Infection ravnom suite a virus msn
katelshane
Messages postés
1
Date d'inscription
Statut
Membre
Dernière intervention
-
cgui33 Messages postés 1174 Date d'inscription Statut Membre Dernière intervention -
cgui33 Messages postés 1174 Date d'inscription Statut Membre Dernière intervention -
Bonjour,
j'ai suivie les base de la desinfection sur le site il dise de poster les 3 scan alors les voila en esperant que vous puissier faire quelque chose merci
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 21:45:43 23/01/2008
+ Résultat de l'analyse:
HKLM\SOFTWARE\Classes\WR -> Adware.Generic : Ignoré.
C:\Program Files\Dot1XCfg\Dot1XCfg.exe -> Downloader.Adload.pr : Nettoyé et sauvegardé (mise en quarantaine).
[1540] C:\Program Files\Dot1XCfg\Dot1XCfg.exe -> Downloader.Adload.pr : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008473.exe -> Downloader.Agent.erf : Nettoyé et sauvegardé (mise en quarantaine).
E:\programme\MSNFix\18012008_ 0593984.zip/backup/b122.exe -> Downloader.Agent.erf : Nettoyé et sauvegardé (mise en quarantaine).
:mozilla.162:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.163:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.86:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.220:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.221:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.222:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.41:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.10:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.6:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
C:\Documents and Settings\Admin\Cookies\admin@advertising[1].txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.174:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\Admin\Cookies\admin@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.51:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Admin\Cookies\admin@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
:mozilla.201:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.202:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.203:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.142:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.55:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\Admin\Cookies\admin@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
:mozilla.102:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.103:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.104:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.105:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.107:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.108:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.114:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.115:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.116:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.118:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.250:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.52:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.53:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.54:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\Admin\Cookies\admin@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
:mozilla.131:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.101:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.106:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.109:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.110:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.111:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.112:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.113:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\Admin\Cookies\admin@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\Admin\Cookies\admin@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.11:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.14:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.15:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.16:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Admin\Cookies\admin@smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.244:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.37:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.38:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.39:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.40:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.12:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.13:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\Admin\Cookies\admin@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.87:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Webtrends : Nettoyé.
:mozilla.152:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.153:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.154:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.155:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.156:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.157:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.158:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\Documents and Settings\Admin\Cookies\admin@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP19\A0008242.com -> Trojan.Agent.dwd : Nettoyé et sauvegardé (mise en quarantaine).
Fin du rapport
BitDefender Online Scanner -Scan Report
BitDefender Online Scanner
Scan report generated at: Wed, Jan 23, 2008 - 22:21:53
Scan path: C:\;D:\;E:\;
Statistics
Time
00:30:41
Files
93000
Folders
3105
Boot Sectors
3
Archives
1497
Packed Files
6987
Results
Identified Viruses
10
Infected Files
54
Suspect Files
0
Warnings
0
Disinfected
0
Deleted Files
54
Engines Info
Virus Definitions
976731
Engine build
AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)
Scan plugins
16
Archive plugins
41
Unpack plugins
7
E-mail plugins
6
System plugins
5
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008183.DLL
Detected with: Adware.Toolbar.Mywebsearch.AL
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008183.DLL
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008184.dll
Detected with: Adware.MyWebSearch.AU
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008184.dll
Disinfection failed
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008184.dll
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008185.DLL
Detected with: Adware.MyWebSearch.AU
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008185.DLL
Disinfection failed
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008185.DLL
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008186.DLL
Detected with: Adware.MyWebSearch.AV
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008186.DLL
Disinfection failed
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008186.DLL
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008187.DLL
Detected with: Adware.MyWebSearch.AU
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008187.DLL
Disinfection failed
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008187.DLL
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008188.DLL
Detected with: Application.MWS
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008188.DLL
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008189.EXE
Detected with: Adware.Mywebsearch.I
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008189.EXE
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008190.DLL
Detected with: Adware.MyWebSearch.BG
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008190.DLL
Disinfection failed
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008190.DLL
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008191.DLL
Detected with: Adware.MyWebSearch.AU
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008191.DLL
Disinfection failed
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008191.DLL
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP18\A0008216.dll
Detected with: Application.MWS
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP18\A0008216.dll
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP19\A0008262.exe
Detected with: Adware.Mywebsearch.CW
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP19\A0008262.exe
Disinfection failed
