Win trojan gen

guigou1979 -
guigou1979 - 25 déc. 2009 à 14:55

Bonjour,
j ai besoin d aide ... un trojan ou virus je ne sais pas trop revien sans cess ce qui m inquiete c est qu il est dapres avast dan le systeme 32 / driver / atapi sys impossible de l enlever meme malwarebyte's n y parvient pas dois je reformater ? ou ya il une solution svp ... merci =)

Afficher la suite

A voir également:

Win trojan gen
Win rar - Télécharger - Compression & Décompression
Win dir stat - Télécharger - Gestion de fichiers
Win zip - Télécharger - Compression & Décompression
Cle win 8.1 - Guide
Win movie maker - Télécharger - Montage & Édition

30 réponses

Réponse 21 / 30

guigou1979 Messages postés 16 Statut Membre

ok je fait tout ca =)

Réponse 22 / 30

jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040

Réponse 23 / 30

guigou19779

le scan est en cours chez panda ... je posterais une reponse a la fin du scan en attenadant un grand merci a toi pour ton aide =)=)=)

Réponse 24 / 30

jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040

ok un pb du site qui n'affiche pas tout les messages, cela devrait se régler !

a plus

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question

Réponse 25 / 30

guigou19779

aparament a part quelque probleme ( resolu par panda) rien de grave ... enfin plus rien de grave
encore merci a toi pour ton aide =) bonne féte a+

Réponse 26 / 30

jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040

ok bonne suite

Réponse 27 / 30

guigou1979

ben apres analise avast il revien mais plus comme avant toutes les deux seconde mais une fois ... et on dirait quil veut bien le suprimer ... en revanche malwarebyte's ne le trouve pas . je me demande si ca n est pas un beug d avast ? au cas ou voici le raport de malxarebyte's
Malwarebytes' Anti-Malware 1.42
Version de la base de données: 3423
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

25/12/2009 09:57:56
mbam-log-2009-12-25 (09-57-56).txt

Type de recherche: Examen rapide
Eléments examinés: 116157
Temps écoulé: 4 minute(s), 51 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)

je regarderais le topic dans la journee entre les repas ... bonne fetes =)

Réponse 28 / 30

jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040

colle un rapport d'avast pour voir . Sinon dis quel fichier est suspect pour avast. Et dis moi si tu tiens à garder absolument avast

Réponse 29 / 30

guigou1979

je fais le scan en ce moment en attendant non je ne tien absolument pas a avast =) par contre j ai remarquer un dossier qui me derrange il est nomé dans le raport s&d (poste avant sur ce topic ) a c/ documents and seting maxxon-cinema.4d c un generateur de keygen (honte a moi =s) qui ne marcher pas et que javais mis dans un dossier car impossible a supprimer et ho surprise il c creer une dizaine de raccourci tous coché en lecture seul et impossible a supprimer car : - contient des elements trop long pour etre contenue dans la corbeille -
il y a dedans entre autre des fichiers .xgr ... j ai essayer de suprmer en faisant ctrl+alt+supp /processuse / explorer exe mais ca ne marche , marhce pas non plus avec delete invalide file ni malwarebyte's ni avast ni rien ...:/ je poste le resume de avast dés que c et fini

