sshnas21.dll virus a effacer

sshnas21.dll virus a effacer - Virus/Spywares - Windows & Software

Marsh Posté le 11-06-2010 à 21:38:00    

lut
 
voila j'ai un peu recherché sur le net par rapport a ce virus  
 
chuis tombé sur un gars apparement baleze (http://www.sosordi.net/Depannage/1 [...] sshnas-dll qui disait que face a ce virus fallait faire un scan avec mbam ce que j'ai fait et le message au boot qui me disait qu'il y avait un probleme avec ce virus :  sshnas21.dll  n'apparait plus donc c'est effacé par contre le dp32.exe est toujours la  (ca apparraissait en meme temps que ce message )
 
alors le mec disait qu'il fallait si mbam avait echoué , telecharger le logiciel otm pour le supprimer mais j'ai un peu peur de m'en servir parcequ'apparement il est la pour les virus recalcitrant puisque mbam n'a pas reussi a le supprimer
 
je poste le log de mbam a tout hasard  
 
est ce qu'il y a quelqu'un qui pourrait me dire comment faire avec otm ou un autre soft pour supprimer ce dp32.exe?:
 
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org
 
Database version: 4189
 
Windows 6.1.7600
Internet Explorer 8.0.7600.16385
 
11/06/2010 21:21:51
mbam-log-2010-06-11 (21-21-51).txt
 
Scan type: Full scan (C:\|D:\|E:\|F:\|G:\|H:\|P:\|)
Objects scanned: 834845
Time elapsed: 51 minute(s), 11 second(s)
 
Memory Processes Infected: 2
Memory Modules Infected: 3
Registry Keys Infected: 10
Registry Values Infected: 6
Registry Data Items Infected: 0
Folders Infected: 9
Files Infected: 48
 
Memory Processes Infected:
C:\Program Files (x86)\RelevantKnowledge\rlservice.exe (Adware.RelevantKnowledge) -> Unloaded process successfully.
C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe (Adware.RelevantKnowledge) -> Unloaded process successfully.
 
Memory Modules Infected:
C:\Program Files (x86)\RelevantKnowledge\rlls.dll (Adware.RelevantKnowledge) -> Delete on reboot.
C:\Program Files (x86)\RelevantKnowledge\MSVCP71.DLL (Spyware.MarketScore) -> Delete on reboot.
C:\Program Files (x86)\RelevantKnowledge\MSVCR71.DLL (Spyware.MarketScore) -> Delete on reboot.
 
Registry Keys Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{c2clxlyq-j1nk-t55c-m6x2-jlj2387fb413} (Generic.Bot.H) -> Delete on reboot.
HKEY_CLASSES_ROOT\TypeLib\{01bcb858-2f62-4f06-a8f4-48f927c15333} (Adware.PredictAd) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{c9ae652b-8c99-4ac2-b556-8b501182874e} (Adware.PredictAd) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{0fb6a909-6086-458f-bd92-1f8ee10042a0} (Adware.PredictAd) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0fb6a909-6086-458f-bd92-1f8ee10042a0} (Adware.PredictAd) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\AutocompletePro.DLL (Adware.PredictAd) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\M5T8QL3YW3 (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Handle (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\XML (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{d08d9f98-1c78-4704-87e6-368b0023d831} (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
 
Registry Values Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\windowsdisplaydrivers (Trojan.Backdoor) -> Delete on reboot.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\windowsdisplaydrivers (Trojan.Backdoor) -> Delete on reboot.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\windowsdisplaydrivers (Trojan.Backdoor) -> Delete on reboot.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\halo2 (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\m5t8ql3yw3 (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\Extensions\support@predictad.com (Adware.PredictAd) -> Quarantined and deleted successfully.
 
Registry Data Items Infected:
(No malicious items detected)
 
Folders Infected:
C:\Program Files (x86)\AutocompletePro (Adware.PredictAd) -> Quarantined and deleted successfully.
C:\Program Files (x86)\AutocompletePro\support@predictad.com (Adware.PredictAd) -> Quarantined and deleted successfully.
C:\Program Files (x86)\AutocompletePro\support@predictad.com\chrome (Adware.PredictAd) -> Quarantined and deleted successfully.
C:\Program Files (x86)\AutocompletePro\support@predictad.com\chrome\content (Adware.PredictAd) -> Quarantined and deleted successfully.
C:\Program Files (x86)\AutocompletePro\support@predictad.com\defaults (Adware.PredictAd) -> Quarantined and deleted successfully.
C:\Program Files (x86)\AutocompletePro\support@predictad.com\defaults\preferences (Adware.PredictAd) -> Quarantined and deleted successfully.
C:\Program Files (x86)\RelevantKnowledge (Spyware.MarketScore) -> Delete on reboot.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge (Spyware.MarketScore) -> Quarantined and deleted successfully.
C:\Program Files (x86)\WindowsDP (Trojan.Backdoor) -> Quarantined and deleted successfully.
 
