Aller au contenu


Photo
- - - - -

comment fair pour traiter un fichier systeme infecté ?


  • Veuillez vous connecter pour répondre
4 réponses à ce sujet

#1 abricot31

abricot31

    Member

  • Membres
  • 91 messages

Posté 19 mars 2008 - 03:14

bonjour :P me revoila sur zebulon pour une nouvelle aventure lol . alors voila , a la suite d un scan online kaspersky routinier je m apercoi de l existance d un fichier dll dap infecté dont voici le rapport (rapport du scan);





-------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER REPORT
Sunday, March 16, 2008 3:01:22 PM
Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 16/03/2008
Kaspersky Anti-Virus database records: 633389
-------------------------------------------------------------------------------

Scan Settings:
Scan using the following antivirus database: extended
Scan Archives: true
Scan Mail Bases: true

Scan Target - My Computer:
A:\
C:\
D:\
E:\

Scan Statistics:
Total number of scanned objects: 69446
Number of viruses found: 1
Number of infected objects: 1
Number of suspicious objects: 0
Duration of the scan process: 01:01:00

Infected Object Name / Virus Name / Last Action
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\pwb4weoo.default\cert8.db Object is locked skipped
C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\pwb4weoo.default\history.dat Object is locked skipped
C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\pwb4weoo.default\key3.db Object is locked skipped
C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\pwb4weoo.default\parent.lock Object is locked skipped
C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\pwb4weoo.default\search.sqlite Object is locked skipped
C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\pwb4weoo.default\urlclassifier2.sqlite Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\call1024.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\call256.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\call512.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\callmember256.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chat1024.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chat16384.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chat2048.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chat256.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chat4096.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chat512.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chat8192.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmember256.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmsg1024.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmsg16384.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmsg2048.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmsg256.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmsg32768.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmsg4096.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmsg512.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmsg8192.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatsync\08\0862dee022f7772b.dat Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatsync\75\758b62797cacd828.dat Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatsync\aa\aa25acad3000372c.dat Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatsync\bd\bd3a79b54a387054.dat Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatsync\d2\d2eb8eb087f3963b.dat Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\contactgroup256.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\dyncontent\bundle.dat Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\index2.dat Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\profile16384.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\transfer256.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\transfer512.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\user1024.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\user16384.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\user256.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\user32768.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\user4096.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\voicemail256.dbb Object is locked skipped
C:\Documents and Settings\user\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___01 kyrie.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___03 didier barbelivien et felix gray - on apprend a aimer.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___08 -claude barzotti - la maison d'irlande.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___anais & didier barbelivien - les mariés de vendée(2).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___anais & didier barbelivien - quitter l'autoroute.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___barriere alain- elle etait si jolie(1).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___claude barzotti - chanson pour te dire je t'aime.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___claude barzotti - je vous aime (2).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___claude barzotti - le rital.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___claude barzotti- je serai là.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___claude nougaro - nougayork(2).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___claude nougaro - nougayork.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___copie de copie de wael jassar - ragheb alama - mughram ya layl.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___didier barbelivien - elle.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___didier barbelivien - les moulins de mon coeur.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___didier barbelivien et felix gray - la gitane(2).