Infecté par un virus!!! - Page 4

Résolu
Précédent
  • 1
  • 2
  • 3
  • 4
  1. Harry Seldon Messages postés 191 Statut Membre 1
     
    ca va pas du tout, j'ai beaucoup de mal a naviguer avec firefox et IE!
    0
  2. g!rly Messages postés 18462 Statut Contributeur 407
     
    re,

    Vide tes fichiers temporaires avec ceci:
    ->Clean Up 40:
    http://pageperso.aol.fr/balltrap34/CleanUp40.exe
    ->aide en image:(merci a Balltrap34)
    http://pageperso.aol.fr/balltrap34/democleanup.htm

    click sur option et decoche : delete prefect files.

    puis manuellement vide :

    :: Le contenu du dossier prefetch ::

    * C:\WINDOWS\Prefetch <= sauf le fichier layout.ini

    * Ne pas oublier de vider la corbeille !

    puis fais aussi celui ci :

    nettoie tes fichiers temporaires avec ceci : atf cleaner, regarde le tuto...

    http://www.infosecu.fr/atf.html

    telecharge le ici :

    http://serveur1.archive-host.com/membres/up/1366464061/ATF-Cleaner.rar

    @+
    0
  3. Harry Seldon Messages postés 191 Statut Membre 1
     
    ok c'est fait!
    j'avais l'impression que c'etait beaucoup mieux maintenant!et en fait bof bof.
    -
    La confiance n'exclut pas le contrôle.
    0
  4. g!rly Messages postés 18462 Statut Contributeur 407
     
    re,

    et bien tu me rassure ;-)

    tiens moi au courrant.

    @+
    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. Harry Seldon Messages postés 191 Statut Membre 1
     
    et bien je viens de rectifier le message en fait c'est toujours aussi alleatoire
    0
  7. g!rly Messages postés 18462 Statut Contributeur 407
     
    j´ai bien peur que ce ne soient mes dernieres cartes...
    0
  8. Harry Seldon Messages postés 191 Statut Membre 1
     
    Tu veux dire que ce n'est plus un problème de Virus mais juste de configuration?
    0
  9. g!rly Messages postés 18462 Statut Contributeur 407
     
    je pensse oui...
    0
  10. Harry Seldon Messages postés 191 Statut Membre 1
     
    ok G!rly,
    Je peux donc clore ce sujet?
    En tout cas je te remercie beaucoup, de m'avoir donné de ton temps pour me fournir ton aide précieuse.

    MERCI
    @++
    0
  11. g!rly Messages postés 18462 Statut Contributeur 407
     
    de rien.
    désolé si je n´arrives pas a t´aider plus que ca...
    bye`
    0
  12. Harry Seldon Messages postés 191 Statut Membre 1
     
    re,
    DSL! Antivir vient de détecter 1 virus!! encore; (Virus or unwanted program 'APPL/Tool.PsKill.2 [APPL/Tool.PsKill.2]'
    detected in file 'G:\System Volume Information\_restore{ABAF5229-C7C3-4DE4-9897-061B3C28B2DC}\RP194\A0041891.exe.)
    puis un deuxième quand j'ai lancer un scan antivir (The file contains a virus or unwanted program 'APPL/Tool.PsKill.2' [program]
    Action(s) taken:
    The file was moved to "4812841f.qua"!)
    j'ai mis en quanrantaine et supprimer.
    Que dois je faire maintenant?
    0
  13. g!rly Messages postés 18462 Statut Contributeur 407
     
    re,

    c´est clean.zip

    supprime clean.zip

    ...
    0
  14. Harry Seldon Messages postés 191 Statut Membre 1
     
    c'est fait, je lance une autre analyse et je te tiens au courant, si j'ai un problème .
    bonne soirée
    0
  15. g!rly Messages postés 18462 Statut Contributeur 407
     
    ok
    bonne soirée
    @+
    0
  16. Harry Seldon Messages postés 191 Statut Membre 1
     
    voici le rapport, il a trouvé un virus.

    AntiVir PersonalEdition Classic
    Report file date: lundi 4 février 2008 23:10

    Scanning for 1091873 virus strains and unwanted programs.

