Signatures\20070509.trc
    name=Traces signature update
    size=1164
    md5=189D9A59FB2944603BD5C4D65608E97C
    desc=100 Spyware Traces

    [50]
    URL=http://updates2.emsisoft.com/updates/C94DECA70B5FE64E5A6EF8977D29B8E1.dat
    path=Signatures\20070510.sig
    name=Signature update
    size=34036
    md5=C94DECA70B5FE64E5A6EF8977D29B8E1
    desc=1547 Signatures: 1321 Trojans, 60 Dialers, 27 Worms and 139 Spywares

    [51]
    URL=http://updates2.emsisoft.com/updates/3A9C2C677F42E97C894887F6434954E3.dat
    path=Signatures\20070510.trc
    name=Traces signature update
    size=802
    md5=3A9C2C677F42E97C894887F6434954E3
    desc=59 Spyware Traces

    [52]
    URL=http://updates2.emsisoft.com/updates/D625D329479660035AD13BA0355583B1.dat
    path=Signatures\20070511.sig
    name=Signature update
    size=34607
    md5=D625D329479660035AD13BA0355583B1
    desc=1568 Signatures: 1315 Trojans, 21 Dialers, 99 Worms and 133 Spywares

    [53]
    URL=http://updates2.emsisoft.com/updates/EE656A6D246A860F44D56F57BA667D41.dat
    path=Signatures\20070511.trc
    name=Traces signature update
    size=3238
    md5=EE656A6D246A860F44D56F57BA667D41
    desc=432 Spyware Traces

    [54]
    URL=http://updates2.emsisoft.com/updates/8202E42F8F811C0F25466A47293C4619.dat
    path=Signatures\20070512.sig
    name=Signature update
    size=28529
    md5=8202E42F8F811C0F25466A47293C4619
    desc=1301 Signatures: 961 Trojans, 12 Dialers, 128 Worms and 200 Spywares

    [55]
    URL=http://updates2.emsisoft.com/updates/3252AC28BC572C97E3EF07A099CFF2DB.dat
    path=Signatures\20070514.trc
    name=Traces signature update
    size=6072
    md5=3252AC28BC572C97E3EF07A099CFF2DB
    desc=682 Spyware Traces

    [56]
    URL=http://updates2.emsisoft.com/updates/C89F8594105F5D5A4C861BB4BFD191F3.dat
    path=Signatures\20070515.sig
    name=Signature update
    size=58511
    md5=C89F8594105F5D5A4C861BB4BFD191F3
    desc=2726 Signatures: 2275 Trojans, 28 Dialers, 120 Worms and 303 Spywares

    [57]
    URL=http://updates2.emsisoft.com/updates/5E1F5B8831647DB3E7D9E70012618F55.dat
    path=Signatures\20070517.sig
    name=Signature update
    size=71272
    md5=5E1F5B8831647DB3E7D9E70012618F55
    desc=3204 Signatures: 2592 Trojans, 215 Dialers, 131 Worms and 266 Spywares

    [58]
    URL=http://updates2.emsisoft.com/updates/CEEA980D5D86811580EFDE60DF77F894.dat
    path=Signatures\20070517.trc
    name=Traces signature update
    size=2067
    md5=CEEA980D5D86811580EFDE60DF77F894
    desc=196 Spyware Traces

    [59]
    URL=http://updates2.emsisoft.com/updates/823C40C88240BBC873FB04A6DBF6FA75.dat
    path=Signatures\20070518.sig
    name=Signature update
    size=29025
    md5=823C40C88240BBC873FB04A6DBF6FA75
    desc=1273 Signatures: 1102 Trojans, 7 Dialers, 85 Worms and 79 Spywares

    [60]
    URL=http://updates2.emsisoft.com/updates/521B99C4BD740B9E608294BAC969EF66.dat
    path=Signatures\20070518.trc
    name=Traces signature update
    size=2634
    md5=521B99C4BD740B9E608294BAC969EF66
    desc=258 Spyware Traces

    [61]
    URL=http://updates2.emsisoft.com/updates/0BEFF00B23C6C10769EE36DB444AFCEE.dat
    path=Signatures\20070521.sig
    name=Signature update
    size=32864
    md5=0BEFF00B23C6C10769EE36DB444AFCEE
    desc=1470 Signatures: 1070 Trojans, 8 Dialers, 317 Worms and 75 Spywares

    [62]
    URL=http://updates2.emsisoft.com/updates/E9A6E9DB7DAF55602463CEF9B84C4656.dat
    path=Signatures\20070521.trc
    name=Traces signature update
    size=3102
    md5=E9A6E9DB7DAF55602463CEF9B84C4656
    desc=332 Spyware Traces

    [63]
    URL=http://updates2.emsisoft.com/updates/70A98928195F99E657AE8674226E8B14.dat
    path=Signatures\20070522.sig
    name=Signature update
    size=14671
    md5=70A98928195F99E657AE8674226E8B14
    desc=828 Signatures: 666 Trojans, 0 Dialers, 6 Worms and 156 Spywares

    [64]
    URL=http://updates2.emsisoft.com/updates/E9C9AE0C11E1BC4141FEBD9BFFABA48C.dat
    path=Signatures\20070522.trc
    name=Traces signature update
    size=1502
    md5=E9C9AE0C11E1BC4141FEBD9BFFABA48C
    desc=153 Spyware Traces

