Infection par XP Security Cleaner Pro
crokmich
Messages postés
2
Statut
Membre
-
crokmich Messages postés 2 Statut Membre -
crokmich Messages postés 2 Statut Membre -
Bonjour,
Mon PC est infecté par XP Security Pro.
J'ai lancé un scan avec RogueKiller qui a détecté plusieurs infections.
Voici le rapport :
RogueKiller V8.5.4 [Mar 18 2013] par Tigzy
mail : tigzyRK<at>gmail<dot>com
Remontees : https://www.luanagames.com/index.fr.html
Site Web : https://www.luanagames.com/index.fr.html
Blog : http://tigzyrk.blogspot.com/
Systeme d'exploitation : Windows XP (5.1.2600 Service Pack 2) 32 bits version
Demarrage : Mode sans echec
Utilisateur : Administrateur [Droits d'admin]
Mode : Recherche -- Date : 21/04/2013 14:45:33
| ARK || FAK || MBR |
¤¤¤ Processus malicieux : 0 ¤¤¤
¤¤¤ Entrees de registre : 7 ¤¤¤
[HJ] HKLM\[...]\Security Center : AntiVirusDisableNotify (1) -> TROUVÉ
[HJ] HKLM\[...]\Security Center : FirewallDisableNotify (1) -> TROUVÉ
[HJ] HKLM\[...]\Security Center : UpdatesDisableNotify (1) -> TROUVÉ
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> TROUVÉ
[FILEASSO] HKLM\[...]\command : ("C:\Documents and Settings\Jean-Pierre\Local Settings\Application Data\rcs.exe" -a "C:\Program Files\Mozilla Firefox\firefox.exe") [-] -> TROUVÉ
[FILEASSO] HKLM\[...]\command : ("C:\Documents and Settings\Jean-Pierre\Local Settings\Application Data\rcs.exe" -a "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode) [-] -> TROUVÉ
[FILEASSO] HKLM\[...]\command : ("C:\Documents and Settings\Jean-Pierre\Local Settings\Application Data\rcs.exe" -a "C:\Program Files\Internet Explorer\iexplore.exe") [-] -> TROUVÉ
¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤
¤¤¤ Driver : [NON CHARGE] ¤¤¤
¤¤¤ Infection : Rogue.AntiSpy-AH ¤¤¤
¤¤¤ Fichier HOSTS: ¤¤¤
--> C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
¤¤¤ MBR Verif: ¤¤¤
+++++ PhysicalDrive0: FUJITSU MHV2120BH PL +++++
--- User ---
[MBR] 27d0fd3dac0f61cee6589973e63997b7
[BSP] 4c56ec0925de91f430fa1fefcd66f698 : Windows XP MBR Code
Partition table:
0 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 63 | Size: 8110 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 16611210 | Size: 57223 Mo
2 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 133805385 | Size: 49136 Mo
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: USB Flash Memory USB Device +++++
--- User ---
[MBR] a65cc3bd4094c42fca1a527ca6b21921
[BSP] ef3177ea6997481f5647d45aa222b26f : Empty MBR Code
Partition table:
0 - [XXXXXX] FAT32 (0x0b) [VISIBLE] Offset (sectors): 8064 | Size: 3818 Mo
User = LL1 ... OK!
Error reading LL2 MBR!
Termine : << RKreport[1]_S_21042013_144533.txt >>
RKreport[1]_S_21042013_144533.txt
Que dois-je faire ?
Mon PC est infecté par XP Security Pro.
J'ai lancé un scan avec RogueKiller qui a détecté plusieurs infections.
