JAVA/Exdoer.CE Java virus

Fermé
mariadolce1212 Messages postés 1 Date d'inscription dimanche 15 mai 2011 Statut Membre Dernière intervention 15 mai 2011 - 15 mai 2011 à 19:02
Bonjour,
merci a ceux qui pourront m'éclairer....je crois avoir été infecté par un malwar sur facebook....je poste donc un scan avira et voudrais savoir comment m'en débarasser....merci bien



Avira AntiVir Personal
Report file date: Sunday, May 15, 2011 01:58

Scanning for 2730903 virus strains and unwanted programs.

The program is running as an unrestricted full version.
Online services are available:

Licensee : Avira AntiVir Personal - FREE Antivirus
Serial number : 0000149996-ADJIE-0000001
Platform : Windows 7
Windows version : (plain) [6.1.7600]
Boot mode : Normally booted
Username : SYSTEM
Computer name : LAFAMILLE-PC

Version information:
BUILD.DAT : 10.0.0.648 31823 Bytes 4/1/2011 18:36:00
AVSCAN.EXE : 10.0.4.2 442024 Bytes 4/28/2011 17:07:02
AVSCAN.DLL : 10.0.3.0 46440 Bytes 4/1/2010 20:57:04
LUKE.DLL : 10.0.3.2 104296 Bytes 12/1/2010 02:13:24
LUKERES.DLL : 10.0.0.1 12648 Bytes 2/11/2010 07:40:49
VBASE000.VDF : 7.10.0.0 19875328 Bytes 11/6/2009 17:05:36
VBASE001.VDF : 7.11.0.0 13342208 Bytes 12/14/2010 18:58:28
VBASE002.VDF : 7.11.3.0 1950720 Bytes 2/9/2011 17:07:01
VBASE003.VDF : 7.11.5.225 1980416 Bytes 4/7/2011 17:07:01
VBASE004.VDF : 7.11.5.226 2048 Bytes 4/7/2011 17:07:01
VBASE005.VDF : 7.11.5.227 2048 Bytes 4/7/2011 17:07:01
VBASE006.VDF : 7.11.5.228 2048 Bytes 4/7/2011 17:07:01
VBASE007.VDF : 7.11.5.229 2048 Bytes 4/7/2011 17:07:01
VBASE008.VDF : 7.11.5.230 2048 Bytes 4/7/2011 17:07:01
VBASE009.VDF : 7.11.5.231 2048 Bytes 4/7/2011 17:07:01
VBASE010.VDF : 7.11.5.232 2048 Bytes 4/7/2011 17:07:01
VBASE011.VDF : 7.11.5.233 2048 Bytes 4/7/2011 17:07:01
VBASE012.VDF : 7.11.5.234 2048 Bytes 4/7/2011 17:07:01
VBASE013.VDF : 7.11.6.28 158208 Bytes 4/11/2011 17:07:01
VBASE014.VDF : 7.11.6.74 116224 Bytes 4/13/2011 17:07:01
VBASE015.VDF : 7.11.6.113 137728 Bytes 4/14/2011 17:07:01
VBASE016.VDF : 7.11.6.150 146944 Bytes 4/18/2011 17:07:01
VBASE017.VDF : 7.11.6.192 138240 Bytes 4/20/2011 17:07:01
