Votre question

virus malveillant facebook

Tags :
  • Windows
  • Sécurité
  • Pilotes
  • Kaspersky
  • Dll
Dernière réponse : dans Sécurité et virus
27 Février 2015 07:49:37

bonjour voila le rapport dds :
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.7600.16385
Run by france at 7:41:49 on 2015-02-27
Microsoft Windows 7 Professionnel 6.1.7600.0.1252.33.1036.18.2046.467 [GMT 1:00]
.
AV: Kaspersky Internet Security *Enabled/Updated* {179979E8-273D-D14E-0543-2861940E4886}
SP: Kaspersky Internet Security *Enabled/Updated* {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security *Enabled* {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avp.exe
C:\Windows\Explorer.EXE
C:\ProgramData\DatacardService\HWDeviceService.exe
C:\ProgramData\DatacardService\DCSHelper.exe
C:\ProgramData\MobiConnect\OnlineUpdate\ouc.exe
C:\ProgramData\MobileBrServ\mbbservice.exe
C:\Windows\system32\DRIVERS\o2flash.exe
C:\PROGRA~1\WEATHE~2\bar\1.bin\gcbarsvc.exe
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\Program Files\DellTPad\Apoint.exe
C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
C:\Windows\OEM13Mon.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Windows\system32\conhost.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Windows\system32\UI0Detect.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\france\AppData\Local\Apps\2.0\JT2M7AWY.J1V\XVMR8C1X.C85\dell..tion_e30b47f5d4a30e9e_0005.000d_4ab2a66cfade09be\DellSystemDetect.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.2\avpui.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\conhost.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 15.0.2\plugin-nm-server.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\PROGRA~1\WEATHE~2\bar\1.bin\AppIntegrator.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k secsvcs
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.search.ask.com/?tpid=FF3-SP&o=APN11414&pf=V7&trgb=C...
uURLSearchHooks: SearchHook Class: {D8278076-BC68-4484-9233-6E7F1628B56C} -
uURLSearchHooks: <No Name>: {8ba2cfef-a1bc-4964-aadc-33be1ae5a33c} - c:\program files\weatherblink\bar\1.bin\gcSrcAs.dll
BHO: Adobe PDF Reader Link Helper: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
BHO: Search App by Ask: {4646332D-5350-006A-76A7-7A786E7484D7} -
BHO: Virtual Keyboard Plugin: {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} - c:\program files\kaspersky lab\kaspersky internet security 15.0.2\ieext\ie_plugin.dll
BHO: Content Blocker Plugin: {93BC2EA7-2F17-4729-948A-D2E03FFB2412} - c:\program files\kaspersky lab\kaspersky internet security 15.0.2\ieext\ie_plugin.dll
BHO: Search Assistant BHO: {9b9dcae3-be34-424c-8d73-75e305a9e091} - c:\program files\weatherblink\bar\1.bin\gcSrcAs.dll
BHO: Safe Money Plugin: {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} - c:\program files\kaspersky lab\kaspersky internet security 15.0.2\ieext\ie_plugin.dll
BHO: Toolbar BHO: {dc9051c2-8f55-479a-97a4-747980d9047f} - c:\program files\weatherblink\bar\1.bin\gcbar.dll
TB: Search App by Ask: {4646332D-5350-006A-76A7-7A786E7484D7} -
TB: WeatherBlink: {F20DE5E0-2A6E-4C54-985F-1CF59551CE39} - c:\program files\weatherblink\bar\1.bin\gcbar.dll
TB: WeatherBlink: {f20de5e0-2a6e-4c54-985f-1cf59551ce39} - c:\program files\weatherblink\bar\1.bin\gcbar.dll
TB: Search App by Ask: {4646332D-5350-006A-76A7-7A786E7484D7} -
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /minimized /regrun
uRun: [ares] "c:\program files\ares\Ares.exe" -h
uRun: [Viber] "c:\users\france\appdata\local\viber\Viber.exe"
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [DellSystemDetect] c:\users\france\appdata\local\apps\2.0\jt2m7awy.j1v\xvmr8c1x.c85\dell..tion_e30b47f5d4a30e9e_0005.000d_4ab2a66cfade09be\DellSystemDetect.exe
mRun: [SMSERIAL] c:\program files\motorola\smserial\sm56hlpr.exe
mRun: [Apoint] c:\program files\delltpad\Apoint.exe
mRun: [WeatherBlink EPM Support] "c:\progra~1\weathe~2\bar\1.bin\gcmedint.exe" T8EPMSUP.DLL,S
