| Auteur |
Message |
Barrette de RAM
Messages: 26
Tutoriaux : 0
|
 Posté le:
Mar 03 Juil 2007 13:39 Sujet : demand d'aid pour enlever trojan.win 32.agent.aoy |
   |
bon jour j'ai un méchant trojan.win32.agent.aoy caché dans C:\Documents and Settings\PAYMAN\Local
Settings\Temporary Internet Files\Content.IE5\M20KYDIB\dns_bot_20070615[1] Infecté :
Trojan.Win32.Agent.aoy ignoré
C:\Documents and Settings\PAYMAN\Application Data\tmp5.tmp.exe Infecté : Trojan.Win32.Agent.aoy
ignoré
C:\Documents and Settings\PAYMAN\Application Data\tmp7.tmp.exe Infecté : Trojan.Win32.Agent.aoy
ignoré
C:\System Volume Information\_restore{5D85A2D9-B3CE-4B46-95D2-2FDCDABE4DDD}\RP102\A0021860.exe
Infecté : Trojan.Win32.Agent.aoy ignoré
C:\Documents and Settings\All Users\Documents\p2p\Setup.exe Infecté :
Trojan-Dropper.Win32.Mudrop.du ignoré
j'ai dans ma machine
ccleaner
desktop mechanic
spybot
avast4
comment faire pour les enlever avec mes outil sil vous plait merci |
|
|
   |
|
Geek
Messages: 3376
Tutoriaux : 0
|
| Posté le:
Mar 03 Juil 2007 14:17 Sujet : demand d'aid pour enlever trojan.win 32.agent.aoy |
|
Lancer cette Procédure de Pré Nettoyage préconisée par
Synthexe :
Et copier ici les 3 rapports demandés.
Ce qui donnera des informations à Synthexe (et à d'autres compères) lorsqu'il passera et lui
permettra de te conseiller ...  |
_________________
laripette ? bof ... Sur moi, les avis divergent. Oui, je sais, pour Apollinaire c'était 11.000, pas dix ... |
|
|
|
Barrette de RAM
Messages: 26
Tutoriaux : 0
|
| Posté le:
Mar 03 Juil 2007 14:28 Sujet : demand d'aid pour enlever trojan.win 32.agent.aoy |
|
merci je vait m'en ocuper |
|
|
|
|
Barrette de RAM
Messages: 26
Tutoriaux : 0
|
| Posté le:
Mer 04 Juil 2007 11:20 Sujet : demand d'aid pour enlever trojan.win 32.agent.aoy |
|
salut voila rapport hijackthis
Logfile of Trend Micro HijackThis v2.0.0 (BETA)
Scan saved at 12:09:39, on 04/07/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Startup Mechanic\StartupMonitor.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\VM303_STI.EXE
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Microsoft ActiveSync\Wcescomm.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\Program Files\Club-Internet\Le Compagnon Club\bin\mpbtn.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\PAYMAN\Mes documents\hijackthis\aido_v2.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.live.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer avec
Club-Internet
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program
Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program
Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {b0539129-0a8b-49a4-b7d2-cd96f7aa9030} - (no file)
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program
Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program
Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Startup Manager Scanner] C:\Program Files\Startup Mechanic\StartupMonitor.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware
7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft
ActiveSync\Wcescomm.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma
Loader.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers
communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: LE COMPAGNON CLUB.lnk = C:\Program Files\Club-Internet\Le Compagnon
Club\bin\matcli.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk.disabled
O4 - Global Startup: Adobe Reader Synchronizer.lnk.disabled
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program
Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -
C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} -
C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} -
C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... -
{2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers
communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network
Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} -
%windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program
Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program
Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://GLOBAL.ACER.COM/
O15 - Trusted Zone: *.musicmatch.com
O15 - Trusted Zone: *.musicmatch.com (HKLM)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program
Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.safety.live.com/resource/download/scanner/wlscbase8460.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -
C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: wowr32 - wowr32.dll (file missing)
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} -
C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant -
{8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems
Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil
Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Autodesk Licensing Service - Unknown owner - C:\Program Files\Fichiers
communs\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil
Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil
Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil
Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware
7.5\guard.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner
- C:\WINDOWS\System32\dmadmin.exe
O23 - Service: DomainService - Unknown owner - C:\Documents and Settings\PAYMAN\Application
Data\tmp117.tmp.exe (file missing)
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner -
C:\WINDOWS\System32\Imapi.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers
communs\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner -
C:\WINDOWS\System32\mnmsrvc.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program
Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner -
C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program
Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner -
C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner -
C:\WINDOWS\System32\wbem\wmiapsrv.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner -
C:\Program Files\Windows Media Player\WMPNetwk.exe
--
End of file - 10974 bytes
avg:
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 11:43:04 04/07/2007
+ Résultat de l'analyse:
C:\Documents and Settings\PAYMAN\Mes documents\mechanic-2.8.exe -> Adware.VB : Nettoyé et
sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{5D85A2D9-B3CE-4B46-95D2-2FDCDABE4DDD}\RP109\A0025674.DLL ->
Adware.Virtumonde : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{5D85A2D9-B3CE-4B46-95D2-2FDCDABE4DDD}\RP64\A0012811.exe ->
Backdoor.Skinymes.a : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\All Users\Documents\p2p\Setup.exe -> Dropper.Mudrop.du : Nettoyé et
sauvegardé (mise en quarantaine).
