Spyware Win 32
crapaud3
-
sherred Messages postés 8605 Statut Membre -
sherred Messages postés 8605 Statut Membre -
Bonjour,
Mon ordinateur est infecté : 2683 virus selon windows! J'ai téléchargé ad aware et supprimé les fichiers virusés, du nom de WIN 32.... mais j'ai encore un message sur mon bureau : WARNING SPYWARE DETECTED.
J'ai teléchargé hijack comme vous le conseillez et voilà ce que j'ai. Pouvez-vous m'aider svp?
File name Malware name
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{CD000107-8B95-11D1-82DB-00C04FB1625D}, CDOPerson Class Registry item
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{5267FF5E-7CAF-4769-865D-17A25968525E}\ProxyStubClsid, {00020424-0000-0000-C000-000000000046} Registry item
HKEY_LOCAL_MACHINE\Software\Classes\NokiaCL.VoiceItem.4\CLSID, {EF142DEE-7FB7-4208-A9AC-75A95DC8CF5F} Registry item
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7C9F46774DBF2F846999DB0CBD86FE9C, Registry item
C:\Documents and Settings\All Users\Application Data\aruxuv.inf Adware.IpWins
C:\Documents and Settings\All Users\Application Data\jiwumucyza.lib BackWebLite
C:\Documents and Settings\All Users\Application Data\ygexoqeliv.sys Advware.Adstart.b
C:\Documents and Settings\All Users\Documents\nyzahuzewe.ban Adlogix
C:\Documents and Settings\All Users\Documents\yrogevy.lib A-Trojan 2.0
C:\Documents and Settings\All Users\Documents\yzuwugani.inf Adware.IpWins
C:\Documents and Settings\b28n35c20.E100422\Application Data\banixonyw.scr Msiebho
C:\Documents and Settings\b28n35c20.E100422\Application Data\orowab.scr Msiebho
C:\Documents and Settings\b28n35c20.E100422\Application Data\tudumafufa.exe Adware.IpWins
C:\Documents and Settings\b28n35c20.E100422\Cookies\axebecel.dat BackWebLite
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Application Data\cobi.db PerMedia
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Application Data\edawiha.com PopMonster Description
C:\WINDOWS\System32\guxa.lib Adware.IpWins
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Application Data\sicut.bin Adware.IpWins
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temporary Internet Files\hide.inf BackWebLite
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temporary Internet Files\nydyjojo.ban BackWebLite
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temporary Internet Files\wafo.bat MPower
C:\Program Files\Fichiers communs\tugicibe.bat BackWebLite
C:\WINDOWS\System32\togyfevy._sy Adware.IpWins
C:\WINDOWS\acidepal.ban Advware.Adstart.b
C:\WINDOWS\asef.scr Adlogix
C:\Program Files\Fichiers communs\ridemelyr.dl BackWebLite
C:\Program Files\Fichiers communs\rucuzul._dl NavExcel
Mon ordinateur est infecté : 2683 virus selon windows! J'ai téléchargé ad aware et supprimé les fichiers virusés, du nom de WIN 32.... mais j'ai encore un message sur mon bureau : WARNING SPYWARE DETECTED.
J'ai teléchargé hijack comme vous le conseillez et voilà ce que j'ai. Pouvez-vous m'aider svp?
