Virus Help!!!

Virus Help!!! - Virus/Spywares - Windows & Software

Marsh Posté le 30-05-2011 à 19:18:42    

Bonjour,
 
depuis quelque jour internet déconne sur Ie8 et Chrome il marque erreur 104.
je télécharger Malwarebytes puisque je croie que c'este peut-être du a un virus
 
Voici le rapport
 
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
 
Version de la base de données: 6724
 
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702
 
30/05/2011 19:17:32
mbam-log-2011-05-30 (19-17-30).txt
 
Type d'examen: Examen complet (C:\|D:\|)
Elément(s) analysé(s): 182979
Temps écoulé: 15 minute(s), 38 seconde(s)
 
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 2
Clé(s) du Registre infectée(s): 11
Valeur(s) du Registre infectée(s): 42
Elément(s) de données du Registre infecté(s): 3
Dossier(s) infecté(s): 1
Fichier(s) infecté(s): 33
 
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
 
Module(s) mémoire infecté(s):
c:\WINDOWS\system32\sshnas21.dll (Trojan.Downloader.VCP) -> No action taken.
c:\WINDOWS\system32\o8hkjjf1.dll (Trojan.Ertfor) -> No action taken.
 
Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\CLSID\{24A123C3-A500-99BD-A120-04B53A2C8952} (Trojan.Ertfor) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{24A123C3-A500-99BD-A120-04B53A2C8952} (Trojan.Ertfor) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{24A123C3-A500-99BD-A120-04B53A2C8952} (Trojan.Ertfor) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{24A123C3-A500-99BD-A120-04B53A2C8952} (Trojan.Ertfor) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\SETUP.EXE (Malware.Packer.Gen) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\1U0WFOHZPQ (Trojan.FakeAlert.SA) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\4ECYTQ9SIC (Trojan.FakeAlert.SA) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Golden Palace Casino PT (Trojan.DNSChanger) -> No action taken.
HKEY_CURRENT_USER\Software\Microsoft\idgbn5xehg (Malware.Trace) -> No action taken.
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\ (Hijack.Zones) -> No action taken.
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\SSHNAS (Trojan.Renos) -> No action taken.
 
Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler\{24A123C3-A500-99BD-A120-04B53A2C8952} (Trojan.Ertfor) -> Value: {24A123C3-A500-99BD-A120-04B53A2C8952} -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\4ECYTQ9SIC (Trojan.Downloader.VCP) -> Value: 4ECYTQ9SIC -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\kccihrno.exe (Trojan.Agent) -> Value: kccihrno.exe -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Microsoft Driver Setup (Malware.Gen) -> Value: Microsoft Driver Setup -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\Microsoft Driver Setup (Malware.Gen) -> Value: Microsoft Driver Setup -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKbtc (Malware.Packer.Gen) -> Value: MKbtc -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKbtc (Malware.Packer.Gen) -> Value: MKbtc -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKcZ (Malware.Packer.Gen) -> Value: MKcZ -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKcZ (Malware.Packer.Gen) -> Value: MKcZ -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKetc (Malware.Packer.Gen) -> Value: MKetc -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKetc (Malware.Packer.Gen) -> Value: MKetc -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKcrc (Malware.Packer.Gen) -> Value: MKcrc -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKcrc (Malware.Packer.Gen) -> Value: MKcrc -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKaZ (Malware.Packer.Gen) -> Value: MKaZ -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKaZ (Malware.Packer.Gen) -> Value: MKaZ -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKexe (Malware.Packer.Gen) -> Value: MKexe -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKexe (Malware.Packer.Gen) -> Value: MKexe -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKZSc (Malware.Packer.Gen) -> Value: MKZSc -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKZSc (Malware.Packer.Gen) -> Value: MKZSc -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKfPc (Malware.Packer.Gen) -> Value: MKfPc -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKfPc (Malware.Packer.Gen) -> Value: MKfPc -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKctc (Malware.Packer.Gen) -> Value: MKctc -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKctc (Malware.Packer.Gen) -> Value: MKctc -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKasc (Malware.Packer.Gen) -> Value: MKasc -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKasc (Malware.Packer.Gen) -> Value: MKasc -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKayc (Malware.Packer.Gen) -> Value: MKayc -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKayc (Malware.Packer.Gen) -> Value: MKayc -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKdw+ (Malware.Packer.Gen) -> Value: MKdw+ -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKdw+ (Malware.Packer.Gen) -> Value: MKdw+ -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKevc (Malware.Packer.Gen) -> Value: MKevc -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKevc (Malware.Packer.Gen) -> Value: MKevc -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKfpe (Malware.Packer.Gen) -> Value: MKfpe -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKfpe (Malware.Packer.Gen) -> Value: MKfpe -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKfsc (Malware.Packer.Gen) -> Value: MKfsc -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\MKfsc (Malware.Packer.Gen) -> Value: MKfsc -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\HNUhaIXnrb (Malware.Packer.Gen) -> Value: HNUhaIXnrb -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\HNUhaIXnrb (Malware.Packer.Gen) -> Value: HNUhaIXnrb -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\HNUhaIXnfd (Malware.Packer.Gen) -> Value: HNUhaIXnfd -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\HNUhaIXnfd (Malware.Packer.Gen) -> Value: HNUhaIXnfd -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\WINID (Malware.Trace) -> Value: WINID -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\idstrf (Malware.Trace) -> Value: idstrf -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoFolderOptions (Hijack.FolderOptions) -> Value: NoFolderOptions -> No action taken.
 
