Spyware
jjmode
-
jjmodes Messages postés 44 Date d'inscription Statut Membre Dernière intervention -
jjmodes Messages postés 44 Date d'inscription Statut Membre Dernière intervention -
Bonjour,
je viens de faire un scan avec spyware doctor 4.1 et il ma trouvé un tas de truc! ,mais le probléme c'est qu'il faut s'enregistrer et payer pour pouvoir supprimer!! je pensais que cette version était gratuite maintenant??? y'aurait il le même logiciel qui supprime gratuitement?
je vous remercie pour vos réponses..
je viens de faire un scan avec spyware doctor 4.1 et il ma trouvé un tas de truc! ,mais le probléme c'est qu'il faut s'enregistrer et payer pour pouvoir supprimer!! je pensais que cette version était gratuite maintenant??? y'aurait il le même logiciel qui supprime gratuitement?
je vous remercie pour vos réponses..
A voir également:
- Spyware
- Spyware doctor - Télécharger - Antivirus & Antimalwares
- Spyware terminator - Télécharger - Antivirus & Antimalwares
- Spyware blaster - Télécharger - Antivirus & Antimalwares
- Anti spyware gratuit - Télécharger - Antivirus & Antimalwares
- Anti spyware - Télécharger - Antivirus & Antimalwares
83 réponses
g!rly bonjour
pourquoi je n'arrive pas à faire un log complet d'hijackhis???? je désespére je ne sais plus quoi faire et mon ordi qui bloque sans arrêt!!!il y à bien un scan éxistant qui pourrait lire mon ordi et voir les problémes!! sans que j'ai à toucher à quoi que se soit! merci
pourquoi je n'arrive pas à faire un log complet d'hijackhis???? je désespére je ne sais plus quoi faire et mon ordi qui bloque sans arrêt!!!il y à bien un scan éxistant qui pourrait lire mon ordi et voir les problémes!! sans que j'ai à toucher à quoi que se soit! merci
re
j'ai avast comme anti virus! parcontre par feu je sais pas!! sur mon ordi j'ai ( spybot et avast c'est tout ) et ccleaner maintenant au fait j'ai récupéré de la place sur mon disque dur avec le nettoyage de ccleaner.
j'ai avast comme anti virus! parcontre par feu je sais pas!! sur mon ordi j'ai ( spybot et avast c'est tout ) et ccleaner maintenant au fait j'ai récupéré de la place sur mon disque dur avec le nettoyage de ccleaner.
re,
je te propose ceci :
desinstal avast et telecharge et instal antivir et fais un scan complet de ta machine en mode sans echec et post le rapport ici
Antivir vs Avast :
->http://forum.malekal.com/ftopic3528.php
antivir :
https://www.usitility.com/fr/avira-free-antivirus/
http://mickael.barroux.free.fr/securite/antivir.php <- tutoriel configuration du scanner...
-> Redémarre en mode sans échec :
Comment redémarrer en mode sans echec?
Tu redemarre le pc et tapote la touche F8 des le début de l allumage sans t´arrêter.
Une fenêtre sur fond noir va s’ouvrir, tu te déplaces avec les flèches du clavier sur démarrer en mode sans échec puis tape entrée.
capture d´ecran : http://www.coupdepoucepc.com/images_cdppc4/fichespratiques/windowsxp/modese/modese2.jpg
Une fois sur le bureau si il n y a pas toutes les couleurs et autres c´est normal!
Ps : si F8 ne marche pas utilise la touche F5.
-> Redémarre normalement et poste le rapport ici
pour le par feu :
par feu : kerio
Kerio (pare-feu) : reste gratuit après la période d'essai en français
----> https://www.zebulon.fr/telechargements/securite/firewalls/kerio.html
Regarde ce tutoriel si tu as besoin d'aide pour l'installation et la configuration de Kerio
--> https://kerio.probb.fr/t1-tuto-pour-kerio-4-2
Plus d'info :
->https://kerio.probb.fr/
ou zone alarm plus facil a configurer mais moins performant
http://www.kachouri.com/tuto/tuto-143-zonealarm-installation-du-firewall--pare-feu.html
@+
je te propose ceci :
desinstal avast et telecharge et instal antivir et fais un scan complet de ta machine en mode sans echec et post le rapport ici
Antivir vs Avast :
->http://forum.malekal.com/ftopic3528.php
antivir :
https://www.usitility.com/fr/avira-free-antivirus/
http://mickael.barroux.free.fr/securite/antivir.php <- tutoriel configuration du scanner...
-> Redémarre en mode sans échec :
Comment redémarrer en mode sans echec?
Tu redemarre le pc et tapote la touche F8 des le début de l allumage sans t´arrêter.
Une fenêtre sur fond noir va s’ouvrir, tu te déplaces avec les flèches du clavier sur démarrer en mode sans échec puis tape entrée.
capture d´ecran : http://www.coupdepoucepc.com/images_cdppc4/fichespratiques/windowsxp/modese/modese2.jpg
Une fois sur le bureau si il n y a pas toutes les couleurs et autres c´est normal!
Ps : si F8 ne marche pas utilise la touche F5.