mRun: [WeatherBlink AppIntegrator 32-bit] c:\progra~1\weathe~2\bar\1.bin\AppIntegrator.exe
mRun: [WeatherBlink Search Scope Monitor] "c:\progra~1\weathe~2\bar\1.bin\gcsrchmn.exe" /m=2 /w /h
mRun: [ApnTBMon] "c:\program files\askpartnernetwork\toolbar\updater\TBNotifier.exe"
mRun: [OEM13Mon.exe] c:\windows\OEM13Mon.exe
mRun: [NVHotkey] rundll32.exe c:\windows\system32\nvHotkey.dll,Start
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\adober~1.lnk - c:\program files\adobe\acrobat 7.0\reader\reader_sl.exe
mPolicies-Explorer: NoDriveTypeAutoRun = dword:28
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: {5547CE1F-74E9-41E5-9CBF-5211ECC37341} - {BB7DC12B-C59D-4138-AD28-BBB65DE62A3B} - c:\program files\kaspersky lab\kaspersky internet security 15.0.2\ieext\ie_plugin.dll
Trusted Zone: dell.com
TCP: NameServer = 192.168.8.1 192.168.8.1
TCP: Interfaces\{099ECFD8-92DC-4234-921D-07C2C1631B32} : NameServer = 8.8.8.8 193.251.169.165
TCP: Interfaces\{204A7D8B-4975-4826-A1DE-325C980DDE7A} : DHCPNameServer = 192.168.1.1 0.0.0.0
TCP: Interfaces\{4D640A5B-B3F3-48D4-BDAC-8709A8803C05} : DHCPNameServer = 192.168.8.1 192.168.8.1
TCP: Interfaces\{72CAA6B8-9862-4628-96AE-2604F9521B37} : NameServer = 8.8.8.8 193.251.169.165
TCP: Interfaces\{7D12096E-B643-4B22-ABE0-D1462D38AD48} : DHCPNameServer = 192.168.8.1 192.168.8.1
TCP: Interfaces\{C6958D3E-9EB5-4498-A42A-E9C4D47AD00A} : DHCPNameServer = 192.168.8.1 192.168.8.1
TCP: Interfaces\{E128ADD7-3FA2-4A4D-959F-FB03408BDFA4} : DHCPNameServer = 192.168.0.1 192.168.0.1
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\40.0.2214.115\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\france\appdata\roaming\mozilla\firefox\profiles\q90n3rxm.default\
FF - plugin: c:\program files\google\update\1.3.26.9\npGoogleUpdate3.dll
FF - plugin: c:\program files\kaspersky lab\kaspersky internet security 15.0.2\ffext\content_blocker@kaspersky.com\npcontentblocker.dll
FF - plugin: c:\program files\kaspersky lab\kaspersky internet security 15.0.2\ffext\online_banking@kaspersky.com\nponlinebanking.dll
FF - plugin: c:\program files\kaspersky lab\kaspersky internet security 15.0.2\ffext\virtual_keyboard@kaspersky.com\npvkplugin.dll
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\mozilla firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
.
---- FIREFOX POLICIES ----
.
FF - user.js: plugin.state.npcontentblocker - 2
.
FF - user.js: plugin.state.nponlinebanking - 2
.
FF - user.js: plugin.state.npvkplugin - 2
.
============= SERVICES / DRIVERS ===============
.
R0 cm_km_w;Kaspersky Lab Crypto Module (FDE PDK);c:\windows\system32\drivers\cm_km_w.sys [2013-1-14 189136]
R0 iusb3hcs;Pilote de commutateur de contrôleur d'hôte Intel(R) USB 3.0;c:\windows\system32\drivers\iusb3hcs.sys [2014-12-21 16440]
R1 klhk;klhk;c:\windows\system32\drivers\klhk.sys [2015-2-25 36040]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter;c:\windows\system32\drivers\klim6.sys [2014-10-10 25800]
R1 klpd;klpd;c:\windows\system32\drivers\klpd.sys [2013-4-12 14432]
R1 kltdi;kltdi;c:\windows\system32\drivers\kltdi.sys [2014-10-9 46152]
R1 Klwtp;Klwtp;c:\windows\system32\drivers\klwtp.sys [2014-11-22 64200]
R1 kneps;kneps;c:\windows\system32\drivers\kneps.sys [2014-11-10 148296]
R2 kldisk;kldisk;c:\windows\system32\drivers\kldisk.sys [2014-8-19 37896]
R2 ubsbm;Unibrain 1394 SBM Driver;c:\windows\system32\drivers\UBSBM.sys [2014-12-21 17408]
R2 ubumapi;Unibrain 1394 FireAPI Driver;c:\windows\system32\drivers\UBUMAPI.sys [2014-12-21 46592]
R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys [2014-12-26 73984]
R3 klflt;Kaspersky Lab Kernel DLL;c:\windows\system32\drivers\klflt.sys [2015-2-25 120008]
R3 klkbdflt;Kaspersky Lab KLKBDFLT;c:\windows\system32\drivers\klkbdflt.sys [2014-10-30 26824]
R3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\drivers\klmouflt.sys [2013-8-8 25696]
R3 O2MDRDR;O2MDRDR;c:\windows\system32\drivers\o2media.sys [2008-7-29 51288]
R3 O2SDRDR;O2SDRDR;c:\windows\system32\drivers\o2sd.sys [2008-6-12 43608]
