Virus trojan
luigi
-
jfkpresident Messages postés 13408 Date d'inscription Statut Contributeur sécurité Dernière intervention -
jfkpresident Messages postés 13408 Date d'inscription Statut Contributeur sécurité Dernière intervention -
Bonjour,
j'ai chopé un virus je sais pas trop comment, mais je ne l'ai pas vu tout de suite car il ne faisait que ralentir mon ordi, et ouvrir des fenêtres internet sans que je ne demande rien... J'ai alors fait une analyse avec avast qui a trouvé des "trojan-gen", je les ai mis en quarantaine et j'ai télécharger Ccleaner (avec lequel j'ai supprimé les erreurs), puis antivir à la place de avast (y paraît que c'est mieux). Mais des disfonctionnements sont réapparus, alors j'ai fait une analyse en mode sans échec ou antivir n'a rien trouvé. Et maintenant antivir me trouve "TR/monder.qik trojan" quand je veux aller sur internet, et il me propose "deny access" après quoi ça recommence et ect.. et pareil quand je les met en quarantaine.
Aidez moi svp je suis en panne de solutions, merci.
j'ai chopé un virus je sais pas trop comment, mais je ne l'ai pas vu tout de suite car il ne faisait que ralentir mon ordi, et ouvrir des fenêtres internet sans que je ne demande rien... J'ai alors fait une analyse avec avast qui a trouvé des "trojan-gen", je les ai mis en quarantaine et j'ai télécharger Ccleaner (avec lequel j'ai supprimé les erreurs), puis antivir à la place de avast (y paraît que c'est mieux). Mais des disfonctionnements sont réapparus, alors j'ai fait une analyse en mode sans échec ou antivir n'a rien trouvé. Et maintenant antivir me trouve "TR/monder.qik trojan" quand je veux aller sur internet, et il me propose "deny access" après quoi ça recommence et ect.. et pareil quand je les met en quarantaine.
Aidez moi svp je suis en panne de solutions, merci.
A voir également:
- Virus trojan
- Virus mcafee - Accueil - Piratage
- Trojan remover - Télécharger - Antivirus & Antimalwares
- Virus facebook demande d'amis - Accueil - Facebook
- Softonic virus ✓ - Forum Virus
- Faux message virus iphone ✓ - Forum Virus
32 réponses
bonsoir a tous ;
raptor : c'est bien de faire passer MBAM mais il faudrait vérifier que les infections ont été supprimés :
Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\adssite (Adware.Agent) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\adssite (Adware.Agent) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\HID_Layer (Malware.Trace) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\rdfa (Trojan.Vundo) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\contim (Trojan.Vundo) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\dslcnnct (Trojan.Vundo) -> No action taken.
Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\f0adb61e (Trojan.Vundo) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\bmf39e8582 (Trojan.Vundo) -> No action taken.
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
C:\Users\juillac\AppData\Local\Temp\ujgtubpb.dll (Trojan.Vundo) -> No action taken.
C:\Users\juillac\AppData\Local\Temp\dvotiexb.dll (Trojan.Vundo) -> No action taken.
C:\Users\juillac\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AQBRAO13\cntr[1] (Trojan.Vundo) -> No action taken.
C:\Users\juillac\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AQBRAO13\kb678031[1] (Trojan.Vundo) -> No action taken.
C:\Users\juillac\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AQBRAO13\nd82m0[1] (Trojan.Vundo) -> No action taken.
C:\Users\juillac\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MI2M3I9A\upd105320[1] (Trojan.Vundo) -> No action taken.
C:\Users\juillac\AppData\Local\Temp\hlblpwge.dll (Trojan.Vundo) -> No action taken.
C:\Users\juillac\AppData\Local\Temp\hmvegbag.dll (Trojan.Vundo) -> No action taken.
C:\Users\juillac\AppData\Local\Temp\llqwwtaf.dll (Trojan.Vundo) -> No action taken.
C:\Users\juillac\AppData\Local\Temp\uybjhiuj.dll (Trojan.Vundo) -> No action taken.
C:\Windows\System32\WhoisCL.exe (Adware.BHO) -> No action taken.
C:\Windows\System32\adssite-remove.exe (Adware.Agent) -> No action taken.
C:\Windows\System32\rightonadz-uninst.exe (Adware.BHO) -> No action taken.