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP19\A0008262.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008459.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008459.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008464.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008464.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008474.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008474.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008475.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008475.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008476.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008476.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008477.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008477.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008478.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008478.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008479.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008479.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008487.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008487.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008488.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008488.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008489.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008489.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008490.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008490.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008491.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008491.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008493.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008493.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008494.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008494.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008495.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008495.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008496.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008496.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008497.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008497.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008498.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008498.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008500.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008500.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008503.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008503.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008504.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008504.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP28\A0011036.exe
Infected with: Trojan.Downloader.Adload.NCS
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP28\A0011036.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/bpkhvw.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/bpkhvw.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/chehcf.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/chehcf.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/cuakil.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/cuakil.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/fbfhin.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/fbfhin.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/fluaki.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/fluaki.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/gdrvlm.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/gdrvlm.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/hnctup.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/hnctup.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/iptrsa.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/iptrsa.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/khluzx.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/khluzx.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/kpbaau.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/kpbaau.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/kzswuu.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/kzswuu.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/mrwxjk.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/mrwxjk.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/mtitdv.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/mtitdv.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/muufcd.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/muufcd.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/nnclrd.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/nnclrd.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/ohpaww.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/ohpaww.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/olemln.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/olemln.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/sioyem.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/sioyem.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/vqzcjt.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/vqzcjt.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/ypvpka.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/ypvpka.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:31:28, on 23/01/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\VTtrayp.exe
C:\WINDOWS\system32\VTTimer.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Ahead\InCD\InCD.exe
C:\Program Files\Gadwin Systems\PrintScreen\PrintScreen.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\ComOne\BlueSynchroManager\BlueSynchroManager.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/toolbar/ie8/sidebar.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/toolbar/ie8/sidebar.html
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [VTTrayp] VTtrayp.exe
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [Gadwin PrintScreen 3.5] C:\Program Files\Gadwin Systems\PrintScreen\PrintScreen.exe /nosplash
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - HKUS\S-1-5-19\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'Default user')
O4 - Startup: BlueSynchroManager.lnk = C:\Program Files\ComOne\BlueSynchroManager\BlueSynchroManager.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - https://www.touslesdrivers.com/index.php?v_page=29
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: InCD Helper (read only) (InCDsrvR) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
j'ai suivie les base de la desinfection sur le site il dise de poster les 3 scan alors les voila en esperant que vous puissier faire quelque chose merci
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 21:45:43 23/01/2008
+ Résultat de l'analyse:
HKLM\SOFTWARE\Classes\WR -> Adware.Generic : Ignoré.
C:\Program Files\Dot1XCfg\Dot1XCfg.exe -> Downloader.Adload.pr : Nettoyé et sauvegardé (mise en quarantaine).
[1540] C:\Program Files\Dot1XCfg\Dot1XCfg.exe -> Downloader.Adload.pr : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008473.exe -> Downloader.Agent.erf : Nettoyé et sauvegardé (mise en quarantaine).
E:\programme\MSNFix\18012008_ 0593984.zip/backup/b122.exe -> Downloader.Agent.erf : Nettoyé et sauvegardé (mise en quarantaine).
:mozilla.162:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.163:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé.
:mozilla.86:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.220:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.221:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.222:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.41:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.10:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.6:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé.
C:\Documents and Settings\Admin\Cookies\admin@advertising[1].txt -> TrackingCookie.Advertising : Nettoyé.
:mozilla.174:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé.
C:\Documents and Settings\Admin\Cookies\admin@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé.
:mozilla.51:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé.
C:\Documents and Settings\Admin\Cookies\admin@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé.
:mozilla.201:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.202:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.203:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.142:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé.
:mozilla.55:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.
C:\Documents and Settings\Admin\Cookies\admin@estat[1].txt -> TrackingCookie.Estat : Nettoyé.
:mozilla.102:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.103:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.104:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.105:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.107:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.108:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Euroclick : Nettoyé.
:mozilla.114:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.115:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.116:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.118:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Fastclick : Nettoyé.
