TROJAN VIRUS???

[novice42]

je ne constate pas de modification de l'ordinateur...

que me fais tu faire???

encore merci...

[novice42]

bonjour pourquoi j'ai plus de reponses snif

merci pour ton aide...

[Apollo]

Bonsoir,

 

Je ne vois pas trop ce que tu pourrais encore avoir comme infection; ton antivirus réagit toujours?

 

Télécharge ceci et suis le tuto à la lettre et puis fais une analyse complète:

http://www.malekal.com/tutorial_MalwareBytes_AntiMalware.php

 

A la fin, traiter les objets qui seraient découverts puis copier le rapport mbam que tu voudras bien poster à la suite stp.

 

2.

Rends-toi ici --> http://www.filehippo.com/download_java_runtime/

 

Télécharge puis installe la dernière console de Java Sun.

 

De suite après, va dans ajout/suppression de programmes et désinstalle toute version plus ancienne que celle que tu viens d'installer.

 

@++

Modifié le 28 avril 2008 par Apollo.01

[novice42]

bonsoir j'ai fais se ke tu m'as dit mais il ne trouve pas de virus alor j'ai relancer norton antivirus et voila il m'en trouve 2 voila leur rapport

tracking cookie

Cookie :

Cookie:josselin@i2as.idregie.com/

 

trojan.EliteBar

Infection :

c:\windows\silent_setup.exe

Base de registres :

HKEY_CLASSES_ROOT\CLSID\{0A1D22C3-37BE-470C-9C29-E3074EE0574B}

HKEY_CLASSES_ROOT\CLSID\{02C20140-76F8-4763-83D5-B660107B7A11}

HKEY_CLASSES_ROOT\CLSID\{02C20140-76F8-4763-83D5-B660107BABCD}

HKEY_CLASSES_ROOT\CLSID\{28CAEFF3-0F18-4036-B504-51D73BD81ABC}

HKEY_CLASSES_ROOT\CLSID\{28CAEFF3-0F18-4036-B504-51D73BD81C3A}

HKEY_CLASSES_ROOT\CLSID\{825CF5BD-8862-4430-B771-0C15C5CA8DEF}

HKEY_CLASSES_ROOT\CLSID\{825CF5BD-8862-4430-B771-0C15C5CA880F}

HKEY_CLASSES_ROOT\CLSID\{BE8D0059-D24D-4919-B76F-99F4A2203647}

HKEY_CLASSES_ROOT\CLSID\{ED103D9F-3070-4580-AB1E-E5C179C1AE41}

HKEY_CLASSES_ROOT\CLSID\{E2E40140-76F8-4763-83D5-B660107BABCD}

HKEY_CLASSES_ROOT\TypeLib\{8AA59E15-6E81-415C-B299-1ADFB50C8E1A}

HKEY_CLASSES_ROOT\TypeLib\{a74cd7dd-ea6f-11d4-abf3-000102378429}

HKEY_CLASSES_ROOT\Interface\{A74CD7DE-EA6F-11D4-ABF3-000102378429}

HKEY_CLASSES_ROOT\Interface\{A74CD7DF-EA6F-11D4-ABF3-000102378429}

HKEY_CLASSES_ROOT\TypeLib\{CA9FC31A-6F35-4493-B629-E64BD6170A17}

HKEY_CLASSES_ROOT\TypeLib\{DF54D7DD-EA6F-11D4-ABF3-000102378429}

HKEY_CLASSES_ROOT\Interface\{276B0903-EB4B-46FF-8304-F093DEF69DE7}

HKEY_CLASSES_ROOT\Interface\{4AFF987A-773B-48E4-AEE8-08EBDDBDADF8}

HKEY_CLASSES_ROOT\Interface\{A9B28EF6-ABF3-463B-A3D8-4D0D0BADFADC}

HKEY_CLASSES_ROOT\Interface\{CAAB3B3F-E815-47D9-94FD-8BB9143C0077}

HKEY_CLASSES_ROOT\Interface\{DBF33E89-1784-42AC-ADE4-A428F56550A3}

HKEY_CLASSES_ROOT\Interface\{ED646219-20BF-41E5-80FD-EE49021DA599}

HKEY_CLASSES_ROOT\Interface\{DF54D7DE-EA6F-11D4-ABF3-000102378429}

HKEY_CLASSES_ROOT\EliteBar.EliteBarImpl

HKEY_CLASSES_ROOT\EliteBar.EliteBarImpl.1

HKEY_CLASSES_ROOT\EliteBar.Navigator

HKEY_CLASSES_ROOT\EliteBar.Navigator.1

HKEY_CLASSES_ROOT\PLOT.PlotCtrl.1

HKEY_CLASSES_ROOT\CGBand.UICGBandObj.1

HKEY_CLASSES_ROOT\CGBand.UICGBandObj

HKEY_CLASSES_ROOT\CGBand.CGBandObj.1

HKEY_CLASSES_ROOT\CGBand.CGBandObj

HKEY_CLASSES_ROOT\CGBand.BHO.1

HKEY_CLASSES_ROOT\CGBand.BHO

HKEY_LOCAL_MACHINE\Software\Elitum

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ED103D9F-3070-4580-AB1E-E5C179C1AE41}

