Il y a actuellement 243 visiteurs
Vendredi 19 Avril 2024
accueilactualitésdossierscomparer les prixtélécharger gratuitement vos logicielsoffres d'emploiforum informatique
Connexion
Créer un compte

virus hacked by godzilla

Un ordinateur qui ralentit, des écrans publicitaires qui apparaissent, des applications qui refusent de démarrer ou encore votre navigateur qui s'obstine à ouvrir une page douteuse sont autant d'éléments qui indiquent que l'intégrité de votre ordinateur est menacée par un virus. Vous trouverez dans ce forum quelques conseils et logiciels pour surfer tranquillement.
Règles du forum
Pour afficher un rapport d'analyse ou un rapport d'infection (HijackThis, OTL, AdwCleaner etc...)‎, veuillez utiliser le système de fichiers joints interne au forum. Seuls les formats les .txt et .log de moins de 1Mo sont acceptés. Pour obtenir de l'aide pour insérer vos fichiers joints, veuillez consulter ce tutoriel
Répondre

virus hacked by godzilla

Message le 18 Nov 2008 21:57

Bonjour,

J'ai ce virus sur mon pc portable. Cela apparaît sur IExplorer mais pas d'autres effets apparents.

j'ai lancé HiJack et voilà mon rapport:
Version info: Result ToDo
Good
[url]Your used version of a-squared HiJackFree: 3.1.0.16
The current version of a-squared HiJackFree: 3.1.0.16[/url]

