Pb adware Virtumonde dll - Page 2

Précédent
  • 1
  • 2
Réponse 21 / 23
bakroman Messages postés 15 Date d'inscription   Statut Membre
 
Je relance le scan ce soir et je vais essayer de faire mieux
0
Réponse 22 / 23
moK´s@ Messages postés 4410 Statut Membre 89
 
ok

@+
0
Réponse 23 / 23
bakroman Messages postés 15 Date d'inscription   Statut Membre
 
Voici mon rapport combo fix car j'ai encore un pb avec spyware secure !!! mon scan vundofix n'a rien donné...
merci pour votre aide

"Administrateur" - 2007-10-29 9:41:41 - ComboFix 07-07-23.2 - Service Pack 2 NTFS [SAFE MODE]

((((((((((((((((((((((((( Files Created from 2007-09-28 to 2007-10-29 )))))))))))))))))))))))))))))))

2007-10-29 09:36 <REP> d-------- C:\WINDOWS\pss
2007-10-29 09:25 <REP> d-------- C:\Program Files\Trend Micro
2007-10-21 19:56 90,112 --a------ C:\WINDOWS\system32\CNMCP50.exe
2007-10-21 19:56 8,704 --a------ C:\WINDOWS\system32\CNMVS50.DLL
2007-10-21 19:56 140,288 --a------ C:\WINDOWS\system32\CNMLM50.DLL
2007-10-21 19:56 <REP> d--h----- C:\DOCUME~1\ALLUSE~1\APPLIC~1\CanonBJ
2007-10-18 21:49 <REP> d-------- C:\ConvertTemp
2007-10-18 21:35 <REP> d-------- C:\DOCUME~1\LECORR~1\APPLIC~1\Samsung
2007-10-18 19:13 94,000 --a------ C:\WINDOWS\system32\drivers\ssm_mdm.sys
2007-10-18 19:13 8,336 --a------ C:\WINDOWS\system32\drivers\ssm_mdfl.sys
2007-10-18 19:13 6,176 --a------ C:\WINDOWS\system32\drivers\ssm_cmnt.sys
2007-10-18 19:13 6,176 --a------ C:\WINDOWS\system32\drivers\ssm_cm.sys
2007-10-18 19:13 58,320 --a------ C:\WINDOWS\system32\drivers\ssm_bus.sys
2007-10-18 19:13 5,840 --a------ C:\WINDOWS\system32\drivers\ssm_whnt.sys
2007-10-18 19:13 5,840 --a------ C:\WINDOWS\system32\drivers\ssm_wh.sys
2007-10-18 19:13 174,592 --a------ C:\WINDOWS\system32\framedyn.dll
2007-10-18 19:12 5,632 --a------ C:\WINDOWS\system32\drivers\StarOpen.sys
2007-10-18 19:12 <REP> d-------- C:\WINDOWS\system32\Samsung_USB_Drivers
2007-10-18 19:12 <REP> d-------- C:\Program Files\Samsung
2007-10-08 11:52 <REP> d-------- C:\Program Files\OpenOffice.org 2.3

(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

2007-10-29 08:06:29 -------- d-----w C:\Program Files\Mozilla Thunderbird
2007-10-28 11:46:46 -------- d-----w C:\Program Files\Windows Live Safety Center
2007-10-28 09:06:11 458,230 ----a-w C:\WINDOWS\system32\perfh00C.dat
2007-10-28 09:06:10 71,248 ----a-w C:\WINDOWS\system32\perfc00C.dat
2007-10-24 19:07:32 13,440 ----a-w C:\WINDOWS\system32\drivers\USBCRFT.SYS
2007-10-24 17:15:52 -------- d-----w C:\Program Files\Paint.NET
2007-10-22 14:55:04 -------- d-----w C:\Program Files\PC Tools Firewall Plus
2007-10-20 18:56:59 -------- d-----w C:\Program Files\eMule
2007-10-18 20:32:19 -------- d--h--w C:\Program Files\InstallShield Installation Information
2007-10-08 10:51:24 -------- d-----w C:\Program Files\OpenOffice.org 2.2
2007-10-01 15:05:51 108,144 ----a-w C:\WINDOWS\system32\CmdLineExt.dll
2007-10-01 15:01:36 -------- d-----w C:\Program Files\EA SPORTS
2007-09-14 11:14:01 -------- d-----w C:\Program Files\Fichiers communs\Symantec Shared
2007-09-14 11:13:20 -------- d-----w C:\Program Files\MeuhMeuhTV
2007-09-12 18:09:49 -------- d-----w C:\Program Files\adslTV
2007-09-08 09:52:06 -------- d-----w C:\Program Files\Azureus
2007-09-06 05:50:53 -------- d-----w C:\Program Files\Neuf
2007-09-06 05:50:43 -------- d-----w C:\Program Files\neuf telecom
2007-08-21 06:17:23 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll
2007-07-30 17:19:42 1,712,984 ----a-w C:\WINDOWS\system32\wuaueng.dll
2007-07-30 17:19:36 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll
2007-07-30 17:19:32 325,976 ----a-w C:\WINDOWS\system32\wucltui.dll
2007-07-30 17:19:28 203,096 ----a-w C:\WINDOWS\system32\wuweb.dll
2007-07-30 17:19:20 92,504 ----a-w C:\WINDOWS\system32\cdm.dll
2007-07-30 17:19:16 53,080 ----a-w C:\WINDOWS\system32\wuauclt.exe
2007-07-30 17:19:12 43,352 ----a-w C:\WINDOWS\system32\wups2.dll
2007-07-30 17:19:10 271,224 ----a-w C:\WINDOWS\system32\mucltui.dll
2007-07-30 17:19:04 207,736 ----a-w C:\WINDOWS\system32\muweb.dll
2007-07-30 17:18:40 33,624 ----a-w C:\WINDOWS\system32\wups.dll
2006-07-18 13:41:13 1,019,094 -csha-r C:\Program Files\serial.zip
2006-07-18 13:41:13 1,019,094 -csha-r C:\Program Files\serial.tde
2006-05-28 16:46:51 397,306 -csha-r C:\Program Files\wunauclt.zip
2006-05-28 16:46:51 397,306 -csha-r C:\Program Files\wunauclt.tbe

