virus sur msn aider moi
Dernière réponse : dans Sécurité
je ne sais pas comment faire pour m'en sortir j'ai eu droit a ce message ca fait qq jours et depuis ce temps j'ai que des probleme avec mon msn ........s'est le message que j'ai recu .....lol j'ai fais une pose de ma soeur hier en cachette avec ma webcam regarde ca !!ttp://www.dungtrin.com/webcam_00002.com?.jpg ![:D]( ":D")
s'il vous plait aider moi je vous en pris j'ai fait faire un rapport "Nadia" - 2007-07-06 13:43:43 - ComboFix 07-07-04.4 - Service Pack 2
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
C:\WINDOWS\system32\mmrrxxcebb.dat
C:\WINDOWS\system32\mmrrxxcebb.exe
C:\WINDOWS\system32\mmrrxxcebb_nav.dat
C:\WINDOWS\system32\mmrrxxcebb_navps.dat
C:\WINDOWS\system32\nvs2.inf
((((((((((((((((((((((((( Files Created from 2007-06-06 to 2007-07-06 )))))))))))))))))))))))))))))))
2007-07-06 00:21 51,200 --a------ C:\WINDOWS\nircmd.exe
2007-07-06 00:13 <REP> d-------- C:\VundoFix Backups
2007-07-04 08:19 209,533 --a------ C:\winsfr.exe
2007-07-03 08:59 200 --a------ C:\winbbs.exe
2007-06-23 16:28 <REP> d-------- C:\Program Files\MessengerSkinner
2007-06-23 16:28 <REP> d-------- C:\DOCUME~1\Nadia\APPLIC~1\MessengerSkinner
2007-06-13 02:07 <REP> d-------- C:\Program Files\outlook express2
2007-06-06 12:17 <REP> d-------- C:\Program Files\Micro Application
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
2007-07-06 17:34:08 -------- d-----w C:\Program Files\Steam
2007-07-06 03:01:11 -------- d-----w C:\Program Files\Teamspeak2_RC2
2007-05-27 22:05:50 -------- d-----w C:\DOCUME~1\Nadia\APPLIC~1\CyberLink
2007-05-27 22:04:48 -------- d-----w C:\DOCUME~1\Nadia\APPLIC~1\dvdcss
2007-05-16 15:13:53 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll
2007-05-14 14:43:53 -------- d-----w C:\Program Files\Numark Cue
2007-05-08 19:40:23 -------- d-----w C:\Program Files\ABBYY FineReader 5.0 Sprint
2007-05-08 19:40:08 -------- d-----w C:\Program Files\ABBYY FineReader 6.0
2007-05-08 19:39:46 -------- d-----w C:\Program Files\FaxTools
2007-05-08 19:39:41 -------- d--h--w C:\Program Files\InstallShield Installation Information
2007-05-08 19:16:57 -------- d-----w C:\Program Files\Lexmark 1200 Series
2007-05-06 23:59:54 -------- d-----w C:\DOCUME~1\Nadia\APPLIC~1\AdobeUM
2007-05-04 03:19:51 118,784 ------r C:\WINDOWS\bwUnin-7.2.0.137-8876480SL.exe
2007-04-25 14:22:35 144,896 ----a-w C:\WINDOWS\system32\schannel.dll
2007-04-21 04:18:17 48,820 ----a-w C:\WINDOWS\system32\perfc00C.dat
2007-04-21 04:18:17 367,988 ----a-w C:\WINDOWS\system32\perfh00C.dat
2007-04-20 03:38:23 270,336 ----a-w C:\WINDOWS\system32\imon.dll
2007-04-20 02:51:40 0 --sha-r C:\MSDOS.SYS
2007-04-20 02:51:40 0 --sha-r C:\IO.SYS
2007-04-20 02:51:40 0 ----a-w C:\CONFIG.SYS
2007-04-20 02:51:40 0 ----a-w C:\AUTOEXEC.BAT
2007-04-20 02:47:27 21,892 ----a-w C:\WINDOWS\system32\emptyregdb.dat
2007-04-18 16:14:18 2,854,400 ----a-w C:\WINDOWS\system32\msi.dll
2007-04-17 02:47:36 33,624 ----a-w C:\WINDOWS\system32\wups.dll
2007-04-17 02:45:54 1,710,936 ----a-w C:\WINDOWS\system32\wuaueng.dll
2007-04-17 02:45:48 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll
2007-04-17 02:45:42 325,976 ----a-w C:\WINDOWS\system32\wucltui.dll
2007-04-17 02:45:36 203,096 ----a-w C:\WINDOWS\system32\wuweb.dll
2007-04-17 02:45:28 92,504 ----a-w C:\WINDOWS\system32\cdm.dll
2007-04-17 02:45:20 53,080 ----a-w C:\WINDOWS\system32\wuauclt.exe
2007-04-17 02:45:20 43,352 ----a-w C:\WINDOWS\system32\wups2.dll
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