Bad
Your used operating system version: Windows XP Service Pack 2
The current version of your operating system: Windows XP Service Pack 3
Please update your operating system and install the latest service pack!
Registry Autoruns: Result ToDo
Not Sure - may be bad
Name: SunJavaUpdateSched
Path: C:Program FilesJavajre1.5.0_13injusched.exe
Location: HKLMSOFTWAREMicrosoftWindowsCurrentVersionRun
Good: 2 - Bad: 3
View Details Requires Attention!
Compare details with your local values
and/or search at Google
Good
Name: Adobe Reader Speed Launcher
Path: C:Program FilesAdobeReader 8.0ReaderReader_sl.exe
Location: HKLMSOFTWAREMicrosoftWindowsCurrentVersionRun
Good: 2 - Bad: 0
View Details
Not Sure - may be bad
Name: QuickTime Task
Path: C:Program FilesQuickTimeQTTask.exe
Location: HKLMSOFTWAREMicrosoftWindowsCurrentVersionRun
Good: 3 - Bad: 2
View Details Requires Attention!
Compare details with your local values
and/or search at Google
Good
Name: F-Secure Manager
Path: C:Program FilesF-SecureCommonFSM32.EXE
Location: HKLMSOFTWAREMicrosoftWindowsCurrentVersionRun
Good: 1 - Bad: 0
View Details
Good
Name: F-Secure TNB
Path: C:Program FilesF-SecureTNBTNBUtil.exe
Location: HKLMSOFTWAREMicrosoftWindowsCurrentVersionRun
Good: 1 - Bad: 0
View Details
Good
Name: SoundMAXPnP
Path: C:Program FilesAnalog DevicesCoresmax4pnp.exe
Location: HKLMSOFTWAREMicrosoftWindowsCurrentVersionRun
Good: 2 - Bad: 0
View Details
Good
Name: IgfxTray
Path: C:WINDOWSsystem32igfxtray.exe
Location: HKLMSOFTWAREMicrosoftWindowsCurrentVersionRun
Good: 2 - Bad: 0
View Details
Good
Name: HotKeysCmds
Path: C:WINDOWSsystem32hkcmd.exe
Location: HKLMSOFTWAREMicrosoftWindowsCurrentVersionRun
Good: 3 - Bad: 0
View Details
Good
Name: Persistence
Path: C:WINDOWSsystem32igfxpers.exe
Location: HKLMSOFTWAREMicrosoftWindowsCurrentVersionRun
Good: 2 - Bad: 0
View Details
Unknown - may be bad
Name: accrdsub
Path: C:Program FilesActivCardActivClientaccrdsub.exe
Location: HKLMSOFTWAREMicrosoftWindowsCurrentVersionRun
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Name: SecurityBoxKernel
Path: C:Program FilesMSISecurity BoxKernelSbKrnl.exe
Location: HKLMSOFTWAREMicrosoftWindowsCurrentVersionRun
Good: 0 - Bad: 0
Unknown Item
Search at Google
Bad
Name: SecureLogin
Path: C:Program FilesActivIdentitySecureLoginslproto.exe
Location: HKLMSOFTWAREMicrosoftWindowsCurrentVersionRun
Good: 0 - Bad: 1
View Details Requires Attention!
Compare details with your local values
and/or search at Google
Good
Name: a-squared
Path: C:PROGRAM FILESA-SQUARED ANTI-MALWAREa2guard.exe
Location: HKLMSOFTWAREMicrosoftWindowsCurrentVersionRun
Good: 2 - Bad: 0
View Details
Bad
Name: MS32DLL
Path: C:WINDOWSMS32DLL.dll.vbs
Location: HKLMSOFTWAREMicrosoftWindowsCurrentVersionRun
Good: 0 - Bad: 3
View Details Requires Attention!
Compare details with your local values
and/or search at Google
Good
Name: WatchDog
Path: C:Program FilesInterVideoDVD CheckDVDCheck.exe
Location: HKLMSOFTWAREMicrosoftWindowsCurrentVersionRun
Good: 1 - Bad: 0
View Details
Not Sure - may be bad
Name: CTFMON.EXE
Path: C:WINDOWSsystem32ctfmon.exe
Location: HKCUSOFTWAREMicrosoftWindowsCurrentVersionRun
Good: 3 - Bad: 3
View Details Requires Attention!
Compare details with your local values
and/or search at Google
Unknown - may be bad
Name: Nokia.PCSync
Path: C:Program FilesNokiaNokia PC Suite 7PCSync2.exe
Location: HKCUSOFTWAREMicrosoftWindowsCurrentVersionRun
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Name: PC Suite Tray
Path: C:Program FilesNokiaNokia PC Suite 7PCSuite.exe
Location: HKCUSOFTWAREMicrosoftWindowsCurrentVersionRun
Good: 0 - Bad: 0
Unknown Item
Search at Google
Good
Name: ccleaner
Path: C:Program FilesCCleanerCCleaner.exe
Location: HKCUSOFTWAREMicrosoftWindowsCurrentVersionRun
Good: 1 - Bad: 0
View Details
Unknown - may be bad
Name: BitTorrent DNA
Path: C:Program FilesDNAtdna.exe
Location: HKCUSOFTWAREMicrosoftWindowsCurrentVersionRun
Good: 0 - Bad: 0
Unknown Item
Search at Google
Good
Name: SpybotSD TeaTimer
Path: C:Program FilesSpybot
Location: HKCUSOFTWAREMicrosoftWindowsCurrentVersionRun
Good: 1 - Bad: 0
View Details
Tricky and Other Autoruns: Result ToDo
Unknown - may be bad
Name: shell
Path: Explorer.exe
Location: system.ini
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: scrnsave.exe
Path: C:WINDOWSsystem32ss3dfo.scr
Location: system.ini
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: SET BLASTER
Path: A220 I5 D1 P330 T3
Location: autoexec.nt
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: dos
Path: high, umb
Location: config.nt
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: device
Path: %SystemRoot%system32himem.sys
Location: config.nt
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: files
Path: 40
Location: config.nt
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: Acrobat Assistant
Path:
Location: C:Documents and SettingsAll UsersStart MenuProgramsStartup
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: ActivCard ActivClient Agent
Path:
Location: C:Documents and SettingsAll UsersStart MenuProgramsStartup
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: DVD Check
Path:
Location: C:Documents and SettingsAll UsersStart MenuProgramsStartup
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: HotSync Manager
Path:
Location: C:Documents and SettingsAll UsersStart MenuProgramsStartup
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: L-Express
Path:
Location: C:Documents and SettingsAll UsersStart MenuProgramsStartup
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: Post-it® Software Notes Lite
Path:
Location: C:Documents and SettingsAll UsersStart MenuProgramsStartup
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: Symantec NetBackup Desktop Agent
Path:
Location: C:Documents and SettingsAll UsersStart MenuProgramsStartup
