Virus

Bonjour,
Malwarebytes' Anti-Malware 1.42
Version de la base de données: 3353
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

2009-12-13 12:32:37
mbam-log-2009-12-13 (12-32-37).txt

Type de recherche: Examen complet (C:\|)
Eléments examinés: 183413
Temps écoulé: 22 minute(s), 31 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 4
Valeur(s) du Registre infectée(s): 2
Elément(s) de données du Registre infecté(s): 4
Dossier(s) infecté(s): 1
Fichier(s) infecté(s): 85

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\Interface\{967a494a-6aec-4555-9caf-fa6eb00acf91} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{9692be2f-eb8f-49d9-a11c-c24c1ef734d5} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\instkey (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\XP Police AntiVirus (Rogue.XPPolice) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\Control Panel\don't load\scui.cpl (Hijack.SecurityCenter) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Control Panel\don't load\wscui.cpl (Hijack.SecurityCenter) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\DisableRegistryTools (Hijack.Regedit) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

Dossier(s) infecté(s):
C:\Program Files\XPPoliceAntiVirus (Rogue.XPPolice) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\Program Files\DAEMON Tools Pro\Patch.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Elaborate Bytes\CloneDVD2\clonedvd.v2.9.2.0-nope.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F92A5AC6-073D-4B7B-B20A-E5408E1A2AB8}\RP395\A0093744.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F92A5AC6-073D-4B7B-B20A-E5408E1A2AB8}\RP399\A0097126.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F92A5AC6-073D-4B7B-B20A-E5408E1A2AB8}\RP399\A0097129.dll (Malware.Packer.T) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F92A5AC6-073D-4B7B-B20A-E5408E1A2AB8}\RP399\A0097130.dll (Malware.Packer.T) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F92A5AC6-073D-4B7B-B20A-E5408E1A2AB8}\RP399\A0097135.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F92A5AC6-073D-4B7B-B20A-E5408E1A2AB8}\RP399\A0097142.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F92A5AC6-073D-4B7B-B20A-E5408E1A2AB8}\RP399\A0097148.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F92A5AC6-073D-4B7B-B20A-E5408E1A2AB8}\RP399\A0097167.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F92A5AC6-073D-4B7B-B20A-E5408E1A2AB8}\RP401\A0097397.dll (Malware.Packer.T) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F92A5AC6-073D-4B7B-B20A-E5408E1A2AB8}\RP405\A0098638.dll (Malware.Packer.T) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F92A5AC6-073D-4B7B-B20A-E5408E1A2AB8}\RP421\A0100251.exe (Trojan.Agent) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F92A5AC6-073D-4B7B-B20A-E5408E1A2AB8}\RP421\A0100257.dll (Malware.Packer.T) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F92A5AC6-073D-4B7B-B20A-E5408E1A2AB8}\RP421\A0100262.dll (Malware.Packer.T) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F92A5AC6-073D-4B7B-B20A-E5408E1A2AB8}\RP421\A0100270.dll (Malware.Packer.T) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F92A5AC6-073D-4B7B-B20A-E5408E1A2AB8}\RP421\A0100275.dll (Malware.Packer.T) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F92A5AC6-073D-4B7B-B20A-E5408E1A2AB8}\RP421\A0100266.dll (Malware.Packer.T) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F92A5AC6-073D-4B7B-B20A-E5408E1A2AB8}\RP370\A0087356.dll (Malware.Packer.T) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F92A5AC6-073D-4B7B-B20A-E5408E1A2AB8}\RP377\A0090554.dll (Malware.Packer.T) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F92A5AC6-073D-4B7B-B20A-E5408E1A2AB8}\RP381\A0092782.dll (Malware.Packer.T) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{F92A5AC6-073D-4B7B-B20A-E5408E1A2AB8}\RP403\A0098474.dll (Malware.Packer.T) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\c3TKZ3ysa.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\c5HNP3DRbdM.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\C6igBP3H.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\Few7hq6W.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\FFUqfumracfdt.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\FgAl7eAnPBw.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\nqjTAu5ppOB.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\JSm7CcAe1Zh.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\JZYEcH68y.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\K3UOo7eHOwxOr.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\k3YG7asD.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KARfQGS.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ldygVfNo.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\lKeTxOkwqQrdv.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\OVEVyGJ.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\PghshSLHNL.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\pW2FSs1js4.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\q9XhdpxyQSWx.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\rriLVmDSW.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\tJnsB6Ssjx.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\UxYDcvjmurCj.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\UYlKSh8d.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\VA62ikbGbKj9b.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\Wdh7XXWDy.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\VgtKGbdcUidE.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\GlNmeO2jRua.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\gWDbH6u.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\hcmCIBp8S6R.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\hgGawUkH.dll.vir (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\HhnVmXgr75cc.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\LRyJXiADCP.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\LW1BlWnK.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\mBmjYhDEQ.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\U1oQMcOQh.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\UBDcbBbntk.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\iy5SwGC3.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\J2LGDmfCUM9.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\JeBDG96.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\JJn3jmeu.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\kKLTEHpVOw1f.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\RJ4jXub.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\s4nr8Hag.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\PRnSjcytmJ.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\QSxQKX3Xd.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\QyOcWTW6.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\R51oBmh6SP.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\XiCB5xQ.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\TADB9MafNqxnD.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\n9bfxNOhwy.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\yAkdOt1.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\yayYSifG.dll.vir (Trojan.Vundo) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\YdC2X4sy.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\yvEsdEG3.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ZZjm6XLIZd.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\KQIsjao.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\kVTGv7omrRKr.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\lAGYEHc8q9.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\W8yWAKINh.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\I7AUPQkTwVa.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\NbOrArnrJ4uc.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\NDZhxi4j3vuJ.mph (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\Program Files\XPPoliceAntiVirus\lprx.exe (Rogue.XPPolice) -> Quarantined and deleted successfully.
C:\Program Files\XPPoliceAntiVirus\setup.dat (Rogue.XPPolice) -> Quarantined and deleted successfully.