plein de spyware / trojan :'(
Dernière réponse : dans Sécurité
Bonjour
J'ai bcp de spyware et de trojan, voici les principaux : Trojan.small / Virtumonde / trojan-downloader-zlob / le " your computeur is infected / Issas
Issas, meme malgrés le log de symantec, n'est pas detecté.
Liste des opérations déjà faites :
- SmitfraudFix > rapport + clean en mode sans echec
- passage de Ad ware SE
- passage de Spybot
- passage de A² ( qui els detectent tous mais ne les supprime pas )
- passage de Kasperky, AVG
- CC cleaner
- Ewido
--------------------------------------------------------------------------
Log Hijack
Logfile of HijackThis v1.99.1
Scan saved at 10:21:45, on 06/07/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\vsnpstd.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\Documents and Settings\Flo\Mes documents\F?nts\m?hta.exe
C:\WINDOWS\ICROSO~1.NET\notepad.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\Belkin\Logiciel Bluetooth\BTTray.exe
C:\Program Files\Belkin\Logiciel Bluetooth\bin\btwdins.exe
C:\PROGRA~1\Belkin\LOGICI~1\BTSTAC~1.EXE
C:\PROGRA~1\NCTV\bin\dm.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
C:\Program Files\Mozilla Firefox\firefox.exe
E:\jeux\half life\steam\Steam.exe
C:\Documents and Settings\Flo\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (file missing)
O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [snpstd] C:\WINDOWS\vsnpstd.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [a-squared] "C:\Program Files\a-squared Anti-Malware\a2guard.exe"
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKLM\..\Run: [kav] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Jjswji] C:\Documents and Settings\Flo\Mes documents\F?nts\m?hta.exe
O4 - HKCU\..\Run: [Istb] "C:\WINDOWS\ICROSO~1.NET\notepad.exe" -vt yax
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: BTTray.lnk = ?
O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\Belkin\Logiciel Bluetooth\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Antivirus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Belkin\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Belkin\Logiciel Bluetooth\btsendto_ie.htm
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/re [...] oscan8.cab
O16 - DPF: {6E5A37BF-FD42-463A-877C-4EB7002E68AE} (Trend Micro ActiveX Scan Agent 6.5) - http://housecall65.trendmicro.com/ [...] hcImpl.cab
O16 - DPF: {74CD40EA-EF77-4BAD-808A-B5982DA73F20} - http://yax-download.yazzle.net/Yaz [...] refid=1123
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - AppInit_DLLs: C:\WINDOWS\System32\chkdsk.dll
O21 - SSODL: furnariidae - {89e4aaba-3b21-49b3-b922-8ca35193c68e} - C:\Documents and Settings\Flo\Application Data\Microsoft\MSN Messenger.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Belkin\Logiciel Bluetooth\bin\btwdins.exe
O23 - Service: Download Manager Lite Service (DownloadManagerLite) - NetCableTV - C:\PROGRA~1\NCTV\bin\dm.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
------------------------------------------------------------------------------------------------------
Ewido
Report EWIDO
ewido anti-spyware - Scan Report
---------------------------------------------------------
+ Created at: 23:55:21 05/07/2006
+ Scan result:
C:\WINDOWS\system32\ddccbbx.dll -> Adware.Virtumonde : No action taken.
:mozilla.11:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.12:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.13:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.14:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.76:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.77:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.78:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.25:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Bluestreak : No action taken.
:mozilla.18:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Doubleclick : No action taken.
:mozilla.67:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.68:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.69:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.70:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.85:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.57:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.58:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.59:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.60:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.15:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.16:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.17:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.80:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.81:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.20:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Weborama : No action taken.
:mozilla.21:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Weborama : No action taken.
C:\WINDOWS\system32\1024 -> Trojan.Small : No action taken.
C:\WINDOWS\system32\atmclk.exe -> Trojan.Small : No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer\run\\kernel32.dll -> Trojan.Small : No action taken.
::Report end
---------------------------------------------------------------------------------------------------------
BIT DEFENDER
BitDefender Online Scanner - Real Time Virus Report
Generated at: Thu, Jul 06, 2006 - 05:13:21
Scan Info
Scanned Files
290927
Infected Files
5
Virus Detected
Trojan.Hacktool.Scan.A
1
Virtool.Fxscanner.B
1
Backdoor.Servudoor.I
2
Application.MBMON.A
1
This summary of the scan process will be used by the BitDefender Antivirus Lab to create agregate statistics about virus activity around the world.