Voici le rapport :
RogueKiller V8.5.4 [Mar 18 2013] par Tigzy
mail : tigzyRK<at>gmail<dot>com
Remontees : https://www.luanagames.com/index.fr.html
Site Web : https://www.luanagames.com/index.fr.html
Blog : http://tigzyrk.blogspot.com/
Systeme d'exploitation : Windows XP (5.1.2600 Service Pack 2) 32 bits version
Demarrage : Mode sans echec
Utilisateur : Administrateur [Droits d'admin]
Mode : Recherche -- Date : 21/04/2013 14:45:33
| ARK || FAK || MBR |
¤¤¤ Processus malicieux : 0 ¤¤¤
¤¤¤ Entrees de registre : 7 ¤¤¤
[HJ] HKLM\[...]\Security Center : AntiVirusDisableNotify (1) -> TROUVÉ
[HJ] HKLM\[...]\Security Center : FirewallDisableNotify (1) -> TROUVÉ
[HJ] HKLM\[...]\Security Center : UpdatesDisableNotify (1) -> TROUVÉ
[HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> TROUVÉ
[FILEASSO] HKLM\[...]\command : ("C:\Documents and Settings\Jean-Pierre\Local Settings\Application Data\rcs.exe" -a "C:\Program Files\Mozilla Firefox\firefox.exe") [-] -> TROUVÉ
[FILEASSO] HKLM\[...]\command : ("C:\Documents and Settings\Jean-Pierre\Local Settings\Application Data\rcs.exe" -a "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode) [-] -> TROUVÉ
[FILEASSO] HKLM\[...]\command : ("C:\Documents and Settings\Jean-Pierre\Local Settings\Application Data\rcs.exe" -a "C:\Program Files\Internet Explorer\iexplore.exe") [-] -> TROUVÉ
¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤
¤¤¤ Driver : [NON CHARGE] ¤¤¤
¤¤¤ Infection : Rogue.AntiSpy-AH ¤¤¤
¤¤¤ Fichier HOSTS: ¤¤¤
--> C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
¤¤¤ MBR Verif: ¤¤¤
+++++ PhysicalDrive0: FUJITSU MHV2120BH PL +++++
--- User ---
[MBR] 27d0fd3dac0f61cee6589973e63997b7
[BSP] 4c56ec0925de91f430fa1fefcd66f698 : Windows XP MBR Code
Partition table:
0 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 63 | Size: 8110 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 16611210 | Size: 57223 Mo
2 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 133805385 | Size: 49136 Mo
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: USB Flash Memory USB Device +++++
--- User ---
[MBR] a65cc3bd4094c42fca1a527ca6b21921
[BSP] ef3177ea6997481f5647d45aa222b26f : Empty MBR Code
Partition table:
0 - [XXXXXX] FAT32 (0x0b) [VISIBLE] Offset (sectors): 8064 | Size: 3818 Mo
User = LL1 ... OK!
Error reading LL2 MBR!
Termine : << RKreport[1]_S_21042013_144533.txt >>
RKreport[1]_S_21042013_144533.txt
Que dois-je faire ?
A voir également:
- Infection par XP Security Cleaner Pro
- Hd cleaner - Télécharger - Optimisation
- Windows memory cleaner - Télécharger - Optimisation
- Adw cleaner - Télécharger - Antivirus & Antimalwares
- Cle windows xp - Guide
- Microsoft security essentials - Télécharger - Antivirus & Antimalwares
2 réponses
Voici le rapport :
RogueKiller V8.5.4 [Mar 18 2013] par Tigzy
mail : tigzyRK<at>gmail<dot>com
Remontees : https://www.luanagames.com/index.fr.html
Site Web : https://www.luanagames.com/index.fr.html
Blog : http://tigzyrk.blogspot.com/
Systeme d'exploitation : Windows XP (5.1.2600 Service Pack 2) 32 bits version
Demarrage : Mode sans echec
Utilisateur : Administrateur [Droits d'admin]
Mode : Suppression -- Date : 21/04/2013 22:23:00
| ARK || FAK || MBR |
¤¤¤ Processus malicieux : 0 ¤¤¤
¤¤¤ Entrees de registre : 0 ¤¤¤
¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤
¤¤¤ Driver : [NON CHARGE] ¤¤¤
¤¤¤ Fichier HOSTS: ¤¤¤
--> C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
¤¤¤ MBR Verif: ¤¤¤
+++++ PhysicalDrive0: FUJITSU MHV2120BH PL +++++
--- User ---
[MBR] 27d0fd3dac0f61cee6589973e63997b7
[BSP] 4c56ec0925de91f430fa1fefcd66f698 : Windows XP MBR Code
Partition table:
0 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 63 | Size: 8110 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 16611210 | Size: 57223 Mo
2 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 133805385 | Size: 49136 Mo
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: USB Flash Memory USB Device +++++
--- User ---
[MBR] a65cc3bd4094c42fca1a527ca6b21921
[BSP] ef3177ea6997481f5647d45aa222b26f : Empty MBR Code
Partition table:
0 - [XXXXXX] FAT32 (0x0b) [VISIBLE] Offset (sectors): 8064 | Size: 3818 Mo
User = LL1 ... OK!