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))

*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C648A2B7-1EDF-442F-BEBE-03C5F793959D}]
C:\WINDOWS\system32\vtstu.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Dit"="Dit.exe" [2004-04-02 13:31 C:\WINDOWS\Dit.exe]
"AGRSMMSG"="AGRSMMSG.exe" [2004-06-29 09:06 C:\WINDOWS\AGRSMMSG.exe]
"Lexmark 2200 Series"="C:\Program Files\Lexmark 2200 Series\lxbvbmgr.exe" [2004-02-13 14:13]
"PCMService"="C:\Program Files\Home Cinema\PowerCinema\PCMService.exe" [2004-08-10 00:45]
"nwiz"="nwiz.exe" [2006-08-11 21:43 C:\WINDOWS\system32\nwiz.exe]
"Raccourci vers la page des propriétés de High Definition Audio"="HDAudPropShortcut.exe" [2004-03-17 16:10 C:\WINDOWS\system32\Hdaudpropshortcut.exe]
"Cmaudio"="cmicnfg.cpl" []
"LogitechVideoRepair"="C:\Program Files\Logitech\Video\ISStart.exe" [2005-06-08 15:24]
"LogitechVideoTray"="C:\Program Files\Logitech\Video\LogiTray.exe" [2005-06-08 15:14]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 00:11]
"Picasa Media Detector"="C:\Program Files\Picasa2\PicasaMediaDetector.exe" [2007-06-16 00:15]
"TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [2006-12-05 15:07]
"DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" [2006-11-12 11:48]
"nod32kui"="C:\Program Files\Eset\nod32kui.exe" [2006-12-08 19:57]
"PWRISOVM.EXE"="C:\Program Files\PowerISO\PWRISOVM.EXE" [2007-04-09 13:23]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2007-04-27 08:41]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [2007-05-14 23:22]
"UserFaultCheck"="%systemroot%\system32\dumprep 0 -u" []
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2007-06-28 08:14]
"00PCTFW"="C:\Program Files\PC Tools Firewall Plus\FirewallGUI.exe" [2007-04-28 07:13]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-05-11 02:06]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-05 13:00]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"EoRss"=
"EoEngine"=

R0 prohlp02;StarForce Protection Helper Driver v2;C:\WINDOWS\system32\drivers\prohlp02.sys
R0 prosync1;StarForce Protection Synchronization Driver v1;C:\WINDOWS\system32\drivers\prosync1.sys
R0 sfhlp01;StarForce Protection Helper Driver;C:\WINDOWS\system32\drivers\sfhlp01.sys
R2 winmgmt;Infrastructure de gestion Windows;C:\WINDOWS\system32\svchost.exe -k netsvcs
R3 CardReaderFilter;Card Reader Filter;\??\C:\WINDOWS\system32\Drivers\USBCRFT.SYS

**************************************************************************

catchme 0.3.1061 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-10-29 09:44:51
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden registry entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

Completion time: 2007-10-29 9:45:46
C:\ComboFix-quarantined-files.txt ... 2007-07-22 18:17
C:\ComboFix2.txt ... 2007-07-22 18:17

--- E O F ---
0
Précédent
  • 1
  • 2

Discussions similaires

Adobe acrobat fich api-ms-win-core-winrt-l1-1-0.dll manquant
crinik2002 -
fabul -

41 réponses
XINPUT1_3.dll manquant (missing)
Maxirugue -
dan -

39 réponses
Xinput1_3.dll
OhDatBrute -
OhDatBrute -

9 réponses
msdia80.dll c'est quoi ?
Jackfrost -
Io -

8 réponses
api-ms-win-core-winrt-I1-1-0.dII manquant
etty* -
fabul -

1 réponse