[woso-wosa attacks] malware
pcdistress
Messages postés
2
Statut
Membre
-
rudyrital Messages postés 6233 Statut Membre -
rudyrital Messages postés 6233 Statut Membre -
Bonjour a tout les membres (même ceux qui peuvent pas m'aider)
Bon le point est que je suis dans la panade complète,
J'a iplanté mon ordi au boulot,..... (deviné la tête qu'a fait mon chef)
Il tourne sur du windows XP en IE 6.0
Je n'y connais strictement rien mais j'ai quand même sauvegarder un log avec [\b] Hijackthis [\b]
Je vous explique mon probléme avant : le PC en démarrant entraine lautoexecution du programme "help.exe" et de Iexplorer des centaines de fois jusqu'a ce que mon PC n'en peuvent plus !!!
Je pense que le probléme vient du malware WOSO ou WOSA
Logfile of HijackThis v1.99.1
Scan saved at 09:14:54, on 25/05/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\grcf.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\WINDOWS\system32\CAPM4RSK.EXE
C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
C:\Program Files\TOSHIBA\Accessibility\FnKeyHook.exe
C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
C:\Program Files\OpenVPN\bin\openvpn-gui.exe
C:\WINDOWS\AdobeR.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Pandion\Pandion.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\CAPM4LAK.EXE
C:\Program Files\PhraseExpress Pro\phrase.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\CAPM4SWK.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\OpenVPN\bin\openvpn.exe
C:\WINDOWS\system32\WISPTIS.EXE
C:\WinPBO2\Pbo.exe
C:\Hijackhis\HijackThis.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [url=https://www.google.fr/?gws_rd=ssl]https://www.google.fr/?gws_rd=ssl[/url]
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: Norton Internet Security - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton Internet Security - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [PadTouch] C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
O4 - HKLM\..\Run: [CeEKEY] C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
O4 - HKLM\..\Run: [TPNF] C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
O4 - HKLM\..\Run: [TOSHIBA Accessibility] C:\Program Files\TOSHIBA\Accessibility\FnKeyHook.exe
O4 - HKLM\..\Run: [HWSetup] C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe hwSetUP
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [Tvs] C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [openvpn-gui] C:\Program Files\OpenVPN\bin\openvpn-gui.exe
O4 - HKLM\..\Run: [RavAV] C:\WINDOWS\AdobeR.exe
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -masquer
[b]O4 - HKLM\..\Run: [wosa] C:\DOCUME~1\x\LOCALS~1\Temp\woso.exe[/b]
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: PhraseExpress Pro.lnk = C:\Program Files\PhraseExpress Pro\phrase.exe
O4 - Global Startup: Fenêtre d'état de Canon iR1510-1670.LNK = C:\WINDOWS\system32\spool\drivers\w32x86\3\CAPM4LAK.EXE
O4 - Global Startup: Pandion.lnk = C:\Program Files\Pandion\Pandion.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\ou3viewer.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ou3viewer.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - [url=http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab]http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab[/url]
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: IS Service (ISSVC) - Symantec Corporation - C:\Program Files\Norton Internet Security\ISSVC.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Card Adapter (NETDown) - Unknown owner - C:\WINDOWS\grcf.exe
O23 - Service: OpenVPN Service (OpenVPNService) - Unknown owner - C:\Program Files\OpenVPN\bin\openvpnserv.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
sI VOUS EN ËTES ARRIVe JUSQUE LA ALORS MERCI !!!!
Bon le point est que je suis dans la panade complète,
J'a iplanté mon ordi au boulot,..... (deviné la tête qu'a fait mon chef)
Il tourne sur du windows XP en IE 6.0
Je n'y connais strictement rien mais j'ai quand même sauvegarder un log avec [\b] Hijackthis [\b]
Je vous explique mon probléme avant : le PC en démarrant entraine lautoexecution du programme "help.exe" et de Iexplorer des centaines de fois jusqu'a ce que mon PC n'en peuvent plus !!!
