| | titojc |  Posté le 17/08/2008 @ 13:29 | Petit astucien
2 Messages
| Bonjour,
j'ai un probleme comparable à certains sur ce meme forum, mais rien n'y fait. j'ai suivi les indications trouvées ici et là mais non. le centre de securite windows m informe que mes mises a jours sont sur off j ai beau remettre sur automatique (j'ai tenté bcp de choses!) l'alerte se réaffiche à chaque demarrage...
je me permets de poster le dernier log de AVC
Avira antivir Personal
Report file date: samedi 16 août 2008 22:37
Scanning for 1559120 virus strains and unwanted programs.
Licensed to: Avira antivir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows XP
Windows version: (Service Pack 2) [5.1.2600]
Boot mode: Normally booted
Username: SYSTEM
Computer name: LUCAS
Version information:
BUILD.DAT : 8.1.0.331 16934 Bytes 12/08/2008 11:46:00
AVSCAN.EXE : 8.1.4.7 315649 Bytes 26/06/2008 08:57:53
AVSCAN.DLL : 8.1.4.0 40705 Bytes 26/05/2008 07:56:40
LUKE.DLL : 8.1.4.5 164097 Bytes 12/06/2008 12:44:19
LUKERES.DLL : 8.1.4.0 12033 Bytes 26/05/2008 07:58:52
ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 10:33:34
ANTIVIR1.VDF : 7.0.5.1 8182784 Bytes 24/06/2008 13:54:15
ANTIVIR2.VDF : 7.0.6.10 2587136 Bytes 14/08/2008 20:12:15
ANTIVIR3.VDF : 7.0.6.24 103424 Bytes 16/08/2008 20:12:16
Engineversion : 8.1.1.19
AEVDF.DLL : 8.1.0.5 102772 Bytes 09/07/2008 08:46:50
AESCRIPT.DLL : 8.1.0.63 311673 Bytes 16/08/2008 20:12:25
AESCN.DLL : 8.1.0.23 119156 Bytes 16/08/2008 20:12:24
AERDL.DLL : 8.1.0.20 418165 Bytes 09/07/2008 08:46:50
AEPACK.DLL : 8.1.2.1 364917 Bytes 16/08/2008 20:12:24
AEOFFICE.DLL : 8.1.0.21 192891 Bytes 16/08/2008 20:12:23
AEHEUR.DLL : 8.1.0.47 1368437 Bytes 16/08/2008 20:12:22
AEHELP.DLL : 8.1.0.15 115063 Bytes 09/07/2008 08:46:50
AEGEN.DLL : 8.1.0.35 315764 Bytes 16/08/2008 20:12:20
AEEMU.DLL : 8.1.0.7 430452 Bytes 16/08/2008 20:12:19
AECORE.DLL : 8.1.1.8 172406 Bytes 16/08/2008 20:12:18
AEBB.DLL : 8.1.0.1 53617 Bytes 24/04/2008 08:50:42
AVWINLL.DLL : 1.0.0.12 15105 Bytes 09/07/2008 08:40:05
AVPREF.DLL : 8.0.2.0 38657 Bytes 16/05/2008 09:28:01
AVREP.DLL : 8.0.0.2 98344 Bytes 16/08/2008 20:12:17
AVREG.DLL : 8.0.0.1 33537 Bytes 09/05/2008 11:26:40
AVARKT.DLL : 1.0.0.23 307457 Bytes 12/02/2008 08:29:23
AVEVTLOG.DLL : 8.0.0.16 119041 Bytes 12/06/2008 12:27:49
SQLITE3.DLL : 3.3.17.1 339968 Bytes 22/01/2008 17:28:02
SMTPLIB.DLL : 1.2.0.23 28929 Bytes 12/06/2008 12:49:40
NETNT.DLL : 8.0.0.1 7937 Bytes 25/01/2008 12:05:10
RCIMAGE.DLL : 8.0.0.51 2371841 Bytes 12/06/2008 13:48:07
RCTEXT.DLL : 8.0.52.0 86273 Bytes 27/06/2008 13:34:37
Configuration settings for the scan:
Jobname..........................: Complete system scan
Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: on
Scan boot sector.................: on
Boot sectors.....................: C:, D:, E:,
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: Intelligent file selection
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium
Start of the scan: samedi 16 août 2008 22:37
The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'setup.exe' - '1' Module(s) have been scanned
Scan process 'Lanzador.exe' - '1' Module(s) have been scanned
Scan process 'PavPrSrv.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'wuauclt.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'iexplore.exe' - '1' Module(s) have been scanned
Scan process 'firefox.exe' - '1' Module(s) have been scanned
Scan process 'alg.exe' - '1' Module(s) have been scanned
Scan process 'MsPMSPSv.exe' - '1' Module(s) have been scanned
Scan process 'SpySweeper.exe' - '1' Module(s) have been scanned
Scan process 'wdService.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'StarWindServiceAE.exe' - '1' Module(s) have been scanned
Scan process 'PnkBstrA.exe' - '1' Module(s) have been scanned
Scan process 'nvsvc32.exe' - '1' Module(s) have been scanned
Scan process 'DkService.exe' - '1' Module(s) have been scanned
Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
Scan process 'YahooMessenger.exe' - '1' Module(s) have been scanned
Scan process 'mDNSResponder.exe' - '1' Module(s) have been scanned
Scan process 'AppleMobileDeviceService.exe' - '1' Module(s) have been scanned
Scan process 'sdfhost.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
37 processes with 37 modules were scanned
Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!