C:\Documents and Settings\PAYMAN\Mes documents\installer-34402-17-CCleaner-French.exe ->
Hijacker.StartPage.aop : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\All Users\Documents\p2p\EvID4226Patch.exe -> Not-A-Virus.Hacktool.EvID
: Nettoyé et sauvegardé (mise en quarantaine).
:mozilla.13:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.247realmedia :
Nettoyé.
:mozilla.14:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.247realmedia :
Nettoyé.
:mozilla.16:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.17:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.18:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.19:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.20:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.21:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.22:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.325:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.404:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.41:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.42:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.43:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.44:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.45:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.554:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adengage : Nettoyé.
:mozilla.555:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adengage : Nettoyé.
:mozilla.556:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adengage : Nettoyé.
:mozilla.557:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adjuggler :
Nettoyé.
:mozilla.558:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adjuggler :
Nettoyé.
:mozilla.591:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adobe : Nettoyé.
:mozilla.52:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.53:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.177:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Clickzs : Nettoyé.
:mozilla.178:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Clickzs : Nettoyé.
:mozilla.179:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Clickzs : Nettoyé.
:mozilla.180:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Clickzs : Nettoyé.
:mozilla.538:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.539:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.540:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.212:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.
:mozilla.67:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Falkag : Nettoyé.
:mozilla.70:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Falkag : Nettoyé.
:mozilla.258:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Imrworldwide :
Nettoyé.
:mozilla.259:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Imrworldwide :
Nettoyé.
:mozilla.548:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Masterstats :
Nettoyé.
:mozilla.353:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.354:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.355:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.629:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Paypal : Nettoyé.
:mozilla.387:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.388:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.522:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.126:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.127:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.128:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.129:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.130:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.131:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.132:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.133:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.134:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.135:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.136:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.137:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.138:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.139:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.140:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.141:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.142:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.143:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.144:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.145:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.146:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.147:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.148:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.149:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.150:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.151:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.152:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.153:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.154:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.155:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.156:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.157:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.158:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.159:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.160:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.161:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.162:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.163:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.164:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.165:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.166:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.167:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.168:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.169:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.170:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.171:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.172:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.173:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.174:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.175:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.397:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Smartadserver :
Nettoyé.
:mozilla.642:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Smartadserver :
Nettoyé.
:mozilla.643:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Smartadserver :
Nettoyé.
:mozilla.644:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Smartadserver :
Nettoyé.
:mozilla.433:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Tribalfusion :
Nettoyé.
:mozilla.456:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.457:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.513:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Yieldmanager :
Nettoyé.
:mozilla.514:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Yieldmanager :
Nettoyé.
:mozilla.515:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Yieldmanager :
Nettoyé.
:mozilla.516:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Yieldmanager :
Nettoyé.
:mozilla.517:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Yieldmanager :
Nettoyé.
C:\Documents and Settings\PAYMAN\Application Data\tmp119.tmp.exe -> Trojan.Agent.agv : Nettoyé et
sauvegardé (mise en quarantaine).
C:\Documents and Settings\PAYMAN\Application Data\tmp5.tmp.exe -> Trojan.Agent.aoy : Nettoyé et
sauvegardé (mise en quarantaine).
C:\Documents and Settings\PAYMAN\Application Data\tmp7.tmp.exe -> Trojan.Agent.aoy : Nettoyé et
sauvegardé (mise en quarantaine).
C:\Documents and Settings\PAYMAN\Local Settings\Temporary Internet
Files\Content.IE5\M20KYDIB\dns_bot_20070615[1] -> Trojan.Agent.aoy : Nettoyé et sauvegardé (mise
en quarantaine).
C:\System Volume Information\_restore{5D85A2D9-B3CE-4B46-95D2-2FDCDABE4DDD}\RP102\A0021860.exe ->
Trojan.Agent.aoy : Nettoyé et sauvegardé (mise en quarantaine).
