Aller au contenu
  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

Infections virus, malwares --- RÉSOLU --- Merci ---


Sacros

Messages recommandés

Bruce Lee,

 

Panda ne peut pas télécharger ses 8 Mo de mon poste......essayé 5-6 fois, j'ai remis la sécurité IE par défaut.(moyen-haut).

 

 

Que me conseilles-tu ??

Meci

Ð

Lien vers le commentaire
Partager sur d’autres sites

Bruce Lee, :P

 

Je viens de faire une analyse antivirus avec Symantec. Le rapport est bon.

Aucun virus trouvé.

Je viens de repasser par Panda..impossible d'effectuer son téléchargement de 8 Mo.

Quelque chose "bloque". J'ai rien contre les Pandas....

Lien vers le commentaire
Partager sur d’autres sites

Bonjour Bruce Lee,

 

http://img220.imageshack.us/img220/9458/avpandazo1.jpg+

 

http://img220.imageshack.us/img220/5136/hi...hisbloqubh1.jpg

 

 

 

Voilà ce qui m'arrive depuis hier que je tente ces actions......HitjackThis c'était avant déjà.

 

Merci pour ta réponse.......

 

J'ai enlevé mon ancien antivirus (Avast) et remis Antivir Personnal que j'avais depuis trois ans sans avoir de problèmes.

 

J'espère que tu n'y vois pas d'inconvénients. Sans cela je remets Avast.........

 

Cordialement,

 

Ð

Lien vers le commentaire
Partager sur d’autres sites

http://img66.imageshack.us/img66/3777/avpandaea3.jpg

 

Panda ne répond pas non plus.

 

Je te remets celle-là.

 

Ciao

 

Ð

 

PS. Je fais un scan complet avec antivirus

Lien vers le commentaire
Partager sur d’autres sites

Bruce Lee,

 

Voilà le rapport AntiVir en mode normal (déconnecté quand même et enlevé quelques babioles) :P

 

 

 

AntiVir PersonalEdition Classic

Report file date: vendredi 16 février 2007 12:09

 

Scanning for 672791 virus strains and unwanted programs.

 

Licensed to: Avira AntiVir PersonalEdition Classic

Serial number: 0000149996-ADJIE-0001

Platform: Windows XP

Windows version: (Service Pack 2) [5.1.2600]

Username: Sacros

Computer name: DOMBIS

 

Version information:

BUILD.DAT : 217 12749 Bytes 05/12/2006 17:00:00

AVSCAN.EXE : 7.0.3.5 208936 Bytes 16/02/2007 09:38:03

AVSCAN.DLL : 7.0.3.1 35880 Bytes 05/12/2006 16:00:22

LUKE.DLL : 7.0.3.2 143400 Bytes 31/10/2006 16:07:46

LUKERES.DLL : 7.0.2.0 9256 Bytes 05/12/2006 16:00:22

ANTIVIR0.VDF : 6.35.0.1 7371264 Bytes 31/05/2006 15:30:06

ANTIVIR1.VDF : 6.37.0.153 3131392 Bytes 12/01/2007 09:38:05

ANTIVIR2.VDF : 6.37.1.85 598016 Bytes 14/02/2007 09:38:06

ANTIVIR3.VDF : 6.37.1.102 24576 Bytes 16/02/2007 09:38:06

AVEWIN32.DLL : 7.3.1.37 2306560 Bytes 16/02/2007 09:38:08

AVPREF.DLL : 7.0.2.0 23592 Bytes 03/11/2006 10:53:44

AVREP.DLL : 6.37.1.100 1142824 Bytes 16/02/2007 09:38:06

AVRPBASE.DLL : 7.0.0.0 2162728 Bytes 30/03/2006 08:43:31

AVPACK32.DLL : 7.2.0.5 368680 Bytes 23/10/2006 15:21:31

AVREG.DLL : 7.0.1.2 30760 Bytes 16/02/2007 09:38:03

NETNT.DLL : No Information!

RCIMAGE.DLL : 7.0.1.3 2097192 Bytes 08/11/2006 12:26:26

RCTEXT.DLL : 7.0.12.1 77864 Bytes 05/12/2006 16:00:21

 

Configuration settings for the scan:

Jobname..........................: Manual Selection

Configuration file...............: C:\Documents and Settings\All Users.WINDOWS\Application Data\AntiVir PersonalEdition Classic\PROFILES\folder.avp

Logging..........................: low

Primary action...................: interactive

Secondary action.................: ignore

Scan master boot sector..........: off

Scan boot sector.................: on

Boot sectors.....................: H:,

Scan memory......................: on

Process scan.....................: on

Scan registry....................: on

Scan all files...................: All files

Scan archives....................: on

Recursion depth..................: 20

Smart extensions.................: on

Skipped archive types............: BSD Mailbox, Netscape/Mozilla Mailbox, Eudora Mailbox, Squid cache, Pegasus Mailbox, MS Outlook Mailbox,