Voila, pourriez vous m'aider s'il vous plait ?
merci
J'ai bcp de spyware et de trojan, voici les principaux : Trojan.small / Virtumonde / trojan-downloader-zlob / le " your computeur is infected / Issas
Issas, meme malgrés le log de symantec, n'est pas detecté.
Liste des opérations déjà faites :
- SmitfraudFix > rapport + clean en mode sans echec
- passage de Ad ware SE
- passage de Spybot
- passage de A² ( qui els detectent tous mais ne les supprime pas )
- passage de Kasperky, AVG
- CC cleaner
- Ewido
--------------------------------------------------------------------------
Log Hijack
Logfile of HijackThis v1.99.1
Scan saved at 10:21:45, on 06/07/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe
C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\vsnpstd.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\Documents and Settings\Flo\Mes documents\F?nts\m?hta.exe
C:\WINDOWS\ICROSO~1.NET\notepad.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\Belkin\Logiciel Bluetooth\BTTray.exe
C:\Program Files\Belkin\Logiciel Bluetooth\bin\btwdins.exe
C:\PROGRA~1\Belkin\LOGICI~1\BTSTAC~1.EXE
C:\PROGRA~1\NCTV\bin\dm.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
C:\Program Files\Mozilla Firefox\firefox.exe
E:\jeux\half life\steam\Steam.exe
C:\Documents and Settings\Flo\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (file missing)
O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb04.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [snpstd] C:\WINDOWS\vsnpstd.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [a-squared] "C:\Program Files\a-squared Anti-Malware\a2guard.exe"
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKLM\..\Run: [kav] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Jjswji] C:\Documents and Settings\Flo\Mes documents\F?nts\m?hta.exe
O4 - HKCU\..\Run: [Istb] "C:\WINDOWS\ICROSO~1.NET\notepad.exe" -vt yax
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: BTTray.lnk = ?
O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\Belkin\Logiciel Bluetooth\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Antivirus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Belkin\Logiciel Bluetooth\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Belkin\Logiciel Bluetooth\btsendto_ie.htm
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/re [...] oscan8.cab
O16 - DPF: {6E5A37BF-FD42-463A-877C-4EB7002E68AE} (Trend Micro ActiveX Scan Agent 6.5) - http://housecall65.trendmicro.com/ [...] hcImpl.cab
O16 - DPF: {74CD40EA-EF77-4BAD-808A-B5982DA73F20} - http://yax-download.yazzle.net/Yaz [...] refid=1123
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - AppInit_DLLs: C:\WINDOWS\System32\chkdsk.dll
O21 - SSODL: furnariidae - {89e4aaba-3b21-49b3-b922-8ca35193c68e} - C:\Documents and Settings\Flo\Application Data\Microsoft\MSN Messenger.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Belkin\Logiciel Bluetooth\bin\btwdins.exe
O23 - Service: Download Manager Lite Service (DownloadManagerLite) - NetCableTV - C:\PROGRA~1\NCTV\bin\dm.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
------------------------------------------------------------------------------------------------------
Ewido
Report EWIDO
ewido anti-spyware - Scan Report
---------------------------------------------------------
+ Created at: 23:55:21 05/07/2006
+ Scan result:
C:\WINDOWS\system32\ddccbbx.dll -> Adware.Virtumonde : No action taken.
:mozilla.11:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.12:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.13:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.14:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.76:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.77:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.78:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.25:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Bluestreak : No action taken.
:mozilla.18:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Doubleclick : No action taken.
:mozilla.67:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.68:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.69:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.70:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.85:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.57:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.58:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.59:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.60:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.15:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.16:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.17:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.80:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.81:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.20:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Weborama : No action taken.
:mozilla.21:C:\Documents and Settings\Flo\Application Data\Mozilla\Firefox\Profiles\default.z25\cookies.txt -> TrackingCookie.Weborama : No action taken.
C:\WINDOWS\system32\1024 -> Trojan.Small : No action taken.
C:\WINDOWS\system32\atmclk.exe -> Trojan.Small : No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer\run\\kernel32.dll -> Trojan.Small : No action taken.