Files Infected:
C:\Program Files (x86)\WindowsDP\dp32.exe (Generic.Bot.H) -> Quarantined and deleted successfully.
C:\Program Files (x86)\RelevantKnowledge\rlservice.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
C:\Program Files (x86)\RelevantKnowledge\rlls.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
C:\Windows\System32\sshnas21.dll (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\Program Files (x86)\AutocompletePro\AutocompletePro.dll (Adware.PredictAd) -> Quarantined and deleted successfully.
C:\Program Files (x86)\RelevantKnowledge\rlls64.dll (Adware.RelevantKnowledge) -> Delete on reboot.
C:\Program Files (x86)\RelevantKnowledge\rlservice.ex_ (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
C:\Program Files (x86)\RelevantKnowledge\rlvknlg64.exe (Adware.RelevantKnowledge) -> Delete on reboot.
C:\Users\hellscat\AppData\Local\Temp\is-V7OPK.tmp\KcsoftwaresAcPro.exe (Adware.PredictAd) -> Quarantined and deleted successfully.
C:\Users\hellscat\AppData\Local\Temp\IXP000.TMP\3.exe (Trojan.Backdoor) -> Quarantined and deleted successfully.
C:\Windows\SysWOW64\sshnas21.dll (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\Windows\Temp\~os16FA.tmp\rlls.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
C:\Windows\Temp\~os16FA.tmp\rlls64.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
C:\Windows\Temp\~os16FA.tmp\rlservice.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
C:\Windows\Temp\~os16FA.tmp\rlvknlg.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
C:\Windows\Temp\~os16FA.tmp\rlvknlg64.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
D:\grabit\alt.binaries.warez\daemon tools\DAEMON Tools Pro Advanced v.4.30.0303 (XPVista) 32+64Bit RETAIL\setup.exe (Worm.AutoRun.L) -> Quarantined and deleted successfully.
E:\prg\toshop cs5\keygen.exe (Malware.Packer.Gen) -> Quarantined and deleted successfully.
F:\muzik\prgs\celemny\Celemony.Melodyne.Studio.Edition.v3.1.1.2.incl.Keygen-AiR\celemony studio\Keygen.exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
F:\prg and sheet  77\prgs\nero\Nero 10.0.13200 + keygen\Nero Keygen_b.exe (Backdoor.Agent) -> Quarantined and deleted successfully.
F:\prg and sheet  77\prgs\Office XP Pro\office pro plus 2007\Microsoft Office Pro Plus 2007 (All Applications Keygen).exe (Hacktool.Agent) -> Quarantined and deleted successfully.
F:\prg and sheet  77\prgs\Office XP Pro\office pro plus 2007\Keygens\Microsoft Office Pro Plus 2007 (All Applications Keygen).exe (Hacktool.Agent) -> Quarantined and deleted successfully.
F:\prg and sheet  77\prgs\Office XP Pro\office pro plus 2007\Keygens\Microsoft Office Pro Plus 2007 (All Versions Keygen).exe (RiskWare.Tool.CK) -> Quarantined and deleted successfully.
C:\Program Files (x86)\AutocompletePro\FireFoxExtension.exe (Adware.PredictAd) -> Quarantined and deleted successfully.
C:\Program Files (x86)\AutocompletePro\InstTracker.exe (Adware.PredictAd) -> Quarantined and deleted successfully.
C:\Program Files (x86)\AutocompletePro\unins000.dat (Adware.PredictAd) -> Quarantined and deleted successfully.
C:\Program Files (x86)\AutocompletePro\unins000.exe (Adware.PredictAd) -> Quarantined and deleted successfully.
C:\Program Files (x86)\AutocompletePro\support@predictad.com\chrome.manifest (Adware.PredictAd) -> Quarantined and deleted successfully.
C:\Program Files (x86)\AutocompletePro\support@predictad.com\install.rdf (Adware.PredictAd) -> Quarantined and deleted successfully.
C:\Program Files (x86)\AutocompletePro\support@predictad.com\chrome\content\browserOverlay.xul (Adware.PredictAd) -> Quarantined and deleted successfully.
C:\Program Files (x86)\AutocompletePro\support@predictad.com\chrome\content\options.js (Adware.PredictAd) -> Quarantined and deleted successfully.
C:\Program Files (x86)\AutocompletePro\support@predictad.com\chrome\content\options.xul (Adware.PredictAd) -> Quarantined and deleted successfully.
C:\Program Files (x86)\AutocompletePro\support@predictad.com\chrome\content\utils.js (Adware.PredictAd) -> Quarantined and deleted successfully.
C:\Program Files (x86)\AutocompletePro\support@predictad.com\defaults\preferences\predictad.js (Adware.PredictAd) -> Quarantined and deleted successfully.
C:\Program Files (x86)\RelevantKnowledge\MSVCP71.DLL (Spyware.MarketScore) -> Quarantined and deleted successfully.
C:\Program Files (x86)\RelevantKnowledge\MSVCR71.DLL (Spyware.MarketScore) -> Quarantined and deleted successfully.
C:\Program Files (x86)\RelevantKnowledge\rloci.bin (Spyware.MarketScore) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge\About RelevantKnowledge.lnk (Spyware.MarketScore) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge\Privacy Policy and User License Agreement.lnk (Spyware.MarketScore) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge\Support.lnk (Spyware.MarketScore) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RelevantKnowledge\Uninstall Instructions.lnk (Spyware.MarketScore) -> Quarantined and deleted successfully.
C:\Users\hellscat\AppData\Roaming\cglogs.dat (Malware.Trace) -> Quarantined and deleted successfully.
C:\Users\hellscat\AppData\Local\Temp\IELOGIN.abc (Malware.Trace) -> Quarantined and deleted successfully.
C:\Users\hellscat\AppData\Local\Temp\UuU.uUu (Malware.Trace) -> Quarantined and deleted successfully.
C:\Users\hellscat\AppData\Local\Temp\XxX.xXx (Malware.Trace) -> Delete on reboot.
C:\Windows\Tasks\{8C3FDD81-7AE0-4605-A46A-2488B179F2A3}.job (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\Users\hellscat\AppData\Local\Temp\Sll.exe (Trojan.FakeAlert) -> Delete on reboot.
 
 
merci a tous

Reply

Marsh Posté le 11-06-2010 à 21:38:00   

Reply

Sujets relatifs:

Leave a Replay

Make sure you enter the(*)required information where indicate.HTML code is not allowed