Aller au contenu

  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

"résolu" encore des infections?

aramtchik

Par aramtchik
dans Analyses et éradication malwares

 Partager

Messages recommandés

aramtchik Member

aramtchik

Posté(e)
Posté(e) (modifié)

bonjour tout le monde!

 

il y a quelques jours vous m'avez beaucoup aidez pour enlever les quelques infections que j'avais. aujourd'hui j'ai lancé un scan d'avira et ce scan me dis qu'il y a quelques souci :P . j'ai lu le rapport d'analyse, j'ai cru comprendre certaines choses, mais pas tout. j'ai également jeté un coup d'oeil sur les sujets qui pourrai me concerner, mais je ne m'en sort pas trop. :P

 

Un peu d'aide me serai la bienvenue. :P

 

je vous poste également l'analyse d'avira...

 

bien a vous

 

Aram

 

 

 

Avira AntiVir Personal

Report file date: mercredi 27 janvier 2010 10:08

 

Scanning for 1700684 virus strains and unwanted programs.

 

Licensee : Avira AntiVir Personal - FREE Antivirus

Serial number : 0000149996-ADJIE-0000001

Platform : Windows XP

Windows version : (Service Pack 3) [5.1.2600]

Boot mode : Normally booted

Username : SYSTEM

Computer name : 761400570233

 

Version information:

BUILD.DAT : 9.0.0.418 21723 Bytes 2/12/2009 16:28:00

AVSCAN.EXE : 9.0.3.10 466689 Bytes 13/10/2009 10:26:33

AVSCAN.DLL : 9.0.3.0 40705 Bytes 27/02/2009 09:58:24

LUKE.DLL : 9.0.3.2 209665 Bytes 20/02/2009 10:35:49

LUKERES.DLL : 9.0.2.0 12033 Bytes 27/02/2009 09:58:52

VBASE000.VDF : 7.10.0.0 19875328 Bytes 6/11/2009 06:35:52

VBASE001.VDF : 7.10.1.0 1372672 Bytes 19/11/2009 23:02:36

VBASE002.VDF : 7.10.3.1 3143680 Bytes 20/01/2010 22:44:01

VBASE003.VDF : 7.10.3.75 996864 Bytes 26/01/2010 22:12:24

VBASE004.VDF : 7.10.3.76 2048 Bytes 26/01/2010 22:12:24

VBASE005.VDF : 7.10.3.77 2048 Bytes 26/01/2010 22:12:24

VBASE006.VDF : 7.10.3.78 2048 Bytes 26/01/2010 22:12:24

VBASE007.VDF : 7.10.3.79 2048 Bytes 26/01/2010 22:12:24

VBASE008.VDF : 7.10.3.80 2048 Bytes 26/01/2010 22:12:24

VBASE009.VDF : 7.10.3.81 2048 Bytes 26/01/2010 22:12:24

VBASE010.VDF : 7.10.3.82 2048 Bytes 26/01/2010 22:12:24

VBASE011.VDF : 7.10.3.83 2048 Bytes 26/01/2010 22:12:24

VBASE012.VDF : 7.10.3.84 2048 Bytes 26/01/2010 22:12:25

VBASE013.VDF : 7.10.3.85 2048 Bytes 26/01/2010 22:12:25

VBASE014.VDF : 7.10.3.86 2048 Bytes 26/01/2010 22:12:25

VBASE015.VDF : 7.10.3.87 2048 Bytes 26/01/2010 22:12:25

VBASE016.VDF : 7.10.3.88 2048 Bytes 26/01/2010 22:12:25

VBASE017.VDF : 7.10.3.89 2048 Bytes 26/01/2010 22:12:25

VBASE018.VDF : 7.10.3.90 2048 Bytes 26/01/2010 22:12:25

VBASE019.VDF : 7.10.3.91 2048 Bytes 26/01/2010 22:12:25

VBASE020.VDF : 7.10.3.92 2048 Bytes 26/01/2010 22:12:25

VBASE021.VDF : 7.10.3.93 2048 Bytes 26/01/2010 22:12:25

VBASE022.VDF : 7.10.3.94 2048 Bytes 26/01/2010 22:12:25

VBASE023.VDF : 7.10.3.95 2048 Bytes 26/01/2010 22:12:25

VBASE024.VDF : 7.10.3.96 2048 Bytes 26/01/2010 22:12:25

VBASE025.VDF : 7.10.3.97 2048 Bytes 26/01/2010 22:12:25

VBASE026.VDF : 7.10.3.98 2048 Bytes 26/01/2010 22:12:25

VBASE027.VDF : 7.10.3.99 2048 Bytes 26/01/2010 22:12:25

VBASE028.VDF : 7.10.3.100 2048 Bytes 26/01/2010 22:12:25

VBASE029.VDF : 7.10.3.101 2048 Bytes 26/01/2010 22:12:25

VBASE030.VDF : 7.10.3.102 2048 Bytes 26/01/2010 22:12:25

VBASE031.VDF : 7.10.3.104 11264 Bytes 26/01/2010 22:12:26

Engineversion : 8.2.1.150

AEVDF.DLL : 8.1.1.3 106868 Bytes 22/01/2010 22:12:21

AESCRIPT.DLL : 8.1.3.12 823675 Bytes 22/01/2010 22:12:21

AESCN.DLL : 8.1.3.1 127348 Bytes 15/01/2010 09:53:20

AESBX.DLL : 8.1.1.1 246132 Bytes 8/11/2009 06:38:44

AERDL.DLL : 8.1.3.4 479605 Bytes 7/01/2010 23:02:41

AEPACK.DLL : 8.2.0.5 422262 Bytes 15/01/2010 09:53:19

AEOFFICE.DLL : 8.1.0.38 196987 Bytes 8/11/2009 06:38:38

AEHEUR.DLL : 8.1.0.195 2232695 Bytes 15/01/2010 09:53:15

AEHELP.DLL : 8.1.10.0 237942 Bytes 15/01/2010 09:53:00

AEGEN.DLL : 8.1.1.83 369014 Bytes 7/01/2010 23:02:40

AEEMU.DLL : 8.1.1.0 393587 Bytes 8/11/2009 06:38:26

AECORE.DLL : 8.1.9.5 184693 Bytes 15/01/2010 09:52:59

AEBB.DLL : 8.1.0.3 53618 Bytes 8/11/2009 06:38:20

AVWINLL.DLL : 9.0.0.3 18177 Bytes 12/12/2008 07:47:59

AVPREF.DLL : 9.0.3.0 44289 Bytes 26/08/2009 14:14:02

AVREP.DLL : 8.0.0.3 155905 Bytes 20/01/2009 13:34:28

AVREG.DLL : 9.0.0.0 36609 Bytes 5/12/2008 09:32:09

AVARKT.DLL : 9.0.0.3 292609 Bytes 24/03/2009 14:05:41

AVEVTLOG.DLL : 9.0.0.7 167169 Bytes 30/01/2009 09:37:08

SQLITE3.DLL : 3.6.1.0 326401 Bytes 28/01/2009 14:03:49

SMTPLIB.DLL : 9.2.0.25 28417 Bytes 2/02/2009 07:21:33

NETNT.DLL : 9.0.0.0 11521 Bytes 5/12/2008 09:32:10

RCIMAGE.DLL : 9.0.0.25 2438913 Bytes 15/05/2009 14:39:58

RCTEXT.DLL : 9.0.73.0 86785 Bytes 13/10/2009 11:25:47

 

Configuration settings for the scan:

Jobname.............................: Complete system scan

Configuration file..................: c:\program files\avira\antivir desktop\sysscan.avp

Logging.............................: low

Primary action......................: interactive

Secondary action....................: ignore

Scan master boot sector.............: on

Scan boot sector....................: on

Boot sectors........................: C:,

Process scan........................: on

Scan registry.......................: on

Search for rootkits.................: on

Integrity checking of system files..: off

Scan all files......................: All files

Scan archives.......................: on

Recursion depth.....................: 20

Smart extensions....................: on

Macro heuristic.....................: on

File heuristic......................: medium

 

Start of the scan: mercredi 27 janvier 2010 10:08

 

Starting search for hidden objects.

