A voir également:
- Eliminer tanatos.m
- Éliminer les cookies - Guide
- Comment éliminer les publicités - Guide
- Comment eliminer une page dans word - Guide
- Eliminer doublons photos - Guide
- Comment eliminer les pub sur youtube - Accueil - Streaming
2 réponses
kakashininjamaster
Messages postés
189
Date d'inscription
samedi 30 mai 2009
Statut
Membre
Dernière intervention
10 septembre 2014
26
15 juin 2009 à 15:35
15 juin 2009 à 15:35
fais un scan en ligne avec kaspersky bonline scanner (j'ai cherché dans la bse de donné de kaspersky labs et j'ai trouvé que kaspersky peut l'illiminer ). voici un lien pour scanner ton ordinateur en ligne: https://www.kaspersky.fr/downloads?thru=reseller%3Dviruslist_onlines_banner . "Choisie la première option kaspersky online scanner"
Note: Vous devez utiliser intertent explorer 6 ou ultirieur pendant le scan et vous devez déactiver tout antivirus
Note: Vous devez utiliser intertent explorer 6 ou ultirieur pendant le scan et vous devez déactiver tout antivirus
Merci beaucoup pour ta réponse
Le scan en ligne est en train de se faire.
Entretemps j'avais lancé Combofix, j'avais lu ça quelque part.
Voici pour info le rapport:
ComboFix 09-06-14.02 - Yo 15/06/2009 15:41.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.34.3082.18.255.87 [GMT 2:00]
Running from: c:\documents and settings\Yo\Escritorio\ComboFix.exe
AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\install.exe
.
((((((((((((((((((((((((( Files Created from 2009-05-15 to 2009-06-15 )))))))))))))))))))))))))))))))
.
2009-06-15 12:31 . 2009-06-15 13:30 -------- d--h--w- C:\$AVG8.VAULT$
2009-06-15 12:25 . 2009-06-15 12:25 11952 ----a-w- c:\windows\system32\avgrsstx.dll
2009-06-15 12:25 . 2009-06-15 12:25 108552 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2009-06-15 12:25 . 2009-06-15 12:25 327688 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2009-06-15 12:25 . 2009-06-15 12:25 27784 ----a-w- c:\windows\system32\drivers\avgmfx86.sys
2009-06-15 12:25 . 2009-06-15 12:30 -------- d-----w- c:\windows\system32\drivers\Avg
2009-06-15 12:24 . 2009-06-15 12:24 -------- d-----w- c:\documents and settings\All Users\Datos de programa\avg8
2009-06-15 12:24 . 2009-06-15 12:24 -------- d-----w- c:\archivos de programa\AVG
2009-06-15 11:45 . 2009-06-15 11:51 -------- d-----w- C:\FindyKill
2009-06-15 10:29 . 2009-06-15 10:29 -------- d-----w- c:\windows\system32\CatRoot_bak
2009-06-15 10:14 . 2008-04-14 05:48 1306624 -c----w- c:\windows\system32\dllcache\msxml6.dll
2009-06-15 10:14 . 2008-04-14 05:48 1306624 ------w- c:\windows\system32\msxml6.dll
2009-06-15 10:14 . 2008-04-14 05:25 90624 -c----w- c:\windows\system32\dllcache\msxml6r.dll
2009-06-15 10:14 . 2008-04-14 05:25 90624 ------w- c:\windows\system32\msxml6r.dll
2009-06-15 10:05 . 2009-06-15 10:14 -------- d-----w- c:\windows\ServicePackFiles
2009-06-15 10:03 . 2008-04-14 05:49 70144 ----a-w- c:\windows\system32\notepad.exe
2009-06-15 08:55 . 2009-06-15 08:55 -------- d--h--w- c:\windows\system32\GroupPolicy
2009-06-15 08:41 . 2009-06-15 08:46 -------- d-----w- C:\5b5768820408129894b0b0e6
2009-06-15 07:51 . 2007-08-10 18:47 26488 ----a-w- c:\windows\system32\spupdsvc.exe
2009-06-15 07:51 . 2009-06-15 08:10 -------- d--h--w- c:\windows\$hf_mig$
2009-06-15 07:34 . 2009-06-15 07:34 -------- d-----w- C:\FPD2
2009-06-15 07:33 . 2008-04-14 05:48 21504 ----a-w- c:\windows\system32\hidserv.dll
2009-06-15 07:33 . 2008-04-14 05:25 14720 ----a-w- c:\windows\system32\drivers\kbdhid.sys
2009-06-15 07:32 . 2008-04-13 22:15 32128 ----a-w- c:\windows\system32\drivers\usbccgp.sys
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-06-15 13:30 . 2008-10-27 13:02 -------- d-----w- c:\archivos de programa\CCleaner