File name Malware name
HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{CD000107-8B95-11D1-82DB-00C04FB1625D}, CDOPerson Class Registry item
HKEY_LOCAL_MACHINE\Software\Classes\Interface\{5267FF5E-7CAF-4769-865D-17A25968525E}\ProxyStubClsid, {00020424-0000-0000-C000-000000000046} Registry item
HKEY_LOCAL_MACHINE\Software\Classes\NokiaCL.VoiceItem.4\CLSID, {EF142DEE-7FB7-4208-A9AC-75A95DC8CF5F} Registry item
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7C9F46774DBF2F846999DB0CBD86FE9C, Registry item
C:\Documents and Settings\All Users\Application Data\aruxuv.inf Adware.IpWins
C:\Documents and Settings\All Users\Application Data\jiwumucyza.lib BackWebLite
C:\Documents and Settings\All Users\Application Data\ygexoqeliv.sys Advware.Adstart.b
C:\Documents and Settings\All Users\Documents\nyzahuzewe.ban Adlogix
C:\Documents and Settings\All Users\Documents\yrogevy.lib A-Trojan 2.0
C:\Documents and Settings\All Users\Documents\yzuwugani.inf Adware.IpWins
C:\Documents and Settings\b28n35c20.E100422\Application Data\banixonyw.scr Msiebho
C:\Documents and Settings\b28n35c20.E100422\Application Data\orowab.scr Msiebho
C:\Documents and Settings\b28n35c20.E100422\Application Data\tudumafufa.exe Adware.IpWins
C:\Documents and Settings\b28n35c20.E100422\Cookies\axebecel.dat BackWebLite
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Application Data\cobi.db PerMedia
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Application Data\edawiha.com PopMonster Description
C:\WINDOWS\System32\guxa.lib Adware.IpWins
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Application Data\sicut.bin Adware.IpWins
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temporary Internet Files\hide.inf BackWebLite
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temporary Internet Files\nydyjojo.ban BackWebLite
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temporary Internet Files\wafo.bat MPower
C:\Program Files\Fichiers communs\tugicibe.bat BackWebLite
C:\WINDOWS\System32\togyfevy._sy Adware.IpWins
C:\WINDOWS\acidepal.ban Advware.Adstart.b
C:\WINDOWS\asef.scr Adlogix
C:\Program Files\Fichiers communs\ridemelyr.dl BackWebLite
C:\Program Files\Fichiers communs\rucuzul._dl NavExcel
A voir également:
- Spyware Win 32
- 32 bits - Guide
- Power iso 32 bit - Télécharger - Gravure
- Win rar - Télécharger - Compression & Décompression
- Spyware doctor - Télécharger - Antivirus & Antimalwares
- Télécharger windows 7 32 bits usb - Télécharger - Systèmes d'exploitation
2 réponses
MERCI, j'ai l'impression que le message d'alerte virus antispyware a disparu... J'ai téléchargé malware antimalware et supprimé les fichiers infestés.
Voici mon rapport : faut il faire autre chose?
en tout cas merci beaucoup car je découvre les forums informatiques et leur efficacité...
Malwarebytes' Anti-Malware 1.29
Version de la base de données: 1306
Windows 5.1.2600 Service Pack 1
22/10/2008 20:32:26
mbam-log-2008-10-22 (20-32-20).txt
Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 92763
Temps écoulé: 20 minute(s), 44 second(s)
Processus mémoire infecté(s): 7
Module(s) mémoire infecté(s): 7
Clé(s) du Registre infectée(s): 9
Valeur(s) du Registre infectée(s): 13
Elément(s) de données du Registre infecté(s): 3
Dossier(s) infecté(s): 15
Fichier(s) infecté(s): 133
Processus mémoire infecté(s):
C:\WINDOWS\system32\lphcpawj0el75.exe (Trojan.FakeAlert) -> No action taken.
C:\Program Files\rhctawj0el75\rhctawj0el75.exe (Rogue.Multiple) -> No action taken.
C:\Program Files\XP_AntiSpyware\XP_AntiSpyware.exe (Rogue.XPAntiSpyware) -> No action taken.
C:\WINDOWS\system32\mspsmon.exe (Trojan.Agent) -> No action taken.
C:\WINDOWS\system32\pphcpawj0el75.exe (Trojan.FakeAlert) -> No action taken.
C:\WINDOWS\system32\_svchost.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt10.tmp.exe (Trojan.FakeAlert) -> No action taken.
Module(s) mémoire infecté(s):
C:\Program Files\rhctawj0el75\MFC71.dll (Rogue.Multiple) -> No action taken.