    Licensed to: Avira AntiVir PersonalEdition Classic
    Serial number: 0000149996-ADJIE-0001
    Platform: Windows XP
    Windows version: (Service Pack 2) [5.1.2600]
    Username: SYSTEM
    Computer name: GAETAN-ORDI

    Version information:
    BUILD.DAT : 270 15603 Bytes 19/09/2007 13:32:00
    AVSCAN.EXE : 7.0.6.1 290856 Bytes 05/09/2007 16:49:04
    AVSCAN.DLL : 7.0.6.0 49192 Bytes 05/09/2007 16:49:04
    LUKE.DLL : 7.0.5.3 147496 Bytes 05/09/2007 16:49:06
    LUKERES.DLL : 7.0.6.1 10280 Bytes 05/09/2007 16:49:06
    ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 16:50:14
    ANTIVIR1.VDF : 7.0.1.95 3367424 Bytes 14/12/2007 12:32:36
    ANTIVIR2.VDF : 7.0.2.49 1339904 Bytes 25/01/2008 11:30:24
    ANTIVIR3.VDF : 7.0.2.89 291840 Bytes 04/02/2008 15:38:00
    AVEWIN32.DLL : 7.6.0.62 3240448 Bytes 02/02/2008 13:05:09
    AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 09:36:26
    AVPREF.DLL : 7.0.2.2 25640 Bytes 05/09/2007 16:49:04
    AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 12:16:24
    AVPACK32.DLL : 7.6.0.3 360488 Bytes 15/01/2008 22:28:01
    AVREG.DLL : 7.0.1.6 30760 Bytes 05/09/2007 16:49:04
    AVARKT.DLL : 1.0.0.20 278568 Bytes 05/09/2007 16:49:03
    AVEVTLOG.DLL : 7.0.0.20 86056 Bytes 05/09/2007 16:49:04
    NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 10:09:42
    RCIMAGE.DLL : 7.0.1.30 2342952 Bytes 05/09/2007 16:48:53
    RCTEXT.DLL : 7.0.62.0 86056 Bytes 05/09/2007 16:48:53
    SQLITE3.DLL : 3.3.17.1 339968 Bytes 05/09/2007 16:49:07

    Configuration settings for the scan:
    Jobname..........................: Complete system scan
    Configuration file...............: c:\program files\antivir personaledition classic\sysscan.avp
    Logging..........................: low
    Primary action...................: interactive
    Secondary action.................: ignore
    Scan master boot sector..........: on
    Scan boot sector.................: on
    Boot sectors.....................: G:,
    Scan memory......................: on
    Process scan.....................: on
    Scan registry....................: on
    Search for rootkits..............: on
    Scan all files...................: All files
    Scan archives....................: on
    Recursion depth..................: 20
    Smart extensions.................: on
    Deviating archive types..........: +BSD Mailbox, +Netscape/Mozilla Mailbox, +Eudora Mailbox, +Squid cache, +Pegasus Mailbox, +MS Outlook Mailbox,
    Macro heuristic..................: on
    File heuristic...................: high
    Deviating risk categories........: +APPL,+GAME,+JOKE,+PCK,+SPR,

    Start of the scan: lundi 4 février 2008 23:10

    Starting search for hidden objects.
    '48738' objects were checked, '0' hidden objects were found.