2009-06-15 11:26 . 2004-08-20 12:00 51286 ----a-w- c:\windows\system32\perfc00A.dat
2009-06-15 11:26 . 2004-08-20 12:00 362564 ----a-w- c:\windows\system32\perfh00A.dat
2009-06-15 10:23 . 2008-10-27 11:26 86327 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat
2009-05-14 17:41 . 2009-05-14 05:08 -------- d-----w- c:\archivos de programa\Google
2009-05-13 19:16 . 2009-05-13 19:16 -------- d-----w- c:\archivos de programa\Archivos comunes\snp2std
2009-05-13 19:16 . 2009-05-13 19:16 -------- d--h--w- c:\archivos de programa\InstallShield Installation Information
2009-05-13 19:15 . 2009-05-13 19:15 -------- d-----w- c:\documents and settings\Yo\Datos de programa\InstallShield
2009-05-13 18:47 . 2008-10-27 13:16 -------- d-----w- c:\documents and settings\Yo\Datos de programa\DivX
2009-05-13 18:38 . 2008-10-27 13:07 -------- d-----w- c:\archivos de programa\Archivos comunes\Adobe
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"swg"="c:\archivos de programa\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-05-14 39408]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="c:\archivos de programa\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-14 113520]
"FixCamera"="c:\windows\FixCamera.exe" [2007-07-11 20480]
"tsnp2std"="c:\windows\tsnp2std.exe" [2007-05-10 270336]
"snp2std"="c:\windows\vsnp2std.exe" [2007-09-28 344064]
"AVG8_TRAY"="c:\archiv~1\AVG\AVG8\avgtray.exe" [2009-06-15 1948440]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter]
2009-06-15 12:25 11952 ----a-w- c:\windows\system32\avgrsstx.dll
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001
"AntiVirusOverride"=dword:00000001
"FirewallOverride"=dword:00000001
"UacDisableNotify"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"AntiVirusOverride"=dword:00000001
"AntiVirusDisableNotify"=dword:00000001
"FirewallDisableNotify"=dword:00000001
"FirewallOverride"=dword:00000001
"UpdatesDisableNotify"=dword:00000001
"UacDisableNotify"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Archivos de programa\\Adobe\\Reader 8.0\\Reader\\Reader_sl.exe"=
"c:\\WINDOWS\\vsnp2std.exe"=
"c:\\WINDOWS\\system32\\wuauclt.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Archivos de programa\\AVG\\AVG8\\avgupd.exe"=
"c:\\Archivos de programa\\AVG\\AVG8\\avgnsx.exe"=
R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [15/06/2009 14:25 327688]
R1 AvgTdiX;AVG Free8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [15/06/2009 14:25 108552]
R2 avg8wd;AVG Free8 WatchDog;c:\archiv~1\AVG\AVG8\avgwdsvc.exe [15/06/2009 14:24 298776]
S3 abp470n5;abp470n5;\??\c:\windows\system32\drivers\jmuimn.sys --> c:\windows\system32\drivers\jmuimn.sys [?]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.es/
uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com/ie
IE: E&xportar a Microsoft Excel - c:\archiv~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-06-15 15:48
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2009-06-15 15:52
ComboFix-quarantined-files.txt 2009-06-15 13:51
Pre-Run: 12.709.105.664 bytes libres
Post-Run: 12.770.795.520 bytes libres
119
Le scan en ligne est en train de se faire.
Entretemps j'avais lancé Combofix, j'avais lu ça quelque part.
Voici pour info le rapport:
ComboFix 09-06-14.02 - Yo 15/06/2009 15:41.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.34.3082.18.255.87 [GMT 2:00]
Running from: c:\documents and settings\Yo\Escritorio\ComboFix.exe
AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\install.exe
.
((((((((((((((((((((((((( Files Created from 2009-05-15 to 2009-06-15 )))))))))))))))))))))))))))))))
.