    [65]
    URL=http://updates2.emsisoft.com/updates/267050C8AD254EE652C27CAB1031C10B.dat
    path=Signatures\20070523.sig
    name=Signature update
    size=23046
    md5=267050C8AD254EE652C27CAB1031C10B
    desc=1047 Signatures: 907 Trojans, 4 Dialers, 99 Worms and 37 Spywares

    [66]
    URL=http://updates2.emsisoft.com/updates/3854E338BE77B38F4E3E8F0F1708AA67.dat
    path=Signatures\20070523.trc
    name=Traces signature update
    size=2946
    md5=3854E338BE77B38F4E3E8F0F1708AA67
    desc=334 Spyware Traces

    [67]
    URL=http://updates2.emsisoft.com/updates/26CABE602FB5AA4EC564ADFF5C23F5FF.dat
    path=Signatures\20070524.sig
    name=Signature update
    size=50041
    md5=26CABE602FB5AA4EC564ADFF5C23F5FF
    desc=2210 Signatures: 1830 Trojans, 218 Dialers, 18 Worms and 144 Spywares

    [68]
    URL=http://updates2.emsisoft.com/updates/F060F9DB78D2D593A2C78F44D705C929.dat
    path=Signatures\20070524.trc
    name=Traces signature update
    size=5278
    md5=F060F9DB78D2D593A2C78F44D705C929
    desc=685 Spyware Traces

    [69]
    URL=http://updates2.emsisoft.com/updates/029473790EEF9B93489AE2C760222E90.dat
    path=Signatures\20070525.sig
    name=Signature update
    size=23868
    md5=029473790EEF9B93489AE2C760222E90
    desc=1086 Signatures: 921 Trojans, 7 Dialers, 111 Worms and 47 Spywares

    [70]
    URL=http://updates2.emsisoft.com/updates/532AC8022466066F84652B1D70A3CAE2.dat
    path=Signatures\20070527.sig
    name=Signature update
    size=31380
    md5=532AC8022466066F84652B1D70A3CAE2
    desc=1396 Signatures: 1212 Trojans, 5 Dialers, 135 Worms and 44 Spywares

    [71]
    URL=http://updates2.emsisoft.com/updates/A098DD685389E50DFCFEAF0B489B5CCF.dat
    path=Signatures\20070527.trc
    name=Traces signature update
    size=3280
    md5=A098DD685389E50DFCFEAF0B489B5CCF
    desc=340 Spyware Traces

    [72]
    URL=http://updates2.emsisoft.com/updates/99497DD0D43615667B2441E0FAB92528.dat
    path=Signatures\20070528.trc
    name=Traces signature update
    size=1985
    md5=99497DD0D43615667B2441E0FAB92528
    desc=199 Spyware Traces

    [73]
    URL=http://updates2.emsisoft.com/updates/F38A960DBD83E703BD2786291E2776AD.dat
    path=Signatures\20070529.sig
    name=Signature update
    size=24673
    md5=F38A960DBD83E703BD2786291E2776AD
    desc=1175 Signatures: 963 Trojans, 1 Dialers, 57 Worms and 154 Spywares

    [74]
    URL=http://updates2.emsisoft.com/updates/EDFAB33B13C7B91368F09A75375108F4.dat
    path=Signatures\20070530.sig
    name=Signature update
    size=24862
    md5=EDFAB33B13C7B91368F09A75375108F4
    desc=1122 Signatures: 951 Trojans, 2 Dialers, 139 Worms and 30 Spywares

    [75]
    URL=http://updates2.emsisoft.com/updates/DB601BE089135551CE0A2FCFACD6C27A.dat
    path=Signatures\20070530.trc
    name=Traces signature update
    size=1041
    md5=DB601BE089135551CE0A2FCFACD6C27A
    desc=85 Spyware Traces

    [76]
    URL=http://updates2.emsisoft.com/updates/A142B1119D59BC54EE1EB19C7286F633.dat
    path=Signatures\20070531.sig
    name=Signature update
    size=49814
    md5=A142B1119D59BC54EE1EB19C7286F633
    desc=2222 Signatures: 1858 Trojans, 225 Dialers, 16 Worms and 123 Spywares

    [77]
    URL=http://updates2.emsisoft.com/updates/A8D7903C10163FDC3DD09F2E05BE5EA2.dat
    path=Signatures\20070531.trc
    name=Traces signature update
    size=2781
    md5=A8D7903C10163FDC3DD09F2E05BE5EA2
    desc=298 Spyware Traces

    [78]
    URL=http://updates2.emsisoft.com/updates/54FE77C2DEF06F46B4E1B0FF5EB59DB6.dat
    path=Signatures\20070601.sig
    name=Signature update
    size=13847
    md5=54FE77C2DEF06F46B4E1B0FF5EB59DB6
    desc=616 Signatures: 556 Trojans, 1 Dialers, 47 Worms and 12 Spywares

    [79]
    URL=http://updates2.emsisoft.com/updates/B1BA2947E4E1D292B4C405295C5934F0.dat
    path=Signatures\20070601.trc
    name=Traces signature update
    size=2879
    md5=B1BA2947E4E1D292B4C405295C5934F0
    desc=345 Spyware Traces

    [80]
    URL=http://updates2.emsisoft.com/updates/50D5FD5BBEF36F33AD209CB92BB6F2FD.dat
    path=Signatures\20070603.trc
    name=Traces signature update
    size=2180
    md5=50D5FD5BBEF36F33AD209CB92BB6F2FD
    desc=227 Spyware Traces

