TR/patched.GY.12

edom Messages postés 228 Statut Membre -  
 g3n-h@ckm@n -
Bonjour,

Voila le trojan tr/patched .gy.12 que j'ai trouvé avec un scan avira merci beaucoup d'avance pour votre aide.

7 réponses

  1. g3n-h@ckm@n
     
    hello poste ton rapport d'avira stp
    0
  2. edom Messages postés 228 Statut Membre 6
     
    Le voilà

    Avira Free Antivirus
    Report file date: lundi 13 février 2012 10:33

    Scanning for 3449996 virus strains and unwanted programs.

    The program is running as an unrestricted full version.
    Online services are available:

    Licensee : Avira AntiVir Personal - Free Antivirus
    Serial number : 0000149996-ADJIE-0000001
    Platform : Windows XP
    Windows version : (Service Pack 3) [5.1.2600]
    Boot mode : Normally booted
    Username : SYSTEM
    Computer name : 111583040304

    Version information:
    BUILD.DAT : 12.0.0.872 41826 Bytes 15/12/2011 17:24:00
    AVSCAN.EXE : 12.1.0.18 490448 Bytes 11/02/2012 23:10:25
    AVSCAN.DLL : 12.1.0.17 54224 Bytes 23/09/2011 12:34:56
    LUKE.DLL : 12.1.0.17 68304 Bytes 23/09/2011 11:55:16
    AVSCPLR.DLL : 12.1.0.21 99536 Bytes 10/02/2012 23:14:12
    AVREG.DLL : 12.1.0.27 227536 Bytes 10/02/2012 23:14:11
    VBASE000.VDF : 7.10.0.0 19875328 Bytes 06/11/2009 19:18:34
    VBASE001.VDF : 7.11.0.0 13342208 Bytes 14/12/2010 10:07:39
    VBASE002.VDF : 7.11.19.170 14374912 Bytes 20/12/2011 23:12:18
    VBASE003.VDF : 7.11.21.238 4472832 Bytes 01/02/2012 23:13:05
    VBASE004.VDF : 7.11.21.239 2048 Bytes 01/02/2012 23:13:06
    VBASE005.VDF : 7.11.21.240 2048 Bytes 01/02/2012 23:13:06
    VBASE006.VDF : 7.11.21.241 2048 Bytes 01/02/2012 23:13:06
    VBASE007.VDF : 7.11.21.242 2048 Bytes 01/02/2012 23:13:06
    VBASE008.VDF : 7.11.21.243 2048 Bytes 01/02/2012 23:13:06
    VBASE009.VDF : 7.11.21.244 2048 Bytes 01/02/2012 23:13:06
    VBASE010.VDF : 7.11.21.245 2048 Bytes 01/02/2012 23:13:07
    VBASE011.VDF : 7.11.21.246 2048 Bytes 01/02/2012 23:13:07
    VBASE012.VDF : 7.11.21.247 2048 Bytes 01/02/2012 23:13:07
    VBASE013.VDF : 7.11.22.33 1486848 Bytes 03/02/2012 23:13:20
    VBASE014.VDF : 7.11.22.56 687616 Bytes 03/02/2012 23:13:27
    VBASE015.VDF : 7.11.22.92 178176 Bytes 06/02/2012 23:13:28
    VBASE016.VDF : 7.11.22.154 144896 Bytes 08/02/2012 23:13:30