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___felix gray & didier barbelivien - les mariés de vendée.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___francois claude - belle, belle, belle.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___grosses daubes - didier barbelivien - la ou je t'aime.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___haifa wehbe - baddi 3eesh(3).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___haifa wehbe - nar el ashwak(3).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___haifa-wahby_fakerny.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___hervé vilard - nous.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___isabelle boulay & claude nougaro - tu verras (inédit).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___kazem el saher - ana wa laila.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___level 42 - it's over(2)(2).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___level 42 - lessons in love.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___level 42 - something about you (1).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___louis amstrong - claude nougaro.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___mademoiselle chante le blues.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___marwan_khory_ft_carol_sama7a-ya_rab.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___mazikana_iwan - ahlan-wa-sahlan.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - a minuit, midi.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - besoin de toi.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - gloria.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - holidays(2).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - la mouche.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - la poupee qui fait non(2).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - les mots bleu(3).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - lettre à france(2).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - lettre à france(3).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - lettre à france.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - love me please, love me.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - on ira tous au paradis.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - tam tam.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - une simple melodie.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref tam tam.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___mr mister - broken wings - broken wings.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Mozilla\Firefox\Profiles\pwb4weoo.default\Cache\_CACHE_001_ Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Mozilla\Firefox\Profiles\pwb4weoo.default\Cache\_CACHE_002_ Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Mozilla\Firefox\Profiles\pwb4weoo.default\Cache\_CACHE_003_ Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Mozilla\Firefox\Profiles\pwb4weoo.default\Cache\_CACHE_MAP_ Object is locked skipped
C:\Documents and Settings\user\Local Settings\Historique\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\user\Local Settings\Historique\History.IE5\MSHist012008031620080317\index.dat Object is locked skipped
C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\user\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\user\ntuser.dat.LOG Object is locked skipped
C:\Program Files\Alwil Software\Avast4\DATA\aswResp.dat Object is locked skipped
C:\Program Files\Alwil Software\Avast4\DATA\Avast4.db Object is locked skipped
C:\Program Files\Alwil Software\Avast4\DATA\log\AshWebSv.ws Object is locked skipped
C:\Program Files\Alwil Software\Avast4\DATA\log\aswMaiSv.log Object is locked skipped
C:\Program Files\Alwil Software\Avast4\DATA\log\nshield.log Object is locked skipped
C:\Program Files\Alwil Software\Avast4\DATA\report\Protection résidente.txt Object is locked skipped
C:\Program Files\DAP\DAPIEBar.dll Infected: not-a-virus:AdWare.Win32.Dap.e skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
C:\System Volume Information\_restore{98C79A28-BB8A-4F9F-B7F8-88910C9E04F6}\RP40\change.log Object is locked skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS\Internet Logs\fwdbglog.txt Object is locked skipped
C:\WINDOWS\Internet Logs\fwpktlog.txt Object is locked skipped
C:\WINDOWS\Internet Logs\IAMDB.RDB Object is locked skipped
C:\WINDOWS\Internet Logs\tvDebug.log Object is locked skipped
C:\WINDOWS\Internet Logs\USER-6C29F98C60.ldb Object is locked skipped
C:\WINDOWS\SchedLgU.Txt Object is locked skipped
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped
C:\WINDOWS\Sti_Trace.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped
C:\WINDOWS\system32\config\Antivirus.Evt Object is locked skipped
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\default Object is locked skipped
C:\WINDOWS\system32\config\default.LOG Object is locked skipped
C:\WINDOWS\system32\config\SAM Object is locked skipped
C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\SECURITY Object is locked skipped
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS\system32\config\software Object is locked skipped
C:\WINDOWS\system32\config\software.LOG Object is locked skipped
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\system Object is locked skipped
C:\WINDOWS\system32\config\system.LOG Object is locked skipped
C:\WINDOWS\system32\h323log.txt Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
C:\WINDOWS\Temp\Perflib_Perfdata_740.dat Object is locked skipped
C:\WINDOWS\Temp\ZLT025e3.TMP Object is locked skipped
C:\WINDOWS\Temp\ZLT025e6.TMP Object is locked skipped
C:\WINDOWS\Temp\_avast4_\Webshlock.txt Object is locked skipped
C:\WINDOWS\wiadebug.log Object is locked skipped
C:\WINDOWS\wiaservc.log Object is locked skipped
C:\WINDOWS\WindowsUpdate.log Object is locked skipped

