Supprimer un WIN 32 , besoin d' aide !
universel90
Messages postés
2
Statut
Membre
-
Utilisateur anonyme -
Utilisateur anonyme -
Bonjour !
Je fais appel à vos expériences et connaissances informatiques pour savoir si quelqu'un avait la solution à mon problème ! J' ai un virus WIN32 donc. Mon antivirus qui est AVAST version 4, n' a pas réussi a le supprimer, ni le mettre en quarantaine.. J' ai donc succèssivement utilisé les logiciels CCleaner, Spybot, mais pas de résultats. Après analyse et nettoyage par Spybot, il me reste 5 virus Win32 à supprimer. Je ne sais pas quoi faire !
Voici mon rapport Hijackthis , quelqu'un pourrait t-il me guider ?
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:41:17, on 02/09/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18294)
Boot mode: Safe mode with network support
Running processes:
C:\Windows\Explorer.EXE
C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Alwil Software\Avast4\ashSimpl.exe
C:\Program Files\Alwil Software\Avast4\ashSimpl.exe
C:\Users\Cathy\Downloads\HiJackThis(2).exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.gateway.com/... E510
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.gateway.com/... E510
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.gateway.com/g/startpage.html?Ch=Retail&SubCH=&Br=EM&Loc=FRN_FR&Sys=PTB&M=eMachines E510
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.gateway.com/g/sidepanel.html?Ch=Retail&SubCH=&Br=EM&Loc=FRN_FR&Sys=PTB&M=eMachines E510
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - c:\windows\system32\BAE.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [BkupTray] "C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Program Files\eMachines\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [lxdnmon.exe] "C:\Program Files\Lexmark 2600 Series\lxdnmon.exe"
O4 - HKLM\..\Run: [lxdnamon] "C:\Program Files\Lexmark 2600 Series\lxdnamon.exe"
O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files\Lexmark Fax Solutions\fm3032.exe" /s
O4 - HKLM\..\Run: [Corel Photo Downloader] "C:\Program Files\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe" -startup
O4 - HKLM\..\Run: [Corel File Shell Monitor] C:\Program Files\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe
O4 - HKLM\..\RunOnce: [SpybotDeletingA3433] command.com /c del "C:\Program Files\Common Files\WhenU\DTAdapter.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingC5988] cmd.exe /c del "C:\Program Files\Common Files\WhenU\DTAdapter.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingA433] command.com /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKLM\..\RunOnce: [SpybotDeletingC5811] cmd.exe /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKLM\..\RunOnce: [SpybotDeletingA4128] command.com /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingC4303] cmd.exe /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingA8932] command.com /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingC3553] cmd.exe /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingA2482] command.com /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingC50] cmd.exe /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingA7364] command.com /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingC3041] cmd.exe /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingA1227] command.com /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKLM\..\RunOnce: [SpybotDeletingC226] cmd.exe /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKLM\..\RunOnce: [SpybotDeletingA4499] command.com /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingC3795] cmd.exe /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingA6525] command.com /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingC5537] cmd.exe /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingA9037] command.com /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingC6145] cmd.exe /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingA8263] command.com /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingC320] cmd.exe /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingA2302] command.com /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKLM\..\RunOnce: [SpybotDeletingC9816] cmd.exe /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKLM\..\RunOnce: [SpybotDeletingA6000] command.com /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingC9317] cmd.exe /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingA5178] command.com /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingC2123] cmd.exe /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingA9191] command.com /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingC6173] cmd.exe /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingA8763] command.com /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingC1998] cmd.exe /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingA5999] command.com /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKLM\..\RunOnce: [SpybotDeletingC9878] cmd.exe /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKLM\..\RunOnce: [SpybotDeletingA8039] command.com /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingC6851] cmd.exe /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingA578] command.com /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingC5727] cmd.exe /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingA5851] command.com /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingC3549] cmd.exe /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingA1931] command.com /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingC1013] cmd.exe /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 52\axcmd.exe" /automount
O4 - HKCU\..\Run: [AdobeUpdater] "C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [mlkax] "c:\users\cathy\appdata\local\mlkax.exe" mlkax
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\RunOnce: [SpybotDeletingB9743] command.com /c del "C:\Program Files\Common Files\WhenU\DTAdapter.exe"
O4 - HKCU\..\RunOnce: [SpybotDeletingD2131] cmd.exe /c del "C:\Program Files\Common Files\WhenU\DTAdapter.exe"