C:\Program Files\rhctawj0el75\msvcp71.dll (Rogue.Multiple) -> No action taken.
C:\Program Files\rhctawj0el75\msvcr71.dll (Rogue.Multiple) -> No action taken.
C:\Program Files\XP_AntiSpyware\AVEngn.dll (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\htmlayout.dll (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\pthreadVC2.dll (Rogue.XPAntiSpyware) -> No action taken.
C:\WINDOWS\system32\blphcpawj0el75.scr (Trojan.FakeAlert) -> No action taken.
Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\secdrv (Rootkit.Agents) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\secdrv (Rootkit.Agents) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\secdrv (Rootkit.Agents) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\xp_antispyware (Rogue.XPAntiSpyware) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\XP_Antispyware (Rogue.XPAntiSpyware) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\rhctawj0el75 (Rogue.Multiple) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\rhctawj0el75 (Rogue.Multiple) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Software Notifier (Rogue.Multiple) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AdvPowerMgmt (Trojan.Agent) -> No action taken.
Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\brastk (Trojan.FakeAlert.H) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\mspsmon (Trojan.FakeAlert.H) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\lphcpawj0el75 (Trojan.FakeAlert) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\smrhctawj0el75 (Rogue.Multiple) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\xp antispyware 2009 (Rogue.XPAntiSpyware) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\inrhctawj0el75 (Rogue.AntivirusXP2008) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\rhctawj0el75 (Rogue.AntivirusXP2008) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Jnskdfmf9eldfd (Trojan.Downloader) -> No action taken.
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\wintelupdate (Heuristics.Malware) -> No action taken.
HKEY_CURRENT_USER\Control Panel\Desktop\wallpaper (Hijack.Wallpaper) -> No action taken.
HKEY_CURRENT_USER\Control Panel\Desktop\originalwallpaper (Hijack.Wallpaper) -> No action taken.
HKEY_CURRENT_USER\Control Panel\Desktop\convertedwallpaper (Hijack.Wallpaper) -> No action taken.
HKEY_CURRENT_USER\Control Panel\Desktop\scrnsave.exe (Hijack.Wallpaper) -> No action taken.
Elément(s) de données du Registre infecté(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoFolderOptions (Hijack.FolderOptions) -> Bad: (1) Good: (0) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\NoDispBackgroundPage (Hijack.DisplayProperties) -> Bad: (1) Good: (0) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\NoDispScrSavPage (Hijack.DisplayProperties) -> Bad: (1) Good: (0) -> No action taken.
Dossier(s) infecté(s):
C:\Program Files\rhctawj0el75 (Rogue.Multiple) -> No action taken.
C:\Program Files\XP_AntiSpyware (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\data (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\Microsoft.VC80.CRT (Rogue.XPAntiSpyware) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Application Data\rhctawj0el75 (Rogue.Multiple) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Application Data\rhctawj0el75\Quarantine (Rogue.Multiple) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Application Data\rhctawj0el75\Quarantine\Autorun (Rogue.Multiple) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Application Data\rhctawj0el75\Quarantine\Autorun\HKCU (Rogue.Multiple) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Application Data\rhctawj0el75\Quarantine\Autorun\HKCU\RunOnce (Rogue.Multiple) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Application Data\rhctawj0el75\Quarantine\Autorun\HKLM (Rogue.Multiple) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Application Data\rhctawj0el75\Quarantine\Autorun\HKLM\RunOnce (Rogue.Multiple) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Application Data\rhctawj0el75\Quarantine\Autorun\StartMenuAllUsers (Rogue.Multiple) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Application Data\rhctawj0el75\Quarantine\Autorun\StartMenuCurrentUser (Rogue.Multiple) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Application Data\rhctawj0el75\Quarantine\BrowserObjects (Rogue.Multiple) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Application Data\rhctawj0el75\Quarantine\Packages (Rogue.Multiple) -> No action taken.