-> Redémarre normalement et poste le rapport ici
pour le par feu :
par feu : kerio
Kerio (pare-feu) : reste gratuit après la période d'essai en français
----> https://www.zebulon.fr/telechargements/securite/firewalls/kerio.html
Regarde ce tutoriel si tu as besoin d'aide pour l'installation et la configuration de Kerio
--> https://kerio.probb.fr/t1-tuto-pour-kerio-4-2
Plus d'info :
->https://kerio.probb.fr/
ou zone alarm plus facil a configurer mais moins performant
http://www.kachouri.com/tuto/tuto-143-zonealarm-installation-du-firewall--pare-feu.html
@+
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
oulala encore un tas de truc sniff je veux pas faire redémarrer l'ordi en mode sans échec car gros probléme quand je l'allume il démarre pas de suite et je suis obligé de couper la tour derriére et attendre un peu pour le rallumer et la avec un peu de peine il se rallume alors tu comprendras que je ne préfére pas faire de redémarrage en mode sans échec!!! je sais je suis pénible mais mon ordi devient vieux et pas envie qu'il rende l'âme pour l'instant j'en ai trop besoin et mon futur ordi n'est pas prévu pour l'instant lol es ce que je peux désinstaller avast et mettre antivir et voir ce que ca donne pour la suite??? merci pour ta patience
re,
oui je voie, pas facil lol
instal antivir et fais un scan en mode normal alors et post le rapport ici
@+
oui je voie, pas facil lol
instal antivir et fais un scan en mode normal alors et post le rapport ici
@+
pour le pare feu ( kerio ) c'est pour windows 2000 et xp et moi c'est windows 98 lol sinon je vais voir pour installer antivir j'ai noté les instruction du tutoriel car en anglais grrrr et je vais tout suivre et on verra! parcontre le scan je le fais des que possible car ca va être long mais je te tiens au courant et encore merci
ps: je suis sur que tu n'as jamais était autant embêté lol
ps: je suis sur que tu n'as jamais était autant embêté lol
re,
j´ai trouvé celui la compatible win 98 !
https://www.zdnet.fr/telecharger/logiciel/zonealarm-antivirus-11005351s.htm
je suis embêté a cause de ton os!!!
tu ne m´embete pas du tout = nuance
bonne soirée
@+
j´ai trouvé celui la compatible win 98 !
https://www.zdnet.fr/telecharger/logiciel/zonealarm-antivirus-11005351s.htm
je suis embêté a cause de ton os!!!
tu ne m´embete pas du tout = nuance
bonne soirée
@+
bonjour g!rly
j'ai commencé un scan avec antivir mais j'ai fait que l'amoitié trop long et il était tard ! donc j'ai stoppé l'analyse mais en analysant hier il ma déjà trouvé un tas de trojan que j'ai mis en quarantaine pour l'instant et je supprimerais par la suite! je refais un scan complet aujourd'hui et je poste le rapport.
j'ai commencé un scan avec antivir mais j'ai fait que l'amoitié trop long et il était tard ! donc j'ai stoppé l'analyse mais en analysant hier il ma déjà trouvé un tas de trojan que j'ai mis en quarantaine pour l'instant et je supprimerais par la suite! je refais un scan complet aujourd'hui et je poste le rapport.
voilà le scan complet :oulala pleins de probléme donc tout est mis en quarantaine! dit moi ce que je dois faire maintenant dois-je tout supprimer? merci
AntiVir PersonalEdition Classic
Report file date: vendredi 30 novembre 2007 09:53
Scanning for 954605 virus strains and unwanted programs.
Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows Me
Windows version: (plain) [4.90.3000]
Username: Standard
Computer name: OEMCOMPUTER
Version information:
BUILD.DAT : 247 11838 Bytes 10/05/2007 11:48:00
AVSCAN.EXE : 7.0.4.15 274472 Bytes 20/04/2007 12:41:04
AVSCAN.DLL : 7.0.4.4 33832 Bytes 27/03/2007 12:13:38
LUKE.DLL : 7.0.4.11 135208 Bytes 27/03/2007 12:10:58
LUKERES.DLL : 7.0.4.0 10280 Bytes 20/03/2007 08:44:12
ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 20:52:30
ANTIVIR1.VDF : 7.0.0.0 1640448 Bytes 13/09/2007 20:52:30
ANTIVIR2.VDF : 7.0.1.0 1393152 Bytes 23/11/2007 20:52:30
ANTIVIR3.VDF : 7.0.1.25 188928 Bytes 29/11/2007 20:52:30
AVEWIN32.DLL : 7.6.0.34 3125760 Bytes 29/11/2007 20:52:34
AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 10:21:50
AVPREF.DLL : 7.0.2.1 18984 Bytes 27/03/2007 12:13:32
AVREP.DLL : 7.0.0.1 122920 Bytes 16/04/2007 13:16:28
AVPACK32.DLL : 7.3.0.15 348200 Bytes 29/11/2007 20:52:36
AVREG.DLL : 7.0.1.2 31784 Bytes 15/03/2007 08:58:54
AVEVTLOG.DLL : 7.0.0.18 81960 Bytes 27/03/2007 12:08:16
RCIMAGE.DLL : 7.0.1.15 2228264 Bytes 13/03/2007 10:45:42
RCTEXT.DLL : 7.0.45.0 86056 Bytes 19/03/2007 12:42:26
Configuration settings for the scan:
Jobname..........................: Local Drives
Configuration file...............: C:\PROGRAM FILES\ANTIVIR PERSONALEDITION CLASSIC\alldrives.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: off
Scan boot sector.................: on
Boot sectors.....................: E:,
Scan memory......................: on
Process scan.....................: on
Scan registry....................: on
Scan all files...................: Intelligent file selection
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium
Start of the scan: vendredi 30 novembre 2007 09:53
The scan of running processes will be started
Scan process 'AVSCAN.EXE' - '1' Module(s) have been scanned
Scan process 'AVCENTER.EXE' - '1' Module(s) have been scanned
Scan process 'PSTORES.EXE' - '1' Module(s) have been scanned
Scan process 'DDHELP.EXE' - '1' Module(s) have been scanned
Scan process 'TAPISRV.EXE' - '1' Module(s) have been scanned
Scan process 'RNAAPP.EXE' - '1' Module(s) have been scanned
Scan process 'WMIEXE.EXE' - '1' Module(s) have been scanned
Scan process 'DSLMON.EXE' - '1' Module(s) have been scanned
Scan process 'WKCALREM.EXE' - '1' Module(s) have been scanned
Scan process 'AVGCTRL.EXE' - '1' Module(s) have been scanned
Scan process 'REALSCHED.EXE' - '1' Module(s) have been scanned
Scan process 'LOADQM.EXE' - '1' Module(s) have been scanned
Scan process 'SYSTRAY.EXE' - '1' Module(s) have been scanned
Scan process 'TASKMON.EXE' - '1' Module(s) have been scanned
Scan process 'STMGR.EXE' - '1' Module(s) have been scanned
Scan process 'EXPLORER.EXE' - '1' Module(s) have been scanned
Scan process 'mmtask.tsk' - '1' Module(s) have been scanned
Scan process 'SCHEDM.EXE' - '1' Module(s) have been scanned
Scan process 'SSDPSRV.EXE' - '1' Module(s) have been scanned
Scan process 'MSTASK.EXE' - '1' Module(s) have been scanned
Scan process 'MPREXE.EXE' - '1' Module(s) have been scanned
Scan process 'MSGSRV32.EXE' - '1' Module(s) have been scanned
Scan process 'KERNEL32.DLL' - '1' Module(s) have been scanned
23 processes with 23 modules were scanned
Start scanning boot sectors:
Boot sector 'C:\'
[NOTE] No virus was found!
