BD Femmes de Science: Nous avons lancé une campagne de financement pour un projet de BD humoristique sur les Femmes de Science. L'idée est d'inspirer les jeunes, filles et garçons, à s'intéresser aux carrières scientifiques. Aidez-nous à faire de ce projet une réalité!
1

infection par le virus Win32 P2P Worm Alcan.a

le 28-12-2005 à 23:17 #
Messieurs bonjour!
jeune initié en informatique, et pratiquant le téléchargment de musique, j'ai été infecté par ce ver qui mempeche d exploiter mon pc a plein régime...
je vous fais suivre mo log du scan lavasoft ad aware!
si vous pouvez me conseiller pour éliminer ce virus
merci d'avance!!!

Ad-Aware SE Build 1.06r1
Logfile Created on:mercredi 28 décembre 2005 23:01:00
Created with Ad-Aware SE Personal, free for private use.
Using definitions file:SE1R82 19.12.2005
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

References detected during the scan:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
MRU List(TAC index:0):16 total references
Tracking Cookie(TAC index:3):13 total references
Win32.P2P-Worm.Alcan.a(TAC index:8):8 total references
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Ad-Aware SE Settings
===========================
Set : Search for negligible risk entries
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep-scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan my Hosts file

Extended Ad-Aware SE Settings
===========================
Set : Unload recognized processes & modules during scan
Set : Scan registry for all users instead of current user only
Set : Always try to unload modules before deletion
Set : During removal, unload Explorer and IE if necessary
Set : Let Windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Include basic Ad-Aware settings in log file
Set : Include additional Ad-Aware settings in log file
Set : Include reference summary in log file
Set : Include alternate data stream details in log file
Set : Play sound at scan completion if scan locates critical objects


28-12-2005 23:01:00 - Scan started. (Full System Scan)

MRU List Object Recognized!
Location: : C:\Documents and Settings\k.Rim\recent
Description : list of recently opened documents


MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct3d


MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct X


MRU List Object Recognized!
Location: : software\microsoft\directdraw\mostrecentapplication
Description : most recent application to use microsoft directdraw


MRU List Object Recognized!
Location: : S-1-5-21-2463924645-4003359025-2554131276-1005\software\microsoft\directinput\mostrecentapplication
Description : most recent application to use microsoft directinput


MRU List Object Recognized!
Location: : S-1-5-21-2463924645-4003359025-2554131276-1005\software\microsoft\directinput\mostrecentapplication
Description : most recent application to use microsoft directinput


MRU List Object Recognized!
Location: : S-1-5-21-2463924645-4003359025-2554131276-1005\software\microsoft\internet explorer
Description : last download directory used in microsoft internet explorer


MRU List Object Recognized!
Location: : S-1-5-21-2463924645-4003359025-2554131276-1005\software\microsoft\internet explorer\typedurls
Description : list of recently entered addresses in microsoft internet explorer


MRU List Object Recognized!
Location: : S-1-5-21-2463924645-4003359025-2554131276-1005\software\microsoft\mediaplayer\preferences
Description : last playlist index loaded in microsoft windows media player


MRU List Object Recognized!
Location: : S-1-5-21-2463924645-4003359025-2554131276-1005\software\microsoft\mediaplayer\preferences
Description : last playlist loaded in microsoft windows media player


MRU List Object Recognized!
Location: : S-1-5-21-2463924645-4003359025-2554131276-1005\software\microsoft\search assistant\acmru
Description : list of recent search terms used with the search assistant


MRU List Object Recognized!
Location: : S-1-5-21-2463924645-4003359025-2554131276-1005\software\microsoft\windows\currentversion\explorer\comdlg32\lastvisitedmru
Description : list of recent programs opened


MRU List Object Recognized!
Location: : S-1-5-21-2463924645-4003359025-2554131276-1005\software\microsoft\windows\currentversion\explorer\comdlg32\opensavemru
Description : list of recently saved files, stored according to file extension


MRU List Object Recognized!
Location: : S-1-5-21-2463924645-4003359025-2554131276-1005\software\microsoft\windows\currentversion\explorer\recentdocs
Description : list of recent documents opened


MRU List Object Recognized!
Location: : S-1-5-21-2463924645-4003359025-2554131276-1005\software\microsoft\windows\currentversion\explorer\runmru
Description : mru list for items opened in start | run


MRU List Object Recognized!
Location: : S-1-5-21-2463924645-4003359025-2554131276-1005\software\microsoft\windows media\wmsdk\general
Description : windows media sdk


Listing running processes
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ProcessID : 596
ThreadCreationTime : 28-12-2005 21:05:14
BasePriority : Normal


#:2 [winlogon.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 688
ThreadCreationTime : 28-12-2005 21:05:18
BasePriority : High


#:3 [services.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 732
ThreadCreationTime : 28-12-2005 21:05:18
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Système d'exploitation Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Applications Services et Contrôleur
InternalName : services.exe
LegalCopyright : © Microsoft Corporation. Tous droits réservés.
OriginalFilename : services.exe

#:4 [lsass.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 744
ThreadCreationTime : 28-12-2005 21:05:18
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : LSA Shell (Export Version)
InternalName : lsass.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : lsass.exe

#:5 [ati2evxx.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 888
ThreadCreationTime : 28-12-2005 21:05:19
BasePriority : Normal
FileVersion : 6.14.10.4107
ProductVersion : 6.14.10.4107.05
ProductName : ATI External Event Utility for WindowsNT and Windows9X
CompanyName : ATI Technologies Inc.
FileDescription : ATI External Event Utility EXE Module
InternalName : ATI2EVXX.EXE
LegalCopyright : Copyright © 1999-2004 ATI Technologies Inc.
OriginalFilename : ATI2EVXX.EXE

#:6 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 904
ThreadCreationTime : 28-12-2005 21:05:19
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:7 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1036
ThreadCreationTime : 28-12-2005 21:05:19
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:8 [ccsetmgr.exe]
FilePath : C:\Program Files\Fichiers communs\Symantec Shared\
ProcessID : 1416
ThreadCreationTime : 28-12-2005 21:05:21
BasePriority : Normal
FileVersion : 2.0.2.806
ProductVersion : 2.0.2.806
ProductName : Common Client
CompanyName : Symantec Corporation
FileDescription : Common Client Settings Manager Service
InternalName : ccSetMgr
LegalCopyright : Copyright (c) 2000-2003 Symantec Corporation. All rights reserved.
OriginalFilename : ccSetMgr.exe

#:9 [ccevtmgr.exe]
FilePath : C:\Program Files\Fichiers communs\Symantec Shared\
ProcessID : 1440
ThreadCreationTime : 28-12-2005 21:05:21
BasePriority : Normal
FileVersion : 2.0.2.806
ProductVersion : 2.0.2.806
ProductName : Common Client
CompanyName : Symantec Corporation
FileDescription : Common Client Event Manager Service
InternalName : ccEvtMgr
LegalCopyright : Copyright (c) 2000-2003 Symantec Corporation. All rights reserved.
OriginalFilename : ccEvtMgr.exe

#:10 [spoolsv.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1568
ThreadCreationTime : 28-12-2005 21:05:23
BasePriority : Normal
FileVersion : 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)
ProductVersion : 5.1.2600.2696
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolsv.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : spoolsv.exe

#:11 [mdm.exe]
FilePath : C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\
ProcessID : 1736
ThreadCreationTime : 28-12-2005 21:05:23
BasePriority : Normal
FileVersion : 7.00.9064.9150
ProductVersion : 7.00.9064.9150
ProductName : Microsoft Development Environment
CompanyName : Microsoft Corporation
FileDescription : Machine Debug Manager
InternalName : mdm.exe
LegalCopyright : Copyright (C) Microsoft Corp. 1997-2000
OriginalFilename : mdm.exe

#:12 [sndsrvc.exe]
FilePath : C:\Program Files\Fichiers communs\Symantec Shared\
ProcessID : 1796
ThreadCreationTime : 28-12-2005 21:05:24
BasePriority : Normal
FileVersion : 5.2.0.108
ProductVersion : 5.2
ProductName : Symantec Security Drivers
CompanyName : Symantec Corporation
FileDescription : Symantec Network Driver Service
InternalName : SndSrvc
LegalCopyright : Copyright 2002, 2003 Symantec Corporation
OriginalFilename : SndSrvc.exe