Fichier(s) infecté(s):
C:\WINDOWS\system32\brastk.exe (Trojan.FakeAlert.H) -> No action taken.
C:\WINDOWS\system32\mspsmon.exe (Trojan.FakeAlert.H) -> No action taken.
C:\WINDOWS\system32\lphcpawj0el75.exe (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\All Users\Application Data\vsxwfwte\hcvoryri.exe (Trojan.Agent) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1009323840.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1088617968.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1157737520.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1179603488.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1235429344.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1315424480.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1387348064.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1466542048.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\149713472.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1542230992.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1610148816.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1614377552.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1686939344.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1748177696.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1909024432.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\2048632928.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\2074988768.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\218532592.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\2215798992.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\2480234192.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\2525567616.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\268814000.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\2792174176.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\2931982960.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\2962144272.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\297626432.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\3098147584.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\3409117936.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\3418337536.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\3574094672.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\3653388800.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\3679329680.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\3732382496.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\377220992.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\3802303200.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\3814231408.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\3845794736.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\3966299232.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\3977892432.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\4030211296.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\4103417504.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\4105399520.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\4111846576.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\4137637584.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\4251610032.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\4280650976.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\453350624.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\462117648.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\529640432.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\606731392.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\671644896.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\730526800.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\738445600.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\749136432.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\821931392.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\868332704.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\CfgCom.dll (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\cxolixqb.exe (Trojan.Agent) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\pndontkp.exe (Trojan.Dropper) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\utiwbiky.exe.bak (Trojan.Agent) -> No action taken.
C:\Program Files\jxejeed\CfgCom.dll (Trojan.FakeAlert) -> No action taken.
C:\WINDOWS\karna.dat (Trojan.FakeAlert) -> No action taken.
C:\WINDOWS\system32\karna.dat (Trojan.FakeAlert) -> No action taken.
C:\WINDOWS\system32\drivers\secdrv.sys (Rootkit.Agents) -> No action taken.
C:\Program Files\rhctawj0el75\database.dat (Rogue.Multiple) -> No action taken.
C:\Program Files\rhctawj0el75\license.txt (Rogue.Multiple) -> No action taken.
C:\Program Files\rhctawj0el75\MFC71.dll (Rogue.Multiple) -> No action taken.
C:\Program Files\rhctawj0el75\MFC71ENU.DLL (Rogue.Multiple) -> No action taken.
C:\Program Files\rhctawj0el75\msvcp71.dll (Rogue.Multiple) -> No action taken.
C:\Program Files\rhctawj0el75\msvcr71.dll (Rogue.Multiple) -> No action taken.
C:\Program Files\rhctawj0el75\rhctawj0el75.exe (Rogue.Multiple) -> No action taken.
C:\Program Files\rhctawj0el75\rhctawj0el75.exe.local (Rogue.Multiple) -> No action taken.
C:\Program Files\rhctawj0el75\uninstall.exe (Rogue.Multiple) -> No action taken.
C:\Program Files\XP_AntiSpyware\AVEngn.dll (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\htmlayout.dll (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\pthreadVC2.dll (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\Uninstall.exe (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\wscui.cpl (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\XP_Antispyware.cfg (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\XP_AntiSpyware.exe (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\data\daily.cvd (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\Microsoft.VC80.CRT\Microsoft.VC80.CRT.manifest (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\Microsoft.VC80.CRT\msvcm80.dll (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\Microsoft.VC80.CRT\msvcp80.dll (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\Microsoft.VC80.CRT\msvcr80.dll (Rogue.XPAntiSpyware) -> No action taken.
C:\Documents and Settings\All Users\Bureau\AntiMalware2009.lnk (Rogue.AntiMalware2008) -> No action taken.
C:\WINDOWS\system32\drivers\beep.sys (Fake.Beep.Sys) -> No action taken.
C:\WINDOWS\system32\dllcache\beep.sys (Fake.Beep.Sys) -> No action taken.