    The scan of running processes will be started
    Scan process 'firefox.exe' - '1' Module(s) have been scanned
    Scan process 'avscan.exe' - '1' Module(s) have been scanned
    Scan process 'avcenter.exe' - '1' Module(s) have been scanned
    Scan process 'Watch.exe' - '1' Module(s) have been scanned
    Scan process 'ALERTM~1.EXE' - '1' Module(s) have been scanned
    Scan process 'PollingModule.exe' - '1' Module(s) have been scanned
    Scan process 'Inactivity.exe' - '1' Module(s) have been scanned
    Scan process 'Toaster.exe' - '1' Module(s) have been scanned
    Scan process 'ComComp.exe' - '1' Module(s) have been scanned
    Scan process 'GestionnaireInternet.exe' - '1' Module(s) have been scanned
    Scan process 'daemon.exe' - '1' Module(s) have been scanned
    Scan process 'gTaskSwitch.exe' - '1' Module(s) have been scanned
    Scan process 'gDeskMgm.exe' - '1' Module(s) have been scanned
    Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
    Scan process 'gIMMgm.exe' - '1' Module(s) have been scanned
    Scan process 'gMGlass.exe' - '1' Module(s) have been scanned
    Scan process 'gZoom.exe' - '1' Module(s) have been scanned
    Scan process 'gAutoScroll.exe' - '1' Module(s) have been scanned
    Scan process 'gAutoPan.exe' - '1' Module(s) have been scanned
    Scan process 'gKbdTask.exe' - '1' Module(s) have been scanned
    Scan process 'gMouseTask.exe' - '1' Module(s) have been scanned
    Scan process 'apdproxy.exe' - '1' Module(s) have been scanned
    Scan process 'iTunesHelper.exe' - '1' Module(s) have been scanned
    Scan process 'delttray.exe' - '1' Module(s) have been scanned
    Scan process 'gTaskBar.exe' - '1' Module(s) have been scanned
    Scan process 'rundll32.exe' - '1' Module(s) have been scanned
    Scan process 'lxddamon.exe' - '1' Module(s) have been scanned
    Scan process 'lxddmon.exe' - '1' Module(s) have been scanned
    Scan process 'jusched.exe' - '1' Module(s) have been scanned
    Scan process 'avgnt.exe' - '1' Module(s) have been scanned
    Scan process 'AsDHRemote.exe' - '1' Module(s) have been scanned
    Scan process 'realsched.exe' - '1' Module(s) have been scanned
    Scan process 'Probe2.exe' - '1' Module(s) have been scanned
    Scan process 'AsRc.exe' - '1' Module(s) have been scanned
    Scan process 'PDVDServ.exe' - '1' Module(s) have been scanned
    Scan process 'VTTimer.exe' - '1' Module(s) have been scanned
    Scan process 'explorer.exe' - '1' Module(s) have been scanned
    Scan process 'kpf4gui.exe' - '1' Module(s) have been scanned
    Scan process 'iPodService.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'alg.exe' - '1' Module(s) have been scanned
    Scan process 'kpf4gui.exe' - '1' Module(s) have been scanned
    Scan process 'ULCDRSvr.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'StarWindServiceAE.exe' - '1' Module(s) have been scanned
    Scan process 'PnkBstrB.exe' - '1' Module(s) have been scanned
    Scan process 'PnkBstrA.exe' - '1' Module(s) have been scanned
    Scan process 'nvsvc32.exe' - '1' Module(s) have been scanned
    Scan process 'LSSrvc.exe' - '1' Module(s) have been scanned
    Scan process 'kpf4ss.exe' - '1' Module(s) have been scanned
    Scan process 'FTRTSVC.exe' - '1' Module(s) have been scanned
    Scan process 'guard.exe' - '1' Module(s) have been scanned
    Scan process 'AppleMobileDeviceService.exe' - '1' Module(s) have been scanned
    Scan process 'sched.exe' - '1' Module(s) have been scanned
    Scan process 'PhotoshopElementsFileAgent.exe' - '1' Module(s) have been scanned
    Scan process 'avguard.exe' - '1' Module(s) have been scanned
    Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'lsass.exe' - '1' Module(s) have been scanned
    Scan process 'services.exe' - '1' Module(s) have been scanned
    Scan process 'winlogon.exe' - '1' Module(s) have been scanned
    Scan process 'csrss.exe' - '1' Module(s) have been scanned
    Scan process 'smss.exe' - '1' Module(s) have been scanned
    67 processes with 67 modules were scanned

    Starting master boot sector scan:
    Master boot sector HD0
    [NOTE] No virus was found!

    Start scanning boot sectors:
    Boot sector 'C:\'
    [NOTE] No virus was found!
    Boot sector 'E:\'
    [NOTE] No virus was found!
    Boot sector 'F:\'
    [NOTE] No virus was found!
    Boot sector 'G:\'
    [NOTE] No virus was found!

    Starting to scan the registry.
    The registry was scanned ( '31' files ).

    Starting the file scan:

    Begin scan in 'C:\' <BOOT>
    C:\hiberfil.sys
    [WARNING] The file could not be opened!
    C:\pagefile.sys
    [WARNING] The file could not be opened!
    C:\WINDOWS\system32\drivers\sptd.sys
    [WARNING] The file could not be opened!
    Begin scan in 'E:\' <SOFT>
    Begin scan in 'F:\' <DOCS>
    Begin scan in 'G:\' <MEDIA>
    G:\System Volume Information\_restore{ABAF5229-C7C3-4DE4-9897-061B3C28B2DC}\RP195\A0044024.exe
    [DETECTION] Contains detection pattern of the application APPL/Tool.PsKill.2
    [INFO] The file was moved to '47d79b0a.qua'!

