Worm trojan les supprimer - Page 2
Résolu
Précédent
- 1
- 2
continue sur le meme.
Essaye ca la version free devrai suffir :
http://www.zbshareware.com/download.html
Sa evitera surment une re-infection de tes autres disques quans tu les branchera...
puis une fois TOUS brancher fait un scan denouveau en ligne.
Met plutot AVG.
Essaye ca la version free devrai suffir :
http://www.zbshareware.com/download.html
Sa evitera surment une re-infection de tes autres disques quans tu les branchera...
puis une fois TOUS brancher fait un scan denouveau en ligne.
Met plutot AVG.
Bonjour dorgane désolé je n'étais pas dispo hier,
j'ai fait ce que tu m'avais demandé mais la version gratuite de zbshareware ne fait que détecter sans les supprimer les menaces.
J'ai gardé bitdefender plutot q'AVG.
J'ai insérer les disques durs externes et ai recommencé les premières manip que tu m'avais conseillées: voici les rapports eset nod 32 et highjackthis:
ESET:
# version=4
# OnlineScanner.ocx=1.0.0.56
# OnlineScannerDLLA.dll=1, 0, 0, 51
# OnlineScannerDLLW.dll=1, 0, 0, 51
# OnlineScannerUninstaller.exe=1, 0, 0, 49
# vers_standard_module=3437 (20080912)
# vers_arch_module=1.064 (20080214)
# vers_adv_heur_module=1.064 (20070717)
# EOSSerial=2a49096474d84548b785fd9020820890
# end=finished
# remove_checked=true
# unwanted_checked=true
# utc_time=2008-09-12 11:08:01
# local_time=2008-09-12 01:08:01 (+0100, Paris, Madrid (heure d'été))
# country="France"
# osver=5.1.2600 NT
# scanned=103358
# found=25
# scan_time=1190
J:\System Volume Information\_restore{BA94D60D-7DC9-4FD4-A462-D52461E7A6F2}\RP578\A0143982.EXE Win32/VB.FP worm (unable to clean - deleted) 00000000000000000000000000000000
J:\System Volume Information\_restore{BA94D60D-7DC9-4FD4-A462-D52461E7A6F2}\RP578\A0143983.INF INF/Autorun virus (unable to clean - deleted) 00000000000000000000000000000000
J:\System Volume Information\_restore{BA94D60D-7DC9-4FD4-A462-D52461E7A6F2}\RP578\A0143989.cmd Win32/PSW.OnLineGames.MUU trojan (unable to clean - deleted) 00000000000000000000000000000000
J:\System Volume Information\_restore{BA94D60D-7DC9-4FD4-A462-D52461E7A6F2}\RP578\A0143990.inf INF/Autorun virus (unable to clean - deleted) 00000000000000000000000000000000
K:\gy.cmd Win32/PSW.OnLineGames.MUU trojan (unable to clean - deleted) 00000000000000000000000000000000
K:\autorun.inf INF/Autorun virus (unable to clean - deleted) 00000000000000000000000000000000
K:\Recycled\INFO.EXE Win32/VB.FP worm (unable to clean - deleted) 00000000000000000000000000000000
K:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP32\A0002790.inf INF/Autorun virus (unable to clean - deleted) 00000000000000000000000000000000
K:\System Volume Information\_restore{BA94D60D-7DC9-4FD4-A462-D52461E7A6F2}\RP578\A0144004.cmd Win32/PSW.OnLineGames.MUU trojan (unable to clean - deleted) 00000000000000000000000000000000
K:\System Volume Information\_restore{BA94D60D-7DC9-4FD4-A462-D52461E7A6F2}\RP578\A0144005.inf INF/Autorun virus (unable to clean - deleted) 00000000000000000000000000000000
K:\System Volume Information\_restore{BA94D60D-7DC9-4FD4-A462-D52461E7A6F2}\RP578\A0144006.EXE Win32/VB.FP worm (unable to clean - deleted) 00000000000000000000000000000000
L:\gy.cmd Win32/PSW.OnLineGames.MUU trojan (unable to clean - deleted) 00000000000000000000000000000000
L:\autorun.inf INF/Autorun virus (unable to clean - deleted) 00000000000000000000000000000000
L:\Recycled\INFO.EXE Win32/VB.FP worm (unable to clean - deleted) 00000000000000000000000000000000
L:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP32\A0002791.inf INF/Autorun virus (unable to clean - deleted) 00000000000000000000000000000000
L:\System Volume Information\_restore{BA94D60D-7DC9-4FD4-A462-D52461E7A6F2}\RP578\A0144007.cmd Win32/PSW.OnLineGames.MUU trojan (unable to clean - deleted) 00000000000000000000000000000000
L:\System Volume Information\_restore{BA94D60D-7DC9-4FD4-A462-D52461E7A6F2}\RP578\A0144008.inf INF/Autorun virus (unable to clean - deleted) 00000000000000000000000000000000
L:\System Volume Information\_restore{BA94D60D-7DC9-4FD4-A462-D52461E7A6F2}\RP578\A0144009.EXE Win32/VB.FP worm (unable to clean - deleted) 00000000000000000000000000000000
M:\gy.cmd Win32/PSW.OnLineGames.MUU trojan (unable to clean - deleted) 00000000000000000000000000000000
M:\autorun.inf INF/Autorun virus (unable to clean - deleted) 00000000000000000000000000000000
M:\Recycled\INFO.EXE Win32/VB.FP worm (unable to clean - deleted) 00000000000000000000000000000000
M:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP32\A0002792.inf INF/Autorun virus (unable to clean - deleted) 00000000000000000000000000000000
M:\System Volume Information\_restore{BA94D60D-7DC9-4FD4-A462-D52461E7A6F2}\RP578\A0144010.cmd Win32/PSW.OnLineGames.MUU trojan (unable to clean - deleted) 00000000000000000000000000000000
M:\System Volume Information\_restore{BA94D60D-7DC9-4FD4-A462-D52461E7A6F2}\RP578\A0144011.inf INF/Autorun virus (unable to clean - deleted) 00000000000000000000000000000000
M:\System Volume Information\_restore{BA94D60D-7DC9-4FD4-A462-D52461E7A6F2}\RP578\A0144012.EXE Win32/VB.FP worm (unable to clean - deleted) 00000000000000000000000000000000
Highjackthis:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:13:14, on 12/09/2008
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
C:\WINDOWS\System32\WgaTray.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\TPPALDR.EXE
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Softwin\BitDefender10\bdmcon.exe
C:\Program Files\Softwin\BitDefender10\bdagent.exe
C:\Program Files\SAGEM Wi-Fi USB 802.11g\WLANUTL.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\USB Disk Security\USBGuard.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Softwin\BitDefender10\vsserv.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32Info.exe
C:\Documents and Settings\zorrobonbel\Mes documents\MATHIEU DOC\Programmes\Scanner disque dur- virerr élément\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [TPP Auto Loader] C:\WINDOWS\TPPALDR.EXE
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [BDMCon] "C:\Program Files\Softwin\BitDefender10\bdmcon.exe" /reg
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\Softwin\BitDefender10\bdagent.exe"
O4 - HKLM\..\Run: [USB Antivirus] C:\Program Files\USB Disk Security\USBGuard.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [AdobeUpdater] C:\Program Files\Fichiers communs\Adobe\Updater5\AdobeUpdater.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) - https://www.eset.com/
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - SOFTWIN S.R.L - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
j'ai fait ce que tu m'avais demandé mais la version gratuite de zbshareware ne fait que détecter sans les supprimer les menaces.
J'ai gardé bitdefender plutot q'AVG.
J'ai insérer les disques durs externes et ai recommencé les premières manip que tu m'avais conseillées: voici les rapports eset nod 32 et highjackthis:
ESET:
# version=4
# OnlineScanner.ocx=1.0.0.56
# OnlineScannerDLLA.dll=1, 0, 0, 51
# OnlineScannerDLLW.dll=1, 0, 0, 51
# OnlineScannerUninstaller.exe=1, 0, 0, 49
# vers_standard_module=3437 (20080912)
# vers_arch_module=1.064 (20080214)
# vers_adv_heur_module=1.064 (20070717)
# EOSSerial=2a49096474d84548b785fd9020820890
# end=finished
# remove_checked=true
# unwanted_checked=true
# utc_time=2008-09-12 11:08:01
# local_time=2008-09-12 01:08:01 (+0100, Paris, Madrid (heure d'été))
# country="France"
# osver=5.1.2600 NT
# scanned=103358
# found=25
# scan_time=1190
J:\System Volume Information\_restore{BA94D60D-7DC9-4FD4-A462-D52461E7A6F2}\RP578\A0143982.EXE Win32/VB.FP worm (unable to clean - deleted) 00000000000000000000000000000000
J:\System Volume Information\_restore{BA94D60D-7DC9-4FD4-A462-D52461E7A6F2}\RP578\A0143983.INF INF/Autorun virus (unable to clean - deleted) 00000000000000000000000000000000
J:\System Volume Information\_restore{BA94D60D-7DC9-4FD4-A462-D52461E7A6F2}\RP578\A0143989.cmd Win32/PSW.OnLineGames.MUU trojan (unable to clean - deleted) 00000000000000000000000000000000
J:\System Volume Information\_restore{BA94D60D-7DC9-4FD4-A462-D52461E7A6F2}\RP578\A0143990.inf INF/Autorun virus (unable to clean - deleted) 00000000000000000000000000000000
K:\gy.cmd Win32/PSW.OnLineGames.MUU trojan (unable to clean - deleted) 00000000000000000000000000000000
K:\autorun.inf INF/Autorun virus (unable to clean - deleted) 00000000000000000000000000000000
K:\Recycled\INFO.EXE Win32/VB.FP worm (unable to clean - deleted) 00000000000000000000000000000000
K:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP32\A0002790.inf INF/Autorun virus (unable to clean - deleted) 00000000000000000000000000000000
K:\System Volume Information\_restore{BA94D60D-7DC9-4FD4-A462-D52461E7A6F2}\RP578\A0144004.cmd Win32/PSW.OnLineGames.MUU trojan (unable to clean - deleted) 00000000000000000000000000000000
K:\System Volume Information\_restore{BA94D60D-7DC9-4FD4-A462-D52461E7A6F2}\RP578\A0144005.inf INF/Autorun virus (unable to clean - deleted) 00000000000000000000000000000000