    VBASE017.VDF : 7.11.22.155 2048 Bytes 08/02/2012 23:13:30
    VBASE018.VDF : 7.11.22.156 2048 Bytes 08/02/2012 23:13:30
    VBASE019.VDF : 7.11.22.157 2048 Bytes 08/02/2012 23:13:30
    VBASE020.VDF : 7.11.22.158 2048 Bytes 08/02/2012 23:13:30
    VBASE021.VDF : 7.11.22.159 2048 Bytes 08/02/2012 23:13:30
    VBASE022.VDF : 7.11.22.160 2048 Bytes 08/02/2012 23:13:31
    VBASE023.VDF : 7.11.22.161 2048 Bytes 08/02/2012 23:13:31
    VBASE024.VDF : 7.11.22.162 2048 Bytes 08/02/2012 23:13:31
    VBASE025.VDF : 7.11.22.163 2048 Bytes 08/02/2012 23:13:31
    VBASE026.VDF : 7.11.22.164 2048 Bytes 08/02/2012 23:13:31
    VBASE027.VDF : 7.11.22.165 2048 Bytes 08/02/2012 23:13:32
    VBASE028.VDF : 7.11.22.166 2048 Bytes 08/02/2012 23:13:32
    VBASE029.VDF : 7.11.22.167 2048 Bytes 08/02/2012 23:13:32
    VBASE030.VDF : 7.11.22.168 2048 Bytes 08/02/2012 23:13:32
    VBASE031.VDF : 7.11.22.208 165888 Bytes 12/02/2012 23:10:07
    Engineversion : 8.2.8.54
    AEVDF.DLL : 8.1.2.2 106868 Bytes 10/02/2012 23:14:06
    AESCRIPT.DLL : 8.1.4.5 442745 Bytes 10/02/2012 23:14:05
    AESCN.DLL : 8.1.8.2 131444 Bytes 10/02/2012 23:14:02
    AESBX.DLL : 8.2.4.5 434549 Bytes 10/02/2012 23:14:09
    AERDL.DLL : 8.1.9.15 639348 Bytes 08/09/2011 22:16:06
    AEPACK.DLL : 8.2.16.3 799094 Bytes 10/02/2012 23:14:01
    AEOFFICE.DLL : 8.1.2.25 201084 Bytes 10/02/2012 23:13:57
    AEHEUR.DLL : 8.1.3.27 4391285 Bytes 10/02/2012 23:13:56
    AEHELP.DLL : 8.1.19.0 254327 Bytes 10/02/2012 23:13:40
    AEGEN.DLL : 8.1.5.21 409971 Bytes 10/02/2012 23:13:38
    AEEMU.DLL : 8.1.3.0 393589 Bytes 01/09/2011 22:46:01
    AECORE.DLL : 8.1.25.3 201079 Bytes 10/02/2012 23:13:36
    AEBB.DLL : 8.1.1.0 53618 Bytes 01/09/2011 22:46:01
    AVWINLL.DLL : 12.1.0.17 27344 Bytes 23/09/2011 11:13:18
    AVPREF.DLL : 12.1.0.17 51920 Bytes 23/09/2011 10:53:57
    AVREP.DLL : 12.1.0.17 179408 Bytes 23/09/2011 10:55:01
    AVARKT.DLL : 12.1.0.19 208848 Bytes 11/02/2012 23:10:25
    AVEVTLOG.DLL : 12.1.0.17 169168 Bytes 23/09/2011 10:34:37
    SQLITE3.DLL : 3.7.0.0 398288 Bytes 16/09/2011 01:05:58
    AVSMTP.DLL : 12.1.0.17 62928 Bytes 23/09/2011 11:03:47
    NETNT.DLL : 12.1.0.17 17104 Bytes 23/09/2011 11:58:06
    RCIMAGE.DLL : 12.1.0.17 4450000 Bytes 23/09/2011 12:37:25
    RCTEXT.DLL : 12.1.1.16 96208 Bytes 11/02/2012 23:10:25

