TRojan Vundo - Page 2

Résolu
Précédent
  • 1
  • 2
  1. alex37190 Messages postés 1436 Statut Membre 63
     
    Ok c'est en train de se faire
    J'ai une question mais elle est Hors charte , puis je te la poser en MP ?
    0
  2. ludsfa Messages postés 1287 Statut Membre 15
     
    no soucis.
    0
  3. alex37190 Messages postés 1436 Statut Membre 63
     
    voici le log antivir en mode sans echec

    Avira AntiVir Personal
    Report file date: vendredi 2 mai 2008 13:39

    Scanning for 1246006 virus strains and unwanted programs.

    Licensed to: Avira AntiVir PersonalEdition Classic
    Serial number: 0000149996-ADJIE-0001
    Platform: Windows XP
    Windows version: (Service Pack 2) [5.1.2600]
    Boot mode: Save mode
    Username: Propriétaire
    Computer name: ACER

    Version information:
    BUILD.DAT : 8.1.00.295 16479 Bytes 09/04/2008 16:24:00
    AVSCAN.EXE : 8.1.2.12 311553 Bytes 20/04/2008 16:11:03
    AVSCAN.DLL : 8.1.1.0 53505 Bytes 20/04/2008 16:11:03
    LUKE.DLL : 8.1.2.9 151809 Bytes 20/04/2008 16:11:03
    LUKERES.DLL : 8.1.2.1 12033 Bytes 20/04/2008 16:11:03
    ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 14:27:15
    ANTIVIR1.VDF : 7.0.3.2 5447168 Bytes 07/03/2008 13:34:33
    ANTIVIR2.VDF : 7.0.3.197 1260032 Bytes 22/04/2008 16:02:43
    ANTIVIR3.VDF : 7.0.3.236 249344 Bytes 01/05/2008 16:00:03
    Engineversion : 8.1.0.37
    AEVDF.DLL : 8.1.0.5 102772 Bytes 20/04/2008 16:11:04
    AESCRIPT.DLL : 8.1.0.28 233851 Bytes 30/04/2008 16:02:24
    AESCN.DLL : 8.1.0.15 119157 Bytes 30/04/2008 16:02:14
    AERDL.DLL : 8.1.0.20 418165 Bytes 25/04/2008 16:02:26
    AEPACK.DLL : 8.1.1.4 364918 Bytes 29/04/2008 16:00:33
    AEOFFICE.DLL : 8.1.0.18 192890 Bytes 20/04/2008 16:11:04
    AEHEUR.DLL : 8.1.0.21 1196407 Bytes 30/04/2008 16:02:04
    AEHELP.DLL : 8.1.0.14 115063 Bytes 20/04/2008 16:11:04
    AEGEN.DLL : 8.1.0.18 299381 Bytes 25/04/2008 16:02:03
    AEEMU.DLL : 8.1.0.5 430450 Bytes 20/04/2008 16:11:04
    AECORE.DLL : 8.1.0.27 168310 Bytes 20/04/2008 16:11:04
    AVWINLL.DLL : 1.0.0.7 14593 Bytes 20/04/2008 16:11:03
    AVPREF.DLL : 8.0.0.1 25857 Bytes 20/04/2008 16:11:03
    AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 13:16:24
    AVREG.DLL : 8.0.0.0 30977 Bytes 20/04/2008 16:11:03
    AVARKT.DLL : 1.0.0.23 307457 Bytes 20/04/2008 16:11:02
    AVEVTLOG.DLL : 8.0.0.11 114945 Bytes 20/04/2008 16:11:02
    SQLITE3.DLL : 3.3.17.1 339968 Bytes 20/04/2008 16:11:04
    SMTPLIB.DLL : 1.2.0.19 28929 Bytes 20/04/2008 16:11:03
    NETNT.DLL : 8.0.0.1 7937 Bytes 20/04/2008 16:11:03
    RCIMAGE.DLL : 8.0.0.35 2371841 Bytes 20/04/2008 16:10:58
    RCTEXT.DLL : 8.0.32.0 86273 Bytes 20/04/2008 16:10:58

    Configuration settings for the scan:
    Jobname..........................: Complete system scan
    Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp
    Logging..........................: low
    Primary action...................: interactive
    Secondary action.................: ignore
    Scan master boot sector..........: off
    Scan boot sector.................: on
    Boot sectors.....................: C:,
    Scan memory......................: on
    Process scan.....................: on
    Scan registry....................: on
    Search for rootkits..............: off
    Scan all files...................: Intelligent file selection
    Scan archives....................: on
    Recursion depth..................: 20
    Smart extensions.................: on
    Macro heuristic..................: on
    File heuristic...................: medium

    Start of the scan: vendredi 2 mai 2008 13:39

    The scan of running processes will be started
    Scan process 'avscan.exe' - '1' Module(s) have been scanned
    Scan process 'avcenter.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'explorer.exe' - '1' Module(s) have been scanned
    Scan process 'aawservice.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'svchost.exe' - '1' Module(s) have been scanned
    Scan process 'lsass.exe' - '1' Module(s) have been scanned
    Scan process 'services.exe' - '1' Module(s) have been scanned
    Scan process 'winlogon.exe' - '1' Module(s) have been scanned
    Scan process 'csrss.exe' - '1' Module(s) have been scanned
    Scan process 'smss.exe' - '1' Module(s) have been scanned
    12 processes with 12 modules were scanned

    Start scanning boot sectors:
    Boot sector 'C:\'
    [INFO] No virus was found!

