Aller au contenu

  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

Après quelques virus détectés, ordi très lent.

Samo-Yari

Par Samo-Yari
dans Analyses et éradication malwares

 Partager

Messages recommandés

pear Devil Member !

pear

Posté(e)
Posté(e)

Bien

 

Si vous estimez votre problème résolu, éditez l'en tête de votre premier message en choisissant l'option "utiliser l'éditeur complet" et y indiquez Résolu pour que ceux qui la recherchent y trouvent une solution.

Samo-Yari Junior Member

Samo-Yari

Posté(e)
  • Auteur
Posté(e)

Les telechargements repasse à 50ko/sec !

(peut-etre que c'est le wifi ?)

 

Je tiens à dire que j'ai déjà fait cette manip' avant votre aide, cela n'avait pas changé, mis à part le fait de trouver encore deux virus sur la machine...

Au premier sujet que je vous ai joint, il est écrit que:

- Je souhaiterais réduire la lenteur du PC. (c'est comme dhab, je surf tranquille sauf quand le wifi monte ou descend...normal.)

Je parle surtout de téléchargements quelconque en somme. Pendant une heure c'était reparti à 150/160ko/sec mais là c'est descendu à 50 et même 20ko/sec pensez-vous que c'est dut à la borne wifi et qu'il n'y en a pas assez autour de chez moi pour bien capté sfr ? le wifi n'est pas une solution ? c'est mon problème de départ. (merci alors pour les virus, j'effectuerais plus souvent des désinfections mbam.)

Samo-Yari Junior Member

Samo-Yari

Posté(e)
  • Auteur
Posté(e)

Je n'ai jamais autant bugé je vais re-désinfécté voir si il y a pépin. car la je lag encore plus... les pages ne se chargent même pas, je me demande même comment j'ai pu arrivé à envoyer ce message. c'est un comble...

pear Devil Member !

pear

Posté(e)
Posté(e)

Recherche de Rootkit

Télécharger SysProtsur le bureau

Installez le et double cliquez sur "SysProt.exe"

Cliquez sur l'onglet "log" ;

Cochez toutes les cases présentes dans la fenêtre "Write to log" ;

Cochez Hidden Objects Only (au bas, à gauche)

Les "Objets cachés (Hidden)" sont en Rouge dans tous les modules

Cliquez sur Create log (au bas, à droite)

Une nouvelle fenêtre apparaîtra : cochez Scan root drive et cliquez sur Start ;

Un rapport sera sauvegardé dans le dossier SysProt.

Signalez les lignes rouges, car votre rapport ne montrera pas la couleur

Copiez/collez en le contenu dans votre réponse.

Samo-Yari Junior Member

Samo-Yari

Posté(e)
  • Auteur
Posté(e)

SysProt AntiRootkit v1.0.1.0

by swatkat

 

******************************************************************************************

******************************************************************************************

 

No Hidden Processes found

 

******************************************************************************************

******************************************************************************************

Kernel Modules:

Module Name: \SystemRoot\System32\Drivers\dump_atapi.sys

Service Name: ---

Module Base: B2336000

Module End: B234E000

Hidden: Yes

 

Module Name: \SystemRoot\System32\Drivers\dump_WMILIB.SYS

Service Name: ---

Module Base: F79EF000

Module End: F79F1000

Hidden: Yes

 

******************************************************************************************

******************************************************************************************

SSDT:

Function Name: ZwAddBootEntry

Address: B2C7A9CA

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwAllocateVirtualMemory

Address: B2CCFA68

Driver Base: B2CC6000

Driver End: B2D0E000

Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS

 

Function Name: ZwClose

Address: B2C9AAF5

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwCreateEvent

Address: B2C7CEAC

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwCreateEventPair

Address: B2C7CF04

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwCreateIoCompletion

Address: B2C7D01A

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwCreateKey

Address: B2C9A4A9

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwCreateMutant

Address: B2C7CE02

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwCreateSection

Address: B2C7CF54

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwCreateSemaphore

Address: B2C7CE56

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwCreateTimer

Address: B2C7CFC8

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwDeleteBootEntry

Address: B2C7A9EE

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwDeleteKey

Address: B2C9B1BB

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwDeleteValueKey

Address: B2C9B471

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwDuplicateObject

Address: B2C7D29E

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwEnumerateKey

Address: B2C9B026

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwEnumerateValueKey

Address: B2C9AE91

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwFreeVirtualMemory

Address: B2CCFB18

Driver Base: B2CC6000

Driver End: B2D0E000

Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS

 

