Virus obligeant a reinstaller TCP/IP

Alpinette74 · le 13 décembre 2007

Rebonsoir,

Et voici le rapport Kespersky :

-------------------------------------------------------------------------------

KASPERSKY ONLINE SCANNER REPORT

Friday, December 14, 2007 12:17:38 AM

Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)

Kaspersky Online Scanner version: 5.0.98.0

Kaspersky Anti-Virus database last update: 13/12/2007

Kaspersky Anti-Virus database records: 481845

-------------------------------------------------------------------------------

Scan Settings:

Scan using the following antivirus database: extended

Scan Archives: true

Scan Mail Bases: true

Scan Target - My Computer:

C:\

D:\

E:\

J:\

K:\

Scan Statistics:

Total number of scanned objects: 72828

Number of viruses found: 2

Number of infected objects: 2

Number of suspicious objects: 0

Duration of the scan process: 01:03:04

Infected Object Name / Virus Name / Last Action

C:\Deckard\System Scanner\backup\DOCUME~1\Celina\LOCALS~1\Temp\wjeeoeqj.dll Infected: Trojan.Win32.Inject.mf skipped

C:\Documents and Settings\All Users\Application Data\Microsoft\Dr Watson\user.dmp Object is locked skipped

C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped

C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped

C:\Documents and Settings\Celina\Cookies\index.dat Object is locked skipped

C:\Documents and Settings\Celina\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped

C:\Documents and Settings\Celina\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped

C:\Documents and Settings\Celina\Local Settings\Historique\History.IE5\index.dat Object is locked skipped

C:\Documents and Settings\Celina\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped

C:\Documents and Settings\Celina\NTUSER.DAT Object is locked skipped

C:\Documents and Settings\Celina\ntuser.dat.LOG Object is locked skipped

C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped

C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped

C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped

C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\index.dat Object is locked skipped

C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped

C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped

C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped

C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped

C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped

C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped

C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped

C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped

C:\System Volume Information\_restore{ECAC9B5E-ECA9-484F-9EBC-6874B7C7B5F5}\RP220\change.log Object is locked skipped

C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped

C:\WINDOWS\SchedLgU.Txt Object is locked skipped

C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped

C:\WINDOWS\Sti_Trace.log Object is locked skipped

C:\WINDOWS\system32\bdss.log Object is locked skipped

C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped

C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped

C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped

C:\WINDOWS\system32\config\default Object is locked skipped

C:\WINDOWS\system32\config\default.LOG Object is locked skipped

C:\WINDOWS\system32\config\SAM Object is locked skipped

C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped

C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped

C:\WINDOWS\system32\config\SECURITY Object is locked skipped

C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped

C:\WINDOWS\system32\config\software Object is locked skipped

C:\WINDOWS\system32\config\software.LOG Object is locked skipped

C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped

C:\WINDOWS\system32\config\system Object is locked skipped

C:\WINDOWS\system32\config\system.LOG Object is locked skipped

C:\WINDOWS\system32\drivers\ndis.sys Object is locked skipped

C:\WINDOWS\system32\h323log.txt Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped

C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped

C:\WINDOWS\Temp\tmp00002769\tmp00000000 Object is locked skipped

C:\WINDOWS\wiadebug.log Object is locked skipped

C:\WINDOWS\wiaservc.log Object is locked skipped

C:\WINDOWS\WindowsUpdate.log Object is locked skipped

D:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped

D:\System Volume Information\_restore{ECAC9B5E-ECA9-484F-9EBC-6874B7C7B5F5}\RP220\change.log Object is locked skipped

E:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped

J:\Installs\instala-emule.exe Infected: not-a-virus:FraudTool.Win32.Takedawnload.a skipped

J:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped

Scan process completed.

Thanos · le 14 décembre 2007

salut

Tu peux éliminer ce fichier > :\Installs\instala-emule.exe

Rien de plus sur ton rapport Kaspersky.

Est ce que tu reçois encore cette alerte concernant Trojan.Spabot.NAC ?

Tu disais ceci en début de discussion >

Depuis maintenant un bon moment, je pense etre infectée par un virus qui modifie mon adresse IP. Il m' oblige a reinstaller TCP/IP avec le netsh winsock reset,

Est ce toujours le cas ? reçois tu un message d'erreur de la part de Windows ?

@+

Modifié le 14 décembre 2007 par charles ingals

Alpinette74 · le 14 décembre 2007

Bonjour,

Oui BitDefender me dit toujours qu' il détecte un fichier File c:\cp2141.nls

infected with Trojan.Spabot.NAC dans son journal d' evenements.

Par contre apres un scan je ne trouve pas virus dans les logs du scan.

Pourtant cette alerte sur la présence du virus est ecrite toutes les minutes dans le journal des events de Bitdefender.

C.

Thanos · le 14 décembre 2007

salut

Est ce que tu peux me poster le rapport de BitDefender en question stp ? j'aimerai vérifier quelque chose.

Alpinette74 · le 14 décembre 2007

Merci pour votre aide,

J ai finalement decide de reinstaller windows ....

Pour le moment tout va bien mis a part le clavier...

Merci encore et

A bientot

Connexion

Pas encore inscrit ?

Virus obligeant a reinstaller TCP/IP

Messages recommandés

Alpinette74

Thanos

Alpinette74

Thanos

Alpinette74

Rejoindre la conversation

En ligne récemment 0 membre est en ligne

Zebulon

Outils en ligne

Naviguer