C:\WINDOWS\system32\update251.exe (Heuristics.Malware) -> No action taken.
C:\WINDOWS\system32\update252.exe (Heuristics.Malware) -> No action taken.
C:\WINDOWS\system32\update290.exe (Heuristics.Malware) -> No action taken.
C:\WINDOWS\brastk.exe (Trojan.FakeAlert) -> No action taken.
C:\WINDOWS\system32\blphcpawj0el75.scr (Trojan.FakeAlert) -> No action taken.
C:\WINDOWS\system32\phcpawj0el75.bmp (Trojan.FakeAlert) -> No action taken.
C:\WINDOWS\system32\pphcpawj0el75.exe (Trojan.FakeAlert) -> No action taken.
C:\WINDOWS\system32\_scui.cpl (Trojan.FakeAlert) -> No action taken.
C:\WINDOWS\system32\wini104552661.exe (Trojan.FakeAlert) -> No action taken.
C:\WINDOWS\system32\_svchost.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Application Data\Microsoft\Internet Explorer\Quick Launch\AntiMalware2009.lnk (Rogue.AntiMalware2008) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Bureau\XP_AntiSpyware.lnk (Rogue.XPAntiSpyware) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Application Data\Microsoft\Internet Explorer\Quick Launch\XP_AntiSpyware.lnk (Rogue.XPAntiSpyware) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt1.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt2.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt3.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt4.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt5.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt6.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt7.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt8.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt9.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.ttB.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.ttC.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.ttD.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.ttE.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.ttF.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\ie_updates3r.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Bureau\ieupdr2.exe (Trojan.Agent) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt10.tmp.exe (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt2A.tmp.vbs (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt1.tmp.vbs (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt2.tmp.vbs (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt3.tmp.vbs (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt4.tmp.vbs (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt5.tmp.vbs (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt6.tmp.vbs (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt7.tmp.vbs (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt8.tmp.vbs (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt9.tmp.vbs (Trojan.FakeAlert) -> No action taken.
C:\WINDOWS\system32\drivers\ctl_w32.sys (Rootkit.Agent) -> No action taken.
Voici mon rapport : faut il faire autre chose?
en tout cas merci beaucoup car je découvre les forums informatiques et leur efficacité...
Malwarebytes' Anti-Malware 1.29
Version de la base de données: 1306
Windows 5.1.2600 Service Pack 1
22/10/2008 20:32:26
mbam-log-2008-10-22 (20-32-20).txt
Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 92763
Temps écoulé: 20 minute(s), 44 second(s)
Processus mémoire infecté(s): 7
Module(s) mémoire infecté(s): 7
Clé(s) du Registre infectée(s): 9
Valeur(s) du Registre infectée(s): 13
Elément(s) de données du Registre infecté(s): 3
Dossier(s) infecté(s): 15
Fichier(s) infecté(s): 133
Processus mémoire infecté(s):
C:\WINDOWS\system32\lphcpawj0el75.exe (Trojan.FakeAlert) -> No action taken.
C:\Program Files\rhctawj0el75\rhctawj0el75.exe (Rogue.Multiple) -> No action taken.
C:\Program Files\XP_AntiSpyware\XP_AntiSpyware.exe (Rogue.XPAntiSpyware) -> No action taken.
C:\WINDOWS\system32\mspsmon.exe (Trojan.Agent) -> No action taken.
C:\WINDOWS\system32\pphcpawj0el75.exe (Trojan.FakeAlert) -> No action taken.
C:\WINDOWS\system32\_svchost.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt10.tmp.exe (Trojan.FakeAlert) -> No action taken.
Module(s) mémoire infecté(s):
C:\Program Files\rhctawj0el75\MFC71.dll (Rogue.Multiple) -> No action taken.
C:\Program Files\rhctawj0el75\msvcp71.dll (Rogue.Multiple) -> No action taken.
C:\Program Files\rhctawj0el75\msvcr71.dll (Rogue.Multiple) -> No action taken.
