Virus
thierry
-
BmV Messages postés 98711 Date d'inscription Statut Modérateur Dernière intervention -
BmV Messages postés 98711 Date d'inscription Statut Modérateur Dernière intervention -
Suite à une verification sur RAV
voici le resultat, pourriez vous m'aider à faire le menage.
Scan started at 19/05/04 00:14:13
Scanning memory...
c:\WINDOWS\2_0_1browserhelper2.dll - Clicker:Win32/Delf -> Infected
c:\WINDOWS\TWAINTEC.DLL - Trojan:Win32/Spy.BiSpy.C -> Infected
c:\WINDOWS\SYSTEM\tksrv98.exe - TrojanDownloader:Win32/Esepor.Q -> Infected
c:\WINDOWS\SYSTEM\tmksrvu.exe - TrojanDownloader:Win32/Esepor.Q -> Infected
c:\WINDOWS\SYSTEM32\winproc32.exe - Trojan:Win32/Pleuz.B -> Infected
c:\WINDOWS\TEMP\u070104.exe - TrojanDownloader:Win32/Small.FV -> Infected
c:\WINDOWS\TEMP\msx.exe->(UPXW) - Tool:PornDialer.gen! -> Suspicious
c:\WINDOWS\Application Data\Identities\{65897940-C63D-11D4-819E-DC6FCBD3AC42}\Microsoft\Outlook Express\lments envoys.dbx->Message.1113: ("Thierry" [Re: Error Announcement])->(part0002:)->(IFRAME0000) - HTML/IFrame_Exploit* -> Infected
c:\WINDOWS\Application Data\Identities\{65897940-C63D-11D4-819E-DC6FCBD3AC42}\Microsoft\Outlook Express\lments envoys.dbx->Message.857: ("Thierry" [Re: Run in DOS mode.])->(part0002:)->(IFRAME0000) - HTML/IFrame_Exploit* -> Infected
c:\WINDOWS\Application Data\Identities\{65897940-C63D-11D4-819E-DC6FCBD3AC42}\Microsoft\Outlook Express\lments envoys.dbx->Message.685: ("Thierry" [Re: Re: 162 RS / 0 Boff!!!])->(part0002:)->(IFRAME0000) - HTML/IFrame_Exploit* -> Infected
c:\WINDOWS\Application Data\Identities\{574EB2E1-F99F-11D6-81AB-868BE197F849}\Microsoft\Outlook Express\Boîte de réception.dbx->Message.47: (info@labanane.com [modifications?])->(part0002:naked1.zip)->naked1.pif - Win32/Netsky.C@mm -> Infected
c:\WINDOWS\Downloaded Program Files\bridge.dll - PWS:Win32/Briss -> Infected
c:\WINDOWS\Downloaded Program Files\TEST.OCX - TrojanDownloader:Win32/Dia -> Infected
c:\WINDOWS\Downloaded Program Files\varieactive.exe - Tool:PornDialer.CR -> Infected
e:\Program Files\Quarantine\Portal\7AB40C6C.RB0 - Win32/HLLP.Hantaner -> Infected
Scanned
============================
Objects: 54248
Directories: 4840
Archives: 2174
Size(Kb): 676188
Infected files: 14
Found
============================
Viruses found: 11
Suspicious files: 1
Disinfected files: 0
Mail files: 3068
voici le resultat, pourriez vous m'aider à faire le menage.
Scan started at 19/05/04 00:14:13
Scanning memory...
c:\WINDOWS\2_0_1browserhelper2.dll - Clicker:Win32/Delf -> Infected
c:\WINDOWS\TWAINTEC.DLL - Trojan:Win32/Spy.BiSpy.C -> Infected
c:\WINDOWS\SYSTEM\tksrv98.exe - TrojanDownloader:Win32/Esepor.Q -> Infected
c:\WINDOWS\SYSTEM\tmksrvu.exe - TrojanDownloader:Win32/Esepor.Q -> Infected
c:\WINDOWS\SYSTEM32\winproc32.exe - Trojan:Win32/Pleuz.B -> Infected
c:\WINDOWS\TEMP\u070104.exe - TrojanDownloader:Win32/Small.FV -> Infected
c:\WINDOWS\TEMP\msx.exe->(UPXW) - Tool:PornDialer.gen! -> Suspicious
c:\WINDOWS\Application Data\Identities\{65897940-C63D-11D4-819E-DC6FCBD3AC42}\Microsoft\Outlook Express\lments envoys.dbx->Message.1113: ("Thierry" [Re: Error Announcement])->(part0002:)->(IFRAME0000) - HTML/IFrame_Exploit* -> Infected
c:\WINDOWS\Application Data\Identities\{65897940-C63D-11D4-819E-DC6FCBD3AC42}\Microsoft\Outlook Express\lments envoys.dbx->Message.857: ("Thierry" [Re: Run in DOS mode.])->(part0002:)->(IFRAME0000) - HTML/IFrame_Exploit* -> Infected
c:\WINDOWS\Application Data\Identities\{65897940-C63D-11D4-819E-DC6FCBD3AC42}\Microsoft\Outlook Express\lments envoys.dbx->Message.685: ("Thierry" [Re: Re: 162 RS / 0 Boff!!!])->(part0002:)->(IFRAME0000) - HTML/IFrame_Exploit* -> Infected
c:\WINDOWS\Application Data\Identities\{574EB2E1-F99F-11D6-81AB-868BE197F849}\Microsoft\Outlook Express\Boîte de réception.dbx->Message.47: (info@labanane.com [modifications?])->(part0002:naked1.zip)->naked1.pif - Win32/Netsky.C@mm -> Infected
c:\WINDOWS\Downloaded Program Files\bridge.dll - PWS:Win32/Briss -> Infected
c:\WINDOWS\Downloaded Program Files\TEST.OCX - TrojanDownloader:Win32/Dia -> Infected