    End of the scan: mardi 5 février 2008 00:08
    Used time: 57:59 min

    The scan has been done completely.

    12503 Scanning directories
    426262 Files were scanned
    1 viruses and/or unwanted programs were found
    0 Files were classified as suspicious:
    0 files were deleted
    0 files were repaired
    1 files were moved to quarantine
    0 files were renamed
    3 Files cannot be scanned
    426261 Files not concerned
    2132 Archives were scanned
    3 Warnings
    31 Notes
    48738 Objects were scanned with rootkit scan
    0 Hidden objects were found

    je vais me coucher, je reviens demain en début de soirée!
    dis moi quoi ...
    ++
    0
  17. Harry Seldon Messages postés 191 Statut Membre 1
     
    Voici le rapportAntivir + un HijackThis, antivir a trouvé un virus.

    AntiVir PersonalEdition Classic
    Report file date: lundi 4 février 2008 23:10

    Scanning for 1091873 virus strains and unwanted programs.

    Licensed to: Avira AntiVir PersonalEdition Classic
    Serial number: 0000149996-ADJIE-0001
    Platform: Windows XP
    Windows version: (Service Pack 2) [5.1.2600]
    Username: SYSTEM
    Computer name: GAETAN-ORDI

    Version information:
    BUILD.DAT : 270 15603 Bytes 19/09/2007 13:32:00
    AVSCAN.EXE : 7.0.6.1 290856 Bytes 05/09/2007 16:49:04
    AVSCAN.DLL : 7.0.6.0 49192 Bytes 05/09/2007 16:49:04
    LUKE.DLL : 7.0.5.3 147496 Bytes 05/09/2007 16:49:06
    LUKERES.DLL : 7.0.6.1 10280 Bytes 05/09/2007 16:49:06
    ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 16:50:14
    ANTIVIR1.VDF : 7.0.1.95 3367424 Bytes 14/12/2007 12:32:36
    ANTIVIR2.VDF : 7.0.2.49 1339904 Bytes 25/01/2008 11:30:24
    ANTIVIR3.VDF : 7.0.2.89 291840 Bytes 04/02/2008 15:38:00
    AVEWIN32.DLL : 7.6.0.62 3240448 Bytes 02/02/2008 13:05:09
    AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 09:36:26
    AVPREF.DLL : 7.0.2.2 25640 Bytes 05/09/2007 16:49:04
    AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 12:16:24
    AVPACK32.DLL : 7.6.0.3 360488 Bytes 15/01/2008 22:28:01
    AVREG.DLL : 7.0.1.6 30760 Bytes 05/09/2007 16:49:04
    AVARKT.DLL : 1.0.0.20 278568 Bytes 05/09/2007 16:49:03
    AVEVTLOG.DLL : 7.0.0.20 86056 Bytes 05/09/2007 16:49:04
    NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 10:09:42
    RCIMAGE.DLL : 7.0.1.30 2342952 Bytes 05/09/2007 16:48:53
    RCTEXT.DLL : 7.0.62.0 86056 Bytes 05/09/2007 16:48:53
    SQLITE3.DLL : 3.3.17.1 339968 Bytes 05/09/2007 16:49:07

    Configuration settings for the scan:
    Jobname..........................: Complete system scan
    Configuration file...............: c:\program files\antivir personaledition classic\sysscan.avp
    Logging..........................: low
    Primary action...................: interactive
    Secondary action.................: ignore
    Scan master boot sector..........: on
    Scan boot sector.................: on
    Boot sectors.....................: G:,
    Scan memory......................: on
    Process scan.....................: on
    Scan registry....................: on
    Search for rootkits..............: on
    Scan all files...................: All files
    Scan archives....................: on
    Recursion depth..................: 20
    Smart extensions.................: on
    Deviating archive types..........: +BSD Mailbox, +Netscape/Mozilla Mailbox, +Eudora Mailbox, +Squid cache, +Pegasus Mailbox, +MS Outlook Mailbox,
    Macro heuristic..................: on
    File heuristic...................: high
    Deviating risk categories........: +APPL,+GAME,+JOKE,+PCK,+SPR,

    Start of the scan: lundi 4 février 2008 23:10

    Starting search for hidden objects.
    '48738' objects were checked, '0' hidden objects were found.