2004-12-14 01:56 63136 --a------ C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
2005-05-31 01:04 853672 --a------ C:\PROGRA~1\SPYBOT~1\SDHelper.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
2006-07-07 12:29 324416 --a------ C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"nod32kui"="C:\Program Files\Eset\nod32kui.exe" [2007-04-19 23:38]
"AnyDVD"="C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe" [2007-04-19 23:49]
"RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" [2005-01-12 03:01]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [2004-12-20 14:41]
"SoundMan"="SOUNDMAN.EXE" [2006-11-17 05:42 C:\WINDOWS\soundman.exe]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe" [2005-04-13 03:48]
"nwiz"="nwiz.exe" [2006-09-18 16:25 C:\WINDOWS\system32\nwiz.exe]
"Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" [2006-05-10 09:48 C:\WINDOWS\KHALMNPR.Exe]
"@"="" []
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.exe" [2007-01-19 12:55]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" []
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-13 12:24]
"Steam"="c:\program files\steam\steam.exe" [2007-06-27 22:03]
"LDM"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" [2007-05-03 23:19]
"mmrrxxcebb"="c:\windows\system32\mmrrxxcebb.exe" []
**************************************************************************
catchme 0.3.915 W2K/XP/Vista - rootkit detector by Gmer, http://www.gmer.net
Rootkit scan 2007-07-06 13:46:06
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
Completion time: 2007-07-06 13:46:47
C:\ComboFix-quarantined-files.txt ... 2007-07-06 13:46
C:\ComboFix2.txt ... 2007-07-06 00:25
--- E O F ---
s'il vous plait aider moi je vous en pris j'ai fait faire un rapport "Nadia" - 2007-07-06 13:43:43 - ComboFix 07-07-04.4 - Service Pack 2 ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
C:\WINDOWS\system32\mmrrxxcebb.dat
C:\WINDOWS\system32\mmrrxxcebb.exe
C:\WINDOWS\system32\mmrrxxcebb_nav.dat
C:\WINDOWS\system32\mmrrxxcebb_navps.dat
C:\WINDOWS\system32\nvs2.inf
((((((((((((((((((((((((( Files Created from 2007-06-06 to 2007-07-06 )))))))))))))))))))))))))))))))
2007-07-06 00:21 51,200 --a------ C:\WINDOWS\nircmd.exe
2007-07-06 00:13 <REP> d-------- C:\VundoFix Backups
2007-07-04 08:19 209,533 --a------ C:\winsfr.exe
2007-07-03 08:59 200 --a------ C:\winbbs.exe
2007-06-23 16:28 <REP> d-------- C:\Program Files\MessengerSkinner
2007-06-23 16:28 <REP> d-------- C:\DOCUME~1\Nadia\APPLIC~1\MessengerSkinner
2007-06-13 02:07 <REP> d-------- C:\Program Files\outlook express2
2007-06-06 12:17 <REP> d-------- C:\Program Files\Micro Application
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
2007-07-06 17:34:08 -------- d-----w C:\Program Files\Steam
2007-07-06 03:01:11 -------- d-----w C:\Program Files\Teamspeak2_RC2
2007-05-27 22:05:50 -------- d-----w C:\DOCUME~1\Nadia\APPLIC~1\CyberLink
2007-05-27 22:04:48 -------- d-----w C:\DOCUME~1\Nadia\APPLIC~1\dvdcss
2007-05-16 15:13:53 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll
2007-05-14 14:43:53 -------- d-----w C:\Program Files\Numark Cue
2007-05-08 19:40:23 -------- d-----w C:\Program Files\ABBYY FineReader 5.0 Sprint
2007-05-08 19:40:08 -------- d-----w C:\Program Files\ABBYY FineReader 6.0
2007-05-08 19:39:46 -------- d-----w C:\Program Files\FaxTools
2007-05-08 19:39:41 -------- d--h--w C:\Program Files\InstallShield Installation Information
2007-05-08 19:16:57 -------- d-----w C:\Program Files\Lexmark 1200 Series
