Sujet Précédent Sujet Suivant

Cheval de troie backdoor downloader

kamata Messages postés 1 Statut Membre -  
jlpjlp Messages postés 52399 Statut Contributeur sécurité -
Bonjour,

il me faudrait ---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 20:18:05 20/02/2008

+ Résultat de l'analyse:
rapport envoyé par avg merci de m'aidé a m'en débarrasser!!

HKLM\SYSTEM\CurrentControlSet\Control\Video\{007EED16-902E-4917-95E9-792B7F64B3C8}\0000\\DALRULE_MACROVISIONINFOREPORT -> Adware.BonziBuddy : Ignoré.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a} -> Adware.Generic : Ignoré.
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Extensions\CmdMapping\\{c95fe080-8f5d-11d2-a20b-00aa003c157a} -> Adware.Generic : Ignoré.
HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Extensions\CmdMapping\\{c95fe080-8f5d-11d2-a20b-00aa003c157a} -> Adware.Generic : Ignoré.
HKU\S-1-5-21-3369261689-1860044390-3740843855-1005\Software\Microsoft\Internet Explorer\Extensions\CmdMapping\\{c95fe080-8f5d-11d2-a20b-00aa003c157a} -> Adware.Generic : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP135\A0096450.exe -> Backdoor.Agent.duj : Ignoré.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\BL8DFE6I\setup[1].exe -> Backdoor.Rbot.hlr : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP135\A0097190.exe -> Backdoor.Rbot.hlr : Ignoré.
C:\googletoolbar.exe -> Backdoor.Rbot.hlr : Ignoré.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\BL8DFE6I\bb1[1].exe -> Backdoor.SdBot.cux : Ignoré.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\BL8DFE6I\bb1[2].exe -> Backdoor.SdBot.cux : Ignoré.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\BL8DFE6I\bb1[3].exe -> Backdoor.SdBot.cux : Ignoré.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\IWEVWS5E\bb1[1].exe -> Backdoor.SdBot.cux : Ignoré.
C:\Setup32.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0091760.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0092761.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0092787.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0093785.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094785.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094808.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094825.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094842.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094865.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094887.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094912.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094935.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP134\A0095131.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP134\A0095148.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP134\A0096164.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP135\A0096269.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP135\A0096327.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP135\A0096345.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP135\A0097175.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP135\A0097188.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094868.exe -> Downloader.Adload.rk : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0087981.exe -> Downloader.Agent.ezc : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0088058.exe -> Downloader.Agent.ezc : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0088405.exe -> Downloader.Agent.ezc : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0088438.exe -> Downloader.Agent.ezc : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0092769.exe -> Downloader.Agent.ezc : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094870.exe -> Downloader.Agent.ezc : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094918.exe -> Downloader.Agent.ezc : Ignoré.
C:\WINDOWS\b128.exe -> Downloader.Agent.ezc : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP135\A0096245.exe -> Downloader.Agent.fjn : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0088399.exe -> Downloader.Agent.hvj : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0088434.exe -> Downloader.Agent.hvj : Ignoré.
C:\WINDOWS\b122.exe -> Downloader.Agent.hvj : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP135\A0096250.exe -> Downloader.Delf.dlk : Ignoré.
C:\Documents and Settings\SALEM KARIM\Local Settings\Temporary Internet Files\Content.IE5\CVEX4HU1\!update-4495[1].0000 -> Downloader.PurityScan.fk : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP135\A0096239.exe -> Not-A-Virus.Adware.Agent : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP135\A0096240.exe -> Not-A-Virus.Adware.Agent : Ignoré.
C:\Program Files\Outerinfo\FF\components\FF.dll -> Not-A-Virus.Adware.ZenoSearch : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086863.dll -> Not-A-Virus.Adware.ZenoSearch : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0087947.dll -> Not-A-Virus.Adware.ZenoSearch : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0088022.dll -> Not-A-Virus.Adware.ZenoSearch : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0088220.dll -> Not-A-Virus.Adware.ZenoSearch : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0089652.dll -> Not-A-Virus.Adware.ZenoSearch : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0089707.dll -> Not-A-Virus.Adware.ZenoSearch : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0089729.dll -> Not-A-Virus.Adware.ZenoSearch : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0092767.dll -> Not-A-Virus.Adware.ZenoSearch : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094790.dll -> Not-A-Virus.Adware.ZenoSearch : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094847.dll -> Not-A-Virus.Adware.ZenoSearch : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094891.dll -> Not-A-Virus.Adware.ZenoSearch : Ignoré.
C:\Documents and Settings\SALEM KARIM\Cookies\salem karim@2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\SALEM KARIM\Local Settings\Temp\Cookies\salem karim@bluestreak[1].txt -> TrackingCookie.Bluestreak : Ignoré.
:mozilla.14:C:\Documents and Settings\SALEM KARIM\Application Data\Mozilla\Firefox\Profiles\4h0immac.default\cookies.txt -> TrackingCookie.Doubleclick : Ignoré.
C:\Documents and Settings\SALEM KARIM\Local Settings\Temp\Cookies\salem karim@estat[1].txt -> TrackingCookie.Estat : Ignoré.
:mozilla.19:C:\Documents and Settings\SALEM KARIM\Application Data\Mozilla\Firefox\Profiles\4h0immac.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.20:C:\Documents and Settings\SALEM KARIM\Application Data\Mozilla\Firefox\Profiles\4h0immac.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.21:C:\Documents and Settings\SALEM KARIM\Application Data\Mozilla\Firefox\Profiles\4h0immac.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
C:\Documents and Settings\SALEM KARIM\Cookies\salem karim@smartadserver[1].txt -> TrackingCookie.Smartadserver : Ignoré.
C:\Documents and Settings\SALEM KARIM\Local Settings\Temp\Cookies\salem karim@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.15:C:\Documents and Settings\SALEM KARIM\Application Data\Mozilla\Firefox\Profiles\4h0immac.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.22:C:\Documents and Settings\SALEM KARIM\Application Data\Mozilla\Firefox\Profiles\4h0immac.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP135\A0096251.exe -> Trojan.Fakealert : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP132\A0084574.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP132\A0084636.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP132\A0084686.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0084725.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0084775.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0084798.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0084839.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0084868.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0084988.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086036.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086070.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086095.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086121.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086150.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086185.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086210.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086307.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086415.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086546.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086592.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086616.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086723.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086783.exe -> Trojan.Small : Ignoré.
C:\WINDOWS\system32\wnsintsv.exe -> Trojan.Small : Ignoré.

