[virus]Quel est mon virus ? svp Fermé

Question

Salut , alors voila j'ai kaspersky comme anti virus et il me dit que j'ai un virus et il n'arrive pas a me l'enlever alors j'ai fait un scan avec Hijackthis mais je ne vois pas ou est mon virus donc je m'adresse a vous pour une aide svp voici mon rapport de scan : Logfile of HijackThis v1.99.1Scan saved at 16:43:44, on 29/01/2006Platform: Windows XP SP1 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\ATKKBService.exeC:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exeC:\WINDOWS\system32undll32.exeC:\Program Files\protec\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\avpcc.exeC:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exeC:\Program Files\protec\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\avpm.exeC:\Program Files\Autodesk\3dsMax8\mentalray\satelliteaysat_3dsmax8server.exeC:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exeC:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin
SvcIp.exeC:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin
SvcLog.exeC:\WINDOWS\System32
vsvc32.exeC:\WINDOWS\Explorer.EXEC:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exeC:\WINDOWS\System32\UAService7.exeC:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin
SvcAppFlt.exeC:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin
TrayFw.exeC:\WINDOWS\SOUNDMAN.EXEC:\Program Files\Java\j2re1.4.2_04\bin\jusched.exeC:\Program Files\ASUS\Ai Booster\OverClk.exeC:\WINDOWS\System32\RUNDLL32.EXEC:\Program Files\protec\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\avpcc.exeC:\WINDOWS\System32\winIogon.exeC:\WINDOWS\System32\ctfmon.exeC:\WINDOWS\BricoPacks\Longhorn Inspirat\ObjectDock\ObjectDock.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\JEUX\DAEMON Tools\daemon.exeE:\HijackThis.exeR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.neuf.frR0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = LiensO3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocxO4 - HKLM\..\Run: [nTrayFw] C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin
TrayFw.exeO4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXEO4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_04\bin\jusched.exeO4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartupO4 - HKLM\..\Run: [nwiz] nwiz.exe /installO4 - HKLM\..\Run: [Launch Ai Booster] "C:\Program Files\ASUS\Ai Booster\OverClk.exe"O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exeO4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInitO4 - HKLM\..\Run: [OfficeGuard RegChecker] "C:\Program Files\protec\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\ogrc.exe"O4 - HKLM\..\Run: [AVPCC] "C:\Program Files\protec\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\avpcc.exe" /waitO4 - HKLM\..\Run: [Windows Logon Application] C:\WINDOWS\System32\winIogon.exeO4 - HKLM\..\Run: [ihost.exe] C:	askmgrs.exeO4 - HKLM\..\Run: [Configuration Loader] scvhost.exeO4 - HKLM\..\RunServices: [Configuration Loader] scvhost.exeO4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exeO4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /backgroundO4 - HKCU\..\Run: [ASUS SmartDoctor] C:\Program Files\ASUS\SmartDoctor\SmartDoctor.exe  /startO4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exeO4 - Startup: Stardock ObjectDock.lnk = C:\WINDOWS\BricoPacks\Longhorn Inspirat\ObjectDock\ObjectDock.exeO4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Readereader_sl.exeO4 - Global Startup: SATARAID5.lnk = ?O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_04\bin