Réponse 30 / 30

guigou1979

21/11/2009 01:52:51 utilisateur 5760 Sign of "HTML:SkinTrim-A [Trj]" has been found in "C:\Documents and Settings\utilisateur\Local Settings\Temporary Internet Files\Content.IE5\ND59AH9E\download[1].php" file.
28/11/2009 13:54:02 SYSTEM 1496 Sign of "HTML:Script-inf" has been found in "http://www.elias-design.gr/includes/bevisions.js" file.
28/11/2009 13:54:02 SYSTEM 1496 Sign of "HTML:Script-inf" has been found in "http://www.elias-design.gr/includes/sortabletable/js/sortabletable.js" file.
28/11/2009 13:54:02 SYSTEM 1496 Sign of "HTML:Script-inf" has been found in "http://www.elias-design.gr/includes/lightbox/js/lightbox.js" file.
28/11/2009 13:54:05 SYSTEM 1496 Sign of "HTML:Script-inf" has been found in "http://www.elias-design.gr/includes/validation/validation.js" file.
28/11/2009 13:54:06 SYSTEM 1496 Sign of "HTML:Script-inf" has been found in "http://www.elias-design.gr/includes/lightbox/js/effects.js" file.
28/11/2009 13:54:07 SYSTEM 1496 Sign of "HTML:Script-inf" has been found in "http://www.elias-design.gr/includes/chromemenu/chromejs/chrome.js" file.
30/11/2009 23:05:29 SYSTEM 1496 Sign of "HTML:RedirME-inf [Trj]" has been found in "https://www.hugedomains.com/domain_profile.cfm?d=centiyo&e=com\{gzip}" file.
02/12/2009 03:28:35 SYSTEM 1496 Sign of "JS:Bulered [Trj]" has been found in "https://collegeofphysicians.org/" file.
18/12/2009 14:01:31 utilisateur 7836 Sign of "Win32:Trojan-gen" has been found in "C:\Documents and Settings\utilisateur\Mes documents\Téléchargements\keygen.exe" file.
18/12/2009 14:04:43 utilisateur 7836 Sign of "Win32:Trojan-gen" has been found in "C:\Documents and Settings\utilisateur\Mes documents\Téléchargements\Trellian_SEO_Toolkit_v3_cw.rar\keygen.exe" file.
21/12/2009 03:08:20 utilisateur 5000 Sign of "Win32:Trojan-gen" has been found in "C:\System Volume Information\_restore{661C7A48-4791-4ADD-B197-CE05AC9072BF}\RP162\A0053289.exe" file.
23/12/2009 16:45:03 SYSTEM 1528 Sign of "Win32:Malware-gen" has been found in "C:\DOCUME~1\UTILIS~1\LOCALS~1\Temp\aoxcenrsmw.tmp" file.
23/12/2009 16:45:10 SYSTEM 1528 Sign of "Win32:Rootkit-gen [Rtk]" has been found in "C:\DOCUME~1\UTILIS~1\LOCALS~1\Temp\wnomcsxaer.tmp" file.
23/12/2009 19:24:03 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 19:24:51 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\LastGood\system32\drivers\atapi.sys" file.
23/12/2009 19:25:01 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 19:25:15 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 19:25:32 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 19:25:52 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 19:27:13 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 19:27:32 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 19:28:40 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 19:29:12 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 19:29:30 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 19:29:50 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 19:30:33 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 19:33:01 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 19:33:28 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 19:33:55 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 19:34:13 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 19:34:46 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 19:35:00 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 19:35:17 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 19:36:29 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 19:36:44 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 19:36:53 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\fffffffff.sys" file.
23/12/2009 19:37:03 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 19:37:57 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 19:38:10 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 19:46:16 utilisateur 3032 Sign of "Win32:Alureon-EU" has been found in "C:\System Volume Information\_restore{661C7A48-4791-4ADD-B197-CE05AC9072BF}\RP200\A0061179.sys" file.
23/12/2009 19:46:23 utilisateur 3032 Sign of "Win32:Alureon-EU" has been found in "C:\System Volume Information\_restore{661C7A48-4791-4ADD-B197-CE05AC9072BF}\RP200\A0061184.sys" file.
23/12/2009 19:46:37 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 19:46:56 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 20:02:33 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 20:04:46 SYSTEM 1528 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 20:41:34 SYSTEM 1576 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 20:42:04 SYSTEM 1576 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 20:42:17 SYSTEM 1576 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 21:11:07 SYSTEM 1576 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 21:11:20 SYSTEM 1576 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
23/12/2009 21:24:37 SYSTEM 1576 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
24/12/2009 12:04:44 SYSTEM 1556 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
24/12/2009 12:11:48 SYSTEM 1556 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
24/12/2009 12:17:59 SYSTEM 1556 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
24/12/2009 12:18:43 SYSTEM 1556 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
24/12/2009 12:24:48 SYSTEM 1556 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
24/12/2009 12:25:06 SYSTEM 1556 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
24/12/2009 12:25:23 SYSTEM 1556 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
24/12/2009 12:25:37 SYSTEM 1556 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
24/12/2009 12:25:59 SYSTEM 1556 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
24/12/2009 12:26:20 SYSTEM 1556 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
24/12/2009 12:26:44 SYSTEM 1556 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
24/12/2009 12:26:59 SYSTEM 1556 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
24/12/2009 12:27:41 SYSTEM 1556 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
24/12/2009 12:27:57 SYSTEM 1556 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
24/12/2009 12:28:21 SYSTEM 1556 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
24/12/2009 12:45:51 SYSTEM 1556 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
24/12/2009 13:14:34 SYSTEM 1556 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
24/12/2009 13:22:25 SYSTEM 1556 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
24/12/2009 13:26:56 SYSTEM 1556 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
24/12/2009 13:27:09 SYSTEM 1556 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
24/12/2009 13:27:23 SYSTEM 1556 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
24/12/2009 13:57:13 SYSTEM 1556 AAVM - scanning warning: x_AavmCheckFileDirectEx [UNI]: C:\Documents and Settings\utilisateur\Local Settings\Application Data\Microsoft\Internet Explorer\Recovery\Last Active\RecoveryStore.{01E0D36F-E3A6-11DE-B45A-0023544C7637}.dat (C:\Documents and Settings\utilisateur\Local Settings\Application Data\Microsoft\Internet Explorer\Recovery\Last Active\RecoveryStore.{01E0D36F-E3A6-11DE-B45A-0023544C7637}.dat) returning error, 00000005.
24/12/2009 14:03:11 SYSTEM 1556 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
24/12/2009 14:07:02 SYSTEM 1556 Sign of "Win32:Alureon-EU" has been found in "C:\WINDOWS\system32\drivers\atapi.sys" file.
25/12/2009 05:19:47 utilisateur 4328 Sign of "Win32:Alureon-EU" has been found in "C:\Qoobox\Quarantine\C\WINDOWS\system32\drivers\atapi.sys.vir" file.

Discussions similaires

Comment enlever mon virus trojan:win32/si...

cheval de troie trojan

Win64 malware gen

Menace détectée TrojanSMS-PA sur Google Huawei/Android

Win trojan gen

30 réponses

Votre réponse

Discussions similaires

Newsletters