Sujet Précédent Sujet Suivant

Ordinateur infecter

Fermé
robby34 Messages postés 5 Date d'inscription lundi 8 mars 2010 Statut Membre Dernière intervention 16 mars 2010 - 8 mars 2010 à 21:32
 Utilisateur anonyme - 16 mars 2010 à 18:39
Bonjour,
j'ai fais une analyse avec MBA voici le resultat,j'ai tout supprimer de la quarantaine pouvez vous m'aider merci

Malwarebytes' Anti-Malware 1.44
Version de la base de données: 3838
Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.13

08/03/2010 21:09:27
mbam-log-2010-03-08 (21-09-27).txt

Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 234017
Temps écoulé: 58 minute(s), 11 second(s)

Processus mémoire infecté(s): 1
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 5
Valeur(s) du Registre infectée(s): 3
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 3
Fichier(s) infecté(s): 36

Processus mémoire infecté(s):
C:\WINDOWS\infocard.exe (Worm.Bot) -> Unloaded process successfully.

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\H8SRT (Rootkit.TDSS) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Active Security (Rogue.ActiveSecurity) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\CoreGuard (Rogue.CoreguardAV) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\RegistryDoktorFrNE (Rogue.RegistryDoctor) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\h8srtd.sys (Rootkit.TDSS) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\firewall administrating (Worm.Bot) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\firewall administrating (Worm.Bot) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Terminal Server\Install\Software\Microsoft\Windows\CurrentVersion\Run\firewall administrating (Backdoor.IRCBot) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\Documents and Settings\All Users\AVP 2009 (Malware.Trace) -> Quarantined and deleted successfully.
C:\Program Files\RegistryDoktor 4.1 (Rogue.RegistryDoktor) -> Quarantined and deleted successfully.
C:\Program Files\RegistryDoktor 4.1\definitions (Rogue.RegistryDoktor) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\WINDOWS\infocard.exe (Worm.Bot) -> Quarantined and deleted successfully.
C:\Documents and Settings\robby\Local Settings\Temp\EsWfazhI.exe.part (Worm.Bot) -> Quarantined and deleted successfully.
C:\Documents and Settings\robby\Local Settings\Temporary Internet Files\Content.IE5\44JMXLAR\IM11842.JPG-www.facebook.com[1].exe (Worm.Bot) -> Quarantined and deleted successfully.
C:\Documents and Settings\robby\Local Settings\Temporary Internet Files\Content.IE5\EAI90SMJ\IM11842.JPG-www.facebook.com[1].exe (Worm.Bot) -> Quarantined and deleted successfully.
C:\Documents and Settings\robby\Local Settings\Temporary Internet Files\Content.IE5\EAI90SMJ\IM11842.JPG-www.facebook.com[2].exe (Worm.Bot) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\AVP 2009\1.dat (Malware.Trace) -> Quarantined and deleted successfully.
C:\Program Files\RegistryDoktor 4.1\definitions\20001130.cab (Rogue.RegistryDoktor) -> Quarantined and deleted successfully.
C:\Program Files\RegistryDoktor 4.1\definitions\200901.cab (Rogue.RegistryDoktor) -> Quarantined and deleted successfully.
C:\Program Files\RegistryDoktor 4.1\definitions\200902.cab (Rogue.RegistryDoktor) -> Quarantined and deleted successfully.
C:\Program Files\RegistryDoktor 4.1\definitions\200903.cab (Rogue.RegistryDoktor) -> Quarantined and deleted successfully.
C:\Program Files\RegistryDoktor 4.1\definitions\200904.cab (Rogue.RegistryDoktor) -> Quarantined and deleted successfully.
C:\Program Files\RegistryDoktor 4.1\definitions\200905.cab (Rogue.RegistryDoktor) -> Quarantined and deleted successfully.
C:\Program Files\RegistryDoktor 4.1\definitions\20090601.cab (Rogue.RegistryDoktor) -> Quarantined and deleted successfully.
C:\Program Files\RegistryDoktor 4.1\definitions\20090602.cab (Rogue.RegistryDoktor) -> Quarantined and deleted successfully.
C:\Program Files\RegistryDoktor 4.1\definitions\20090603.cab (Rogue.RegistryDoktor) -> Quarantined and deleted successfully.
C:\Program Files\RegistryDoktor 4.1\definitions\20090706.cab (Rogue.RegistryDoktor) -> Quarantined and deleted successfully.
C:\Program Files\RegistryDoktor 4.1\definitions\20090714.cab (Rogue.RegistryDoktor) -> Quarantined and deleted successfully.
C:\Program Files\RegistryDoktor 4.1\definitions\20090721.cab (Rogue.RegistryDoktor) -> Quarantined and deleted successfully.
C:\Program Files\RegistryDoktor 4.1\definitions\20090729.cab (Rogue.RegistryDoktor) -> Quarantined and deleted successfully.
C:\Program Files\RegistryDoktor 4.1\definitions\20090805.cab (Rogue.RegistryDoktor) -> Quarantined and deleted successfully.
C:\Program Files\RegistryDoktor 4.1\definitions\20090819.cab (Rogue.RegistryDoktor) -> Quarantined and deleted successfully.
C:\Program Files\RegistryDoktor 4.1\definitions\20090901.cab (Rogue.RegistryDoktor) -> Quarantined and deleted successfully.
C:\Program Files\RegistryDoktor 4.1\definitions\20090921.cab (Rogue.RegistryDoktor) -> Quarantined and deleted successfully.
C:\Program Files\RegistryDoktor 4.1\definitions\20091006.cab (Rogue.RegistryDoktor) -> Quarantined and deleted successfully.
C:\Program Files\RegistryDoktor 4.1\definitions\20091023.cab (Rogue.RegistryDoktor) -> Quarantined and deleted successfully.
C:\Program Files\RegistryDoktor 4.1\definitions\20091104.cab (Rogue.RegistryDoktor) -> Quarantined and deleted successfully.
C:\Program Files\RegistryDoktor 4.1\definitions\20091114.cab (Rogue.RegistryDoktor) -> Quarantined and deleted successfully.
C:\Documents and Settings\All Users\Application Data\sysReserve.ini (Malware.Trace) -> Quarantined and deleted successfully.
C:\Program Files\AntiMalware\help.ico (Rogue.AntiMalware) -> Quarantined and deleted successfully.
C:\Program Files\AntiMalware\malw.db (Rogue.AntiMalware) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\h8srtcfg.dat (Rootkit.TDSS) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\H8SRTrhcgsbkolo.dat (Rootkit.TDSS) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\H8SRT6b00.tmp (Rootkit.TDSS) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\H8SRTebe1.tmp (Rootkit.TDSS) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\H8SRTf320.tmp (Rootkit.TDSS) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\H8SRTf4b6.tmp (Rootkit.TDSS) -> Quarantined and deleted successfully.
A voir également:

21 réponses

Précédent
  • 1
  • 2
Réponse 21 / 21
robby34 Messages postés 5 Date d'inscription lundi 8 mars 2010 Statut Membre Dernière intervention 16 mars 2010
16 mars 2010 à 09:47
Bonjours,

normalement j'ai réussis a te l'envoyer en message priver
0
Utilisateur anonyme
16 mars 2010 à 18:39
Bonsoir

Je n'es rien reçu;mais c'est ici qu'il faut le poster ce lien qui me permettra de lire ce rapport;merci
@+
0

Discussions similaires

j'ai renversé de l'eau sur mon pc portable
sardine -
moudubulbe -

14 réponses
Comment taper l'arobase sur un pc hp ?
kadem -
Tatopoulosse -

5 réponses