--
Pour suivre ..
**si je ne réponds pas de suite, c'est que moi aussi j'ai un métier et une famille **
raptor : c'est bien de faire passer MBAM mais il faudrait vérifier que les infections ont été supprimés :
Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\adssite (Adware.Agent) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\adssite (Adware.Agent) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\HID_Layer (Malware.Trace) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\rdfa (Trojan.Vundo) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\contim (Trojan.Vundo) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\dslcnnct (Trojan.Vundo) -> No action taken.
Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\f0adb61e (Trojan.Vundo) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\bmf39e8582 (Trojan.Vundo) -> No action taken.
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
C:\Users\juillac\AppData\Local\Temp\ujgtubpb.dll (Trojan.Vundo) -> No action taken.
C:\Users\juillac\AppData\Local\Temp\dvotiexb.dll (Trojan.Vundo) -> No action taken.
C:\Users\juillac\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AQBRAO13\cntr[1] (Trojan.Vundo) -> No action taken.
C:\Users\juillac\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AQBRAO13\kb678031[1] (Trojan.Vundo) -> No action taken.
C:\Users\juillac\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\AQBRAO13\nd82m0[1] (Trojan.Vundo) -> No action taken.
C:\Users\juillac\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MI2M3I9A\upd105320[1] (Trojan.Vundo) -> No action taken.
C:\Users\juillac\AppData\Local\Temp\hlblpwge.dll (Trojan.Vundo) -> No action taken.
C:\Users\juillac\AppData\Local\Temp\hmvegbag.dll (Trojan.Vundo) -> No action taken.
C:\Users\juillac\AppData\Local\Temp\llqwwtaf.dll (Trojan.Vundo) -> No action taken.
C:\Users\juillac\AppData\Local\Temp\uybjhiuj.dll (Trojan.Vundo) -> No action taken.
C:\Windows\System32\WhoisCL.exe (Adware.BHO) -> No action taken.
C:\Windows\System32\adssite-remove.exe (Adware.Agent) -> No action taken.
C:\Windows\System32\rightonadz-uninst.exe (Adware.BHO) -> No action taken.
--
Pour suivre ..
**si je ne réponds pas de suite, c'est que moi aussi j'ai un métier et une famille **
c'est évident pourtant non ?
peut etre pas pour lui qui est sous doute un "débutant" dans ce genre de manips ? Si tu dois l'aider plus claire tu seras mieux il comprendra .
peut etre pas pour lui qui est sous doute un "débutant" dans ce genre de manips ? Si tu dois l'aider plus claire tu seras mieux il comprendra .
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Avira AntiVir Personal
Report file date: dimanche 28 septembre 2008 21:31
Scanning for 1646367 virus strains and unwanted programs.
Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows Vista
Windows version: (plain) [6.0.6000]
Boot mode: Save mode with network
Username: juillac
Computer name: PC-DE-JUILLAC
Version information:
BUILD.DAT : 8.1.0.331 16934 Bytes 12/08/2008 11:46:00
AVSCAN.EXE : 8.1.4.7 315649 Bytes 26/06/2008 08:57:53
AVSCAN.DLL : 8.1.4.0 40705 Bytes 26/05/2008 07:56:40
LUKE.DLL : 8.1.4.5 164097 Bytes 12/06/2008 12:44:19
LUKERES.DLL : 8.1.4.0 12033 Bytes 26/05/2008 07:58:52
ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 10:33:34
ANTIVIR1.VDF : 7.0.5.1 8182784 Bytes 24/06/2008 13:54:15
ANTIVIR2.VDF : 7.0.6.217 3773440 Bytes 26/09/2008 11:56:45
ANTIVIR3.VDF : 7.0.6.219 14336 Bytes 27/09/2008 11:48:51
Engineversion : 8.1.1.35