Scan process completed.


suite a quoi je decide de suprimmer le fichier en question (C:\Program Files\DAP\DAPIEBar.dll Infected: not-a-virus:AdWare.Win32.Dap.e) je refait un autre scan online , je le retrouve mais ds un autre endroit , mon cousin me conseil de faire un scan au demarage avec mon antivirus(avast) mais il n a rien trouvé , avg antispy non plus :P
voici les 2 dernier rapport kasperski , merci pour votre aide






-------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER REPORT
Sunday, March 16, 2008 4:11:16 PM
Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 16/03/2008
Kaspersky Anti-Virus database records: 633598
-------------------------------------------------------------------------------

Scan Settings:
Scan using the following antivirus database: extended
Scan Archives: true
Scan Mail Bases: true

Scan Target - My Computer:
A:\
C:\
D:\
E:\

Scan Statistics:
Total number of scanned objects: 69495
Number of viruses found: 1
Number of infected objects: 1
Number of suspicious objects: 0
Duration of the scan process: 00:59:41

Infected Object Name / Virus Name / Last Action
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\call1024.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\call256.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\call512.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\callmember256.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chat1024.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chat16384.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chat2048.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chat256.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chat4096.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chat512.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chat8192.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmember256.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmsg1024.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmsg16384.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmsg2048.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmsg256.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmsg32768.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmsg4096.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmsg512.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmsg8192.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatsync\02\02cf0fae76c6cd31.dat Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatsync\7a\7aac103e4895c001.dat Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatsync\ab\abfcacd4bfbaa8ef.dat Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatsync\bd\bd3a79b54a387054.dat Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatsync\d2\d2eb8eb087f3963b.dat Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\contactgroup256.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\dyncontent\bundle.dat Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\index2.dat Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\profile16384.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\transfer256.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\transfer512.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\user1024.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\user16384.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\user256.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\user32768.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\user4096.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\voicemail256.dbb Object is locked skipped
C:\Documents and Settings\user\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\user\Local Settings\Historique\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\user\Local Settings\Historique\History.IE5\MSHist012008031620080317\index.dat Object is locked skipped
C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\user\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\user\ntuser.dat.LOG Object is locked skipped
C:\Program Files\Alwil Software\Avast4\DATA\aswResp.dat Object is locked skipped
C:\Program Files\Alwil Software\Avast4\DATA\Avast4.db Object is locked skipped
C:\Program Files\Alwil Software\Avast4\DATA\log\AshWebSv.ws Object is locked skipped
C:\Program Files\Alwil Software\Avast4\DATA\log\aswMaiSv.log Object is locked skipped
C:\Program Files\Alwil Software\Avast4\DATA\log\nshield.log Object is locked skipped
C:\Program Files\Alwil Software\Avast4\DATA\report\Protection résidente.txt Object is locked skipped
C:\Program Files\DAP\History\user\_lasthist.dat Object is locked skipped
C:\Program Files\DAP\Log\DAP_REPORT.LOG Object is locked skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
C:\System Volume Information\_restore{98C79A28-BB8A-4F9F-B7F8-88910C9E04F6}\RP40\A0018268.dll Infected: not-a-virus:AdWare.Win32.Dap.e skipped
C:\System Volume Information\_restore{98C79A28-BB8A-4F9F-B7F8-88910C9E04F6}\RP40\change.log Object is locked skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS\Internet Logs\fwdbglog.txt Object is locked skipped
C:\WINDOWS\Internet Logs\fwpktlog.txt Object is locked skipped
C:\WINDOWS\Internet Logs\IAMDB.RDB Object is locked skipped
C:\WINDOWS\Internet Logs\tvDebug.log Object is locked skipped
C:\WINDOWS\Internet Logs\USER-6C29F98C60.ldb Object is locked skipped
C:\WINDOWS\SchedLgU.Txt Object is locked skipped
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped
C:\WINDOWS\Sti_Trace.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped
C:\WINDOWS\system32\config\Antivirus.Evt Object is locked skipped
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\default Object is locked skipped
C:\WINDOWS\system32\config\default.LOG Object is locked skipped
C:\WINDOWS\system32\config\SAM Object is locked skipped
C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\SECURITY Object is locked skipped
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS\system32\config\software Object is locked skipped
C:\WINDOWS\system32\config\software.LOG Object is locked skipped
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\system Object is locked skipped
C:\WINDOWS\system32\config\system.LOG Object is locked skipped
C:\WINDOWS\system32\h323log.txt Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
C:\WINDOWS\Temp\Perflib_Perfdata_740.dat Object is locked skipped
C:\WINDOWS\Temp\ZLT025e3.TMP Object is locked skipped
C:\WINDOWS\Temp\ZLT025e6.TMP Object is locked skipped
C:\WINDOWS\Temp\_avast4_\Webshlock.txt Object is locked skipped
C:\WINDOWS\wiadebug.log Object is locked skipped
C:\WINDOWS\wiaservc.log Object is locked skipped
C:\WINDOWS\WindowsUpdate.log Object is locked skipped

Scan process completed.





-------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER REPORT
Wednesday, March 19, 2008 11:57:31 AM
Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky Online Scanner version: 5.0.98.0
Kaspersky Anti-Virus database last update: 19/03/2008
Kaspersky Anti-Virus database records: 639844
-------------------------------------------------------------------------------

Scan Settings:
Scan using the following antivirus database: extended
Scan Archives: true
Scan Mail Bases: true

Scan Target - My Computer:
A:\
C:\
D:\
E:\

Scan Statistics:
Total number of scanned objects: 68784
Number of viruses found: 1
Number of infected objects: 1
Number of suspicious objects: 0
Duration of the scan process: 01:05:50

