Virus Generic.dx
Casserole69
-
casserole 69 Messages postés 4 Statut Membre -
casserole 69 Messages postés 4 Statut Membre -
Bonjour,
Je vous contacte car j'ai un virus nommé généric.dx qui me pose problème car je n'arrive pas à utiliser spybot et ccleaner car cela bloque. Mon pc rame. J'ai procédé à un hitjackthis que je colle ici. Je vous remercie pour votre aide.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:55:27, on 24/01/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\System32\oodag.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Network Associates\VirusScan\Avsynmgr.exe
C:\Program Files\Network Associates\VirusScan\VsStat.exe
C:\Program Files\Network Associates\VirusScan\Vshwin32.exe
C:\Program Files\Network Associates\VirusScan\Avconsol.exe
C:\Program Files\Network Associates\VirusScan\Webscanx.exe
C:\Program Files\Fichiers communs\Network Associates\McShield\Mcshield.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Carole\Bureau\Spybot - Search & Destroy\TeaTimer.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
C:\PROGRA~1\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\PROGRA~1\Wanadoo\Watch.exe
C:\Documents and Settings\Carole\Bureau\Spybot - Search & Destroy\SpybotSD.exe
C:\PROGRA~1\Wanadoo\WOOBrowser\WOOBrowser.exe
C:\PROGRA~1\Wanadoo\WOOBRO~1\DownloadManager.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\Userinit.exe
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\DOCUME~1\Carole\Bureau\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Documents and Settings\Carole\Bureau\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\DOCUME~1\Carole\Bureau\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\DOCUME~1\Carole\Bureau\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU)
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - http://appldnld.apple.com.edgesuite.net/...
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {7F8C8173-AD80-4807-AA75-5672F22B4582} (ICSScanner Class) - http://download.zonelabs.com/bin/promotions/spywaredetector/ICSScanner37710.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://www.touslesdrivers.com/...
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B79A53C0-1DAC-4636-BACE-FD086A7A79BF} (AdSignerLCContrl Class) - https://static.impots.gouv.fr/tdir/static/adpform/AdSignerADP-1.1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{8BF42292-A392-47B8-87EA-532348556930}: NameServer = 194.2.0.20,194.2.0.50
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVSync Manager (AvSynMgr) - Unknown owner - C:\Program Files\Network Associates\VirusScan\Avsynmgr.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: McShield - Unknown owner - C:\Program Files\Fichiers communs\Network Associates\McShield\Mcshield.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\System32\oodag.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - Unknown owner - C:\Documents and Settings\Carole\Mes documents\logiciel\Spyware Doctor\sdhelp.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
Je vous contacte car j'ai un virus nommé généric.dx qui me pose problème car je n'arrive pas à utiliser spybot et ccleaner car cela bloque. Mon pc rame. J'ai procédé à un hitjackthis que je colle ici. Je vous remercie pour votre aide.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:55:27, on 24/01/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\System32\oodag.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Network Associates\VirusScan\Avsynmgr.exe
C:\Program Files\Network Associates\VirusScan\VsStat.exe
C:\Program Files\Network Associates\VirusScan\Vshwin32.exe
C:\Program Files\Network Associates\VirusScan\Avconsol.exe
C:\Program Files\Network Associates\VirusScan\Webscanx.exe
C:\Program Files\Fichiers communs\Network Associates\McShield\Mcshield.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Carole\Bureau\Spybot - Search & Destroy\TeaTimer.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\PROGRA~1\Wanadoo\GestionnaireInternet.exe
C:\PROGRA~1\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\PROGRA~1\Wanadoo\Watch.exe
C:\Documents and Settings\Carole\Bureau\Spybot - Search & Destroy\SpybotSD.exe
C:\PROGRA~1\Wanadoo\WOOBrowser\WOOBrowser.exe
C:\PROGRA~1\Wanadoo\WOOBRO~1\DownloadManager.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Orange
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
F2 - REG:system.ini: UserInit=C:\WINDOWS\System32\Userinit.exe
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\DOCUME~1\Carole\Bureau\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|PARAM= cnx
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Documents and Settings\Carole\Bureau\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\DOCUME~1\Carole\Bureau\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\DOCUME~1\Carole\Bureau\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Orange - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - http://www.orange.fr (file missing) (HKCU)
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - http://appldnld.apple.com.edgesuite.net/...
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/...