Boot sector 'A:\'
[NOTE] In the drive 'A:\' no data medium is inserted!
Starting to scan the registry.
The registry was scanned ( '35' files ).
Starting the file scan:
Begin scan in 'C:\'
C:\_RESTORE\ARCHIVE\FS280.CAB
[0] Archive type: CAB (Microsoft)
--> A0677226.CPY
[DETECTION] Is the Trojan horse TR/Crackpai.A.19
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS281.CAB
[0] Archive type: CAB (Microsoft)
--> A0677233.CPY
[DETECTION] Is the Trojan horse TR/Crackpai.A.19
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1141.CAB
[0] Archive type: CAB (Microsoft)
--> A1075149.CPY
[DETECTION] Is the Trojan horse TR/Dldr.Tibs.JY.1
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1144.CAB
[0] Archive type: CAB (Microsoft)
--> A1076256.CPY
[DETECTION] Is the Trojan horse TR/Dldr.Tibs.JY.1
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1137.CAB
[0] Archive type: CAB (Microsoft)
--> A1074073.CPY
[DETECTION] Is the Trojan horse TR/Dldr.Tibs.JY.1
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1138.CAB
[0] Archive type: CAB (Microsoft)
--> A1074104.CPY
[DETECTION] Is the Trojan horse TR/Dldr.Tibs.JY.1
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1154.CAB
[0] Archive type: CAB (Microsoft)
--> A1075259.CPY
[DETECTION] Is the Trojan horse TR/Dldr.Tibs.JY.1
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1162.CAB
[0] Archive type: CAB (Microsoft)
--> A1079607.CPY
[DETECTION] Is the Trojan horse TR/Dldr.Tibs.JY.1
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1166.CAB
[0] Archive type: CAB (Microsoft)
--> A1081660.CPY
[DETECTION] Is the Trojan horse TR/Dldr.Tibs.JY.1
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1163.CAB
[0] Archive type: CAB (Microsoft)
--> A1079656.CPY
[DETECTION] Is the Trojan horse TR/Dldr.Tibs.JY.1
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1171.CAB
[0] Archive type: CAB (Microsoft)
--> A1082956.CPY
[DETECTION] Is the Trojan horse TR/Dldr.Tibs.JY.1
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1168.CAB
[0] Archive type: CAB (Microsoft)
--> A1082658.CPY
[DETECTION] Is the Trojan horse TR/Dldr.Tibs.JY.1
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1172.CAB
[0] Archive type: CAB (Microsoft)
--> A1083955.CPY
[DETECTION] Is the Trojan horse TR/Dldr.Tibs.JY.1
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1316.CAB
[0] Archive type: CAB (Microsoft)
--> A1180394.CPY
[DETECTION] Is the Trojan horse TR/Dldr.Tibs.JY.1
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1384.CAB
[0] Archive type: CAB (Microsoft)
--> A1223915.CPY
[DETECTION] Is the Trojan horse TR/Crypt.F.Gen
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1423.CAB
[0] Archive type: CAB (Microsoft)
--> A1239381.CPY
[DETECTION] Is the Trojan horse TR/Bravesentry.K
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1734.CAB
[0] Archive type: CAB (Microsoft)
--> A1320560.CPY
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1793.CAB
[0] Archive type: CAB (Microsoft)
--> A1337901.CPY
[DETECTION] Contains signature of the Windows virus W95/Bumble
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS2140.CAB
[0] Archive type: CAB (Microsoft)
--> A1451799.CPY
[DETECTION] Is the Trojan horse TR/Dldr.Tiny.EU.2
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\WINDOWS\1764618250.exe
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '7d841d5a.qua'!
C:\WINDOWS\winlogon32.exe
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to 'b6bc5592.qua'!
C:\WINDOWS\TEMP\2.dlb
[DETECTION] Is the Trojan horse TR/Crypt.F.Gen
[INFO] The file was moved to 'a9bc4e50.qua'!
C:\WINDOWS\TEMP\6.dlb
[DETECTION] Is the Trojan horse TR/Crypt.F.Gen
[INFO] The file was moved to 'a9bc4e53.qua'!
C:\WINDOWS\TEMP\7.dlb
[DETECTION] Is the Trojan horse TR/Crypt.F.Gen
[INFO] The file was moved to 'a9bc4e56.qua'!
C:\WINDOWS\TEMP\h91746.exe
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '7b871b65.qua'!
C:\WINDOWS\TEMP\vx4_game.vir
[DETECTION] Is the Trojan horse TR/PePatch.DW.2
[INFO] The file was moved to 'aeaf1ea6.qua'!
C:\WINDOWS\TEMP\winA266.TMP
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7991589b.qua'!
