Comprendre le bitcoin, l'intelligence artificielle, faire un site web... En 3 minutes en vidéo!

tout plein de malwares/virus détectés par mon antivirus

Forum informatique > Aide Virus, Spywares et autres logiciels malveillants > tout plein de malwares/virus détectés par mon antivirus

<<<1>>>

[Page 1 sur 1 - 2 messages]
Informations Messages

nadege

Avatar de nadege
18 messages
Barrette de RAM
Barrette de RAM

Lien direct Le 27 Janvier 2009 à 22h02

Bonjour,

J'ai antivir qui ne cesse de me détecter des "malware" a chaque anaylyse
si je fais 4 analyses par jours, antivir détecte à chaques fois des malwares que je détruis et de nouveaux reviennent

voici quelques noms :
BDS/TDSS.adb
TR/TDss.AT.518
TR/Patched.CK.56
RKIT/TDss.AC

Ils sont placés dans le systme 32 ou c/ système volume information

Pouvez-vous m'aider à régler ce problème ? voici ci dessous le rapport d'antivir et merci beaucoup
Cordialement
Nadege
Avira AntiVir Personal
Report file date: samedi 24 janvier 2009 20:53

Scanning for 1284972 virus strains and unwanted programs.

Licensed to: Avira AntiVir PersonalEdition Classic
Serial number: 0000149996-ADJIE-0001
Platform: Windows XP
Windows version: (Service Pack 2) [5.1.2600]
Boot mode: Normally booted
Username: SYSTEM
Computer name: OLIVO-

Version information:
BUILD.DAT : 8.2.0.337 16934 Bytes 18/11/2008 13:05:00
AVSCAN.EXE : 8.1.4.10 315649 Bytes 25/11/2008 19:12:12
AVSCAN.DLL : 8.1.4.0 40705 Bytes 18/10/2008 12:03:27
LUKE.DLL : 8.1.4.5 164097 Bytes 18/10/2008 12:03:27
LUKERES.DLL : 8.1.4.0 12033 Bytes 18/10/2008 12:03:27
ANTIVIR0.VDF : 7.1.0.0 15603712 Bytes 27/10/2008 19:33:20
ANTIVIR1.VDF : 7.1.1.113 2817536 Bytes 14/01/2009 16:50:12
ANTIVIR2.VDF : 7.1.1.172 958464 Bytes 23/01/2009 21:39:58
ANTIVIR3.VDF : 7.1.1.189 188416 Bytes 27/01/2009 19:53:07
Engineversion : 8.2.0.60
AEVDF.DLL : 8.1.0.6 102772 Bytes 18/10/2008 12:03:28
AESCRIPT.DLL : 8.1.1.32 340347 Bytes 19/01/2009 20:30:49
AESCN.DLL : 8.1.1.5 123251 Bytes 07/11/2008 20:51:53
AERDL.DLL : 8.1.1.3 438645 Bytes 07/11/2008 20:51:52
AEPACK.DLL : 8.1.3.5 393588 Bytes 08/01/2009 10:43:00
AEOFFICE.DLL : 8.1.0.33 196987 Bytes 09/12/2008 11:51:37
AEHEUR.DLL : 8.1.0.86 1552759 Bytes 19/01/2009 20:30:48
AEHELP.DLL : 8.1.2.0 119159 Bytes 20/11/2008 17:00:03
AEGEN.DLL : 8.1.1.10 323957 Bytes 13/01/2009 20:20:02
AEEMU.DLL : 8.1.0.9 393588 Bytes 18/10/2008 12:03:28
AECORE.DLL : 8.1.5.2 172405 Bytes 28/11/2008 17:39:02
AEBB.DLL : 8.1.0.3 53618 Bytes 18/10/2008 12:03:28
AVWINLL.DLL : 1.0.0.12 15105 Bytes 18/10/2008 12:03:27
AVPREF.DLL : 8.0.2.0 38657 Bytes 18/10/2008 12:03:27
AVREP.DLL : 8.0.0.2 98344 Bytes 18/10/2008 12:03:28
AVREG.DLL : 8.0.0.1 33537 Bytes 18/10/2008 12:03:27
AVARKT.DLL : 1.0.0.23 307457 Bytes 18/10/2008 12:03:27
AVEVTLOG.DLL : 8.0.0.16 119041 Bytes 18/10/2008 12:03:27
SQLITE3.DLL : 3.3.17.1 339968 Bytes 18/10/2008 12:03:27
SMTPLIB.DLL : 1.2.0.23 28929 Bytes 18/10/2008 12:03:27
NETNT.DLL : 8.0.0.1 7937 Bytes 18/10/2008 12:03:27
RCIMAGE.DLL : 8.0.0.51 2371841 Bytes 18/10/2008 12:03:25
RCTEXT.DLL : 8.0.52.0 86273 Bytes 18/10/2008 12:03:25