Je pense que le probléme vient du malware WOSO ou WOSA
Logfile of HijackThis v1.99.1
Scan saved at 09:14:54, on 25/05/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\grcf.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
C:\WINDOWS\system32\CAPM4RSK.EXE
C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
C:\Program Files\TOSHIBA\Accessibility\FnKeyHook.exe
C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
C:\Program Files\OpenVPN\bin\openvpn-gui.exe
C:\WINDOWS\AdobeR.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Pandion\Pandion.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\CAPM4LAK.EXE
C:\Program Files\PhraseExpress Pro\phrase.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\CAPM4SWK.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\OpenVPN\bin\openvpn.exe
C:\WINDOWS\system32\WISPTIS.EXE
C:\WinPBO2\Pbo.exe
C:\Hijackhis\HijackThis.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\x\LOCALS~1\Temp\help.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [url=https://www.google.fr/?gws_rd=ssl]https://www.google.fr/?gws_rd=ssl[/url]
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: Norton Internet Security - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton Internet Security - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Fichiers communs\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [PadTouch] C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe
O4 - HKLM\..\Run: [CeEKEY] C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
O4 - HKLM\..\Run: [TPNF] C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
O4 - HKLM\..\Run: [TOSHIBA Accessibility] C:\Program Files\TOSHIBA\Accessibility\FnKeyHook.exe
O4 - HKLM\..\Run: [HWSetup] C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe hwSetUP
O4 - HKLM\..\Run: [SVPWUTIL] C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe SVPwUTIL
O4 - HKLM\..\Run: [Tvs] C:\Program Files\TOSHIBA\Tvs\TvsTray.exe
O4 - HKLM\..\Run: [openvpn-gui] C:\Program Files\OpenVPN\bin\openvpn-gui.exe
O4 - HKLM\..\Run: [RavAV] C:\WINDOWS\AdobeR.exe
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -masquer
[b]O4 - HKLM\..\Run: [wosa] C:\DOCUME~1\x\LOCALS~1\Temp\woso.exe[/b]
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: PhraseExpress Pro.lnk = C:\Program Files\PhraseExpress Pro\phrase.exe
O4 - Global Startup: Fenêtre d'état de Canon iR1510-1670.LNK = C:\WINDOWS\system32\spool\drivers\w32x86\3\CAPM4LAK.EXE
O4 - Global Startup: Pandion.lnk = C:\Program Files\Pandion\Pandion.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\ou3viewer.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\ou3viewer.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - [url=http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab]http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab[/url]
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: IS Service (ISSVC) - Symantec Corporation - C:\Program Files\Norton Internet Security\ISSVC.exe
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Card Adapter (NETDown) - Unknown owner - C:\WINDOWS\grcf.exe
O23 - Service: OpenVPN Service (OpenVPNService) - Unknown owner - C:\Program Files\OpenVPN\bin\openvpnserv.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\FICHIE~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe
sI VOUS EN ËTES ARRIVe JUSQUE LA ALORS MERCI !!!!
A voir également:
- [woso-wosa attacks] malware
- Malwarebytes anti-malware - Télécharger - Antivirus & Antimalwares
- Mcafee malware - Accueil - Piratage
- Supprimer malware - Guide
- Win64 malware gen - Forum Virus
- Gridinsoft anti-malware ✓ - Forum Virus
1 réponse
Télécharge QQPass-RjumpStinger.zip ici :
http://download.nai.com/products/mcafee-avert/QQPass-RjumpStinger.zip
Clique sur enregistrer et choisis "bureau".
Dézippe le dans dans le dossier QQPass-RjumpStinger.
Connecte tous tes périphériques externes (DD, clés USB, ipod, ...).
Double clic sur le fichier Stinger.exe.
Si les lettres attribuées à chaque périphérique externe n'apparaissent pas automatiquement dans la liste des emplacements à scanner, rajoute-les manuellementde cette manière:
Clic sur Browse et selectionne le périphérique que tu souhaites rajouter à l'analyse.
Clique sur "Scan Now" pour lancer l'analyse.
Une fois le scan terminé, clique sur "File" dans le menu et clique sur "Save report to file" pour sauvegarder le rapport d'analyse.
Ce rapport est généré et sauvegardé dans le dossier QQPass-RjumpStinger sous le nom stinger.txt.
fais un copier/coller pour le mettre dans ta prochaine réponse.
http://download.nai.com/products/mcafee-avert/QQPass-RjumpStinger.zip
Clique sur enregistrer et choisis "bureau".
Dézippe le dans dans le dossier QQPass-RjumpStinger.
Connecte tous tes périphériques externes (DD, clés USB, ipod, ...).
Double clic sur le fichier Stinger.exe.
Si les lettres attribuées à chaque périphérique externe n'apparaissent pas automatiquement dans la liste des emplacements à scanner, rajoute-les manuellementde cette manière:
Clic sur Browse et selectionne le périphérique que tu souhaites rajouter à l'analyse.
Clique sur "Scan Now" pour lancer l'analyse.
Une fois le scan terminé, clique sur "File" dans le menu et clique sur "Save report to file" pour sauvegarder le rapport d'analyse.
Ce rapport est généré et sauvegardé dans le dossier QQPass-RjumpStinger sous le nom stinger.txt.
fais un copier/coller pour le mettre dans ta prochaine réponse.
Je m'en occupe de suite, a demain peut être.
J'espère que tu seras mon woso killler lol
Bonne journée