Fin du rapport
cleancmd dit que le rapport va s'ouvrir appuyer sur une touche pour continuer mais rien s'ouvre ou
ca peut etre moi qui ne comprend pas sa langue? |
|
|
|
|
Barrette de RAM
Messages: 26
Tutoriaux : 0
|
| Posté le:
Mer 04 Juil 2007 12:18 Sujet : demand d'aid pour enlever trojan.win 32.agent.aoy |
|
devrais-je desinstaller la session de milad pur ne pas avoir des cookies de sexcounter? |
|
|
|
|
Geek
AidoAntivirus
Messages: 2470
Tutoriaux : 0
|
| Posté le:
Mer 04 Juil 2007 17:10 Sujet : demand d'aid pour enlever trojan.win 32.agent.aoy |
|
Bonjour 
Ne désinstalle rien pour le moment, par contre, reprends la procédure, tu ne l'as pas appliqué comme
il faut ...
Il manque le rapport de Clean de Malekal_morte, mais également, le rapport d'hijackthis doit etre
fait avec la version 1.99.1 et non la version 2 BETA, qui, comme son nom l'indique, est une version
BETA, donc non finalisée ...
En plus de la procédure, fais également ceci :
Télécharge VundoFix.exe (par Atribune) sur ton
Bureau.
- Double-clique VundoFix.exe afin de le lancer
- Clique sur le bouton Scan for Vundo
- Lorsque le scan est complété, clique sur le bouton Remove
Vundo
- Une invite te demandera si tu veux supprimer les fichiers, clique YES
- Après avoir cliqué "Yes", le Bureau disparaîtra un moment lors de la suppression des
fichiers
- Tu verras une invite qui t'annonce que ton PC va redémarrer; clique OK
- Copie/colle le contenu du rapport situé dans C:\vundofix.txt ainsi qu'un nouveau rapport HijackThis! dans ta prochaine réponse
Note: Il est possible que VundoFix soit confronté à un
fichier qu'il ne peut supprimer. Si tel est le cas, l'outil se lancera au prochain redémarrage; il
faut simplement suivre les instructions ci-haut, à partir de "clique sur le bouton Scan for Vundo".
Poste donc les 4 rapports : AVG-AS, clean option1, Vundofix et un rapport hijackthis avec la version
1.99.1.
Bonne soirée |
_________________
Anti-Malware Powa
 |
|
 |
|
Barrette de RAM
Messages: 26
Tutoriaux : 0
|
| Posté le:
Mer 04 Juil 2007 18:42 Sujet : demand d'aid pour enlever trojan.win 32.agent.aoy |
|
merci je vais essayer de bien faire cette fois |
|
|
|
|
Barrette de RAM
Messages: 26
Tutoriaux : 0
|
| Posté le:
Mer 04 Juil 2007 21:22 Sujet : demand d'aid pour enlever trojan.win 32.agent.aoy |
|
tous marche sauf clean
+ Créé à: 11:43:04 04/07/2007
+ Résultat de l'analyse:
C:\Documents and Settings\PAYMAN\Mes documents\mechanic-2.8.exe -> Adware.VB : Nettoyé et
sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{5D85A2D9-B3CE-4B46-95D2-2FDCDABE4DDD}\RP109\A0025674.DLL ->
Adware.Virtumonde : Nettoyé et sauvegardé (mise en quarantaine).
C:\System Volume Information\_restore{5D85A2D9-B3CE-4B46-95D2-2FDCDABE4DDD}\RP64\A0012811.exe ->
Backdoor.Skinymes.a : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\All Users\Documents\p2p\Setup.exe -> Dropper.Mudrop.du : Nettoyé et
sauvegardé (mise en quarantaine).
C:\Documents and Settings\PAYMAN\Mes documents\installer-34402-17-CCleaner-French.exe ->
Hijacker.StartPage.aop : Nettoyé et sauvegardé (mise en quarantaine).
C:\Documents and Settings\All Users\Documents\p2p\EvID4226Patch.exe -> Not-A-Virus.Hacktool.EvID
: Nettoyé et sauvegardé (mise en quarantaine).
:mozilla.13:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.247realmedia :
Nettoyé.
:mozilla.14:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.247realmedia :
Nettoyé.
:mozilla.16:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.17:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.18:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.19:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.20:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.21:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.22:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.325:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé.
:mozilla.404:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.41:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.42:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.43:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.44:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.45:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adbrite : Nettoyé.
:mozilla.554:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adengage : Nettoyé.
:mozilla.555:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adengage : Nettoyé.
:mozilla.556:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adengage : Nettoyé.
:mozilla.557:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adjuggler :
Nettoyé.
:mozilla.558:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adjuggler :
Nettoyé.
:mozilla.591:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adobe : Nettoyé.
:mozilla.52:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.53:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé.
:mozilla.177:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Clickzs : Nettoyé.
:mozilla.178:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Clickzs : Nettoyé.
:mozilla.179:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Clickzs : Nettoyé.
:mozilla.180:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Clickzs : Nettoyé.
:mozilla.538:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.539:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.540:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Comclick : Nettoyé.
:mozilla.212:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Estat : Nettoyé.
