Actualité informatique
Test comparatif matériel informatique
Jeux vidéo
Astuces informatique
Vidéo
Télécharger
Services en ligne
Forum informatique
01Business

|-  SECURITE


|||-  

Virus -Trojan

 

LOGICIELS : ChristianCM et 44 utilisateurs inconnus
Ajouter une réponse
 

 
Page photos
 
     
Vider la liste des messages à citer
 
 Page :
1
Auteur
 Sujet :

Virus -Trojan

Prévenir les modérateurs en cas d'abus 
LouBoum
louboum
  1. Posté le 04/01/2013 à 17:17:58  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Bonjour,

 Je suis de Montréal et apprécie les bons conseils que je trouve sur ce site.  Voici mon problème.

 Kaspersky m'indique que mon ordi est atteint de 2 virus:
 - trojan-banker.win32.banker.biu​n
 - heur:trojan-downloader.script.​generic

 Quelqu'un peux m'aider?

 MERCI!

 Voic le rapport de HightjackedThis:
 Logfile of Trend Micro HijackThis v2.0.2
 Scan saved at 11:06:40, on 2013-01-04
 Platform: Windows Vista SP2 (WinNT 6.00.1906)
 MSIE: Internet Explorer v8.00 (8.00.6001.19393)
 Boot mode: Normal

 Running processes:
 C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
 C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\lxecmon.exe
 C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\ezprint.exe
 C:\Program Files (x86)\Common Files\InstallShield\UpdateServ​ice\ISUSPM.exe
 C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
 C:\Program Files (x86)\Skype\Phone\Skype.exe
 C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
 C:\hp\support\hpsysdrv.exe
 C:\Program Files (x86)\Hewlett-Packard\TouchSma​rt\Media\TSMAgent.exe
 C:\Program Files (x86)\Hewlett-Packard\TouchSma​rt\Media\Kernel\CLML\CLMLSvc.e​xe
 C:\Program Files (x86)\Hewlett-Packard\Media\DV​D\DVDAgent.exe
 C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.e​xe
 C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
 C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\avp.exe
 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
 C:\Program Files (x86)\iTunes\iTunesHelper.exe
 C:\Program Files (x86)\AVG Secure Search\vprot.exe
 C:\Program Files (x86)\Hewlett-Packard\KBD\kbd.​exe
 C:\Users\stamandl\AppData\Loca​l\Google\Chrome\Application\ch​rome.exe
 C:\Users\stamandl\AppData\Loca​l\Google\Chrome\Application\ch​rome.exe
 C:\Users\stamandl\AppData\Loca​l\Google\Chrome\Application\ch​rome.exe
 C:\Users\stamandl\AppData\Loca​l\Google\Chrome\Application\ch​rome.exe
 C:\Users\stamandl\AppData\Loca​l\Google\Chrome\Application\ch​rome.exe
 C:\Users\stamandl\AppData\Loca​l\Google\Chrome\Application\ch​rome.exe
 C:\Users\stamandl\AppData\Loca​l\Google\Chrome\Application\ch​rome.exe
 C:\Users\stamandl\AppData\Loca​l\Google\Chrome\Application\ch​rome.exe
 C:\Users\stamandl\AppData\Loca​l\Google\Chrome\Application\ch​rome.exe
 C:\Users\stamandl\AppData\Loca​l\Google\Chrome\Application\ch​rome.exe
 C:\Program Files (x86)\HighjackedThis\HijackThi​s.exe
 C:\Program Files (x86)\Internet Explorer\IELowutil.exe
 C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.ex​e