    [81]
    URL=http://updates2.emsisoft.com/updates/AA989923F608D8034DFDC6DFE7613DF1.dat
    path=Signatures\20070604.sig
    name=Signature update
    size=42371
    md5=AA989923F608D8034DFDC6DFE7613DF1
    desc=1938 Signatures: 1758 Trojans, 8 Dialers, 112 Worms and 60 Spywares

    [82]
    URL=http://updates2.emsisoft.com/updates/8D0FA168CA704BC548A750F0D9A887C6.dat
    path=Signatures\20070605.sig
    name=Signature update
    size=17601
    md5=8D0FA168CA704BC548A750F0D9A887C6
    desc=1035 Signatures: 762 Trojans, 0 Dialers, 20 Worms and 253 Spywares

    [83]
    URL=http://updates2.emsisoft.com/updates/E23F88945AD90C3DBB36E5CD8E38A583.dat
    path=Signatures\20070605.trc
    name=Traces signature update
    size=2774
    md5=E23F88945AD90C3DBB36E5CD8E38A583
    desc=271 Spyware Traces

    [84]
    URL=http://updates2.emsisoft.com/updates/D68188826F838FE5B8C682941FFB027C.dat
    path=Signatures\20070606.sig
    name=Signature update
    size=55740
    md5=D68188826F838FE5B8C682941FFB027C
    desc=2584 Signatures: 2094 Trojans, 12 Dialers, 342 Worms and 136 Spywares

    [85]
    URL=http://updates2.emsisoft.com/updates/1FA33A2F49A2B08E09B5D8F6B37762B0.dat
    path=Signatures\20070607.sig
    name=Signature update
    size=47753
    md5=1FA33A2F49A2B08E09B5D8F6B37762B0
    desc=2095 Signatures: 1769 Trojans, 184 Dialers, 19 Worms and 123 Spywares

    [86]
    URL=http://updates2.emsisoft.com/updates/4BC8149954594B8A5D4C74A19C713E36.dat
    path=Signatures\20070607.trc
    name=Traces signature update
    size=1255
    md5=4BC8149954594B8A5D4C74A19C713E36
    desc=99 Spyware Traces

    [87]
    URL=http://updates2.emsisoft.com/updates/81E2B1FE9FBCF03363810E9E79EBC699.dat
    path=Signatures\20070608.sig
    name=Signature update
    size=25123
    md5=81E2B1FE9FBCF03363810E9E79EBC699
    desc=1133 Signatures: 1001 Trojans, 7 Dialers, 74 Worms and 51 Spywares

    [88]
    URL=http://updates2.emsisoft.com/updates/6AF8ED79D588987662BD610B7FFCC7C5.dat
    path=Signatures\20070611.sig
    name=Signature update
    size=31088
    md5=6AF8ED79D588987662BD610B7FFCC7C5
    desc=1387 Signatures: 1228 Trojans, 5 Dialers, 102 Worms and 52 Spywares

    [89]
    URL=http://updates2.emsisoft.com/updates/0E8B5C4E6908517FD119B8355DC4C944.dat
    path=Signatures\20070611.trc
    name=Traces signature update
    size=5667
    md5=0E8B5C4E6908517FD119B8355DC4C944
    desc=727 Spyware Traces

    [90]
    URL=http://updates2.emsisoft.com/updates/DCFB45D9B77DB154B8D533CA741DF80C.dat
    path=Signatures\20070612.sig
    name=Signature update
    size=12079
    md5=DCFB45D9B77DB154B8D533CA741DF80C
    desc=622 Signatures: 463 Trojans, 0 Dialers, 4 Worms and 155 Spywares

    [91]
    URL=http://updates2.emsisoft.com/updates/5EA30C21698AB910A1697F08AA5194C9.dat
    path=Signatures\20070612.trc
    name=Traces signature update
    size=3707
    md5=5EA30C21698AB910A1697F08AA5194C9
    desc=491 Spyware Traces

    [92]
    URL=http://updates2.emsisoft.com/updates/463020517D941B70E0EF1830A75B37CC.dat
    path=Signatures\20070613.sig
    name=Signature update
    size=33704
    md5=463020517D941B70E0EF1830A75B37CC
    desc=1530 Signatures: 1224 Trojans, 14 Dialers, 141 Worms and 151 Spywares

    [93]
    URL=http://updates2.emsisoft.com/updates/0A92A8E229B98BA2B5D27D3B04DE7A59.dat
    path=Signatures\20070613.trc
    name=Traces signature update
    size=2908
    md5=0A92A8E229B98BA2B5D27D3B04DE7A59
    desc=516 Spyware Traces

    [94]
    URL=http://updates2.emsisoft.com/updates/5795A3CB1B07ED35C74ACFE6C4E84BA0.dat
    path=Signatures\20070614.sig
    name=Signature update
    size=51275
    md5=5795A3CB1B07ED35C74ACFE6C4E84BA0
    desc=2284 Signatures: 1914 Trojans, 210 Dialers, 19 Worms and 141 Spywares

    [95]
    URL=http://updates2.emsisoft.com/updates/6175EF3CAE33532881C1ADC5FD7197F1.dat
    path=Signatures\20070614.trc
    name=Traces signature update
    size=1968
    md5=6175EF3CAE33532881C1ADC5FD7197F1
    desc=200 Spyware Traces