O16 - DPF: {7F8C8173-AD80-4807-AA75-5672F22B4582} (ICSScanner Class) - http://download.zonelabs.com/bin/promotions/spywaredetector/ICSScanner37710.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://www.touslesdrivers.com/...
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B79A53C0-1DAC-4636-BACE-FD086A7A79BF} (AdSignerLCContrl Class) - https://static.impots.gouv.fr/tdir/static/adpform/AdSignerADP-1.1.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{8BF42292-A392-47B8-87EA-532348556930}: NameServer = 194.2.0.20,194.2.0.50
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVSync Manager (AvSynMgr) - Unknown owner - C:\Program Files\Network Associates\VirusScan\Avsynmgr.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: McShield - Unknown owner - C:\Program Files\Fichiers communs\Network Associates\McShield\Mcshield.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\System32\oodag.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - Unknown owner - C:\Documents and Settings\Carole\Mes documents\logiciel\Spyware Doctor\sdhelp.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
A voir également:
- Virus Generic.dx
- Virus mcafee - Accueil - Piratage
- Virus informatique - Guide
- Panda anti virus gratuit - Télécharger - Antivirus & Antimalwares
- Undisclosed-recipients virus - Guide
- Ordinateur bloqué virus - Accueil - Arnaque
1 réponse
Bonjour à nouveau,
Voici un nouveau contrôle par Lopsd
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 2000+ )
BIOS : v1.0~
USER : Carole ( Administrator )
BOOT : Normal boot
Firewall : ZoneAlarm Firewall 6.1.744.001 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:38 Go (Free:28 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 24/01/2009|17:44 )
--------------------\\ Listing des dossiers dans APPLIC~1
[08/03/2006|14:47] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[21/03/2006|18:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[06/09/2008|10:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[08/11/2008|10:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[02/04/2007|20:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[09/02/2008|12:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[17/03/2007|20:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[14/04/2008|11:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[11/03/2006|20:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[17/03/2007|20:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[08/11/2008|15:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[15/05/2007|21:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[14/08/2006|19:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[29/03/2006|18:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[08/11/2008|10:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WinZip
[14/04/2008|11:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[08/11/2008|10:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[29/12/2007|17:01] C:\DOCUME~1\Carole\APPLIC~1\Adobe
[21/03/2006|18:49] C:\DOCUME~1\Carole\APPLIC~1\AdobeUM
[08/11/2008|10:11] C:\DOCUME~1\Carole\APPLIC~1\Apple Computer
[06/09/2008|11:29] C:\DOCUME~1\Carole\APPLIC~1\Help
[19/07/2007|16:02] C:\DOCUME~1\Carole\APPLIC~1\HP
[08/03/2006|14:55] C:\DOCUME~1\Carole\APPLIC~1\Identities
[12/03/2006|19:46] C:\DOCUME~1\Carole\APPLIC~1\Macromedia
[14/04/2008|11:58] C:\DOCUME~1\Carole\APPLIC~1\Microsoft
[08/03/2006|14:57] C:\DOCUME~1\Carole\APPLIC~1\Microsoft Web Folders
[16/03/2006|15:57] C:\DOCUME~1\Carole\APPLIC~1\Mozilla
[07/06/2007|20:23] C:\DOCUME~1\Carole\APPLIC~1\MSN6
[31/03/2006|09:22] C:\DOCUME~1\Carole\APPLIC~1\PC Tools
[08/11/2008|13:01] C:\DOCUME~1\Carole\APPLIC~1\PeaZip
[02/02/2007|15:27] C:\DOCUME~1\Carole\APPLIC~1\Sony Corporation
[14/04/2006|21:19] C:\DOCUME~1\Carole\APPLIC~1\Sun
[14/08/2006|19:54] C:\DOCUME~1\Carole\APPLIC~1\TuneUp Software
[25/12/2007|15:59] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[18/03/2006|22:50] C:\DOCUME~1\LOCALS~1\APPLIC~1\Help
[08/03/2006|14:52] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[16/03/2006|19:39] C:\DOCUME~1\LOCALS~1\APPLIC~1\Mozilla
[25/12/2007|15:58] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[08/12/2008 19:35][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[24/01/2009 16:00][--a------] C:\WINDOWS\tasks\HPpromotions journeysoftware.job
[12/12/2008 17:15][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[24/01/2009 10:05][--ah-----] C:\WINDOWS\tasks\SA.DAT
[17/09/2002 22:02][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[09/03/2006|09:08] C:\Program Files\Adobe
[08/11/2008|13:18] C:\Program Files\AIDA32 - Personal System Information
[01/01/2008|19:53] C:\Program Files\AlsRack
[06/09/2008|10:35] C:\Program Files\Apple Software Update
[06/09/2008|10:37] C:\Program Files\Bonjour
[24/01/2009|12:32] C:\Program Files\CleanUp!