Function Name: ZwLoadDriver

Address: B2C7A7B8

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwModifyBootEntry

Address: B2C7AA12

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwNotifyChangeKey

Address: B2C7D412

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwNotifyChangeMultipleKeys

Address: B2C7B4AA

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwOpenEvent

Address: B2C7CEDC

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwOpenEventPair

Address: B2C7CF2C

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwOpenIoCompletion

Address: B2C7D044

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwOpenKey

Address: B2C9A805

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwOpenMutant

Address: B2C7CE2E

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwOpenProcess

Address: B2C7D0D6

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwOpenSection

Address: B2C7CF94

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwOpenSemaphore

Address: B2C7CE84

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwOpenThread

Address: B2C7D1BA

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwOpenTimer

Address: B2C7CFF2

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwProtectVirtualMemory

Address: B2CCFBB0

Driver Base: B2CC6000

Driver End: B2D0E000

Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS

 

Function Name: ZwQueryKey

Address: B2C9AD0C

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwQueryObject

Address: B2C7B370

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwQueryValueKey

Address: B2C9AB5E

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwRenameKey

Address: B2CD7E26

Driver Base: B2CC6000

Driver End: B2D0E000

Driver Name: \SystemRoot\System32\Drivers\aswSP.SYS

 

Function Name: ZwRestoreKey

Address: B2C99B1C

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwSetBootEntryOrder

Address: B2C7AA36

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwSetBootOptions

Address: B2C7AA5A

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwSetSystemInformation

Address: B2C7A812

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwSetSystemPowerState

Address: B2C7A94E

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwSetValueKey

Address: B2C9B2C2

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwShutdownSystem

Address: B2C7A92A

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwSystemDebugControl

Address: B2C7A972

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

Function Name: ZwVdmControl

Address: B2C7AA7E

Driver Base: B2C68000

Driver End: B2CC6000

Driver Name: \SystemRoot\System32\Drivers\aswSnx.SYS

 

******************************************************************************************

******************************************************************************************

Kernel Hooks:

Hooked Function: ZwCreateProcessEx

At Address: 8058124C

Jump To: B2CE48E2

Module Name: C:\WINDOWS\System32\Drivers\aswSP.SYS

 

Hooked Function: ObMakeTemporaryObject

At Address: 805A038B

Jump To: B2CE029E

Module Name: C:\WINDOWS\System32\Drivers\aswSP.SYS

 

Hooked Function: ObInsertObject

At Address: 805650BA

Jump To: B2CE1D38

Module Name: C:\WINDOWS\System32\Drivers\aswSP.SYS

 

******************************************************************************************

******************************************************************************************

No IRP Hooks found

 

******************************************************************************************

******************************************************************************************

Ports:

Local Address: DULUC:1520

Remote Address: RESPONSE.CLEVERBRIDGE.COM:HTTP

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: CLOSE_WAIT

 

Local Address: DULUC:1511

Remote Address: WWW.EARN.TO:HTTP

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LAST_ACK

 

Local Address: DULUC:1510

Remote Address: NY1-G004.US.INTELLITXT.COM:HTTP

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LAST_ACK

 

Local Address: DULUC:1499

Remote Address: WWW.EARN.TO:HTTP

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LAST_ACK

 

Local Address: DULUC:1498

Remote Address: WWW.EARN.TO:HTTP

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LAST_ACK

 

Local Address: DULUC:1497

Remote Address: WWW.EARN.TO:HTTP

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LAST_ACK

 

Local Address: DULUC:1496

Remote Address: WWW.EARN.TO:HTTP

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LAST_ACK

 

Local Address: DULUC:1494

Remote Address: VIP1.LON1.CACHEFLY.NET:HTTP

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LAST_ACK

 

Local Address: DULUC:1492

Remote Address: VIP1.LON1.CACHEFLY.NET:HTTP

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LAST_ACK

 

Local Address: DULUC:1490

Remote Address: VIP1.LON1.CACHEFLY.NET:HTTP

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LAST_ACK

 

Local Address: DULUC:1488

Remote Address: VIP1.LON1.CACHEFLY.NET:HTTP

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LAST_ACK

 

Local Address: DULUC:1475

Remote Address: PAR03S02-IN-F13.1E100.NET:HTTP

Type: TCP

Process: [system Idle Process]

State: TIME_WAIT

 

Local Address: DULUC:1474

Remote Address: PAR03S02-IN-F13.1E100.NET:HTTP

Type: TCP

Process: [system Idle Process]

State: TIME_WAIT

 

