Meme probléme de trojan

Fermé
rickrick Messages postés 1 Date d'inscription jeudi 25 février 2016 Statut Membre Dernière intervention 25 février 2016 - 25 févr. 2016 à 23:27
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 - 26 févr. 2016 à 09:02
Bonjour,

Je ne sais pas comment enlever ce trojan,

Et ce n'est pas bénin. A chaque démarrage, j'ai un signalement de la part de Antivir 15 fois !! avec une fenetre incontournable qui s'affiche 15 fois.

voici le compte rendu.

qui ne fait apparaitre aucun virus !!

merci pour votre aide :




Avira AntiVir Personal
Report file date: dimanche 28 février 2016 02:01

Scanning for 4588845 virus strains and unwanted programs.

Licensee : Avira Free Antivirus
Serial number : 0000149996-ADJIE-0000001
Platform : Windows XP
Windows version : (Service Pack 2) [5.1.2600]
Boot mode : Normally booted
Username : SYSTEM
Computer name : PORT-PAT

Version information:
BUILD.DAT : 9.0.0.429 21701 Bytes 06/10/2010 10:04:00
AVSCAN.EXE : 9.0.3.10 466689 Bytes 20/11/2009 16:39:23
AVSCAN.DLL : 9.0.3.0 40705 Bytes 27/02/2009 08:58:24
LUKE.DLL : 9.0.3.2 209665 Bytes 20/02/2009 09:35:49
LUKERES.DLL : 9.0.2.0 12033 Bytes 27/02/2009 08:58:52
VBASE000.VDF : 7.10.0.0 19875328 Bytes 06/11/2009 16:39:19
VBASE001.VDF : 7.11.0.0 13342208 Bytes 14/12/2010 13:34:12
VBASE002.VDF : 7.11.19.170 14374912 Bytes 20/12/2011 17:19:41
VBASE003.VDF : 7.11.21.238 4472832 Bytes 01/02/2012 09:24:43
VBASE004.VDF : 7.11.26.44 4329472 Bytes 28/03/2012 18:30:04
VBASE005.VDF : 7.11.34.116 4034048 Bytes 29/06/2012 08:42:14
VBASE006.VDF : 7.11.41.250 4902400 Bytes 06/09/2012 09:46:27
VBASE007.VDF : 7.11.50.230 3904512 Bytes 22/11/2012 19:00:33
VBASE008.VDF : 7.11.50.231 2048 Bytes 22/11/2012 19:00:33
VBASE009.VDF : 7.11.50.232 2048 Bytes 22/11/2012 19:00:33
VBASE010.VDF : 7.11.50.233 2048 Bytes 22/11/2012 19:00:33
VBASE011.VDF : 7.11.50.234 2048 Bytes 22/11/2012 19:00:35
VBASE012.VDF : 7.11.50.235 2048 Bytes 22/11/2012 19:00:35
VBASE013.VDF : 7.11.50.236 2048 Bytes 22/11/2012 19:00:35
VBASE014.VDF : 7.11.51.27 133632 Bytes 23/11/2012 11:13:57
VBASE015.VDF : 7.11.51.95 140288 Bytes 26/11/2012 11:13:57
VBASE016.VDF : 7.11.51.221 164352 Bytes 29/11/2012 11:13:58
VBASE017.VDF : 7.11.52.29 158208 Bytes 01/12/2012 11:13:58
VBASE018.VDF : 7.11.52.91 116736 Bytes 03/12/2012 11:13:58
VBASE019.VDF : 7.11.52.151 137728 Bytes 05/12/2012 11:13:58
VBASE020.VDF : 7.11.52.225 157696 Bytes 06/12/2012 11:13:59
VBASE021.VDF : 7.11.53.35 126976 Bytes 08/12/2012 11:13:59
VBASE022.VDF : 7.11.53.55 225792 Bytes 09/12/2012 11:13:59
VBASE023.VDF : 7.11.53.93 157184 Bytes 10/12/2012 11:13:59
VBASE024.VDF : 7.11.53.169 153088 Bytes 12/12/2012 11:13:59
VBASE025.VDF : 7.11.53.237 152064 Bytes 14/12/2012 11:14:00
VBASE026.VDF : 7.11.54.23 149504 Bytes 17/12/2012 11:14:00
VBASE027.VDF : 7.11.54.67 130048 Bytes 18/12/2012 11:14:00
VBASE028.VDF : 7.11.54.68 2048 Bytes 18/12/2012 11:14:00
VBASE029.VDF : 7.11.54.69 2048 Bytes 18/12/2012 11:14:00
VBASE030.VDF : 7.11.54.70 2048 Bytes 18/12/2012 11:14:00
VBASE031.VDF : 7.11.54.90 44544 Bytes 19/12/2012 11:14:01
Engineversion : 8.2.10.222
AEVDF.DLL : 8.1.2.10 102772 Bytes 19/07/2012 18:06:49
AESCRIPT.DLL : 8.1.4.76 467324 Bytes 19/12/2012 11:14:04
AESCN.DLL : 8.1.10.0 131445 Bytes 19/12/2012 11:14:04
AESBX.DLL : 8.2.5.12 606578 Bytes 29/06/2012 05:14:41
AERDL.DLL : 8.2.0.74 643445 Bytes 21/11/2012 07:35:43
AEPACK.DLL : 8.3.1.0 819574 Bytes 19/12/2012 11:14:04
AEOFFICE.DLL : 8.1.2.50 201084 Bytes 21/11/2012 07:35:42
AEHEUR.DLL : 8.1.4.160 5624184 Bytes 19/12/2012 11:14:03
AEHELP.DLL : 8.1.25.2 258423 Bytes 22/10/2012 16:05:23
AEGEN.DLL : 8.1.6.12 434549 Bytes 19/12/2012 11:14:01
AEEXP.DLL : 8.3.0.0 184692 Bytes 19/12/2012 11:14:04
AEEMU.DLL : 8.1.3.2 393587 Bytes 19/07/2012 18:06:29
AECORE.DLL : 8.1.30.0 201079 Bytes 19/12/2012 11:14:01
AEBB.DLL : 8.1.1.4 53619 Bytes 21/11/2012 07:35:34
AVWINLL.DLL : 9.0.0.3 18177 Bytes 12/12/2008 06:47:59
AVPREF.DLL : 9.0.3.0 44289 Bytes 09/09/2009 10:30:23
AVREP.DLL : 10.0.0.9 174120 Bytes 13/09/2011 17:24:14
AVREG.DLL : 9.0.0.0 36609 Bytes 05/12/2008 08:32:09
AVARKT.DLL : 9.0.0.3 292609 Bytes 07/05/2009 16:34:09
AVEVTLOG.DLL : 9.0.0.7 167169 Bytes 30/01/2009 08:37:08
SQLITE3.DLL : 3.6.1.0 326401 Bytes 28/01/2009 13:03:49
SMTPLIB.DLL : 9.2.0.25 28417 Bytes 02/02/2009 06:21:33
NETNT.DLL : 9.0.0.0 11521 Bytes 05/12/2008 08:32:10
RCIMAGE.DLL : 9.0.0.25 2438913 Bytes 21/06/2009 20:01:15
RCTEXT.DLL : 9.0.73.0 86785 Bytes 20/11/2009 16:39:17