pjpi142_04.dllO9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_04\bin
pjpi142_04.dllO9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLLO10 - Unknown file in Winsock LSP: c:\windows\system32
vappfilter.dllO10 - Unknown file in Winsock LSP: c:\windows\system32
vappfilter.dllO10 - Unknown file in Winsock LSP: c:\windows\system32
vappfilter.dllO10 - Unknown file in Winsock LSP: c:\windows\system32
vappfilter.dllO10 - Unknown file in Winsock LSP: c:\windows\system32
vappfilter.dllO10 - Unknown file in Winsock LSP: c:\windows\system32
vappfilter.dllO10 - Unknown file in Winsock LSP: c:\windows\system32
vappfilter.dllO10 - Unknown file in Winsock LSP: c:\windows\system32
vappfilter.dllO10 - Unknown file in Winsock LSP: c:\windows\system32
vappfilter.dllO10 - Unknown file in Winsock LSP: c:\windows\system32
vappfilter.dllO10 - Unknown file in Winsock LSP: c:\windows\system32
vappfilter.dllO10 - Unknown file in Winsock LSP: c:\windows\system32
vappfilter.dllO10 - Unknown file in Winsock LSP: c:\windows\system32
vappfilter.dllO10 - Unknown file in Winsock LSP: c:\windows\system32
vappfilter.dllO10 - Unknown file in Winsock LSP: c:\windows\system32
vappfilter.dllO10 - Unknown file in Winsock LSP: c:\windows\system32
vappfilter.dllO10 - Unknown file in Winsock LSP: c:\windows\system32
vappfilter.dllO10 - Unknown file in Winsock LSP: c:\windows\system32
vappfilter.dllO20 - Winlogon Notify: policies - C:\WINDOWS\system32\l2p2lc7o1f.dllO20 - Winlogon Notify: winset32 - C:\WINDOWS\SYSTEM32\winset32.dllO23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exeO23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exeO23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Fichiers communs\Autodesk Shared\Service\AdskScSrv.exeO23 - Service: AVP Control Centre Service (AVPCC) - Unknown owner - C:\Program Files\protec\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\avpcc.exe" /service (file missing)O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin
SvcAppFlt.exeO23 - Service: Forceware Web Interface (ForcewareWebInterface) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe" -k runservice (file missing)O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exeO23 - Service: KAV Monitor Service (KAVMonitorService) - Unknown owner - C:\Program Files\protec\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\avpm.exe" /service (file missing)O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exeO23 - Service: RaySat_3dsmax8 Server (mi-raysat_3dsmax8) - Unknown owner - C:\Program Files\Autodesk\3dsMax8\mentalray\satelliteaysat_3dsmax8server.exeO23 - Service: ForceWare IP service (nSvcIp) - NVIDIA - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin
SvcIp.exeO23 - Service: ForceWare user log service (nSvcLog) - NVIDIA - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin
SvcLog.exeO23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32
vsvc32.exeO23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files\Fichiers communs\SolidWorks Shared\Service\SolidWorksLicensing.exeO23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exeO23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Unknown owner - C:\WINDOWS\System32\UAService7.exeSi vous pouvez m'aider a le supprimer je vous en serai tres reconnaissant !! merci !!