    Configuration settings for the scan:
    Jobname.............................: Complete system scan
    Configuration file..................: c:\program files\avira\antivir desktop\sysscan.avp
    Logging.............................: default
    Primary action......................: interactive
    Secondary action....................: ignore
    Scan master boot sector.............: on
    Scan boot sector....................: on
    Boot sectors........................: C:, D:, G:,
    Process scan........................: on
    Extended process scan...............: on
    Scan registry.......................: on
    Search for rootkits.................: on
    Integrity checking of system files..: off
    Scan all files......................: All files
    Scan archives.......................: on
    Recursion depth.....................: 20
    Smart extensions....................: on
    Macro heuristic.....................: on
    File heuristic......................: extended

    Start of the scan: lundi 13 février 2012 10:33

    Starting master boot sector scan:
    Master boot sector HD0
    [INFO] No virus was found!
    Master boot sector HD1
    [INFO] No virus was found!

    Start scanning boot sectors:
    Boot sector 'C:\'
    [INFO] No virus was found!
    Boot sector 'D:\'
    [INFO] No virus was found!
    Boot sector 'G:\'
    [INFO] No virus was found!

    Starting search for hidden objects.

    The scan of running processes will be started
    Scan process 'rsmsink.exe' - '33' Module(s) have been scanned
    Scan process 'dllhost.exe' - '48' Module(s) have been scanned
    Scan process 'dllhost.exe' - '49' Module(s) have been scanned
    Scan process 'vssvc.exe' - '52' Module(s) have been scanned
    Scan process 'avscan.exe' - '71' Module(s) have been scanned
    Scan process 'avcenter.exe' - '71' Module(s) have been scanned
    Scan process 'uTorrent.exe' - '84' Module(s) have been scanned
    Scan process 'alg.exe' - '37' Module(s) have been scanned
    Scan process 'TuneUpUtilitiesApp32.exe' - '27' Module(s) have been scanned
    Scan process 'avshadow.exe' - '28' Module(s) have been scanned
    Scan process 'ctfmon.exe' - '29' Module(s) have been scanned
    Scan process 'avgnt.exe' - '64' Module(s) have been scanned
    Scan process 'Updater.exe' - '61' Module(s) have been scanned
    Scan process 'Rundll32.exe' - '43' Module(s) have been scanned
    Scan process 'LVCOMSX.EXE' - '37' Module(s) have been scanned
    Scan process 'CLSched.exe' - '30' Module(s) have been scanned
    Scan process 'WDSC.exe' - '38' Module(s) have been scanned
    Scan process 'WDFME.exe' - '62' Module(s) have been scanned
    Scan process 'WDDMService.exe' - '26' Module(s) have been scanned
    Scan process 'TuneUpUtilitiesService32.exe' - '54' Module(s) have been scanned
    Scan process 'svchost.exe' - '47' Module(s) have been scanned
    Scan process 'pctspk.exe' - '25' Module(s) have been scanned
    Scan process 'NMSAccessU.exe' - '16' Module(s) have been scanned
    Scan process 'MDM.EXE' - '24' Module(s) have been scanned
    Scan process 'jqs.exe' - '77' Module(s) have been scanned
    Scan process 'HIDSERVICE.exe' - '18' Module(s) have been scanned
    Scan process 'SAgent2.exe' - '27' Module(s) have been scanned
    Scan process 'svchost.exe' - '38' Module(s) have been scanned
    Scan process 'CLMLServer.exe' - '28' Module(s) have been scanned
    Scan process 'CTsvcCDA.exe' - '11' Module(s) have been scanned
    Scan process 'CLCapSvc.exe' - '50' Module(s) have been scanned
    Scan process 'AppleMobileDeviceService.exe' - '50' Module(s) have been scanned
    Scan process 'AOLacsd.exe' - '33' Module(s) have been scanned
    Scan process 'avguard.exe' - '64' Module(s) have been scanned
    Scan process 'agrsmsvc.exe' - '15' Module(s) have been scanned
    Scan process 'Explorer.EXE' - '127' Module(s) have been scanned
    Scan process 'sched.exe' - '43' Module(s) have been scanned
    Scan process 'spoolsv.exe' - '65' Module(s) have been scanned
    Scan process 'svchost.exe' - '41' Module(s) have been scanned
    Scan process 'svchost.exe' - '36' Module(s) have been scanned
    Scan process 'Ati2evxx.exe' - '39' Module(s) have been scanned
    Scan process 'svchost.exe' - '34' Module(s) have been scanned
    Scan process 'svchost.exe' - '177' Module(s) have been scanned
    Scan process 'svchost.exe' - '44' Module(s) have been scanned
    Scan process 'svchost.exe' - '55' Module(s) have been scanned
    Scan process 'Ati2evxx.exe' - '30' Module(s) have been scanned
    Scan process 'lsass.exe' - '55' Module(s) have been scanned
    Scan process 'services.exe' - '41' Module(s) have been scanned
    Scan process 'winlogon.exe' - '79' Module(s) have been scanned
    Scan process 'csrss.exe' - '16' Module(s) have been scanned
    Scan process 'smss.exe' - '2' Module(s) have been scanned

    Starting to scan executable files (registry).
    The registry was scanned ( '4203' files ).

    Starting the file scan:

    Begin scan in 'C:\' <HDD>
    Begin scan in 'D:\' <DATA>
    Begin scan in 'G:\' <my passport F>
    G:\Windows XP Pro SP3-Orion\X3Pr\I386\SIDEBAR.CAB
    [0] Archive type: CAB (Microsoft)
    --> wlsrvc.dll
    [DETECTION] Is the TR/Patched.GY.12 Trojan

    Beginning disinfection:
    G:\Windows XP Pro SP3-Orion\X3Pr\I386\SIDEBAR.CAB
    [DETECTION] Is the TR/Patched.GY.12 Trojan
    [NOTE] The file was moved to the quarantine directory under the name '4c23a190.qua'.

    End of the scan: lundi 13 février 2012 13:43
    Used time: 1:34:52 Hour(s)

    The scan has been done completely.

    18076 Scanned directories
    497970 Files were scanned
    1 Viruses and/or unwanted programs were found
    0 Files were classified as suspicious
    0 Files were deleted
    0 Viruses and unwanted programs were repaired
    1 Files were moved to quarantine
    0 Files were renamed
    0 Files cannot be scanned
    497969 Files not concerned
    16160 Archives were scanned
    0 Warnings
    1 Notes
    592543 Objects were scanned with rootkit scan
    0
  3. g3n-h@ckm@n
     
    c'est un windows illegal ca ..?
    0
  4. edom Messages postés 228 Statut Membre 6
     
    Oui mais qui est sur un DD externe
    0
  5. Vous n’avez pas trouvé la réponse que vous recherchez ?

    Posez votre question
  6. edom Messages postés 228 Statut Membre 6
     
    la version de xp actuellement sur mon pc n'est pas une version piratée
    0
  7. g3n-h@ckm@n
     
    quoiqu'il en soit avira l'a dégagé
    0