2007-05-06 23:59:54 -------- d-----w C:\DOCUME~1\Nadia\APPLIC~1\AdobeUM
2007-05-04 03:19:51 118,784 ------r C:\WINDOWS\bwUnin-7.2.0.137-8876480SL.exe
2007-04-25 14:22:35 144,896 ----a-w C:\WINDOWS\system32\schannel.dll
2007-04-21 04:18:17 48,820 ----a-w C:\WINDOWS\system32\perfc00C.dat
2007-04-21 04:18:17 367,988 ----a-w C:\WINDOWS\system32\perfh00C.dat
2007-04-20 03:38:23 270,336 ----a-w C:\WINDOWS\system32\imon.dll
2007-04-20 02:51:40 0 --sha-r C:\MSDOS.SYS
2007-04-20 02:51:40 0 --sha-r C:\IO.SYS
2007-04-20 02:51:40 0 ----a-w C:\CONFIG.SYS
2007-04-20 02:51:40 0 ----a-w C:\AUTOEXEC.BAT
2007-04-20 02:47:27 21,892 ----a-w C:\WINDOWS\system32\emptyregdb.dat
2007-04-18 16:14:18 2,854,400 ----a-w C:\WINDOWS\system32\msi.dll
2007-04-17 02:47:36 33,624 ----a-w C:\WINDOWS\system32\wups.dll
2007-04-17 02:45:54 1,710,936 ----a-w C:\WINDOWS\system32\wuaueng.dll
2007-04-17 02:45:48 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll
2007-04-17 02:45:42 325,976 ----a-w C:\WINDOWS\system32\wucltui.dll
2007-04-17 02:45:36 203,096 ----a-w C:\WINDOWS\system32\wuweb.dll
2007-04-17 02:45:28 92,504 ----a-w C:\WINDOWS\system32\cdm.dll
2007-04-17 02:45:20 53,080 ----a-w C:\WINDOWS\system32\wuauclt.exe
2007-04-17 02:45:20 43,352 ----a-w C:\WINDOWS\system32\wups2.dll
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
2004-12-14 01:56 63136 --a------ C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
2005-05-31 01:04 853672 --a------ C:\PROGRA~1\SPYBOT~1\SDHelper.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
2006-07-07 12:29 324416 --a------ C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"nod32kui"="C:\Program Files\Eset\nod32kui.exe" [2007-04-19 23:38]
"AnyDVD"="C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe" [2007-04-19 23:49]
"RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" [2005-01-12 03:01]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [2004-12-20 14:41]
"SoundMan"="SOUNDMAN.EXE" [2006-11-17 05:42 C:\WINDOWS\soundman.exe]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe" [2005-04-13 03:48]
"nwiz"="nwiz.exe" [2006-09-18 16:25 C:\WINDOWS\system32\nwiz.exe]
"Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" [2006-05-10 09:48 C:\WINDOWS\KHALMNPR.Exe]
"@"="" []
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.exe" [2007-01-19 12:55]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" []
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-13 12:24]
"Steam"="c:\program files\steam\steam.exe" [2007-06-27 22:03]
"LDM"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" [2007-05-03 23:19]
"mmrrxxcebb"="c:\windows\system32\mmrrxxcebb.exe" []
**************************************************************************
catchme 0.3.915 W2K/XP/Vista - rootkit detector by Gmer, http://www.gmer.net
Rootkit scan 2007-07-06 13:46:06
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
Completion time: 2007-07-06 13:46:47
C:\ComboFix-quarantined-files.txt ... 2007-07-06 13:46
C:\ComboFix2.txt ... 2007-07-06 00:25
--- E O F ---
Autres pages sur : virus msn aider
Lassé par la pub ? Créez un compte
j'ai fait également un autre scan hijackthis le voici
"Nadia" - 2007-07-06 13:43:43 - ComboFix 07-07-04.4 - Service Pack 2
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
C:\WINDOWS\system32\mmrrxxcebb.dat
C:\WINDOWS\system32\mmrrxxcebb.exe
C:\WINDOWS\system32\mmrrxxcebb_nav.dat
C:\WINDOWS\system32\mmrrxxcebb_navps.dat
C:\WINDOWS\system32\nvs2.inf