Infected Object Name / Virus Name / Last Action
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped
C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
C:\Documents and Settings\user\Application Data\BitTorrent\bittorrent.log Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\call1024.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\call256.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\call512.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\callmember256.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chat1024.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chat16384.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chat2048.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chat256.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chat4096.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chat512.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chat8192.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmember256.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmsg1024.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmsg16384.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmsg2048.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmsg256.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmsg32768.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmsg4096.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmsg512.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatmsg8192.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatsync\26\26a0564d824ce74c.dat Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatsync\b1\b1fa771bc251ed52.dat Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\chatsync\c7\c75cbc2ddc3004ac.dat Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\contactgroup256.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\dyncontent\bundle.dat Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\index2.dat Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\profile16384.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\transfer256.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\transfer512.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\user1024.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\user16384.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\user256.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\user32768.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\user4096.dbb Object is locked skipped
C:\Documents and Settings\user\Application Data\Skype\soufianou1\voicemail256.dbb Object is locked skipped
C:\Documents and Settings\user\Cookies\index.dat Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___01 kyrie.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___anais & didier barbelivien - les mariés de vendée(2).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___anais & didier barbelivien - quitter l'autoroute.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___children.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___claude barzotti - chanson pour te dire je t'aime.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___claude barzotti - je vous aime (2).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___claude barzotti - le rital.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___claude barzotti- je serai là.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___claude nougaro - nougayork(2).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___didier barbelivien - elle.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___didier barbelivien - les moulins de mon coeur.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___didier barbelivien et felix gray - la gitane(2).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___felix gray & didier barbelivien - les mariés de vendée.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___francois claude - belle, belle, belle.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___grosses daubes - didier barbelivien - la ou je t'aime.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___haifa wehbe - baddi 3eesh(3).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___haifa wehbe - nar el ashwak(3).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___haifa-wahby_fakerny.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___hervé vilard - nous.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___isabelle boulay & claude nougaro - tu verras (inédit).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___kazem el saher - ana wa laila.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___level 42 - it's over(2)(2).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___level 42 - lessons in love.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___level 42 - something about you (1).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___louis amstrong - claude nougaro.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___mademoiselle chante le blues.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___marwan_khory_ft_carol_sama7a-ya_rab.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___mazikana_iwan - ahlan-wa-sahlan.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - a minuit, midi.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - besoin de toi.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - gloria.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - holidays(2).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - la mouche.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - la poupee qui fait non(2).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - les mots bleu(3).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - lettre à france(2).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - lettre à france(3).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - lettre à france.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - love me please, love me.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - on ira tous au paradis.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - tam tam.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref (polnareff) - une simple melodie.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___michel polnaref tam tam.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___mr mister - broken wings - broken wings.mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Ares\My Shared Folder\___ARESTRA___one and one - robert miles - flaix fm history (disc 1).mp3 Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
C:\Documents and Settings\user\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
C:\Documents and Settings\user\Local Settings\Historique\History.IE5\index.dat Object is locked skipped
C:\Documents and Settings\user\Local Settings\Historique\History.IE5\MSHist012008031920080320\index.dat Object is locked skipped
C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
C:\Documents and Settings\user\NTUSER.DAT Object is locked skipped
C:\Documents and Settings\user\ntuser.dat.LOG Object is locked skipped
C:\Program Files\Alwil Software\Avast4\DATA\aswResp.dat Object is locked skipped
C:\Program Files\Alwil Software\Avast4\DATA\Avast4.db Object is locked skipped
C:\Program Files\Alwil Software\Avast4\DATA\log\AshWebSv.ws Object is locked skipped
C:\Program Files\Alwil Software\Avast4\DATA\log\aswMaiSv.log Object is locked skipped
C:\Program Files\Alwil Software\Avast4\DATA\log\nshield.log Object is locked skipped
C:\Program Files\Alwil Software\Avast4\DATA\report\Protection résidente.txt Object is locked skipped
C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
C:\System Volume Information\_restore{98C79A28-BB8A-4F9F-B7F8-88910C9E04F6}\RP40\A0018268.dll Infected: not-a-virus:AdWare.Win32.Dap.e skipped
C:\System Volume Information\_restore{98C79A28-BB8A-4F9F-B7F8-88910C9E04F6}\RP42\change.log Object is locked skipped
C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
C:\WINDOWS\Internet Logs\fwdbglog.txt Object is locked skipped
C:\WINDOWS\Internet Logs\fwpktlog.txt Object is locked skipped
C:\WINDOWS\Internet Logs\IAMDB.RDB Object is locked skipped
C:\WINDOWS\Internet Logs\tvDebug.log Object is locked skipped
C:\WINDOWS\Internet Logs\USER-6C29F98C60.ldb Object is locked skipped
C:\WINDOWS\SchedLgU.Txt Object is locked skipped
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped
C:\WINDOWS\Sti_Trace.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped
C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped
C:\WINDOWS\system32\config\Antivirus.Evt Object is locked skipped
C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\default Object is locked skipped
C:\WINDOWS\system32\config\default.LOG Object is locked skipped
C:\WINDOWS\system32\config\SAM Object is locked skipped
C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\SECURITY Object is locked skipped
C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
C:\WINDOWS\system32\config\software Object is locked skipped
C:\WINDOWS\system32\config\software.LOG Object is locked skipped
C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
C:\WINDOWS\system32\config\system Object is locked skipped
C:\WINDOWS\system32\config\system.LOG Object is locked skipped
C:\WINDOWS\system32\h323log.txt Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
C:\WINDOWS\Temp\Perflib_Perfdata_75c.dat Object is locked skipped
C:\WINDOWS\Temp\ZLT01490.TMP Object is locked skipped
C:\WINDOWS\Temp\ZLT01493.TMP Object is locked skipped
C:\WINDOWS\Temp\_avast4_\Webshlock.txt Object is locked skipped
C:\WINDOWS\wiadebug.log Object is locked skipped
C:\WINDOWS\wiaservc.log Object is locked skipped
C:\WINDOWS\WindowsUpdate.log Object is locked skipped