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: FSAV definition update 1
Path:
Location: C:WINDOWS asks
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: FSAV definition update 2
Path:
Location: C:WINDOWS asks
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: FSAV definition update 3
Path:
Location: C:WINDOWS asks
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: SA
Path:
Location: C:WINDOWS asks
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: CTFMON.EXE
Path: C:WINDOWSsystem32CTFMON.EXE
Location: HKEY_USERS.DefaultSoftwareMicrosoftWindowsCurrentVersionRun
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: Shell
Path: Explorer.exe
Location: HKLMSoftwareMicrosoftWindows NTCurrentVersionWinlogon
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: $GT;{22d6f312-b0f6-11d0-94ab-0080c74c7e95}
Path: C:WINDOWSinfunregmp2.exe
Location: HKLMSoftwareMicrosoftActive SetupInstalled Components
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: $GT;{26923b43-4d38-484f-9b9e-de460746276c}
Path: C:WINDOWSsystem32shmgrate.exe
Location: HKLMSoftwareMicrosoftActive SetupInstalled Components
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: $GT;{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS
Path: RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
Location: HKLMSoftwareMicrosoftActive SetupInstalled Components
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: $GT;{881dd1c5-3dcf-431b-b061-f3f88e8be88a}
Path: C:WINDOWSsystem32shmgrate.exe
Location: HKLMSoftwareMicrosoftActive SetupInstalled Components
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: _ANP_ParmOffice
Path: C:WindowsLogANPParmOffice.EXE
Location: HKLMSoftwareMicrosoftActive SetupInstalled Components
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: _ANP_ProfilOutlook
Path: C:WindowsLogANPProfileOutlook.EXE
Location: HKLMSoftwareMicrosoftActive SetupInstalled Components
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: _ANP_ProxyIE
Path: C:WindowsLogANPSetIEProxy.EXE
Location: HKLMSoftwareMicrosoftActive SetupInstalled Components
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: _ANP_UsersRep
Path: CSCRIPT.EXE
Location: HKLMSoftwareMicrosoftActive SetupInstalled Components
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: {0C5A826E-CBB9-4802-AEA1-765E37C9C2F2}
Path: msiexec
Location: HKLMSoftwareMicrosoftActive SetupInstalled Components
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: {1E809775-B933-42E7-9E57-7C7305145C39}
Path: msiexec
Location: HKLMSoftwareMicrosoftActive SetupInstalled Components
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: {1F5F431C-6D80-4232-A3A1-2DF7A555B221}
Path: msiexec
Location: HKLMSoftwareMicrosoftActive SetupInstalled Components
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: {21505EB5-BECA-4703-9272-3077B1DCFFA1}
Path: msiexec
Location: HKLMSoftwareMicrosoftActive SetupInstalled Components
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: {2C7339CF-2B09-4501-B3F3-F3508C9228ED}
Path: C:WINDOWSsystem32 egsvr32.exe
Location: HKLMSoftwareMicrosoftActive SetupInstalled Components
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: {44BBA840-CC51-11CF-AAFA-00AA00B6015C}
Path: C:Program FilesOutlook Expresssetup50.exe
Location: HKLMSoftwareMicrosoftActive SetupInstalled Components
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: {44BBA842-CC51-11CF-AAFA-00AA00B6015B}
Path: rundll32.exe advpack.dll
Location: HKLMSoftwareMicrosoftActive SetupInstalled Components
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: {46C55F83-0760-4728-9731-FE36281F1178}
Path: msiexec
Location: HKLMSoftwareMicrosoftActive SetupInstalled Components
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: {4b218e3e-bc98-4770-93d3-2731b9329278}
Path: C:WINDOWSSystem32 undll32.exe
Location: HKLMSoftwareMicrosoftActive SetupInstalled Components
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: {6BF52A52-394A-11d3-B153-00C04F79FAA6}
Path: rundll32.exe advpack.dll
Location: HKLMSoftwareMicrosoftActive SetupInstalled Components
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: {7790769C-0471-11d2-AF11-00C04FA35D02}
Path: C:Program FilesOutlook Expresssetup50.exe
Location: HKLMSoftwareMicrosoftActive SetupInstalled Components
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: {7C869BA1-A1E2-4818-8B12-F22A96DC7EAA}
Path: msiexec
Location: HKLMSoftwareMicrosoftActive SetupInstalled Components
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: {89820200-ECBD-11cf-8B85-00AA005B4340}
Path: regsvr32.exe
Location: HKLMSoftwareMicrosoftActive SetupInstalled Components
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: {89820200-ECBD-11cf-8B85-00AA005B4383}
Path: C:WINDOWSsystem32ie4uinit.exe
Location: HKLMSoftwareMicrosoftActive SetupInstalled Components
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: {89B4C1CD-B018-4511-B0A1-5476DBF70820}
Path: C:WINDOWSsystem32Rundll32.exe
Location: HKLMSoftwareMicrosoftActive SetupInstalled Components
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: {AEE5C68B-F6EB-4528-A39E-8F659B96B142}
Path: msiexec
Location: HKLMSoftwareMicrosoftActive SetupInstalled Components
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: {EB11B0CC-CA9B-406A-9747-495B47ECB837}
Path: msiexec
Location: HKLMSoftwareMicrosoftActive SetupInstalled Components
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: {EEBF9CA6-567B-41cd-B5F6-EF2C7FEF37B5}
Path: rundll32.exe advpack.dll
Location: HKLMSoftwareMicrosoftActive SetupInstalled Components
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: VBScript Script File
Path: C:WINDOWSSystem32CScript.exe
Location: HKEY_CLASSES_ROOTvbsfileshellopencommand
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: VBScript Script File
Path: C:WINDOWSSystem32CScript.exe