'89670' objects were checked, '0' hidden objects were found.

 

The scan of running processes will be started

Scan process 'AAWTray.exe' - '1' Module(s) have been scanned

Scan process 'avscan.exe' - '1' Module(s) have been scanned

Scan process 'avcenter.exe' - '1' Module(s) have been scanned

Scan process 'unsecapp.exe' - '1' Module(s) have been scanned

Scan process 'AAWService.exe' - '1' Module(s) have been scanned

Scan process 'msiexec.exe' - '1' Module(s) have been scanned

Scan process 'explorer.exe' - '1' Module(s) have been scanned

Scan process 'taskmgr.exe' - '1' Module(s) have been scanned

Scan process 'hpqbam08.exe' - '1' Module(s) have been scanned

Scan process 'hpqste08.exe' - '1' Module(s) have been scanned

Scan process 'alg.exe' - '1' Module(s) have been scanned

Scan process 'wmiprvse.exe' - '1' Module(s) have been scanned

Scan process 'wmiapsrv.exe' - '1' Module(s) have been scanned

Scan process 'CLSched.exe' - '1' Module(s) have been scanned

Scan process 'searchindexer.exe' - '1' Module(s) have been scanned

Scan process 'TosBtSrv.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'SeaPort.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'MDM.EXE' - '1' Module(s) have been scanned

Scan process 'jqs.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'HidService.exe' - '1' Module(s) have been scanned

Scan process 'CLMLService.exe' - '1' Module(s) have been scanned

Scan process 'CLMLServer.exe' - '1' Module(s) have been scanned

Scan process 'CLCapSvc.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'AppleMobileDeviceService.exe' - '1' Module(s) have been scanned

Scan process 'avguard.exe' - '1' Module(s) have been scanned

Scan process 'WindowsSearch.exe' - '1' Module(s) have been scanned

Scan process 'hpqtra08.exe' - '1' Module(s) have been scanned

Scan process 'SMPSYS.EXE' - '1' Module(s) have been scanned

Scan process 'avgnt.exe' - '1' Module(s) have been scanned

Scan process 'jusched.exe' - '1' Module(s) have been scanned

Scan process 'ItSecMng.exe' - '1' Module(s) have been scanned

Scan process 'rundll32.exe' - '1' Module(s) have been scanned

Scan process 'VM305_STI.EXE' - '1' Module(s) have been scanned

Scan process 'PCMService.exe' - '1' Module(s) have been scanned

Scan process 'winampa.exe' - '1' Module(s) have been scanned

Scan process 'hkcmd.exe' - '1' Module(s) have been scanned

Scan process 'igfxpers.exe' - '1' Module(s) have been scanned

Scan process 'igfxtray.exe' - '1' Module(s) have been scanned

Scan process 'SynTPEnh.exe' - '1' Module(s) have been scanned

Scan process 'SynTPLpr.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'sched.exe' - '1' Module(s) have been scanned

Scan process 'LEXPPS.EXE' - '1' Module(s) have been scanned

Scan process 'spoolsv.exe' - '1' Module(s) have been scanned

Scan process 'LEXBCES.EXE' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'svchost.exe' - '1' Module(s) have been scanned

Scan process 'lsass.exe' - '1' Module(s) have been scanned

Scan process 'services.exe' - '1' Module(s) have been scanned

Scan process 'winlogon.exe' - '1' Module(s) have been scanned

Scan process 'csrss.exe' - '1' Module(s) have been scanned

Scan process 'smss.exe' - '1' Module(s) have been scanned

60 processes with 60 modules were scanned

 

Starting master boot sector scan:

Master boot sector HD0

[iNFO] No virus was found!

 

Start scanning boot sectors:

Boot sector 'C:\'

[iNFO] No virus was found!

 

Starting to scan executable files (registry).

The registry was scanned ( '71' files ).

 

 

Starting the file scan:

 

Begin scan in 'C:\' <HDD>

C:\hiberfil.sys

[WARNING] The file could not be opened!