((((((((((((((((((((((((( Files Created from 2007-06-06 to 2007-07-06 )))))))))))))))))))))))))))))))
2007-07-06 00:21 51,200 --a------ C:\WINDOWS\nircmd.exe
2007-07-06 00:13 <REP> d-------- C:\VundoFix Backups
2007-07-04 08:19 209,533 --a------ C:\winsfr.exe
2007-07-03 08:59 200 --a------ C:\winbbs.exe
2007-06-23 16:28 <REP> d-------- C:\Program Files\MessengerSkinner
2007-06-23 16:28 <REP> d-------- C:\DOCUME~1\Nadia\APPLIC~1\MessengerSkinner
2007-06-13 02:07 <REP> d-------- C:\Program Files\outlook express2
2007-06-06 12:17 <REP> d-------- C:\Program Files\Micro Application
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
2007-07-06 17:34:08 -------- d-----w C:\Program Files\Steam
2007-07-06 03:01:11 -------- d-----w C:\Program Files\Teamspeak2_RC2
2007-05-27 22:05:50 -------- d-----w C:\DOCUME~1\Nadia\APPLIC~1\CyberLink
2007-05-27 22:04:48 -------- d-----w C:\DOCUME~1\Nadia\APPLIC~1\dvdcss
2007-05-16 15:13:53 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll
2007-05-14 14:43:53 -------- d-----w C:\Program Files\Numark Cue
2007-05-08 19:40:23 -------- d-----w C:\Program Files\ABBYY FineReader 5.0 Sprint
2007-05-08 19:40:08 -------- d-----w C:\Program Files\ABBYY FineReader 6.0
2007-05-08 19:39:46 -------- d-----w C:\Program Files\FaxTools
2007-05-08 19:39:41 -------- d--h--w C:\Program Files\InstallShield Installation Information
2007-05-08 19:16:57 -------- d-----w C:\Program Files\Lexmark 1200 Series
2007-05-06 23:59:54 -------- d-----w C:\DOCUME~1\Nadia\APPLIC~1\AdobeUM
2007-05-04 03:19:51 118,784 ------r C:\WINDOWS\bwUnin-7.2.0.137-8876480SL.exe
2007-04-25 14:22:35 144,896 ----a-w C:\WINDOWS\system32\schannel.dll
2007-04-21 04:18:17 48,820 ----a-w C:\WINDOWS\system32\perfc00C.dat
2007-04-21 04:18:17 367,988 ----a-w C:\WINDOWS\system32\perfh00C.dat
2007-04-20 03:38:23 270,336 ----a-w C:\WINDOWS\system32\imon.dll
2007-04-20 02:51:40 0 --sha-r C:\MSDOS.SYS
2007-04-20 02:51:40 0 --sha-r C:\IO.SYS
2007-04-20 02:51:40 0 ----a-w C:\CONFIG.SYS
2007-04-20 02:51:40 0 ----a-w C:\AUTOEXEC.BAT
2007-04-20 02:47:27 21,892 ----a-w C:\WINDOWS\system32\emptyregdb.dat
2007-04-18 16:14:18 2,854,400 ----a-w C:\WINDOWS\system32\msi.dll
2007-04-17 02:47:36 33,624 ----a-w C:\WINDOWS\system32\wups.dll
2007-04-17 02:45:54 1,710,936 ----a-w C:\WINDOWS\system32\wuaueng.dll
2007-04-17 02:45:48 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll
2007-04-17 02:45:42 325,976 ----a-w C:\WINDOWS\system32\wucltui.dll
2007-04-17 02:45:36 203,096 ----a-w C:\WINDOWS\system32\wuweb.dll
2007-04-17 02:45:28 92,504 ----a-w C:\WINDOWS\system32\cdm.dll
2007-04-17 02:45:20 53,080 ----a-w C:\WINDOWS\system32\wuauclt.exe
2007-04-17 02:45:20 43,352 ----a-w C:\WINDOWS\system32\wups2.dll
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
2004-12-14 01:56 63136 --a------ C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
2005-05-31 01:04 853672 --a------ C:\PROGRA~1\SPYBOT~1\SDHelper.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
2006-07-07 12:29 324416 --a------ C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"nod32kui"="C:\Program Files\Eset\nod32kui.exe" [2007-04-19 23:38]
"AnyDVD"="C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe" [2007-04-19 23:49]
"RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" [2005-01-12 03:01]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [2004-12-20 14:41]
"SoundMan"="SOUNDMAN.EXE" [2006-11-17 05:42 C:\WINDOWS\soundman.exe]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe" [2005-04-13 03:48]