K:\System Volume Information\_restore{BA94D60D-7DC9-4FD4-A462-D52461E7A6F2}\RP578\A0144006.EXE Win32/VB.FP worm (unable to clean - deleted) 00000000000000000000000000000000
L:\gy.cmd Win32/PSW.OnLineGames.MUU trojan (unable to clean - deleted) 00000000000000000000000000000000
L:\autorun.inf INF/Autorun virus (unable to clean - deleted) 00000000000000000000000000000000
L:\Recycled\INFO.EXE Win32/VB.FP worm (unable to clean - deleted) 00000000000000000000000000000000
L:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP32\A0002791.inf INF/Autorun virus (unable to clean - deleted) 00000000000000000000000000000000
L:\System Volume Information\_restore{BA94D60D-7DC9-4FD4-A462-D52461E7A6F2}\RP578\A0144007.cmd Win32/PSW.OnLineGames.MUU trojan (unable to clean - deleted) 00000000000000000000000000000000
L:\System Volume Information\_restore{BA94D60D-7DC9-4FD4-A462-D52461E7A6F2}\RP578\A0144008.inf INF/Autorun virus (unable to clean - deleted) 00000000000000000000000000000000
L:\System Volume Information\_restore{BA94D60D-7DC9-4FD4-A462-D52461E7A6F2}\RP578\A0144009.EXE Win32/VB.FP worm (unable to clean - deleted) 00000000000000000000000000000000
M:\gy.cmd Win32/PSW.OnLineGames.MUU trojan (unable to clean - deleted) 00000000000000000000000000000000
M:\autorun.inf INF/Autorun virus (unable to clean - deleted) 00000000000000000000000000000000
M:\Recycled\INFO.EXE Win32/VB.FP worm (unable to clean - deleted) 00000000000000000000000000000000
M:\System Volume Information\_restore{86E11626-5203-4B6B-99A3-889F6E4C5699}\RP32\A0002792.inf INF/Autorun virus (unable to clean - deleted) 00000000000000000000000000000000
M:\System Volume Information\_restore{BA94D60D-7DC9-4FD4-A462-D52461E7A6F2}\RP578\A0144010.cmd Win32/PSW.OnLineGames.MUU trojan (unable to clean - deleted) 00000000000000000000000000000000
M:\System Volume Information\_restore{BA94D60D-7DC9-4FD4-A462-D52461E7A6F2}\RP578\A0144011.inf INF/Autorun virus (unable to clean - deleted) 00000000000000000000000000000000
M:\System Volume Information\_restore{BA94D60D-7DC9-4FD4-A462-D52461E7A6F2}\RP578\A0144012.EXE Win32/VB.FP worm (unable to clean - deleted) 00000000000000000000000000000000
Highjackthis:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:13:14, on 12/09/2008
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
C:\WINDOWS\System32\WgaTray.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\TPPALDR.EXE
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Softwin\BitDefender10\bdmcon.exe
C:\Program Files\Softwin\BitDefender10\bdagent.exe
C:\Program Files\SAGEM Wi-Fi USB 802.11g\WLANUTL.exe
C:\PROGRA~1\Wanadoo\TaskBarIcon.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\USB Disk Security\USBGuard.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Softwin\BitDefender10\vsserv.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32Info.exe
C:\Documents and Settings\zorrobonbel\Mes documents\MATHIEU DOC\Programmes\Scanner disque dur- virerr élément\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [TPP Auto Loader] C:\WINDOWS\TPPALDR.EXE
O4 - HKLM\..\Run: [WOOWATCH] C:\PROGRA~1\Wanadoo\Watch.exe
O4 - HKLM\..\Run: [WOOTASKBARICON] C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [BDMCon] "C:\Program Files\Softwin\BitDefender10\bdmcon.exe" /reg
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\Softwin\BitDefender10\bdagent.exe"
O4 - HKLM\..\Run: [USB Antivirus] C:\Program Files\USB Disk Security\USBGuard.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [AdobeUpdater] C:\Program Files\Fichiers communs\Adobe\Updater5\AdobeUpdater.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.exe.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ?
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.mail.live.com/mail/w1/resources/MSNPUpld.cab
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) - https://www.eset.com/
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - SOFTWIN S.R.L - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
Ben tout à l'air ok hormis que XP n'est pas à jour ^^
Service pack 3 :
http://www.microsoft.com/downloads/details.aspx?displaylang=fr&FamilyID=2fcde6ce-b5fb-4488-8c50-fe22559d164e
Si sa install pas Internet explorer 7 :
https://support.microsoft.com/fr-fr/allproducts
Service pack 3 :
http://www.microsoft.com/downloads/details.aspx?displaylang=fr&FamilyID=2fcde6ce-b5fb-4488-8c50-fe22559d164e
Si sa install pas Internet explorer 7 :
https://support.microsoft.com/fr-fr/allproducts
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Précédent
- 1
- 2