[NOTE] This file is a Windows system file.

[NOTE] This file cannot be opened for scanning.

C:\pagefile.sys

[WARNING] The file could not be opened!

[NOTE] This file is a Windows system file.

[NOTE] This file cannot be opened for scanning.

C:\Documents and Settings\Hakopain Aram\Mes documents\Downloads\AD-R (1).exe

[0] Archive type: NSIS

--> ProgramFilesDir/List.dat

[DETECTION] Contains recognition pattern of the HTML/Malicious.ActiveX.Gen HTML script virus

C:\Documents and Settings\Hakopain Aram\Mes documents\Downloads\AD-R.exe

[0] Archive type: NSIS

--> ProgramFilesDir/List.dat

[DETECTION] Contains recognition pattern of the HTML/Malicious.ActiveX.Gen HTML script virus

C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP469\A0093434.exe

[DETECTION] Contains recognition pattern of the DR/Delphi.Gen dropper

C:\WINDOWS\I386\DRIVER.CAB

[0] Archive type: CAB (Microsoft)

--> 2gmgsmt.sf2

[WARNING] No further files can be extracted from this archive. The archive will be closed

C:\WINDOWS\system32\drivers\sptd.sys

[WARNING] The file could not be opened!

 

Beginning disinfection:

C:\Documents and Settings\Hakopain Aram\Mes documents\Downloads\AD-R (1).exe

[NOTE] The file was moved to '4b8d1a23.qua'!

C:\Documents and Settings\Hakopain Aram\Mes documents\Downloads\AD-R.exe

[NOTE] The file was moved to '4a0feb94.qua'!

C:\System Volume Information\_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP469\A0093434.exe

[DETECTION] Contains recognition pattern of the DR/Delphi.Gen dropper

[NOTE] The file was moved to '4b901a0f.qua'!

 

 

End of the scan: mercredi 27 janvier 2010 11:48

Used time: 1:39:33 Hour(s)

 

The scan has been done completely.

 

13171 Scanned directories

689953 Files were scanned

3 Viruses and/or unwanted programs were found

0 Files were classified as suspicious

0 files were deleted

0 Viruses and unwanted programs were repaired

3 Files were moved to quarantine

0 Files were renamed

3 Files cannot be scanned

689947 Files not concerned

10037 Archives were scanned

4 Warnings

5 Notes

89670 Objects were scanned with rootkit scan

0 Hidden objects were found

Modifié par aramtchik

pear Devil Member !

pear

Posté(e)
Posté(e)

Bonjour,

Rien de bien grave.

Les fichiers en quarantaine sont inoffensifs.

Désinstallez la Restauration Système.

 

Poste de Travail->Propriétés->Restauration Système.

Cocher la case "Désactiver la Restauration sur tous les lecteurs".

Vous la décocherez par la suite

Un nouveau point de restauration sera créé au redémarrage.

aramtchik Member

aramtchik

Posté(e)
  • Auteur
Posté(e)

Salut.

 

Aussi simple que bonjour, mais quand on connait pas... Je te remercie très beaucoup! :P

 

Bonne soirée

Rejoindre la conversation

Vous pouvez publier maintenant et vous inscrire plus tard. Si vous avez un compte, connectez-vous maintenant pour publier avec votre compte.
Remarque : votre message nécessitera l’approbation d’un modérateur avant de pouvoir être visible.

Invité
Répondre à ce sujet…

×   Collé en tant que texte enrichi.   Coller en tant que texte brut à la place

  Seulement 75 émoticônes maximum sont autorisées.

×   Votre lien a été automatiquement intégré.   Afficher plutôt comme un lien

×   Votre contenu précédent a été rétabli.   Vider l’éditeur

×   Vous ne pouvez pas directement coller des images. Envoyez-les depuis votre ordinateur ou insérez-les depuis une URL.

×
 Partager
Aller sur la liste des sujets

  • En ligne récemment   0 membre est en ligne

    • Aucun utilisateur enregistré regarde cette page.
×
×
  • Créer...