Error reading LL2 MBR!
Termine : << RKreport[10]_D_21042013_222300.txt >>
RKreport[10]_D_21042013_222300.txt ; RKreport[1]_S_21042013_144533.txt ; RKreport[2]_D_21042013_144837.txt ; RKreport[3]_S_21042013_150506.txt ; RKreport[4]_S_21042013_164238.txt ;
RKreport[5]_PR_21042013_164316.txt ; RKreport[6]_D_21042013_164404.txt ; RKreport[7]_S_21042013_165540.txt ; RKreport[8]_D_21042013_165650.txt ; RKreport[9]_S_21042013_222157.txt
RogueKiller V8.5.4 [Mar 18 2013] par Tigzy
mail : tigzyRK<at>gmail<dot>com
Remontees : https://www.luanagames.com/index.fr.html
Site Web : https://www.luanagames.com/index.fr.html
Blog : http://tigzyrk.blogspot.com/
Systeme d'exploitation : Windows XP (5.1.2600 Service Pack 2) 32 bits version
Demarrage : Mode sans echec
Utilisateur : Administrateur [Droits d'admin]
Mode : Suppression -- Date : 21/04/2013 22:23:00
| ARK || FAK || MBR |
¤¤¤ Processus malicieux : 0 ¤¤¤
¤¤¤ Entrees de registre : 0 ¤¤¤
¤¤¤ Fichiers / Dossiers particuliers: ¤¤¤
¤¤¤ Driver : [NON CHARGE] ¤¤¤
¤¤¤ Fichier HOSTS: ¤¤¤
--> C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
¤¤¤ MBR Verif: ¤¤¤
+++++ PhysicalDrive0: FUJITSU MHV2120BH PL +++++
--- User ---
[MBR] 27d0fd3dac0f61cee6589973e63997b7
[BSP] 4c56ec0925de91f430fa1fefcd66f698 : Windows XP MBR Code
Partition table:
0 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 63 | Size: 8110 Mo
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 16611210 | Size: 57223 Mo
2 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 133805385 | Size: 49136 Mo
User = LL1 ... OK!
User = LL2 ... OK!
+++++ PhysicalDrive1: USB Flash Memory USB Device +++++
--- User ---
[MBR] a65cc3bd4094c42fca1a527ca6b21921
[BSP] ef3177ea6997481f5647d45aa222b26f : Empty MBR Code
Partition table:
0 - [XXXXXX] FAT32 (0x0b) [VISIBLE] Offset (sectors): 8064 | Size: 3818 Mo
User = LL1 ... OK!
Error reading LL2 MBR!
Termine : << RKreport[10]_D_21042013_222300.txt >>
RKreport[10]_D_21042013_222300.txt ; RKreport[1]_S_21042013_144533.txt ; RKreport[2]_D_21042013_144837.txt ; RKreport[3]_S_21042013_150506.txt ; RKreport[4]_S_21042013_164238.txt ;
RKreport[5]_PR_21042013_164316.txt ; RKreport[6]_D_21042013_164404.txt ; RKreport[7]_S_21042013_165540.txt ; RKreport[8]_D_21042013_165650.txt ; RKreport[9]_S_21042013_222157.txt