O4 - HKCU\..\RunOnce: [SpybotDeletingB8319] command.com /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKCU\..\RunOnce: [SpybotDeletingD6310] cmd.exe /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKCU\..\RunOnce: [SpybotDeletingB8658] command.com /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingD159] cmd.exe /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingB3925] command.com /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingD4313] cmd.exe /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingB707] command.com /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingD6843] cmd.exe /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingB7619] command.com /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingD8683] cmd.exe /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingB4277] command.com /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKCU\..\RunOnce: [SpybotDeletingD9857] cmd.exe /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKCU\..\RunOnce: [SpybotDeletingB1843] command.com /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingD69] cmd.exe /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingB7386] command.com /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingD3673] cmd.exe /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingB518] command.com /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingD1896] cmd.exe /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingB6385] command.com /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingD5166] cmd.exe /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingB633] command.com /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKCU\..\RunOnce: [SpybotDeletingD6424] cmd.exe /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKCU\..\RunOnce: [SpybotDeletingB9889] command.com /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingD4548] cmd.exe /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingB7593] command.com /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingD1022] cmd.exe /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingB5896] command.com /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingD728] cmd.exe /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingB4610] command.com /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingD3588] cmd.exe /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingB9656] command.com /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKCU\..\RunOnce: [SpybotDeletingD7738] cmd.exe /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKCU\..\RunOnce: [SpybotDeletingB6454] command.com /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingD5056] cmd.exe /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingB6707] command.com /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingD1642] cmd.exe /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingB7222] command.com /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingD4376] cmd.exe /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingB5088] command.com /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingD1427] cmd.exe /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Startup: OpenOffice.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Unknown owner - C:\Program Files\Bonjour\mDNSResponder.exe (file missing)
O23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\EMACHINES\eMachines Recovery Management\Service\ETService.exe
O23 - Service: Google Desktop Manager 5.7.802.22438 (GoogleDesktopManager-022208-143751) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Service Google Update (gupdate1c9f95a3409cc40) (gupdate1c9f95a3409cc40) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: lxdnCATSCustConnectService - Lexmark International, Inc. - C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxdnserv.exe
O23 - Service: lxdn_device - - C:\Windows\system32\lxdncoms.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - Unknown owner - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
Je fais appel à vos expériences et connaissances informatiques pour savoir si quelqu'un avait la solution à mon problème ! J' ai un virus WIN32 donc. Mon antivirus qui est AVAST version 4, n' a pas réussi a le supprimer, ni le mettre en quarantaine.. J' ai donc succèssivement utilisé les logiciels CCleaner, Spybot, mais pas de résultats. Après analyse et nettoyage par Spybot, il me reste 5 virus Win32 à supprimer. Je ne sais pas quoi faire !
Voici mon rapport Hijackthis , quelqu'un pourrait t-il me guider ?
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:41:17, on 02/09/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18294)
Boot mode: Safe mode with network support
Running processes:
C:\Windows\Explorer.EXE
C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Alwil Software\Avast4\ashSimpl.exe
C:\Program Files\Alwil Software\Avast4\ashSimpl.exe
C:\Users\Cathy\Downloads\HiJackThis(2).exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.gateway.com/... E510
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.gateway.com/... E510
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.gateway.com/g/startpage.html?Ch=Retail&SubCH=&Br=EM&Loc=FRN_FR&Sys=PTB&M=eMachines E510
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://www.gateway.com/g/sidepanel.html?Ch=Retail&SubCH=&Br=EM&Loc=FRN_FR&Sys=PTB&M=eMachines E510
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - c:\windows\system32\BAE.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [BkupTray] "C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Program Files\eMachines\WR_PopUp\WarReg_PopUp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [lxdnmon.exe] "C:\Program Files\Lexmark 2600 Series\lxdnmon.exe"
O4 - HKLM\..\Run: [lxdnamon] "C:\Program Files\Lexmark 2600 Series\lxdnamon.exe"
O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files\Lexmark Fax Solutions\fm3032.exe" /s
O4 - HKLM\..\Run: [Corel Photo Downloader] "C:\Program Files\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe" -startup
O4 - HKLM\..\Run: [Corel File Shell Monitor] C:\Program Files\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe
O4 - HKLM\..\RunOnce: [SpybotDeletingA3433] command.com /c del "C:\Program Files\Common Files\WhenU\DTAdapter.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingC5988] cmd.exe /c del "C:\Program Files\Common Files\WhenU\DTAdapter.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingA433] command.com /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKLM\..\RunOnce: [SpybotDeletingC5811] cmd.exe /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKLM\..\RunOnce: [SpybotDeletingA4128] command.com /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingC4303] cmd.exe /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingA8932] command.com /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingC3553] cmd.exe /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingA2482] command.com /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingC50] cmd.exe /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingA7364] command.com /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingC3041] cmd.exe /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingA1227] command.com /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKLM\..\RunOnce: [SpybotDeletingC226] cmd.exe /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKLM\..\RunOnce: [SpybotDeletingA4499] command.com /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingC3795] cmd.exe /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingA6525] command.com /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingC5537] cmd.exe /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingA9037] command.com /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingC6145] cmd.exe /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingA8263] command.com /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingC320] cmd.exe /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingA2302] command.com /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKLM\..