#:13 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1856
ThreadCreationTime : 28-12-2005 21:05:24
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:14 [ati2evxx.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 628
ThreadCreationTime : 28-12-2005 21:05:30
BasePriority : Normal
FileVersion : 6.14.10.4107
ProductVersion : 6.14.10.4107.05
ProductName : ATI External Event Utility for WindowsNT and Windows9X
CompanyName : ATI Technologies Inc.
FileDescription : ATI External Event Utility EXE Module
InternalName : ATI2EVXX.EXE
LegalCopyright : Copyright © 1999-2004 ATI Technologies Inc.
OriginalFilename : ATI2EVXX.EXE

#:15 [explorer.exe]
FilePath : C:\WINDOWS\
ProcessID : 1128
ThreadCreationTime : 28-12-2005 21:05:30
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Système d'exploitation Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Explorateur Windows
InternalName : explorer
LegalCopyright : © Microsoft Corporation. Tous droits réservés.
OriginalFilename : EXPLORER.EXE

#:16 [soundman.exe]
FilePath : C:\WINDOWS\
ProcessID : 1332
ThreadCreationTime : 28-12-2005 21:05:32
BasePriority : Normal
FileVersion : 5.1.0.21
ProductVersion : 5.1.0.21
ProductName : Realtek Sound Manager
CompanyName : Realtek Semiconductor Corp.
FileDescription : Realtek Sound Manager
InternalName : ALSMTray
LegalCopyright : Copyright (c) 2001-2003 Realtek Semiconductor Corp.
OriginalFilename : ALSMTray.exe
Comments : Realtek AC97 Audio Sound Manager

#:17 [atiptaxx.exe]
FilePath : C:\Program Files\ATI Technologies\ATI Control Panel\
ProcessID : 1340
ThreadCreationTime : 28-12-2005 21:05:32
BasePriority : Normal
FileVersion : 6.14.10.5125
ProductVersion : 6.14.10.5125
ProductName : ATI Desktop Component
CompanyName : ATI Technologies, Inc.
FileDescription : ATI Desktop Control Panel
InternalName : Atiptaxx.exe
LegalCopyright : Copyright (C) 1998-2004 ATI Technologies Inc.
OriginalFilename : Atiptaxx.exe

#:18 [agrsmmsg.exe]
FilePath : C:\WINDOWS\
ProcessID : 1348
ThreadCreationTime : 28-12-2005 21:05:32
BasePriority : Normal
FileVersion : 2.1.32 2.1.32 07/25/2003 11:22:37
ProductVersion : 2.1.32 2.1.32 07/25/2003 11:22:37
ProductName : Agere SoftModem Messaging Applet
CompanyName : Agere Systems
FileDescription : SoftModem Messaging Applet
InternalName : smdmstat.exe
LegalCopyright : Copyright © Agere Systems 1998-2000
OriginalFilename : smdmstat.exe

#:19 [ktp3.exe]
FilePath : C:\Program Files\Elantech\
ProcessID : 1356
ThreadCreationTime : 28-12-2005 21:05:32
BasePriority : Normal
FileVersion : 1, 0, 0, 0
ProductVersion : 1, 0, 0, 0
ProductName : ELANTECH ktp
CompanyName : ELANTECH Devices Corp.
FileDescription : ktp
InternalName : ktp
LegalCopyright : Copyright c 2003
OriginalFilename : ktp3.exe

#:20 [schsvr.exe]
FilePath : C:\Program Files\Fichiers communs\InterVideo\SchSvr\
ProcessID : 1368
ThreadCreationTime : 28-12-2005 21:05:32
BasePriority : Normal
FileVersion : 3.0.88.4
ProductVersion : 3.0.88.4
ProductName : InterVideo(R) WinDVR
CompanyName : InterVideo Inc.
FileDescription : InterVideo Schedule Server
InternalName : SchSvr
LegalCopyright : Copyright (C) 2000-2002 InterVideo Inc.
OriginalFilename : SchSvr.EXE

#:21 [wincinemamgr.exe]
FilePath : C:\Program Files\InterVideo\Common\Bin\
ProcessID : 1376
ThreadCreationTime : 28-12-2005 21:05:32
BasePriority : Normal
FileVersion : 1.8.2
ProductVersion : 1, 8, 2, 0
ProductName : WinCinema Manager for InterVideo WinCinema products
CompanyName : InterVideo Inc.
FileDescription : WinCinema Manager
InternalName : WinCinema Manager
LegalCopyright : Copyright 1999-2003 InterVideo, Inc. All rights reserved.
OriginalFilename : WinCinemaMgr.EXE