    Starting to scan the registry.
    The registry was scanned ( '27' files ).

    Starting the file scan:

    Begin scan in 'C:\'
    C:\pagefile.sys
    [WARNING] The file could not be opened!
    C:\Documents and Settings\Propriétaire\Mes documents\LOGICIELS\2008\WinRar.V3.71.Final.Fr+Keygen\keygen.exe
    [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Agent.aac.4 Backdoor server programs
    [NOTE] The file was deleted!
    C:\Documents and Settings\Propriétaire\Mes documents\LOGICIELS\SETUP\SETUP.rar
    [0] Archive type: RAR
    --> Radmin_3.0_Final__Vista_Ready by zitoune83.rar
    [1] Archive type: RAR
    --> Radmin_3.0_Final__Vista_Ready by zitoune83\Radmin 3.0 Final, Vista Ready\radmin30\RAD30\Famatech.Radmin.Server.3.0.Trial.Stop.and.Tray.Icon.Remove\R3GOD.DLL
    [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/Radmin.AB.3 Backdoor server programs
    [NOTE] The file was deleted!

    End of the scan: vendredi 2 mai 2008 14:49
    Used time: 1:10:12 min

    The scan has been done completely.

    4201 Scanning directories
    204023 Files were scanned
    2 viruses and/or unwanted programs were found
    0 Files were classified as suspicious:
    2 files were deleted
    0 files were repaired
    0 files were moved to quarantine
    0 files were renamed
    1 Files cannot be scanned
    204021 Files not concerned
    3016 Archives were scanned
    1 Warnings
    2 Notes

    0
  4. ludsfa Messages postés 1287 Statut Membre 15
     
    Bien

    as tu encore des soucis?

    télécharge ToolsCleaner sur ton pc .
    une fois installé tu fais rechercher et ensuite suppression un rapport va être générer envois le moi.
    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. alex37190 Messages postés 1436 Statut Membre 63
     
    Non mauis en fait j'avai aucin souci sur ce pc la Loool , c'est juste que Antivir me les a detecter ce matin
    Non j'avai quelques petits trucs embetant qui me semblent être resolus !!

    -->- Recherche:

    C:\Vundofix backups: trouvé !
    C:\Qoobox: trouvé !
    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: trouvé !
    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: trouvé !
    C:\Documents and Settings\Propriétaire\Bureau\VirtumundoBeGone.exe: trouvé !
    C:\Documents and Settings\Propriétaire\Bureau\ComboFix.exe: trouvé !
    C:\Documents and Settings\Propriétaire\Mes documents\LOGICIELS\vundoFix.exe: trouvé !
    C:\Documents and Settings\Propriétaire\Mes documents\LOGICIELS\2008\HJTInstall.exe: trouvé !
    C:\Documents and Settings\Propriétaire\Mes documents\LOGICIELS\SETUP\MsnFix: trouvé !
    C:\Documents and Settings\Propriétaire\Mes documents\LOGICIELS\SETUP\MSNFix\MsnFix: trouvé !
    C:\Program Files\Trend Micro\HijackThis: trouvé !
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: trouvé !

    ---------------------------------
    -->- Suppression:

    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis\HijackThis.lnk: supprimé !
    C:\Documents and Settings\Propriétaire\Bureau\VirtumundoBeGone.exe: supprimé !
    C:\Documents and Settings\Propriétaire\Bureau\ComboFix.exe: supprimé !
    C:\Documents and Settings\Propriétaire\Mes documents\LOGICIELS\vundoFix.exe: supprimé !
    C:\Documents and Settings\Propriétaire\Mes documents\LOGICIELS\2008\HJTInstall.exe: supprimé !
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe: supprimé !
    C:\Vundofix backups: supprimé !
    C:\Qoobox: supprimé !
    C:\Documents and Settings\All Users\Menu Démarrer\Programmes\HijackThis: supprimé !
    C:\Documents and Settings\Propriétaire\Mes documents\LOGICIELS\SETUP\MsnFix: supprimé !
    C:\Program Files\Trend Micro\HijackThis: supprimé !
    0
  7. ludsfa Messages postés 1287 Statut Membre 15
     
    oui tu avais une petite infection vundo.

    Tu peux mettre résolu

    bon surf à toi.
    0
    1. alex37190 Messages postés 1436 Statut Membre 63
       
      Merci l'ami tu as assurer .....
      0
  8. alex37190 Messages postés 1436 Statut Membre 63
     
    --
    Aux pays des aveugles , les borgnes sont rois !!
    0
  9. ludsfa Messages postés 1287 Statut Membre 15
     
    a+

    tiens met ce lien et jette y un œil avant de télécharger un logiciel met le dans tes favoris.

    http://www.infos-du-net.com/forum/272222-7-logiciels-eviter
    0
Précédent
  • 1
  • 2