Bonjour.
J'ai été infecter du virus trojan icpp online violation de droit d'auteur. J'ai suivi les instruction posté sur le site comment ca marche, qui m'indique de poster maintenant le rapport du scan de mon ordi
J'espere que quelqu'un pourra me dire si il reste des chose a faire, car une fenêtre continue de souvrir au démarage "antimalware doctor".
merci
Noémie
www.malwarebytes.org
Version de la base de données: 4059
Windows 6.1.7600
Internet Explorer 8.0.7600.16385
03/05/2010 07:52:06
mbam-log-2010-05-03 (07-52-06).txt
Type d'examen: Examen complet (C:\|D:\|E:\|F:\|G:\|H:\|)
Elément(s) analysé(s): 429660
Temps écoulé: 9 heure(s), 25 minute(s), 5 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 1
Clé(s) du Registre infectée(s): 6
Valeur(s) du Registre infectée(s): 3
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 15
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
C:\Windows\System32\sshnas21.dll (Trojan.Downloader) -> Delete on reboot.
Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\Software\M5T8QL3YW3 (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\XML (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Handle (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Antimalware Doctor (Rogue.AntimalwareDoctor) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Antimalware Doctor Inc (Rogue.AntimalwareDoctor) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\QZAIB7KITK (Trojan.FakeAlert) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\m5t8ql3yw3 (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\canaveral (Trojan.Downloader) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\lsdefrag (Trojan.Downloader) -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
C:\Users\Noémie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Z8QC47UW\hypwhc[1].htm (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\Users\Noémie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Z8QC47UW\kkemu[1].htm (Rootkit.Agent) -> Quarantined and deleted successfully.
C:\Users\Noémie\AppData\Local\Temp\~nsu.tmp\Au_.exe (Trojan.FraudTool) -> Quarantined and deleted successfully.
C:\Windows\System32\spool\prtprocs\w32x86\4706.tmp (Backdoor.Sinowal) -> Quarantined and deleted successfully.
C:\Windows\System32\spool\prtprocs\w32x86\4C07.tmp (Backdoor.Sinowal) -> Quarantined and deleted successfully.
C:\Windows\Temp\F433.tmp (Backdoor.Sinowal) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{D07E1545-B737-4EEE-8174-C1E0B4501B71}\RP30\A0004126.sys (Rootkit.Agent) -> Quarantined and deleted successfully.
C:\Users\Noémie\AppData\Local\Temp\Tl1.exe (Trojan.FakeAlert) -> Delete on reboot.
C:\Users\Noémie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Antimalware Doctor.lnk (Rogue.AntiMalwareDoctor) -> Quarantined and deleted successfully.
C:\Users\Noémie\Favorites\_favdata.dat (Malware.Trace) -> Quarantined and deleted successfully.
C:\Users\Noémie\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Antimalware Doctor.lnk (Rogue.AntimalwareDoctor) -> Quarantined and deleted successfully.
C:\Users\Noémie\Desktop\Antimalware Doctor.lnk (Rogue.AntimalwareDoctor) -> Quarantined and deleted successfully.
C:\Users\Noémie\AppData\Roaming\Microsoft\Windows\Start Menu\Antimalware Doctor.lnk (Rogue.AntimalwareDoctor) -> Quarantined and deleted successfully.
C:\Windows\System32\sshnas21.dll (Trojan.Downloader) -> Delete on reboot.
C:\Windows\Tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job (Trojan.Downloader) -> Quarantined and deleted successfully.
Afficher la suite