Antimalware Doctor et Security Tools-Problems

Bonjour,

En début de journée j'avais mon ordi infesté de trucs pas bons. En fait, il y avait le antimalware doctor et un truc Security Tools qui ouvraient pleins de fenêtres.

En démarrant en mode sans échec et en regardant les autres forums associés au Antimalware doctor, j'ai commencer avec rkill pour ensuite utiliser MalwareByte's anti-Malware et bon, scan complet, supprimer la quarantaine.

Entre deux redémarrages où j'avais pas fait F8 à temps (avant de supprimer la quarantaine), Antimalware doctor n'était plus là, mais le maudit Security Tools oui (?...)

Avant d'aller plus loin, je penses que je vais avoir besoin d'aide pour les trucs de ComboFix si j'en ai besoin encore.

Merci énormément à celui qui me vient en aide!



(!) Edit pour mettre le rapport

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Version de la base de données: 4411

Windows 5.1.2600 Service Pack 3 (Safe Mode)
Internet Explorer 7.0.5730.11

2010-08-09 17:18:31
mbam-log-2010-08-09 (17-18-31).txt

Type d'examen: Examen complet (C:\|)
Elément(s) analysé(s): 200058
Temps écoulé: 31 minute(s), 0 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 17
Valeur(s) du Registre infectée(s): 5
Elément(s) de données du Registre infecté(s): 4
Dossier(s) infecté(s): 5
Fichier(s) infecté(s): 43

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\cscrptxt.cscrptxt (Adware.EZlife) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{6741ac3f-b847-4951-9c6d-8e138c99371e} (Adware.EZlife) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6741ac3f-b847-4951-9c6d-8e138c99371e} (Adware.EZlife) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e0ec6fba-f009-3535-95d6-b6390db27da1} (Adware.EZlife) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\cscrptxt.cscrptxt.1.0 (Adware.EZlife) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{84c3c236-f588-4c93-84f4-147b2abbe67b} (Adware.Adrotator) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{38061edc-40bb-4618-a8da-e56353347e6d} (Adware.EZlife) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{7b6a2552-e65b-4a9e-add4-c45577ffd8fd} (Adware.EZLife) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\adgj.aghlp (Adware.EZLife) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\adgj.aghlp.1 (Adware.EZLife) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\adshothlpr.adshothlpr (Adware.Adrotator) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\adshothlpr.adshothlpr.1.0 (Adware.Adrotator) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\$NtUninstallMTF1011$ (Adware.Adrotator) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Sky-Banners (Adware.Adrotator) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Street-Ads (Adware.Adrotator) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{a41a8e0d-f84b-4906-ac5b-6551e2d1450e} (Adware.AdRotator) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a41a8e0d-f84b-4906-ac5b-6551e2d1450e} (Adware.AdRotator) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\lsdefrag (Trojan.Downloader) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\mchk (Trojan.Adware) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\jgyo0w (Trojan.Downloader) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\sta (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\taskman (Trojan.Agent) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\NameServer (Trojan.DNSChanger) -> Data: 93.188.164.73,93.188.166.223 -> Quarantined and deleted successfully.

Dossier(s) infecté(s):
C:\Documents and Settings\user\Application Data\Sky-Banners (Adware.Adrotator) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Application Data\Sky-Banners\skb (Adware.Adrotator) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Application Data\Street-Ads (Adware.Adrotator) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Application Data\Street-Ads\sta (Adware.Adrotator) -> Quarantined and deleted successfully.
C:\WINDOWS\$NtUninstallMTF1011$ (Adware.Adrotator) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\Documents and Settings\user\Local Settings\Temp\axneorcmsw.tmp (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\nwvap.exe (Trojan.Adware) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\awvap.dll (Adware.EZlife) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Application Data\9861A29A7659BE65F8F2B833A31FE091\secureapp70700.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Local Settings\Temp\2506.tmp (Rootkit.Dropper) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Local Settings\Temp\2507.tmp (Rootkit.Dropper) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Local Settings\Temp\250A.tmp (Rootkit.Dropper) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Local Settings\Temp\250B.tmp (Rootkit.Dropper) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Local Settings\Temp\250D.tmp (Rootkit.Dropper) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Local Settings\Temp\dzwwvzoj.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Local Settings\Temp\kiq1chip.exe (Trojan.Sisproc.Gen) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Local Settings\Temp\rsxenawmco.tmp (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Local Settings\Temp\ukdoi.exe (Adware.BHO) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Local Settings\Temp\voqk2m76.exe (Trojan.LVBP) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Local Settings\Temp\Xzc.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Local Settings\Temp\Xzd.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Local Settings\Temp\Xze.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Local Settings\Temp\Xzf.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Local Settings\Temp\Xzg.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Local Settings\Temp\Xzh.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Local Settings\Temp\Xzi.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Local Settings\Temp\Xzj.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Local Settings\Temp\Xzk.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Local Settings\Temp\yhw5f2e47.exe (Trojan.Sisproc.Gen) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\DHKZEMZS\imhbjepxrz[1].htm (Malware.Packer.Gen) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\MY07L86W\aaidkfmhfa[3].htm (Adware.BHO) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\MY07L86W\sjnvpnidk[1].htm (Malware.Packer.Gen) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\ZHPJ4EJ2\aaidkfmhfa[1].htm (Adware.BHO) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\ZHPJ4EJ2\imhbjepxrz[1].htm (Malware.Packer.Gen) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Mes documents\1\fff-ea121.exe (Trojan.Orsam) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Mes documents\1\fff-ea140.exe (Trojan.Orsam) -> Quarantined and deleted successfully.
C:\WINDOWS\Xrutua.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\spool\prtprocs\w32x86\31e9aAA9.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\spool\prtprocs\w32x86\79s1e93.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\spool\prtprocs\w32x86\93y7c3179.dll (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Application Data\Sky-Banners\skb\log.xml (Adware.Adrotator) -> Quarantined and deleted successfully.
C:\WINDOWS\$NtUninstallMTF1011$\apUninstall.exe (Adware.Adrotator) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Menu Démarrer\Programmes\Security Tool.LNK (Rogue.SecurityTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Application Data\Microsoft\Internet Explorer\Quick Launch\Antimalware Doctor.lnk (Rogue.AntimalwareDoctor) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Menu Démarrer\Antimalware Doctor.lnk (Rogue.AntimalwareDoctor) -> Quarantined and deleted successfully.
C:\Documents and Settings\user\Menu Démarrer\Programmes\Démarrage\Antimalware Doctor.lnk (Rogue.AntiMalwareDoctor) -> Quarantined and deleted successfully.
C:\WINDOWS\Tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\Tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job (Trojan.Downloader) -> Quarantined and deleted successfully.

(!)