aranjuez31 · Answer

bjrtout d'abord tu utilisesAd-Aware (gratuit) : http://telecharger.01net.com/windows/Internet/internet_utlitaire/fiches/11643.html Le patch en Français pour Ad-Aware (gratuit) : http://telecharger.01net.com/windows/Internet/internet_utlitaire/fiches/25543.html colle le rapport stp

nastymax · Answer

voila mon rapport avec Ad-aware : Ad-Aware SE Build 1.06r1 Logfile Created on:dimanche 29 janvier 2006 17:09:57 Created with Ad-Aware SE Personal, free for private use. Using definitions file:SE1R47 24.05.2005 »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» References detected during the scan: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» EffectiveBrandToolbar(TAC index:7):1 total references MRU List(TAC index:0):11 total references »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Ad-Aware SE Settings =========================== Set : Search for negligible risk entries Set : Safe mode (always request confirmation) Set : Scan active processes Set : Scan registry Set : Deep-scan registry Set : Scan my IE Favorites for banned URLs Set : Scan my Hosts file Extended Ad-Aware SE Settings =========================== Set : Unload recognized processes & modules during scan Set : Scan registry for all users instead of current user only Set : Always try to unload modules before deletion Set : During removal, unload Explorer and IE if necessary Set : Let Windows remove files in use at next reboot Set : Delete quarantined objects after restoring Set : Include basic Ad-Aware settings in log file Set : Include additional Ad-Aware settings in log file Set : Include reference summary in log file Set : Include alternate data stream details in log file Set : Play sound at scan completion if scan locates critical objects 29-01-2006 17:09:57 - Scan started. (Full System Scan) MRU List Object Recognized! Location: : C:\Documents and Settings\max\recent Description : list of recently opened documents MRU List Object Recognized! Location: : S-1-5-21-1454471165-1532298954-839522115-1003\software\microsoft\direct3d\mostrecentapplication Description : most recent application to use microsoft direct3d MRU List Object Recognized! Location: : software\microsoft\direct3d\mostrecentapplication Description : most recent application to use microsoft direct3d MRU List Object Recognized! Location: : S-1-5-21-1454471165-1532298954-839522115-1003\software\microsoft\direct3d\mostrecentapplication Description : most recent application to use microsoft direct X MRU List Object Recognized! Location: : software\microsoft\direct3d\mostrecentapplication Description : most recent application to use microsoft direct X MRU List Object Recognized! Location: : software\microsoft\directdraw\mostrecentapplication Description : most recent application to use microsoft directdraw MRU List Object Recognized! Location: : S-1-5-21-1454471165-1532298954-839522115-1003\software\microsoft\directinput\mostrecentapplication Description : most recent application to use microsoft directinput MRU List Object Recognized! Location: : S-1-5-21-1454471165-1532298954-839522115-1003\software\microsoft\directinput\mostrecentapplication Description : most recent application to use microsoft directinput MRU List Object Recognized! Location: : S-1-5-21-1454471165-1532298954-839522115-1003\software\microsoft\windows\currentversion\explorer\comdlg32\lastvisitedmru Description : list of recent programs opened MRU List Object Recognized! Location: : S-1-5-21-1454471165-1532298954-839522115-1003\software\microsoft\windows\currentversion\explorer\comdlg32\opensavemru Description : list of recently saved files, stored according to file extension MRU List Object Recognized! Location: : S-1-5-21-1454471165-1532298954-839522115-1003\software\microsoft\windows\currentversion\explorer\recentdocs Description : list of recent documents opened Listing running processes »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» #:1 [smss.exe] FilePath : \SystemRoot\System32\ ProcessID : 688 ThreadCreationTime : 28-01-2006 19:42:18 BasePriority : Normal #:2 [winlogon.exe] FilePath : \??