Elément(s) de données du Registre infecté(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoSMHelp (PUM.Hijack.Help) -> Bad: (1) Good: (0) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\DisableRegistryTools (PUM.Hijack.Regedit) -> Bad: (1) Good: (0) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken.
 
Dossier(s) infecté(s):
c:\RECYCLER\s-1-5-21-0243936033-3052116371-381863308-1811 (Trojan.Agent) -> No action taken.
 
Fichier(s) infecté(s):
c:\WINDOWS\system32\sshnas21.dll (Trojan.Downloader.VCP) -> No action taken.
c:\WINDOWS\system32\o8hkjjf1.dll (Trojan.Ertfor) -> No action taken.
c:\Documents and Settings\Chris\Local Settings\Temp\Bli.exe (Trojan.Downloader.VCP) -> No action taken.
c:\documents and settings\Chris\local settings\Temp\kccihrno.exe (Trojan.Agent) -> No action taken.
c:\WINDOWS\aadrive32.exe (Malware.Gen) -> No action taken.
c:\WINDOWS\hexdump.exe (Malware.Packer.Gen) -> No action taken.
c:\WINDOWS\mdm.exe (Malware.Packer.Gen) -> No action taken.
c:\WINDOWS\sysedit.exe (Malware.Packer.Gen) -> No action taken.
c:\WINDOWS\login.exe (Malware.Packer.Gen) -> No action taken.
c:\WINDOWS\cmd.exe (Malware.Packer.Gen) -> No action taken.
c:\WINDOWS\system.exe (Malware.Packer.Gen) -> No action taken.
c:\WINDOWS\avp32.exe (Malware.Packer.Gen) -> No action taken.
c:\WINDOWS\win32.exe (Malware.Packer.Gen) -> No action taken.
c:\WINDOWS\msmgm.exe (Malware.Packer.Gen) -> No action taken.
c:\WINDOWS\drweb.exe (Malware.Packer.Gen) -> No action taken.
c:\WINDOWS\csrss.exe (Malware.Packer.Gen) -> No action taken.
c:\WINDOWS\nvsvc32.exe (Malware.Packer.Gen) -> No action taken.
c:\WINDOWS\setup.exe (Malware.Packer.Gen) -> No action taken.
c:\WINDOWS\winamp.exe (Malware.Packer.Gen) -> No action taken.
c:\WINDOWS\winlogon.exe (Malware.Packer.Gen) -> No action taken.
c:\documents and settings\Chris\local settings\Temp\fsdqgu.exe (Malware.Packer.Gen) -> No action taken.
c:\documents and settings\Chris\local settings\Temp\az9jkv.exe (Malware.Packer.Gen) -> No action taken.
c:\documents and settings\Chris\application data\12C.tmp (Trojan.Downloader) -> No action taken.
c:\documents and settings\Chris\application data\12D.tmp (Trojan.Proxy) -> No action taken.
c:\documents and settings\Chris\application data\12E.tmp (Malware.Gen) -> No action taken.
c:\documents and settings\Chris\application data\Ecusuw.exe (Malware.Gen) -> No action taken.
c:\documents and settings\Chris\mes documents\crack win xp\keyfinder.exe (RiskWare.Tool.CK) -> No action taken.
c:\RECYCLER\s-1-5-21-0243936033-3052116371-381863308-1811\vsbntlo.exe (Trojan.Downloader) -> No action taken.
c:\WINDOWS\Bmacua.exe (Trojan.Downloader.VCP) -> No action taken.
c:\WINDOWS\system32\oakoae.dll (Trojan.Ertfor) -> No action taken.
c:\WINDOWS\Tasks\{22116563-108c-42c0-a7ce-60161b75e508}.job (Trojan.Downloader) -> No action taken.
c:\WINDOWS\Tasks\{810401e2-dde0-454e-b0e2-aa89c9e5967c}.job (Trojan.FraudPack) -> No action taken.
c:\RECYCLER\s-1-5-21-0243936033-3052116371-381863308-1811\Desktop.ini (Trojan.Agent) -> No action taken.
 
 
Est-que je dois clique sur supprime la sélection
 
 
Merci D'avance

Reply

Marsh Posté le 30-05-2011 à 19:18:42   

Reply

Marsh Posté le 31-05-2011 à 21:55:25    

Il me semble que oui mais les experts sauront mieux te dire que moi :)

Reply

Marsh Posté le 31-05-2011 à 22:44:14    

Merci de refaire un topic sans log, et avec un titre qui respecte les règles de la session :jap: !

Reply

Sujets relatifs:

Leave a Replay

Make sure you enter the(*)required information where indicate.HTML code is not allowed