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{28CAEFF3-0F18-4036-B504-51D73BD81ABC}

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{28CAEFF3-0F18-4036-B504-51D73BD81C3A}

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{825CF5BD-8862-4430-B771-0C15C5CA880F}

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\EliteBar Internet Explorer Toolbar

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\elitemediagroup

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar->{825CF5BD-8862-4430-B771-0C15C5CA8DEF}

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar->{825CF5BD-8862-4430-B771-0C15C5CA880F}

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run->I downloaded pirated Software from P2P and now I post my Hijack log whining

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run->etbrun

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run->kalvsys

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run->lsass

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run->checkrun

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run->System Service62

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run->System Service63

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run->System Service65

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run->System Service66

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run->System Service67

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run->System Service70

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run->System Service72

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run->System Service73

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run->System Service74

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run->System Service75

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run->System Service76

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run->System Service77

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run->System Service78

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run->System Service79

HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser->{825CF5BD-8862-4430-B771-0C15C5CA8DEF}

HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser->{825CF5BD-8862-4430-B771-0C15C5CA8DEF}

HKEY_USERS\S-1-5-21-2000478354-1214440339-682003330-1004\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser->{825CF5BD-8862-4430-B771-0C15C5CA8DEF}

HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser->{825CF5BD-8862-4430-B771-0C15C5CA8DEF}

HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser->{825CF5BD-8862-4430-B771-0C15C5CA880F}

HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser->{825CF5BD-8862-4430-B771-0C15C5CA880F}

HKEY_USERS\S-1-5-21-2000478354-1214440339-682003330-1004\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser->{825CF5BD-8862-4430-B771-0C15C5CA880F}

HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser->{825CF5BD-8862-4430-B771-0C15C5CA880F}

HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser->{89796427-6C3D-4710-951F-9DFB0D702DA8}

HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser->{89796427-6C3D-4710-951F-9DFB0D702DA8}

HKEY_USERS\S-1-5-21-2000478354-1214440339-682003330-1004\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser->{89796427-6C3D-4710-951F-9DFB0D702DA8}

HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser->{89796427-6C3D-4710-951F-9DFB0D702DA8}

HKEY_USERS\S-1-5-19\Software\LQ

HKEY_USERS\S-1-5-20\Software\LQ

HKEY_USERS\S-1-5-21-2000478354-1214440339-682003330-1004\Software\LQ

HKEY_USERS\.DEFAULT\Software\LQ

HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer->SearchURL

HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer->SearchURL

HKEY_USERS\S-1-5-21-2000478354-1214440339-682003330-1004\Software\Microsoft\Internet Explorer->SearchURL

HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer->SearchURL

HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main->Error Dlg Details Pane Open

HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main->Error Dlg Details Pane Open

HKEY_USERS\S-1-5-21-2000478354-1214440339-682003330-1004\Software\Microsoft\Internet Explorer\Main->Error Dlg Details Pane Open

HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main->Error Dlg Details Pane Open

HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main->Error Dlg Displayed on Every Error

HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main->Error Dlg Displayed on Every Error

HKEY_USERS\S-1-5-21-2000478354-1214440339-682003330-1004\Software\Microsoft\Internet Explorer\Main->Error Dlg Displayed on Every Error

HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main->Error Dlg Displayed on Every Error

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform->iebar

HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Settings->e

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\InternetSettings\User Agent\Post Platform->acc=jocker

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\InternetSettings\User Agent\Post Platform->acc=none

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform->acc=jocker

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform->acc=none

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform->(none)

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform->acc=MrDrej

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform->(MrDrej)

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent\Post Platform->acc=

HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar->{8E718888-423F-11D2-876E-00A0C9082467}:...

HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main->Search Bar:http://search.msn.com/spbasic.htm

HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main->Search Bar:http://search.msn.com/spbasic.htm

HKEY_USERS\S-1-5-21-2000478354-1214440339-682003330-1004\Software\Microsoft\Internet Explorer\Main->Search Bar:http://search.msn.com/spbasic.htm

HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main->Search Bar:http://search.msn.com/spbasic.htm

HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main->Start Page:http://securityresponse.symantec.com/avcenter/fix_homepage/index.html

HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main->Start Page:http://securityresponse.symantec.com/avcenter/fix_homepage/index.html

HKEY_USERS\S-1-5-21-2000478354-1214440339-682003330-1004\Software\Microsoft\Internet Explorer\Main->Start Page:http://securityresponse.symantec.com/avcenter/fix_homepage/index.html

HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main->Start Page:http://securityresponse.symantec.com/avcenter/fix_homepage/index.html

HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main->Search Page:http://www.microsoft.com/isapi.redir.dll?prd=ie&ar=iesearch

HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main->Search Page:http://www.microsoft.com/isapi.redir.dll?prd=ie&ar=iesearch

HKEY_USERS\S-1-5-21-2000478354-1214440339-682003330-1004\Software\Microsoft\Internet Explorer\Main->Search Page:http://www.microsoft.com/isapi.redir.dll?prd=ie&ar=iesearch

HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main->Search Page:http://www.microsoft.com/isapi.redir.dll?prd=ie&ar=iesearch

Cache du navigateur

 

 

merci de ton aide...