 R1 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/ [...] on&pf=cndt
 R1 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Start Page = https://isearch.avg.com/?cid={ [...] 2012-10-19 16:38:46&v=13.2.0.3&sap=hp
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/ [...] on&pf=cndt
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Default_Search_U​RL = http://go.microsoft.com/fwlink/?LinkId=54896
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/ [...] on&pf=cndt
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Search,SearchAssistan​t =
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Search,CustomizeSearc​h =
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
 R1 - HKCU\Software\Microsoft\Window​s\CurrentVersion\Internet Settings,ProxyOverride = *.local
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Toolbar,LinksFolderNa​me =
 R3 - URLSearchHook: Jeux- Toolbar - {3248f342-70c6-418d-a300-b8e92​5e95556} - C:\Program Files (x86)\Jeux-\prxtbJeu0.dll
 F2 - REG:system.ini: UserInit=userinit.exe
 O1 - Hosts: ::1 localhost
 O2 - BHO: Lexmark Barre d'outils - {1017A80C-6F09-4548-A84D-EDD6A​C9525F0} - C:\Program Files (x86)\Lexmark Toolbar\toolband.dll
 O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578​C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\Ac​roIEHelperShim.dll
 O2 - BHO: Jeux- - {3248f342-70c6-418d-a300-b8e92​5e95556} - C:\Program Files (x86)\Jeux-\prxtbJeu0.dll
 O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7​942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
 O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9C​CA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\ievkbd.dll
 O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3A​AC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
 O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF​1D92D43} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll
 O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-51647​60863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
 O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684​A933233} - C:\Program Files (x86)\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll
 O2 - BHO: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955​acaa0a7} - C:\PROGRA~2\SEARCH~1\Datamngr\​ToolBar\searchqudtx.dll (file missing)
 O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455C​BEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.d​ll
 O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF105​77473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar.dll
 O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F78​51A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
 O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B​5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNoti​fier\5.1.1309.15642\swg.dll
 O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02​E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_A​8904FB862BD9564.dll
 O2 - BHO: Lexmark  - {D2C5E510-BE6D-42CC-9F61-E4F93​9078474} - C:\Program Files\Lexmark Printable Web\bho.dll
 O2 - BHO: Microsoft Live Search Toolbar Helper - {d2ce3e00-f94a-4740-988e-03dc2​f38c34f} - c:\Program Files (x86)\MSN\Toolbar\3.0.0541.0\m​sneshellx.dll
 O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C​1C588A9} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
 O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F7​6A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\klwtbbho.dll
 O3 - Toolbar: Microsoft Live Search Toolbar - {1E61ED7C-7CB8-49d6-B9E9-AB4C8​80C8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0541.0\m​sneshellx.dll
 O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-00902​7A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar.dll
 O3 - Toolbar: Lexmark Barre d'outils - {1017A80C-6F09-4548-A84D-EDD6A​C9525F0} - C:\Program Files (x86)\Lexmark Toolbar\toolband.dll
 O3 - Toolbar: Jeux- Toolbar - {3248f342-70c6-418d-a300-b8e92​5e95556} - C:\Program Files (x86)\Jeux-\prxtbJeu0.dll
 O3 - Toolbar: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955​acaa0a7} - C:\PROGRA~2\SEARCH~1\Datamngr\​ToolBar\searchqudtx.dll (file missing)
 O3 - Toolbar: (no name) - !{95B7759C-8C7F-4BF1-B163-7368​4A933233} - (no file)
 O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe
 O4 - HKLM\..\Run: [KBD] C:\Program Files (x86)\Hewlett-Packard\KBD\KbdS​tub.EXE
 O4 - HKLM\..\Run: [HP Health Check Scheduler] c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
 O4 - HKLM\..\Run: [UpdateP2GoShortCut] "c:\Program Files (x86)\CyberLink\Power2Go\MUITr​ansfer\MUIStartMenu.exe" "c:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6​.0"
 O4 - HKLM\..\Run: [UpdatePDIRShortCut] "c:\Program Files (x86)\CyberLink\PowerDirector\​MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)\CyberLink\PowerDirector" UpdateWithCreateOnce "SOFTWARE\CyberLink\PowerDirec​tor\7.0"
 O4 - HKLM\..\Run: [UpdatePSTShortCut] "c:\Program Files (x86)\CyberLink\CyberLink DVD Suite Deluxe\MUITransfer\MUIStartMen​u.exe" "c:\Program Files (x86)\CyberLink\CyberLink DVD Suite Deluxe" UpdateWithCreateOnce "Software\CyberLink\PowerStart​er"
 O4 - HKLM\..\Run: [TSMAgent] "c:\Program Files (x86)\Hewlett-Packard\TouchSma​rt\Media\TSMAgent.exe"
 O4 - HKLM\..\Run: [CLMLServer for HP TouchSmart] "c:\Program Files (x86)\Hewlett-Packard\TouchSma​rt\Media\Kernel\CLML\CLMLSvc.e​xe"
 O4 - HKLM\..\Run: [DVDAgent] "c:\Program Files (x86)\Hewlett-Packard\Media\DV​D\DVDAgent.exe"
 O4 - HKLM\..\Run: [Lexmark Pro800-Pro900 Series] "C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\fm3032.exe" /s
 O4 - HKLM\..\Run: [LifeCam] "C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe"
 O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchT​ray9.exe"
 O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
 O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.e​xe"
 O4 - HKLM\..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
 O4 - HKLM\..\Run: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\avp.exe"
 O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
 O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
 O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
 O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
 O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe"
 O4 - HKLM\..\Run: [ROC_roc_ssl_v12] "C:\Program Files (x86)\AVG Secure Search\ROC_roc_ssl_v12.exe" / /PROMPT /CMPID=roc_ssl_v12
 O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
 O4 - HKCU\..\Run: [swg] C:\Program Files (x86)\Google\GoogleToolbarNoti​fier\GoogleToolbarNotifier.exe
 O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
 O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
 O4 - HKCU\..\Run: [ISUSPM] "C:\Program Files (x86)\Common Files\InstallShield\UpdateServ​ice\ISUSPM.exe" -scheduler
 O4 - HKCU\..\Run: [Google Update] "C:\Users\stamandl\AppData\Loc​al\Google\Update\GoogleUpdate.​exe" /c
 O4 - HKCU\..\Run: [RegistryBooster] "C:\Program Files (x86)\Uniblue\RegistryBooster\​launcher.exe" delay 20000
 O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
 O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe
 O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
 O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
 O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')
 O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')
 O4 - Startup: Adobe Gamma.lnk = C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
 O4 - Startup: FrostWire On Startup.lnk = C:\Users\stamandl\Documents\Fr​ostWire\FrostWire 5\FrostWire.exe
 O4 - Startup: IMVU.lnk = ?
 O4 - Startup: OneNote 2007 - Capture d'écran et lancement.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