Fin du rapport
rapport envoyé par avg antispyware merci de m'aidé a me débarrassé aussi de ce virus!
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------

+ Créé à: 20:18:05 20/02/2008

+ Résultat de l'analyse:

HKLM\SYSTEM\CurrentControlSet\Control\Video\{007EED16-902E-4917-95E9-792B7F64B3C8}\0000\\DALRULE_MACROVISIONINFOREPORT -> Adware.BonziBuddy : Ignoré.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a} -> Adware.Generic : Ignoré.
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Extensions\CmdMapping\\{c95fe080-8f5d-11d2-a20b-00aa003c157a} -> Adware.Generic : Ignoré.
HKU\S-1-5-18\Software\Microsoft\Internet Explorer\Extensions\CmdMapping\\{c95fe080-8f5d-11d2-a20b-00aa003c157a} -> Adware.Generic : Ignoré.
HKU\S-1-5-21-3369261689-1860044390-3740843855-1005\Software\Microsoft\Internet Explorer\Extensions\CmdMapping\\{c95fe080-8f5d-11d2-a20b-00aa003c157a} -> Adware.Generic : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP135\A0096450.exe -> Backdoor.Agent.duj : Ignoré.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\BL8DFE6I\setup[1].exe -> Backdoor.Rbot.hlr : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP135\A0097190.exe -> Backdoor.Rbot.hlr : Ignoré.
C:\googletoolbar.exe -> Backdoor.Rbot.hlr : Ignoré.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\BL8DFE6I\bb1[1].exe -> Backdoor.SdBot.cux : Ignoré.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\BL8DFE6I\bb1[2].exe -> Backdoor.SdBot.cux : Ignoré.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\BL8DFE6I\bb1[3].exe -> Backdoor.SdBot.cux : Ignoré.
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\IWEVWS5E\bb1[1].exe -> Backdoor.SdBot.cux : Ignoré.
C:\Setup32.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0091760.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0092761.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0092787.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0093785.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094785.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094808.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094825.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094842.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094865.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094887.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094912.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094935.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP134\A0095131.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP134\A0095148.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP134\A0096164.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP135\A0096269.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP135\A0096327.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP135\A0096345.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP135\A0097175.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP135\A0097188.exe -> Backdoor.SdBot.cux : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094868.exe -> Downloader.Adload.rk : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0087981.exe -> Downloader.Agent.ezc : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0088058.exe -> Downloader.Agent.ezc : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0088405.exe -> Downloader.Agent.ezc : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0088438.exe -> Downloader.Agent.ezc : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0092769.exe -> Downloader.Agent.ezc : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094870.exe -> Downloader.Agent.ezc : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094918.exe -> Downloader.Agent.ezc : Ignoré.
C:\WINDOWS\b128.exe -> Downloader.Agent.ezc : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP135\A0096245.exe -> Downloader.Agent.fjn : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0088399.exe -> Downloader.Agent.hvj : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0088434.exe -> Downloader.Agent.hvj : Ignoré.
C:\WINDOWS\b122.exe -> Downloader.Agent.hvj : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP135\A0096250.exe -> Downloader.Delf.dlk : Ignoré.
C:\Documents and Settings\SALEM KARIM\Local Settings\Temporary Internet Files\Content.IE5\CVEX4HU1\!update-4495[1].0000 -> Downloader.PurityScan.fk : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP135\A0096239.exe -> Not-A-Virus.Adware.Agent : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP135\A0096240.exe -> Not-A-Virus.Adware.Agent : Ignoré.