"nwiz"="nwiz.exe" [2006-09-18 16:25 C:\WINDOWS\system32\nwiz.exe]
"Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" [2006-05-10 09:48 C:\WINDOWS\KHALMNPR.Exe]
"@"="" []
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.exe" [2007-01-19 12:55]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" []
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-13 12:24]
"Steam"="c:\program files\steam\steam.exe" [2007-06-27 22:03]
"LDM"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" [2007-05-03 23:19]
"mmrrxxcebb"="c:\windows\system32\mmrrxxcebb.exe" []
**************************************************************************
catchme 0.3.915 W2K/XP/Vista - rootkit detector by Gmer, http://www.gmer.net
Rootkit scan 2007-07-06 13:46:06
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
Completion time: 2007-07-06 13:46:47
C:\ComboFix-quarantined-files.txt ... 2007-07-06 13:46
C:\ComboFix2.txt ... 2007-07-06 00:25
--- E O F ---
"Nadia" - 2007-07-06 13:43:43 - ComboFix 07-07-04.4 - Service Pack 2
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
C:\WINDOWS\system32\mmrrxxcebb.dat
C:\WINDOWS\system32\mmrrxxcebb.exe
C:\WINDOWS\system32\mmrrxxcebb_nav.dat
C:\WINDOWS\system32\mmrrxxcebb_navps.dat
C:\WINDOWS\system32\nvs2.inf
((((((((((((((((((((((((( Files Created from 2007-06-06 to 2007-07-06 )))))))))))))))))))))))))))))))
2007-07-06 00:21 51,200 --a------ C:\WINDOWS\nircmd.exe
2007-07-06 00:13 <REP> d-------- C:\VundoFix Backups
2007-07-04 08:19 209,533 --a------ C:\winsfr.exe
2007-07-03 08:59 200 --a------ C:\winbbs.exe
2007-06-23 16:28 <REP> d-------- C:\Program Files\MessengerSkinner
2007-06-23 16:28 <REP> d-------- C:\DOCUME~1\Nadia\APPLIC~1\MessengerSkinner
2007-06-13 02:07 <REP> d-------- C:\Program Files\outlook express2
2007-06-06 12:17 <REP> d-------- C:\Program Files\Micro Application
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
2007-07-06 17:34:08 -------- d-----w C:\Program Files\Steam
2007-07-06 03:01:11 -------- d-----w C:\Program Files\Teamspeak2_RC2
2007-05-27 22:05:50 -------- d-----w C:\DOCUME~1\Nadia\APPLIC~1\CyberLink
2007-05-27 22:04:48 -------- d-----w C:\DOCUME~1\Nadia\APPLIC~1\dvdcss
2007-05-16 15:13:53 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll
2007-05-14 14:43:53 -------- d-----w C:\Program Files\Numark Cue
2007-05-08 19:40:23 -------- d-----w C:\Program Files\ABBYY FineReader 5.0 Sprint
2007-05-08 19:40:08 -------- d-----w C:\Program Files\ABBYY FineReader 6.0
2007-05-08 19:39:46 -------- d-----w C:\Program Files\FaxTools
2007-05-08 19:39:41 -------- d--h--w C:\Program Files\InstallShield Installation Information
2007-05-08 19:16:57 -------- d-----w C:\Program Files\Lexmark 1200 Series
2007-05-06 23:59:54 -------- d-----w C:\DOCUME~1\Nadia\APPLIC~1\AdobeUM
2007-05-04 03:19:51 118,784 ------r C:\WINDOWS\bwUnin-7.2.0.137-8876480SL.exe
2007-04-25 14:22:35 144,896 ----a-w C:\WINDOWS\system32\schannel.dll
2007-04-21 04:18:17 48,820 ----a-w C:\WINDOWS\system32\perfc00C.dat
2007-04-21 04:18:17 367,988 ----a-w C:\WINDOWS\system32\perfh00C.dat
2007-04-20 03:38:23 270,336 ----a-w C:\WINDOWS\system32\imon.dll
2007-04-20 02:51:40 0 --sha-r C:\MSDOS.SYS
2007-04-20 02:51:40 0 --sha-r C:\IO.SYS
2007-04-20 02:51:40 0 ----a-w C:\CONFIG.SYS
2007-04-20 02:51:40 0 ----a-w C:\AUTOEXEC.BAT
2007-04-20 02:47:27 21,892 ----a-w C:\WINDOWS\system32\emptyregdb.dat
2007-04-18 16:14:18 2,854,400 ----a-w C:\WINDOWS\system32\msi.dll
2007-04-17 02:47:36 33,624 ----a-w C:\WINDOWS\system32\wups.dll