::Report end
---------------------------------------------------------------------------------------------------------
BIT DEFENDER
BitDefender Online Scanner - Real Time Virus Report
Generated at: Thu, Jul 06, 2006 - 05:13:21
Scan Info
Scanned Files
290927
Infected Files
5
Virus Detected
Trojan.Hacktool.Scan.A
1
Virtool.Fxscanner.B
1
Backdoor.Servudoor.I
2
Application.MBMON.A
1
This summary of the scan process will be used by the BitDefender Antivirus Lab to create agregate statistics about virus activity around the world.
Voila, pourriez vous m'aider s'il vous plait ?
merci
Autres pages sur : plein spyware trojan
Lassé par la pub ? Créez un compte
R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
O16 - DPF: {74CD40EA-EF77-4BAD-808A-B5982DA73F20} - http://yax-download.yazzle.net/Yaz [...] refid=1123
O20 - AppInit_DLLs: C:\WINDOWS\System32\chkdsk.dll
Ces lignes me paraissent louches je pense que tu peux le fixer sans risque en fesant "fix checked"
derniere chose connait tu un programme du nom de "Download Manager Lite Service" ??
O16 - DPF: {74CD40EA-EF77-4BAD-808A-B5982DA73F20} - http://yax-download.yazzle.net/Yaz [...] refid=1123
O20 - AppInit_DLLs: C:\WINDOWS\System32\chkdsk.dll
Ces lignes me paraissent louches je pense que tu peux le fixer sans risque en fesant "fix checked"
derniere chose connait tu un programme du nom de "Download Manager Lite Service" ??
bonjour
je suis occupé , je n'ai pas tout lu, mais
----------------------
tu as une infection vundo
télécharger
Vundofix
= Double-clic VundoFix.exe.
=Cocher la case Run VundoFix as a task.
=Attendre le redemarrage de Vundofix
=Clic Scan for Vundo..
=Puis clic Remove Vundo.
= Puis yes
= Le Bureau disparaît un moment lors de la suppression des fichiers.
=Message shutdown; clic OK
=Redémarrer
-------------------
refaire ewido et à la fin
Supprimer ce qu’il trouve = Apply all actions
car au premier no action taken= rien fait
------------------
poster rapports + hijack nouveau
je suis occupé , je n'ai pas tout lu, mais
----------------------
tu as une infection vundo
télécharger
Vundofix
= Double-clic VundoFix.exe.
=Cocher la case Run VundoFix as a task.
=Attendre le redemarrage de Vundofix
=Clic Scan for Vundo..
=Puis clic Remove Vundo.
= Puis yes
= Le Bureau disparaît un moment lors de la suppression des fichiers.
=Message shutdown; clic OK
=Redémarrer
-------------------
refaire ewido et à la fin
Supprimer ce qu’il trouve = Apply all actions
car au premier no action taken= rien fait
------------------
poster rapports + hijack nouveau
j'ai fais ce que tu m'a dis, je sais pas si ca a supprimé qque chose, mais j'ai encore l'cione du " virus alert " dans ma barre des taches ![:(]( ":(")
Pour Ewido y a que chez moi qu'il propose rien, il scan et me demande jamasi ce que je veux faire :x
comment être averti et traiter manuellement les trucs qu'il trouve ?
Pour Ewido y a que chez moi qu'il propose rien, il scan et me demande jamasi ce que je veux faire :x
comment être averti et traiter manuellement les trucs qu'il trouve ?
edit: as tu utiliser la dernière version de smitfraudfix : 2.68 sinon
télécharger
SmitfraudFix
de plus 2 anti-virus
avg et kaspersky
désinstaller un de deux entièrement
télécharger
SmitfraudFix
de plus 2 anti-virus
avg et kaspersky
désinstaller un de deux entièrement
Lassé par la pub ? Créez un compte
- Contenus similaires :
- ForumVirus spam spyware trojan avec des screens
- ForumSpyware trojan ou virus
- ForumAnti spyware trojan
- ForumOrdi infecte par spyware ou trojan
- ForumSpyware trojan
- ForumVirus spyware trojan
- ForumVirus par milliers spyware, trojan, adware.
- ForumVirus spyware trojan probleme
- ForumSpyware et trojan
- ForumAnti spyware et trojan
- Voir plus