#:22 [qttask.exe]
FilePath : C:\Program Files\QuickTime\
ProcessID : 1388
ThreadCreationTime : 28-12-2005 21:05:32
BasePriority : Normal
FileVersion : 6.5.1
ProductVersion : QuickTime 6.5.1
ProductName : QuickTime
CompanyName : Apple Computer, Inc.
InternalName : QuickTime Task
LegalCopyright : © Apple Computer, Inc. 2001-2004
OriginalFilename : QTTask.exe

#:23 [ccapp.exe]
FilePath : C:\Program Files\Fichiers communs\Symantec Shared\
ProcessID : 1640
ThreadCreationTime : 28-12-2005 21:05:32
BasePriority : Normal
FileVersion : 2.0.2.806
ProductVersion : 2.0.2.806
ProductName : Common Client
CompanyName : Symantec Corporation
FileDescription : Common Client User Session
InternalName : ccApp
LegalCopyright : Copyright (c) 2000-2003 Symantec Corporation. All rights reserved.
OriginalFilename : ccApp.exe

#:24 [ituneshelper.exe]
FilePath : C:\Program Files\iTunes\
ProcessID : 1888
ThreadCreationTime : 28-12-2005 21:05:33
BasePriority : Normal
FileVersion : 4.9.0.17
ProductVersion : 4.9.0.17
ProductName : iTunes
CompanyName : Apple Computer, Inc.
FileDescription : iTunesHelper Module
InternalName : iTunesHelper
LegalCopyright : © 2003-2005 Apple Computer, Inc. All Rights Reserved.
OriginalFilename : iTunesHelper.exe

#:25 [msupdate.exe]
FilePath : C:\Program Files\MsUpdate\
ProcessID : 1912
ThreadCreationTime : 28-12-2005 21:05:33
BasePriority : Normal


#:26 [jusched.exe]
FilePath : C:\Program Files\Java\jre1.5.0_03\bin\
ProcessID : 1944
ThreadCreationTime : 28-12-2005 21:05:33
BasePriority : Normal


#:27 [ctfmon.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 2064
ThreadCreationTime : 28-12-2005 21:05:33
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : CTF Loader
InternalName : CTFMON
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : CTFMON.EXE

#:28 [msnmsgr.exe]
FilePath : C:\Program Files\MSN Messenger\
ProcessID : 2072
ThreadCreationTime : 28-12-2005 21:05:33
BasePriority : Normal
FileVersion : 7.0.0777
ProductVersion : 7.0.0777
ProductName : MSN Messenger
CompanyName : Microsoft Corporation
FileDescription : MSN Messenger
InternalName : msnmsgr
LegalCopyright : Copyright (c) Microsoft Corporation 1997-2004
LegalTrademarks : Microsoft(R) is a registered trademark of Microsoft Corporation in the U.S. and/or other countries.
OriginalFilename : msnmsgr.exe

#:29 [scvhost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 2104
ThreadCreationTime : 28-12-2005 21:05:34
BasePriority : Normal


#:30 [ipodservice.exe]
FilePath : C:\Program Files\iPod\bin\
ProcessID : 2116
ThreadCreationTime : 28-12-2005 21:05:34
BasePriority : Normal
FileVersion : 5.0.1.4
ProductVersion : 5.0.1.4
ProductName : iTunes
CompanyName : Apple Computer, Inc.
FileDescription : iPodService Module
InternalName : iPodService
LegalCopyright : © 2003-2005 Apple Computer, Inc. All Rights Reserved.
OriginalFilename : iPodService.exe

#:31 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1324
ThreadCreationTime : 28-12-2005 21:06:21
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:32 [iexplore.exe]
FilePath : C:\Program Files\Internet Explorer\
ProcessID : 2888
ThreadCreationTime : 28-12-2005 21:35:05
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Système d'exploitation Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Internet Explorer
InternalName : iexplore
LegalCopyright : © Microsoft Corporation. Tous droits réservés.
OriginalFilename : IEXPLORE.EXE