\C:\WINDOWS\system32\ ProcessID : 812 ThreadCreationTime : 28-01-2006 19:42:54 BasePriority : High #:3 [services.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 860 ThreadCreationTime : 28-01-2006 19:42:54 BasePriority : Normal FileVersion : 5.1.2600.0 (xpclient.010817-1148) ProductVersion : 5.1.2600.0 ProductName : Système d'exploitation Microsoft® Windows® CompanyName : Microsoft Corporation FileDescription : Applications Services et Contrôleur InternalName : services.exe LegalCopyright : © Microsoft Corporation. Tous droits réservés. OriginalFilename : services.exe #:4 [lsass.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 872 ThreadCreationTime : 28-01-2006 19:42:54 BasePriority : Normal FileVersion : 5.1.2600.1106 (xpsp1.020828-1920) ProductVersion : 5.1.2600.1106 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : LSA Shell (Export Version) InternalName : lsass.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : lsass.exe #:5 [svchost.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 1040 ThreadCreationTime : 28-01-2006 19:42:54 BasePriority : Normal FileVersion : 5.1.2600.0 (xpclient.010817-1148) ProductVersion : 5.1.2600.0 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Generic Host Process for Win32 Services InternalName : svchost.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : svchost.exe #:6 [svchost.exe] FilePath : C:\WINDOWS\System32\ ProcessID : 1068 ThreadCreationTime : 28-01-2006 19:42:54 BasePriority : Normal FileVersion : 5.1.2600.0 (xpclient.010817-1148) ProductVersion : 5.1.2600.0 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Generic Host Process for Win32 Services InternalName : svchost.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : svchost.exe #:7 [spoolsv.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 1392 ThreadCreationTime : 28-01-2006 19:42:55 BasePriority : Normal FileVersion : 5.1.2600.0 (XPClient.010817-1148) ProductVersion : 5.1.2600.0 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Spooler SubSystem App InternalName : spoolsv.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : spoolsv.exe #:8 [atkkbservice.exe] FilePath : C:\WINDOWS\ ProcessID : 1480 ThreadCreationTime : 28-01-2006 19:42:55 BasePriority : Normal FileVersion : 1, 0, 0, 0 ProductVersion : 1, 0, 0, 0 ProductName : ASUS Keyboard Service CompanyName : ASUSTeK COMPUTER INC. FileDescription : ASUS Keyboard Service InternalName : ATKKBService LegalCopyright : Copyright (C) 2004 @ASUSTeK COMPUTER INC. OriginalFilename : ATKKBService.exe #:9 [adskscsrv.exe] FilePath : C:\Program Files\Fichiers communs\Autodesk Shared\Service\ ProcessID : 1516 ThreadCreationTime : 28-01-2006 19:42:55 BasePriority : Normal FileVersion : 2.66.000 ProductName : Autodesk Licensing Service CompanyName : Autodesk FileDescription : System Level Service Utility #:10 [rundll32.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 1528 ThreadCreationTime : 28-01-2006 19:42:55 BasePriority : Normal FileVersion : 5.1.2600.0 (xpclient.010817-1148) ProductVersion : 5.1.2600.0 ProductName : Système d'exploitation Microsoft® Windows® CompanyName : Microsoft Corporation FileDescription : Exécuter une DLL en tant qu'application InternalName : rundll LegalCopyright : © Microsoft Corporation. Tous droits réservés. OriginalFilename : RUNDLL.EXE #:11 [avpcc.exe] FilePath : C:\Program Files\protec\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\ ProcessID : 1616 ThreadCreationTime : 28-01-2006 19:42:55 BasePriority : Normal FileVersion : 4.0.2.8 ProductVersion : 4.0.164.0 ProductName : Kaspersky Anti-Virus CompanyName : Kaspersky Labs. FileDescription : KL Control Centre InternalName : KL Control Centre LegalCopyright : Copyright (c) Kaspersky Labs. 1996-2002. LegalTrademarks : Kaspersky Anti-Virus(R) and AVP(R) are registered trademarks of Kaspersky Labs. OriginalFilename : AVPCC.EXE Comments : Andrey Bryksin [andrey@avp.ru] #:12 [apache.exe] FilePath : C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\ ProcessID : 1660 ThreadCreationTime : 28-01-2006 19:42:56 BasePriority : Normal FileVersion : 2.0.52 ProductVersion : 2.0.52 ProductName : Apache HTTP Server CompanyName : Apache Software Foundation FileDescription : Apache HTTP Server InternalName : Apache.exe LegalCopyright : Copyright © 2000-2004 The Apache Software Foundation. OriginalFilename : Apache.exe.exe Comments : All rights reserved. The license is available at . The Apache HTTP Server project pages are at . #:13 [avpm.exe] FilePath : C:\Program Files\protec\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\ ProcessID : 1696 ThreadCreationTime : 28-01-2006 19:42:56 BasePriority : Normal FileVersion : 4.2.0.58 ProductVersion : 4.2.0.0 ProductName : Kaspersky Anti-Virus CompanyName : Kaspersky Labs. FileDescription : KAV Monitor main module InternalName : AvpM LegalCopyright : Copyright (c) Kaspersky Labs. 1996-2002. LegalTrademarks : Kaspersky Anti-Virus(R) and AVP(R) are registered trademarks of Kaspersky Labs. OriginalFilename : AvpM.Exe Comments : Victor Matiouchenkov [victor@avp.ru] #:14 [raysat_3dsmax8server.exe] FilePath : C:\Program Files\Autodesk\3dsMax8\mentalray\satellite\ ProcessID : 1924 ThreadCreationTime : 28-01-2006 19:42:58 BasePriority : Normal #:15 [apache.exe] FilePath : C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\ ProcessID : 1932 ThreadCreationTime : 28-01-2006 19:42:58 BasePriority : Normal FileVersion : 2.0.52 ProductVersion : 2.0.52 ProductName : Apache HTTP Server CompanyName : Apache Software Foundation FileDescription : Apache HTTP Server InternalName : Apache.exe LegalCopyright : Copyright © 2000-2004 The Apache Software Foundation. OriginalFilename : Apache.exe.exe Comments : All rights reserved. The license is available at . The Apache HTTP Server project pages are at . #:16 [nsvcip.exe] FilePath : C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\ ProcessID : 1964 ThreadCreationTime : 28-01-2006 19:42:58 BasePriority : Normal FileVersion : 2, 2, 0, 464 ProductVersion : 2, 2, 0, 464 ProductName : NVIDIA nSvcIp CompanyName : NVIDIA FileDescription : nSvcIp InternalName : nSvcIp LegalCopyright : Copyright © 2004 OriginalFilename : nSvcIp.exe #:17 [nsvclog.exe] FilePath : C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\ ProcessID : 2004 ThreadCreationTime : 28-01-2006 19:42:58 BasePriority : Normal FileVersion : 2, 2, 0, 464 ProductVersion : 2, 2, 0, 464 ProductName : NVIDIA nSvcLog CompanyName : NVIDIA FileDescription : nSvcLog InternalName : nSvcLog LegalCopyright : Copyright © 2004 OriginalFilename : nSvcLog.exe #:18 [nvsvc32.exe] FilePath : C:\WINDOWS\System32\ ProcessID : 2040 ThreadCreationTime : 28-01-2006 19:42:58 BasePriority : Normal FileVersion : 6.14.10.8185 ProductVersion : 6.14.10.8185 ProductName : NVIDIA Driver Helper Service, Version 81.85 CompanyName : NVIDIA Corporation FileDescription : NVIDIA Driver Helper Service, Version 81.85 InternalName : NVSVC LegalCopyright : (C) NVIDIA Corporation. All rights reserved. OriginalFilename : nvsvc32.exe #:19 [explorer.exe] FilePath : C:\WINDOWS\ ProcessID : 272 ThreadCreationTime : 28-01-2006 19:42:58 BasePriority : Normal FileVersion : 6.00.2800.1106 (xpsp1.020828-1920) ProductVersion : 6.00.2800.1106 ProductName : Système d'exploitation Microsoft® Windows® CompanyName : Microsoft Corporation FileDescription : Explorateur Windows InternalName : explorer LegalCopyright : © Microsoft Corporation. Tous droits réservés. OriginalFilename : EXPLORER.EXE #:20 [starwindservice.exe] FilePath : C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\ ProcessID : 308 ThreadCreationTime : 28-01-2006 19:42:58 BasePriority : Normal FileVersion : 2.6.1 Build 0x20050401 ProductVersion : 2.6.1 Build 0x20050401 ProductName : StarWind CompanyName : Rocket Division Software FileDescription : StarWind iSCSI Target (Alcohol Edition) InternalName : StarWind