    The scan of running processes will be started
    Scan process 'firefox.exe' - '1' Module(s) have been scanned
    Scan process 'avscan.exe' - '1' Module(s) have been scanned
    Scan process 'avcenter.exe' - '1' Module(s) have been scanned
    Scan process 'Watch.exe' - '1' Module(s) have been scanned
    Scan process 'ALERTM~1.EXE' - '1' Module(s) have been scanned
    Scan process 'PollingModule.exe' - '1' Module(s) have been scanned
    Scan process 'Inactivity.exe' - '1' Module(s) have been scanned
    Scan process 'Toaster.exe' - '1' Module(s) have been scanned
    Scan process 'ComComp.exe' - '1' Module(s) have been scanned
    Scan process 'GestionnaireInternet.exe' - '1' Module(s) have been scanned
    Scan process 'daemon.exe' - '1' Module(s) have been scanned
    Scan process 'gTaskSwitch.exe' - '1' Module(s) have been scanned
    Scan process 'gDeskMgm.exe' - '1' Module(s) have been scanned
    Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
    Scan process 'gIMMgm.exe' - '1' Module(s) have been scanned
    Scan process 'gMGlass.exe' - '1' Module(s) have been scanned
    Scan process 'gZoom.exe' - '1' Module(s) have been scanned
    Scan process 'gAutoScroll.exe' - '1' Module(s) have been scanned
    Scan process 'gAutoPan.exe' - '1' Module(s) have been scanned
    Scan process 'gKbdTask.exe' - '1' Module(s) have been scanned
    Scan process 'gMouseTask.exe' - '1' Module(s) have been scanned
    Scan process 'apdproxy.exe' - '1' Module(s) have been scanned
    Scan process 'iTunesHelper.exe' - '1' Module(s) have been scanned
    Scan process 'delttray.exe' - '1' Module(s) have been scanned
    Scan process 'gTaskBar.exe' - '1' Module(s) have been scanned
    Scan process 'rundll32.exe' - '1' Module(s) have been scanned
    Scan process 'lxddamon.exe' - '1' Module(s) have been scanned
    Scan process 'lxddmon.exe' - '1' Module(s) have been scanned
    Scan process 'jusched.exe' - '1' Module(s) have been scanned
    Scan process 'avgnt.exe' - '1' Module(s) have been scanned
    Scan process 'AsDHRemote.exe' - '1' Module(s) have been scanned
    Scan process 'realsched.exe' - '1' Module(s) have been scanned
    Scan process 'Probe2.exe' - '1' Module(s) have been scanned
    Scan process 'AsRc.exe' - '1' Module(s) have been scanned
    Scan process 'PDVDServ.exe' - '1' Module(s) have been scanned
    Scan process 'VTTimer.exe' - '1' Module(s) have been scanned
    Scan process 'explorer.exe' - '1' Module(s) have been scanned
    Scan process 'kpf4gui.exe' - '1' Module(s) have been scanned
    Scan process 'iPodService.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'alg.exe' - '1' Module(s) have been scanned
    Scan process 'kpf4gui.exe' - '1' Module(s) have been scanned
    Scan process 'ULCDRSvr.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'StarWindServiceAE.exe' - '1' Module(s) have been scanned
    Scan process 'PnkBstrB.exe' - '1' Module(s) have been scanned
    Scan process 'PnkBstrA.exe' - '1' Module(s) have been scanned
    Scan process 'nvsvc32.exe' - '1' Module(s) have been scanned
    Scan process 'LSSrvc.exe' - '1' Module(s) have been scanned
    Scan process 'kpf4ss.exe' - '1' Module(s) have been scanned
    Scan process 'FTRTSVC.exe' - '1' Module(s) have been scanned
    Scan process 'guard.exe' - '1' Module(s) have been scanned
    Scan process 'AppleMobileDeviceService.exe' - '1' Module(s) have been scanned
    Scan process 'sched.exe' - '1' Module(s) have been scanned
    Scan process 'PhotoshopElementsFileAgent.exe' - '1' Module(s) have been scanned
    Scan process 'avguard.exe' - '1' Module(s) have been scanned
    Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'lsass.exe' - '1' Module(s) have been scanned
    Scan process 'services.exe' - '1' Module(s) have been scanned
    Scan process 'winlogon.exe' - '1' Module(s) have been scanned
    Scan process 'csrss.exe' - '1' Module(s) have been scanned
    Scan process 'smss.exe' - '1' Module(s) have been scanned
    67 processes with 67 modules were scanned

    Starting master boot sector scan:
    Master boot sector HD0
    [NOTE] No virus was found!