#:33 [ad-aware.exe]
FilePath : C:\Program Files\Lavasoft\Ad-Aware SE Personal\
ProcessID : 3340
ThreadCreationTime : 28-12-2005 22:00:48
BasePriority : Normal
FileVersion : 6.2.0.236
ProductVersion : SE 106
ProductName : Lavasoft Ad-Aware SE
CompanyName : Lavasoft Sweden
FileDescription : Ad-Aware SE Core application
InternalName : Ad-Aware.exe
LegalCopyright : Copyright © Lavasoft AB Sweden
OriginalFilename : Ad-Aware.exe
Comments : All Rights Reserved

Memory scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 16


Started registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Registry Scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 16


Started deep registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Deep registry scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 16


Started Tracking Cookie scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»


Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email]k.rim@counter12.sextracker[1].txt[/email]
TAC Rating : 3
Category : Data Miner
Comment : Hits:2
Value : Cookie:k.rim@counter12.sextracker.com/
Expires : 28-12-2005 18:32:06
LastSync : Hits:2
UseCount : 0
Hits : 2

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email]k.rim@doubleclick[1].txt[/email]
TAC Rating : 3
Category : Data Miner
Comment : Hits:7
Value : Cookie:k.rim@doubleclick.net/
Expires : 27-12-2008 14:51:24
LastSync : Hits:7
UseCount : 0
Hits : 7

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email]k.rim@atdmt[1].txt[/email]
TAC Rating : 3
Category : Data Miner
Comment : Hits:5
Value : Cookie:k.rim@atdmt.com/
Expires : 27-12-2010 01:00:00
LastSync : Hits:5
UseCount : 0
Hits : 5

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email]k.rim@sexlist[2].txt[/email]
TAC Rating : 3
Category : Data Miner
Comment : Hits:9
Value : Cookie:k.rim@sexlist.com/
Expires : 28-12-2006 23:46:32
LastSync : Hits:9
UseCount : 0
Hits : 9

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email]k.rim@sextracker[2].txt[/email]
TAC Rating : 3
Category : Data Miner
Comment : Hits:5
Value : Cookie:k.rim@sextracker.com/
Expires : 29-12-2005 15:38:20
LastSync : Hits:5
UseCount : 0
Hits : 5

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email]k.rim@bluestreak[2].txt[/email]
TAC Rating : 3
Category : Data Miner
Comment : Hits:143
Value : Cookie:k.rim@bluestreak.com/
Expires : 26-12-2015 17:49:26
LastSync : Hits:143
UseCount : 0
Hits : 143

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email]k.rim@as1.falkag[1].txt[/email]
TAC Rating : 3
Category : Data Miner
Comment : Hits:9
Value : Cookie:k.rim@as1.falkag.de/
Expires : 26-02-2006 14:51:38
LastSync : Hits:9
UseCount : 0
Hits : 9

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email]k.rim@www.smartadserver[1].txt[/email]
TAC Rating : 3
Category : Data Miner
Comment : Hits:32
Value : Cookie:k.rim@www.smartadserver.com/
Expires : 23-12-2025 22:51:08
LastSync : Hits:32
UseCount : 0
Hits : 32

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email]k.rim@cs.sexcounter[2].txt[/email]
TAC Rating : 3
Category : Data Miner
Comment : Hits:31
Value : Cookie:k.rim@cs.sexcounter.com/
Expires : 12-05-2024 19:07:28
LastSync : Hits:31
UseCount : 0
Hits : 31

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email]k.rim@adtech[1].txt[/email]
TAC Rating : 3
Category : Data Miner
Comment : Hits:3
Value : Cookie:k.rim@adtech.de/
Expires : 26-12-2015 15:14:46
LastSync : Hits:3
UseCount : 0
Hits : 3

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email]k.rim@counter5.sextracker[1].txt[/email]
TAC Rating : 3
Category : Data Miner
Comment : Hits:1
Value : Cookie:k.rim@counter5.sextracker.com/
Expires : 29-12-2005 07:38:20
LastSync : Hits:1
UseCount : 0
Hits : 1

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email]k.rim@counter1.sextracker[1].txt[/email]
TAC Rating : 3
Category : Data Miner
Comment : Hits:1
Value : Cookie:k.rim@counter1.sextracker.com/
Expires : 28-12-2005 18:30:28
LastSync : Hits:1
UseCount : 0
Hits : 1