Configuration settings for the scan:
Jobname.............................: Complete system scan
Configuration file..................: c:\program files\avira\antivir desktop\sysscan.avp
Logging.............................: low
Primary action......................: interactive
Secondary action....................: ignore
Scan master boot sector.............: on
Scan boot sector....................: on
Boot sectors........................: C:,
Process scan........................: on
Scan registry.......................: on
Search for rootkits.................: on
Integrity checking of system files..: off
Scan all files......................: All files
Scan archives.......................: on
Recursion depth.....................: 20
Smart extensions....................: on
Macro heuristic.....................: on
File heuristic......................: medium

Start of the scan: dimanche 28 février 2016 02:01

Starting search for hidden objects.
'67041' objects were checked, '0' hidden objects were found.

The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'avnotify.exe' - '1' Module(s) have been scanned
Scan process 'firefox.exe' - '1' Module(s) have been scanned
Scan process 'MemfilesService.exe' - '1' Module(s) have been scanned
Scan process 'Integrator.exe' - '1' Module(s) have been scanned
Scan process 'alg.exe' - '1' Module(s) have been scanned
Scan process 'wscntfy.exe' - '1' Module(s) have been scanned
Scan process 'wmiapsrv.exe' - '1' Module(s) have been scanned
Scan process 'somud.exe' - '1' Module(s) have been scanned
Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'mdm.exe' - '1' Module(s) have been scanned
Scan process 'jqs.exe' - '1' Module(s) have been scanned
Scan process 'FitbitConnectService.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'ibmpmsvc.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
31 processes with 31 modules were scanned

Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!

Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!

Starting to scan executable files (registry).
The registry was scanned ( '42' files ).


Starting the file scan:

Begin scan in 'C:\'
C:\hiberfil.sys
[WARNING] The file could not be opened!
[NOTE] This file is a Windows system file.
[NOTE] This file cannot be opened for scanning.
C:\pagefile.sys
[WARNING] The file could not be opened!
[NOTE] This file is a Windows system file.
[NOTE] This file cannot be opened for scanning.
C:\Documents and Settings\Bruno\Local Settings\Application Data\Temp\{A9180EF0-B6C1-4298-8F51-489BB52C08CA}
[WARNING] The file could not be read!


End of the scan: dimanche 28 février 2016 03:10
Used time: 1:09:38 Hour(s)

The scan has been done completely.

6485 Scanned directories
348335 Files were scanned
0 Viruses and/or unwanted programs were found
0 Files were classified as suspicious
0 files were deleted
0 Viruses and unwanted programs were repaired
0 Files were moved to quarantine
0 Files were renamed
2 Files cannot be scanned
348333 Files not concerned
7753 Archives were scanned
3 Warnings
2 Notes
67041 Objects were scanned with rootkit scan
0 Hidden objects were found




A voir également:

2 réponses

didmed Messages postés 2666 Date d'inscription dimanche 19 décembre 2004 Statut Membre Dernière intervention 17 décembre 2024 751
26 févr. 2016 à 01:41
Salut.

Il n'y a peu être rien mais avoir encore "Win XP SP2" n'est pas recommandé... > il aurait fallu le SP3 > les MAJ ne sont plus d'actualité depuis presque 2 ans:
https://support.microsoft.com/en-us/windows/windows-xp-support-has-ended-47b944b8-f4d3-82f2-9acc-21c79ee6ef5e

Il faudrait:
1- Redémarrer en Mode sans échec avec prise en charge réseau
2- télécharger et utiliser ADW Cleaner + Malewaresbyte + ZHP Cleaner
3- utiliser CCleaner > Outils > Démarrage > supprimer les entrées non indispensables
4- refaire un scan anti-virus

@+
0
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 660
26 févr. 2016 à 09:02
Salut,

pas de trojan :

0 Viruses and/or unwanted programs were found
0 Files were classified as suspicious

0