[08/03/2006|14:44] C:\Program Files\ComPlus Applications
[08/11/2008|09:30] C:\Program Files\Fichiers communs
[08/02/2007|19:18] C:\Program Files\Grisoft
[24/02/2007|14:42] C:\Program Files\HardwareDetection
[22/06/2007|19:30] C:\Program Files\Hewlett-Packard
[22/06/2007|19:25] C:\Program Files\HP
[24/02/2007|21:49] C:\Program Files\InstallShield Installation Information
[11/12/2008|22:01] C:\Program Files\Internet Explorer
[25/12/2007|11:32] C:\Program Files\Inventel
[29/08/2008|19:36] C:\Program Files\Messenger
[25/06/2007|16:20] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[08/03/2006|14:56] C:\Program Files\microsoft frontpage
[06/09/2006|18:43] C:\Program Files\Microsoft Money 2005
[08/03/2006|14:57] C:\Program Files\Microsoft Office
[29/08/2008|19:28] C:\Program Files\Movie Maker
[09/06/2007|10:33] C:\Program Files\Mozilla Firefox
[08/03/2006|14:44] C:\Program Files\MSN
[08/03/2006|14:44] C:\Program Files\MSN Gaming Zone
[25/06/2007|16:20] C:\Program Files\MSXML 4.0
[29/08/2008|19:21] C:\Program Files\NetMeeting
[08/03/2006|15:01] C:\Program Files\Network Associates
[17/03/2006|11:36] C:\Program Files\OO Software
[29/08/2008|19:21] C:\Program Files\Outlook Express
[08/11/2008|10:55] C:\Program Files\PeaZip
[08/11/2008|10:30] C:\Program Files\QuickTime
[25/12/2007|11:32] C:\Program Files\Securitoo
[08/03/2006|14:46] C:\Program Files\Services en ligne
[02/02/2007|15:18] C:\Program Files\Sony
[25/02/2007|15:46] C:\Program Files\Spybot - Search & Destroy
[24/01/2009|16:53] C:\Program Files\Trend Micro
[08/03/2006|14:55] C:\Program Files\Uninstall Information
[24/01/2009|16:44] C:\Program Files\Wanadoo
[14/04/2008|11:54] C:\Program Files\Windows Live
[29/08/2008|19:21] C:\Program Files\Windows Media Player
[29/08/2008|19:21] C:\Program Files\Windows NT
[08/03/2006|14:44] C:\Program Files\WindowsUpdate
[25/02/2007|17:58] C:\Program Files\WinRAR
[08/11/2008|10:49] C:\Program Files\WinZip
[08/03/2006|14:48] C:\Program Files\xerox
[08/11/2008|09:24] C:\Program Files\Yahoo!
[20/04/2006|17:18] C:\Program Files\Zone Labs
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[09/03/2006|09:10] C:\Program Files\Fichiers communs\Adobe
[08/03/2006|14:58] C:\Program Files\Fichiers communs\Designer
[22/06/2007|19:36] C:\Program Files\Fichiers communs\HP
[02/02/2007|15:19] C:\Program Files\Fichiers communs\InstallShield
[14/04/2008|11:53] C:\Program Files\Fichiers communs\Microsoft Shared
[08/03/2006|14:45] C:\Program Files\Fichiers communs\MSSoap
[08/03/2006|15:01] C:\Program Files\Fichiers communs\Network Associates
[08/03/2006|14:39] C:\Program Files\Fichiers communs\ODBC
[08/03/2006|14:45] C:\Program Files\Fichiers communs\Services
[17/03/2006|10:16] C:\Program Files\Fichiers communs\Softwin
[22/06/2007|19:37] C:\Program Files\Fichiers communs\Sonic Shared
[08/03/2006|14:39] C:\Program Files\Fichiers communs\SpeechEngines
[29/08/2008|19:21] C:\Program Files\Fichiers communs\System
[14/04/2008|11:53] C:\Program Files\Fichiers communs\WindowsLiveInstaller
--------------------\\ Process
( 45 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-01-24 17:46:46
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
C:\WINDOWS\Pack.epk
[b]==> EGDACCESS <==/b
[F:2][D:1]-> C:\DOCUME~1\Carole\LOCALS~1\Temp
[F:14][D:0]-> C:\DOCUME~1\Carole\Cookies
[F:516][D:20]-> C:\DOCUME~1\Carole\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 24/01/2009|17:48 - Option : [1]
--------------------\\ Fin du rapport a 17:48:11
SOS Merci pour votre aide!!!!