    [96]
    URL=http://updates2.emsisoft.com/updates/69EBD4951CBC4A305D62BDBAD6FF5E56.dat
    path=Signatures\20070615.sig
    name=Signature update
    size=23556
    md5=69EBD4951CBC4A305D62BDBAD6FF5E56
    desc=1056 Signatures: 938 Trojans, 5 Dialers, 74 Worms and 39 Spywares

    [97]
    URL=http://updates2.emsisoft.com/updates/43BAF740FC1A19AC4E187AB6F6EC9DF0.dat
    path=Signatures\20070615.trc
    name=Traces signature update
    size=1044
    md5=43BAF740FC1A19AC4E187AB6F6EC9DF0
    desc=96 Spyware Traces

    [98]
    URL=http://updates2.emsisoft.com/updates/547EBA9639D115EDE45E99AB0BD8102B.dat
    path=Signatures\20070618.sig
    name=Signature update
    size=31578
    md5=547EBA9639D115EDE45E99AB0BD8102B
    desc=1391 Signatures: 1223 Trojans, 5 Dialers, 115 Worms and 48 Spywares

    [99]
    URL=http://updates2.emsisoft.com/updates/02B94BC54E3E157EA0C0DAE8FF07D2E2.dat
    path=Signatures\20070618.trc
    name=Traces signature update
    size=4508
    md5=02B94BC54E3E157EA0C0DAE8FF07D2E2
    desc=609 Spyware Traces

    [100]
    URL=http://updates2.emsisoft.com/updates/1B4A9AA72B7397CA898C6886895CA825.dat
    path=Signatures\20070619.sig
    name=Signature update
    size=11173
    md5=1B4A9AA72B7397CA898C6886895CA825
    desc=594 Signatures: 434 Trojans, 0 Dialers, 2 Worms and 158 Spywares

    [101]
    URL=http://updates2.emsisoft.com/updates/BE974C209EA6EE6EA79DBDFB95681080.dat
    path=Signatures\20070619.trc
    name=Traces signature update
    size=1109
    md5=BE974C209EA6EE6EA79DBDFB95681080
    desc=109 Spyware Traces

    [102]
    URL=http://updates2.emsisoft.com/updates/3DA024785935AAC0E4610F711B97C207.dat
    path=cabinet.dll
    name=Engine Component
    size=65536
    md5=3DA024785935AAC0E4610F711B97C207
    desc=Unpacking component for CAB files 1.0.601.0

    [103]
    URL=http://updates2.emsisoft.com/updates/A5FE51B8CE661A935A165803C65A4BF1.dat
    path=unrar.dll
    name=Engine Component
    size=160768
    md5=A5FE51B8CE661A935A165803C65A4BF1
    desc=Unpacking component for RAR files 3.50.0.214

    [104]
    URL=http://updates2.emsisoft.com/updates/139AB0F80461AD036FB0AFC39DD59A81.dat
    path=Signatures\20070620.sig
    name=Signature update
    size=34460
    md5=139AB0F80461AD036FB0AFC39DD59A81
    desc=1565 Signatures: 1263 Trojans, 9 Dialers, 163 Worms and 130 Spywares

    [105]
    URL=http://updates2.emsisoft.com/updates/78EE9DBEEE97C36AC151703B6343B6E5.dat
    path=Signatures\20070620.trc
    name=Traces signature update
    size=1716
    md5=78EE9DBEEE97C36AC151703B6343B6E5
    desc=219 Spyware Traces

    [106]
    URL=http://updates2.emsisoft.com/updates/1EB57AC49DDF290BFF9F527B3DE40262.dat
    path=Signatures\20070621.sig
    name=Signature update
    size=45987
    md5=1EB57AC49DDF290BFF9F527B3DE40262
    desc=2059 Signatures: 1656 Trojans, 234 Dialers, 19 Worms and 150 Spywares

    [107]
    URL=http://updates2.emsisoft.com/updates/4E40D3F892882AB4B9A19CEB1D0A5545.dat
    path=Signatures\20070621.trc
    name=Traces signature update
    size=1222
    md5=4E40D3F892882AB4B9A19CEB1D0A5545
    desc=122 Spyware Traces

    [108]
    URL=http://updates2.emsisoft.com/updates/84072B5D5A21C8AE9C8D76556B54D5E3.dat
    path=Signatures\20070622.sig
    name=Signature update
    size=24235
    md5=84072B5D5A21C8AE9C8D76556B54D5E3
    desc=1092 Signatures: 980 Trojans, 5 Dialers, 71 Worms and 36 Spywares

    [109]
    URL=http://updates2.emsisoft.com/updates/40C43E662AAF30344E31FC9D2356DBBB.dat
    path=Signatures\20070622.trc
    name=Traces signature update
    size=1349
    md5=40C43E662AAF30344E31FC9D2356DBBB
    desc=139 Spyware Traces

    [110]
    URL=http://updates2.emsisoft.com/updates/7D0B55EAC07C30C916323F2983E72ACB.dat
    path=Signatures\20070625.sig
    name=Signature update
    size=22736
    md5=7D0B55EAC07C30C916323F2983E72ACB
    desc=1004 Signatures: 915 Trojans, 7 Dialers, 50 Worms and 32 Spywares