C:\WINDOWS\TEMP\win8D63.TMP
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '8b88589d.qua'!
C:\WINDOWS\TEMP\winB94F.TMP
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '809258a0.qua'!
C:\WINDOWS\TEMP\win8E43.TMP
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '8c8858a3.qua'!
C:\WINDOWS\TEMP\5.dlb
[DETECTION] Is the Trojan horse TR/Dldr.Small.agq.4
[INFO] The file was moved to 'a9bc4e6b.qua'!
C:\WINDOWS\TEMP\win2693.TMP
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7d8258a9.qua'!
C:\WINDOWS\TEMP\winDEE.TMP
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '8c9458ab.qua'!
C:\WINDOWS\TEMP\winBA03.TMP
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '889258b0.qua'!
C:\WINDOWS\TEMP\vx2.game
[DETECTION] Is the Trojan horse TR/Crypt.F.Gen
[INFO] The file was moved to 'ae7e1cc2.qua'!
C:\WINDOWS\TEMP\vx1.game
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO
[INFO] The file was moved to 'ae7e1bc4.qua'!
C:\WINDOWS\TEMP\winD538.TMP
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7c9458b8.qua'!
C:\WINDOWS\TEMP\win4FB7.TMP
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '8d8458bb.qua'!
C:\WINDOWS\TEMP\vxt2.game
[DETECTION] Is the Trojan horse TR/Crypt.F.Gen
[INFO] The file was moved to '75825ecd.qua'!
C:\WINDOWS\TEMP\win38C.TMP
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7f8358c0.qua'!
C:\WINDOWS\TEMP\vx3.game
[DETECTION] Is the Trojan horse TR/Dldr.Small.dmk
[INFO] The file was moved to 'ae7e1dd1.qua'!
C:\WINDOWS\TEMP\vxt4.game
[DETECTION] Is the Trojan horse TR/Dldr.Tibs.C.1
[INFO] The file was moved to '75845ed3.qua'!
C:\WINDOWS\TEMP\win13F5.TMP
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7a8158c7.qua'!
C:\WINDOWS\TEMP\maxdd1.game
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to 'abb462c2.qua'!
C:\WINDOWS\TEMP\svchost.exe
[DETECTION] Is the Trojan horse TR/PSW.Online.gul.1
[INFO] The file was moved to 'b6b84e45.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\7d841d5a.qua
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '7884240e.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\b6bc5592.qua
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '7cb34de3.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\a9bc4e50.qua
[DETECTION] Is the Trojan horse TR/Crypt.F.Gen
[INFO] The file was moved to '7bb34de8.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\a9bc4e53.qua
[DETECTION] Is the Trojan horse TR/Crypt.F.Gen
[INFO] The file was moved to '7bb34deb.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\a9bc4e56.qua
[DETECTION] Is the Trojan horse TR/Crypt.F.Gen
[INFO] The file was moved to '7bb34dee.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\7b871b65.qua
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '78872419.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\aeaf1ea6.qua
[DETECTION] Is the Trojan horse TR/PePatch.DW.2
[INFO] The file was moved to '78b64d1f.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\7991589b.qua
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7c8124f6.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\8b88589d.qua
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7c882421.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\809258a0.qua
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7c8224f2.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\8c8858a3.qua
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7c882427.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\a9bc4e6b.qua
[DETECTION] Is the Trojan horse TR/Dldr.Small.agq.4
[INFO] The file was moved to '7bb34dff.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\7d8258a9.qua
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7c82242e.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\8c9458ab.qua
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7c84252f.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\889258b0.qua
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7c822506.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\ae7e1cc2.qua
[DETECTION] Is the Trojan horse TR/Crypt.F.Gen
[INFO] The file was moved to '78b52336.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\ae7e1bc4.qua
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO
[INFO] The file was moved to '78b52338.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\7c9458b8.qua
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7c842538.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\8d8458bb.qua
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7c84243c.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\75825ecd.qua
[DETECTION] Is the Trojan horse TR/Crypt.F.Gen
[INFO] The file was moved to '7c82240f.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\7f8358c0.qua
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7c832442.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\7a8158c7.qua
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7c812440.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\abb462c2.qua
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '7d844e43.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\b6b84e45.qua
[DETECTION] Is the Trojan horse TR/PSW.Online.gul.1
[INFO] The file was moved to '7b884e19.qua'!
Begin scan in 'A:\'
Search path A:\ could not be opened!
Le périphérique n'est pas prêt.
Begin scan in 'D:\'
Search path D:\ could not be opened!
Le périphérique n'est pas prêt.
Begin scan in 'E:\'
Search path E:\ could not be opened!
Le périphérique n'est pas prêt.
End of the scan: vendredi 30 novembre 2007 11:59
Used time: 2:05:38 min
The scan has been done completely.
3197 Scanning directories
303693 Files were scanned
69 viruses and/or unwanted programs were found
0 classified as suspicious:
0 files were deleted
0 files were repaired
50 files were moved to quarantine
0 files were renamed
0 Files cannot be scanned
303624 Files not concerned
6147 Archives were scanned
38 Warnings
38 Notes
0 Hidden objects were found
AntiVir PersonalEdition Classic
Report file date: vendredi 30 novembre 2007 09:53
Scanning for 954605 virus strains and unwanted programs.
Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows Me
Windows version: (plain) [4.90.3000]
Username: Standard
Computer name: OEMCOMPUTER
Version information:
BUILD.DAT : 247 11838 Bytes 10/05/2007 11:48:00
AVSCAN.EXE : 7.0.4.15 274472 Bytes 20/04/2007 12:41:04
AVSCAN.DLL : 7.0.4.4 33832 Bytes 27/03/2007 12:13:38
LUKE.DLL : 7.0.4.11 135208 Bytes 27/03/2007 12:10:58
LUKERES.DLL : 7.0.4.0 10280 Bytes 20/03/2007 08:44:12
ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 20:52:30
ANTIVIR1.VDF : 7.0.0.0 1640448 Bytes 13/09/2007 20:52:30
ANTIVIR2.VDF : 7.0.1.0 1393152 Bytes 23/11/2007 20:52:30
ANTIVIR3.VDF : 7.0.1.25 188928 Bytes 29/11/2007 20:52:30
AVEWIN32.DLL : 7.6.0.34 3125760 Bytes 29/11/2007 20:52:34
AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 10:21:50
AVPREF.DLL : 7.0.2.1 18984 Bytes 27/03/2007 12:13:32
AVREP.DLL : 7.0.0.1 122920 Bytes 16/04/2007 13:16:28
AVPACK32.DLL : 7.3.0.15 348200 Bytes 29/11/2007 20:52:36
AVREG.DLL : 7.0.1.2 31784 Bytes 15/03/2007 08:58:54
AVEVTLOG.DLL : 7.0.0.18 81960 Bytes 27/03/2007 12:08:16
RCIMAGE.DLL : 7.0.1.15 2228264 Bytes 13/03/2007 10:45:42
RCTEXT.DLL : 7.0.45.0 86056 Bytes 19/03/2007 12:42:26
Configuration settings for the scan:
Jobname..........................: Local Drives
Configuration file...............: C:\PROGRAM FILES\ANTIVIR PERSONALEDITION CLASSIC\alldrives.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: off
Scan boot sector.................: on
Boot sectors.....................: E:,
Scan memory......................: on
Process scan.....................: on
Scan registry....................: on
Scan all files...................: Intelligent file selection
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium
Start of the scan: vendredi 30 novembre 2007 09:53
The scan of running processes will be started
Scan process 'AVSCAN.EXE' - '1' Module(s) have been scanned
Scan process 'AVCENTER.EXE' - '1' Module(s) have been scanned
Scan process 'PSTORES.EXE' - '1' Module(s) have been scanned
Scan process 'DDHELP.EXE' - '1' Module(s) have been scanned
Scan process 'TAPISRV.EXE' - '1' Module(s) have been scanned
Scan process 'RNAAPP.EXE' - '1' Module(s) have been scanned
Scan process 'WMIEXE.EXE' - '1' Module(s) have been scanned
Scan process 'DSLMON.EXE' - '1' Module(s) have been scanned
Scan process 'WKCALREM.EXE' - '1' Module(s) have been scanned
Scan process 'AVGCTRL.EXE' - '1' Module(s) have been scanned
Scan process 'REALSCHED.EXE' - '1' Module(s) have been scanned
Scan process 'LOADQM.EXE' - '1' Module(s) have been scanned
Scan process 'SYSTRAY.EXE' - '1' Module(s) have been scanned
Scan process 'TASKMON.EXE' - '1' Module(s) have been scanned
Scan process 'STMGR.EXE' - '1' Module(s) have been scanned
Scan process 'EXPLORER.EXE' - '1' Module(s) have been scanned
Scan process 'mmtask.tsk' - '1' Module(s) have been scanned
Scan process 'SCHEDM.EXE' - '1' Module(s) have been scanned
Scan process 'SSDPSRV.EXE' - '1' Module(s) have been scanned
Scan process 'MSTASK.EXE' - '1' Module(s) have been scanned
Scan process 'MPREXE.EXE' - '1' Module(s) have been scanned
Scan process 'MSGSRV32.EXE' - '1' Module(s) have been scanned
Scan process 'KERNEL32.DLL' - '1' Module(s) have been scanned
23 processes with 23 modules were scanned
Start scanning boot sectors:
Boot sector 'C:\'
[NOTE] No virus was found!
Boot sector 'A:\'
[NOTE] In the drive 'A:\' no data medium is inserted!
Starting to scan the registry.
The registry was scanned ( '35' files ).
Starting the file scan:
Begin scan in 'C:\'
C:\_RESTORE\ARCHIVE\FS280.CAB
[0] Archive type: CAB (Microsoft)
--> A0677226.CPY
[DETECTION] Is the Trojan horse TR/Crackpai.A.19
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS281.CAB
[0] Archive type: CAB (Microsoft)
--> A0677233.CPY
[DETECTION] Is the Trojan horse TR/Crackpai.A.19
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1141.CAB
[0] Archive type: CAB (Microsoft)
--> A1075149.CPY
[DETECTION] Is the Trojan horse TR/Dldr.Tibs.JY.1
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1144.CAB
[0] Archive type: CAB (Microsoft)
--> A1076256.CPY
[DETECTION] Is the Trojan horse TR/Dldr.Tibs.JY.1
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1137.CAB
[0] Archive type: CAB (Microsoft)
--> A1074073.CPY
[DETECTION] Is the Trojan horse TR/Dldr.Tibs.JY.1
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1138.CAB
[0] Archive type: CAB (Microsoft)
--> A1074104.CPY
[DETECTION] Is the Trojan horse TR/Dldr.Tibs.JY.1
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1154.CAB
[0] Archive type: CAB (Microsoft)
--> A1075259.CPY
[DETECTION] Is the Trojan horse TR/Dldr.Tibs.JY.1
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1162.CAB
[0] Archive type: CAB (Microsoft)
--> A1079607.CPY
[DETECTION] Is the Trojan horse TR/Dldr.Tibs.JY.1
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1166.CAB
[0] Archive type: CAB (Microsoft)
--> A1081660.CPY
[DETECTION] Is the Trojan horse TR/Dldr.Tibs.JY.1
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1163.CAB
[0] Archive type: CAB (Microsoft)
--> A1079656.CPY
[DETECTION] Is the Trojan horse TR/Dldr.Tibs.JY.1
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1171.CAB
[0] Archive type: CAB (Microsoft)
--> A1082956.CPY
[DETECTION] Is the Trojan horse TR/Dldr.Tibs.JY.1
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1168.CAB
[0] Archive type: CAB (Microsoft)
--> A1082658.CPY
[DETECTION] Is the Trojan horse TR/Dldr.Tibs.JY.1
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1172.CAB
[0] Archive type: CAB (Microsoft)
--> A1083955.CPY
[DETECTION] Is the Trojan horse TR/Dldr.Tibs.JY.1
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1316.CAB
[0] Archive type: CAB (Microsoft)
--> A1180394.CPY
[DETECTION] Is the Trojan horse TR/Dldr.Tibs.JY.1
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1384.CAB
[0] Archive type: CAB (Microsoft)
--> A1223915.CPY
[DETECTION] Is the Trojan horse TR/Crypt.F.Gen
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1423.CAB
[0] Archive type: CAB (Microsoft)
--> A1239381.CPY
[DETECTION] Is the Trojan horse TR/Bravesentry.K
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1734.CAB
[0] Archive type: CAB (Microsoft)
--> A1320560.CPY
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS1793.CAB
[0] Archive type: CAB (Microsoft)
--> A1337901.CPY
[DETECTION] Contains signature of the Windows virus W95/Bumble
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\_RESTORE\ARCHIVE\FS2140.CAB
[0] Archive type: CAB (Microsoft)
--> A1451799.CPY
[DETECTION] Is the Trojan horse TR/Dldr.Tiny.EU.2
[WARNING] An error has occurred and the file was not deleted. ErrorID: 16003
[WARNING] The file could not be deleted!