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : [email]k.rim@weborama[1].txt[/email]
TAC Rating : 3
Category : Data Miner
Comment : Hits:6
Value : Cookie:k.rim@weborama.fr/
Expires : 27-12-2010 22:55:06
LastSync : Hits:6
UseCount : 0
Hits : 6

Tracking cookie scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 13
Objects found so far: 29



Deep scanning and examining files (C:)
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Win32.P2P-Worm.Alcan.a Object Recognized!
Type : File
Data : bszip.dll
TAC Rating : 8
Category : Worm
Comment :
Object : C:\WINDOWS\system32\
FileVersion : 3.0.2.0
ProductVersion : 3.02
ProductName : BigSpeed Zip DLL
CompanyName : BigSpeedSoft
InternalName : bszip.dll
LegalCopyright : (c) BigSpeedSoft
LegalTrademarks : BigSpeed is a trademark of BigSpeedSoft
OriginalFilename : bszip.dll


Disk Scan Result for C:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 30


Scanning Hosts file......
Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts".
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Hosts file scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
42 entries scanned.
New critical objects:0
Objects found so far: 30




Performing conditional scans...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Win32.P2P-Worm.Alcan.a Object Recognized!
Type : File
Data : cmd.com
TAC Rating : 8
Category : Worm
Comment :
Object : C:\WINDOWS\system32\



Win32.P2P-Worm.Alcan.a Object Recognized!
Type : File
Data : netstat.com
TAC Rating : 8
Category : Worm
Comment :
Object : C:\WINDOWS\system32\



Win32.P2P-Worm.Alcan.a Object Recognized!
Type : File
Data : ping.com
TAC Rating : 8
Category : Worm
Comment :
Object : C:\WINDOWS\system32\



Win32.P2P-Worm.Alcan.a Object Recognized!
Type : File
Data : regedit.com
TAC Rating : 8
Category : Worm
Comment :
Object : C:\WINDOWS\system32\



Win32.P2P-Worm.Alcan.a Object Recognized!
Type : File
Data : taskkill.com
TAC Rating : 8
Category : Worm
Comment :
Object : C:\WINDOWS\system32\



Win32.P2P-Worm.Alcan.a Object Recognized!
Type : File
Data : tasklist.com
TAC Rating : 8
Category : Worm
Comment :
Object : C:\WINDOWS\system32\



Win32.P2P-Worm.Alcan.a Object Recognized!
Type : File
Data : tracert.com
TAC Rating : 8
Category : Worm
Comment :
Object : C:\WINDOWS\system32\



Conditional scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 7
Objects found so far: 37

23:16:17 Scan Complete

Summary Of This Scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Total scanning time:00:15:16.959
Objects scanned:171630
Objects identified:21
Objects ignored:0
New critical objects:21



Re: infection par le virus Win32 P2P Worm Alcan.a
le 28-12-2005 à 23:24 #
eh bé...
ad aware ne propose pas de le supprimer ?
ou de le mettre en quarantaine ?
quel est le problème EXACTEMENT ?
Re: infection par le virus Win32 P2P Worm Alcan.a
le 28-12-2005 à 23:30 #
BONSOIR§
alors ad aware propose de le suprimer mais ny arrive pas malgré de multiples tentatives!!!
avec spybot il ne le detecte meme pas...
je sais pa comment faire
Re: infection par le virus Win32 P2P Worm Alcan.a
le 28-12-2005 à 23:36 #
il faut faire le nettoyage en mode sans échec (touche F8 au démarrage) c'est plus efficace
il faut aussi que tu ailles supprimer les cookies dans les préférences de ton navigateur (tout de suite)
tu peux aussi essayer des antivirus en ligne (kaspersky, panda, secuser...)

salut
Re: infection par le virus Win32 P2P Worm Alcan.a
le 28-12-2005 à 23:41 #
merci je vais essayer et je te tiens au courant!!!




Ces discussions pourraient vous intéresser également:


P2P- Worm.Win32.Alcan.a Comment faire?
URGENT - Infection par un virus Worm.Win32.NetBooste r
w32 alcan worm
ça ié jsui infecté par p2p worm alcan jarive pa ale suprimé!?
Virus Spy worm.Win32 + Trojan-Spy.Win32@mx