Location: HKEY_CLASSES_ROOTvbefileshellopencommand
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: JScript Script File
Path: C:WINDOWSSystem32CScript.exe
Location: HKEY_CLASSES_ROOTjsfileshellopencommand
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: JScript Script File
Path: C:WINDOWSSystem32CScript.exe
Location: HKEY_CLASSES_ROOTjsefileshellopencommand
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: Windows Script Host Settings File
Path: C:WINDOWSSystem32WScript.exe
Location: HKEY_CLASSES_ROOTwshfileshellopencommand
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: Windows Script File
Path: C:WINDOWSSystem32CScript.exe
Location: HKEY_CLASSES_ROOTwsffileshellopencommand
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: Application
Path: %1
Location: HKEY_CLASSES_ROOTexefileshellopencommand
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: MS-DOS Application
Path: %1
Location: HKEY_CLASSES_ROOTcomfileshellopencommand
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: MS-DOS Batch File
Path: %1
Location: HKEY_CLASSES_ROOTatfileshellopencommand
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: Screen Saver
Path: %1
Location: HKEY_CLASSES_ROOTscrfileshellopencommand
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: Shortcut to MS-DOS Program
Path: %1
Location: HKEY_CLASSES_ROOTpiffileshellopencommand
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: SCRNSAVE.EXE
Path: C:WINDOWSsystem32ss3dfo.scr
Location: HKCUControl PanelDesktop
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: PostBootReminder
Path: C:WINDOWSsystem32SHELL32.dll
Location: HKLMSOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoad
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: CDBurn
Path: C:WINDOWSsystem32SHELL32.dll
Location: HKLMSOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoad
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: WebCheck
Path: C:WINDOWSsystem32webcheck.dll
Location: HKLMSOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoad
Not checked Unknown Item
Search at Google
Unknown - may be bad
Name: SysTray
Path: C:WINDOWSsystem32stobject.dll
Location: HKLMSOFTWAREMicrosoftWindowsCurrentVersionShellServiceObjectDelayLoad
Not checked Unknown Item
Search at Google
Layered Service Providers (LSP): Result ToDo
Good
Name: mswsock.dll
Path: %SystemRoot%system32
Location: HKLMSYSTEMCurrentControlSetServicesWinSock2ParametersProtocol_Catalog9Catalog_Entries
Good: 1 - Bad: 0
View Details
Good
Name: rsvpsp.dll
Path: %SystemRoot%system32
Location: HKLMSYSTEMCurrentControlSetServicesWinSock2ParametersProtocol_Catalog9Catalog_Entries
Good: 1 - Bad: 0
View Details
Explorer And Browser Addons: Result ToDo
Good
Name: AcroIEHlprObj Class
Path: C:Program FilesAdobeAcrobat 6.0AcrobatActiveXAcroIEHelper.dll
Location: HKLMSoftwareMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects
ClsID: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}
Good: 1 - Bad: 0
View Details
Good
Name: Spybot-S+D IE Protection
Path: C:Program FilesSPYBOT~1SDHelper.dll
Location: HKLMSoftwareMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects
ClsID: {53707962-6F74-2D53-2644-206D7942484F}
Good: 1 - Bad: 0
View Details
Unknown - may be bad
Name: SSVHelper Class
Path: C:Program FilesJavajre1.5.0_13inssv.dll
Location: HKLMSoftwareMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects
ClsID: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Name: IESSOObj Class
Path: C:Program FilesActivIdentitySecureLoginiesso.dll
Location: HKLMSoftwareMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects
ClsID: {7DE7B623-A17E-4A0B-94BA-D1B3BA646792}
Good: 0 - Bad: 0
Unknown Item
Search at Google
Good
Name: AcroIEToolbarHelper Class
Path: C:Program FilesAdobeAcrobat 6.0AcrobatAcroIEFavClient.dll
Location: HKLMSoftwareMicrosoftWindowsCurrentVersionExplorerBrowser Helper Objects
ClsID: {AE7CD045-E861-484f-8273-0445EE161910}
Good: 1 - Bad: 0
View Details
Unknown - may be bad
Name: URL Exec Hook
Path: shell32.dll
Location: HKLMSoftwareMicrosoftWindowsCurrentVersionExplorerShellExecuteHooks
ClsID: {AEB6717E-7E19-11d0-97EE-00C04FD91972}
Good: 0 - Bad: 0
Unknown Item
Search at Google
Local Open Ports: Result ToDo
Good
Port: 135 TCP
Path: C:WINDOWSsystem32svchost.exe (Process ID: 2012)
Good: 1 - Bad: 0
View Details
Good
Port: 139 TCP
Path: system (Process ID: 4)
Good: 1 - Bad: 0
View Details
Good
Port: 445 TCP
Path: system (Process ID: 4)
Good: 1 - Bad: 0
View Details
Good
Port: 1027 TCP
Path: C:WINDOWSSystem32alg.exe (Process ID: 2860)
Good: 1 - Bad: 0
View Details
Unknown - may be bad
Port: 1085 TCP
Path: C:Program FilesMozilla Firefoxfirefox.exe (Process ID: 5156)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 1086 TCP
Path: C:Program FilesMozilla Firefoxfirefox.exe (Process ID: 5156)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 1087 TCP
Path: C:Program FilesMozilla Firefoxfirefox.exe (Process ID: 5156)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 1088 TCP
Path: C:Program FilesMozilla Firefoxfirefox.exe (Process ID: 5156)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 1709 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 1750 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 2029 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 2042 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Bad
Port: 2600 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 1
View Details Requires Attention!
Compare details with your local values
and/or search at Google
Unknown - may be bad
Port: 2869 TCP