C:\WINDOWS\1764618250.exe
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '7d841d5a.qua'!
C:\WINDOWS\winlogon32.exe
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to 'b6bc5592.qua'!
C:\WINDOWS\TEMP\2.dlb
[DETECTION] Is the Trojan horse TR/Crypt.F.Gen
[INFO] The file was moved to 'a9bc4e50.qua'!
C:\WINDOWS\TEMP\6.dlb
[DETECTION] Is the Trojan horse TR/Crypt.F.Gen
[INFO] The file was moved to 'a9bc4e53.qua'!
C:\WINDOWS\TEMP\7.dlb
[DETECTION] Is the Trojan horse TR/Crypt.F.Gen
[INFO] The file was moved to 'a9bc4e56.qua'!
C:\WINDOWS\TEMP\h91746.exe
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '7b871b65.qua'!
C:\WINDOWS\TEMP\vx4_game.vir
[DETECTION] Is the Trojan horse TR/PePatch.DW.2
[INFO] The file was moved to 'aeaf1ea6.qua'!
C:\WINDOWS\TEMP\winA266.TMP
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7991589b.qua'!
C:\WINDOWS\TEMP\win8D63.TMP
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '8b88589d.qua'!
C:\WINDOWS\TEMP\winB94F.TMP
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '809258a0.qua'!
C:\WINDOWS\TEMP\win8E43.TMP
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '8c8858a3.qua'!
C:\WINDOWS\TEMP\5.dlb
[DETECTION] Is the Trojan horse TR/Dldr.Small.agq.4
[INFO] The file was moved to 'a9bc4e6b.qua'!
C:\WINDOWS\TEMP\win2693.TMP
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7d8258a9.qua'!
C:\WINDOWS\TEMP\winDEE.TMP
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '8c9458ab.qua'!
C:\WINDOWS\TEMP\winBA03.TMP
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '889258b0.qua'!
C:\WINDOWS\TEMP\vx2.game
[DETECTION] Is the Trojan horse TR/Crypt.F.Gen
[INFO] The file was moved to 'ae7e1cc2.qua'!
C:\WINDOWS\TEMP\vx1.game
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO
[INFO] The file was moved to 'ae7e1bc4.qua'!
C:\WINDOWS\TEMP\winD538.TMP
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7c9458b8.qua'!
C:\WINDOWS\TEMP\win4FB7.TMP
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '8d8458bb.qua'!
C:\WINDOWS\TEMP\vxt2.game
[DETECTION] Is the Trojan horse TR/Crypt.F.Gen
[INFO] The file was moved to '75825ecd.qua'!
C:\WINDOWS\TEMP\win38C.TMP
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7f8358c0.qua'!
C:\WINDOWS\TEMP\vx3.game
[DETECTION] Is the Trojan horse TR/Dldr.Small.dmk
[INFO] The file was moved to 'ae7e1dd1.qua'!
C:\WINDOWS\TEMP\vxt4.game
[DETECTION] Is the Trojan horse TR/Dldr.Tibs.C.1
[INFO] The file was moved to '75845ed3.qua'!
C:\WINDOWS\TEMP\win13F5.TMP
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7a8158c7.qua'!
C:\WINDOWS\TEMP\maxdd1.game
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to 'abb462c2.qua'!