2007-04-17 02:45:54 1,710,936 ----a-w C:\WINDOWS\system32\wuaueng.dll
2007-04-17 02:45:48 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll
2007-04-17 02:45:42 325,976 ----a-w C:\WINDOWS\system32\wucltui.dll
2007-04-17 02:45:36 203,096 ----a-w C:\WINDOWS\system32\wuweb.dll
2007-04-17 02:45:28 92,504 ----a-w C:\WINDOWS\system32\cdm.dll
2007-04-17 02:45:20 53,080 ----a-w C:\WINDOWS\system32\wuauclt.exe
2007-04-17 02:45:20 43,352 ----a-w C:\WINDOWS\system32\wups2.dll
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
2004-12-14 01:56 63136 --a------ C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
2005-05-31 01:04 853672 --a------ C:\PROGRA~1\SPYBOT~1\SDHelper.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
2006-07-07 12:29 324416 --a------ C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"nod32kui"="C:\Program Files\Eset\nod32kui.exe" [2007-04-19 23:38]
"AnyDVD"="C:\Program Files\SlySoft\AnyDVD\AnyDVD.exe" [2007-04-19 23:49]
"RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" [2005-01-12 03:01]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [2004-12-20 14:41]
"SoundMan"="SOUNDMAN.EXE" [2006-11-17 05:42 C:\WINDOWS\soundman.exe]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe" [2005-04-13 03:48]
"nwiz"="nwiz.exe" [2006-09-18 16:25 C:\WINDOWS\system32\nwiz.exe]
"Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" [2006-05-10 09:48 C:\WINDOWS\KHALMNPR.Exe]
"@"="" []
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.exe" [2007-01-19 12:55]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" []
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-13 12:24]
"Steam"="c:\program files\steam\steam.exe" [2007-06-27 22:03]
"LDM"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" [2007-05-03 23:19]
"mmrrxxcebb"="c:\windows\system32\mmrrxxcebb.exe" []
**************************************************************************
catchme 0.3.915 W2K/XP/Vista - rootkit detector by Gmer, http://www.gmer.net
Rootkit scan 2007-07-06 13:46:06
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
Completion time: 2007-07-06 13:46:47
C:\ComboFix-quarantined-files.txt ... 2007-07-06 13:46
C:\ComboFix2.txt ... 2007-07-06 00:25
--- E O F ---
voici mon rapport de clean........
Rapport clean par Malekal_morte - http://www.malekal.com
Script execute en mode sans echec 2007-07-06 a 17:59:08,71
Microsoft Windows XP [version 5.1.2600]
*** Suppression des fichiers dans C:
*** Suppression des fichiers dans C:\WINDOWS\
*** Suppression des fichiers dans C:\WINDOWS\system32
*** Suppression des fichiers dans C:\Program Files
*** Suppression des clefs du registre effectuee..
*** Fin du rapport !
Rapport clean par Malekal_morte - http://www.malekal.com
Script execute en mode sans echec 2007-07-06 a 17:59:08,71
Microsoft Windows XP [version 5.1.2600]
*** Suppression des fichiers dans C:
*** Suppression des fichiers dans C:\WINDOWS\
*** Suppression des fichiers dans C:\WINDOWS\system32
*** Suppression des fichiers dans C:\Program Files
*** Suppression des clefs du registre effectuee..
*** Fin du rapport !
Lassé par la pub ? Créez un compte
- Contenus similaires :
- ForumAider moi avec l'anti virus avira
- ForumVirus virtumonde aider moi svp
- ForumVirus, aider moi a m'en debarrasser
- ForumAider moi virus photo de vacances su
- ForumAide virus sur mn ordinateur
- ForumAide virus
- ForumVirus or not virus aidez moi
- ForumA l' aide virus trojan.obfus.gen
- ForumAide virus dans system32 services.exe
- ForumSpyware,virus .aidez moi
- Voir plus