:mozilla.250:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé.
:mozilla.52:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.53:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
:mozilla.54:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Hitbox : Nettoyé.
C:\Documents and Settings\Admin\Cookies\admin@mediaplex[1].txt -> TrackingCookie.Mediaplex : Nettoyé.
:mozilla.131:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.101:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.106:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.109:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.110:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.111:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.112:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.113:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\Admin\Cookies\admin@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
C:\Documents and Settings\Admin\Cookies\admin@serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé.
:mozilla.11:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.14:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.15:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.16:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé.
C:\Documents and Settings\Admin\Cookies\admin@smartadserver[2].txt -> TrackingCookie.Smartadserver : Nettoyé.
:mozilla.244:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé.
:mozilla.37:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.38:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.39:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.40:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé.
:mozilla.12:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.13:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
C:\Documents and Settings\Admin\Cookies\admin@weborama[1].txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.87:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Webtrends : Nettoyé.
:mozilla.152:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.153:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.154:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.155:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.156:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.157:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
:mozilla.158:C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\f5fpnito.default\cookies.txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\Documents and Settings\Admin\Cookies\admin@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Nettoyé.
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP19\A0008242.com -> Trojan.Agent.dwd : Nettoyé et sauvegardé (mise en quarantaine).
Fin du rapport
BitDefender Online Scanner -Scan Report
BitDefender Online Scanner
Scan report generated at: Wed, Jan 23, 2008 - 22:21:53
Scan path: C:\;D:\;E:\;
Statistics
Time
00:30:41
Files
93000
Folders
3105
Boot Sectors
3
Archives
1497
Packed Files
6987
Results
Identified Viruses
10
Infected Files
54
Suspect Files
0
Warnings
0
Disinfected
0
Deleted Files
54
Engines Info
Virus Definitions
976731
Engine build
AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)
Scan plugins
16
Archive plugins
41
Unpack plugins
7
E-mail plugins
6
System plugins
5
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008183.DLL
Detected with: Adware.Toolbar.Mywebsearch.AL
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008183.DLL
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008184.dll
Detected with: Adware.MyWebSearch.AU
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008184.dll
Disinfection failed
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008184.dll
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008185.DLL
Detected with: Adware.MyWebSearch.AU
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008185.DLL
Disinfection failed
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008185.DLL
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008186.DLL
Detected with: Adware.MyWebSearch.AV
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008186.DLL
Disinfection failed
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008186.DLL
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008187.DLL
Detected with: Adware.MyWebSearch.AU
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008187.DLL
Disinfection failed
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008187.DLL
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008188.DLL
Detected with: Application.MWS
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008188.DLL
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008189.EXE
Detected with: Adware.Mywebsearch.I
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008189.EXE
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008190.DLL
Detected with: Adware.MyWebSearch.BG
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008190.DLL
Disinfection failed
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008190.DLL
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008191.DLL
Detected with: Adware.MyWebSearch.AU
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008191.DLL
Disinfection failed
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP17\A0008191.DLL
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP18\A0008216.dll
Detected with: Application.MWS
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP18\A0008216.dll
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP19\A0008262.exe
Detected with: Adware.Mywebsearch.CW
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP19\A0008262.exe
Disinfection failed
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP19\A0008262.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008459.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008459.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008464.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008464.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008474.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008474.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008475.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008475.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008476.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008476.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008477.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008477.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008478.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008478.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008479.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008479.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008487.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008487.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008488.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008488.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008489.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008489.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008490.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008490.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008491.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008491.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008493.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008493.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008494.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008494.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008495.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008495.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008496.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008496.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008497.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008497.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008498.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008498.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008500.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008500.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008503.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008503.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008504.exe