 O8 - Extra context menu item: Add to Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\ie_banner_deny.htm
 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Off​ice12\EXCEL.EXE/3000
 O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.d​ll,-600 - {0000036B-C524-4050-81A0-24366​9A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.d​ll
 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401​C608501} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2iexp.dll
 O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401​C608501} - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2iexp.dll
 O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterS​hortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCD​DC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExten​sion.dll
 O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterS​hortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCD​DC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExten​sion.dll
 O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663E​E0C6C49} - C:\PROGRA~2\MICROS~3\Office12\​ONBttnIE.dll
 O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663E​E0C6C49} - C:\PROGRA~2\MICROS~3\Office12\​ONBttnIE.dll
 O9 - Extra button: &Virtual Keyboard - {4248FE82-7FCB-46AC-B270-339F0​8212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\klwtbbho.dll
 O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46​303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
 O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C5​71A8263} - C:\PROGRA~2\MICROS~3\Office12\​REFIEBAR.DLL
 O9 - Extra button: URLs c&heck - {CCF151D8-D089-449F-A5A4-D9909​053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\klwtbbho.dll
 O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB​36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
 O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB​36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll
 O13 - Gopher Prefix:
 O16 - DPF: Garmin Communicator Plug-In - https://my.garmin.com/static/m [...] ontrol.CAB
 O16 - DPF: {1C11B948-582A-433F-A98D-A8C4D​5CC64F2} (20-20 3D Viewer) - http://kitchenplanner.ikea.com [...] _Win32.cab
 O16 - DPF: {CB50428B-657F-47DF-9B32-671F8​2AA73F7} - http://www.photodex.com/pxplay.cab
 O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F​616BCA7} - http://wwwimages.adobe.com/www [...] nos/gp.cab
 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-44455​3540000} (Shockwave Flash Object) - http://fpdownload2.macromedia. [...] wflash.cab
 O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF​37916A7} - http://platformdl.adobe.com/NO [...] 1.6/gp.cab
 O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617​B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C​7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKY​PE4~1.DLL
 O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C2​27862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\13.​2.0\ViProtocol.dll
 O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89​B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolH​andler.dll
 O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719F​E26E377} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_A​8904FB862BD9564.dll
 O20 - AppInit_DLLs:   C:\PROGRA~2\KASPER~1\KASPER~2\​mzvkbd3.dll,C:\PROGRA~2\KASPER​~1\KASPER~2\sbhook.dll
 O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
 O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
 O23 - Service: @%SystemRoot%\system32\Alg.exe​,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
 O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceServi​ce.exe
 O23 - Service: Kaspersky PURE (AVP) - Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE\avp.exe
 O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.ex​e
 O23 - Service: CryptoStorage control service (CSObjectsSrv) - Infowatch - C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\​ProtectedObjectsSrv.exe
 O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
 O23 - Service: FlipShare Service - Unknown owner - C:\Program Files (x86)\Flip Video\FlipShare\FlipShareServi​ce.exe
 O23 - Service: FlipShare Server (FlipShareServer) - Unknown owner - C:\Program Files (x86)\Flip Video\FlipShareServer\FlipShar​eServer.exe
 O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\My HP Game Console\GameConsoleService.exe
 O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpda​te.exe
 O23 - Service: Service Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpda​te.exe
 O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.e​xe
 O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
 O23 - Service: HP Easy Backup Button Service (HPBtnSrv) - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\HP Easy Backup\HPBtnSrv.exe
 O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
 O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\105​0\Intel 32\IDriverT.exe
 O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
 O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
 O23 - Service: lxecCATSCustConnectService - Lexmark International, Inc. - C:\Windows\system32\spool\DRIV​ERS\x64\3\\lxecserv.exe
 O23 - Service: lxec_device -   - C:\Windows\system32\lxeccoms.e​xe
 O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
 O23 - Service: @%SystemRoot%\System32\netlogo​n.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
 O23 - Service: Norton Internet Security - Unknown owner - C:\Program Files (x86)\Norton Internet Security\Engine\16.0.0.125\ccS​vcHst.exe (file missing)
 O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
 O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.e​xe
 O23 - Service: @%systemroot%\system32\psbase.​dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
 O23 - Service: Roxio UPnP Renderer 9 - Sonic Solutions - C:\Program Files (x86)\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe
 O23 - Service: Roxio Upnp Server 9 - Sonic Solutions - C:\Program Files (x86)\Roxio\Digital Home 9\RoxioUpnpService9.exe
 O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveSh​are9.exe
 O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaD​B9.exe
 O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9​.exe
 O23 - Service: @%systemroot%\system32\Locator​.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.ex​e (file missing)
 O23 - Service: @%SystemRoot%\system32\samsrv.​dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
 O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
 O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\​Skype C2C Service\c2c_service.exe
 O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.ex​e
 O23 - Service: @%SystemRoot%\system32\SLsvc.e​xe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
 O23 - Service: @%SystemRoot%\system32\snmptra​p.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.e​xe (file missing)
 O23 - Service: @%systemroot%\system32\spoolsv​.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.ex​e (file missing)
 O23 - Service: @%SystemRoot%\system32\ui0dete​ct.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.​exe (file missing)
 O23 - Service: @%SystemRoot%\system32\vds.exe​,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
 O23 - Service: @%systemroot%\system32\vssvc.e​xe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
 O23 - Service: vToolbarUpdater13.2.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\​ToolbarUpdater.exe
 O23 - Service: @%Systemroot%\system32\wbem\wm​iapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiAp​Srv.exe (file missing)
 O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