C:\WINDOWS\TEMP\svchost.exe
[DETECTION] Is the Trojan horse TR/PSW.Online.gul.1
[INFO] The file was moved to 'b6b84e45.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\7d841d5a.qua
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '7884240e.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\b6bc5592.qua
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '7cb34de3.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\a9bc4e50.qua
[DETECTION] Is the Trojan horse TR/Crypt.F.Gen
[INFO] The file was moved to '7bb34de8.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\a9bc4e53.qua
[DETECTION] Is the Trojan horse TR/Crypt.F.Gen
[INFO] The file was moved to '7bb34deb.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\a9bc4e56.qua
[DETECTION] Is the Trojan horse TR/Crypt.F.Gen
[INFO] The file was moved to '7bb34dee.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\7b871b65.qua
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '78872419.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\aeaf1ea6.qua
[DETECTION] Is the Trojan horse TR/PePatch.DW.2
[INFO] The file was moved to '78b64d1f.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\7991589b.qua
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7c8124f6.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\8b88589d.qua
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7c882421.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\809258a0.qua
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7c8224f2.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\8c8858a3.qua
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7c882427.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\a9bc4e6b.qua
[DETECTION] Is the Trojan horse TR/Dldr.Small.agq.4
[INFO] The file was moved to '7bb34dff.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\7d8258a9.qua
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7c82242e.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\8c9458ab.qua
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7c84252f.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\889258b0.qua
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7c822506.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\ae7e1cc2.qua
[DETECTION] Is the Trojan horse TR/Crypt.F.Gen
[INFO] The file was moved to '78b52336.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\ae7e1bc4.qua
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO
[INFO] The file was moved to '78b52338.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\7c9458b8.qua
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7c842538.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\8d8458bb.qua
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7c84243c.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\75825ecd.qua
[DETECTION] Is the Trojan horse TR/Crypt.F.Gen
[INFO] The file was moved to '7c82240f.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\7f8358c0.qua
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7c832442.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\7a8158c7.qua
[DETECTION] Is the Trojan horse TR/Proxy.Xorpix.AO.1
[INFO] The file was moved to '7c812440.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\abb462c2.qua
[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen
[INFO] The file was moved to '7d844e43.qua'!
C:\WINDOWS\Application Data\AntiVir PersonalEdition Classic\INFECTED\b6b84e45.qua
[DETECTION] Is the Trojan horse TR/PSW.Online.gul.1
[INFO] The file was moved to '7b884e19.qua'!
Begin scan in 'A:\'
Search path A:\ could not be opened!
Le périphérique n'est pas prêt.
Begin scan in 'D:\'
Search path D:\ could not be opened!
Le périphérique n'est pas prêt.
Begin scan in 'E:\'
Search path E:\ could not be opened!
Le périphérique n'est pas prêt.
End of the scan: vendredi 30 novembre 2007 11:59
Used time: 2:05:38 min
The scan has been done completely.
3197 Scanning directories
303693 Files were scanned
69 viruses and/or unwanted programs were found
0 classified as suspicious:
0 files were deleted
0 files were repaired
50 files were moved to quarantine
0 files were renamed
0 Files cannot be scanned
303624 Files not concerned
6147 Archives were scanned
38 Warnings
38 Notes
0 Hidden objects were found
salut jjmodes,
oui il a trouvé pas mal d´infections...
vide la quarrantaine et
Désactive ta restauration système:
pour cela :
Click droit sur poste de travail, dans l´arborescence sur propriétés;
dans la nouvelle fenettre click sur l´onglet restauration système;
coche la case désactiver la restauration systèm et applique.
puis redemarre le pc et click droit sur poste de travail, dans l´arborescence sur propriétés;
dans la nouvelle fenettre click sur l´onglet restauration systèm
décoche la case désactiver la restauration systèm et applique.
puis essaie de refaire combofix si tu y arrive
@+
oui il a trouvé pas mal d´infections...
vide la quarrantaine et
Désactive ta restauration système:
pour cela :
Click droit sur poste de travail, dans l´arborescence sur propriétés;
dans la nouvelle fenettre click sur l´onglet restauration système;
coche la case désactiver la restauration systèm et applique.
puis redemarre le pc et click droit sur poste de travail, dans l´arborescence sur propriétés;
dans la nouvelle fenettre click sur l´onglet restauration systèm
décoche la case désactiver la restauration systèm et applique.
puis essaie de refaire combofix si tu y arrive
@+
Désactive ta restauration système:
pour cela :
Click droit sur poste de travail, dans l´arborescence sur propriétés;
dans la nouvelle fenettre click sur l´onglet restauration système;
coche la case désactiver la restauration systèm et applique.
puis redemarre le pc et click droit sur poste de travail, dans l´arborescence sur propriétés;
dans la nouvelle fenettre click sur l´onglet restauration systèm
décoche la case désactiver la restauration systèm et applique.
je préfére pas faire ca! comme je t'ai déjà expliqué difficile pour allumer l'ordi!et à chaque fois que je dois le booter il y à active destock qui se met en fenêtre et je dois cliquer ok pour avoir ma page de bureau ! je vais vider la quarantaire et essayer de refaire un scan avec combofix si j'y arrive
quel galére !!
pour cela :
Click droit sur poste de travail, dans l´arborescence sur propriétés;
dans la nouvelle fenettre click sur l´onglet restauration système;
coche la case désactiver la restauration systèm et applique.
puis redemarre le pc et click droit sur poste de travail, dans l´arborescence sur propriétés;
dans la nouvelle fenettre click sur l´onglet restauration systèm
décoche la case désactiver la restauration systèm et applique.
je préfére pas faire ca! comme je t'ai déjà expliqué difficile pour allumer l'ordi!et à chaque fois que je dois le booter il y à active destock qui se met en fenêtre et je dois cliquer ok pour avoir ma page de bureau ! je vais vider la quarantaire et essayer de refaire un scan avec combofix si j'y arrive
quel galére !!
bon je viens de vider la quarantaine et je voulais te demander dans la case ( events) il y à aussi des éléments infectés es ce que je dois supprimer aussi?? sinon j'ai toujours pas réussit à faire un scan avec combofix une fenêtre s'ouvre et me dit ( "windows ne trouve pas %systemroot32/cmd ex. ) alors je fais quoi à s'avoir que mon ordi bloque toujours quand je vais sur mes icônes de bureau ou dans démarrer ca n'arrête pas ! je viens encore de le booter grrrrr
re,
il faudrait pourtant desactiver et reactiver la restauratio nsystem car elle est infecté et antivir n´a pas resussi a la desinfecter...
arrive tu as faire ceci
Télécharge SDFix (créé par AndyManchesta) et sauvegarde le sur ton Bureau.
http://downloads.andymanchesta.com/RemovalTools/SDFix.exe
Double clique sur SDFix.exe et choisis Install pour l'extraire dans un dossier dédié sur le Bureau. Redémarre ton ordinateur en mode sans échec en suivant la procédure que voici :
• Redémarre ton ordinateur
• Après avoir entendu l'ordinateur biper lors du démarrage, mais avant que l'icône Windows apparaisse, tapote la touche F8 (une pression par seconde).