Infected with: Backdoor.Sdbot.DFEO
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP21\A0008504.exe
Deleted
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP28\A0011036.exe
Infected with: Trojan.Downloader.Adload.NCS
C:\System Volume Information\_restore{85BCC7A1-8A91-49CC-AD60-B110610DC174}\RP28\A0011036.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/bpkhvw.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/bpkhvw.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/chehcf.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/chehcf.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/cuakil.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/cuakil.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/fbfhin.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/fbfhin.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/fluaki.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/fluaki.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/gdrvlm.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/gdrvlm.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/hnctup.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/hnctup.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/iptrsa.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/iptrsa.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/khluzx.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/khluzx.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/kpbaau.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/kpbaau.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/kzswuu.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/kzswuu.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/mrwxjk.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/mrwxjk.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/mtitdv.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/mtitdv.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/muufcd.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/muufcd.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/nnclrd.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/nnclrd.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/ohpaww.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/ohpaww.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/olemln.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/olemln.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/sioyem.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/sioyem.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/vqzcjt.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/vqzcjt.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/ypvpka.exe
Infected with: Backdoor.Sdbot.DFEO
E:\programme\MSNFix\18012008_ 0593984.zip=>backup/ypvpka.exe
Deleted
E:\programme\MSNFix\18012008_ 0593984.zip
Updated
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:31:28, on 23/01/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\VTtrayp.exe
C:\WINDOWS\system32\VTTimer.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Ahead\InCD\InCD.exe
C:\Program Files\Gadwin Systems\PrintScreen\PrintScreen.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\ComOne\BlueSynchroManager\BlueSynchroManager.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/toolbar/ie8/sidebar.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/toolbar/ie8/sidebar.html
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [VTTrayp] VTtrayp.exe
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [Gadwin PrintScreen 3.5] C:\Program Files\Gadwin Systems\PrintScreen\PrintScreen.exe /nosplash
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - HKUS\S-1-5-19\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'Default user')
O4 - Startup: BlueSynchroManager.lnk = C:\Program Files\ComOne\BlueSynchroManager\BlueSynchroManager.exe
O4 - Global Startup: BTTray.lnk = ?
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/...
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - https://www.touslesdrivers.com/index.php?v_page=29
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: InCD Helper (read only) (InCDsrvR) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
A voir également:
- Infection ravnom suite a virus msn
- Virus mcafee - Accueil - Piratage
- Telecharger msn - Télécharger - Messagerie
- Msn explorer - Télécharger - Divers Web & Internet
- Virus facebook demande d'amis - Accueil - Facebook
- Undisclosed-recipients virus - Guide
2 réponses
Bonsoir, je suis espion3004 Membre contributeur du forum windows...
Bienvenue dans la communauté informatique katelshane.
Suite à ton rapport, tu cours un réel danger, tu ne possèdes pas de pare-feu, ni d'anti-virus, ni de logiciel espion, qui représent les 3 protections de base d'un pc...
Sans plus attendre !
Je vais te demander d'installer un anti-virus Antivir est l'un des meilleurs que je préconise..
Ensuite comme pare-feu (le pare-feu empéche aux pirates de s'installer tranquillement sur ta machine, et empèches l'intrusion de trojan, de virus ....) Kerio
Comme anti-espion (spyware définition clic ici AVG anti-spyware.
Antivir clic là mode d'emploi et installation
Kerio ton pare-feu contre les pirates, est ici
AVG anti-spyware contre les logiciels espions
Tu trouveras le mode d'emploi dans les liens que je t'ai transmis, lis les de ton mieux, il seront les logiciels que tu devras utiliser très souvent...
Je te dis bon courage, et si tu as des questions ?
Bienvenue dans la communauté informatique katelshane.
Suite à ton rapport, tu cours un réel danger, tu ne possèdes pas de pare-feu, ni d'anti-virus, ni de logiciel espion, qui représent les 3 protections de base d'un pc...
Sans plus attendre !
Je vais te demander d'installer un anti-virus Antivir est l'un des meilleurs que je préconise..
Ensuite comme pare-feu (le pare-feu empéche aux pirates de s'installer tranquillement sur ta machine, et empèches l'intrusion de trojan, de virus ....) Kerio
Comme anti-espion (spyware définition clic ici AVG anti-spyware.
Antivir clic là mode d'emploi et installation
Kerio ton pare-feu contre les pirates, est ici
AVG anti-spyware contre les logiciels espions
Tu trouveras le mode d'emploi dans les liens que je t'ai transmis, lis les de ton mieux, il seront les logiciels que tu devras utiliser très souvent...
Je te dis bon courage, et si tu as des questions ?