c:\WINDOWS\Downloaded Program Files\varieactive.exe - Tool:PornDialer.CR -> Infected
e:\Program Files\Quarantine\Portal\7AB40C6C.RB0 - Win32/HLLP.Hantaner -> Infected
Scanned
============================
Objects: 54248
Directories: 4840
Archives: 2174
Size(Kb): 676188
Infected files: 14
Found
============================
Viruses found: 11
Suspicious files: 1
Disinfected files: 0
Mail files: 3068
A voir également:
- Virus
- Virus mcafee - Accueil - Piratage
- Virus facebook demande d'amis - Accueil - Facebook
- Virus informatique - Guide
- Panda anti virus gratuit - Télécharger - Antivirus & Antimalwares
- Undisclosed-recipients virus - Guide
2 réponses
c:\WINDOWS\Application Data\Identities\{65897940-C63D-11D4-819E-DC6FCBD3AC42}\Microsoft\Outlook Express\lments envoys.dbx->Message.1113: ("Thierry" [Re: Error Announcement])->(part0002:)->(IFRAME0000) - HTML/IFrame_Exploit* -> Infected
c:\WINDOWS\Application Data\Identities\{65897940-C63D-11D4-819E-DC6FCBD3AC42}\Microsoft\Outlook Express\lments envoys.dbx->Message.857: ("Thierry" [Re: Run in DOS mode.])->(part0002:)->(IFRAME0000) - HTML/IFrame_Exploit* -> Infected
c:\WINDOWS\Application Data\Identities\{65897940-C63D-11D4-819E-DC6FCBD3AC42}\Microsoft\Outlook Express\lments envoys.dbx->Message.685: ("Thierry" [Re: Re: 162 RS / 0 Boff!!!])->(part0002:)->(IFRAME0000) - HTML/IFrame_Exploit* -> Infected
c:\WINDOWS\Application Data\Identities\{574EB2E1-F99F-11D6-81AB-868BE197F849}\Microsoft\Outlook Express\Boîte de réception.dbx->Message.47: (info@labanane.com [modifications?])->(part0002:naked1.zip)->naked1.pif - Win32/Netsky.C@mm -> Infected
ce sont des messages avec des pieces jointes dans outlook suprime tout lces messages
c:\WINDOWS\TEMP\u070104.exe - TrojanDownloader:Win32/Small.FV -> Infected
c:\WINDOWS\TEMP\msx.exe->(UPXW) - Tool:PornDialer.gen! -> Suspicious
fais un nettoyage de disques dans outils systemes
c:\WINDOWS\Downloaded Program Files\bridge.dll - PWS:Win32/Briss -> Infected
c:\WINDOWS\Downloaded Program Files\TEST.OCX - TrojanDownloader:Win32/Dia -> Infected
c:\WINDOWS\Downloaded Program Files\varieactive.exe - Tool:PornDialer.CR -> Infected
supprimes bridge.dll, TEST.OCX, varieactive.exe
http://www.clubic.com/t/logiciel/fiche/stinger/12261.html
http://www.ravantivirus.com/scan/
c:\WINDOWS\Application Data\Identities\{65897940-C63D-11D4-819E-DC6FCBD3AC42}\Microsoft\Outlook Express\lments envoys.dbx->Message.857: ("Thierry" [Re: Run in DOS mode.])->(part0002:)->(IFRAME0000) - HTML/IFrame_Exploit* -> Infected
c:\WINDOWS\Application Data\Identities\{65897940-C63D-11D4-819E-DC6FCBD3AC42}\Microsoft\Outlook Express\lments envoys.dbx->Message.685: ("Thierry" [Re: Re: 162 RS / 0 Boff!!!])->(part0002:)->(IFRAME0000) - HTML/IFrame_Exploit* -> Infected
c:\WINDOWS\Application Data\Identities\{574EB2E1-F99F-11D6-81AB-868BE197F849}\Microsoft\Outlook Express\Boîte de réception.dbx->Message.47: (info@labanane.com [modifications?])->(part0002:naked1.zip)->naked1.pif - Win32/Netsky.C@mm -> Infected
ce sont des messages avec des pieces jointes dans outlook suprime tout lces messages
c:\WINDOWS\TEMP\u070104.exe - TrojanDownloader:Win32/Small.FV -> Infected
c:\WINDOWS\TEMP\msx.exe->(UPXW) - Tool:PornDialer.gen! -> Suspicious
fais un nettoyage de disques dans outils systemes
c:\WINDOWS\Downloaded Program Files\bridge.dll - PWS:Win32/Briss -> Infected
c:\WINDOWS\Downloaded Program Files\TEST.OCX - TrojanDownloader:Win32/Dia -> Infected
c:\WINDOWS\Downloaded Program Files\varieactive.exe - Tool:PornDialer.CR -> Infected
supprimes bridge.dll, TEST.OCX, varieactive.exe
http://www.clubic.com/t/logiciel/fiche/stinger/12261.html
http://www.ravantivirus.com/scan/
Salut Thierry.
Tu fais de la moto sans casque, toi, hein ?
Alors => http://sebsauvage.net/safehex.html
A+
-=O(_BmV_)O=- L'amour comme épée,
|| || l'humour comme bouclier.
Tu fais de la moto sans casque, toi, hein ?
Alors => http://sebsauvage.net/safehex.html
A+
-=O(_BmV_)O=- L'amour comme épée,
|| || l'humour comme bouclier.