    Start scanning boot sectors:
    Boot sector 'C:\'
    [NOTE] No virus was found!
    Boot sector 'E:\'
    [NOTE] No virus was found!
    Boot sector 'F:\'
    [NOTE] No virus was found!
    Boot sector 'G:\'
    [NOTE] No virus was found!

    Starting to scan the registry.
    The registry was scanned ( '31' files ).

    Starting the file scan:

    Begin scan in 'C:\' <BOOT>
    C:\hiberfil.sys
    [WARNING] The file could not be opened!
    C:\pagefile.sys
    [WARNING] The file could not be opened!
    C:\WINDOWS\system32\drivers\sptd.sys
    [WARNING] The file could not be opened!
    Begin scan in 'E:\' <SOFT>
    Begin scan in 'F:\' <DOCS>
    Begin scan in 'G:\' <MEDIA>
    G:\System Volume Information\_restore{ABAF5229-C7C3-4DE4-9897-061B3C28B2DC}\RP195\A0044024.exe
    [DETECTION] Contains detection pattern of the application APPL/Tool.PsKill.2
    [INFO] The file was moved to '47d79b0a.qua'!

    End of the scan: mardi 5 février 2008 00:08
    Used time: 57:59 min

    The scan has been done completely.

    12503 Scanning directories
    426262 Files were scanned
    1 viruses and/or unwanted programs were found
    0 Files were classified as suspicious:
    0 files were deleted
    0 files were repaired
    1 files were moved to quarantine
    0 files were renamed
    3 Files cannot be scanned
    426261 Files not concerned
    2132 Archives were scanned
    3 Warnings
    31 Notes
    48738 Objects were scanned with rootkit scan
    0 Hidden objects were found

    0
  18. Harry Seldon Messages postés 191 Statut Membre 1
     
    Voici le rapportAntivir + un HijackThis, antivir a trouvé un virus.

    AntiVir PersonalEdition Classic
    Report file date: lundi 4 février 2008 23:10

    Scanning for 1091873 virus strains and unwanted programs.

    Licensed to: Avira AntiVir PersonalEdition Classic
    Serial number: 0000149996-ADJIE-0001
    Platform: Windows XP
    Windows version: (Service Pack 2) [5.1.2600]
    Username: SYSTEM
    Computer name: GAETAN-ORDI

    Version information:
    BUILD.DAT : 270 15603 Bytes 19/09/2007 13:32:00
    AVSCAN.EXE : 7.0.6.1 290856 Bytes 05/09/2007 16:49:04
    AVSCAN.DLL : 7.0.6.0 49192 Bytes 05/09/2007 16:49:04
    LUKE.DLL : 7.0.5.3 147496 Bytes 05/09/2007 16:49:06
    LUKERES.DLL : 7.0.6.1 10280 Bytes 05/09/2007 16:49:06
    ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 16:50:14
    ANTIVIR1.VDF : 7.0.1.95 3367424 Bytes 14/12/2007 12:32:36
    ANTIVIR2.VDF : 7.0.2.49 1339904 Bytes 25/01/2008 11:30:24
    ANTIVIR3.VDF : 7.0.2.89 291840 Bytes 04/02/2008 15:38:00
    AVEWIN32.DLL : 7.6.0.62 3240448 Bytes 02/02/2008 13:05:09
    AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 09:36:26
    AVPREF.DLL : 7.0.2.2 25640 Bytes 05/09/2007 16:49:04
    AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 12:16:24
    AVPACK32.DLL : 7.6.0.3 360488 Bytes 15/01/2008 22:28:01
    AVREG.DLL : 7.0.1.6 30760 Bytes 05/09/2007 16:49:04
    AVARKT.DLL : 1.0.0.20 278568 Bytes 05/09/2007 16:49:03
    AVEVTLOG.DLL : 7.0.0.20 86056 Bytes 05/09/2007 16:49:04
    NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 10:09:42
    RCIMAGE.DLL : 7.0.1.30 2342952 Bytes 05/09/2007 16:48:53
    RCTEXT.DLL : 7.0.62.0 86056 Bytes 05/09/2007 16:48:53
    SQLITE3.DLL : 3.3.17.1 339968 Bytes 05/09/2007 16:49:07