Casserole69
Voici un nouveau contrôle par Lopsd
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) XP 2000+ )
BIOS : v1.0~
USER : Carole ( Administrator )
BOOT : Normal boot
Firewall : ZoneAlarm Firewall 6.1.744.001 (Activated)
A:\ (USB)
C:\ (Local Disk) - NTFS - Total:38 Go (Free:28 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 24/01/2009|17:44 )
--------------------\\ Listing des dossiers dans APPLIC~1
[08/03/2006|14:47] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[21/03/2006|18:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[06/09/2008|10:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[08/11/2008|10:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[02/04/2007|20:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[09/02/2008|12:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[17/03/2007|20:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\HP
[14/04/2008|11:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[11/03/2006|20:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSN6
[17/03/2007|20:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sonic
[08/11/2008|15:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[15/05/2007|21:09] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[14/08/2006|19:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TuneUp Software
[29/03/2006|18:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[08/11/2008|10:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WinZip
[14/04/2008|11:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[08/11/2008|10:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[29/12/2007|17:01] C:\DOCUME~1\Carole\APPLIC~1\Adobe
[21/03/2006|18:49] C:\DOCUME~1\Carole\APPLIC~1\AdobeUM
[08/11/2008|10:11] C:\DOCUME~1\Carole\APPLIC~1\Apple Computer
[06/09/2008|11:29] C:\DOCUME~1\Carole\APPLIC~1\Help
[19/07/2007|16:02] C:\DOCUME~1\Carole\APPLIC~1\HP
[08/03/2006|14:55] C:\DOCUME~1\Carole\APPLIC~1\Identities
[12/03/2006|19:46] C:\DOCUME~1\Carole\APPLIC~1\Macromedia
[14/04/2008|11:58] C:\DOCUME~1\Carole\APPLIC~1\Microsoft
[08/03/2006|14:57] C:\DOCUME~1\Carole\APPLIC~1\Microsoft Web Folders
[16/03/2006|15:57] C:\DOCUME~1\Carole\APPLIC~1\Mozilla
[07/06/2007|20:23] C:\DOCUME~1\Carole\APPLIC~1\MSN6
[31/03/2006|09:22] C:\DOCUME~1\Carole\APPLIC~1\PC Tools
[08/11/2008|13:01] C:\DOCUME~1\Carole\APPLIC~1\PeaZip
[02/02/2007|15:27] C:\DOCUME~1\Carole\APPLIC~1\Sony Corporation
[14/04/2006|21:19] C:\DOCUME~1\Carole\APPLIC~1\Sun
[14/08/2006|19:54] C:\DOCUME~1\Carole\APPLIC~1\TuneUp Software
[25/12/2007|15:59] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[18/03/2006|22:50] C:\DOCUME~1\LOCALS~1\APPLIC~1\Help
[08/03/2006|14:52] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[16/03/2006|19:39] C:\DOCUME~1\LOCALS~1\APPLIC~1\Mozilla
[25/12/2007|15:58] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[08/12/2008 19:35][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[24/01/2009 16:00][--a------] C:\WINDOWS\tasks\HPpromotions journeysoftware.job
[12/12/2008 17:15][--a------] C:\WINDOWS\tasks\Maintenance en 1 clic.job
[24/01/2009 10:05][--ah-----] C:\WINDOWS\tasks\SA.DAT
[17/09/2002 22:02][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[09/03/2006|09:08] C:\Program Files\Adobe
[08/11/2008|13:18] C:\Program Files\AIDA32 - Personal System Information
[01/01/2008|19:53] C:\Program Files\AlsRack
[06/09/2008|10:35] C:\Program Files\Apple Software Update
[06/09/2008|10:37] C:\Program Files\Bonjour
[24/01/2009|12:32] C:\Program Files\CleanUp!
