Malwarebytes' Anti-Malware 1.51.1.1800 www.malwarebytes.org Version de la base de données: 7210 Windows 6.0.6002 Service Pack 2 Internet Explorer 8.0.6001.19088 20/07/2011 16:23:35 mbam-log-2011-07-20 (16-23-35).txt Type d'examen: Examen complet (C:\|D:\|G:\|I:\|) Elément(s) analysé(s): 434987 Temps écoulé: 2 heure(s), 5 minute(s), 9 seconde(s) Processus mémoire infecté(s): 1 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 4 Valeur(s) du Registre infectée(s): 3 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 4 Processus mémoire infecté(s): c:\Users\Florian\AppData\Roaming\servicenow.exe (Maware.Packer) -> 4376 -> Unloaded process successfully. Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): HKEY_CLASSES_ROOT\CLSID\{D07EBBF7-B8CE-F3AB-3BC5-B2DD3C02ACB6} (Maware.Packer) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{D07EBBF7-B8CE-F3AB-3BC5-B2DD3C02ACB6} (Maware.Packer) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Active Setup\Installed Components\{D07EBBF7-B8CE-F3AB-3BC5-B2DD3C02ACB6} (Maware.Packer) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\Software\VB and VBA Program Settings\SrvID (Malware.Trace) -> Quarantined and deleted successfully. Valeur(s) du Registre infectée(s): HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Windows Checkpoint (Maware.Packer) -> Value: Windows Checkpoint -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\Windows Checkpoint (Maware.Packer) -> Value: Windows Checkpoint -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Windows Checkpoint (Maware.Packer) -> Value: Windows Checkpoint -> Quarantined and deleted successfully. Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): c:\Users\Florian\AppData\Roaming\servicenow.exe (Maware.Packer) -> Quarantined and deleted successfully. c:\Users\Florian\AppData\Local\assembly\dl3\LDCDMV1E.JZL\E2ETK6ZW.JJP\f8e789b6\003b0f99_fb53cb01\Utils.DLL (Adware.InstallPedia) -> Quarantined and deleted successfully. c:\Users\Florian\AppData\LocalLow\Sun\Java\deployment\cache\6.0\61\f573afd-1f2e4c4c (Maware.Packer) -> Quarantined and deleted successfully. c:\Users\Florian\AppData\Roaming\data.dat (Stolen.Data) -> Quarantined and deleted successfully.