Local Address: DULUC:1467

Remote Address: PAR03S02-IN-F25.1E100.NET:HTTP

Type: TCP

Process: [system Idle Process]

State: TIME_WAIT

 

Local Address: DULUC:1465

Remote Address: PAR03S02-IN-F13.1E100.NET:HTTP

Type: TCP

Process: [system Idle Process]

State: TIME_WAIT

 

Local Address: DULUC:1450

Remote Address: 77.67.11.18:HTTP

Type: TCP

Process: [system Idle Process]

State: TIME_WAIT

 

Local Address: DULUC:1441

Remote Address: PAR03S03-IN-F28.1E100.NET:HTTP

Type: TCP

Process: [system Idle Process]

State: TIME_WAIT

 

Local Address: DULUC:1423

Remote Address: PAR03S03-IN-F13.1E100.NET:HTTP

Type: TCP

Process: [system Idle Process]

State: TIME_WAIT

 

Local Address: DULUC:1419

Remote Address: 77.67.11.18:HTTP

Type: TCP

Process: [system Idle Process]

State: TIME_WAIT

 

Local Address: DULUC:1410

Remote Address: PAR03S02-IN-F13.1E100.NET:HTTP

Type: TCP

Process: [system Idle Process]

State: TIME_WAIT

 

Local Address: DULUC:1401

Remote Address: PAR08S10-IN-F19.1E100.NET:HTTP

Type: TCP

Process: [system Idle Process]

State: TIME_WAIT

 

Local Address: DULUC:1392

Remote Address: PAR03S02-IN-F14.1E100.NET:HTTP

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: ESTABLISHED

 

Local Address: DULUC:1390

Remote Address: 68.68.30.30.ZENEX5IVE.COM:HTTP

Type: TCP

Process: C:\Documents and Settings\Subaka\Local Settings\Application Data\vghd\bin\Virtuagirl_Downloader.exe

State: ESTABLISHED

 

Local Address: DULUC:1379

Remote Address: 68.67.185.210:HTTP

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LAST_ACK

 

Local Address: DULUC:1371

Remote Address: W2.EARN.TO:HTTP

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LAST_ACK

 

Local Address: DULUC:1365

Remote Address: EC2-46-137-162-36.EU-WEST-1.COMPUTE.AMAZONAWS.COM:HTTP

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LAST_ACK

 

Local Address: DULUC:1361

Remote Address: MPR2.NGD.VIP.BF1.YAHOO.COM:HTTP

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LAST_ACK

 

Local Address: DULUC:1316

Remote Address: 31.24.80.18:HTTP

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LAST_ACK

 

Local Address: DULUC:1315

Remote Address: CDS177.AMS9.MSECN.NET:HTTP

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LAST_ACK

 

Local Address: DULUC:1313

Remote Address: 93.184.220.74:HTTP

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LAST_ACK

 

Local Address: DULUC:1307

Remote Address: 109.205.184.65:HTTP

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LAST_ACK

 

Local Address: DULUC:1303

Remote Address: 2.20.243.55:HTTP

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LAST_ACK

 

Local Address: DULUC:1299

Remote Address: WWW-SLB-10-01-ASH4.FACEBOOK.COM:HTTP

Type: TCP

Process: [system Idle Process]

State: TIME_WAIT

 

Local Address: DULUC:1295

Remote Address: 31.24.80.18:HTTP

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LAST_ACK

 

Local Address: DULUC:1292

Remote Address: PAR03S02-IN-F4.1E100.NET:HTTPS

Type: TCP

Process: [system Idle Process]

State: TIME_WAIT

 

Local Address: DULUC:1290

Remote Address: PAR03S02-IN-F2.1E100.NET:HTTP

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: ESTABLISHED

 

Local Address: DULUC:1287

Remote Address: PAR03S02-IN-F25.1E100.NET:HTTPS

Type: TCP

Process: [system Idle Process]

State: TIME_WAIT

 

Local Address: DULUC:1286

Remote Address: PAR03S02-IN-F14.1E100.NET:HTTP

Type: TCP

Process: [system Idle Process]

State: TIME_WAIT

 

Local Address: DULUC:1278

Remote Address: 2.20.243.55:HTTP

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LAST_ACK

 

Local Address: DULUC:1264

Remote Address: PAR03S02-IN-F25.1E100.NET:HTTP

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: ESTABLISHED

 

Local Address: DULUC:1188

Remote Address: 68.68.30.30.ZENEX5IVE.COM:HTTP

Type: TCP

Process: C:\Documents and Settings\Subaka\Local Settings\Application Data\vghd\bin\Virtuagirl_Downloader.exe

