Actualité informatique
Test comparatif matériel informatique
Jeux vidéo
Astuces informatique
Vidéo
Télécharger
Services en ligne
Forum informatique
01Business

|-  SECURITE


|||-  

virus win 32.gpcode.ak

 

2 utilisateurs anonymes et 117 utilisateurs inconnus
Ajouter une réponse
 

 
Page photos
 
     
Vider la liste des messages à citer
 
 Page :
1
Auteur
 Sujet :

virus win 32.gpcode.ak

Prévenir les modérateurs en cas d'abus 
rond
rond
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 25/12/2009 à 09:33:07  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
de fausses fenetres windows s'affichent
 des alertes sécurité parlant de trojan win32 AGENT;DCC

house9
Bébé forumeur (De 10 à 49 messages postés)
  1. Posté le 25/12/2009 à 15:21:11  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Bonjours,

 Téléchargez la dernière version d'HiJackThis à cette adresse.
 Allez dans le répertoire dans lequel vous avez sauvé le fichier, renommez le (par exemple : "cocker" ) puis :

* Pour Windows XP : double-cliquez sur le fichier pour l'exécuter.

* Pour Windows Vista et Windows 7 : faites un clic droit sur le fichier puis cliquez sur Exécuter en tant qu'administrateur.
 Cliquez ensuite sur Exécuter.

 Puis, le contrat de licence apparait. Cliquez alors sur I Accept.
 Ensuite, cliquez sur Do a system scan and save a log file.
 Une fois le scan terminé, le fichier log dénommé hijackthis.log s'ouvre automatiquement dans le bloc-notes de Windows. Sélectionnez l'ensemble du texte (Ctrl+A), copiez le (Ctrl+C) puis postez le sur le forum en le collant (Ctrl+V).

 Bonne journée et joyeux noël. ;)

(Publicité)
ph31400
  1. Posté le 27/12/2009 à 15:24:17  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Logfile of Trend Micro HijackThis v2.0.2
 Scan saved at 15:10:17, on 28/12/2009
 Platform: Windows XP SP3 (WinNT 5.01.2600)
 MSIE: Internet Explorer v8.00 (8.00.6001.18702)
 Boot mode: Normal

 Running processes:
 C:\WINDOWS\System32\smss.exe
 C:\WINDOWS\system32\winlogon.e​xe
 C:\WINDOWS\system32\services.e​xe
 C:\WINDOWS\system32\lsass.exe
 C:\WINDOWS\system32\svchost.ex​e
 C:\WINDOWS\System32\svchost.ex​e
 C:\WINDOWS\system32\spoolsv.ex​e
 C:\WINDOWS\Explorer.EXE
 C:\WINDOWS\ehome\ehtray.exe
 C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
 C:\Program Files\Java\jre6\bin\jusched.ex​e
 C:\Program Files\Synaptics\SynTP\SynTPEnh​.exe
 C:\Program Files\HP\QuickPlay\QPService.e​xe
 C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
 C:\Program Files\Fichiers communs\InstallShield\UpdateSe​rvice\issch.exe
 C:\Program Files\Eset\nod32kui.exe
 C:\Program Files\iTunes\iTunesHelper.exe
 C:\WINDOWS\system32\ctfmon.exe
 C:\Program Files\SlySoft\AnyDVD\AnyDVD.ex​e
 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
 C:\Program Files\DNA\btdna.exe
 C:\Program Files\Windows Media Player\WMPNSCFG.exe
 C:\DOCUME~1\PIERRE~1\LOCALS~1\​Temp\richtx64.exe
 C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
 C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
 C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
 C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceS​ervice.exe
 C:\Program Files\Bonjour\mDNSResponder.ex​e
 C:\WINDOWS\eHome\ehRecvr.exe
 C:\WINDOWS\eHome\ehSched.exe
 C:\WINDOWS\System32\svchost.ex​e
 C:\Program Files\Java\jre6\bin\jqs.exe
 C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
 C:\Program Files\Eset\nod32krn.exe
 C:\WINDOWS\system32\nvsvc32.ex​e
 C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
 C:\DOCUME~1\PIERRE~1\LOCALS~1\​Temp\wscsvc32.exe
 C:\WINDOWS\system32\svchost.ex​e
 C:\Program Files\Viewpoint\Common\Viewpoi​ntService.exe
 C:\WINDOWS\system32\mqsvc.exe
 C:\Program Files\Hewlett-Packard\Shared\h​pqwmiex.exe
 C:\WINDOWS\system32\mqtgsvc.ex​e
 C:\Program Files\iPod\bin\iPodService.exe
 C:\WINDOWS\eHome\ehmsas.exe
 C:\WINDOWS\system32\dllhost.ex​e
 C:\WINDOWS\system32\wbem\wmiap​srv.exe
 C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
 C:\Program Files\Windows Live\Contacts\wlcomm.exe
 C:\Program Files\Internet Explorer\iexplore.exe
 C:\Program Files\Internet Explorer\iexplore.exe
 C:\Program Files\Internet Explorer\iexplore.exe
 C:\Documents and Settings\pierre-henri changey\Temporary Internet Files\Content.IE5\OWX90P4U\HiJ​ackThis[1].exe

 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://www.google.fr/
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Default_Search_U​RL = http://go.microsoft.com/fwlink/?LinkId=54896
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
 R1 - HKCU\Software\Microsoft\Window​s\CurrentVersion\Internet Settings,ProxyOverride = *.local
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Toolbar,LinksFolderNa​me = Liens
 R3 - URLSearchHook: (no name) - {08C06D61-F1F3-4799-86F8-BE1A8​9362C85} - (no file)
 O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7​D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
 O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3​d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll
 O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988​571CECB} - (no file)
 O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3A​AC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
 O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF​1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
 O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-51647​60863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
 O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF105​77473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
 O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B​5AD205D} - C:\Program Files\Google\GoogleToolbarNoti​fier\5.4.4525.1752\swg.dll
 O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C​1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
 O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94E​C1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
 O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE​594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs​\ie\jqs_plugin.dll
 O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D​3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
 O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-00902​7A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
 O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
 O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
 O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.ex​e"
 O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,​NvStartup
 O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.d​ll,NvTaskbarInit
 O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /nodetect
 O4 - HKLM\..\Run: [MsmqIntCert] regsvr32 /s mqrt.dll
 O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] CHDAudPropShortcut.exe
 O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh​.exe
 O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.e​xe"
 O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
 O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard​\HP Quick Launch Buttons\QlbCtrl.exe /Start
 O4 - HKLM\..\Run: [Cpqset] C:\Program Files\Hewlett-Packard\Default Settings\cpqset.exe
 O4 - HKLM\..\Run: [RecGuard] C:\Windows\SMINST\RecGuard.exe
 O4 - HKLM\..\Run: [Reminder] C:\Windows\CREATOR\Remind_XP.e​xe
 O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\​UPDATE~1\ISUSPM.exe -startup
 O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateSe​rvice\issch.exe" -start
 O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
 O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Family Safety\fsui.exe" -autorun
 O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
 O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
 O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
 O4 - HKCU\..\Run: [AnyDVD] C:\Program Files\SlySoft\AnyDVD\AnyDVD.ex​e
 O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
 O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNoti​fier\GoogleToolbarNotifier.exe
 O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.​exe" AcRdB7_0_9 -reboot 1
 O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
 O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
 O4 - HKCU\..\Run: [richtx64.exe] C:\DOCUME~1\PIERRE~1\LOCALS~1\​Temp\richtx64.exe
 O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
 O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
 O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
 O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
 O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
 O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
 O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFF​ICE11\EXCEL.EXE/3000
 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolba​rDynamic_mui_en_60D6097707281E​79.dll/cmsidewiki.html
 O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCD​DC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExten​sion.dll
 O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCD​DC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExten​sion.dll
 O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C5​71A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\​REFIEBAR.DLL
 O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba3​8496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
 O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba3​8496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
 O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04​F795683} - C:\Program Files\Messenger\msmsgs.exe
 O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04​F795683} - C:\Program Files\Messenger\msmsgs.exe
 O14 - IERESET.INF: START_PAGE_URL=http://ie.redir​ect.hp.com/svs/rdr?TYPE=3&tp=i​ehome&locale=FR_FR&c=64&bd=pav​ilion&pf=laptop
 O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD8​4642501} (Checkers Class) - http://messenger.zone.msn.com/ [...] b56986.cab
 O16 - DPF: {5C051655-FCD5-4969-9182-770EA​5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/ [...] b56986.cab
 O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46​475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/ [...] b56907.cab
 O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6​B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/ [...] b56986.cab
 O23 - Service: AddFiltr - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe
 O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceS​ervice.exe
 O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.ex​e
 O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.e​xe
 O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\h​pqwmiex.exe
 O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Fichiers communs\InstallShield\Driver\1​050\Intel 32\IDriverT.exe
 O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
 O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
 O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
 O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset  - C:\Program Files\Eset\nod32krn.exe
 O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.ex​e
 O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.e​xe
 O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\Viewpoi​ntService.exe

 --
 End of file - 11935 bytes

ph31400
  1. Posté le 27/12/2009 à 15:43:30  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
house, est ce que tu peux m'aider, je te laisse mon msn aussi pierre31400@live.fr, je suis perdu merci d'avance



 Logfile of Trend Micro HijackThis v2.0.2
 Scan saved at 15:34:48, on 28/12/2009
 Platform: Windows XP SP3 (WinNT 5.01.2600)
 MSIE: Internet Explorer v8.00 (8.00.6001.18702)
 Boot mode: Normal

 Running processes:
 C:\WINDOWS\System32\smss.exe
 C:\WINDOWS\system32\winlogon.e​xe
 C:\WINDOWS\system32\services.e​xe
 C:\WINDOWS\system32\lsass.exe
 C:\WINDOWS\system32\svchost.ex​e
 C:\WINDOWS\System32\svchost.ex​e
 C:\WINDOWS\system32\spoolsv.ex​e
 C:\WINDOWS\Explorer.EXE
 C:\WINDOWS\ehome\ehtray.exe
 C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
 C:\Program Files\Java\jre6\bin\jusched.ex​e
 C:\Program Files\Synaptics\SynTP\SynTPEnh​.exe
 C:\Program Files\HP\QuickPlay\QPService.e​xe
 C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
 C:\Program Files\Fichiers communs\InstallShield\UpdateSe​rvice\issch.exe
 C:\Program Files\Eset\nod32kui.exe
 C:\Program Files\iTunes\iTunesHelper.exe
 C:\WINDOWS\system32\ctfmon.exe
 C:\Program Files\SlySoft\AnyDVD\AnyDVD.ex​e
 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
 C:\Program Files\DNA\btdna.exe
 C:\Program Files\Windows Media Player\WMPNSCFG.exe
 C:\DOCUME~1\PIERRE~1\LOCALS~1\​Temp\richtx64.exe
 C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
 C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
 C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
 C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceS​ervice.exe
 C:\Program Files\Bonjour\mDNSResponder.ex​e
 C:\WINDOWS\eHome\ehRecvr.exe
 C:\WINDOWS\eHome\ehSched.exe
 C:\WINDOWS\System32\svchost.ex​e
 C:\Program Files\Java\jre6\bin\jqs.exe
 C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
 C:\Program Files\Eset\nod32krn.exe
 C:\WINDOWS\system32\nvsvc32.ex​e
 C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
 C:\DOCUME~1\PIERRE~1\LOCALS~1\​Temp\wscsvc32.exe
 C:\WINDOWS\system32\svchost.ex​e
 C:\Program Files\Viewpoint\Common\Viewpoi​ntService.exe
 C:\Program Files\Hewlett-Packard\Shared\h​pqwmiex.exe
 C:\WINDOWS\system32\mqsvc.exe
 C:\WINDOWS\system32\wuauclt.ex​e
 C:\WINDOWS\system32\mqtgsvc.ex​e
 C:\Program Files\iPod\bin\iPodService.exe
 C:\WINDOWS\eHome\ehmsas.exe
 C:\WINDOWS\system32\dllhost.ex​e
 C:\WINDOWS\system32\wbem\wmiap​srv.exe
 C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
 C:\Program Files\Internet Explorer\iexplore.exe
 C:\Program Files\Internet Explorer\iexplore.exe
 C:\Program Files\Internet Explorer\iexplore.exe
 C:\Documents and Settings\pierre-henri changey\Temporary Internet Files\Content.IE5\OWX90P4U\HiJ​ackThis[1].exe

 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://www.google.fr/
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Default_Search_U​RL = http://go.microsoft.com/fwlink/?LinkId=54896
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
 R1 - HKCU\Software\Microsoft\Window​s\CurrentVersion\Internet Settings,ProxyOverride = *.local
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Toolbar,LinksFolderNa​me = Liens
 R3 - URLSearchHook: (no name) - {08C06D61-F1F3-4799-86F8-BE1A8​9362C85} - (no file)
 O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7​D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
 O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3​d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll
 O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988​571CECB} - (no file)
 O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3A​AC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
 O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF​1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
 O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-51647​60863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
 O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF105​77473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
 O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B​5AD205D} - C:\Program Files\Google\GoogleToolbarNoti​fier\5.4.4525.1752\swg.dll
 O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C​1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
 O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94E​C1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
 O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE​594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs​\ie\jqs_plugin.dll
 O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D​3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
 O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-00902​7A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
 O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
 O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
 O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.ex​e"
 O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,​NvStartup
 O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.d​ll,NvTaskbarInit
 O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /nodetect
 O4 - HKLM\..\Run: [MsmqIntCert] regsvr32 /s mqrt.dll
 O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] CHDAudPropShortcut.exe
 O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh​.exe
 O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.e​xe"
 O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
 O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard​\HP Quick Launch Buttons\QlbCtrl.exe /Start
 O4 - HKLM\..\Run: [Cpqset] C:\Program Files\Hewlett-Packard\Default Settings\cpqset.exe
 O4 - HKLM\..\Run: [RecGuard] C:\Windows\SMINST\RecGuard.exe
 O4 - HKLM\..\Run: [Reminder] C:\Windows\CREATOR\Remind_XP.e​xe
 O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\​UPDATE~1\ISUSPM.exe -startup
 O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateSe​rvice\issch.exe" -start
 O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
 O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Family Safety\fsui.exe" -autorun
 O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
 O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
 O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
 O4 - HKCU\..\Run: [AnyDVD] C:\Program Files\SlySoft\AnyDVD\AnyDVD.ex​e
 O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
 O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNoti​fier\GoogleToolbarNotifier.exe
 O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.​exe" AcRdB7_0_9 -reboot 1
 O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
 O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
 O4 - HKCU\..\Run: [richtx64.exe] C:\DOCUME~1\PIERRE~1\LOCALS~1\​Temp\richtx64.exe
 O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
 O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
 O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
 O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
 O4 - Global Startup: Démarrage rapide de HP Photosmart Premier.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
 O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
 O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFF​ICE11\EXCEL.EXE/3000
 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolba​rDynamic_mui_en_60D6097707281E​79.dll/cmsidewiki.html
 O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCD​DC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExten​sion.dll
 O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCD​DC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExten​sion.dll
 O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C5​71A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\​REFIEBAR.DLL
 O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba3​8496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
 O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba3​8496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
 O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04​F795683} - C:\Program Files\Messenger\msmsgs.exe
 O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04​F795683} - C:\Program Files\Messenger\msmsgs.exe
 O14 - IERESET.INF: START_PAGE_URL=http://ie.redir​ect.hp.com/svs/rdr?TYPE=3&tp=i​ehome&locale=FR_FR&c=64&bd=pav​ilion&pf=laptop
 O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD8​4642501} (Checkers Class) - http://messenger.zone.msn.com/ [...] b56986.cab
 O16 - DPF: {5C051655-FCD5-4969-9182-770EA​5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/ [...] b56986.cab
 O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46​475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/ [...] b56907.cab
 O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6​B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/ [...] b56986.cab
 O23 - Service: AddFiltr - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe
 O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceS​ervice.exe
 O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.ex​e
 O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.e​xe
 O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\h​pqwmiex.exe
 O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Fichiers communs\InstallShield\Driver\1​050\Intel 32\IDriverT.exe
 O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
 O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
 O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
 O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset  - C:\Program Files\Eset\nod32krn.exe
 O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.ex​e
 O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.e​xe
 O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\Viewpoi​ntService.exe

 --
 End of file - 11917 bytes

 Page :
1

Aller à :
 

Sujets relatifs
Pb connexion internet suite à infection virus bagle PC lent, virus ou trojan...
Virus sur MSN virus venu d'msn [résolu]
virus sur msn msn virus...
virus foto msn virus msn
Virus MSN  
Plus de sujets relatifs à : virus win 32.gpcode.ak

Les 5 sujets de discussion précédents Nombre de réponses Dernier message
Trojan Generic Dropper ! Bek 1
DR/Delphi.Gen 0
Problème de connexion: erreur 503 puis plus d'accès 13
Pb connexion internet suite à infection virus bagle 0
vbs : malware-gen 1