\RunOnce: [SpybotDeletingC9816] cmd.exe /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKLM\..\RunOnce: [SpybotDeletingA6000] command.com /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingC9317] cmd.exe /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingA5178] command.com /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingC2123] cmd.exe /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingA9191] command.com /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingC6173] cmd.exe /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingA8763] command.com /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingC1998] cmd.exe /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingA5999] command.com /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKLM\..\RunOnce: [SpybotDeletingC9878] cmd.exe /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKLM\..\RunOnce: [SpybotDeletingA8039] command.com /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingC6851] cmd.exe /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingA578] command.com /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingC5727] cmd.exe /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingA5851] command.com /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingC3549] cmd.exe /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingA1931] command.com /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKLM\..\RunOnce: [SpybotDeletingC1013] cmd.exe /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 52\axcmd.exe" /automount
O4 - HKCU\..\Run: [AdobeUpdater] "C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [mlkax] "c:\users\cathy\appdata\local\mlkax.exe" mlkax
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\RunOnce: [SpybotDeletingB9743] command.com /c del "C:\Program Files\Common Files\WhenU\DTAdapter.exe"
O4 - HKCU\..\RunOnce: [SpybotDeletingD2131] cmd.exe /c del "C:\Program Files\Common Files\WhenU\DTAdapter.exe"
O4 - HKCU\..\RunOnce: [SpybotDeletingB8319] command.com /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKCU\..\RunOnce: [SpybotDeletingD6310] cmd.exe /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKCU\..\RunOnce: [SpybotDeletingB8658] command.com /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingD159] cmd.exe /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingB3925] command.com /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingD4313] cmd.exe /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingB707] command.com /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingD6843] cmd.exe /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingB7619] command.com /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingD8683] cmd.exe /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingB4277] command.com /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKCU\..\RunOnce: [SpybotDeletingD9857] cmd.exe /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKCU\..\RunOnce: [SpybotDeletingB1843] command.com /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingD69] cmd.exe /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingB7386] command.com /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingD3673] cmd.exe /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingB518] command.com /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingD1896] cmd.exe /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingB6385] command.com /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingD5166] cmd.exe /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingB633] command.com /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKCU\..\RunOnce: [SpybotDeletingD6424] cmd.exe /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKCU\..\RunOnce: [SpybotDeletingB9889] command.com /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingD4548] cmd.exe /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingB7593] command.com /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingD1022] cmd.exe /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingB5896] command.com /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingD728] cmd.exe /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingB4610] command.com /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingD3588] cmd.exe /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingB9656] command.com /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKCU\..\RunOnce: [SpybotDeletingD7738] cmd.exe /c del "C:\Windows\System32\drivers\kbiwkmrckippyw.sys"
O4 - HKCU\..\RunOnce: [SpybotDeletingB6454] command.com /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingD5056] cmd.exe /c del "C:\Windows\System32\kbiwkmmxvpwrwo.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingB6707] command.com /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingD1642] cmd.exe /c del "C:\Windows\System32\kbiwkmpeajirco.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingB7222] command.com /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingD4376] cmd.exe /c del "C:\Windows\System32\kbiwkmjdcnkxhm.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingB5088] command.com /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKCU\..\RunOnce: [SpybotDeletingD1427] cmd.exe /c del "C:\Windows\System32\kbiwkmjdxvgwiv.dat"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
O4 - Startup: OpenOffice.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~1.0_0\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Unknown owner - C:\Program Files\Bonjour\mDNSResponder.exe (file missing)
O23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe
O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\EMACHINES\eMachines Recovery Management\Service\ETService.exe
O23 - Service: Google Desktop Manager 5.7.802.22438 (GoogleDesktopManager-022208-143751) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Service Google Update (gupdate1c9f95a3409cc40) (gupdate1c9f95a3409cc40) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: lxdnCATSCustConnectService - Lexmark International, Inc. - C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxdnserv.exe
O23 - Service: lxdn_device - - C:\Windows\system32\lxdncoms.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - Unknown owner - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
A voir également:
- Supprimer un WIN 32 , besoin d' aide !
- Supprimer rond bleu whatsapp - Guide
- 32 bits - Guide
- Power iso 32 bit - Télécharger - Gravure
- Supprimer page word - Guide
- Impossible de supprimer un fichier - Guide
3 réponses
Bonjour
Fais le scan avec Hijackthis en mode normal (fonctionnement WIndows) si possible puis remets un nouveau rapport.
Fais le scan avec Hijackthis en mode normal (fonctionnement WIndows) si possible puis remets un nouveau rapport.