Macro heuristic..................: on

File heuristic...................: medium

Different risk categories........: +GAME,+JOKE,+PCK,+SPR,

 

Start of the scan: vendredi 16 février 2007 12:09

 

The scan of running processes will be started

Scan process 'avscan.exe' - '1' Modules have been scanned

Scan process 'avcenter.exe' - '1' Modules have been scanned

Scan process 'msimn.exe' - '1' Modules have been scanned

Scan process 'OutClock.exe' - '1' Modules have been scanned

Scan process 'cidaemon.exe' - '1' Modules have been scanned

Scan process 'Watch.exe' - '1' Modules have been scanned

Scan process 'alg.exe' - '1' Modules have been scanned

Scan process 'ALERTM~1.EXE' - '1' Modules have been scanned

Scan process 'PollingModule.exe' - '1' Modules have been scanned

Scan process 'Inactivity.exe' - '1' Modules have been scanned

Scan process 'Toaster.exe' - '1' Modules have been scanned

Scan process 'ComComp.exe' - '1' Modules have been scanned

Scan process 'tlntsvr.exe' - '1' Modules have been scanned

Scan process 'GestionnaireInternet.exe' - '1' Modules have been scanned

Scan process 'svchost.exe' - '1' Modules have been scanned

Scan process 'snmp.exe' - '1' Modules have been scanned

Scan process 'ntvdm.exe' - '1' Modules have been scanned

Scan process 'tcpsvcs.exe' - '1' Modules have been scanned

Scan process 'ctfmon.exe' - '1' Modules have been scanned

Scan process 'GoogleToolbarNotifier.exe' - '1' Modules have been scanned

Scan process 'PrintScreen.exe' - '1' Modules have been scanned

Scan process 'avgnt.exe' - '1' Modules have been scanned

Scan process 'WinPatrol.exe' - '1' Modules have been scanned

Scan process 'TaskBarIcon.exe' - '1' Modules have been scanned

Scan process 'MSASCui.exe' - '1' Modules have been scanned

Scan process 'GoogleUpdaterService.exe' - '1' Modules have been scanned

Scan process 'cisvc.exe' - '1' Modules have been scanned

Scan process 'guard.exe' - '0' Modules have been scanned

Scan process 'ashServ.exe' - '1' Modules have been scanned

Scan process 'avguard.exe' - '1' Modules have been scanned

Scan process 'sched.exe' - '1' Modules have been scanned

Scan process 'svchost.exe' - '1' Modules have been scanned

Scan process 'explorer.exe' - '1' Modules have been scanned

Scan process 'spoolsv.exe' - '1' Modules have been scanned

Scan process 'svchost.exe' - '1' Modules have been scanned

Scan process 'MsMpEng.exe' - '1' Modules have been scanned

Scan process 'svchost.exe' - '1' Modules have been scanned

Scan process 'svchost.exe' - '1' Modules have been scanned

Scan process 'lsass.exe' - '1' Modules have been scanned

Scan process 'services.exe' - '1' Modules have been scanned

Scan process 'winlogon.exe' - '1' Modules have been scanned

Scan process 'csrss.exe' - '1' Modules have been scanned

Scan process 'smss.exe' - '1' Modules have been scanned

42 processes with 42 modules were scanned

 

Start scanning boot sectors:

Boot sector 'A:\'

[NOTE] In the drive 'A:\' no data medium is inserted!

Boot sector 'C:\'

[NOTE] No virus was found!

Boot sector 'D:\'

[NOTE] No virus was found!

Boot sector 'E:\'

[NOTE] No virus was found!

Boot sector 'H:\'

[NOTE] No virus was found!

 

Starting to scan the registry.

The registry was scanned ( 19 files ).

 

 

Starting the file scan:

 

Begin scan in 'A:\'

The path A:\ could not be found!

Le périphérique n'est pas prêt.

 

Begin scan in 'C:\' <DISK>

C:\pagefile.sys

[WARNING] The file could not be opened!

C:\d8c8e7bcc6ddfbd638\msi.dll

[WARNING] The file could not be opened!

C:\d8c8e7bcc6ddfbd638\msiexec.exe

[WARNING] The file could not be opened!

C:\d8c8e7bcc6ddfbd638\msihnd.dll

[WARNING] The file could not be opened!

C:\d8c8e7bcc6ddfbd638\msimsg.dll

[WARNING] The file could not be opened!

C:\d8c8e7bcc6ddfbd638\msisip.dll

[WARNING] The file could not be opened!

C:\d8c8e7bcc6ddfbd638\spmsg.dll

[WARNING] The file could not be opened!

C:\d8c8e7bcc6ddfbd638\spuninst.exe

[WARNING] The file could not be opened!

Begin scan in 'D:\' <Disque 40G >

Begin scan in 'E:\' <DISKOBIS>

E:\SOFTWARE - Avast Antivirus Pro Version 4.6.665 + KeyGen.rar

[0] Archive type: RAR

--> Avast! Professional Edition v4.6.623 Keygen.exe

[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen

[iNFO] The file was moved to '461ba04e.qua'!