LegalCopyright : Copyright (c) Rocket Division Software 2003-2005. All rights reserved. OriginalFilename : StarWind #:21 [uaservice7.exe] FilePath : C:\WINDOWS\System32\ ProcessID : 488 ThreadCreationTime : 28-01-2006 19:43:01 BasePriority : Normal #:22 [nsvcappflt.exe] FilePath : C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\ ProcessID : 540 ThreadCreationTime : 28-01-2006 19:43:03 BasePriority : Normal FileVersion : 1, 0, 1, 0 ProductVersion : 1, 0, 1, 0 ProductName : app_filter Module FileDescription : app_filter Module InternalName : app_filter LegalCopyright : Copyright 2004 OriginalFilename : app_filter.EXE #:23 [ntrayfw.exe] FilePath : C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\ ProcessID : 3004 ThreadCreationTime : 28-01-2006 19:43:18 BasePriority : Normal ProductName : NVIDIA Firewall. CompanyName : NVIDIA Corporation FileDescription : Firewall Tray Application InternalName : Firewall Tray LegalCopyright : Copyright (C) 2004. NVIDIA Corporation. OriginalFilename : nTrayFw.exe #:24 [soundman.exe] FilePath : C:\WINDOWS\ ProcessID : 3032 ThreadCreationTime : 28-01-2006 19:43:19 BasePriority : Normal FileVersion : 5.1.0.30 ProductVersion : 5.1.0.29 ProductName : Realtek Sound Manager CompanyName : Realtek Semiconductor Corp. FileDescription : Realtek Sound Manager InternalName : ALSMTray LegalCopyright : Copyright (c) 2001-2004 Realtek Semiconductor Corp. OriginalFilename : ALSMTray.exe Comments : Realtek AC97 Audio Sound Manager #:25 [jusched.exe] FilePath : C:\Program Files\Java\j2re1.4.2_04\bin\ ProcessID : 3056 ThreadCreationTime : 28-01-2006 19:43:19 BasePriority : Normal #:26 [overclk.exe] FilePath : C:\Program Files\ASUS\Ai Booster\ ProcessID : 3260 ThreadCreationTime : 28-01-2006 19:43:24 BasePriority : Normal #:27 [rundll32.exe] FilePath : C:\WINDOWS\System32\ ProcessID : 3268 ThreadCreationTime : 28-01-2006 19:43:24 BasePriority : Normal FileVersion : 5.1.2600.0 (xpclient.010817-1148) ProductVersion : 5.1.2600.0 ProductName : Système d'exploitation Microsoft® Windows® CompanyName : Microsoft Corporation FileDescription : Exécuter une DLL en tant qu'application InternalName : rundll LegalCopyright : © Microsoft Corporation. Tous droits réservés. OriginalFilename : RUNDLL.EXE #:28 [avpcc.exe] FilePath : C:\Program Files\protec\Kaspersky Lab\Kaspersky Anti-Virus Personal Pro\ ProcessID : 3284 ThreadCreationTime : 28-01-2006 19:43:24 BasePriority : Normal FileVersion : 4.0.2.8 ProductVersion : 4.0.164.0 ProductName : Kaspersky Anti-Virus CompanyName : Kaspersky Labs. FileDescription : KL Control Centre InternalName : KL Control Centre LegalCopyright : Copyright (c) Kaspersky Labs. 1996-2002. LegalTrademarks : Kaspersky Anti-Virus(R) and AVP(R) are registered trademarks of Kaspersky Labs. OriginalFilename : AVPCC.EXE Comments : Andrey Bryksin [andrey@avp.ru] #:29 [winiogon.exe] FilePath : C:\WINDOWS\System32\ ProcessID : 3300 ThreadCreationTime : 28-01-2006 19:43:24 BasePriority : Normal #:30 [ctfmon.exe] FilePath : C:\WINDOWS\System32\ ProcessID : 3308 ThreadCreationTime : 28-01-2006 19:43:25 BasePriority : Normal FileVersion : 5.1.2600.1106 (xpsp1.020828-1920) ProductVersion : 5.1.2600.1106 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : CTF Loader InternalName : CTFMON LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : CTFMON.EXE #:31 [objectdock.exe] FilePath : C:\WINDOWS\BricoPacks\Longhorn Inspirat\ObjectDock\ ProcessID : 3388 ThreadCreationTime : 28-01-2006 19:43:27 BasePriority : Normal FileVersion : v1.11.517u ProductVersion : v1.11.517u ProductName : Stardock ObjectDock CompanyName : Stardock FileDescription : ObjectDock InternalName : ObjectDock LegalCopyright : Copyright © 1999-2005 Jeff Bargmann, ©2002-2005 Stardock OriginalFilename : ObjectDock.exe #:32 [svchost.exe] FilePath : C:\WINDOWS\System32\ ProcessID : 536 ThreadCreationTime : 28-01-2006 20:11:51 BasePriority : Normal FileVersion : 5.1.2600.0 (xpclient.010817-1148) ProductVersion : 5.1.2600.0 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Generic Host Process for Win32 Services InternalName : svchost.