Malwarebytes' Anti-Malware 1.50.1.1100 www.malwarebytes.org Version de la base de données: 6131 Windows 5.1.2600 Service Pack 2 Internet Explorer 6.0.2900.2180 22/03/2011 14:49:11 mbam-log-2011-03-22 (14-49-11).txt Type d'examen: Examen rapide Elément(s) analysé(s): 148258 Temps écoulé: 22 minute(s), 51 seconde(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 1 Valeur(s) du Registre infectée(s): 2 Elément(s) de données du Registre infecté(s): 3 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 9 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\tavgjvtf (Trojan.Agent) -> Delete on reboot. Valeur(s) du Registre infectée(s): HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Intel System Core (Spyware.Passwords.XGen) -> Value: Intel System Core -> Quarantined and deleted successfully. HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\MSConfig (Trojan.Agent) -> Value: MSConfig -> Quarantined and deleted successfully. Elément(s) de données du Registre infecté(s): HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\SystemRestore\DisableConfig (Windows.Tool.Disabled) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully. Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): c:\WINDOWS\system32\igfxpt32.exe (Spyware.Passwords.XGen) -> Delete on reboot. c:\WINDOWS\system32\drivers\tavgjvtf.sys (Trojan.Agent) -> Delete on reboot. c:\WINDOWS\system32\quickt86.exe (Trojan.Agent) -> Quarantined and deleted successfully. c:\documents and settings\NEO\local settings\temporary internet files\Content.IE5\ID434XCX\36[1].exe (Trojan.Dropper) -> Quarantined and deleted successfully. c:\documents and settings\networkservice\local settings\temporary internet files\Content.IE5\1LJE4R7C\8[1].zip (Spyware.Passwords.XGen) -> Quarantined and deleted successfully. c:\WINDOWS\system32\secupdat.dat (Backdoor.Bot) -> Delete on reboot. c:\documents and settings\NEO\local settings\Temp\utt10.tmp.exe (Trojan.Pakes) -> Quarantined and deleted successfully. c:\documents and settings\NEO\secupdat.dat (Worm.Autorun) -> Delete on reboot. c:\documents and settings\NEO\wgnriea.exe (Trojan.Agent) -> Quarantined and deleted successfully.