Path: C:WINDOWSsystem32svchost.exe (Process ID: 648)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4247 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4298 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4373 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4421 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4453 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4460 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4503 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4513 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4521 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4535 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4552 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4559 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4566 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4640 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4645 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4695 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4702 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4705 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4709 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4726 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4732 TCP
Path: system (Process ID: 0)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4746 TCP
Path: system (Process ID: 0)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4753 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4771 TCP
Path: system (Process ID: 0)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4794 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4811 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4815 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4816 TCP
Path: system (Process ID: 0)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4817 TCP
Path: system (Process ID: 0)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4818 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4820 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4821 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4829 TCP
Path: system (Process ID: 0)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4853 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4858 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4862 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 4868 TCP
Path: C:WINDOWSsystem32svchost.exe (Process ID: 648)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 24648 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 24648 TCP
Path: system (Process ID: 0)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 24648 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 24648 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 24648 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 24648 TCP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 58581 TCP
Path: C:Program FilesF-SecureFWESProgramfsdfwd.exe (Process ID: 2592)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Good
Port: 123 UDP
Path: C:WINDOWSSystem32svchost.exe (Process ID: 368)
Good: 1 - Bad: 0
View Details
Good
Port: 137 UDP
Path: system (Process ID: 4)
Good: 1 - Bad: 0
View Details
Good
Port: 138 UDP
Path: system (Process ID: 4)
Good: 1 - Bad: 0
View Details
Good
Port: 371 UDP
Path: C:Program FilesF-SecureBackWeb7681197ProgramF-Secure Automatic Update.exe (Process ID: 3944)
Good: 1 - Bad: 0
View Details
Good
Port: 445 UDP
Path: system (Process ID: 4)
Good: 1 - Bad: 0
View Details
Unknown - may be bad
Port: 1045 UDP
Path: C:WINDOWSSystem32svchost.exe (Process ID: 368)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 1061 UDP
Path: C:Program FilesActivIdentitySecureLoginslbroker.exe (Process ID: 3572)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 1509 UDP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 1900 UDP
Path: C:WINDOWSsystem32svchost.exe (Process ID: 648)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 1900 UDP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 6771 UDP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Unknown - may be bad
Port: 24648 UDP
Path: C:Program FilesBitTorrentittorrent.exe (Process ID: 5252)
Good: 0 - Bad: 0
Unknown Item
Search at Google
Running Processes: Result ToDo
Good
Name: [System Process]
Process ID: 0
Path:
Info: Threads: 2 - Priority: N/A - Visible: Non
Good: 1 - Bad: 0
View Details
Good
Name: System
Process ID: 4
Path:
Info: Threads: 93 - Priority: Normal - Visible: Non
Good: 1 - Bad: 0
View Details
Unknown - may be bad
Name: acachsrv.exe
Process ID: 240
Path: C:Program FilesActivCardActivClientacachsrv.exe
Info: Threads: 4 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Good
Name: smax4pnp.exe
Process ID: 268
Path: C:Program FilesAnalog DevicesCoresmax4pnp.exe
Info: Threads: 3 - Priority: Normal - Visible: Non
Good: 1 - Bad: 0
View Details
Unknown - may be bad
Name: accoca.exe
Process ID: 288
Path: C:Program FilesCommon FilesActivCardaccoca.exe
Info: Threads: 4 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Unknown - may be bad
Name: acevents.exe
Process ID: 296
Path: C:Program FilesActivCardActivClientacevents.exe
Info: Threads: 7 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Unknown - may be bad
Name: AM.utEventServer.exe
Process ID: 328
Path: C:Program FilesRemote ServicesAM.utEventServer.exe
Info: Threads: 8 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Not Sure - may be bad
Name: svchost.exe
Process ID: 368
Path: C:WINDOWSSystem32svchost.exe
Info: Threads: 70 - Priority: Normal - Visible: Non
Good: 1 - Bad: 2
View Details Requires Attention!
Compare details with your local values
and/or search at Google
Good
Name: igfxtray.exe
Process ID: 396
Path: C:WINDOWSsystem32igfxtray.exe
Info: Threads: 2 - Priority: Normal - Visible: Non
Good: 1 - Bad: 0
View Details
Unknown - may be bad
Name: DLOChangeLogSvcu.exe
Process ID: 408
Path: C:Program FilesSymantecNetBackup DLODLODLOChangeLogSvcu.exe
Info: Threads: 4 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Unknown - may be bad
Name: SERVIC~1.EXE
Process ID: 528
Path: C:Program FilesF-SecureBackWeb7681197ProgramSERVIC~1.EXE
Info: Threads: 2 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Not Sure - may be bad
Name: svchost.exe
Process ID: 560
Path: C:WINDOWSsystem32svchost.exe
Info: Threads: 6 - Priority: Normal - Visible: Non
Good: 1 - Bad: 2
View Details Requires Attention!
Compare details with your local values
and/or search at Google
Unknown - may be bad
Name: NclRSSrv.exe
Process ID: 608
Path: C:Program FilesPC Connectivity SolutionTransportsNclRSSrv.exe
Info: Threads: 3 - Priority: Haut - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Not Sure - may be bad
Name: svchost.exe
Process ID: 648
Path: C:WINDOWSsystem32svchost.exe
Info: Threads: 18 - Priority: Normal - Visible: Non
Good: 1 - Bad: 2
View Details Requires Attention!
Compare details with your local values
and/or search at Google
Unknown - may be bad
Name: fsgk32st.exe
Process ID: 660
Path: C:Program FilesF-SecureAnti-Virusfsgk32st.exe
Info: Threads: 3 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Good
Name: FSMA32.EXE
Process ID: 664
Path: C:Program FilesF-SecureCommonFSMA32.EXE
Info: Threads: 15 - Priority: Normal - Visible: Non
Good: 1 - Bad: 0
View Details
Unknown - may be bad
Name: fsgk32.exe
Process ID: 800
Path: C:Program FilesF-SecureAnti-VirusFSGK32.EXE
Info: Threads: 31 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Unknown - may be bad
Name: fsbwsys.exe
Process ID: 812
Path: C:Program FilesF-SecureBackWeb7681197programfsbwsys.exe
Info: Threads: 6 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Good
Name: fssm32.exe
Process ID: 840
Path: C:Program FilesF-SecureAnti-Virusfssm32.exe
Info: Threads: 35 - Priority: Normal - Visible: Non
Good: 1 - Bad: 0
View Details
Good
Name: spoolsv.exe
Process ID: 1064
Path: C:WINDOWSsystem32spoolsv.exe
Info: Threads: 9 - Priority: Normal - Visible: Non
Good: 1 - Bad: 0
View Details
Good
Name: scardsvr.exe
Process ID: 1112
Path: C:WINDOWSSystem32SCardSvr.exe
Info: Threads: 15 - Priority: Normal - Visible: Non
Good: 1 - Bad: 0
View Details
Unknown - may be bad
Name: FSMB32.EXE
Process ID: 1164
Path: C:Program FilesF-SecureCommonFSMB32.EXE
Info: Threads: 23 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Not Sure - may be bad
Name: MDM.EXE
Process ID: 1168
Path: C:Program FilesCommon FilesMicrosoft SharedVS7DEBUGMDM.EXE
Info: Threads: 4 - Priority: Normal - Visible: Non
Good: 1 - Bad: 1
View Details Requires Attention!
Compare details with your local values
and/or search at Google
Unknown - may be bad
Name: fsguiexe.exe
Process ID: 1220
Path: C:Program FilesF-SecureFSGUIfsguiexe.exe
Info: Threads: 6 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Good
Name: igfxpers.exe
Process ID: 1432
Path: C:WINDOWSsystem32igfxpers.exe
Info: Threads: 3 - Priority: Normal - Visible: Non
Good: 1 - Bad: 0
View Details
Unknown - may be bad
Name: FCH32.EXE
Process ID: 1492
Path: C:Program FilesF-SecureCommonFCH32.EXE
Info: Threads: 5 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Not Sure - may be bad
Name: explorer.exe (Personnel)
Process ID: 1528
Path: C:WINDOWSExplorer.EXE
Info: Threads: 11 - Priority: Normal - Visible: Oui
Good: 2 - Bad: 1
View Details Requires Attention!
Compare details with your local values
and/or search at Google
Unknown - may be bad
Name: SBKSRV.EXE
Process ID: 1560
Path: C:Program FilesMSISecurity BoxKernelSBKSRV.EXE
Info: Threads: 9 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Not Sure - may be bad
Name: smss.exe
Process ID: 1628
Path: C:WINDOWSSystem32smss.exe
Info: Threads: 3 - Priority: Normal - Visible: Non
Good: 1 - Bad: 2
View Details Requires Attention!
Compare details with your local values
and/or search at Google
Unknown - may be bad
Name: Sbdsrv.exe
Process ID: 1660
Path: C:Program FilesMSISecurity BoxDiskSbdsrv.exe
Info: Threads: 2 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Not Sure - may be bad
Name: csrss.exe
Process ID: 1676
Path: C:WINDOWSsystem32csrss.exe
Info: Threads: 11 - Priority: Normal - Visible: Non
Good: 1 - Bad: 3
View Details Requires Attention!
Compare details with your local values
and/or search at Google
Not Sure - may be bad
Name: winlogon.exe
Process ID: 1700
Path: C:WINDOWSsystem32winlogon.exe
Info: Threads: 21 - Priority: Haut - Visible: Non
Good: 1 - Bad: 2
View Details Requires Attention!
Compare details with your local values
and/or search at Google
Not Sure - may be bad
Name: services.exe
Process ID: 1744
Path: C:WINDOWSsystem32services.exe
Info: Threads: 16 - Priority: Normal - Visible: Non
Good: 1 - Bad: 3
View Details Requires Attention!
Compare details with your local values
and/or search at Google
Good
Name: lsass.exe
Process ID: 1756
Path: C:WINDOWSsystem32lsass.exe
Info: Threads: 16 - Priority: Normal - Visible: Non
Good: 1 - Bad: 0
View Details
Unknown - may be bad
Name: acautsrv.exe
Process ID: 1940
Path: C:Program FilesActivCardActivClientacautsrv.exe
Info: Threads: 5 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Not Sure - may be bad
Name: svchost.exe
Process ID: 1952
Path: C:WINDOWSsystem32svchost.exe
Info: Threads: 18 - Priority: Normal - Visible: Non
Good: 1 - Bad: 2
View Details Requires Attention!
Compare details with your local values
and/or search at Google
Unknown - may be bad
Name: FAMEH32.EXE
Process ID: 1960
Path: C:Program FilesF-SecureCommonFAMEH32.EXE
Info: Threads: 9 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Not Sure - may be bad
Name: svchost.exe
Process ID: 2012
Path: C:WINDOWSsystem32svchost.exe
Info: Threads: 11 - Priority: Normal - Visible: Non
Good: 1 - Bad: 2
View Details Requires Attention!
Compare details with your local values
and/or search at Google
Not Sure - may be bad
Name: svchost.exe
Process ID: 2104
Path: C:WINDOWSsystem32svchost.exe
Info: Threads: 5 - Priority: Normal - Visible: Non

Good: 1 - Bad: 2
View Details Requires Attention!
Compare details with your local values
and/or search at Google
Not Sure - may be bad
Name: svchost.exe
Process ID: 2148
Path: C:WINDOWSSystem32svchost.exe
Info: Threads: 8 - Priority: Normal - Visible: Non
Good: 1 - Bad: 2
View Details Requires Attention!
Compare details with your local values
and/or search at Google
Good
Name: TeaTimer.exe
Process ID: 2192
Path: C:Program FilesSpybot
Info: Threads: 3 - Priority: en repos - Visible: Non
Good: 2 - Bad: 0
View Details
Good
Name: wdfmgr.exe
Process ID: 2244
Path: C:WINDOWSsystem32wdfmgr.exe
Info: Threads: 4 - Priority: Normal - Visible: Non
Good: 1 - Bad: 0
View Details
Unknown - may be bad
Name: AM.blScriptEngine.exe
Process ID: 2304
Path: C:Program FilesRemote ServicesAM.blScriptEngine.exe
Info: Threads: 11 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Unknown - may be bad
Name: NclUSBSrv.exe
Process ID: 2348
Path: C:Program FilesPC Connectivity SolutionTransportsNclUSBSrv.exe
Info: Threads: 4 - Priority: Haut - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Unknown - may be bad
Name: CcmExec.exe
Process ID: 2352
Path: C:WINDOWSsystem32CCMCcmExec.exe
Info: Threads: 11 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Unknown - may be bad
Name: NclIrSrv.exe
Process ID: 2368
Path: C:Program FilesPC Connectivity SolutionTransportsNclIrSrv.exe
Info: Threads: 3 - Priority: Haut - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Unknown - may be bad
Name: igfxsrvc.exe
Process ID: 2488
Path: C:WINDOWSsystem32igfxsrvc.exe
Info: Threads: 4 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Good
Name: OUTLOOK.EXE (Boîte de réception - Microsoft Outlook)
Process ID: 2500
Path: C:Program FilesMicrosoft OfficeOffice12OUTLOOK.EXE
Info: Threads: 22 - Priority: Normal - Visible: Oui
Good: 1 - Bad: 0
View Details
Unknown - may be bad
Name: FNRB32.exe
Process ID: 2568
Path: C:Program FilesF-SecureCommonFNRB32.EXE
Info: Threads: 7 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Good
Name: fsdfwd.exe
Process ID: 2592
Path: C:Program FilesF-SecureFWESProgramfsdfwd.exe
Info: Threads: 5 - Priority: Normal - Visible: Non
Good: 1 - Bad: 0
View Details
Unknown - may be bad
Name: FIH32.exe
Process ID: 2612
Path: C:Program FilesF-SecureCommonFIH32.EXE
Info: Threads: 2 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Unknown - may be bad
Name: accrdsub.exe
Process ID: 2700
Path: C:Program FilesActivCardActivClientaccrdsub.exe
Info: Threads: 11 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Not Sure - may be bad
Name: ctfmon.exe
Process ID: 2780
Path: C:WINDOWSsystem32ctfmon.exe
Info: Threads: 1 - Priority: Normal - Visible: Non
Good: 2 - Bad: 1
View Details Requires Attention!
Compare details with your local values
and/or search at Google
Not Sure - may be bad
Name: alg.exe
Process ID: 2860
Path: C:WINDOWSSystem32alg.exe
Info: Threads: 6 - Priority: Normal - Visible: Non
Good: 1 - Bad: 1
View Details Requires Attention!
Compare details with your local values
and/or search at Google
Unknown - may be bad
Name: Sbkrnl.exe
Process ID: 2900
Path: C:Program FilesMSISecurity BoxKernelSbKrnl.exe
Info: Threads: 17 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Unknown - may be bad
Name: slproto.exe
Process ID: 3036
Path: C:Program FilesActivIdentitySecureLoginslproto.exe
Info: Threads: 6 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Good
Name: a2HiJackFree.exe (a-squared HiJackFree 3.1)
Process ID: 3052
Path: C:PROGRAM FILESA-SQUARED ANTI-MALWAREa2HiJackFree.exe
Info: Threads: 5 - Priority: Normal - Visible: Oui
Good: 1 - Bad: 0
View Details
Good
Name: hkcmd.exe
Process ID: 3108
Path: C:WINDOWSsystem32hkcmd.exe
Info: Threads: 2 - Priority: Normal - Visible: Non
Good: 1 - Bad: 0
View Details
Good
Name: wmiprvse.exe
Process ID: 3140
Path: C:WINDOWSsystem32wbemwmiprvse.exe
Info: Threads: 5 - Priority: Normal - Visible: Non
Good: 1 - Bad: 0
View Details
Good
Name: wmiprvse.exe
Process ID: 3336
Path: C:WINDOWSsystem32wbemwmiprvse.exe
Info: Threads: 6 - Priority: Normal - Visible: Non
Good: 1 - Bad: 0
View Details
Unknown - may be bad
Name: slbroker.exe
Process ID: 3572
Path: C:Program FilesActivIdentitySecureLoginslbroker.exe
Info: Threads: 11 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Unknown - may be bad
Name: ServiceLayer.exe
Process ID: 3712
Path: C:Program FilesPC Connectivity SolutionServiceLayer.exe
Info: Threads: 13 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Good
Name: FSAV32.exe
Process ID: 3776
Path: C:Program FilesF-SecureAnti-Virusfsav32.exe
Info: Threads: 8 - Priority: Normal - Visible: Non
Good: 1 - Bad: 0
View Details
Good
Name: FSM32.EXE
Process ID: 3792
Path: C:Program FilesF-SecureCommonFSM32.EXE
Info: Threads: 13 - Priority: Normal - Visible: Non
Good: 1 - Bad: 0
View Details
Good
Name: a2guard.exe
Process ID: 3852
Path: C:PROGRAM FILESA-SQUARED ANTI-MALWAREa2guard.exe
Info: Threads: 4 - Priority: Normal - Visible: Non
Good: 1 - Bad: 0
View Details
Unknown - may be bad
Name: acsagent.exe
Process ID: 3892
Path: C:Program FilesActivCardActivClientacsagent.exe
Info: Threads: 8 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Unknown - may be bad
Name: F-Secure Automatic Update.exe
Process ID: 3944
Path: C:Program FilesF-SecureBackWeb7681197ProgramF-Secure Automatic Update.exe
Info: Threads: 10 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Unknown - may be bad
Name: PsnLite.exe
Process ID: 3996
Path: C:Program Files3MPSNLitePsnLite.exe
Info: Threads: 3 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Unknown - may be bad
Name: DLOClientu.exe
Process ID: 4460
Path: C:Program FilesSymantecNetBackup DLODLODLOClientu.exe
Info: Threads: 39 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Unknown - may be bad
Name: PSNGive.exe
Process ID: 4616
Path: C:Program Files3MPSNLitePSNGive.exe
Info: Threads: 3 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Good
Name: a2service.exe
Process ID: 4648
Path: C:Program Filesa-squared Anti-Malwarea2service.exe
Info: Threads: 12 - Priority: Normal - Visible: Non
Good: 1 - Bad: 0
View Details
Good
Name: SpybotSD.exe (Spybot - Search + Destroy)
Process ID: 4912
Path: C:Program FilesSpybot
Info: Threads: 6 - Priority: en repos - Visible: Oui
Good: 1 - Bad: 0
View Details
Good
Name: firefox.exe (hacked by Godzilla - Yahoo! France Résultats de recherche - Mozilla Firefox)
Process ID: 5156
Path: C:Program FilesMozilla Firefoxfirefox.exe
Info: Threads: 16 - Priority: Normal - Visible: Oui
Good: 1 - Bad: 0
View Details
Unknown - may be bad
Name: bittorrent.exe
Process ID: 5252
Path: C:Program FilesBitTorrentittorrent.exe
Info: Threads: 9 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Unknown - may be bad
Name: slwinsso.exe
Process ID: 5660
Path: C:Program FilesActivIdentitySecureLoginslwinsso.exe
Info: Threads: 4 - Priority: Normal - Visible: Non
Good: 0 - Bad: 0
Unknown Item
Search at Google
Submit new process info
Code: Tout sélectionner
[url][/url]


Que faire ?

Merci
lestat4270
Visiteur
Visiteur
 
Messages: 1
Inscription: 18 Nov 2008 21:47
 
Haut

Message le 18 Nov 2008 23:31

Bonjour.

Tu suis ce tutorial et tu nous postes le rapport généré dans ton prochain message.

De plus, ton infection s'attrape avec des périphériques externes vérolés, clés USB par exemple.

Connecte tous tes périphériques de stockage externe (clés, disques durs externes, mp3...) pendant les opérations.


_ Tu télécharges Flash Disinfector.

Tu double cliques dessus pour l'exécuter.


_ Tu télécharges Clean.zip.

Tu fais un clic-droit sur le fichier puis tu cliques sur Extraire ici pour décompresser l'archive (si tu n'as pas de décompresseur, prends 7 zip par exemple).


_ Tu télécharges Malwarebytes' Anti-Malware, tu l'installes puis tu procèdes à sa mise à jour.

Tu lances l'application en double-cliquant sur l'icône Malwarebytes' Anti Malware.

Tu cliques ensuite sur Exécuter un examen complet puis tu lances l'analyse en cliquant sur Rechercher.

_ Si l'utilitaire ne trouve rien de néfaste, cliques sur Ok. Le Bloc-notes va s'ouvrir avec le rapport d'analyse, celui-ci n'est pas intéressant car la machine est propre.
Tu peux fermer le Bloc-notes.

_ Si l'utilitaire trouve des éléments suspects, tu cliques sur Afficher les résultats puis sur Supprimer la sélection.
Tu enregistres le rapport d'analyse que tu nous copies-colles dans ton prochain message.

Il est possible que le programme te demande de redémarrer pour effectuer des suppressions supplémentaires, tu acceptes le redémarrage volontaire en cliquant sur Ok.


_ Tu redémarres en Mode sans échec ([F8] au démarrage).

Tu double cliques sur le dossier Clean puis sur clean.cmd ou clean suivant que l'extension est masquée ou non.

Tu choisis ensuite l'option 2.

Si tu n'arrives plus à accéder à tes disques durs depuis le Poste de travail suite à ce nettoyage, tu double-cliques sur Poste de travail puis tu vas dans Outils et ensuite Options des dossiers.

Image

Tu vas sur l'onglet Affichage, tu coches la ligne Afficher les fichiers et dossiers cachés et tu décoches la ligne Masquer les fichiers protégés du système d'exploitation (recommandé), tu confirmes en cliquant sur Ok puis tu valides les deux actions en cliquant sur Appliquer puis Ok.

Image

Tu fais alors, dans le Poste de travail, un clic droit sur le disque dur problématique puis tu cliques sur Ouvrir.

Tu cherches un fichier autorun.inf que tu supprimes.

Tu renouvelles l'opération pour tous les disques problématiques.
Avatar de l'utilisateur
r@in | b0w
PC-Infopraticien
PC-Infopraticien
 
Messages: 7714
Inscription: 09 Déc 2007 12:37
Localisation: Parrot Sec
 
Haut
Répondre

Sujets similaires

Message Aide suite à une analyse FRST contre un virus vbc.exe
Bonjour tout le monde, J'ai récemment constaté que j'étais infecté par un virus lié à vbc.exe, ce qui entraîne une utilisation du CPU allant jusqu'à 30% voire 40%. J'ai donc effectué mes analyses FRST et voici les rapports obtenus : - FRST.txt: https://pjjoint.malekal.com/files.php?id=FRST_20240315_ ...
Réponses: 3

Message [Réglé] Petite vérification virus
Salut Heravles ,Merci et bonne année a toi également et aussi a toute ta famille.Oui désolé j'ai pas fais attention quand j'ai téléchargé le logiciel alors que je sais très bien qu'il fallait le faire sur le bureau. Je ferais plus attention la prochaine fois.Nickel si mon Pc et pas infecté.Je t'envo ...
Réponses: 5

Message 22h2 bogues tpm et centre de sécurité: virus?
Salut,J'ai refait iso et formaté override le disque. Un reset électrique du PC.Je suis sur W11 PRO 64 v22621.525 (même bogue sur la première iso 22h2 fournie par Microsoft en 22621.382).WU est désactivé avant connexion a internet via gpedit.msc.J'ai installé à neuf en compte local. J'installe sans i ...
Réponses: 17

Message anti virus gratuit
Bonjour,Avez-vous un anti virus nettoyeur gratuit en français a me conseiller pour mon j3 2016 samsung.Cordialement.
Réponses: 3

Message Des VIRUS (encore ?)
Bonjour Bernard,merci pour ton aide, j'ai donc supprimé les logiciels adobe que j'avais cracké,voici les nouvelles analyses:Addition : https://cjoint.com/c/LKduLSQQmLnFRST : https://cjoint.com/c/LKduNhgM1vnShortcut : https://cjoint.com/c/LKduNycdWwnCordialement
Réponses: 7

Message [Réglé] Anti virus
Bonjour j'ai racheter un pc portable, je voudrais savoir si il existe des activirus gratuits, de bonne qualité merci
Réponses: 7

Message [Réglé]Multiples Virus Sur ordi Hacktool,coinminer
Bonjour, j'espère que vous allez bien en ces temps difficiles.Je suis de nouveau venu chez mes parents pour les fêtes et l'ordinateur de mon père est de nouveau infectée par des cochonneries que je n'arrive pas enlever moi même, c'est pour cela que je requiert votre aide à nouveau.Je fournis les fic ...
Réponses: 26

Haut

Qui est en ligne

Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 16 invités

Forum Informatique aide pour le matériel sous Windows, Linux, Logiciels et Jeux Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group

.: Nous contacter :: Flux RSS :: Données personnelles :.