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : svchost.exe #:33 [daemon.exe] FilePath : C:\Program Files\JEUX\DAEMON Tools\ ProcessID : 2924 ThreadCreationTime : 28-01-2006 21:36:39 BasePriority : Normal #:34 [ad-aware.exe] FilePath : C:\Program Files\protec\Ad-Aware SE Personal\ ProcessID : 3772 ThreadCreationTime : 29-01-2006 16:09:26 BasePriority : Normal FileVersion : 6.2.0.236 ProductVersion : SE 106 ProductName : Lavasoft Ad-Aware SE CompanyName : Lavasoft Sweden FileDescription : Ad-Aware SE Core application InternalName : Ad-Aware.exe LegalCopyright : Copyright © Lavasoft AB Sweden OriginalFilename : Ad-Aware.exe Comments : All Rights Reserved Memory scan result: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 0 Objects found so far: 11 Started registry scan »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Registry Scan result: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 0 Objects found so far: 11 Started deep registry scan »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Deep registry scan result: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 0 Objects found so far: 11 Started Tracking Cookie scan »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Tracking cookie scan result: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 0 Objects found so far: 11 Deep scanning and examining files (C:) »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» EffectiveBrandToolbar Object Recognized! Type : File Data : A0029654.dll TAC Rating : 7 Category : Data Miner Comment : Object : C:\System Volume Information\_restore{054D2D64-65B3-437E-902C-E49FB1FBA87E}\RP129\ FileVersion : 1, 0, 0, 1 ProductVersion : 1, 0, 0, 1 ProductName : IUCmore Module FileDescription : IUCmore Module InternalName : IUCmore LegalCopyright : Copyright 2001 OriginalFilename : IUCmore.DLL Disk Scan Result for C:\ »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 0 Objects found so far: 12 Deep scanning and examining files (F:) »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Disk Scan Result for F:\ »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 0 Objects found so far: 12 Deep scanning and examining files (H:) »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Disk Scan Result for H:\ »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 0 Objects found so far: 12 Scanning Hosts file...... Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts". »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Hosts file scan result: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» 29 entries scanned. New critical objects:0 Objects found so far: 12 Performing conditional scans... »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Conditional scan result: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 0 Objects found so far: 12 17:20:31 Scan Complete Summary Of This Scan »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Total scanning time:00:10:34.78 Objects scanned:236851 Objects identified:1 Objects ignored:0 New critical objects:1

nastymax · Answer

tout ce charabia .... arf lol ils devraient faire un prog qui fasse un scan et qui mette vous avezun virus avec le nom exact du virus !! ca serait beaucoup mieux !!! heureusement qu'il y a des experts ....

aranjuez31 · Answer

bsroui tu as bien raison, c'est ch... à lire et pas probant en plusle scan de Kapres ne te donne ni nom ni emplacement  ???----------scanonline avec bitdefet COLLE moi rapporthttp://www.bitdefender.fr/bd/site/search.php#------on va traquer aussi avecTélécharge ceci: (merci a S!RI pour ce petit programme). http://siri.urz.free.fr/Fix/SmitfraudFix.zip Exécute le, Double click sur Smitfraudfix.cmd choisit l’option 1, il va générer un rapport Copie/colle le sur le poste stp. ----------------------------------------------------------------------------

[virus]Quel est mon virus ? svp

4 réponses

Discussions similaires