Configuration settings for the scan:
Jobname..........................: Complete system scan
Configuration file...............: c:\program files\avira\antivir personaledition classic\sysscan.avp
Logging..........................: low
Primary action...................: interactive
Secondary action.................: ignore
Scan master boot sector..........: on
Scan boot sector.................: on
Boot sectors.....................: C:,
Process scan.....................: on
Scan registry....................: on
Search for rootkits..............: off
Scan all files...................: All files
Scan archives....................: on
Recursion depth..................: 20
Smart extensions.................: on
Macro heuristic..................: on
File heuristic...................: medium

Start of the scan: samedi 24 janvier 2009 20:53

The scan of running processes will be started
Scan process 'avscan.exe' - '1' Module(s) have been scanned
Scan process 'avcenter.exe' - '1' Module(s) have been scanned
Scan process 'wmiprvse.exe' - '1' Module(s) have been scanned
Scan process 'wuauclt.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'Watch.exe' - '1' Module(s) have been scanned
Scan process 'alg.exe' - '1' Module(s) have been scanned
Scan process 'SSScsiSV.exe' - '1' Module(s) have been scanned
Scan process 'nvsvc32.exe' - '1' Module(s) have been scanned
Scan process 'NMSAccessU.exe' - '1' Module(s) have been scanned
Scan process 'guard.exe' - '1' Module(s) have been scanned
Scan process 'sched.exe' - '1' Module(s) have been scanned
Scan process 'AlertModule.exe' - '1' Module(s) have been scanned
Scan process 'PollingModule.exe' - '1' Module(s) have been scanned
Scan process 'Inactivity.exe' - '1' Module(s) have been scanned
Scan process 'Toaster.exe' - '1' Module(s) have been scanned
Scan process 'ComComp.exe' - '1' Module(s) have been scanned
Scan process 'GestionnaireInternet.exe' - '1' Module(s) have been scanned
Scan process 'ctfmon.exe' - '1' Module(s) have been scanned
Scan process 'SSAAD.exe' - '1' Module(s) have been scanned
Scan process 'realsched.exe' - '1' Module(s) have been scanned
Scan process 'EoEngine.exe' - '1' Module(s) have been scanned
Scan process 'avgnt.exe' - '1' Module(s) have been scanned
Scan process 'avgas.exe' - '1' Module(s) have been scanned
Scan process 'ALi5289.exe' - '1' Module(s) have been scanned
Scan process 'hpztsb04.exe' - '1' Module(s) have been scanned
Scan process 'TaskBarIcon.exe' - '1' Module(s) have been scanned
Scan process 'JMAP5289.exe' - '1' Module(s) have been scanned
Scan process 'avguard.exe' - '1' Module(s) have been scanned
Scan process 'spoolsv.exe' - '1' Module(s) have been scanned
Scan process 'explorer.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'svchost.exe' - '1' Module(s) have been scanned
Scan process 'lsass.exe' - '1' Module(s) have been scanned
Scan process 'services.exe' - '1' Module(s) have been scanned
Scan process 'winlogon.exe' - '1' Module(s) have been scanned
Scan process 'csrss.exe' - '1' Module(s) have been scanned
Scan process 'smss.exe' - '1' Module(s) have been scanned
41 processes with 41 modules were scanned

Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!
Master boot sector HD1
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
Master boot sector HD2
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
Master boot sector HD3
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.
Master boot sector HD4
[INFO] No virus was found!
[WARNING] System error [21]: Le périphérique n'est pas prêt.

Start scanning boot sectors:
Boot sector 'C:\'
[INFO] No virus was found!

Starting to scan the registry.
The registry was scanned ( '54' files ).