VBASE018.VDF : 7.11.6.237 156160 Bytes 4/22/2011 17:07:01
VBASE019.VDF : 7.11.7.45 427520 Bytes 4/27/2011 17:07:01
VBASE020.VDF : 7.11.7.64 192000 Bytes 4/28/2011 17:07:01
VBASE021.VDF : 7.11.7.97 182272 Bytes 5/2/2011 16:24:51
VBASE022.VDF : 7.11.7.127 467968 Bytes 5/4/2011 16:31:13
VBASE023.VDF : 7.11.7.183 185856 Bytes 5/9/2011 14:44:07
VBASE024.VDF : 7.11.7.218 133120 Bytes 5/11/2011 20:21:16
VBASE025.VDF : 7.11.7.234 139776 Bytes 5/11/2011 20:21:16
VBASE026.VDF : 7.11.8.16 147456 Bytes 5/13/2011 16:23:20
VBASE027.VDF : 7.11.8.17 2048 Bytes 5/13/2011 16:23:20
VBASE028.VDF : 7.11.8.18 2048 Bytes 5/13/2011 16:23:20
VBASE029.VDF : 7.11.8.19 2048 Bytes 5/13/2011 16:23:21
VBASE030.VDF : 7.11.8.20 2048 Bytes 5/13/2011 16:23:21
VBASE031.VDF : 7.11.8.21 2048 Bytes 5/13/2011 16:23:21
Engineversion : 8.2.4.228
AEVDF.DLL : 8.1.2.1 106868 Bytes 12/1/2010 02:13:13
AESCRIPT.DLL : 8.1.3.61 1253754 Bytes 5/5/2011 15:38:27
AESCN.DLL : 8.1.7.2 127349 Bytes 12/1/2010 02:13:12
AESBX.DLL : 8.1.3.2 254324 Bytes 12/1/2010 02:13:12
AERDL.DLL : 8.1.9.9 639347 Bytes 4/28/2011 17:07:01
AEPACK.DLL : 8.2.6.0 549237 Bytes 4/28/2011 17:07:01
AEOFFICE.DLL : 8.1.1.22 205178 Bytes 5/5/2011 15:38:05
AEHEUR.DLL : 8.1.2.113 3494263 Bytes 5/5/2011 15:37:56
AEHELP.DLL : 8.1.16.1 246134 Bytes 2/4/2011 20:04:25
AEGEN.DLL : 8.1.5.4 397684 Bytes 4/28/2011 17:07:01
AEEMU.DLL : 8.1.3.0 393589 Bytes 12/1/2010 02:13:06
AECORE.DLL : 8.1.20.2 196982 Bytes 4/28/2011 17:07:01
AEBB.DLL : 8.1.1.0 53618 Bytes 12/1/2010 02:13:05
AVWINLL.DLL : 10.0.0.0 19304 Bytes 12/1/2010 02:13:17
AVPREF.DLL : 10.0.0.0 44904 Bytes 12/1/2010 02:13:16
AVREP.DLL : 10.0.0.9 174120 Bytes 4/28/2011 17:07:02
AVREG.DLL : 10.0.3.2 53096 Bytes 12/1/2010 02:13:17
AVSCPLR.DLL : 10.0.4.2 84840 Bytes 4/28/2011 17:07:02
AVARKT.DLL : 10.0.22.6 231784 Bytes 12/1/2010 02:13:14
AVEVTLOG.DLL : 10.0.0.8 203112 Bytes 12/1/2010 02:13:15
SQLITE3.DLL : 3.6.19.0 355688 Bytes 6/17/2010 22:27:22
AVSMTP.DLL : 10.0.0.17 63848 Bytes 12/1/2010 02:13:17
NETNT.DLL : 10.0.0.0 11624 Bytes 6/17/2010 22:27:21
RCIMAGE.DLL : 10.0.0.26 2550120 Bytes 1/28/2010 21:10:20
RCTEXT.DLL : 10.0.58.0 97128 Bytes 12/1/2010 02:13:38