AEVDF.DLL : 8.1.0.5 102772 Bytes 25/02/2008 09:58:21
AESCRIPT.DLL : 8.1.0.76 319867 Bytes 27/09/2008 11:57:03
AESCN.DLL : 8.1.0.23 119156 Bytes 10/07/2008 12:44:49
AERDL.DLL : 8.1.1.2 438644 Bytes 27/09/2008 11:57:02
AEPACK.DLL : 8.1.2.3 364918 Bytes 27/09/2008 11:57:00
AEOFFICE.DLL : 8.1.0.25 196986 Bytes 27/09/2008 11:56:58
AEHEUR.DLL : 8.1.0.59 1438071 Bytes 27/09/2008 11:56:56
AEHELP.DLL : 8.1.0.15 115063 Bytes 10/07/2008 12:44:48
AEGEN.DLL : 8.1.0.36 315764 Bytes 27/09/2008 11:56:51
AEEMU.DLL : 8.1.0.7 430452 Bytes 31/07/2008 08:33:21
AECORE.DLL : 8.1.1.11 172406 Bytes 27/09/2008 11:56:48
AEBB.DLL : 8.1.0.1 53617 Bytes 10/07/2008 12:44:48
AVWINLL.DLL : 1.0.0.12 15105 Bytes 09/07/2008 08:40:05
AVPREF.DLL : 8.0.2.0 38657 Bytes 16/05/2008 09:28:01
AVREP.DLL : 8.0.0.2 98344 Bytes 27/09/2008 11:56:46
AVREG.DLL : 8.0.0.1 33537 Bytes 09/05/2008 11:26:40
AVARKT.DLL : 1.0.0.23 307457 Bytes 12/02/2008 08:29:23
AVEVTLOG.DLL : 8.0.0.16 119041 Bytes 12/06/2008 12:27:49
SQLITE3.DLL : 3.3.17.1 339968 Bytes 22/01/2008 17:28:02
SMTPLIB.DLL : 1.2.0.23 28929 Bytes 12/06/2008 12:49:40
NETNT.DLL : 8.0.0.1 7937 Bytes 25/01/2008 12:05:10
RCIMAGE.DLL : 8.0.0.51 2371841 Bytes 12/06/2008 13:48:07
RCTEXT.DLL : 8.0.52.0 86273 Bytes 27/06/2008 13:34:37
Configuration settings for the scan:
Jobname..........................: Complete system scan
Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: on
Scan boot sector.................: on
Boot sectors.....................: C:, D:,
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: Intelligent file selection
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium
Start of the scan: dimanche 28 septembre 2008 21:31
The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'qttask.exe' - '1' Module(s) have been scanned
Scan process 'wmpnscfg.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'lsm.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'wininit.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
22 processes with 22 modules were scanned
Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!
Master boot sector HD1
[INFO] No virus was found!
Master boot sector HD2
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
[INFO] Please restart the search with Administrator rights
Master boot sector HD3
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
[INFO] Please restart the search with Administrator rights
Master boot sector HD4
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
[INFO] Please restart the search with Administrator rights
Master boot sector HD5
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
[INFO] Please restart the search with Administrator rights
Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Boot sector 'D:\'
[INFO] No virus was found!
Starting to scan the registry.
The registry was scanned ( '57' files ).
Starting the file scan:
Begin scan in 'C:\' <ACER>
C:\pagefile.sys
[WARNING] The file could not be opened!
Begin scan in 'D:\' <DATA>
End of the scan: dimanche 28 septembre 2008 22:26
Used time: 54:57 Minute(s)
The scan has been done completely.
18894 Scanning directories
424879 Files were scanned
0 viruses and/or unwanted programs were found
0 Files were classified as suspicious:
0 files were deleted
0 files were repaired
0 files were moved to quarantine
0 files were renamed
1 Files cannot be scanned
424878 Files not concerned
2272 Archives were scanned
5 Warnings
0 Notes
Report file date: dimanche 28 septembre 2008 21:31
Scanning for 1646367 virus strains and unwanted programs.
Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows Vista
Windows version: (plain) [6.0.6000]
Boot mode: Save mode with network
Username: juillac
Computer name: PC-DE-JUILLAC
Version information:
BUILD.DAT : 8.1.0.331 16934 Bytes 12/08/2008 11:46:00
AVSCAN.EXE : 8.1.4.7 315649 Bytes 26/06/2008 08:57:53
AVSCAN.DLL : 8.1.4.0 40705 Bytes 26/05/2008 07:56:40
LUKE.DLL : 8.1.4.5 164097 Bytes 12/06/2008 12:44:19
LUKERES.DLL : 8.1.4.0 12033 Bytes 26/05/2008 07:58:52
ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 10:33:34
ANTIVIR1.VDF : 7.0.5.1 8182784 Bytes 24/06/2008 13:54:15
ANTIVIR2.VDF : 7.0.6.217 3773440 Bytes 26/09/2008 11:56:45
ANTIVIR3.VDF : 7.0.6.219 14336 Bytes 27/09/2008 11:48:51
Engineversion : 8.1.1.35
AEVDF.DLL : 8.1.0.5 102772 Bytes 25/02/2008 09:58:21
AESCRIPT.DLL : 8.1.0.76 319867 Bytes 27/09/2008 11:57:03
AESCN.DLL : 8.1.0.23 119156 Bytes 10/07/2008 12:44:49
AERDL.DLL : 8.1.1.2 438644 Bytes 27/09/2008 11:57:02
AEPACK.DLL : 8.1.2.3 364918 Bytes 27/09/2008 11:57:00
AEOFFICE.DLL : 8.1.0.25 196986 Bytes 27/09/2008 11:56:58
AEHEUR.DLL : 8.1.0.59 1438071 Bytes 27/09/2008 11:56:56
AEHELP.DLL : 8.1.0.15 115063 Bytes 10/07/2008 12:44:48
AEGEN.DLL : 8.1.0.36 315764 Bytes 27/09/2008 11:56:51
AEEMU.DLL : 8.1.0.7 430452 Bytes 31/07/2008 08:33:21
AECORE.DLL : 8.1.1.11 172406 Bytes 27/09/2008 11:56:48
AEBB.DLL : 8.1.0.1 53617 Bytes 10/07/2008 12:44:48
AVWINLL.DLL : 1.0.0.12 15105 Bytes 09/07/2008 08:40:05
AVPREF.DLL : 8.0.2.0 38657 Bytes 16/05/2008 09:28:01
AVREP.DLL : 8.0.0.2 98344 Bytes 27/09/2008 11:56:46
AVREG.DLL : 8.0.0.1 33537 Bytes 09/05/2008 11:26:40
AVARKT.DLL : 1.0.0.23 307457 Bytes 12/02/2008 08:29:23
AVEVTLOG.DLL : 8.0.0.16 119041 Bytes 12/06/2008 12:27:49
SQLITE3.DLL : 3.3.17.1 339968 Bytes 22/01/2008 17:28:02
SMTPLIB.DLL : 1.2.0.23 28929 Bytes 12/06/2008 12:49:40
NETNT.DLL : 8.0.0.1 7937 Bytes 25/01/2008 12:05:10
RCIMAGE.DLL : 8.0.0.51 2371841 Bytes 12/06/2008 13:48:07
RCTEXT.DLL : 8.0.52.0 86273 Bytes 27/06/2008 13:34:37
Configuration settings for the scan:
Jobname..........................: Complete system scan
Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: on
Scan boot sector.................: on
Boot sectors.....................: C:, D:,
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: Intelligent file selection
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium
Start of the scan: dimanche 28 septembre 2008 21:31
The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'qttask.exe' - '1' Module(s) have been scanned
Scan process 'wmpnscfg.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'lsm.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'wininit.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
22 processes with 22 modules were scanned
Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!
Master boot sector HD1
[INFO] No virus was found!
Master boot sector HD2
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
[INFO] Please restart the search with Administrator rights
Master boot sector HD3
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
[INFO] Please restart the search with Administrator rights
Master boot sector HD4
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
[INFO] Please restart the search with Administrator rights
Master boot sector HD5
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
[INFO] Please restart the search with Administrator rights
Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!
Boot sector 'D:\'
[INFO] No virus was found!
Starting to scan the registry.
The registry was scanned ( '57' files ).
Starting the file scan:
Begin scan in 'C:\' <ACER>
C:\pagefile.sys
[WARNING] The file could not be opened!
Begin scan in 'D:\' <DATA>
End of the scan: dimanche 28 septembre 2008 22:26
Used time: 54:57 Minute(s)
The scan has been done completely.
18894 Scanning directories
424879 Files were scanned
0 viruses and/or unwanted programs were found
0 Files were classified as suspicious:
0 files were deleted
0 files were repaired
0 files were moved to quarantine
0 files were renamed
1 Files cannot be scanned
424878 Files not concerned
2272 Archives were scanned
5 Warnings
0 Notes