State: ESTABLISHED

 

Local Address: DULUC:NETBIOS-SSN

Remote Address: 0.0.0.0:0

Type: TCP

Process: System

State: LISTENING

 

Local Address: DULUC:12995

Remote Address: 0.0.0.0:0

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LISTENING

 

Local Address: DULUC:12993

Remote Address: 0.0.0.0:0

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LISTENING

 

Local Address: DULUC:12563

Remote Address: 0.0.0.0:0

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LISTENING

 

Local Address: DULUC:12465

Remote Address: 0.0.0.0:0

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LISTENING

 

Local Address: DULUC:12143

Remote Address: 0.0.0.0:0

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LISTENING

 

Local Address: DULUC:12119

Remote Address: 0.0.0.0:0

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LISTENING

 

Local Address: DULUC:12110

Remote Address: 0.0.0.0:0

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LISTENING

 

Local Address: DULUC:12080

Remote Address: LOCALHOST:1519

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: ESTABLISHED

 

Local Address: DULUC:12080

Remote Address: LOCALHOST:1391

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: ESTABLISHED

 

Local Address: DULUC:12080

Remote Address: LOCALHOST:1288

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: ESTABLISHED

 

Local Address: DULUC:12080

Remote Address: LOCALHOST:1263

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: ESTABLISHED

 

Local Address: DULUC:12080

Remote Address: 0.0.0.0:0

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LISTENING

 

Local Address: DULUC:12025

Remote Address: 0.0.0.0:0

Type: TCP

Process: C:\Program Files\AVAST Software\Avast\AvastSvc.exe

State: LISTENING

 

Local Address: DULUC:5152

Remote Address: 0.0.0.0:0

Type: TCP

Process: C:\Program Files\Java\jre6\bin\jqs.exe

State: LISTENING

 

Local Address: DULUC:1519

Remote Address: LOCALHOST:12080

Type: TCP

Process: C:\Program Files\Mozilla Firefox\firefox.exe

State: ESTABLISHED

 

Local Address: DULUC:1391

Remote Address: LOCALHOST:12080

Type: TCP

Process: C:\Program Files\Mozilla Firefox\firefox.exe

State: ESTABLISHED

 

Local Address: DULUC:1288

Remote Address: LOCALHOST:12080

Type: TCP

Process: C:\Program Files\Mozilla Firefox\firefox.exe

State: ESTABLISHED

 

Local Address: DULUC:1263

Remote Address: LOCALHOST:12080

Type: TCP

Process: C:\Program Files\Mozilla Firefox\firefox.exe

State: ESTABLISHED

 

Local Address: DULUC:1157

Remote Address: LOCALHOST:1156

Type: TCP

Process: C:\Program Files\Mozilla Firefox\firefox.exe

State: ESTABLISHED

 

Local Address: DULUC:1156

Remote Address: LOCALHOST:1157

Type: TCP

Process: C:\Program Files\Mozilla Firefox\firefox.exe

State: ESTABLISHED

 

Local Address: DULUC:1083

Remote Address: 0.0.0.0:0

Type: TCP

Process: C:\WINDOWS\system32\alg.exe

State: LISTENING

 

Local Address: DULUC:6881

Remote Address: 0.0.0.0:0

Type: TCP

Process: C:\Documents and Settings\Subaka\Local Settings\Application Data\vghd\bin\Virtuagirl_Downloader.exe

State: LISTENING

 

Local Address: DULUC:MICROSOFT-DS

Remote Address: 0.0.0.0:0

Type: TCP

Process: System

State: LISTENING

 

Local Address: DULUC:EPMAP

Remote Address: 0.0.0.0:0

Type: TCP

Process: C:\WINDOWS\system32\svchost.exe

State: LISTENING

 

Local Address: DULUC:1900

Remote Address: NA

Type: UDP

Process: C:\WINDOWS\system32\svchost.exe

State: NA

 

Local Address: DULUC:138

Remote Address: NA

Type: UDP

Process: System

State: NA

 

Local Address: DULUC:NETBIOS-NS

Remote Address: NA

Type: UDP

Process: System

State: NA

 

Local Address: DULUC:123

Remote Address: NA

Type: UDP

Process: C:\WINDOWS\system32\svchost.exe

State: NA

 

Local Address: DULUC:1900

Remote Address: NA

Type: UDP

Process: C:\WINDOWS\system32\svchost.exe

State: NA

 

Local Address: DULUC:123

Remote Address: NA

Type: UDP

Process: C:\WINDOWS\system32\svchost.exe

State: NA

 