:mozilla.67:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Falkag : Nettoyé.
:mozilla.70:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Falkag : Nettoyé.
:mozilla.258:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Imrworldwide :
Nettoyé.
:mozilla.259:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Imrworldwide :
Nettoyé.
:mozilla.548:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Masterstats :
Nettoyé.
:mozilla.353:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.354:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.355:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Overture : Nettoyé.
:mozilla.629:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Paypal : Nettoyé.
:mozilla.387:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.388:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.522:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Revsci : Nettoyé.
:mozilla.126:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.127:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.128:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.129:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.130:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.131:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.132:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.133:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.134:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.135:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.136:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.137:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.138:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.139:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.140:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.141:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.142:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.143:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.144:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.145:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.146:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.147:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.148:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.149:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.150:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.151:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.152:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.153:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.154:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.155:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.156:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.157:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.158:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.159:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.160:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.161:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.162:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.163:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.164:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.165:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.166:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.167:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.168:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.169:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.170:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.171:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.172:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.173:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.174:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.175:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Sexcounter :
Nettoyé.
:mozilla.397:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Smartadserver :
Nettoyé.
:mozilla.642:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Smartadserver :
Nettoyé.
:mozilla.643:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Smartadserver :
Nettoyé.
:mozilla.644:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Smartadserver :
Nettoyé.
:mozilla.433:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Tribalfusion :
Nettoyé.
:mozilla.456:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.457:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé.
:mozilla.513:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Yieldmanager :
Nettoyé.
:mozilla.514:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Yieldmanager :
Nettoyé.
:mozilla.515:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Yieldmanager :
Nettoyé.
:mozilla.516:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Yieldmanager :
Nettoyé.
:mozilla.517:C:\Documents and Settings\MILAD\Application
Data\Mozilla\Firefox\Profiles\5cuyn1a8.default\cookies.txt -> TrackingCookie.Yieldmanager :
Nettoyé.
C:\Documents and Settings\PAYMAN\Application Data\tmp119.tmp.exe -> Trojan.Agent.agv : Nettoyé et
sauvegardé (mise en quarantaine).
C:\Documents and Settings\PAYMAN\Application Data\tmp5.tmp.exe -> Trojan.Agent.aoy : Nettoyé et
sauvegardé (mise en quarantaine).
C:\Documents and Settings\PAYMAN\Application Data\tmp7.tmp.exe -> Trojan.Agent.aoy : Nettoyé et
sauvegardé (mise en quarantaine).
C:\Documents and Settings\PAYMAN\Local Settings\Temporary Internet
Files\Content.IE5\M20KYDIB\dns_bot_20070615[1] -> Trojan.Agent.aoy : Nettoyé et sauvegardé (mise
en quarantaine).
C:\System Volume Information\_restore{5D85A2D9-B3CE-4B46-95D2-2FDCDABE4DDD}\RP102\A0021860.exe ->
Trojan.Agent.aoy : Nettoyé et sauvegardé (mise en quarantaine).
Fin du rapport
Logfile of HijackThis v1.99.1
Scan saved at 22:16:41, on 04/07/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Startup Mechanic\StartupMonitor.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\VM303_STI.EXE
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Microsoft ActiveSync\Wcescomm.exe
C:\PROGRA~1\MI3AA1~1\rapimgr.exe
C:\Program Files\Club-Internet\Le Compagnon Club\bin\mpbtn.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\PAYMAN\Mes documents\hijackthis\aido.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.live.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer avec
Club-Internet
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program
Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program
Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {b0539129-0a8b-49a4-b7d2-cd96f7aa9030} - (no file)
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program
Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program
Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [Startup Manager Scanner] C:\Program Files\Startup Mechanic\StartupMonitor.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware
7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft
ActiveSync\Wcescomm.exe"
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma
Loader.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers
communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: LE COMPAGNON CLUB.lnk = C:\Program Files\Club-Internet\Le Compagnon
Club\bin\matcli.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk.disabled
O4 - Global Startup: Adobe Reader Synchronizer.lnk.disabled
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program
Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -
C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} -
C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} -
C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... -
{2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers
communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network
Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} -
%windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program
Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program
Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O14 - IERESET.INF: START_PAGE_URL=http://GLOBAL.ACER.COM/
O15 - Trusted Zone: *.musicmatch.com
O15 - Trusted Zone: *.musicmatch.com (HKLM)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program
Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.safety.live.com/resource/download/scanner/wlscbase8460.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} -
C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -
C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: wowr32 - wowr32.dll (file missing)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} -
C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems
Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil
Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Autodesk Licensing Service - Unknown owner - C:\Program Files\Fichiers
communs\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil
Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil
Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil
Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware
7.5\guard.exe
O23 - Service: DomainService - Unknown owner - C:\Documents and Settings\PAYMAN\Application
Data\tmp117.tmp.exe (file missing)
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers
communs\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program
Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program
Files\CyberLink\Shared Files\RichVideo.exe
VundoFix V6.5.4
Checking Java version...
Java version is 1.4.2.1
Old versions of java are exploitable and should be removed.
Scan started at 22:03:21 04/07/2007
Listing files found while scanning....
C:\WINDOWS\system32\tmp7.tmp.dll
Beginning removal...
Attempting to delete C:\WINDOWS\system32\tmp7.tmp.dll
C:\WINDOWS\system32\tmp7.tmp.dll Has been deleted!
Performing Repairs to the registry.
Done!
j'ai re telechargé clean et suivi les instruction mais le console disparait a chaque fois et je n'ai
pas de raport que faire s'il te plait? |
|
|
|
|
Geek
AidoAntivirus
Messages: 2470
Tutoriaux : 0
|
| Posté le:
Jeu 05 Juil 2007 20:47 Sujet : demand d'aid pour enlever trojan.win 32.agent.aoy |
|
Bonsoir 
Joli boulot 
Pour clean (tu l'as bien dézippé/extrait tout en entier ??),
le rapport se trouve ici : C:\rapport_clean.txt , poste le stp.
Fais ensuite ceci :
=======================
- Fais un scan en ligne Kaspersky avec Internet Explorer
:
- Dans la nouvelle fenêtre, clique sur J'accepte.
- Valide l'installation d'un ou de plusieurs ActiveX si
c'est nécessaire.
- Patiente pendant l'installation des Mises à jour.
- Choisis par la suite l'analyse du Poste de travail
- Sauvegarde puis colle le rapport généré en fin
d'analyse.
AIDE : Configurer le contrôle des
ActiveX
NOTE : Si tu reçois le
message "La licence de Kaspersky On-line Scanner est périmée", va dans Ajout/Suppression de programmes puis désinstalle On-Line Scanner, reconnecte toi sur le site de Kaspersky pour retenter le scan en ligne.
========================
Poste moi les rapports suivants : clean option1, comboFix, et KasperskyOnline.
Bonne soirée/nuitée |
|
|
|
|
Barrette de RAM
Messages: 26
Tutoriaux : 0
|
| Posté le:
Ven 06 Juil 2007 08:53 Sujet : demand d'aid pour enlever trojan.win 32.agent.aoy |
|
salut voila rapport combofix
"PAYMAN" - 2007-07-06 9:17:09 - ComboFix 07-07-04.4 - Service Pack 2 FAT32
(((((((((((((((((((((((((((((((((((((((((((( V Log
)))))))))))))))))))))))))))))))))))))))))))))))))))))))
C:\WINDOWS\qomjgg.dll
C:\WINDOWS\ggjmoq.ini
* * * POST RUN FILES/FOLDERS * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
((((((((((((((((((((((((((((((((((((((( Other Deletions
)))))))))))))))))))))))))))))))))))))))))))))))))
C:\DOCUME~1\PAYMAN\APPLIC~1\tmp11A.tmp.exe
C:\setup.exe
C:\WINDOWS\system32\nvs2.inf
C:\WINDOWS\system32\tmp11A.tmp.dll
((((((((((((((((((((((((((((((((((((((( Drivers/Services
)))))))))))))))))))))))))))))))))))))))))))))))))
-------\LEGACY_DOMAINSERVICE
-------\DomainService
((((((((((((((((((((((((( Files Created from 2007-06-06 to 2007-07-06
)))))))))))))))))))))))))))))))
2007-07-06 09:15 51,200 --a------ C:\WINDOWS\nircmd.exe
2007-07-04 22:03 <REP> d-------- C:\VundoFix Backups
2007-07-03 18:06 10,872 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2007-07-03 11:40 <REP> d-------- C:\WINDOWS\system32\Kaspersky Lab
2007-06-29 22:39 69,632 --a------ C:\WINDOWS\system32\xmltok.dll
2007-06-29 22:39 36,864 --a------ C:\WINDOWS\system32\xmlparse.dll
2007-06-29 22:39 26,096 --a------ C:\WINDOWS\system32\xmlinst.exe
2007-06-29 22:39 24,576 --a------ C:\WINDOWS\system32\msxml3a.dll
2007-06-29 21:55 <REP> d-------- C:\Program Files\UBISOFT
2007-06-29 21:30 <REP> d-------- C:\Program Files\Ubi Soft
2007-06-29 21:29 <REP> d-------- C:\WINDOWS\UbiSoft
2007-06-18 11:18 <REP> d-------- C:\DOCUME~1\PAYMAN\APPLIC~1\Shareaza
2007-06-17 16:53 <REP> d-------- C:\DOCUME~1\PAYMAN\APPLIC~1\Desktop Mechanic
2007-06-17 16:52 <REP> d-------- C:\Program Files\Desktop Mechanic
2007-06-10 13:54 64,000 --a------ C:\WINDOWS\system32\esfw52.bin
2007-06-10 13:54 282,624 --a------ C:\WINDOWS\system32\esint52.dll
2007-06-10 13:54 180,224 --a------ C:\WINDOWS\system32\eswia52.dll
2007-06-10 13:53 <REP> d-------- C:\EPSON
(((((((((((((((((((((((((((((((((((((((( Find3M Report
))))))))))))))))))))))))))))))))))))))))))))))))))))
2007-06-29 20:44:04 12,528 ----a-w C:\WINDOWS\system32\drivers\secdrv.sys
2007-06-19 17:44:10 244 ----a-w C:\ituninst.bat
2007-06-04 18:40:58 -------- d-----w C:\Program Files\Nvu
2007-06-03 16:34:16 -------- d-----w C:\DOCUME~1\PAYMAN\APPLIC~1\Nvu