• A la place du chargement normal de Windows, un menu avec différentes options devrait apparaître.
• Choisis la première option, pour exécuter Windows en mode sans échec, puis appuie sur "Entrée".
• Choisis ton compte.
Déroule la liste des instructions ci-dessous :
• Ouvre le dossier SDFix qui vient d'être créé dans le répertoire C:\ et double clique sur RunThis.bat pour lancer le script.
• Appuie sur Y pour commencer le processus de nettoyage.
• Il va supprimer les services et les entrées du Registre de certains trojans trouvés puis te demandera d'appuyer sur une touche pour redémarrer.
• Appuie sur une touche pour redémarrer le PC.
• Ton système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
• Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
• Appuie sur une touche pour finir l'exécution du script et charger les icônes de ton Bureau.
• Les icônes du Bureau affichées, le rapport SDFix s'ouvrira à l'écran et s'enregistrera aussi dans le dossier SDFix sous le nom Report.txt.
• Enfin, copie/colle le contenu du fichier Report.txt dans ta prochaine réponse sur le forum,
il faudrait pourtant desactiver et reactiver la restauratio nsystem car elle est infecté et antivir n´a pas resussi a la desinfecter...
arrive tu as faire ceci
Télécharge SDFix (créé par AndyManchesta) et sauvegarde le sur ton Bureau.
http://downloads.andymanchesta.com/RemovalTools/SDFix.exe
Double clique sur SDFix.exe et choisis Install pour l'extraire dans un dossier dédié sur le Bureau. Redémarre ton ordinateur en mode sans échec en suivant la procédure que voici :
• Redémarre ton ordinateur
• Après avoir entendu l'ordinateur biper lors du démarrage, mais avant que l'icône Windows apparaisse, tapote la touche F8 (une pression par seconde).
• A la place du chargement normal de Windows, un menu avec différentes options devrait apparaître.
• Choisis la première option, pour exécuter Windows en mode sans échec, puis appuie sur "Entrée".
• Choisis ton compte.
Déroule la liste des instructions ci-dessous :
• Ouvre le dossier SDFix qui vient d'être créé dans le répertoire C:\ et double clique sur RunThis.bat pour lancer le script.
• Appuie sur Y pour commencer le processus de nettoyage.
• Il va supprimer les services et les entrées du Registre de certains trojans trouvés puis te demandera d'appuyer sur une touche pour redémarrer.
• Appuie sur une touche pour redémarrer le PC.
• Ton système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
• Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
• Appuie sur une touche pour finir l'exécution du script et charger les icônes de ton Bureau.
• Les icônes du Bureau affichées, le rapport SDFix s'ouvrira à l'écran et s'enregistrera aussi dans le dossier SDFix sous le nom Report.txt.
• Enfin, copie/colle le contenu du fichier Report.txt dans ta prochaine réponse sur le forum,
grrrr je ne veux pas redémarrer mon ordi en mode sans échec il bloque beaucoup et c'est déjà un probléme pour le rallumer sniffff n'y à t'il pas un moyen beaucoup plus simple pour supprimer ces satanés virus !!!! stp trouve moi une autre solution sans que j'ai à toucher à quoi que ce soit sur l'ordi. je t'assure qu'il va rendre l'âme sinon lol je suis embêtante je sais mais franchement il est trop vieux et merdouille trop pour que je touche au systéme sniff
re,
helas je ne voie pas trop quoi faire d´autre...
refais un scan avec antivir dans ce cas la et post le rappport ici
@+
helas je ne voie pas trop quoi faire d´autre...
refais un scan avec antivir dans ce cas la et post le rappport ici
@+
une petite question depuis que j'ai changé dans mes options internet les actives x je n'arrive plus à regarder les vidéos! une fenêtre s'ouvre me disant que ma page ne peut pas s'affiche et ca parle d'active x et je ne sais plus comment c'était avant pourrais tu me dire stp merci
re,
je te le remets ici :
activ x :
As tu accepter les activ X ?
si non vérifie comme ceci :
-> menu :
"Outils" ->
"Options Internet" d'Internet Explorer :
dans l'onglet "Sécurité", places toi sur la zone "Internet" et clique sur "Valeurs par défaut".
dans onglet "Avancé" clique aussi sur "Valeurs par défaut".
-> Vérifie également que les activ X sont bien paramétrés comme ceci :
http://membres.lycos.fr/dude2005/reglages/activex_scan.png
-> Reconnecte-toi sur le site de bit defender : https://www.bitdefender.com/toolbox/ tu verras qu'avant de télécharger l'activ X,
au dessus dans la barre de Internet Explorer, il faut l'autoriser.
mais c´est peux etre pas le moment de regarder des videos, tu es infecté par des trojans et la restauration system est touché...
je te le remets ici :
activ x :
As tu accepter les activ X ?
si non vérifie comme ceci :
-> menu :
"Outils" ->
"Options Internet" d'Internet Explorer :
dans l'onglet "Sécurité", places toi sur la zone "Internet" et clique sur "Valeurs par défaut".
dans onglet "Avancé" clique aussi sur "Valeurs par défaut".
-> Vérifie également que les activ X sont bien paramétrés comme ceci :
http://membres.lycos.fr/dude2005/reglages/activex_scan.png
-> Reconnecte-toi sur le site de bit defender : https://www.bitdefender.com/toolbox/ tu verras qu'avant de télécharger l'activ X,
au dessus dans la barre de Internet Explorer, il faut l'autoriser.
mais c´est peux etre pas le moment de regarder des videos, tu es infecté par des trojans et la restauration system est touché...