C:\Program Files\XP_AntiSpyware\AVEngn.dll (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\htmlayout.dll (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\pthreadVC2.dll (Rogue.XPAntiSpyware) -> No action taken.
C:\WINDOWS\system32\blphcpawj0el75.scr (Trojan.FakeAlert) -> No action taken.
Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\secdrv (Rootkit.Agents) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\secdrv (Rootkit.Agents) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\secdrv (Rootkit.Agents) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\xp_antispyware (Rogue.XPAntiSpyware) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\XP_Antispyware (Rogue.XPAntiSpyware) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\rhctawj0el75 (Rogue.Multiple) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\rhctawj0el75 (Rogue.Multiple) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Software Notifier (Rogue.Multiple) -> No action taken.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AdvPowerMgmt (Trojan.Agent) -> No action taken.
Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\brastk (Trojan.FakeAlert.H) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\mspsmon (Trojan.FakeAlert.H) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\lphcpawj0el75 (Trojan.FakeAlert) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\smrhctawj0el75 (Rogue.Multiple) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\xp antispyware 2009 (Rogue.XPAntiSpyware) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\inrhctawj0el75 (Rogue.AntivirusXP2008) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\rhctawj0el75 (Rogue.AntivirusXP2008) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Jnskdfmf9eldfd (Trojan.Downloader) -> No action taken.
HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\wintelupdate (Heuristics.Malware) -> No action taken.
HKEY_CURRENT_USER\Control Panel\Desktop\wallpaper (Hijack.Wallpaper) -> No action taken.
HKEY_CURRENT_USER\Control Panel\Desktop\originalwallpaper (Hijack.Wallpaper) -> No action taken.
HKEY_CURRENT_USER\Control Panel\Desktop\convertedwallpaper (Hijack.Wallpaper) -> No action taken.
HKEY_CURRENT_USER\Control Panel\Desktop\scrnsave.exe (Hijack.Wallpaper) -> No action taken.
Elément(s) de données du Registre infecté(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoFolderOptions (Hijack.FolderOptions) -> Bad: (1) Good: (0) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\NoDispBackgroundPage (Hijack.DisplayProperties) -> Bad: (1) Good: (0) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\NoDispScrSavPage (Hijack.DisplayProperties) -> Bad: (1) Good: (0) -> No action taken.
Dossier(s) infecté(s):
C:\Program Files\rhctawj0el75 (Rogue.Multiple) -> No action taken.
C:\Program Files\XP_AntiSpyware (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\data (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\Microsoft.VC80.CRT (Rogue.XPAntiSpyware) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Application Data\rhctawj0el75 (Rogue.Multiple) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Application Data\rhctawj0el75\Quarantine (Rogue.Multiple) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Application Data\rhctawj0el75\Quarantine\Autorun (Rogue.Multiple) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Application Data\rhctawj0el75\Quarantine\Autorun\HKCU (Rogue.Multiple) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Application Data\rhctawj0el75\Quarantine\Autorun\HKCU\RunOnce (Rogue.Multiple) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Application Data\rhctawj0el75\Quarantine\Autorun\HKLM (Rogue.Multiple) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Application Data\rhctawj0el75\Quarantine\Autorun\HKLM\RunOnce (Rogue.Multiple) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Application Data\rhctawj0el75\Quarantine\Autorun\StartMenuAllUsers (Rogue.Multiple) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Application Data\rhctawj0el75\Quarantine\Autorun\StartMenuCurrentUser (Rogue.Multiple) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Application Data\rhctawj0el75\Quarantine\BrowserObjects (Rogue.Multiple) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Application Data\rhctawj0el75\Quarantine\Packages (Rogue.Multiple) -> No action taken.
Fichier(s) infecté(s):
C:\WINDOWS\system32\brastk.exe (Trojan.FakeAlert.H) -> No action taken.
C:\WINDOWS\system32\mspsmon.exe (Trojan.FakeAlert.H) -> No action taken.