    [111]
    URL=http://updates2.emsisoft.com/updates/AD59569D06803429AA25BD297871F9C4.dat
    path=Signatures\20070625.trc
    name=Traces signature update
    size=2782
    md5=AD59569D06803429AA25BD297871F9C4
    desc=319 Spyware Traces

    [112]
    URL=http://updates2.emsisoft.com/updates/EAF251470CF2A41571867A51CB5BDC57.dat
    path=Signatures\20070626.sig
    name=Signature update
    size=12236
    md5=EAF251470CF2A41571867A51CB5BDC57
    desc=639 Signatures: 445 Trojans, 0 Dialers, 3 Worms and 191 Spywares

    [113]
    URL=http://updates2.emsisoft.com/updates/D1D642E92356AE4C89FC07F16A711BEC.dat
    path=Signatures\20070626.trc
    name=Traces signature update
    size=1914
    md5=D1D642E92356AE4C89FC07F16A711BEC
    desc=179 Spyware Traces

    [114]
    URL=http://updates2.emsisoft.com/updates/57ED369858193701C4EFE71E30751FF9.dat
    path=Signatures\20070627.sig
    name=Signature update
    size=26297
    md5=57ED369858193701C4EFE71E30751FF9
    desc=1192 Signatures: 1092 Trojans, 0 Dialers, 69 Worms and 31 Spywares

    [115]
    URL=http://updates2.emsisoft.com/updates/AAD634A65A50834F5B61E8FE4A089F96.dat
    path=Signatures\20070627.trc
    name=Traces signature update
    size=2518
    md5=AAD634A65A50834F5B61E8FE4A089F96
    desc=273 Spyware Traces

    [116]
    URL=http://updates2.emsisoft.com/updates/BC1DC26EC3D73B4AA1DF7A282D50DA8B.dat
    path=Signatures\20070628.sig
    name=Signature update
    size=63884
    md5=BC1DC26EC3D73B4AA1DF7A282D50DA8B
    desc=2844 Signatures: 2318 Trojans, 265 Dialers, 53 Worms and 208 Spywares

    [117]
    URL=http://updates2.emsisoft.com/updates/A6CC169083320441F6F3ACB67CAE05BE.dat
    path=Signatures\20070628.trc
    name=Traces signature update
    size=2438
    md5=A6CC169083320441F6F3ACB67CAE05BE
    desc=252 Spyware Traces

    [118]
    URL=http://updates2.emsisoft.com/updates/EC316462A821B8A000D94292F973E786.dat
    path=Signatures\20070629.sig
    name=Signature update
    size=24939
    md5=EC316462A821B8A000D94292F973E786
    desc=1132 Signatures: 1039 Trojans, 5 Dialers, 65 Worms and 23 Spywares

    [119]
    URL=http://updates2.emsisoft.com/updates/48E2B8C4F4380784E0E367E18AB59824.dat
    path=Signatures\20070702.sig
    name=Signature update
    size=37690
    md5=48E2B8C4F4380784E0E367E18AB59824
    desc=1693 Signatures: 1532 Trojans, 7 Dialers, 90 Worms and 64 Spywares

    [120]
    URL=http://updates2.emsisoft.com/updates/FDC4455380D30C355B537BFDEC6E75ED.dat
    path=Signatures\20070702.trc
    name=Traces signature update
    size=4146
    md5=FDC4455380D30C355B537BFDEC6E75ED
    desc=391 Spyware Traces

    [121]
    URL=http://updates2.emsisoft.com/updates/5D71B7EECBA6B584189B9F9A35F6999E.dat
    path=Signatures\20070703.sig
    name=Signature update
    size=17219
    md5=5D71B7EECBA6B584189B9F9A35F6999E
    desc=857 Signatures: 688 Trojans, 0 Dialers, 9 Worms and 160 Spywares

    [122]
    URL=http://updates2.emsisoft.com/updates/1076945FB76EBA2E02EAEE04CB44C5AE.dat
    path=Signatures\20070703.trc
    name=Traces signature update
    size=4894
    md5=1076945FB76EBA2E02EAEE04CB44C5AE
    desc=557 Spyware Traces

    [123]
    URL=http://updates2.emsisoft.com/updates/8C30CFA4AADFFE4F8F74B849EFA49507.dat
    path=Signatures\20070704.sig
    name=Signature update
    size=27356
    md5=8C30CFA4AADFFE4F8F74B849EFA49507
    desc=1229 Signatures: 1128 Trojans, 4 Dialers, 71 Worms and 26 Spywares

    [124]
    URL=http://updates2.emsisoft.com/updates/D850B099A0CD0BCEDF1F93A1AA620E56.dat
    path=Signatures\20070704.trc
    name=Traces signature update
    size=3378
    md5=D850B099A0CD0BCEDF1F93A1AA620E56
    desc=397 Spyware Traces

    [125]
    URL=http://updates2.emsisoft.com/updates/205D3ECA36472C0821C60E53EDF85DEB.dat
    path=Signatures\20070705.sig
    name=Signature update
    size=55913
    md5=205D3ECA36472C0821C60E53EDF85DEB
    desc=2472 Signatures: 2021 Trojans, 230 Dialers, 36 Worms and 185 Spywares

    [126]
    URL=http://updates2.emsisoft.com/updates/482254D14E17F6984E1B6CABE5421C1A.dat
    path=Signatures\20070705.trc
    name=Traces signature update
    size=3996
    md5=482254D14E17F6984E1B6CABE5421C1A
    desc=496 Spyware Traces