Local Address: DULUC:4500

Remote Address: NA

Type: UDP

Process: C:\WINDOWS\system32\lsass.exe

State: NA

 

Local Address: DULUC:500

Remote Address: NA

Type: UDP

Process: C:\WINDOWS\system32\lsass.exe

State: NA

 

Local Address: DULUC:MICROSOFT-DS

Remote Address: NA

Type: UDP

Process: System

State: NA

 

******************************************************************************************

******************************************************************************************

Hidden files/folders:

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx20\aspnet.msp

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx20\clr.msp

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx20\crt.msp

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx20\dw.msp

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx20\netfx20a_x86.msi

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx20\netfx_ca.msp

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx20\netfx_core.msp

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx20\netfx_other.msp

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx20\prexp.msp

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx20\winforms.msp

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx30\netfx30a_x86.msi

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx30\rgb9rast_x86.msi

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx30\wcf.msp

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx30\wcs.msp

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx30\wf.msp

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx30\wf_32.msp

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx30\wic_x86_enu.exe

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx30\wpf1.msp

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx30\wpf2.msp

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx30\wpf2_32.msp

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx30\wpf_other.msp

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx30\wpf_other_32.msp

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx30\x86\msxml6.msi

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx30\x86

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx30\xps.msp

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx30\xpsepsc-x86-en-us.exe

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx35\x86\netfx35_x86.exe

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\dotnetfx35\x86

Status: Access denied

 

Object: C:\a76ee46fcb805a7686628be99a646001\tools\clwireg.exe

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx20\aspnet.msp

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx20\clr.msp

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx20\crt.msp

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx20\dw.msp

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx20\netfx20a_x86.msi

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx20\netfx_ca.msp

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx20\netfx_core.msp

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx20\netfx_other.msp

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx20\prexp.msp

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx20\winforms.msp

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx30\netfx30a_x86.msi

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx30\rgb9rast_x86.msi

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx30\wcf.msp

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx30\wcs.msp

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx30\wf.msp

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx30\wf_32.msp

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx30\wic_x86_enu.exe

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx30\wpf1.msp

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx30\wpf2.msp

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx30\wpf2_32.msp

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx30\wpf_other.msp

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx30\wpf_other_32.msp

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx30\x86\msxml6.msi

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx30\x86

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx30\xps.msp

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx30\xpsepsc-x86-en-us.exe

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx35\x86\netfx35_x86.exe

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\dotnetfx35\x86

Status: Access denied

 

Object: C:\be6f1dc4f93f647dc5837dfaa73ad7\tools\clwireg.exe

Status: Access denied

 

Object: C:\Documents and Settings\All Users\Application Data\Real\setup\config.ini

Status: Access denied

 

Object: C:\Documents and Settings\Subaka\Mes documents\Téléchargements\scenes from ,,Body Heat

Status: Hidden

 

Object: C:\System Volume Information\MountPointManagerRemoteDatabase

Status: Access denied

 

Object: C:\System Volume Information\tracking.log

Status: Access denied

 

Object: C:\System Volume Information\_restore{25971772-2766-4CD9-8BFA-EE0C679F980B}

Status: Access denied

Aucune ligne en rouge, j'en conclu que c'est le wifi?

pear Devil Member !

pear

Posté(e)
Posté(e) (modifié)
Aucune ligne en rouge, j'en conclu que c'est le wifi?

 

Je ne saurais pas confirmer votre conclusion, mais on sait qu'il n'y pas infection

 

Exposez votre problème sur Internet & Réseaux de ce site.

 

Bonne chance.

Modifié par pear

Rejoindre la conversation

Vous pouvez publier maintenant et vous inscrire plus tard. Si vous avez un compte, connectez-vous maintenant pour publier avec votre compte.
Remarque : votre message nécessitera l’approbation d’un modérateur avant de pouvoir être visible.

Invité
Répondre à ce sujet…

×   Collé en tant que texte enrichi.   Coller en tant que texte brut à la place

  Seulement 75 émoticônes maximum sont autorisées.

×   Votre lien a été automatiquement intégré.   Afficher plutôt comme un lien

×   Votre contenu précédent a été rétabli.   Vider l’éditeur

×   Vous ne pouvez pas directement coller des images. Envoyez-les depuis votre ordinateur ou insérez-les depuis une URL.

×
 Partager
Aller sur la liste des sujets

  • En ligne récemment   0 membre est en ligne

    • Aucun utilisateur enregistré regarde cette page.
×
×
  • Créer...