 --
 End of file - 21799 bytes

Entraide et convivialité
  1. homepage
herisson41
Membre impliqué (de 20 000 à 29 999 messages postés) Fan Club de Clic-Clic Maître smilies
  1. Posté le 04/01/2013 à 19:56:37  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
  :hello:  LouBoum et http://site.herisson41.free.fr/bienvenue.jpg sur le forum de Micro Hebdo, mais tu n'as pas posté ta question dans la bonne catégorie.

 Je déplace ton sujet dans la catégorie "Sécurité" où tu trouveras l'aide qu'il te faut.

 Bonne continuation


---------------
A consulter :
[:gepetest:4] Club des fans de Clic-Clic [:gepetest:4] Index en ligne de Micro Hebdo
.. [:gepetest3] ....   Répertoire des tutoriels   ..... [:gepetest3] ..... Calendrier des anniversaires
(Publicité)
La Mayenne-son calme -sa verdu
Profil : Equipe sécurité
  1. homepage
bernard53
Membre impliqué (de 20 000 à 29 999 messages postés) Helpeur confirmé Fan Club de Clic-Clic
  1. Posté le 04/01/2013 à 20:10:29  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
:hello:

 Ceci s.t.p

 Télécharge AdwCleaner ( d'Xplode ) sur ton bureau.  
 
 http://nsm05.casimages.com/img​/2012/09/11//12091108285615405​010308271.png
 http://general-changelog-team. [...] adwcleaner

 
 http://nsm05.casimages.com/img​/2012/09/11//12091108285915405​010308272.png

 Lance le, clique sur [Suppression]puis patiente le temps du scan.
 Une fois le scan fini, un rapport s'ouvrira. Poste moi son contenu dans ta prochaine réponse.

 Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt

 Ensuite:
 Installe Malewarebytes' Antimalware,

 http://malwarebytes.org/products/malwarebytes_free

 Prends bien la version FREE
 *** Met-le à jour puis choisi, Fait juste un scan rapide

 *** Si une infection est trouvée, coche la case a coté et valides avec l’Onglet Supprimer la sélection

 Poste le rapport final.

 Puis:
 Tu as trop de chose au démarrage du pc.