    [127]
    URL=http://updates2.emsisoft.com/updates/98A2D1634257054276844CE0396CF267.dat
    path=Signatures\20070706.sig
    name=Signature update
    size=24446
    md5=98A2D1634257054276844CE0396CF267
    desc=1104 Signatures: 1017 Trojans, 2 Dialers, 59 Worms and 26 Spywares

    [128]
    URL=http://updates2.emsisoft.com/updates/629F6E89CA046A3939D718E08792B517.dat
    path=Signatures\20070706.trc
    name=Traces signature update
    size=1424
    md5=629F6E89CA046A3939D718E08792B517
    desc=158 Spyware Traces

    [129]
    URL=http://updates2.emsisoft.com/updates/4F4D713627B5A3CC94DC81F232DE9D9B.dat
    path=Signatures\20070709.sig
    name=Signature update
    size=29937
    md5=4F4D713627B5A3CC94DC81F232DE9D9B
    desc=1333 Signatures: 1163 Trojans, 4 Dialers, 114 Worms and 52 Spywares

    [130]
    URL=http://updates2.emsisoft.com/updates/22D53EF7F4974E5608EC0D0D8869B793.dat
    path=Signatures\20070709.trc
    name=Traces signature update
    size=7238
    md5=22D53EF7F4974E5608EC0D0D8869B793
    desc=912 Spyware Traces

    [131]
    URL=http://updates2.emsisoft.com/updates/E26D207568EF7776B93698F17D0AEAC3.dat
    path=Signatures\20070710.sig
    name=Signature update
    size=18240
    md5=E26D207568EF7776B93698F17D0AEAC3
    desc=900 Signatures: 736 Trojans, 0 Dialers, 8 Worms and 156 Spywares

    [132]
    URL=http://updates2.emsisoft.com/updates/DC0F9D3CA15F2E12DFF1969A1EC4E7ED.dat
    path=Signatures\20070711.sig
    name=Signature update
    size=23520
    md5=DC0F9D3CA15F2E12DFF1969A1EC4E7ED
    desc=1053 Signatures: 951 Trojans, 2 Dialers, 64 Worms and 36 Spywares

    [133]
    URL=http://updates2.emsisoft.com/updates/B268477A81C2A8CC042C61D761C7F5EF.dat
    path=Signatures\20070711.trc
    name=Traces signature update
    size=3470
    md5=B268477A81C2A8CC042C61D761C7F5EF
    desc=493 Spyware Traces

    [134]
    URL=http://updates2.emsisoft.com/updates/02BDFABF585D1F835F471F2FDC5E7CE5.dat
    path=Signatures\20070712.sig
    name=Signature update
    size=52138
    md5=02BDFABF585D1F835F471F2FDC5E7CE5
    desc=2300 Signatures: 1919 Trojans, 210 Dialers, 19 Worms and 152 Spywares

    [135]
    URL=http://updates2.emsisoft.com/updates/7DB645141A525A9A8C8C729E4D4EB622.dat
    path=Signatures\20070712.trc
    name=Traces signature update
    size=1424
    md5=7DB645141A525A9A8C8C729E4D4EB622
    desc=138 Spyware Traces

    [136]
    URL=http://updates2.emsisoft.com/updates/436F7D60C7534D20023028FF82FF37BB.dat
    path=Signatures\20070713.sig
    name=Signature update
    size=18427
    md5=436F7D60C7534D20023028FF82FF37BB
    desc=827 Signatures: 750 Trojans, 5 Dialers, 52 Worms and 20 Spywares

    [137]
    URL=http://updates2.emsisoft.com/updates/F7113490064FD0AE1FFCAAADB57BDA81.dat
    path=Signatures\20070713.trc
    name=Traces signature update
    size=1228
    md5=F7113490064FD0AE1FFCAAADB57BDA81
    desc=118 Spyware Traces

    [138]
    URL=http://updates2.emsisoft.com/updates/685FD5F0C82350B10408A855B14E0073.dat
    path=Signatures\20070716.sig
    name=Signature update
    size=28450
    md5=685FD5F0C82350B10408A855B14E0073
    desc=1281 Signatures: 1116 Trojans, 8 Dialers, 105 Worms and 52 Spywares

    [139]
    URL=http://updates2.emsisoft.com/updates/AA8ED993517AFCE7E86477A1801C0724.dat
    path=Signatures\20070716.trc
    name=Traces signature update
    size=3574
    md5=AA8ED993517AFCE7E86477A1801C0724
    desc=386 Spyware Traces

    [140]
    URL=http://updates2.emsisoft.com/updates/F9398225C6515245A59A169F8DB9F0D5.dat
    path=Signatures\20070717.sig
    name=Signature update
    size=17198
    md5=F9398225C6515245A59A169F8DB9F0D5
    desc=861 Signatures: 710 Trojans, 0 Dialers, 13 Worms and 138 Spywares

    [141]
    URL=http://updates2.emsisoft.com/updates/E08BD59822A66E47B0BC4F3F525F2351.dat
    path=Signatures\20070717.trc
    name=Traces signature update
    size=2095
    md5=E08BD59822A66E47B0BC4F3F525F2351
    desc=212 Spyware Traces