Configuration settings for the scan:
Jobname.............................: Complete system scan
Configuration file..................: C:\program files\avira\antivir desktop\sysscan.avp
Logging.............................: low
Primary action......................: interactive
Secondary action....................: ignore
Scan master boot sector.............: on
Scan boot sector....................: on
Boot sectors........................: C:,
Process scan........................: on
Extended process scan...............: on
Scan registry.......................: on
Search for rootkits.................: on
Integrity checking of system files..: off
Scan all files......................: All files
Scan archives.......................: on
Recursion depth.....................: 20
Smart extensions....................: on
Macro heuristic.....................: on
File heuristic......................: medium

Start of the scan: Sunday, May 15, 2011 01:58

Starting search for hidden objects.

The scan of running processes will be started
Scan process 'plugin-container.exe' - '132' Module(s) have been scanned
Scan process 'plugin-container.exe' - '75' Module(s) have been scanned
Scan process 'firefox.exe' - '100' Module(s) have been scanned
Scan process 'svchost.exe' - '34' Module(s) have been scanned
Scan process 'vssvc.exe' - '47' Module(s) have been scanned
Scan process 'avscan.exe' - '82' Module(s) have been scanned
Scan process 'DllHost.exe' - '41' Module(s) have been scanned
Scan process 'svchost.exe' - '59' Module(s) have been scanned
Scan process 'wmpnetwk.exe' - '112' Module(s) have been scanned
Scan process 'svchost.exe' - '37' Module(s) have been scanned
Scan process 'SearchIndexer.exe' - '59' Module(s) have been scanned
Scan process 'WLIDSvcM.exe' - '17' Module(s) have been scanned
Scan process 'SDWinSec.exe' - '47' Module(s) have been scanned
Scan process 'WLIDSVC.EXE' - '75' Module(s) have been scanned
Scan process 'svchost.exe' - '32' Module(s) have been scanned
Scan process 'conhost.exe' - '14' Module(s) have been scanned
Scan process 'avshadow.exe' - '31' Module(s) have been scanned
Scan process 'MSCamS32.exe' - '44' Module(s) have been scanned
Scan process 'svchost.exe' - '61' Module(s) have been scanned
Scan process 'avguard.exe' - '70' Module(s) have been scanned
Scan process 'PCCompanionInfo.exe' - '38' Module(s) have been scanned
Scan process 'igfxsrvc.exe' - '29' Module(s) have been scanned
Scan process 'PCCompanion.exe' - '109' Module(s) have been scanned
Scan process 'jusched.exe' - '24' Module(s) have been scanned
Scan process 'avgnt.exe' - '69' Module(s) have been scanned
Scan process 'igfxpers.exe' - '32' Module(s) have been scanned
Scan process 'hkcmd.exe' - '28' Module(s) have been scanned
Scan process 'igfxtray.exe' - '29' Module(s) have been scanned
Scan process 'vVX1000.exe' - '27' Module(s) have been scanned
Scan process 'Explorer.EXE' - '149' Module(s) have been scanned
Scan process 'Dwm.exe' - '32' Module(s) have been scanned
Scan process 'svchost.exe' - '61' Module(s) have been scanned
Scan process 'taskhost.exe' - '52' Module(s) have been scanned
Scan process 'sched.exe' - '50' Module(s) have been scanned
Scan process 'spoolsv.exe' - '79' Module(s) have been scanned
Scan process 'svchost.exe' - '90' Module(s) have been scanned
Scan process 'svchost.exe' - '89' Module(s) have been scanned
Scan process 'svchost.exe' - '158' Module(s) have been scanned
Scan process 'svchost.exe' - '100' Module(s) have been scanned
Scan process 'svchost.exe' - '88' Module(s) have been scanned
Scan process 'svchost.exe' - '36' Module(s) have been scanned
Scan process 'svchost.exe' - '52' Module(s) have been scanned
Scan process 'lsm.exe' - '16' Module(s) have been scanned
Scan process 'lsass.exe' - '68' Module(s) have been scanned
Scan process 'services.exe' - '33' Module(s) have been scanned
Scan process 'winlogon.exe' - '31' Module(s) have been scanned
Scan process 'csrss.exe' - '16' Module(s) have been scanned
Scan process 'wininit.exe' - '26' Module(s) have been scanned
Scan process 'csrss.exe' - '16' Module(s) have been scanned
Scan process 'smss.exe' - '2' Module(s) have been scanned

Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!

Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!

Starting to scan executable files (registry).
The registry was scanned ( '456' files ).


Starting the file scan:

Begin scan in 'C:\'
C:\Users\La Famille\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\30030b92-795345d6
[0] Archive type: ZIP
[DETECTION] Contains recognition pattern of the JAVA/Exdoer.CE Java virus
--> glass/mumux$Woka.class
[DETECTION] Contains recognition pattern of the JAVA/Exdoer.CE Java virus
--> glass/mumux.class
[DETECTION] Contains recognition pattern of the JAVA/Exdoer.CF Java virus
C:\Windows.old\Documents and Settings\nathan\My Documents\nokia pc suite\NokiaSoftwareUpdaterSetup_FR_CA.exe
--> Object
[WARNING] The file could not be read!
[WARNING] The file could not be read!

Beginning disinfection:
C:\Users\La Famille\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\30030b92-795345d6
[DETECTION] Contains recognition pattern of the JAVA/Exdoer.CF Java virus
[NOTE] The file was moved to the quarantine directory under the name '4953580a.qua'.


End of the scan: Sunday, May 15, 2011 12:16
Used time: 10:17:59 Hour(s)

The scan has been done completely.

40105 Scanned directories
685411 Files were scanned
2 Viruses and/or unwanted programs were found
0 Files were classified as suspicious
0 files were deleted
0 Viruses and unwanted programs were repaired
1 Files were moved to quarantine
0 Files were renamed
0 Files cannot be scanned
685409 Files not concerned
3881 Archives were scanned
2 Warnings
1 Notes
719872 Objects were scanned with rootkit scan
0 Hidden objects were found




A voir également: