Rapport à analysé svp, virus!
moute-gab22
-
moute-gab22 -
moute-gab22 -
Bonjour,
Depuis un certain temps j'ai le prévilège de bénéficier d'une fenêtre derreur(fausse) me demandant daller downloader un AV sur un site internet( j'y suis jamais aller, sa doit etre un virus ).
Titre de la fenetre: ERREUR
Message: "Attention !Some Dangerous Trojan Horses Detected In Your System Microsoft Windows Xp Files Corrupted This May Lead To The Destruction Of Important Files... etc"
MBAM et Hijack ne peux pas etre installé car lors de linstallation vers la fin, une erreur se produit:
"C:\progam files\malwarebytes anti-malware\ssubtmr6.dll
Impossible denregistrer la bibliotheque DLL/OCX: regsvr32 a échoué et retourné le code derreur 0x3.
Appuyer sur réessayer a nouveau, Ignorer pour continuer malgré tout(déconseillé), ou abandonner pour annuler linstallation"
et jai 3 choix: Abort , Retry ou Ignore
Que dois-je faire ?
Merci de votre aide =)
NB:J'ai faite un combofix et voice le rapport de celui-ci:
ComboFix 08-09-20.02 - celeron 2008-09-20 17:25:12.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.208 [GMT -3:00]
Running from: C:\Documents and Settings\celeron\Desktop\ComboFix.exe
* Created a new restore point
[color=red][b]WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!/b/color
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\WINDOWS\BM7b2f64d1.txt
C:\WINDOWS\BM7b2f64d1.xml
C:\WINDOWS\cookies.ini
C:\WINDOWS\system32\asctbleq.ini
C:\WINDOWS\system32\dangueic.ini
C:\WINDOWS\system32\dnxcyxgk.ini
C:\WINDOWS\system32\fiseoprg.ini
C:\WINDOWS\system32\flfbhyry.ini
C:\WINDOWS\system32\gmxhujqw.ini
C:\WINDOWS\system32\kcjsdkag.ini
C:\WINDOWS\system32\lyahnqlc.ini
C:\WINDOWS\system32\mcrh.tmp
C:\WINDOWS\system32\nmrtkyas.ini
C:\WINDOWS\system32\NWHiPXbc.ini
C:\WINDOWS\system32\pecpawas.ini
C:\WINDOWS\system32\sboltoaq.ini
C:\WINDOWS\system32\tibjhnjc.ini
C:\WINDOWS\system32\wqklenja.ini
.
((((((((((((((((((((((((( Files Created from 2008-08-20 to 2008-09-20 )))))))))))))))))))))))))))))))
.
2008-09-20 17:50 . 2008-09-20 17:50 <DIR> d-------- C:\Documents and Settings\celeron.WINDOWSX-792CF0
2008-09-20 17:06 . 2008-09-20 17:06 <DIR> d-------- C:\Program Files\Trend Micro
2008-09-15 17:36 . 2008-09-19 11:59 8,627 --a------ C:\WINDOWS\system32\PAV_FOG.OPC
2008-09-15 16:46 . 2008-09-15 16:46 261 --a------ C:\WINDOWS\system32\PavCPL.dat
2008-09-15 16:43 . 2008-09-15 16:43 0 --a------ C:\WINDOWS\system32\drivers\wnmsav.dat
2008-09-15 16:39 . 2008-09-20 17:35 238,260 --a------ C:\WINDOWS\system32\drivers\APPFCONT.DAT.bck
2008-09-15 16:37 . 2008-09-20 17:35 1,224 --a------ C:\WINDOWS\system32\drivers\APPFLTR.CFG.bck
2008-09-15 00:09 . 2008-09-15 00:09 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\sentinel
2008-09-15 00:02 . 2008-09-20 17:35 238,260 --a------ C:\WINDOWS\system32\drivers\APPFCONT.DAT
2008-09-15 00:02 . 2007-07-11 11:39 191,672 --a------ C:\WINDOWS\system32\drivers\idsflt.sys
2008-09-15 00:02 . 2007-06-06 06:43 83,640 --a------ C:\WINDOWS\system32\drivers\pavdrv51.sys
2008-09-15 00:02 . 2007-05-11 09:33 51,256 --a------ C:\WINDOWS\system32\drivers\dsaflt.sys
2008-09-15 00:02 . 2007-05-11 09:33 37,304 --a------ C:\WINDOWS\system32\drivers\smsflt.sys
2008-09-15 00:02 . 2007-05-11 09:33 30,648 --a------ C:\WINDOWS\system32\drivers\wnmflt.sys
2008-09-15 00:02 . 2008-09-20 17:35 1,224 --a------ C:\WINDOWS\system32\drivers\APPFLTR.CFG
2008-09-15 00:01 . 2008-09-15 00:01 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Backup
2008-09-15 00:01 . 2007-05-11 09:33 132,920 --a------ C:\WINDOWS\system32\drivers\NETFLTDI.SYS
2008-09-15 00:01 . 2007-05-11 09:33 71,736 --a------ C:\WINDOWS\system32\drivers\APPFLT.SYS
2008-09-15 00:01 . 2007-05-11 09:33 22,072 --a------ C:\WINDOWS\system32\drivers\fnetmon.sys
2008-09-15 00:00 . 2003-10-22 18:23 446,464 --a------ C:\WINDOWS\system32\HHActiveX.dll
2008-09-15 00:00 . 2007-03-15 19:38 54,832 --a------ C:\WINDOWS\system32\pavcpl.cpl
2008-09-14 23:59 . 2008-09-14 23:59 <DIR> d-------- C:\WINDOWS\system32\PAV
2008-09-14 23:59 . 2008-09-14 23:59 <DIR> d-------- C:\Program Files\Panda Security
2008-09-14 23:59 . 2007-07-12 08:42 292,144 --a------ C:\WINDOWS\system32\PavSHook.dll
2008-09-14 23:59 . 2007-03-13 18:01 161,328 --a------ C:\WINDOWS\system32\TpUtil.dll
2008-09-14 23:59 . 2007-04-24 15:43 142,128 --a------ C:\WINDOWS\system32\drivers\netimflt.sys
2008-09-14 23:59 . 2007-02-08 11:53 107,568 --a------ C:\WINDOWS\system32\SYSTOOLS.DLL
2008-09-14 23:59 . 2007-02-28 18:04 63,024 --a------ C:\WINDOWS\system32\pavipc.dll
2008-09-14 23:59 . 2007-02-15 20:02 50,736 --a------ C:\WINDOWS\system32\avldr.dll
2008-09-14 23:59 . 2007-06-08 08:44 24,760 --a------ C:\WINDOWS\system32\drivers\cpoint.sys
2008-09-14 23:59 . 2007-04-24 16:43 1,990 --a------ C:\WINDOWS\system32\drivers\net_m32.inf
2008-09-14 23:29 . 2008-09-14 23:29 <DIR> d-------- C:\Program Files\Common Files\Panda Software
2008-09-14 23:29 . 2007-07-12 09:49 178,872 -ra------ C:\WINDOWS\system32\drivers\PavProc.sys
2008-09-14 23:29 . 2007-05-23 11:40 38,968 -ra------ C:\WINDOWS\system32\drivers\ShlDrv51.sys
2008-09-10 16:48 . 2007-10-30 18:47 10,624 --a------ C:\WINDOWS\system32\drivers\gameenum.sys
2008-09-10 16:48 . 2007-10-30 18:47 10,624 --a--c--- C:\WINDOWS\system32\dllcache\gameenum.sys
2008-09-10 16:48 . 2001-08-17 12:19 3,712 --a------ C:\WINDOWS\system32\drivers\ctljystk.sys
2008-09-10 16:48 . 2001-08-17 12:19 3,712 --a--c--- C:\WINDOWS\system32\dllcache\ctljystk.sys
2008-09-10 16:46 . 2001-08-17 22:36 495,616 --a------ C:\WINDOWS\system32\sblfx.dll
2008-09-10 16:46 . 2001-08-17 22:36 495,616 --a--c--- C:\WINDOWS\system32\dllcache\sblfx.dll
2008-09-10 16:46 . 2001-08-17 22:36 256,512 --a--c--- C:\WINDOWS\system32\dllcache\devcon32.dll
2008-09-10 16:46 . 2001-08-17 22:36 256,512 --a------ C:\WINDOWS\system32\devcon32.dll
2008-09-10 16:46 . 2005-01-10 10:15 20,992 --a------ C:\WINDOWS\system32\sfman32.dll
2008-09-10 16:46 . 2001-08-17 22:36 4,096 --a--c--- C:\WINDOWS\system32\dllcache\ctwdm32.dll
2008-09-10 16:46 . 2001-08-17 22:36 4,096 --a------ C:\WINDOWS\system32\ctwdm32.dll
2008-09-10 16:45 . 2001-07-21 18:49 2,104,298 --a------ C:\WINDOWS\system32\drivers\2gmgsmt.sf2
2008-09-10 16:45 . 2001-08-17 12:19 283,904 --a------ C:\WINDOWS\system32\drivers\emu10k1m.sys
2008-09-10 16:45 . 2001-08-17 12:19 283,904 --a--c--- C:\WINDOWS\system32\dllcache\emu10k1m.sys
2008-09-10 16:45 . 2001-08-17 12:19 36,480 --a------ C:\WINDOWS\system32\drivers\sfmanm.sys
2008-09-10 16:45 . 2001-08-17 12:19 36,480 --a--c--- C:\WINDOWS\system32\dllcache\sfmanm.sys
2008-09-10 16:45 . 2001-08-17 22:36 24,064 --a--c--- C:\WINDOWS\system32\dllcache\devldr32.exe
2008-09-10 16:45 . 2001-08-17 22:36 24,064 --a------ C:\WINDOWS\system32\devldr32.exe
2008-09-10 16:45 . 2001-08-17 12:19 6,912 --a------ C:\WINDOWS\system32\drivers\ctlfacem.sys
2008-09-10 16:45 . 2001-08-17 12:19 6,912 --a--c--- C:\WINDOWS\system32\dllcache\ctlfacem.sys
2008-08-28 15:02 . 2008-08-28 15:02 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Messenger Plus!
2008-08-28 14:58 . 2008-08-28 14:58 <DIR> d-------- C:\Program Files\Messenger Plus! Live
2008-08-20 03:55 . 2008-08-20 03:55 <DIR> d-------- C:\Documents and Settings\celeron\Application Data\vlc
2008-08-20 02:33 . 2008-08-20 02:33 <DIR> d-------- C:\Program Files\VideoLAN
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-09-19 02:38 --------- d-----w C:\Program Files\Diablo II
2008-09-17 22:45 --------- d-----w C:\Program Files\Steam
2008-09-16 02:10 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-09-15 19:35 --------- d-----w C:\Program Files\Common Files\Symantec Shared
2008-09-15 19:35 --------- d-----w C:\Documents and Settings\All Users\Application Data\Symantec
2008-09-15 02:59 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-09-15 02:54 --------- d-----w C:\Program Files\Symantec
2008-09-15 02:54 --------- d-----w C:\Program Files\Norton 360
2008-09-10 23:39 --------- d-----w C:\Documents and Settings\celeron\Application Data\LimeWire
2008-09-07 04:03 --------- d-----w C:\Documents and Settings\celeron\Application Data\U3
2008-09-04 02:05 --------- d-----w C:\Program Files\Spybot - Search & Destroy
2008-08-26 02:54 90,112 ----a-w C:\WINDOWS\DUMP9337.tmp
2008-08-20 00:05 --------- d-----w C:\Program Files\AviSynth 2.5
2008-07-27 05:04 --------- d-----w C:\Program Files\Teamspeak2_RC2
2008-07-27 05:04 --------- d-----w C:\Documents and Settings\celeron\Application Data\teamspeak2
2008-07-23 00:40 --------- d-----w C:\Program Files\LimeWire
2008-07-19 01:10 94,920 ----a-w C:\WINDOWS\system32\cdm.dll
2008-07-19 01:10 53,448 ----a-w C:\WINDOWS\system32\wuauclt.exe
2008-07-19 01:10 45,768 ----a-w C:\WINDOWS\system32\wups2.dll
2008-07-19 01:10 36,552 ----a-w C:\WINDOWS\system32\wups.dll
2008-07-19 01:09 563,912 ----a-w C:\WINDOWS\system32\wuapi.dll
2008-07-19 01:09 325,832 ----a-w C:\WINDOWS\system32\wucltui.dll
2008-07-19 01:09 205,000 ----a-w C:\WINDOWS\system32\wuweb.dll
2008-07-19 01:09 1,811,656 ----a-w C:\WINDOWS\system32\wuaueng.dll
2008-07-19 01:07 270,880 ----a-w C:\WINDOWS\system32\mucltui.dll
2008-07-19 01:07 210,976 ----a-w C:\WINDOWS\system32\muweb.dll
2008-06-29 03:34 43,520 ----a-w C:\WINDOWS\system32\CmdLineExt03.dll
2008-05-20 05:32 829,643 -csha-w C:\WINDOWS\system32\NWHiPXbc.ini2
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2007-10-31 15360]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2007-12-05 8523776]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avldr]
2007-02-15 20:02 50736 C:\WINDOWS\system32\avldr.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"= ctwdm32.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
SecurityProviders msapsspc.dll, schannel.dll, digest.dll, credssp.dll, msnsspc.dll
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Utility Tray.lnk.disabled]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Utility Tray.lnk.disabled
backup=C:\WINDOWS\pss\Utility Tray.lnk.disabledCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
--a------ 2007-12-05 01:41 8523776 C:\WINDOWS\system32\nvcpl.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"ccApp"="C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
"BootSkin Startup Jobs"="C:\Program Files\Stardock\WinCustomize\BootSkin\BootSkin.exe" /StartupJobs
"BM7b2f64d1"=Rundll32.exe "C:\WINDOWS\system32\todgbjns.dll",s
"781c574d"=rundll32.exe "C:\WINDOWS\system32\cieugnad.dll",b
"LVCOMSX"=C:\WINDOWS\system32\LVCOMSX.EXE
"NvCplDaemon"=RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
"NvMediaCenter"=RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
"nwiz"=nwiz.exe /install
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" -atboottime
"SiSPower"=Rundll32.exe SiSPower.dll,ModeAgent
"SiSUSBRG"=C:\WINDOWS\SiSUSBrg.exe
"SoundMan"=SOUNDMAN.EXE
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
"Symantec PIF AlertEng"="C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\Messenger\\msmsgs.exe"=
"C:\\Program Files\\LimeWire\\LimeWire.exe"=
"C:\\Program Files\\iTunes\\iTunes.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"C:\\WINDOWS\\pchealth\\helpctr\\binaries\\HelpCtr.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)
"AllowInboundTimestampRequest"= 1 (0x1)
"AllowInboundMaskRequest"= 1 (0x1)
"AllowInboundRouterRequest"= 1 (0x1)
"AllowOutboundDestinationUnreachable"= 1 (0x1)
"AllowOutboundSourceQuench"= 1 (0x1)
"AllowOutboundParameterProblem"= 1 (0x1)
"AllowOutboundTimeExceeded"= 1 (0x1)
"AllowRedirect"= 1 (0x1)
"AllowOutboundPacketTooBig"= 1 (0x1)
R1 APPFLT;App Filter Plugin;C:\WINDOWS\system32\Drivers\APPFLT.SYS [2007-05-11 71736]
R1 DSAFLT;DSA Filter Plugin;C:\WINDOWS\system32\Drivers\DSAFLT.SYS [2007-05-11 51256]
R1 FNETMON;NetMon Filter Plugin;C:\WINDOWS\system32\Drivers\fnetmon.SYS [2007-05-11 22072]
R1 IDSFLT;Ids Filter Plugin;C:\WINDOWS\system32\Drivers\IDSFLT.SYS [2007-07-11 191672]
R1 NETFLTDI;Panda Net Driver [TDI Layer];C:\WINDOWS\system32\Drivers\NETFLTDI.SYS [2007-05-11 09:33 132920]
R1 ShldDrv;Panda File Shield Driver;C:\WINDOWS\system32\Drivers\ShlDrv51.sys [2007-05-23 38968]
R1 SMSFLT;SMS Filter Plugin;C:\WINDOWS\system32\Drivers\SMSFLT.SYS [2007-05-11 37304]
R1 WNMFLT;Wifi Monitor Filter Plugin;C:\WINDOWS\system32\Drivers\WNMFLT.SYS [2007-05-11 30648]
R2 cpoint;Panda CPoint Driver;C:\WINDOWS\system32\drivers\cpoint.sys [2007-06-08 24760]
R2 PavProc;Panda Process Protection Driver;C:\WINDOWS\system32\DRIVERS\PavProc.sys [2007-07-12 178872]
R3 NETIMFLT;PANDA NDIS IM Filter Miniport;C:\WINDOWS\system32\DRIVERS\netimflt.sys [2007-04-24 142128]
R3 PavTPK.sys;PavTPK.sys;C:\WINDOWS\system32\PavTPK.sys [ ]
S3 AvFlt;Antivirus Filter Driver;C:\WINDOWS\system32\drivers\av5flt.sys [ ]
S3 PavSRK.sys;PavSRK.sys;C:\WINDOWS\system32\PavSRK.sys [ ]
S3 SISNICXP;SiS PCI Fast Ethernet Adapter Driver for NDIS51;C:\WINDOWS\system32\DRIVERS\sisnicxp.sys [2004-11-05 32768]
.
Contents of the 'Scheduled Tasks' folder
.
- - - - ORPHANS REMOVED - - - -
BHO-{9DCC7710-0351-4985-9BC4-34974D498094} - C:\WINDOWS\system32\cbXPiHWN.dll
BHO-{fd796fb6-ee52-4779-a194-b68bd03e5ed4} - C:\WINDOWS\system32\mhghhjgl.dll
.
------- Supplementary Scan -------
.
O16 -: {597F9140-0DC6-4657-A162-76EC0E7AEE81} - hxxp://www.meetstream.com/activex/28081/activebroadcast.cab
C:\WINDOWS\Downloaded Program Files\ActiveBroadcast.inf
C:\WINDOWS\Downloaded Program Files\ActiveBroadcast.ocx
O16 -: {BFD90062-6B5E-4F8F-87B1-5F022C14E32F} - hxxp://www.meetstream.com/activex/28091/activereceiver.cab
C:\WINDOWS\Downloaded Program Files\ActiveReceiver.inf
C:\WINDOWS\Downloaded Program Files\ActiveReceiver.ocx
O16 -: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} - hxxps://secure.gopetslive.com/dev/GoPetsWeb.cab
C:\WINDOWS\Downloaded Program Files\GoPetsWeb.inf
C:\WINDOWS\Downloaded Program Files\GoPetsWeb.ocx
O16 -: {FA30EC32-668B-4B60-B13C-4C84EB90C3C9} - hxxp://www.meetstream.com/activex/28081/activeid.cab
C:\WINDOWS\Downloaded Program Files\ActiveID.inf
C:\WINDOWS\Downloaded Program Files\ActiveID.ocx
.
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-20 17:50:48
Windows 5.1.2600 Service Pack 3, v.3244 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
C:\Program Files\Panda Security\Panda Internet Security 2008\TPSrv.exe
C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\PsCtrlS.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\PAVFNSVR.EXE
C:\Program Files\Common Files\Panda Software\PavShld\PavPrSrv.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\PAVSRV51.EXE
C:\Program Files\Panda Security\Panda Internet Security 2008\AntiSpam\pskmssvc.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\AVENGINE.EXE
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\FIREWALL\PSHost.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\PsImSvc.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\msiexec.exe
.
**************************************************************************
.
Completion time: 2008-09-20 18:00:54 - machine was rebooted
ComboFix-quarantined-files.txt 2008-09-20 20:59:47
Pre-Run: 1 251 176 448 bytes free
Post-Run: 1,269,358,592 bytes free
252 --- E O F --- 2008-04-30 06:02:06
Depuis un certain temps j'ai le prévilège de bénéficier d'une fenêtre derreur(fausse) me demandant daller downloader un AV sur un site internet( j'y suis jamais aller, sa doit etre un virus ).
Titre de la fenetre: ERREUR
Message: "Attention !Some Dangerous Trojan Horses Detected In Your System Microsoft Windows Xp Files Corrupted This May Lead To The Destruction Of Important Files... etc"
MBAM et Hijack ne peux pas etre installé car lors de linstallation vers la fin, une erreur se produit:
"C:\progam files\malwarebytes anti-malware\ssubtmr6.dll
Impossible denregistrer la bibliotheque DLL/OCX: regsvr32 a échoué et retourné le code derreur 0x3.
Appuyer sur réessayer a nouveau, Ignorer pour continuer malgré tout(déconseillé), ou abandonner pour annuler linstallation"
et jai 3 choix: Abort , Retry ou Ignore
Que dois-je faire ?
Merci de votre aide =)
NB:J'ai faite un combofix et voice le rapport de celui-ci:
ComboFix 08-09-20.02 - celeron 2008-09-20 17:25:12.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.208 [GMT -3:00]
Running from: C:\Documents and Settings\celeron\Desktop\ComboFix.exe
* Created a new restore point
[color=red][b]WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!/b/color
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\WINDOWS\BM7b2f64d1.txt
C:\WINDOWS\BM7b2f64d1.xml
C:\WINDOWS\cookies.ini
C:\WINDOWS\system32\asctbleq.ini
C:\WINDOWS\system32\dangueic.ini
C:\WINDOWS\system32\dnxcyxgk.ini
C:\WINDOWS\system32\fiseoprg.ini
C:\WINDOWS\system32\flfbhyry.ini
C:\WINDOWS\system32\gmxhujqw.ini
C:\WINDOWS\system32\kcjsdkag.ini
C:\WINDOWS\system32\lyahnqlc.ini
C:\WINDOWS\system32\mcrh.tmp
C:\WINDOWS\system32\nmrtkyas.ini
C:\WINDOWS\system32\NWHiPXbc.ini
C:\WINDOWS\system32\pecpawas.ini
C:\WINDOWS\system32\sboltoaq.ini
C:\WINDOWS\system32\tibjhnjc.ini
C:\WINDOWS\system32\wqklenja.ini
.
((((((((((((((((((((((((( Files Created from 2008-08-20 to 2008-09-20 )))))))))))))))))))))))))))))))
.
2008-09-20 17:50 . 2008-09-20 17:50 <DIR> d-------- C:\Documents and Settings\celeron.WINDOWSX-792CF0
2008-09-20 17:06 . 2008-09-20 17:06 <DIR> d-------- C:\Program Files\Trend Micro
2008-09-15 17:36 . 2008-09-19 11:59 8,627 --a------ C:\WINDOWS\system32\PAV_FOG.OPC
2008-09-15 16:46 . 2008-09-15 16:46 261 --a------ C:\WINDOWS\system32\PavCPL.dat
2008-09-15 16:43 . 2008-09-15 16:43 0 --a------ C:\WINDOWS\system32\drivers\wnmsav.dat
2008-09-15 16:39 . 2008-09-20 17:35 238,260 --a------ C:\WINDOWS\system32\drivers\APPFCONT.DAT.bck
2008-09-15 16:37 . 2008-09-20 17:35 1,224 --a------ C:\WINDOWS\system32\drivers\APPFLTR.CFG.bck
2008-09-15 00:09 . 2008-09-15 00:09 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\sentinel
2008-09-15 00:02 . 2008-09-20 17:35 238,260 --a------ C:\WINDOWS\system32\drivers\APPFCONT.DAT
2008-09-15 00:02 . 2007-07-11 11:39 191,672 --a------ C:\WINDOWS\system32\drivers\idsflt.sys
2008-09-15 00:02 . 2007-06-06 06:43 83,640 --a------ C:\WINDOWS\system32\drivers\pavdrv51.sys
2008-09-15 00:02 . 2007-05-11 09:33 51,256 --a------ C:\WINDOWS\system32\drivers\dsaflt.sys
2008-09-15 00:02 . 2007-05-11 09:33 37,304 --a------ C:\WINDOWS\system32\drivers\smsflt.sys
2008-09-15 00:02 . 2007-05-11 09:33 30,648 --a------ C:\WINDOWS\system32\drivers\wnmflt.sys
2008-09-15 00:02 . 2008-09-20 17:35 1,224 --a------ C:\WINDOWS\system32\drivers\APPFLTR.CFG
2008-09-15 00:01 . 2008-09-15 00:01 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Backup
2008-09-15 00:01 . 2007-05-11 09:33 132,920 --a------ C:\WINDOWS\system32\drivers\NETFLTDI.SYS
2008-09-15 00:01 . 2007-05-11 09:33 71,736 --a------ C:\WINDOWS\system32\drivers\APPFLT.SYS
2008-09-15 00:01 . 2007-05-11 09:33 22,072 --a------ C:\WINDOWS\system32\drivers\fnetmon.sys
2008-09-15 00:00 . 2003-10-22 18:23 446,464 --a------ C:\WINDOWS\system32\HHActiveX.dll
2008-09-15 00:00 . 2007-03-15 19:38 54,832 --a------ C:\WINDOWS\system32\pavcpl.cpl
2008-09-14 23:59 . 2008-09-14 23:59 <DIR> d-------- C:\WINDOWS\system32\PAV
2008-09-14 23:59 . 2008-09-14 23:59 <DIR> d-------- C:\Program Files\Panda Security
2008-09-14 23:59 . 2007-07-12 08:42 292,144 --a------ C:\WINDOWS\system32\PavSHook.dll
2008-09-14 23:59 . 2007-03-13 18:01 161,328 --a------ C:\WINDOWS\system32\TpUtil.dll
2008-09-14 23:59 . 2007-04-24 15:43 142,128 --a------ C:\WINDOWS\system32\drivers\netimflt.sys
2008-09-14 23:59 . 2007-02-08 11:53 107,568 --a------ C:\WINDOWS\system32\SYSTOOLS.DLL
2008-09-14 23:59 . 2007-02-28 18:04 63,024 --a------ C:\WINDOWS\system32\pavipc.dll
2008-09-14 23:59 . 2007-02-15 20:02 50,736 --a------ C:\WINDOWS\system32\avldr.dll
2008-09-14 23:59 . 2007-06-08 08:44 24,760 --a------ C:\WINDOWS\system32\drivers\cpoint.sys
2008-09-14 23:59 . 2007-04-24 16:43 1,990 --a------ C:\WINDOWS\system32\drivers\net_m32.inf
2008-09-14 23:29 . 2008-09-14 23:29 <DIR> d-------- C:\Program Files\Common Files\Panda Software
2008-09-14 23:29 . 2007-07-12 09:49 178,872 -ra------ C:\WINDOWS\system32\drivers\PavProc.sys
2008-09-14 23:29 . 2007-05-23 11:40 38,968 -ra------ C:\WINDOWS\system32\drivers\ShlDrv51.sys
2008-09-10 16:48 . 2007-10-30 18:47 10,624 --a------ C:\WINDOWS\system32\drivers\gameenum.sys
2008-09-10 16:48 . 2007-10-30 18:47 10,624 --a--c--- C:\WINDOWS\system32\dllcache\gameenum.sys
2008-09-10 16:48 . 2001-08-17 12:19 3,712 --a------ C:\WINDOWS\system32\drivers\ctljystk.sys
2008-09-10 16:48 . 2001-08-17 12:19 3,712 --a--c--- C:\WINDOWS\system32\dllcache\ctljystk.sys
2008-09-10 16:46 . 2001-08-17 22:36 495,616 --a------ C:\WINDOWS\system32\sblfx.dll
2008-09-10 16:46 . 2001-08-17 22:36 495,616 --a--c--- C:\WINDOWS\system32\dllcache\sblfx.dll
2008-09-10 16:46 . 2001-08-17 22:36 256,512 --a--c--- C:\WINDOWS\system32\dllcache\devcon32.dll
2008-09-10 16:46 . 2001-08-17 22:36 256,512 --a------ C:\WINDOWS\system32\devcon32.dll
2008-09-10 16:46 . 2005-01-10 10:15 20,992 --a------ C:\WINDOWS\system32\sfman32.dll
2008-09-10 16:46 . 2001-08-17 22:36 4,096 --a--c--- C:\WINDOWS\system32\dllcache\ctwdm32.dll
2008-09-10 16:46 . 2001-08-17 22:36 4,096 --a------ C:\WINDOWS\system32\ctwdm32.dll
2008-09-10 16:45 . 2001-07-21 18:49 2,104,298 --a------ C:\WINDOWS\system32\drivers\2gmgsmt.sf2
2008-09-10 16:45 . 2001-08-17 12:19 283,904 --a------ C:\WINDOWS\system32\drivers\emu10k1m.sys
2008-09-10 16:45 . 2001-08-17 12:19 283,904 --a--c--- C:\WINDOWS\system32\dllcache\emu10k1m.sys
2008-09-10 16:45 . 2001-08-17 12:19 36,480 --a------ C:\WINDOWS\system32\drivers\sfmanm.sys
2008-09-10 16:45 . 2001-08-17 12:19 36,480 --a--c--- C:\WINDOWS\system32\dllcache\sfmanm.sys
2008-09-10 16:45 . 2001-08-17 22:36 24,064 --a--c--- C:\WINDOWS\system32\dllcache\devldr32.exe
2008-09-10 16:45 . 2001-08-17 22:36 24,064 --a------ C:\WINDOWS\system32\devldr32.exe
2008-09-10 16:45 . 2001-08-17 12:19 6,912 --a------ C:\WINDOWS\system32\drivers\ctlfacem.sys
2008-09-10 16:45 . 2001-08-17 12:19 6,912 --a--c--- C:\WINDOWS\system32\dllcache\ctlfacem.sys
2008-08-28 15:02 . 2008-08-28 15:02 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Messenger Plus!
2008-08-28 14:58 . 2008-08-28 14:58 <DIR> d-------- C:\Program Files\Messenger Plus! Live
2008-08-20 03:55 . 2008-08-20 03:55 <DIR> d-------- C:\Documents and Settings\celeron\Application Data\vlc
2008-08-20 02:33 . 2008-08-20 02:33 <DIR> d-------- C:\Program Files\VideoLAN
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-09-19 02:38 --------- d-----w C:\Program Files\Diablo II
2008-09-17 22:45 --------- d-----w C:\Program Files\Steam
2008-09-16 02:10 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-09-15 19:35 --------- d-----w C:\Program Files\Common Files\Symantec Shared
2008-09-15 19:35 --------- d-----w C:\Documents and Settings\All Users\Application Data\Symantec
2008-09-15 02:59 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-09-15 02:54 --------- d-----w C:\Program Files\Symantec
2008-09-15 02:54 --------- d-----w C:\Program Files\Norton 360
2008-09-10 23:39 --------- d-----w C:\Documents and Settings\celeron\Application Data\LimeWire
2008-09-07 04:03 --------- d-----w C:\Documents and Settings\celeron\Application Data\U3
2008-09-04 02:05 --------- d-----w C:\Program Files\Spybot - Search & Destroy
2008-08-26 02:54 90,112 ----a-w C:\WINDOWS\DUMP9337.tmp
2008-08-20 00:05 --------- d-----w C:\Program Files\AviSynth 2.5
2008-07-27 05:04 --------- d-----w C:\Program Files\Teamspeak2_RC2
2008-07-27 05:04 --------- d-----w C:\Documents and Settings\celeron\Application Data\teamspeak2
2008-07-23 00:40 --------- d-----w C:\Program Files\LimeWire
2008-07-19 01:10 94,920 ----a-w C:\WINDOWS\system32\cdm.dll
2008-07-19 01:10 53,448 ----a-w C:\WINDOWS\system32\wuauclt.exe
2008-07-19 01:10 45,768 ----a-w C:\WINDOWS\system32\wups2.dll
2008-07-19 01:10 36,552 ----a-w C:\WINDOWS\system32\wups.dll
2008-07-19 01:09 563,912 ----a-w C:\WINDOWS\system32\wuapi.dll
2008-07-19 01:09 325,832 ----a-w C:\WINDOWS\system32\wucltui.dll
2008-07-19 01:09 205,000 ----a-w C:\WINDOWS\system32\wuweb.dll
2008-07-19 01:09 1,811,656 ----a-w C:\WINDOWS\system32\wuaueng.dll
2008-07-19 01:07 270,880 ----a-w C:\WINDOWS\system32\mucltui.dll
2008-07-19 01:07 210,976 ----a-w C:\WINDOWS\system32\muweb.dll
2008-06-29 03:34 43,520 ----a-w C:\WINDOWS\system32\CmdLineExt03.dll
2008-05-20 05:32 829,643 -csha-w C:\WINDOWS\system32\NWHiPXbc.ini2
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2007-10-31 15360]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2007-12-05 8523776]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avldr]
2007-02-15 20:02 50736 C:\WINDOWS\system32\avldr.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"= ctwdm32.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
SecurityProviders msapsspc.dll, schannel.dll, digest.dll, credssp.dll, msnsspc.dll
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Utility Tray.lnk.disabled]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Utility Tray.lnk.disabled
backup=C:\WINDOWS\pss\Utility Tray.lnk.disabledCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
--a------ 2007-12-05 01:41 8523776 C:\WINDOWS\system32\nvcpl.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"ccApp"="C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
"BootSkin Startup Jobs"="C:\Program Files\Stardock\WinCustomize\BootSkin\BootSkin.exe" /StartupJobs
"BM7b2f64d1"=Rundll32.exe "C:\WINDOWS\system32\todgbjns.dll",s
"781c574d"=rundll32.exe "C:\WINDOWS\system32\cieugnad.dll",b
"LVCOMSX"=C:\WINDOWS\system32\LVCOMSX.EXE
"NvCplDaemon"=RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
"NvMediaCenter"=RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
"nwiz"=nwiz.exe /install
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" -atboottime
"SiSPower"=Rundll32.exe SiSPower.dll,ModeAgent
"SiSUSBRG"=C:\WINDOWS\SiSUSBrg.exe
"SoundMan"=SOUNDMAN.EXE
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
"Symantec PIF AlertEng"="C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\Messenger\\msmsgs.exe"=
"C:\\Program Files\\LimeWire\\LimeWire.exe"=
"C:\\Program Files\\iTunes\\iTunes.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"C:\\WINDOWS\\pchealth\\helpctr\\binaries\\HelpCtr.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)
"AllowInboundTimestampRequest"= 1 (0x1)