    [142]
    URL=http://updates2.emsisoft.com/updates/95F75AFD87B4ACDDB2DC3AB96B053A40.dat
    path=Signatures\20070718.sig
    name=Signature update
    size=21200
    md5=95F75AFD87B4ACDDB2DC3AB96B053A40
    desc=960 Signatures: 848 Trojans, 5 Dialers, 88 Worms and 19 Spywares

    [143]
    URL=http://updates2.emsisoft.com/updates/5E2B09F3DC8A64C4A6586FD084383FB2.dat
    path=Signatures\20070718.trc
    name=Traces signature update
    size=5058
    md5=5E2B09F3DC8A64C4A6586FD084383FB2
    desc=629 Spyware Traces

    [144]
    URL=http://updates2.emsisoft.com/updates/71B5C6FB889C061742991BD84747676B.dat
    path=Signatures\20070719.sig
    name=Signature update
    size=52531
    md5=71B5C6FB889C061742991BD84747676B
    desc=2341 Signatures: 1907 Trojans, 250 Dialers, 24 Worms and 160 Spywares

    [145]
    URL=http://updates2.emsisoft.com/updates/BBA75C254C7E0B34F0415055F17F8066.dat
    path=Signatures\20070720.sig
    name=Signature update
    size=21293
    md5=BBA75C254C7E0B34F0415055F17F8066
    desc=965 Signatures: 845 Trojans, 2 Dialers, 97 Worms and 21 Spywares

    [146]
    URL=http://updates2.emsisoft.com/updates/4D512FC6600A33AC2031AC8E5231911C.dat
    path=Signatures\20070720.trc
    name=Traces signature update
    size=2695
    md5=4D512FC6600A33AC2031AC8E5231911C
    desc=284 Spyware Traces

    [147]
    URL=http://updates2.emsisoft.com/updates/EBE740AE2021CBDEAFDD726F48B51CBC.dat
    path=Signatures\20070723.sig
    name=Signature update
    size=26098
    md5=EBE740AE2021CBDEAFDD726F48B51CBC
    desc=1170 Signatures: 1012 Trojans, 5 Dialers, 104 Worms and 49 Spywares

    [148]
    URL=http://updates2.emsisoft.com/updates/11A8D199E415328910BABAA0B5D3347E.dat
    path=Signatures\20070723.trc
    name=Traces signature update
    size=2457
    md5=11A8D199E415328910BABAA0B5D3347E
    desc=250 Spyware Traces

    [149]
    URL=http://updates2.emsisoft.com/updates/2417C1F62D1BD2EEC54F274982448E68.dat
    path=Signatures\20070724.sig
    name=Signature update
    size=18601
    md5=2417C1F62D1BD2EEC54F274982448E68
    desc=951 Signatures: 767 Trojans, 0 Dialers, 9 Worms and 175 Spywares

    [150]
    URL=http://updates2.emsisoft.com/updates/E487F4E48F80FFB347007A7E8B3B5CB0.dat
    path=Signatures\20070724.trc
    name=Traces signature update
    size=3040
    md5=E487F4E48F80FFB347007A7E8B3B5CB0
    desc=333 Spyware Traces

    [151]
    URL=http://updates2.emsisoft.com/updates/5011E59A0102DF6C4B69F1A336CCE5F8.dat
    path=Signatures\20070725.sig
    name=Signature update
    size=22219
    md5=5011E59A0102DF6C4B69F1A336CCE5F8
    desc=1003 Signatures: 882 Trojans, 1 Dialers, 92 Worms and 28 Spywares

    [152]
    URL=http://updates2.emsisoft.com/updates/E0C6A3F44537708FF962A6E026447422.dat
    path=Signatures\20070725.trc
    name=Traces signature update
    size=3987
    md5=E0C6A3F44537708FF962A6E026447422
    desc=489 Spyware Traces

    [153]
    URL=http://updates2.emsisoft.com/updates/B4A7094E234FD3E8EFB084FF923FA04D.dat
    path=Signatures\20070726.sig
    name=Signature update
    size=57323
    md5=B4A7094E234FD3E8EFB084FF923FA04D
    desc=2556 Signatures: 2097 Trojans, 236 Dialers, 31 Worms and 192 Spywares

    [154]
    URL=http://updates2.emsisoft.com/updates/31AC8999D874C4DB6CDF8BD164B77EAC.dat
    path=Signatures\20070726.trc
    name=Traces signature update
    size=4623
    md5=31AC8999D874C4DB6CDF8BD164B77EAC
    desc=532 Spyware Traces

    [155]
    URL=http://updates2.emsisoft.com/updates/110CF597CEC1CCC76BC005B962D48C26.dat
    path=Signatures\20070727.sig
    name=Signature update
    size=20680
    md5=110CF597CEC1CCC76BC005B962D48C26
    desc=946 Signatures: 813 Trojans, 5 Dialers, 101 Worms and 27 Spywares

    [156]
    URL=http://updates2.emsisoft.com/updates/3C8B5253987C8F428FF7C15CBF44907C.dat
    path=Signatures\20070727.trc
    name=Traces signature update
    size=2610
    md5=3C8B5253987C8F428FF7C15CBF44907C
    desc=291 Spyware Traces

    [157]
    URL=http://updates2.emsisoft.com/updates/B303DA4AB9E632220F7E6B80DDDE5EBB.dat
    path=Signatures\20070730.sig
    name=Signature update
    size=28043
    md5=B303DA4AB9E632220F7E6B80DDDE5EBB
    desc=1274 Signatures: 1119 Trojans, 4 Dialers, 107 Worms and 44 Spywares