C:\WINDOWS\system32\lphcpawj0el75.exe (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\All Users\Application Data\vsxwfwte\hcvoryri.exe (Trojan.Agent) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1009323840.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1088617968.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1157737520.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1179603488.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1235429344.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1315424480.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1387348064.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1466542048.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\149713472.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1542230992.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1610148816.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1614377552.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1686939344.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1748177696.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\1909024432.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\2048632928.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\2074988768.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\218532592.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\2215798992.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\2480234192.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\2525567616.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\268814000.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\2792174176.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\2931982960.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\2962144272.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\297626432.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\3098147584.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\3409117936.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\3418337536.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\3574094672.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\3653388800.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\3679329680.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\3732382496.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\377220992.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\3802303200.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\3814231408.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\3845794736.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\3966299232.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\3977892432.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\4030211296.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\4103417504.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\4105399520.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\4111846576.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\4137637584.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\4251610032.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\4280650976.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\453350624.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\462117648.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\529640432.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\606731392.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\671644896.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\730526800.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\738445600.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\749136432.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\821931392.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\868332704.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\CfgCom.dll (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\cxolixqb.exe (Trojan.Agent) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\pndontkp.exe (Trojan.Dropper) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\utiwbiky.exe.bak (Trojan.Agent) -> No action taken.
C:\Program Files\jxejeed\CfgCom.dll (Trojan.FakeAlert) -> No action taken.
C:\WINDOWS\karna.dat (Trojan.FakeAlert) -> No action taken.
C:\WINDOWS\system32\karna.dat (Trojan.FakeAlert) -> No action taken.
C:\WINDOWS\system32\drivers\secdrv.sys (Rootkit.Agents) -> No action taken.
C:\Program Files\rhctawj0el75\database.dat (Rogue.Multiple) -> No action taken.
C:\Program Files\rhctawj0el75\license.txt (Rogue.Multiple) -> No action taken.
C:\Program Files\rhctawj0el75\MFC71.dll (Rogue.Multiple) -> No action taken.
C:\Program Files\rhctawj0el75\MFC71ENU.DLL (Rogue.Multiple) -> No action taken.
C:\Program Files\rhctawj0el75\msvcp71.dll (Rogue.Multiple) -> No action taken.
C:\Program Files\rhctawj0el75\msvcr71.dll (Rogue.Multiple) -> No action taken.
C:\Program Files\rhctawj0el75\rhctawj0el75.exe (Rogue.Multiple) -> No action taken.
C:\Program Files\rhctawj0el75\rhctawj0el75.exe.local (Rogue.Multiple) -> No action taken.
C:\Program Files\rhctawj0el75\uninstall.exe (Rogue.Multiple) -> No action taken.
C:\Program Files\XP_AntiSpyware\AVEngn.dll (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\htmlayout.dll (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\pthreadVC2.dll (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\Uninstall.exe (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\wscui.cpl (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\XP_Antispyware.cfg (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\XP_AntiSpyware.exe (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\data\daily.cvd (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\Microsoft.VC80.CRT\Microsoft.VC80.CRT.manifest (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\Microsoft.VC80.CRT\msvcm80.dll (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\Microsoft.VC80.CRT\msvcp80.dll (Rogue.XPAntiSpyware) -> No action taken.
C:\Program Files\XP_AntiSpyware\Microsoft.VC80.CRT\msvcr80.dll (Rogue.XPAntiSpyware) -> No action taken.
C:\Documents and Settings\All Users\Bureau\AntiMalware2009.lnk (Rogue.AntiMalware2008) -> No action taken.
C:\WINDOWS\system32\drivers\beep.sys (Fake.Beep.Sys) -> No action taken.
C:\WINDOWS\system32\dllcache\beep.sys (Fake.Beep.Sys) -> No action taken.
C:\WINDOWS\system32\update251.exe (Heuristics.Malware) -> No action taken.
