Bonjour nardino, merci de me prendre en charge =)
DOnc, voila le rapport de rkill :
This log file is located at C:\rkill.log.
Please post this only if requested to by the person helping you.
Otherwise you can close this log when you wish.
Ran as Admin on 10/08/2010 at 11:32:21.
Processes terminated by Rkill or while it was running:
C:\DOCUME~1\Admin\LOCALS~1\Temp\Mh1.exe
C:\Documents and Settings\Admin\Application Data\C21AC2CFAEC00D89EE16DB4B8D4787CE\secureapp70700.exe
C:\DOCUME~1\Admin\LOCALS~1\Temp\RtkBtMnt.exe
C:\Documents and Settings\Admin\Bureau\rkill.scr
Rkill completed on 10/08/2010 at 11:32:31.
Bizarrement quand j'ai exécuté le rapport rkill plus aucunes icônes de anti-malware doctor été présente en bas a droite dans la barre de menus bleue.
C'est normal ?
Dois-je continuer ?
Parlé trop vite l'icône est revenue ...
J'ai donc continué ce que vous m'avez demandé ...
Rapport :
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org
Version de la base de données: 4412
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
10/08/2010 14:13:25
mbam-log-2010-08-10 (14-13-25).txt
Type d'examen: Examen complet (C:\|)
Elément(s) analysé(s): 205920
Temps écoulé: 1 heure(s), 45 minute(s), 42 seconde(s)
Processus mémoire infecté(s): 3
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 4
Valeur(s) du Registre infectée(s): 5
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 21
Processus mémoire infecté(s):
C:\WINDOWS\Mjudua.exe (Trojan.Agent.Gen) -> Unloaded process successfully.
C:\Documents and Settings\Admin\Local Settings\Temp\Mh1.exe (Trojan.Agent.Gen) -> Unloaded process successfully.
C:\Documents and Settings\Admin\Application Data\C21AC2CFAEC00D89EE16DB4B8D4787CE\secureapp70700.exe (Trojan.Agent.Gen) -> Unloaded process successfully.
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\ZE18MW23GY (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Antimalware Doctor Inc (Rogue.AntimalwareDoctor) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Uninstall\Antimalware Doctor (Rogue.AntimalwareDoctor) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\XML (Trojan.FakeAlert) -> Quarantined and deleted successfully.
Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\jrmx9x1gml (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ze18mw23gy (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\secureapp70700.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\jgyo0w (Trojan.Downloader) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\*upd_debug.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
C:\WINDOWS\Mjudua.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
C:\Documents and Settings\Admin\Local Settings\Temp\Mh1.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
C:\Documents and Settings\Admin\Application Data\C21AC2CFAEC00D89EE16DB4B8D4787CE\secureapp70700.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
C:\Documents and Settings\Admin\Local Settings\Temp\Mh0.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
C:\Documents and Settings\Admin\Local Settings\Temp\Mh2.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
C:\Documents and Settings\Admin\Local Settings\Temp\Mh3.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
C:\Documents and Settings\Admin\Local Settings\Temp\Mh4.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
C:\Documents and Settings\Admin\Local Settings\Temp\Mhz.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
C:\Documents and Settings\Admin\Local Settings\Temp\duuiNBatMl.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\Documents and Settings\Admin\Local Settings\Temp\F6F0.tmp (Rootkit.Dropper) -> Quarantined and deleted successfully.
C:\Documents and Settings\Admin\Local Settings\Temp\F6F2.tmp (Rootkit.Dropper) -> Quarantined and deleted successfully.
C:\Documents and Settings\Admin\Local Settings\Temp\F6F8.tmp (Rootkit.Dropper) -> Quarantined and deleted successfully.
C:\Documents and Settings\Admin\Local Settings\Temp\4ks2p1sv.exe (Trojan.Sisproc.Gen) -> Quarantined and deleted successfully.
C:\Documents and Settings\Admin\Local Settings\Temp\xpnjvt9y.exe (Trojan.Sisproc.Gen) -> Quarantined and deleted successfully.
C:\Documents and Settings\Admin\Local Settings\Temporary Internet Files\Content.IE5\4QIZSBSM\secureapp70700[3].exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
C:\WINDOWS\Mjudub.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\27B4.tmp (Rootkit.TDSS) -> Quarantined and deleted successfully.
C:\Documents and Settings\Admin\Application Data\C21AC2CFAEC00D89EE16DB4B8D4787CE\upd_debug.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\WINDOWS\Tasks\{62C40AA6-4406-467a-A5A5-DFDF1B559B7A}.job (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\WINDOWS\Tasks\{8C3FDD81-7AE0-4605-A46A-2488B179F2A3}.job (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\Tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job (Trojan.Downloader) -> Quarantined and deleted successfully.