2007-06-03 12:46:56 -------- d-----w C:\Program Files\Matizha Sublime 3.0
2007-06-02 13:44:16 -------- d-----w C:\Program Files\Vimicro
2007-05-31 18:17:36 -------- d-----w C:\DOCUME~1\PAYMAN\APPLIC~1\TaoUSign
2007-05-31 17:20:16 5,498 ----a-w C:\WINDOWS\mozver.dat
2007-05-28 16:04:10 58,430 ----a-w C:\WINDOWS\system32\perfc00C.dat
2007-05-28 16:04:10 432,764 ----a-w C:\WINDOWS\system32\perfh00C.dat
2007-05-28 16:04:08 58,282 ----a-w C:\WINDOWS\system32\perfc040.dat
2007-05-28 16:04:08 432,386 ----a-w C:\WINDOWS\system32\perfh040.dat
2007-05-20 15:12:10 -------- d-----w C:\Program Files\Age Of Mythology
2007-05-20 15:11:24 720,896 ----a-w C:\WINDOWS\iun6002.exe
2007-05-16 15:13:54 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll
2007-05-14 16:09:42 -------- d-----w C:\Program Files\Safer Networking
2007-05-09 20:01:32 -------- d-----w C:\Program Files\Microsoft CAPICOM 2.1.0.2
2007-04-30 15:46:10 745,600 ----a-w C:\WINDOWS\system32\aswBoot.exe
2007-04-30 15:35:28 95,872 ----a-w C:\WINDOWS\system32\AVASTSS.scr
2007-04-27 12:01:08 422 ----a-w C:\WINDOWS\system32\pkoisj_navps.dat
2007-04-27 12:01:02 4,540 ----a-w C:\WINDOWS\system32\pkoisj.dat
2007-04-27 11:59:36 333,824 ----a-w C:\WINDOWS\system32\pkoisj.exe
2007-04-27 11:59:36 248,988 ----a-w C:\WINDOWS\system32\pkoisj_nav.dat
2007-04-25 14:22:36 144,896 ----a-w C:\WINDOWS\system32\schannel.dll
2007-04-25 12:02:44 72,472 ----a-w C:\DOCUME~1\PAYMAN\APPLIC~1\GDIPFONTCACHEV1.DAT
2007-04-18 16:14:18 2,854,400 ----a-w C:\WINDOWS\system32\msi.dll
2007-04-16 20:47:36 33,624 ----a-w C:\WINDOWS\system32\wups.dll
2007-04-16 20:45:54 1,710,936 ----a-w C:\WINDOWS\system32\wuaueng.dll
2007-04-16 20:45:48 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll
2007-04-16 20:45:42 325,976 ----a-w C:\WINDOWS\system32\wucltui.dll
2007-04-16 20:45:36 203,096 ----a-w C:\WINDOWS\system32\wuweb.dll
2007-04-16 20:45:28 92,504 ----a-w C:\WINDOWS\system32\cdm.dll
2007-04-16 20:45:20 53,080 ----a-w C:\WINDOWS\system32\wuauclt.exe
2007-04-16 20:45:20 43,352 ----a-w C:\WINDOWS\system32\wups2.dll
2007-04-16 20:44:20 271,224 ----a-w C:\WINDOWS\system32\mucltui.dll
2007-04-16 20:44:18 208,248 ----a-w C:\WINDOWS\system32\muweb.dll
2006-12-17 15:09:30 9,188 --sha-w C:\WINDOWS\system32\KGyGaAvL.sys
2006-12-17 13:30:50 56 --sh--r C:\WINDOWS\system32\3CEBE6F478.sys
((((((((((((((((((((((((((((((((((((( Reg Loading Points
))))))))))))))))))))))))))))))))))))))))))))))))))
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
2005-05-31 01:04 853672 --a------ C:\PROGRA~1\SPYBOT~1\SDHelper.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
2007-03-14 03:43 501400 --a------ C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
2006-08-31 20:33 322368 --a------ C:\Program Files\Fichiers communs\Microsoft Shared\Windows
Live\WindowsLiveLogin.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{b0539129-0a8b-49a4-b7d2-cd96f7aa9030}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}]
2007-02-12 15:56 546672 --a------ C:\Program Files\Windows Live Toolbar\msntb.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
[2004-06-10 21:10]
"Startup Manager Scanner"="C:\Program Files\Startup Mechanic\StartupMonitor.exe"
[2004-09-05 19:01]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-04-30 17:42]
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe"
[2007-06-11 11:25]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-20 00:09]
"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search &
Destroy\TeaTimer.exe" [2005-05-31 01:04]
"H/PC Connection Agent"="C:\Program Files\Microsoft ActiveSync\Wcescomm.exe"
[2006-11-13 14:07]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="C:\Program Files\Grisoft\AVG Anti-Spyware
7.5\shellexecutehook.dll" [2007-05-30 14:29]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\wowr32]
wowr32.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\AVG Anti-Spyware Driver]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\safeboot\minimal\AVG Anti-Spyware Guard]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"WinDefend"=2 (0x2)
"CLTNetCnService"=2 (0x2)