Scan process completed.


merci :P de me dire comment faire pour suprimer ou restaurer mon ficher infecté!!!
  • 0

PUBLICITÉ

    Annonces Google

#2 midnighter

midnighter

    Power Member

  • Membres
  • 122 messages

Posté 19 mars 2008 - 05:26

Bonjour

Installe antivir et configure le bien ( en activant notamment la recherche de rootkit). tu peux aller sur le site de malekal:
http://www.malekal.c...ial_antivir.php

Installe AVG (antispyware) en version 7.5 (gratuite) ou 8.0 (plus complète mais payante).

Pour ma part j'utilise uniquement le pare feu de windows XP et ca va. Mais il en existe d'autre comme zone alarm, jetico ou encore sunbelt kerio firewall (que je conseille car il est plutot simple d'utilisation)

Enfin pour supprimer les fenetres intempestives, tu peux utiliser smitfraud fix:
http://www.zebulon.f...itfraudfix.html

pour plus d'information sur les virus voir ici:
http://forum.zebulon...howtopic=133909


de plus il semble que le virus se situe dans le systeme de restauration: donc si je ne me trompe pas, tu as beau l'effacer il est toujours considerer comme sauvegarder.
essaye de désinfecter à fond ton pc puis
désactive le systeme de restauration afin de virer tes points de sauvegardes puis réactive le immédiatement et crée un nouveau point.
  • 0

#3 pear

pear

    Devil Member !

  • Equipe Sécurité
  • 27 666 messages

Posté 19 mars 2008 - 06:12

Bonsoir,

si j'ai bien vu, le fichier infecté qui était dans le program files a été supprimé.
Vous le voyez , et c'est normal,dans System Volume Information.
Pour en supprimer la trace,

Désinstallez la Restauration Système.

Poste de Travail->Propriétés->Restauration Système.
Décocher la Restauration sur tous les lecteurs.

Vous la rétablissez ensuite.
Un nouveau fichier sera créé


  • 0

#4 abricot31

abricot31

    Member

  • Membres
  • 91 messages

Posté 20 mars 2008 - 02:44

hello !!! :P merci midnighter , merci pear alors voila comme g envie de comprendre j aimerai vous pauser quelques questions svp

apres avoir "Désinstallez la Restauration Système" spy bot va me dire modification importante du registre , autoriser ou refuser , je ferai quoi ??? il me la fait qd j ai fait un scan au demarge!!!
pourqoi avast n a rien trouvé ?
c est quoi " volume systeme information" ?
c est quoi la restauration systeme ?
excusez mes questions :P merci a vous
  • 0

#5 abricot31

abricot31

    Member

  • Membres
  • 91 messages

Posté 21 mars 2008 - 02:25

hello :P c ok ma machine est clean maintenant , je vous en remercie :P vos conseils m ont ete d une grande utilité MERCI bye bye
  • 0









Sujets similaires :     x