2009-06-15 12:31 . 2009-06-15 13:30 -------- d--h--w- C:\$AVG8.VAULT$
2009-06-15 12:25 . 2009-06-15 12:25 11952 ----a-w- c:\windows\system32\avgrsstx.dll
2009-06-15 12:25 . 2009-06-15 12:25 108552 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2009-06-15 12:25 . 2009-06-15 12:25 327688 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2009-06-15 12:25 . 2009-06-15 12:25 27784 ----a-w- c:\windows\system32\drivers\avgmfx86.sys
2009-06-15 12:25 . 2009-06-15 12:30 -------- d-----w- c:\windows\system32\drivers\Avg
2009-06-15 12:24 . 2009-06-15 12:24 -------- d-----w- c:\documents and settings\All Users\Datos de programa\avg8
2009-06-15 12:24 . 2009-06-15 12:24 -------- d-----w- c:\archivos de programa\AVG
2009-06-15 11:45 . 2009-06-15 11:51 -------- d-----w- C:\FindyKill
2009-06-15 10:29 . 2009-06-15 10:29 -------- d-----w- c:\windows\system32\CatRoot_bak
2009-06-15 10:14 . 2008-04-14 05:48 1306624 -c----w- c:\windows\system32\dllcache\msxml6.dll
2009-06-15 10:14 . 2008-04-14 05:48 1306624 ------w- c:\windows\system32\msxml6.dll
2009-06-15 10:14 . 2008-04-14 05:25 90624 -c----w- c:\windows\system32\dllcache\msxml6r.dll
2009-06-15 10:14 . 2008-04-14 05:25 90624 ------w- c:\windows\system32\msxml6r.dll
2009-06-15 10:05 . 2009-06-15 10:14 -------- d-----w- c:\windows\ServicePackFiles
2009-06-15 10:03 . 2008-04-14 05:49 70144 ----a-w- c:\windows\system32\notepad.exe
2009-06-15 08:55 . 2009-06-15 08:55 -------- d--h--w- c:\windows\system32\GroupPolicy
2009-06-15 08:41 . 2009-06-15 08:46 -------- d-----w- C:\5b5768820408129894b0b0e6
2009-06-15 07:51 . 2007-08-10 18:47 26488 ----a-w- c:\windows\system32\spupdsvc.exe
2009-06-15 07:51 . 2009-06-15 08:10 -------- d--h--w- c:\windows\$hf_mig$
2009-06-15 07:34 . 2009-06-15 07:34 -------- d-----w- C:\FPD2
2009-06-15 07:33 . 2008-04-14 05:48 21504 ----a-w- c:\windows\system32\hidserv.dll
2009-06-15 07:33 . 2008-04-14 05:25 14720 ----a-w- c:\windows\system32\drivers\kbdhid.sys
2009-06-15 07:32 . 2008-04-13 22:15 32128 ----a-w- c:\windows\system32\drivers\usbccgp.sys
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-06-15 13:30 . 2008-10-27 13:02 -------- d-----w- c:\archivos de programa\CCleaner
2009-06-15 11:26 . 2004-08-20 12:00 51286 ----a-w- c:\windows\system32\perfc00A.dat
2009-06-15 11:26 . 2004-08-20 12:00 362564 ----a-w- c:\windows\system32\perfh00A.dat
2009-06-15 10:23 . 2008-10-27 11:26 86327 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat
2009-05-14 17:41 . 2009-05-14 05:08 -------- d-----w- c:\archivos de programa\Google
2009-05-13 19:16 . 2009-05-13 19:16 -------- d-----w- c:\archivos de programa\Archivos comunes\snp2std
2009-05-13 19:16 . 2009-05-13 19:16 -------- d--h--w- c:\archivos de programa\InstallShield Installation Information
2009-05-13 19:15 . 2009-05-13 19:15 -------- d-----w- c:\documents and settings\Yo\Datos de programa\InstallShield
2009-05-13 18:47 . 2008-10-27 13:16 -------- d-----w- c:\documents and settings\Yo\Datos de programa\DivX
2009-05-13 18:38 . 2008-10-27 13:07 -------- d-----w- c:\archivos de programa\Archivos comunes\Adobe
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
"swg"="c:\archivos de programa\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-05-14 39408]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="c:\archivos de programa\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-14 113520]
"FixCamera"="c:\windows\FixCamera.exe" [2007-07-11 20480]
"tsnp2std"="c:\windows\tsnp2std.exe" [2007-05-10 270336]
"snp2std"="c:\windows\vsnp2std.exe" [2007-09-28 344064]
"AVG8_TRAY"="c:\archiv~1\AVG\AVG8\avgtray.exe" [2009-06-15 1948440]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter]
2009-06-15 12:25 11952 ----a-w- c:\windows\system32\avgrsstx.dll
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001
"AntiVirusOverride"=dword:00000001
"FirewallOverride"=dword:00000001
"UacDisableNotify"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"AntiVirusOverride"=dword:00000001
"AntiVirusDisableNotify"=dword:00000001
"FirewallDisableNotify"=dword:00000001
"FirewallOverride"=dword:00000001
"UpdatesDisableNotify"=dword:00000001
"UacDisableNotify"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Archivos de programa\\Adobe\\Reader 8.0\\Reader\\Reader_sl.exe"=
"c:\\WINDOWS\\vsnp2std.exe"=
"c:\\WINDOWS\\system32\\wuauclt.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Archivos de programa\\AVG\\AVG8\\avgupd.exe"=
"c:\\Archivos de programa\\AVG\\AVG8\\avgnsx.exe"=
R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [15/06/2009 14:25 327688]
R1 AvgTdiX;AVG Free8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [15/06/2009 14:25 108552]
R2 avg8wd;AVG Free8 WatchDog;c:\archiv~1\AVG\AVG8\avgwdsvc.exe [15/06/2009 14:24 298776]
S3 abp470n5;abp470n5;\??\c:\windows\system32\drivers\jmuimn.sys --> c:\windows\system32\drivers\jmuimn.sys [?]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.es/
uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com/ie
IE: E&xportar a Microsoft Excel - c:\archiv~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-06-15 15:48
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2009-06-15 15:52
ComboFix-quarantined-files.txt 2009-06-15 13:51
Pre-Run: 12.709.105.664 bytes libres
Post-Run: 12.770.795.520 bytes libres
119