Starting the file scan:

Begin scan in 'C:\'
C:\hiberfil.sys
[WARNING] The file could not be opened!
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\Documents and Settings\Olivo\Local Settings\Temp\TDSSef52.tmp
[DETECTION] Is the TR/Patched.CK.56 Trojan
[NOTE] The file was deleted!
C:\Documents and Settings\Olivo\Local Settings\Temp\TDSSf34a.tmp
[DETECTION] Contains recognition pattern of the RKIT/TDss.AC root kit
[NOTE] The file was deleted!
C:\Documents and Settings\Olivo\Local Settings\Temporary Internet Files\Content.IE5\3DD6ZOJ6\mito[1].gif
[DETECTION] Contains recognition pattern of the RKIT/TDss.AC root kit
[NOTE] The file was deleted!
C:\Documents and Settings\Olivo\Local Settings\Temporary Internet Files\Content.IE5\FWW0WNK3\install[1].exe
[DETECTION] Is the TR/Dldr.FraudLoad.vifz Trojan
[NOTE] The file was deleted!
C:\Documents and Settings\Olivo\Local Settings\Temporary Internet Files\Content.IE5\NL13OFER\swflash[1].cab
[0] Archive type: CAB (Microsoft)
--> FP_AX_CAB_INSTALLER.exe
[WARNING] No further files can be extracted from this archive. The archive will be closed
C:\System Volume Information\_restore{2EE18C9A-B4AC-4E1C-B4E6-2464C5365DD5}\RP228\A0030312.dll
[DETECTION] Is the TR/TDss.AT.518 Trojan
[NOTE] The file was deleted!
C:\WINDOWS\system32\TDSShrxr.dll
[DETECTION] Contains a recognition pattern of the (harmful) BDS/TDSS.adb back-door program
[NOTE] The file was deleted!
C:\WINDOWS\system32\TDSSmtql.dll
[DETECTION] Contains a recognition pattern of the (harmful) BDS/TDSS.acs back-door program
[NOTE] The file was deleted!
C:\WINDOWS\system32\TDSSoiqt.dll
[DETECTION] Contains a recognition pattern of the (harmful) BDS/TDSS.JW back-door program
[NOTE] The file was deleted!
C:\WINDOWS\system32\drivers\TDSSmqlt.sys
[DETECTION] Contains recognition pattern of the RKIT/TDss.G.22 root kit
[NOTE] The file was deleted!
C:\WINDOWS\Temp\TDSS54b.tmp
[DETECTION] Is the TR/Rootkit.Gen Trojan
[NOTE] The file was deleted!
C:\WINDOWS\Temp\TDSSa8b.tmp
[DETECTION] Contains recognition pattern of the RKIT/TDss.cig root kit
[NOTE] The file was deleted!

 

Publicité

Winx

Avatar de Winx
27968 messages
No-Life
No-Life
AidoHardware
AidoHardware
AidoAntivirus
AidoAntivirus
AidoWindows
AidoWindows

Lien direct Le 28 Janvier 2009 à 10h18

    Salut à toi et bienvenue,SourireHello



Afin de nous éclairersur la nature précise de tes soucis "infectieux", (ou pas ! )
dans un premier temps fais cette procédure et poste le rapport généré par random's system information tool (RSIT) par
random/random
-->source ici
Poste le contenu de log.txt (<<qui sera affiché)
ainsi que info.txt (<<qui sera réduit dans la Barre des Tâches).



Ps:
======
Conseil d'ordre général Sourire
Flèche ne pas aller sur le Net avec Internet Explorer
télécharger Mozilla-Firefox 3.0 et le mettre comme Navigateur par défaut.
http://www.mozilla-europe.org/fr/firefox/
-->source ici de conseils

Poster les 2 rapports demandés (log.txt et info.txt)


Important
=======================

Citation

Durant la phase de désinfection, il est absolument indispensable et primordial de ne pas rajouter de programmes à votre PC, afin de ne pas perturber la décontamination de votre machine. Faites-en un usage minimum durant cette phase,
D'autre part, ne pas utiliser d'outil de décontamination de sa propre initiative, celà peut définitivement nuire à notre travail et au bon rétablissement de la machine
Flèche Ne pas poster de message dans une autre partie du forum, durant la phase de décontamination, merci.
Il est évident qu'un PC infecté peut tout à fait devenir inutilisable malgrés notre tentative de désinfection, et de ce fait prendre la précaution de sauvegarder tous ses Documents perso, est une très bonne idée en soi....merci de prendre ça en considération LOL !

Il est évident que je considère que l'option formatage ne fait pas actuellement partie de ton intention, ce qui m'évite de perdre du temps....LOL ! merci d'avance

Je n'ai pas la prétention de résoudre les problèmes, mais celle de vous aider à les résoudre ;-)
 

<<<1>>>

[Page 1 sur 1 - 2 messages]

Forum informatique > Aide Virus, Spywares et autres logiciels malveillants > tout plein de malwares/virus détectés par mon antivirus