    Configuration settings for the scan:
    Jobname..........................: Complete system scan
    Configuration file...............: c:\program files\antivir personaledition classic\sysscan.avp
    Logging..........................: low
    Primary action...................: interactive
    Secondary action.................: ignore
    Scan master boot sector..........: on
    Scan boot sector.................: on
    Boot sectors.....................: G:,
    Scan memory......................: on
    Process scan.....................: on
    Scan registry....................: on
    Search for rootkits..............: on
    Scan all files...................: All files
    Scan archives....................: on
    Recursion depth..................: 20
    Smart extensions.................: on
    Deviating archive types..........: +BSD Mailbox, +Netscape/Mozilla Mailbox, +Eudora Mailbox, +Squid cache, +Pegasus Mailbox, +MS Outlook Mailbox,
    Macro heuristic..................: on
    File heuristic...................: high
    Deviating risk categories........: +APPL,+GAME,+JOKE,+PCK,+SPR,

    Start of the scan: lundi 4 février 2008 23:10

    Starting search for hidden objects.
    '48738' objects were checked, '0' hidden objects were found.

    The scan of running processes will be started
    Scan process 'firefox.exe' - '1' Module(s) have been scanned
    Scan process 'avscan.exe' - '1' Module(s) have been scanned
    Scan process 'avcenter.exe' - '1' Module(s) have been scanned
    Scan process 'Watch.exe' - '1' Module(s) have been scanned
    Scan process 'ALERTM~1.EXE' - '1' Module(s) have been scanned
    Scan process 'PollingModule.exe' - '1' Module(s) have been scanned
    Scan process 'Inactivity.exe' - '1' Module(s) have been scanned
    Scan process 'Toaster.exe' - '1' Module(s) have been scanned
    Scan process 'ComComp.exe' - '1' Module(s) have been scanned
    Scan process 'GestionnaireInternet.exe' - '1' Module(s) have been scanned
    Scan process 'daemon.exe' - '1' Module(s) have been scanned
    Scan process 'gTaskSwitch.exe' - '1' Module(s) have been scanned
    Scan process 'gDeskMgm.exe' - '1' Module(s) have been scanned
    Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
    Scan process 'gIMMgm.exe' - '1' Module(s) have been scanned
    Scan process 'gMGlass.exe' - '1' Module(s) have been scanned
    Scan process 'gZoom.exe' - '1' Module(s) have been scanned
    Scan process 'gAutoScroll.exe' - '1' Module(s) have been scanned
    Scan process 'gAutoPan.exe' - '1' Module(s) have been scanned
    Scan process 'gKbdTask.exe' - '1' Module(s) have been scanned
    Scan process 'gMouseTask.exe' - '1' Module(s) have been scanned
    Scan process 'apdproxy.exe' - '1' Module(s) have been scanned
    Scan process 'iTunesHelper.exe' - '1' Module(s) have been scanned
    Scan process 'delttray.exe' - '1' Module(s) have been scanned
    Scan process 'gTaskBar.exe' - '1' Module(s) have been scanned
    Scan process 'rundll32.exe' - '1' Module(s) have been scanned
    Scan process 'lxddamon.exe' - '1' Module(s) have been scanned
    Scan process 'lxddmon.exe' - '1' Module(s) have been scanned
    Scan process 'jusched.exe' - '1' Module(s) have been scanned
    Scan process 'avgnt.exe' - '1' Module(s) have been scanned
    Scan process 'AsDHRemote.exe' - '1' Module(s) have been scanned
    Scan process 'realsched.exe' - '1' Module(s) have been scanned
    Scan process 'Probe2.exe' - '1' Module(s) have been scanned
    Scan process 'AsRc.exe' - '1' Module(s) have been scanned
    Scan process 'PDVDServ.exe' - '1' Module(s) have been scanned
    Scan process 'VTTimer.exe' - '1' Module(s) have been scanned
    Scan process 'explorer.exe' - '1' Module(s) have been scanned
    Scan process 'kpf4gui.exe' - '1' Module(s) have been scanned
    Scan process 'iPodService.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'alg.exe' - '1' Module(s) have been scanned
    Scan process 'kpf4gui.exe' - '1' Module(s) have been scanned
    Scan process 'ULCDRSvr.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'StarWindServiceAE.exe' - '1' Module(s) have been scanned
    Scan process 'PnkBstrB.exe' - '1' Module(s) have been scanned
    Scan process 'PnkBstrA.exe' - '1' Module(s) have been scanned
    Scan process 'nvsvc32.exe' - '1' Module(s) have been scanned
    Scan process 'LSSrvc.exe' - '1' Module(s) have been scanned
    Scan process 'kpf4ss.exe' - '1' Module(s) have been scanned
    Scan process 'FTRTSVC.exe' - '1' Module(s) have been scanned
    Scan process 'guard.exe' - '1' Module(s) have been scanned
    Scan process 'AppleMobileDeviceService.exe' - '1' Module(s) have been scanned
    Scan process 'sched.exe' - '1' Module(s) have been scanned
    Scan process 'PhotoshopElementsFileAgent.exe' - '1' Module(s) have been scanned
    Scan process 'avguard.exe' - '1' Module(s) have been scanned
    Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'lsass.exe' - '1' Module(s) have been scanned
    Scan process 'services.exe' - '1' Module(s) have been scanned
    Scan process 'winlogon.exe' - '1' Module(s) have been scanned
    Scan process 'csrss.exe' - '1' Module(s) have been scanned
    Scan process 'smss.exe' - '1' Module(s) have been scanned
    67 processes with 67 modules were scanned

