Bonjour à tous,
Lors de la dernière analyse Antivir, il m’a trouvé 2 virus : TR/Agent.37670 Trojan, TR/Crypt.XPACK.Gen Trojan
Et je ne sais pas d’où cela peut venir à part de ma clé usb, alors je fais appel à vous pour m’aider à m’en débarraser.
Voici le rapport d’antivir :
Avira AntiVir Personal
Report file date: samedi 2 août 2008 16:31
Scanning for 1528705 virus strains and unwanted programs.
Licensed to: Avira AntiVir PersonalEdition Classic
Platform: Windows XP
Windows version: (Service Pack 2) [5.1.2600]
Boot mode: Normally booted
Username: SYSTEM
Version information:
BUILD.DAT : 8.1.0.326 16933 Bytes 11/07/2008 12:57:00
AVSCAN.EXE : 8.1.4.7 315649 Bytes 18/07/2008 00:45:52
AVSCAN.DLL : 8.1.4.0 40705 Bytes 18/07/2008 00:45:52
LUKE.DLL : 8.1.4.5 164097 Bytes 18/07/2008 00:45:52
LUKERES.DLL : 8.1.4.0 12033 Bytes 18/07/2008 00:45:52
ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 19:27:15
ANTIVIR1.VDF : 7.0.5.1 8182784 Bytes 24/06/2008 00:52:50
ANTIVIR2.VDF : 7.0.5.174 2027008 Bytes 25/07/2008 15:15:09
ANTIVIR3.VDF : 7.0.5.205 285696 Bytes 01/08/2008 13:54:17
Engineversion : 8.1.1.15
AEVDF.DLL : 8.1.0.5 102772 Bytes 15/04/2008 00:43:28
AESCRIPT.DLL : 8.1.0.61 311675 Bytes 31/07/2008 22:48:56
AESCN.DLL : 8.1.0.23 119156 Bytes 16/07/2008 00:43:49
AERDL.DLL : 8.1.0.20 418165 Bytes 26/04/2008 00:37:35
AEPACK.DLL : 8.1.2.1 364917 Bytes 16/07/2008 00:43:45
AEOFFICE.DLL : 8.1.0.21 192891 Bytes 19/07/2008 00:43:22
AEHEUR.DLL : 8.1.0.44 1343863 Bytes 24/07/2008 15:15:23
AEHELP.DLL : 8.1.0.15 115063 Bytes 30/05/2008 00:40:55
AEGEN.DLL : 8.1.0.32 315765 Bytes 31/07/2008 22:48:54
AEEMU.DLL : 8.1.0.7 430452 Bytes 31/07/2008 22:48:50
AECORE.DLL : 8.1.1.8 172406 Bytes 31/07/2008 22:48:47
AEBB.DLL : 8.1.0.1 53617 Bytes 18/07/2008 00:45:53
AVWINLL.DLL : 1.0.0.12 15105 Bytes 18/07/2008 00:45:52
AVPREF.DLL : 8.0.2.0 38657 Bytes 18/07/2008 00:45:52
AVREP.DLL : 8.0.0.2 98344 Bytes 31/07/2008 22:48:40
AVREG.DLL : 8.0.0.1 33537 Bytes 18/07/2008 00:45:52
AVARKT.DLL : 1.0.0.23 307457 Bytes 15/04/2008 00:43:19
AVEVTLOG.DLL : 8.0.0.16 119041 Bytes 18/07/2008 00:45:52
SQLITE3.DLL : 3.3.17.1 339968 Bytes 15/04/2008 00:43:26
SMTPLIB.DLL : 1.2.0.23 28929 Bytes 18/07/2008 00:45:53
NETNT.DLL : 8.0.0.1 7937 Bytes 15/04/2008 00:43:24
RCIMAGE.DLL : 8.0.0.51 2371841 Bytes 18/07/2008 00:45:48
RCTEXT.DLL : 8.0.52.0 86273 Bytes 18/07/2008 00:45:48
Configuration settings for the scan:
Jobname…: Complete system scan
Configuration file…: c:\program files\avira\antivir
personaledition classic\sysscan.avp
Logging…: low
Primary action…: interactive
Secondary action…: ignore
Scan master boot sector…: on
Scan boot sector…: on
Boot sectors…: C:, F:,
Process scan…: on
Scan registry…: on
Search for rootkits…: off
Scan all files…: Intelligent file selection
Scan archives…: on
Recursion depth…: 20
Smart extensions…: on
Macro heuristic…: on
File heuristic…: medium
Start of the scan: samedi 2 août 2008 16:31
The scan of running processes will be started
Scan process ‘avscan.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘firefox.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘epmworker.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘Generic.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘usnsvc.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘msnmsgr.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘wuauclt.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘wscntfy.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘devldr32.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘svchost.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘hpqste08.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘alg.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘iPodService.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘ADSL Autoconnect.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘PCLEScheduler.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘hpqtra08.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘ecbl-lbp.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘dslmon.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘emule.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘DesktopSearchService.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘svchost.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘GoogleToolbarNotifier.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘msnmsgr.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘ctfmon.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘UnlockerAssistant.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘Application Launcher.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘avgnt.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘nvsvc32.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘TaskBarIcon.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘ECB.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘MaBtSh.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘qttask.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘iTunesHelper.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘mdm.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘realsched.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘jusched.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘sched.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘remoterm.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘hpwuSchd2.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘CnxMon.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘explorer.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘avguard.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘spoolsv.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘svchost.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘svchost.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘svchost.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘svchost.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘svchost.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘lsass.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘services.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘winlogon.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘csrss.exe’ - ‘1’ Module(s) have been scanned
Scan process ‘smss.exe’ - ‘1’ Module(s) have been scanned
53 processes with 53 modules were scanned
Starting master boot sector scan:
Master boot sector HD0
[INFO] No virus was found!
Master boot sector HD1
[INFO] No virus was found!
Start scanning boot sectors:
Boot sector ‘C:’
[INFO] No virus was found!
Boot sector ‘F:’
[INFO] No virus was found!
Starting to scan the registry.
The registry was scanned ( ‘66’ files ).
Starting the file scan:
Begin scan in ‘C:’
C:\hiberfil.sys
[WARNING] The file could not be opened!
C:\pagefile.sys
[WARNING] The file could not be opened!
C:\Ancien disque\e\I\Ato…v3.4.incl.
[0] Archive type: RAR
–> atomix.virtual.dj.3.x-patch.exe
[DETECTION] Is the TR/Agent.37670 Trojan
[NOTE] The file was deleted!
C:\WINDOWS\system32\amvo0.dll
[DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
[NOTE] The file was deleted!
C:\WINDOWS\system32\drivers\atapi.sys
[WARNING] The file could not be opened!
Begin scan in ‘F:’
F:\Program Files\e\I\AtoDJ.v3.4.incl
[0] Archive type: RAR
–> atomix.virtual.dj.3.x-patch.exe
[DETECTION] Is the TR/Agent.37670 Trojan
[NOTE] The file was deleted!
F:\WINDOWS\Temp\tmp0000144f\tmp0002e002
[0] Archive type: CAB (Microsoft)
–> lmcdatadll
[WARNING] No further files can be extracted from this archive. The
archive will be closed
F:\WINDOWS\Temp\tmp0000164e\tmp0001e9f8
[0] Archive type: CAB (Microsoft)
–> msgrappdll
[WARNING] No further files can be extracted from this archive. The
archive will be closed
F:\WINDOWS\Temp\tmp00007282\tmp0000e71c
[0] Archive type: CAB (Microsoft)
–> msgslangdll
[WARNING] No further files can be extracted from this archive. The
archive will be closed
End of the scan: samedi 2 août 2008 21:34
Used time: 5:03:32 Hour(s)
The scan has been done completely.
10576 Scanning directories
466896 Files were scanned
3 viruses and/or unwanted programs were found
0 Files were classified as suspicious:
3 files were deleted
0 files were repaired
0 files were moved to quarantine
0 files were renamed
3 Files cannot be scanned
466890 Files not concerned
6243 Archives were scanned
6 Warnings
3 Notes
Edité le 03/08/2008 à 17:14