    [158]
    URL=http://updates2.emsisoft.com/updates/65627A2FB38861B9266CB1C3269C2942.dat
    path=Signatures\20070730.trc
    name=Traces signature update
    size=5092
    md5=65627A2FB38861B9266CB1C3269C2942
    desc=630 Spyware Traces

    [159]
    URL=http://updates2.emsisoft.com/updates/41056130636B5A1DBF3CACBA778A601F.dat
    path=Signatures\20070731.sig
    name=Signature update
    size=12020
    md5=41056130636B5A1DBF3CACBA778A601F
    desc=592 Signatures: 491 Trojans, 0 Dialers, 3 Worms and 98 Spywares

    [160]
    URL=http://updates2.emsisoft.com/updates/68DC140690F11B97227E556DBAD40F33.dat
    path=Signatures\20070801.sig
    name=Signature update
    size=20661
    md5=68DC140690F11B97227E556DBAD40F33
    desc=930 Signatures: 831 Trojans, 3 Dialers, 79 Worms and 17 Spywares

    [161]
    URL=http://updates2.emsisoft.com/updates/2BF5CE058489DD0AAD283A607831DA15.dat
    path=Signatures\20070801.trc
    name=Traces signature update
    size=3817
    md5=2BF5CE058489DD0AAD283A607831DA15
    desc=444 Spyware
    0
  14. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    Salut

    poste le rapport d'sdfix stp

    ++
    0
  15. rajhda
     
    voila

    Norman Malware Cleaner
    Copyright © 1990 - 2007, Norman ASA. Built 2007/11/06 17:01:39

    Norman Scanner Engine Version: 5.91.08
    Nvcbin.def Version: 5.90.00, Date: 2007/11/06 17:01:39, Variants: 1
    Nvcmacro.def Version: 5.90.00, Date: 2007/11/06 17:01:39, Variants: 12
    Running pre-scan cleanup routine:
    Operating System: Microsoft Windows XP Professional 5.1.2600 Service Pack 1
    Logged on user: CHASTEL-6MTREAM\CHASTEL PHILIPPE

    Scan started: 16/11/2007 23:19:23

    Scanning running processes and process memory...

    Number of processes/threads found: 1327
    Number of processes/threads scanned: 1327
    Number of processes/threads not scanned: 0
    Number of infected processes/threads terminated: 0
    Total scanning time: 17s

    Scanning file system...

    Scanning: C:\*.*

    Scanning: D:\*.*

    Scanning: E:\*.*

    E:\System Volume Information\_RESTO~1\RP9\A0015613.exe (Infected with W32/Spybot.CJCS)
    Deleted file

    E:\System Volume Information\_RESTO~1\RP9\A0015767.exe (Infected with W32/Spybot.CJCS)
    Deleted file

    E:\System Volume Information\_RESTO~1\RP9\A0015819.exe (Infected with W32/Agent.CYGB)
    Deleted file

    E:\System Volume Information\_RESTO~1\RP9\A0016007.exe (Infected with SDBot.gen9)
    Deleted file

    E:\System Volume Information\_RESTO~1\RP9\A0016066.exe (Infected with W32/Spybot.CJCS)
    Deleted file

    E:\WINDOWS\system32\cbio.exe (Infected with W32/Agent.CYGB)
    Deleted file

    E:\WINDOWS\system32\cbio.RB0 (Infected with W32/Agent.CYGB)
    Deleted file

    E:\WINDOWS\system32\rwv.exe (Infected with SDBot.gen9)
    Deleted file

    E:\WINDOWS\system32\ttrc.exe (Infected with W32/Spybot.CJCS)
    Deleted file

    Scanning: e:\System Volume Information\*.*

    e:\System Volume Information\_RESTO~1\RP9\A0017228.exe (Infected with W32/Agent.CYGB)
    Deleted file

    e:\System Volume Information\_RESTO~1\RP9\A0017431.exe (Infected with SDBot.gen9)
    Deleted file

    e:\System Volume Information\_RESTO~1\RP9\A0017505.exe (Infected with W32/Spybot.CJCS)
    Deleted file

    Running post-scan cleanup routine:

    Number of files found: 50933
    Number of archives unpacked: 234
    Number of files scanned: 50882
    Number of files not scanned: 51
    Number of files skipped due to exclude list: 0
    Number of infected files found: 12
    Number of infected files repaired/deleted: 12
    Number of infections removed: 12
    Total scanning time: 18m 39s

    merci pour votre oeil expert
    A+
    0
  16. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    Cf poste 9 ;-)

    0
  17. rajhda
     
    merci,

    mais en fait c'est pas fini du tout, car j'ai perdu mon bureau et la barre de tache.
    un second gentil réparateur est en train de s'occuper de moi mais j'ai du boulot et pas bcq de temps pour scanner et détruire dans tout les sens. samedi je pense être plus au calme.

    merci bcq encore de ta patience.
    0
  18. green day Messages postés 26374 Date d'inscription   Statut Modérateur, Contributeur sécurité Dernière intervention   2 166
     
    Salut

    un 2nd réparateur ?!

    ==> http://www.commentcamarche.net/forum/affich 4092543 bureau vide#0

    Merci de ne pas créer plusieurs potse pour le même problème !

    Soit tu continue ave Jlpjlp, soit avec moi, mais pas les deux en même temps !

    ++
    0