R3 OEM13Vfx;Creative Camera OEM013 Video VFX Driver;c:\windows\system32\drivers\OEM13Vfx.sys [2014-12-21 7424]
R3 OEM13Vid;Creative Camera OEM013 Driver;c:\windows\system32\drivers\OEM13Vid.sys [2014-12-21 235840]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2014-12-21 614624]
R3 ubohci;Unibrain 1394 OHCI Driver;c:\windows\system32\drivers\ubohci.sys [2014-12-21 116736]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\drivers\ew_hwusbdev.sys [2014-12-26 102784]
S3 ewusbmbb;HUAWEI USB-WWAN miniport;c:\windows\system32\drivers\ewusbwwan.sys [2014-12-26 350720]
S3 netw5v32;Pilote de carte de liaison WiFi sans fil Intel(R) 5000 Series pour Windows Vista 32 bits;c:\windows\system32\drivers\netw5v32.sys [2009-6-10 4231168]
.
=============== File Associations ===============
.
ShellExec: Opera.exe: open="c:\program files\opera\Launcher.exe" "%1"
.
=============== Created Last 30 ================
.
2015-02-26 05:39:52 62576 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{4d901718-da83-4ffc-b41d-daf741c7a4c9}\offreg.dll
2015-02-25 09:06:59 -------- d-----w- c:\windows\system32\AGEIA
2015-02-25 09:06:51 -------- d-----w- c:\program files\common files\Wise Installation Wizard
2015-02-25 09:06:44 -------- d-----w- c:\program files\NVIDIA Corporation
2015-02-25 01:06:13 -------- d-----w- c:\windows\ELAMBKUP
2015-02-25 01:06:11 -------- d-----w- c:\programdata\Kaspersky Lab
2015-02-25 01:06:11 -------- d-----w- c:\program files\Kaspersky Lab
2015-02-25 01:05:57 36040 ----a-w- c:\windows\system32\drivers\klhk.sys
2015-02-25 01:05:57 120008 ----a-w- c:\windows\system32\drivers\klflt.sys
2015-02-25 01:04:52 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2015-02-25 01:04:52 49472 ----a-w- c:\windows\system32\netfxperf.dll
2015-02-25 01:04:52 297808 ----a-w- c:\windows\system32\mscoree.dll
2015-02-25 01:04:52 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2015-02-25 01:04:52 1130824 ----a-w- c:\windows\system32\dfshim.dll
2015-02-24 16:44:03 -------- d-----w- c:\program files\Enigma Software Group
2015-02-24 16:33:17 -------- d-----w- c:\windows\system32\appmgmt
2015-02-24 15:12:01 31986264 ----a-w- c:\users\france\appdata\roaming\arsiv.exe
2015-02-09 13:11:56 -------- d-----w- C:\Nouveau dossier
2015-02-09 07:52:37 -------- d-----w- c:\program files\VideoLAN
2015-02-06 07:47:36 -------- d-----w- c:\users\france\appdata\local\IAC
2015-02-06 07:46:51 -------- d-----w- C:\UpdateChromeLinksLogs
2015-02-06 07:46:33 1700352 ----a-w- c:\windows\system32\gdiplus.dll
2015-02-06 07:46:33 1060864 ----a-w- c:\windows\system32\mfc71.dll
2015-02-06 07:05:05 -------- d-----w- c:\users\france\appdata\local\AskPartnerNetwork
2015-02-06 07:05:03 -------- d-----w- c:\programdata\AskPartnerNetwork
2015-02-06 07:05:03 -------- d-----w- c:\program files\AskPartnerNetwork
2015-02-06 07:03:43 -------- d-----w- c:\programdata\APN
2015-02-06 06:44:04 -------- d-----w- c:\users\france\appdata\local\Programs
2015-02-06 06:42:43 -------- d-----w- C:\FFOutput
2015-02-06 06:42:42 -------- d-----w- c:\programdata\Baidu
2015-02-06 06:42:05 -------- d-----w- c:\program files\FreeTime
2015-02-02 11:19:48 -------- d-----w- c:\programdata\MobileBrServ
.
==================== Find3M ====================
.
2014-12-30 21:22:33 701616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-12-30 21:22:32 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-12-21 10:16:17 6000640 ----a-w- c:\program files\GUT9492.tmp
.
============= FINISH: 7:43:28,03 ===============

Autres pages sur : virus malveillant facebook

a c 614 8 Sécurité
a b 9 Windows
28 Février 2015 22:39:19

Bonsoir,

Généralement on ne balance pas un rapport comme ça, sans explication ...

On peut avoir un contexte, des symptômes, des explications sur le soucis rencontré ?
m
0
l
Tom's guide dans le monde
  • Allemagne
  • Italie
  • Irlande
  • Royaume Uni
  • Etats Unis
Suivre Tom's Guide
Inscrivez-vous à la Newsletter
  • ajouter à twitter
  • ajouter à facebook
  • ajouter un flux RSS