[08/03/2006|14:44] C:\Program Files\ComPlus Applications
[08/11/2008|09:30] C:\Program Files\Fichiers communs
[08/02/2007|19:18] C:\Program Files\Grisoft
[24/02/2007|14:42] C:\Program Files\HardwareDetection
[22/06/2007|19:30] C:\Program Files\Hewlett-Packard
[22/06/2007|19:25] C:\Program Files\HP
[24/02/2007|21:49] C:\Program Files\InstallShield Installation Information
[11/12/2008|22:01] C:\Program Files\Internet Explorer
[25/12/2007|11:32] C:\Program Files\Inventel
[29/08/2008|19:36] C:\Program Files\Messenger
[25/06/2007|16:20] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[08/03/2006|14:56] C:\Program Files\microsoft frontpage
[06/09/2006|18:43] C:\Program Files\Microsoft Money 2005
[08/03/2006|14:57] C:\Program Files\Microsoft Office
[29/08/2008|19:28] C:\Program Files\Movie Maker
[09/06/2007|10:33] C:\Program Files\Mozilla Firefox
[08/03/2006|14:44] C:\Program Files\MSN
[08/03/2006|14:44] C:\Program Files\MSN Gaming Zone
[25/06/2007|16:20] C:\Program Files\MSXML 4.0
[29/08/2008|19:21] C:\Program Files\NetMeeting
[08/03/2006|15:01] C:\Program Files\Network Associates
[17/03/2006|11:36] C:\Program Files\OO Software
[29/08/2008|19:21] C:\Program Files\Outlook Express
[08/11/2008|10:55] C:\Program Files\PeaZip
[08/11/2008|10:30] C:\Program Files\QuickTime
[25/12/2007|11:32] C:\Program Files\Securitoo
[08/03/2006|14:46] C:\Program Files\Services en ligne
[02/02/2007|15:18] C:\Program Files\Sony
[25/02/2007|15:46] C:\Program Files\Spybot - Search & Destroy
[24/01/2009|16:53] C:\Program Files\Trend Micro
[08/03/2006|14:55] C:\Program Files\Uninstall Information
[24/01/2009|16:44] C:\Program Files\Wanadoo
[14/04/2008|11:54] C:\Program Files\Windows Live
[29/08/2008|19:21] C:\Program Files\Windows Media Player
[29/08/2008|19:21] C:\Program Files\Windows NT
[08/03/2006|14:44] C:\Program Files\WindowsUpdate
[25/02/2007|17:58] C:\Program Files\WinRAR
[08/11/2008|10:49] C:\Program Files\WinZip
[08/03/2006|14:48] C:\Program Files\xerox
[08/11/2008|09:24] C:\Program Files\Yahoo!
[20/04/2006|17:18] C:\Program Files\Zone Labs
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[09/03/2006|09:10] C:\Program Files\Fichiers communs\Adobe
[08/03/2006|14:58] C:\Program Files\Fichiers communs\Designer
[22/06/2007|19:36] C:\Program Files\Fichiers communs\HP
[02/02/2007|15:19] C:\Program Files\Fichiers communs\InstallShield
[14/04/2008|11:53] C:\Program Files\Fichiers communs\Microsoft Shared
[08/03/2006|14:45] C:\Program Files\Fichiers communs\MSSoap
[08/03/2006|15:01] C:\Program Files\Fichiers communs\Network Associates
[08/03/2006|14:39] C:\Program Files\Fichiers communs\ODBC
[08/03/2006|14:45] C:\Program Files\Fichiers communs\Services
[17/03/2006|10:16] C:\Program Files\Fichiers communs\Softwin
[22/06/2007|19:37] C:\Program Files\Fichiers communs\Sonic Shared
[08/03/2006|14:39] C:\Program Files\Fichiers communs\SpeechEngines
[29/08/2008|19:21] C:\Program Files\Fichiers communs\System
[14/04/2008|11:53] C:\Program Files\Fichiers communs\WindowsLiveInstaller
--------------------\\ Process
( 45 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-01-24 17:46:46
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
C:\WINDOWS\Pack.epk
[b]==> EGDACCESS <==/b
[F:2][D:1]-> C:\DOCUME~1\Carole\LOCALS~1\Temp
[F:14][D:0]-> C:\DOCUME~1\Carole\Cookies
[F:516][D:20]-> C:\DOCUME~1\Carole\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 24/01/2009|17:48 - Option : [1]
--------------------\\ Fin du rapport a 17:48:11
SOS Merci pour votre aide!!!!
Casserole69