"AllowInboundMaskRequest"= 1 (0x1)
"AllowInboundRouterRequest"= 1 (0x1)
"AllowOutboundDestinationUnreachable"= 1 (0x1)
"AllowOutboundSourceQuench"= 1 (0x1)
"AllowOutboundParameterProblem"= 1 (0x1)
"AllowOutboundTimeExceeded"= 1 (0x1)
"AllowRedirect"= 1 (0x1)
"AllowOutboundPacketTooBig"= 1 (0x1)
R1 APPFLT;App Filter Plugin;C:\WINDOWS\system32\Drivers\APPFLT.SYS [2007-05-11 71736]
R1 DSAFLT;DSA Filter Plugin;C:\WINDOWS\system32\Drivers\DSAFLT.SYS [2007-05-11 51256]
R1 FNETMON;NetMon Filter Plugin;C:\WINDOWS\system32\Drivers\fnetmon.SYS [2007-05-11 22072]
R1 IDSFLT;Ids Filter Plugin;C:\WINDOWS\system32\Drivers\IDSFLT.SYS [2007-07-11 191672]
R1 NETFLTDI;Panda Net Driver [TDI Layer];C:\WINDOWS\system32\Drivers\NETFLTDI.SYS [2007-05-11 09:33 132920]
R1 ShldDrv;Panda File Shield Driver;C:\WINDOWS\system32\Drivers\ShlDrv51.sys [2007-05-23 38968]
R1 SMSFLT;SMS Filter Plugin;C:\WINDOWS\system32\Drivers\SMSFLT.SYS [2007-05-11 37304]
R1 WNMFLT;Wifi Monitor Filter Plugin;C:\WINDOWS\system32\Drivers\WNMFLT.SYS [2007-05-11 30648]
R2 cpoint;Panda CPoint Driver;C:\WINDOWS\system32\drivers\cpoint.sys [2007-06-08 24760]
R2 PavProc;Panda Process Protection Driver;C:\WINDOWS\system32\DRIVERS\PavProc.sys [2007-07-12 178872]
R3 NETIMFLT;PANDA NDIS IM Filter Miniport;C:\WINDOWS\system32\DRIVERS\netimflt.sys [2007-04-24 142128]
R3 PavTPK.sys;PavTPK.sys;C:\WINDOWS\system32\PavTPK.sys [ ]
S3 AvFlt;Antivirus Filter Driver;C:\WINDOWS\system32\drivers\av5flt.sys [ ]
S3 PavSRK.sys;PavSRK.sys;C:\WINDOWS\system32\PavSRK.sys [ ]
S3 SISNICXP;SiS PCI Fast Ethernet Adapter Driver for NDIS51;C:\WINDOWS\system32\DRIVERS\sisnicxp.sys [2004-11-05 32768]
.
Contents of the 'Scheduled Tasks' folder
.
- - - - ORPHANS REMOVED - - - -
BHO-{9DCC7710-0351-4985-9BC4-34974D498094} - C:\WINDOWS\system32\cbXPiHWN.dll
BHO-{fd796fb6-ee52-4779-a194-b68bd03e5ed4} - C:\WINDOWS\system32\mhghhjgl.dll
.
------- Supplementary Scan -------
.
O16 -: {597F9140-0DC6-4657-A162-76EC0E7AEE81} - hxxp://www.meetstream.com/activex/28081/activebroadcast.cab
C:\WINDOWS\Downloaded Program Files\ActiveBroadcast.inf
C:\WINDOWS\Downloaded Program Files\ActiveBroadcast.ocx
O16 -: {BFD90062-6B5E-4F8F-87B1-5F022C14E32F} - hxxp://www.meetstream.com/activex/28091/activereceiver.cab
C:\WINDOWS\Downloaded Program Files\ActiveReceiver.inf
C:\WINDOWS\Downloaded Program Files\ActiveReceiver.ocx
O16 -: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} - hxxps://secure.gopetslive.com/dev/GoPetsWeb.cab
C:\WINDOWS\Downloaded Program Files\GoPetsWeb.inf
C:\WINDOWS\Downloaded Program Files\GoPetsWeb.ocx
O16 -: {FA30EC32-668B-4B60-B13C-4C84EB90C3C9} - hxxp://www.meetstream.com/activex/28081/activeid.cab
C:\WINDOWS\Downloaded Program Files\ActiveID.inf
C:\WINDOWS\Downloaded Program Files\ActiveID.ocx
.
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-20 17:50:48
Windows 5.1.2600 Service Pack 3, v.3244 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
C:\Program Files\Panda Security\Panda Internet Security 2008\TPSrv.exe
C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\PsCtrlS.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\PAVFNSVR.EXE
C:\Program Files\Common Files\Panda Software\PavShld\PavPrSrv.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\PAVSRV51.EXE
C:\Program Files\Panda Security\Panda Internet Security 2008\AntiSpam\pskmssvc.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\AVENGINE.EXE
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\FIREWALL\PSHost.exe
C:\Program Files\Panda Security\Panda Internet Security 2008\PsImSvc.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\msiexec.exe
.
**************************************************************************
.
Completion time: 2008-09-20 18:00:54 - machine was rebooted
ComboFix-quarantined-files.txt 2008-09-20 20:59:47
Pre-Run: 1 251 176 448 bytes free
Post-Run: 1,269,358,592 bytes free
252 --- E O F --- 2008-04-30 06:02:06
A voir également:
- Rapport à analysé svp, virus!
- Virus mcafee - Accueil - Piratage
- Analyse composant pc - Guide
- Analyse disque dur - Télécharger - Informations & Diagnostic
- Echec de l'analyse antivirus - Astuces et Solutions
- Analyse performance pc - Guide