 Tu peux contrôler le démarrage de tous ces processus avec un logiciel comme Starter de Code Stuff.
 Télécharge et installe Code Stuff Starter :

 http://www.pc-infopratique.com [...] arter.html
 ou
 http://telechargement.zebulon.fr/starter.html

 Ensuite vas dans l’onglet démarrage et décoches les lignes voulues.

 Ne t'inquiète pas si a l'usage tu veux réactiver l'une d'elles, il suffit de la. recocher  

 Elles sont lancées inutilement au démarrage du système et cela ne comporte aucun danger.


 Lignes à décocher qui sont en relation.

 



 
 O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe    
 O4 - HKLM\..\Run: [KBD] C:\Program Files (x86)\Hewlett-Packard\KBD\KbdS​tub.EXE
 O4 - HKLM\..\Run: [HP Health Check Scheduler] c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe  
 O4 - HKLM\..\Run: [UpdateP2GoShortCut] "c:\Program Files (x86)\CyberLink\Power2Go\MUITr​ansfer\MUIStartMenu.exe" "c:\Program Files (x86)\CberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6​.0"  
 O4 - HKLM\..\Run: [UpdatePDIRShortCut] "c:\Program Files (x86)\CyberLink\PowerDirector\​MUITransfer\MUIStartMenu.exe" "c:\Program Files (x86)\CyberLink\PowerDirector" UpdateWithCreateOnce "SOFTWARE\CyberLink\PowerDirec​tor\7.0
 O4 - HKLM\..\Run: [UpdatePSTShortCut] "c:\Program Files (x86)\CyberLink\CyberLink DVD Suite Deluxe\MUITransfer\MUIStartMen​u.exe" "c:\Program Files (x86)\CyberLink\CyberLink DVD Suite Deluxe" UpdateWithCreateOnce "Software\CyberLink\PowerStart​er"
 O4 - HKLM\..\Run: [TSMAgent] "c:\Program Files (x86)\Hewlett-Packard\TouchSma​rt\Media\TSMAgent.exe"
 O4 - HKLM\..\Run: [CLMLServer for HP TouchSmart] "c:\Program Files (x86)\Hewlett-Packard\TouchSma​rt\Media\Kernel\CLML\CLMLSvc.e​xe"
 O4 - HKLM\..\Run: [DVAgent] "c:\Program Files (x86)\Hewlett-Packard\Media\DV​D\DVDAgent.exe
 O4 - HKLM\..\Run: [Lexmark Pro800-Pro900 Series] "C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\fm3032.exe" /s
 O4 - HKLM\..\Run: [LifeCam] "C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe"
 O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchT​ray9.exe"
 O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.ex
 O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.e​xe"
 O4 - HKLM\..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
 O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"    
 O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime  
 O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"    
 O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
 O4 - HKCU\..\Run: [swg] C:\Program Files (x86)\Google\GoogleToolbarNoti​fier\GoogleToolbarNotifier.exe
 O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe  
 O4 - HKCU\..\Run: [msnmsgr] "C\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background  
 O4 - HKCU\..\Run: [ISUSPM] "C:\Program Files (x86)\Common Files\InstallShield\UpdateServ​ice\ISUSPM.exe" -scheduler  
 O4 - HKCU\..\Run: [Google Update] "C:\Users\stamandl\AppData\Loc​al\Google\Update\GoogleUpdate.​exe" /c  
 O4 - HKCU\..\Run: [RegistryBooster] "C:\Program Files (x86)\Uniblue\RegistryBooster\​launcher.exe" delay 20000  
 O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe  
 O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe    
 O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
 O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')
 O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')    =
 O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windos Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')    
 O4 - Startup: Adobe Gamma.lnk = C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe  
 O4 - Startup: FrostWire On Startup.lnk = C:\Users\stamandl\Documents\Fr​ostWire\FrostWire 5\FrostWire.exe  
 O4 - Startup: IMVU.lnk =
 




 Redémarres le pc ensuite pour constater le mieux. ;)


 Page :
1

Aller à :
 

Sujets relatifs
Invasion virus, plus de connection internet! (RESOLU) Comment supprimer trojan agent [ Résolu ]
Plus de sujets relatifs à : Virus -Trojan

Les 5 sujets de discussion précédents Nombre de réponses Dernier message
logiciel Reg clean Pro 2
Une autre prise avec Searchnu... :( 1
services.exe a renc un pb et doit fermer 23
RESOLU comment se débarasser de searchnu.com/410 19
RESOLU Comment supprimer searchnu.com/414 11