Master boot sector HD1
[INFO] No virus was found!
Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Boot sector 'D:\'
[INFO] No virus was found!
Boot sector 'E:\'
[INFO] No virus was found!
Starting to scan the registry.
The registry was scanned ( '56' files ).
Starting the file scan:
Begin scan in 'C:\' <LUCAS>
C:\hiberfil.sys
[WARNING] The file could not be opened!
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\Documents and Settings\jean christophe\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\ehp2_stdneh.jar-42e05065-520c4090.zip
[0] Archive type: ZIP
--> BnnnnBaa.class
[DETECTION] Is the TR/Java.Downloader.Gen Trojan
--> VaannnaaBaa.class
[DETECTION] Is the TR/ClassLoader Trojan
--> Dnnny.class
[DETECTION] Contains recognition pattern of the JAVA/Exploit.Bytverify.5 Java virus
--> Bnnnnn.class
[DETECTION] Is the TR/Java.ClassLoader.AS Trojan
--> Den.class
[DETECTION] Is the TR/Exploit.Bytverify Trojan
--> Din.class
[DETECTION] Is the TR/Exploit.Bytverify.A Trojan
--> Dun.class
[DETECTION] Is the TR/Exploit.Bytverify.B Trojan
[NOTE] The file was moved to '49173d3a.qua'!
C:\Documents and Settings\jean christophe\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\jvmimpro.jar-54e206d6-770b4ae7.zip
[0] Archive type: ZIP
--> vmain.class
[DETECTION] Contains recognition pattern of the EXP/Java.Gimsh.A.39 exploit
[NOTE] The file was moved to '49143d5c.qua'!
C:\Documents and Settings\jean christophe\Local Settings\Temporary Internet Files\Content.IE5\MQ2E5NUS\Navilog1[1].exe
[DETECTION] Contains recognition pattern of the DR/Tool.Reboot.F.71 dropper
[NOTE] The file was moved to '491d3eba.qua'!
C:\Program Files\Alcohol Soft\Alcohol 120\patch_3105.exe
[DETECTION] Is the TR/Agent.69632.O Trojan
[NOTE] The file was moved to '491b4322.qua'!
C:\Program Files\iolo\System Mechanic 4 Professional\BACKUP\platinum7TRIAL.exe
[0] Archive type: ZIP SFX (self extracting)
--> pavDll.dll
[DETECTION] Contains recognition pattern of the W95/Bumble Windows virus
[NOTE] The file was moved to '490846f5.qua'!
C:\Program Files\Navilog1\Backupnavi\fmueme.exe
[DETECTION] Is the TR/Dldr.Swizzor.Gen Trojan
[NOTE] The file was moved to '491c49e7.qua'!
C:\Program Files\Navilog1\Backupnavi\vlcqgofuja.exe
[DETECTION] Is the TR/Dropper.Gen Trojan
[NOTE] The file was moved to '490a49e7.qua'!
C:\Program Files\TuneUp Utilities 2006\SDShelEx.dll
[DETECTION] Is the TR/Muldrop.6045.A Trojan
[NOTE] The file was moved to '48fa4a32.qua'!
C:\WINDOWS\system32\drivers\sptd.sys
[WARNING] The file could not be opened!
Begin scan in 'D:\' <JUANITO>
Begin scan in 'E:\' <LUCANITO>
End of the scan: dimanche 17 août 2008 00:15
Used time: 1:38:01 Hour(s)
The scan has been done completely.
10492 Scanning directories
596718 Files were scanned
7 viruses and/or unwanted programs were found
7 Files were classified as suspicious:
0 files were deleted
0 files were repaired
8 files were moved to quarantine
0 files were renamed
3 Files cannot be scanned
596701 Files not concerned
2066 Archives were scanned
3 Warnings
8 Notes
j'ai supprimé les virus et j'attends vos retours.
Merci!
titojc | | |
| |
| Publicité |
|
| | mipierre | Posté le 17/08/2008 à 13:42 | Astucien
2671 Messages
| Bonjour titojc  Bienvenu sur pCAstuces !
En effet, il y a un problème là !
Regardes et appliques déjà C E C I !
Pour la suite, on verra ! Tiens moi au courant ! | | | | | titojc | Posté le 17/08/2008 à 13:57 | Petit astucien
2 Messages
| voici le rapport, je l ai effectué hier... ;)
Malwarebytes' Anti-Malware 1.24
Version de la base de données: 1057
Windows 5.1.2600 Service Pack 2
17:30:07 16/08/2008
mbam-log-8-16-2008 (17-30-07).txt
Type de recherche: Examen complet (C:\|D:\|E:\|)
Eléments examinés: 380655
Temps écoulé: 1 hour(s), 8 minute(s), 37 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 1
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 1
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} (Adware.Agent) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
C:\Program Files\free-downloads.net\tbfree.dll (Adware.Shopper) -> Quarantined and deleted successfully.
merci de ton aide rapide en tous les cas... | | | | | mipierre | Posté le 17/08/2008 à 14:26 | Astucien
2671 Messages
| OK !
Maintenant tu peux faire C E C I !
Après on verra !  | | | |
| | Haut de la page |
| | Inscrivez-vous ! |
- Posez vos questions
- Résolvez vos problèmes
- Aidez les autres
- Participez et créez vos discussions
- Dialoguez en privé avec d'autres membres
- Suivez vos sujets préférés
- Affichez les signatures des membres
|
|
mise a jour automatiques windows probleme
