Virus help
pvpdiesel
Messages postés
5
Statut
Membre
-
pvpdiesel Messages postés 5 Statut Membre -
pvpdiesel Messages postés 5 Statut Membre -
Bonjour,
Malwarebytes' Anti-Malware 1.44
Version de la base de données: 3818
Windows 5.1.2600 Service Pack 2
Internet Explorer 8.0.6001.18702
03/03/2010 15:43:13
mbam-log-2010-03-03 (15-43-13).txt
Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 216657
Temps écoulé: 42 minute(s), 24 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 1
Clé(s) du Registre infectée(s): 7
Valeur(s) du Registre infectée(s): 2
Elément(s) de données du Registre infecté(s): 4
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 13
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
C:\WINDOWS\system32\nynw.wmo (Backdoor.Bot) -> Delete on reboot.
Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\idwbho2.idwbhocl (Adware.SpeedDownloader) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\idwbho2.idwbhocl.1 (Adware.SpeedDownloader) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1c3b806c-c5da-4f6e-ba43-b1ff982f0a02} (Adware.SpeedDownloader) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1c3b806c-c5da-4f6e-ba43-b1ff982f0a02} (Adware.SpeedDownloader) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1c3b806c-c5da-4f6e-ba43-b1ff982f0a02} (Adware.SpeedDownloader) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\asyncmac (Trojan.MultipleAV) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\idid (Trojan.Sasfix) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowCpl\1 (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\forceclassiccontrolpanel (Hijack.ControlPanelStyle) -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell (Hijack.Shell) -> Bad: (Explorer.exe rundll32.exe nynw.wmo mynleeq) Good: (Explorer.exe) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
C:\WINDOWS\system32\nynw.wmo (Backdoor.Bot) -> Delete on reboot.
C:\Documents and Settings\Sylvain\Local Settings\Application Data\av.exe (Rogue.MultipleAV) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sylvain\Local Settings\Application Data\MSASCui.exe (Rogue.MultipleAV) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sylvain\Local Settings\Temp\5A.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sylvain\Local Settings\Temp\5B.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sylvain\Local Settings\Temp\5C.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sylvain\Local Settings\Temp\5D.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sylvain\Local Settings\Temp\66.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sylvain\Local Settings\Temp\67.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{43F63F22-A9B6-4F98-BB4A-679CA32A547E}\RP98\A0016653.exe (Rogue.MultipleAV) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\iexpress.exe (Malware.Packer.Gen) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\asyncmac.sys (Trojan.MultipleAV) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dllcache\asyncmac.sys (Trojan.MultipleAV) -> Quarantined and deleted successfully.
Malwarebytes' Anti-Malware 1.44
Version de la base de données: 3818
Windows 5.1.2600 Service Pack 2
Internet Explorer 8.0.6001.18702
03/03/2010 15:43:13
mbam-log-2010-03-03 (15-43-13).txt
Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 216657
Temps écoulé: 42 minute(s), 24 second(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 1
Clé(s) du Registre infectée(s): 7
Valeur(s) du Registre infectée(s): 2
Elément(s) de données du Registre infecté(s): 4
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 13
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
C:\WINDOWS\system32\nynw.wmo (Backdoor.Bot) -> Delete on reboot.
Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\idwbho2.idwbhocl (Adware.SpeedDownloader) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\idwbho2.idwbhocl.1 (Adware.SpeedDownloader) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1c3b806c-c5da-4f6e-ba43-b1ff982f0a02} (Adware.SpeedDownloader) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1c3b806c-c5da-4f6e-ba43-b1ff982f0a02} (Adware.SpeedDownloader) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1c3b806c-c5da-4f6e-ba43-b1ff982f0a02} (Adware.SpeedDownloader) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\asyncmac (Trojan.MultipleAV) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\idid (Trojan.Sasfix) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\DisallowCpl\1 (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\forceclassiccontrolpanel (Hijack.ControlPanelStyle) -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell (Hijack.Shell) -> Bad: (Explorer.exe rundll32.exe nynw.wmo mynleeq) Good: (Explorer.exe) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
C:\WINDOWS\system32\nynw.wmo (Backdoor.Bot) -> Delete on reboot.
C:\Documents and Settings\Sylvain\Local Settings\Application Data\av.exe (Rogue.MultipleAV) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sylvain\Local Settings\Application Data\MSASCui.exe (Rogue.MultipleAV) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sylvain\Local Settings\Temp\5A.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sylvain\Local Settings\Temp\5B.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sylvain\Local Settings\Temp\5C.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sylvain\Local Settings\Temp\5D.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sylvain\Local Settings\Temp\66.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Documents and Settings\Sylvain\Local Settings\Temp\67.tmp (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{43F63F22-A9B6-4F98-BB4A-679CA32A547E}\RP98\A0016653.exe (Rogue.MultipleAV) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\iexpress.exe (Malware.Packer.Gen) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\asyncmac.sys (Trojan.MultipleAV) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\dllcache\asyncmac.sys (Trojan.MultipleAV) -> Quarantined and deleted successfully.
A voir également:
- Virus help
- Virus mcafee - Accueil - Piratage
- Virus informatique - Guide
- Panda anti virus gratuit - Télécharger - Antivirus & Antimalwares
- Undisclosed-recipients virus - Guide
- Ordinateur bloqué virus - Accueil - Arnaque