C:\Program Files\Outerinfo\FF\components\FF.dll -> Not-A-Virus.Adware.ZenoSearch : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086863.dll -> Not-A-Virus.Adware.ZenoSearch : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0087947.dll -> Not-A-Virus.Adware.ZenoSearch : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0088022.dll -> Not-A-Virus.Adware.ZenoSearch : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0088220.dll -> Not-A-Virus.Adware.ZenoSearch : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0089652.dll -> Not-A-Virus.Adware.ZenoSearch : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0089707.dll -> Not-A-Virus.Adware.ZenoSearch : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0089729.dll -> Not-A-Virus.Adware.ZenoSearch : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0092767.dll -> Not-A-Virus.Adware.ZenoSearch : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094790.dll -> Not-A-Virus.Adware.ZenoSearch : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094847.dll -> Not-A-Virus.Adware.ZenoSearch : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0094891.dll -> Not-A-Virus.Adware.ZenoSearch : Ignoré.
C:\Documents and Settings\SALEM KARIM\Cookies\salem karim@2o7[1].txt -> TrackingCookie.2o7 : Ignoré.
C:\Documents and Settings\SALEM KARIM\Local Settings\Temp\Cookies\salem karim@bluestreak[1].txt -> TrackingCookie.Bluestreak : Ignoré.
:mozilla.14:C:\Documents and Settings\SALEM KARIM\Application Data\Mozilla\Firefox\Profiles\4h0immac.default\cookies.txt -> TrackingCookie.Doubleclick : Ignoré.
C:\Documents and Settings\SALEM KARIM\Local Settings\Temp\Cookies\salem karim@estat[1].txt -> TrackingCookie.Estat : Ignoré.
:mozilla.19:C:\Documents and Settings\SALEM KARIM\Application Data\Mozilla\Firefox\Profiles\4h0immac.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.20:C:\Documents and Settings\SALEM KARIM\Application Data\Mozilla\Firefox\Profiles\4h0immac.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.21:C:\Documents and Settings\SALEM KARIM\Application Data\Mozilla\Firefox\Profiles\4h0immac.default\cookies.txt -> TrackingCookie.Smartadserver : Ignoré.
C:\Documents and Settings\SALEM KARIM\Cookies\salem karim@smartadserver[1].txt -> TrackingCookie.Smartadserver : Ignoré.
C:\Documents and Settings\SALEM KARIM\Local Settings\Temp\Cookies\salem karim@www.smartadserver[2].txt -> TrackingCookie.Smartadserver : Ignoré.
:mozilla.15:C:\Documents and Settings\SALEM KARIM\Application Data\Mozilla\Firefox\Profiles\4h0immac.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
:mozilla.22:C:\Documents and Settings\SALEM KARIM\Application Data\Mozilla\Firefox\Profiles\4h0immac.default\cookies.txt -> TrackingCookie.Weborama : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP135\A0096251.exe -> Trojan.Fakealert : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP132\A0084574.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP132\A0084636.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP132\A0084686.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0084725.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0084775.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0084798.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0084839.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0084868.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0084988.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086036.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086070.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086095.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086121.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086150.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086185.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086210.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086307.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086415.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086546.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086592.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086616.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086723.exe -> Trojan.Small : Ignoré.
C:\System Volume Information\_restore{6A781001-245C-47F4-AE5B-25092185B384}\RP133\A0086783.exe -> Trojan.Small : Ignoré.
C:\WINDOWS\system32\wnsintsv.exe -> Trojan.Small : Ignoré.

Fin du rapport
A voir également:

1 réponse

Réponse 1 / 1
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
slt,

utilise pour supprimer tes traces

CCLEANER: (lance un nettoyage et répare 3 fois le registre) sans installer la barre yahoo

https://www.01net.com/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/32599.html

__________

refais avg car tu as ignoré ce qui a été trouvé!!! vire tout!

_________

colle un rapport hijackthis

http://www.trendsecure.com/portal/en-US/tools/security_tools/hijackthis/download

manuel :

https://leblogdeclaude.blogspot.com/2006/10/informatique-section-hijackthis.html

Je conseille de renomer Hijackthis, pour contrer une éventuelle infection de Vundo.

ex:Renomme le fichier HijackThis.exe en eden.exe pour cela, fais un clic droit sur le fichier HijackThis.exe et choisis renommer dans la liste

Ensuite avec Explorer créer un dossier c:\hijackthis
Décompresser Hijackthis dans ce dossier.
C'est important pour les sauvegardes."
0