    Starting master boot sector scan:
    Master boot sector HD0
    [NOTE] No virus was found!

    Start scanning boot sectors:
    Boot sector 'C:\'
    [NOTE] No virus was found!
    Boot sector 'E:\'
    [NOTE] No virus was found!
    Boot sector 'F:\'
    [NOTE] No virus was found!
    Boot sector 'G:\'
    [NOTE] No virus was found!

    Starting to scan the registry.
    The registry was scanned ( '31' files ).

    Starting the file scan:

    Begin scan in 'C:\' <BOOT>
    C:\hiberfil.sys
    [WARNING] The file could not be opened!
    C:\pagefile.sys
    [WARNING] The file could not be opened!
    C:\WINDOWS\system32\drivers\sptd.sys
    [WARNING] The file could not be opened!
    Begin scan in 'E:\' <SOFT>
    Begin scan in 'F:\' <DOCS>
    Begin scan in 'G:\' <MEDIA>
    G:\System Volume Information\_restore{ABAF5229-C7C3-4DE4-9897-061B3C28B2DC}\RP195\A0044024.exe
    [DETECTION] Contains detection pattern of the application APPL/Tool.PsKill.2
    [INFO] The file was moved to '47d79b0a.qua'!

    End of the scan: mardi 5 février 2008 00:08
    Used time: 57:59 min

    The scan has been done completely.

    12503 Scanning directories
    426262 Files were scanned
    1 viruses and/or unwanted programs were found
    0 Files were classified as suspicious:
    0 files were deleted
    0 files were repaired
    1 files were moved to quarantine
    0 files were renamed
    3 Files cannot be scanned
    426261 Files not concerned
    2132 Archives were scanned
    3 Warnings
    31 Notes
    48738 Objects were scanned with rootkit scan
    0 Hidden objects were found

    0
  19. g!rly Messages postés 18462 Statut Contributeur 407
     
    re,

    Information\_restore{ABAF5229-C7C3-4DE4-9897-061B3C28B2DC}\RP195\A0044024.exe
    [DETECTION] Contains detection pattern of the application APPL/Tool.PsKill.2

    ceci concerne clean.zip l´outil que l´on a utilisé auparavant, il n´y a pas de soucis!

    fais ceci :

    supprime clean.zip

    et

    Désactive ta restauration système:
    pour cela :
    Click droit sur poste de travail, dans l´arborescence sur propriétés;
    dans la nouvelle fenettre click sur l´onglet restauration système;
    coche la case désactiver la restauration systèm et applique.
    puis redemarre le pc et click droit sur poste de travail, dans l´arborescence sur propriétés;
    dans la nouvelle fenettre click sur l´onglet restauration systèm
    décoche la case désactiver la restauration systèm et applique.

    @+
    0
  20. Harry Seldon Messages postés 191 Statut Membre 1
     
    C'est ok pour l'instant.
    bonne nuit
    @+
    0
  21. g!rly Messages postés 18462 Statut Contributeur 407
     
    bonne nuit ;-)
    bye`
    0
Précédent
  • 1
  • 2
  • 3
  • 4