C:\WINDOWS\system32\update252.exe (Heuristics.Malware) -> No action taken.
C:\WINDOWS\system32\update290.exe (Heuristics.Malware) -> No action taken.
C:\WINDOWS\brastk.exe (Trojan.FakeAlert) -> No action taken.
C:\WINDOWS\system32\blphcpawj0el75.scr (Trojan.FakeAlert) -> No action taken.
C:\WINDOWS\system32\phcpawj0el75.bmp (Trojan.FakeAlert) -> No action taken.
C:\WINDOWS\system32\pphcpawj0el75.exe (Trojan.FakeAlert) -> No action taken.
C:\WINDOWS\system32\_scui.cpl (Trojan.FakeAlert) -> No action taken.
C:\WINDOWS\system32\wini104552661.exe (Trojan.FakeAlert) -> No action taken.
C:\WINDOWS\system32\_svchost.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Application Data\Microsoft\Internet Explorer\Quick Launch\AntiMalware2009.lnk (Rogue.AntiMalware2008) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Bureau\XP_AntiSpyware.lnk (Rogue.XPAntiSpyware) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Application Data\Microsoft\Internet Explorer\Quick Launch\XP_AntiSpyware.lnk (Rogue.XPAntiSpyware) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt1.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt2.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt3.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt4.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt5.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt6.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt7.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt8.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt9.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.ttB.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.ttC.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.ttD.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.ttE.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.ttF.tmp (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\ie_updates3r.exe (Trojan.Downloader) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Bureau\ieupdr2.exe (Trojan.Agent) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt10.tmp.exe (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt2A.tmp.vbs (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt1.tmp.vbs (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt2.tmp.vbs (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt3.tmp.vbs (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt4.tmp.vbs (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt5.tmp.vbs (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt6.tmp.vbs (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt7.tmp.vbs (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt8.tmp.vbs (Trojan.FakeAlert) -> No action taken.
C:\Documents and Settings\b28n35c20.E100422\Local Settings\Temp\.tt9.tmp.vbs (Trojan.FakeAlert) -> No action taken.
C:\WINDOWS\system32\drivers\ctl_w32.sys (Rootkit.Agent) -> No action taken.
du travail surement avec toi.
1)montre nous un rapport hijack
clique sur do a scan and save a logfile, tu obtiens un rapport que tu colles.
parfois alerte comme quoi, sans la fonction administrateur le rapport ne peut pas etre complet .
a ce moment relance hijack avec un clique droit sur le raccourci et executer en tant qu administrateur.
2)Telecharges malwares bytes anti malwares :
Malwarebytes Anti-Malware: http://www.malwarebytes.org/mbam/program/mbam-setup.exe
Tutoriel Malwarebytes Anti-Malware: https://forum.pcastuces.com/malwarebytes_antimalwares___tutoriel-f31s3.htm
fais comme indique,mise a jour , scan complet en mode sans echec et les rapports.
garde le et lance un scan tout les mois comme indique.
si tu as ad aware tu peux desinstalle car il ne reconnait plus grand chose.
1)montre nous un rapport hijack
clique sur do a scan and save a logfile, tu obtiens un rapport que tu colles.
parfois alerte comme quoi, sans la fonction administrateur le rapport ne peut pas etre complet .
a ce moment relance hijack avec un clique droit sur le raccourci et executer en tant qu administrateur.
2)Telecharges malwares bytes anti malwares :
Malwarebytes Anti-Malware: http://www.malwarebytes.org/mbam/program/mbam-setup.exe
Tutoriel Malwarebytes Anti-Malware: https://forum.pcastuces.com/malwarebytes_antimalwares___tutoriel-f31s3.htm
fais comme indique,mise a jour , scan complet en mode sans echec et les rapports.
garde le et lance un scan tout les mois comme indique.
si tu as ad aware tu peux desinstalle car il ne reconnait plus grand chose.
bon courage
mais a tu supprimer tous ce qu'il a trouvé ?