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"BigDog303"=C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH)
Contents of the 'Scheduled Tasks' folder
2007-07-06 07:06:10 C:\WINDOWS\tasks\Vérifier les mises à jour de Windows Live Toolbar.job
2007-06-28 12:41:06 C:\WINDOWS\tasks\MP Scheduled Scan.job
**************************************************************************
catchme 0.3.915 W2K/XP/Vista - rootkit detector by Gmer, http://www.gmer.net
Rootkit scan 2007-07-06 09:32:34
Windows 5.1.2600 Service Pack 2 FAT NTAPI
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
Completion time: 2007-07-06 9:36:08 - machine was rebooted
C:\ComboFix-quarantined-files.txt ... 2007-07-06 09:36
--- E O F ---
06/07/2007 a 9:43:43,23
*** Recherche des fichiers dans C:
*** Recherche des fichiers dans C:\WINDOWS\
*** Recherche des fichiers dans C:\WINDOWS\system32
"C:\Documents and Settings\PAYMAN\Application Data\MessengerSkinner\" FOUND
*** Recherche des fichiers dans C:\Program Files
je vais poster kaspersky separement
"C:\Program Files\MessengerSkinner\" FOUND
*** Fin du rapport ! |
|
|
|
|
Barrette de RAM
Messages: 26
Tutoriaux : 0
|
| Posté le:
Ven 06 Juil 2007 10:09 Sujet : demand d'aid pour enlever trojan.win 32.agent.aoy |
|
KASPERSKY ON-LINE SCANNER REPORT
Friday, July 06, 2007 11:03:04 AM
Système d'exploitation : Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
Kaspersky On-line Scanner version : 5.0.83.0
Dernière mise à jour de la base antivirus Kaspersky : 6/07/2007
Enregistrements dans la base antivirus Kaspersky : 336699
Paramètres d'analyse
Analyser avec la base antivirus suivante standard
Analyser les archives vrai
Analyser les bases de messagerie vrai
Cible de l'analyse Poste de travail
A:\
C:\
D:\
E:\
F:\
G:\
I:\
J:\
L:\
Statistiques de l'analyse
Total d'objets analysés 108441
Nombre de virus trouvés 0
Nombre d'objets infectés 0 / 0
Nombre d'objets suspects 0
Durée de l'analyse 01:12:10
Nom de l'objet infecté Nom du virus Dernière action
C:\WINDOWS\system32\config\system.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\software.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\default.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SAM.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SECURITY.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SysEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\AppEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SecEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\Internet.evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\Antivirus.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SECURITY L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SOFTWARE L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SYSTEM L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\DEFAULT L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SAM L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER L'objet est verrouillé ignoré
C:\WINDOWS\system32\h323log.txt L'objet est verrouillé ignoré
C:\WINDOWS\Temp\_avast4_\Webshlock.txt L'objet est verrouillé ignoré
C:\WINDOWS\Temp\Perflib_Perfdata_4e0.dat L'objet est verrouillé ignoré
C:\WINDOWS\Debug\PASSWD.LOG L'objet est verrouillé ignoré
C:\WINDOWS\wiaservc.log L'objet est verrouillé ignoré
C:\WINDOWS\wiadebug.log L'objet est verrouillé ignoré
C:\WINDOWS\WindowsUpdate.log L'objet est verrouillé ignoré
C:\WINDOWS\SchedLgU.Txt L'objet est verrouillé ignoré
C:\WINDOWS\Sti_Trace.log L'objet est verrouillé ignoré
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log L'objet est verrouillé ignoré
C:\WINDOWS\SoftwareDistribution\DataStore\Logs\edb.log L'objet est verrouillé ignoré
C:\WINDOWS\SoftwareDistribution\DataStore\Logs\tmp.edb L'objet est verrouillé ignoré
C:\WINDOWS\SoftwareDistribution\DataStore\DataStore.edb L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Historique\History.IE5\index.dat L'objet
est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet
Files\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Application
Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Application
Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Cookies\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\index.dat L'objet est
verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat
L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Application
Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Application
Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Temp\Fichiers Internet
temporaires\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Temp\Cookies\index.dat L'objet est verrouillé
ignoré
C:\Documents and Settings\LocalService\Local Settings\Temp\History\History.IE5\index.dat L'objet
est verrouillé ignoré
C:\Documents and Settings\LocalService\Cookies\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\PAYMAN\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\PAYMAN\Local Settings\Temp\WCESLog.log L'objet est verrouillé ignoré
C:\Documents and Settings\PAYMAN\Local
Settings\Historique\History.IE5\MSHist012007070620070707\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\PAYMAN\Local Settings\Historique\History.IE5\index.dat L'objet est
verrouillé ignoré
C:\Documents and Settings\PAYMAN\Local Settings\Temporary Internet Files\Content.IE5\index.dat
L'objet est verrouillé ignoré
C:\Documents and Settings\PAYMAN\Local Settings\Temporary Internet
Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat L'objet est verrouillé ignoré
C:\Documents and Settings\PAYMAN\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG
L'objet est verrouillé ignoré
C:\Documents and Settings\PAYMAN\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat
L'objet est verrouillé ignoré
C:\Documents and Settings\PAYMAN\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat
L'objet est verrouillé ignoré
C:\Documents and Settings\PAYMAN\Local Settings\Application
Data\Mozilla\Firefox\Profiles\3raag7x9.default\Cache\_CACHE_MAP_ L'objet est verrouillé ignoré
C:\Documents and Settings\PAYMAN\Local Settings\Application
Data\Mozilla\Firefox\Profiles\3raag7x9.default\Cache\_CACHE_001_ L'objet est verrouillé ignoré
C:\Documents and Settings\PAYMAN\Local Settings\Application
Data\Mozilla\Firefox\Profiles\3raag7x9.default\Cache\_CACHE_002_ L'objet est verrouillé ignoré
C:\Documents and Settings\PAYMAN\Local Settings\Application
Data\Mozilla\Firefox\Profiles\3raag7x9.default\Cache\_CACHE_003_ L'objet est verrouillé ignoré
C:\Documents and Settings\PAYMAN\Cookies\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\PAYMAN\Application
Data\Mozilla\Firefox\Profiles\3raag7x9.default\history.dat L'objet est verrouillé ignoré
C:\Documents and Settings\PAYMAN\Application Data\Mozilla\Firefox\Profiles\3raag7x9.default\cert8.db
L'objet est verrouillé ignoré
C:\Documents and Settings\PAYMAN\Application Data\Mozilla\Firefox\Profiles\3raag7x9.default\key3.db
L'objet est verrouillé ignoré
C:\Documents and Settings\PAYMAN\Application
Data\Mozilla\Firefox\Profiles\3raag7x9.default\formhistory.dat L'objet est verrouillé ignoré
C:\Documents and Settings\PAYMAN\Application
Data\Mozilla\Firefox\Profiles\3raag7x9.default\search.sqlite L'objet est verrouillé ignoré
C:\Documents and Settings\PAYMAN\Application
Data\Mozilla\Firefox\Profiles\3raag7x9.default\urlclassifier2.sqlite L'objet est verrouillé
ignoré
C:\Documents and Settings\PAYMAN\Application Data\$_hpcst$.hpc L'objet est verrouillé ignoré
C:\Documents and Settings\PAYMAN\ntuser.dat L'objet est verrouillé ignoré
C:\Program Files\Club-Internet\Le Compagnon Club\log\mpbtn.log L'objet est verrouillé ignoré
C:\Program Files\Alwil Software\Avast4\DATA\report\Protection résidente.txt L'objet est verrouillé
ignoré
C:\Program Files\Alwil Software\Avast4\DATA\log\nshield.log L'objet est verrouillé ignoré
C:\Program Files\Alwil Software\Avast4\DATA\log\AshWebSv.ws L'objet est verrouillé ignoré
C:\Program Files\Alwil Software\Avast4\DATA\log\aswMaiSv.log L'objet est verrouillé ignoré
C:\Program Files\Alwil Software\Avast4\DATA\integ\avast.int L'objet est verrouillé ignoré
C:\Program Files\Alwil Software\Avast4\DATA\aswResp.dat L'objet est verrouillé ignoré
C:\Program Files\Alwil Software\Avast4\DATA\Avast4.db L'objet est verrouillé ignoré
| | | |
