01net    Web


Actuellement en ligne : 989 Utilisateurs dont 89 dans Sécurité, virus et assimilés >S'inscrire      >S'identifier      >Recherche      >Aide  
modéré par A.Ouloube, naheulbeuk, Mérillym, bibou0007, Malekal_morte, IL-MAFIOSO  
01net > Forum de 01net > Sécurité, virus et assimilés > Failles de sécurité
> analysez mon rapport antivir SVP RESOLU
Passionné(e) d'internet, de logiciels, de forums ? 01net recrute...
Auteur
Message
 
<     1       >
sebis28
  sa va mal ? 01.net est là !
  :-)
      ?   @     Posté le 05/09/2007 14:41:05  
Voter pour ce message
Bonjour a tous voici mon rapport antivir pourriez vous m'aider a l'analyser et me dire ce que vous en pensez sachant que les 5 objets trouvés ont été mis en quarantaine:Le ou lesquels pourraient etre dangereux?
En cas de réparation je ne peux pas passer par le mode sans échec.

AntiVir PersonalEdition Classic
Report file date: mercredi 5 septembre 2007 12:00

Scanning for 1044559 virus strains and unwanted programs.

Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows XP
Windows version: (plain) [5.1.2600]
Username: SYSTEM
Computer name: SEB-QJQKBBWZ0BQ

Version information:
BUILD.DAT : 247 14437 Bytes 10/05/2007 11:55:00
AVSCAN.EXE : 7.0.4.15 282664 Bytes 20/04/2007 11:37:14
AVSCAN.DLL : 7.0.4.4 33832 Bytes 27/03/2007 11:31:54
LUKE.DLL : 7.0.4.11 143400 Bytes 27/03/2007 11:26:04
LUKERES.DLL : 7.0.4.0 10280 Bytes 19/03/2007 11:18:59
ANTIVIR0.VDF : 6.35.0.1 7371264 Bytes 31/05/2006 13:08:58
ANTIVIR1.VDF : 6.39.0.129 7251968 Bytes 10/07/2007 15:39:42
ANTIVIR2.VDF : 6.39.1.74 1637376 Bytes 02/09/2007 15:39:42
ANTIVIR3.VDF : 6.39.1.87 37888 Bytes 04/09/2007 15:39:42
AVEWIN32.DLL : 7.4.1.66 2789888 Bytes 04/09/2007 15:39:42
AVWINLL.DLL : 1.0.0.7 14376 Bytes 26/02/2007 09:36:26
AVPREF.DLL : 7.0.2.1 24616 Bytes 27/03/2007 11:31:50
AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 12:16:24
AVPACK32.DLL : 7.3.0.15 360488 Bytes 04/09/2007 15:39:43
AVREG.DLL : 7.0.1.2 31784 Bytes 15/03/2007 08:05:08
AVEVTLOG.DLL : 7.0.0.18 86056 Bytes 27/03/2007 11:16:05
AVARKT.DLL : 1.0.0.17 278568 Bytes 02/05/2007 10:32:26
NETNT.DLL : 7.0.0.0 7720 Bytes 08/03/2007 10:09:42
RCIMAGE.DLL : 7.0.1.15 2228264 Bytes 13/03/2007 09:46:18
RCTEXT.DLL : 7.0.45.0 86056 Bytes 19/03/2007 11:42:42

Configuration settings for the scan:
Jobname..........................: Local Hard Disks
Configuration file...............: C:\Program Files\AntiVir PersonalEdition Classic\alldiscs.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: on
Scan boot sector.................: on
Boot sectors.....................: C:,
Scan memory......................: on
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: on
Scan all files...................: All files
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Deviating archive types..........: +BSD Mailbox, +Netscape/Mozilla Mailbox, +Eudora Mailbox, +Squid cache, +Pegasus Mailbox, +MS Outlook Mailbox,
Macro heuristic..................: on
File heuristic...................: high
Deviating risk categories........: +APPL,+GAME,+JOKE,+PCK,+SPR,

Start of the scan: mercredi 5 septembre 2007 12:00

Starting search for hidden objects.
'30693' objects were checked, '0' hidden objects were found.

The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'firefox.exe' - '1' Module(s) have been scanned
Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
Scan process 'TeaTimer.exe' - '1' Module(s) have been scanned
Scan process 'AnonSurf.exe' - '1' Module(s) have been scanned
Scan process 'wdfmgr.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'snmp.exe' - '1' Module(s) have been scanned
Scan process 'bgsvcgen.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'jusched.exe' - '1' Module(s) have been scanned
Scan process 'rundll32.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'LEXPPS.EXE' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'LEXBCES.EXE' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
27 processes with 27 modules were scanned

Starting master boot sector scan:
Master boot sector HD0
[NOTE] No virus was found!

Start scanning boot sectors:
Boot sector 'C:\'
[NOTE] No virus was found!

Starting to scan the registry.
The registry was scanned ( '9' files ).


Starting the file scan:

Begin scan in 'C:\'
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\System Volume Information\_restore{B1D811E3-316B-4617-BC01-867694377CD4}\RP202\A0031672.bat
[DETECTION] Contains suspicious code HEUR/Exploit.HTML
[INFO] The file was moved to '470e896c.qua'!
C:\System Volume Information\_restore{B1D811E3-316B-4617-BC01-867694377CD4}\RP65\A0013252.exe
[DETECTION] Contains signature of the application APPL/CloseApp
[INFO] The file was moved to '470e8af0.qua'!
C:\WINDOWS\system32\closeapp.exe
[DETECTION] Contains signature of the application APPL/CloseApp
[INFO] The file was moved to '474d94ce.qua'!
C:\WINDOWS\system32\ActiveScan\pskavs.dll
[DETECTION] Contains signature of the Windows virus W95/Blumblebee.1738
[INFO] The file was moved to '47499556.qua'!
C:\WINDOWS\system32\drivers\sptd.sys
[WARNING] The file could not be opened!
C:\WINDOWS\system32\Tools\Restart.exe
[DETECTION] Contains signature of the SPR/Destart.A program
[INFO] The file was moved to '4751959c.qua'!


End of the scan: mercredi 5 septembre 2007 13:38
Used time: 1:38:38 min

The scan has been done completely.

4581 Scanning directories
237525 Files were scanned
5 viruses and/or unwanted programs were found
1 classified as suspicious:
0 files were deleted
0 files were repaired
5 files were moved to quarantine
0 files were renamed
2 Files cannot be scanned
237519 Files not concerned
2353 Archives were scanned
2 Warnings
103 Notes
0 Hidden objects were found
-->Message édité par sebis28 le 29/09/2007 13:40:13<--
-------
nouveau pc a moi l'o/c !
sebis28
  sa va mal ? 01.net est là !
  :-)
      ?   @     Posté le 29/09/2007 10:35:10  
Voter pour ce message
personne ?
-------
nouveau pc a moi l'o/c !
bibou0007
  team sécurité
  :-)
      ?   ^   @     Posté le 29/09/2007 10:40:26  
Voter pour ce message
salut

si il sont en quarantaine tu ne crain rien!!!!
-------
http://bibou0007.com/
-------
Il est plus simple d'infecter votre pc que de le désinfecter,pensez y.Ne pas cliquer ici!
sebis28
  sa va mal ? 01.net est là !
  :-)
      ?   @     Posté le 29/09/2007 10:44:48  
Voter pour ce message
ok mais si ils n'avaient pas été en quarantaine le ou lesquels pourrait se révéler dangereux?
-------
nouveau pc a moi l'o/c !
bibou0007
  team sécurité
  :-)
      ?   ^   @     Posté le 29/09/2007 10:57:07  
Voter pour ce message
hum dure as dire

car ce qu il as trouvé "Contains signature et Contains suspicious code HEUR"
c est des traces de signature et des traces de code de virus
c est a dire qu il n as pas trouvé le virus ou le trojan entier mais une partis !!
mais par precaution les as mis en quarantaine car c été tres proche d eux!!!
j espere t avoir un peu plus eclairé ;)
-------
http://bibou0007.com/
-------
Il est plus simple d'infecter votre pc que de le désinfecter,pensez y.Ne pas cliquer ici!
sebis28
  sa va mal ? 01.net est là !
  :-)
      ?   @     Posté le 29/09/2007 13:39:45  
Voter pour ce message
ok merci beaucoup
-------
nouveau pc a moi l'o/c !
<     1       >

01net > Forum de 01net > Sécurité, virus et assimilés > Failles de sécurité
> analysez mon rapport antivir SVP RESOLU

Aller à :

Page générée en : 0.158s - X2board 2.2

Nous contacter | Charte de confiance | Voir notice légale

Tous droits réservés © 1999 - 2008 Groupe Tests - 01net.


Sites du réseau 01net Network : 01net - 01men - Rmc.fr - Bfmtv.fr - Radiobfm.com - TousLesPodcasts - Micro Achat

Jeu-concours
Gagnez une console Wii et des DVD du film Death Sentence. Jouez maintenant sur RMC.fr !
Jeux
Nouveauté : Concevez toutes sortes d'habitations pour la clientèle très exigeante de Halle !