Problème divers

Bien le bonjour,


Suite à la vue du topic : virus methode preliminaire de desinfection version fr



Je colle içi les rapports en espèrant une aide ;)













Ewido anti-spyware 4.0 :



ewido anti-spyware - Scan Report
---------------------------------------------------------

+ Created at: 19:23 06-10-21

+ Scan result:



C:\Documents and Settings\Dom\Cookies\dom@247realmedia[1].txt -> TrackingCookie.247realmedia : No action taken.
C:\Documents and Settings\Dom\Cookies\dom@247realmedia[2].txt -> TrackingCookie.247realmedia : No action taken.
C:\Documents and Settings\Dom\Cookies\dom@atdmt[2].txt -> TrackingCookie.Atdmt : No action taken.
C:\Documents and Settings\Dom\Cookies\dom@bluestreak[2].txt -> TrackingCookie.Bluestreak : No action taken.
C:\Documents and Settings\Dom\Cookies\dom@doubleclick[1].txt -> TrackingCookie.Doubleclick : No action taken.
C:\Documents and Settings\Dom\Cookies\dom@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : No action taken.
C:\Documents and Settings\Dom\Cookies\dom@weborama[1].txt -> TrackingCookie.Weborama : No action taken.
C:\Documents and Settings\Dom\Cookies\dom@weborama[2].txt -> TrackingCookie.Weborama : No action taken.


::Report end



















Bitdefender , scan en ligne :


C:\System Volume Information\_restore{8305C4BF-9DE5-4C13-9D5C-61055105888B}\RP16\A0006144.exe
Infected with: MemScan:Trojan.Downloader.Agent.XYZ

C:\System Volume Information\_restore{8305C4BF-9DE5-4C13-9D5C-61055105888B}\RP16\A0006144.exe
Disinfection failed

C:\System Volume Information\_restore{8305C4BF-9DE5-4C13-9D5C-61055105888B}\RP16\A0006144.exe
Deleted

C:\System Volume Information\_restore{8305C4BF-9DE5-4C13-9D5C-61055105888B}\RP16\A0006150.exe
Infected with: MemScan:Trojan.Downloader.Agent.XYZ

C:\System Volume Information\_restore{8305C4BF-9DE5-4C13-9D5C-61055105888B}\RP16\A0006150.exe
Disinfection failed

C:\System Volume Information\_restore{8305C4BF-9DE5-4C13-9D5C-61055105888B}\RP16\A0006150.exe
Deleted

C:\System Volume Information\_restore{8305C4BF-9DE5-4C13-9D5C-61055105888B}\RP21\A0008943.exe
Detected with: Application.VTesttool.A

C:\System Volume Information\_restore{8305C4BF-9DE5-4C13-9D5C-61055105888B}\RP21\A0008943.exe
Deleted

C:\System Volume Information\_restore{8305C4BF-9DE5-4C13-9D5C-61055105888B}\RP21\A0008945.exe
Detected with: Application.VTesttool.C

C:\System Volume Information\_restore{8305C4BF-9DE5-4C13-9D5C-61055105888B}\RP21\A0008945.exe
Deleted

C:\System Volume Information\_restore{8305C4BF-9DE5-4C13-9D5C-61055105888B}\RP22\A0009961.exe
Detected with: Application.VTesttool.C

C:\System Volume Information\_restore{8305C4BF-9DE5-4C13-9D5C-61055105888B}\RP22\A0009961.exe
Deleted

C:\System Volume Information\_restore{8305C4BF-9DE5-4C13-9D5C-61055105888B}\RP22\A0009962.exe
Detected with: Application.VTesttool.A

C:\System Volume Information\_restore{8305C4BF-9DE5-4C13-9D5C-61055105888B}\RP22\A0009962.exe
Deleted














Hijackthis


Logfile of HijackThis v1.99.1
Scan saved at 19:49, on 06-10-21
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Softwin\BitDefender8\bdmcon.exe
C:\Program Files\Softwin\BitDefender8\bdnagent.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\Mixer.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Outils à installer anti-tout\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O4 - HKLM\..\Run: [BDMCon] "C:\Program Files\Softwin\BitDefender8\bdmcon.exe"
O4 - HKLM\..\Run: [BDNewsAgent] "C:\Program Files\Softwin\BitDefender8\bdnagent.exe"
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [DrWebScheduler] C:\Program Files\DrWeb\DRWEBSCD.EXE
O4 - HKLM\..\Run: [SpIDerNT] C:\PROGRA~1\DrWeb\spidernt.exe /agent
O4 - HKLM\..\Run: [SpIDerMail] "C:\Program Files\DrWeb\spiderml.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKCU\..\Run: [WINSOS VERIFY] "C:\Program Files\Winsos\WINSOS.EXE" MINI
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O10 - Unknown file in Winsock LSP: c:\windows\system32\drwebsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\drwebsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\drwebsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\drwebsp.dll
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O20 - Winlogon Notify: navdqu - C:\WINDOWS\SYSTEM32\navdqu.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe" /service (file missing)
O23 - Service: CA ISafe (CAISafe) - Computer Associates International, Inc. - C:\WINDOWS\system32\ZoneLabs\isafe.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: SpIDer Guard for Windows NT (spidernt) - Unknown owner - C:\PROGRA~1\DrWeb\SpiderNT.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Unknown owner - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: BitDefender Communicator (XCOMM) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe" /service (file missing)



Voici , en vous remerciant d'avance et en vous adressant mes plus sincères et devouées salutations..