E:\SOFTWARE - Avast Antivirus Pro Version 4.6.665 + KeyGen\Avast! Professional Edition v4.6.623 Keygen.exe

[DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen

[iNFO] The file was moved to '4636a22c.qua'!

Begin scan in 'F:\'

The path F:\ could not be found!

Le périphérique n'est pas prêt.

 

Begin scan in 'G:\'

The path G:\ could not be found!

Le périphérique n'est pas prêt.

 

Begin scan in 'H:\' <MINUS>

 

 

End of the scan: vendredi 16 février 2007 13:21

Used time: 1:12:20 min

 

The scan has been done completely.

 

3417 Scanning directories

229287 Files were scanned

2 viruses and/or unwanted programs were found

0 files were deleted

0 files were repaired

2 files were moved to quarantine

0 files were renamed

8 Files cannot be scanned

229285 Files not concerned

9309 Archives were scanned

8 Warnings

2 Notes

 

 

J'ai supprimé Avast. :P

Lien vers le commentaire
Partager sur d’autres sites

Salut Bruce Lee,

 

Excuse-moi pour HijackThis je ne connaissais pas cette attende "énumération".

Voilà je te le poste.....lol

Ð

 

Logfile of HijackThis v1.99.1

Scan saved at -- Ð --14:26:19, on 16/02/2007

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16414)

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Windows Defender\MsMpEng.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\AntiVir PersonalEdition Classic\sched.exe

C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe

D:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe

C:\WINDOWS\System32\cisvc.exe

C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

C:\WINDOWS\System32\tcpsvcs.exe

C:\WINDOWS\System32\snmp.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\System32\tlntsvr.exe

C:\Program Files\Windows Defender\MSASCui.exe

C:\PROGRA~1\Wanadoo\TaskBarIcon.exe

D:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe

C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe

C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe

E:\Program Files\Gadwin Systems\PrintScreen\PrintScreen.exe

C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe

C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe

C:\WINDOWS\system32\ctfmon.exe

C:\PROGRA~1\Wanadoo\ComComp.exe

C:\PROGRA~1\Wanadoo\Toaster.exe

C:\PROGRA~1\Wanadoo\Inactivity.exe

C:\PROGRA~1\Wanadoo\PollingModule.exe

C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE

C:\WINDOWS\system32\ntvdm.exe

C:\PROGRA~1\Wanadoo\Watch.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\WINDOWS\system32\cidaemon.exe

D:\Program Files\eMule\eMule0.47c\eMule0.47c\emule.exe

C:\Documents and Settings\Sacros.DOMBIS.001\Bureau\scanner.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://www.google.fr/keyword/%s

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/ie

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.fr

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.fr/ie

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = -- Ð --

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SearchPageURL.dll

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - D:\Program Files\Spybot - Search & Destroy\SDHelper.dll

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll

O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe

O4 - HKLM\..\Run: [MsmqIntCert] regsvr32 /s mqrt.dll

O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide

O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe

O4 - HKLM\..\Run: [WinPatrol] D:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe

O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe

O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"

O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx

O4 - HKCU\..\Run: [Gadwin PrintScreen 3.5] E:\Program Files\Gadwin Systems\PrintScreen\PrintScreen.exe /nosplash

O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - Startup: MONITEUR.EXE.lnk = E:\olifaxvx\MONITEUR.EXE

O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\WINDOWS\System32\shdocvw.dll

O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\WINDOWS\System32\shdocvw.dll

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)

O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU)

O11 - Options group: [iNTERNATIONAL] International*

O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab

O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/SharedC...bin/AvSniff.cab

O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/SharedC...n/bin/cabsa.cab

O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab

O17 - HKLM\System\CCS\Services\Tcpip\..\{1076C0CB-272F-427E-B59C-ED07D4CB387D}: NameServer = 192.168.1.1

O17 - HKLM\System\CCS\Services\Tcpip\..\{54A7A52F-7054-45F2-BC8E-3527F0A67BBE}: NameServer = 192.168.1.1

O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll

O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe

O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe

O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - D:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

 

:P

Lien vers le commentaire
Partager sur d’autres sites

Rejoindre la conversation

Vous pouvez publier maintenant et vous inscrire plus tard. Si vous avez un compte, connectez-vous maintenant pour publier avec votre compte.
Remarque : votre message nécessitera l’approbation d’un modérateur avant de pouvoir être visible.

Invité
Répondre à ce sujet…

×   Collé en tant que texte enrichi.   Coller en tant que texte brut à la place

  Seulement 75 émoticônes maximum sont autorisées.

×   Votre lien a été automatiquement intégré.   Afficher plutôt comme un lien

×   Votre contenu précédent a été rétabli.   Vider l’éditeur

×   Vous ne pouvez pas directement coller des images. Envoyez-les depuis votre ordinateur ou insérez-les depuis une URL.

  • En ligne récemment   0 membre est en ligne

    • Aucun utilisateur enregistré regarde cette page.
×
×
  • Créer...