Pour le rapport Hijack This
Dernière réponse : dans Sécurité
Bonjour, je voudrai savoir comment on fait pour avoir le rapport ainsi que de le poster ici pour voir si j'ai des erreurs merci :-(
Autres pages sur : rapport hijack this
Lassé par la pub ? Créez un compte
Salut,
Poste un log HijackThis.
Télécharge le, puis met le dans un dossier dédié.
Ensuite, lance le, appuie sur Do a system scan a save a logfile, et donne nous le résultat du scan (copie/colle le rapport ici)
www.infos-du-net.com/telecharger/HijackThis.html
Poste un log HijackThis.
Télécharge le, puis met le dans un dossier dédié.
Ensuite, lance le, appuie sur Do a system scan a save a logfile, et donne nous le résultat du scan (copie/colle le rapport ici)
www.infos-du-net.com/telecharger/HijackThis.html
Logfile of HijackThis v1.99.1
Scan saved at 12:25:54, on 09/02/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\eoRezo\EoEngine.exe
C:\Program Files\pspvideo9\pspVideo9.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\EDOUARD\Mes documents\HijackThis.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O1 - Hosts: 193.239.120.210 l2authd.lineage2.com
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [EoEngine] "C:\Program Files\eoRezo\EoEngine.exe"
O4 - HKLM\..\Run: [PSPVideo9] C:\Program Files\pspvideo9\pspVideo9.exe -t
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O8 - Extra context menu item: Télécharger avec FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Télécharger tout avec FlashGet - C:\Program Files\FlashGet\jc_all.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: fdjeux - https://www.fdjeux.net/classes/fdjeux.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls...
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDown...
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDsrv) - Ahead Software AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
Scan saved at 12:25:54, on 09/02/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\eoRezo\EoEngine.exe
C:\Program Files\pspvideo9\pspVideo9.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\EDOUARD\Mes documents\HijackThis.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O1 - Hosts: 193.239.120.210 l2authd.lineage2.com
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [EoEngine] "C:\Program Files\eoRezo\EoEngine.exe"
O4 - HKLM\..\Run: [PSPVideo9] C:\Program Files\pspvideo9\pspVideo9.exe -t
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O8 - Extra context menu item: Télécharger avec FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Télécharger tout avec FlashGet - C:\Program Files\FlashGet\jc_all.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: fdjeux - https://www.fdjeux.net/classes/fdjeux.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls...
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDown...
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InCD Helper (InCDsrv) - Ahead Software AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
bonjour je me permets de me glisser ici car j'ai un problem avec la fenetre "system 32 not found" ou dans ce genre, qui s'affiche chaque fois que je démarre. donc je me suis renseigné en lisant des trucs sur le forum, et donc j'ai fais un scan avec "hijack this" et voilà le rapport:
Logfile of HijackThis v1.99.1
Scan saved at 15:29:14, on 09/02/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\PACKSE~1\backweb\542802\Program\SERVIC~1.EXE
C:\Program Files\PACK SECURITE\Anti-Virus\fsgk32st.exe
C:\Program Files\PACK SECURITE\backweb\542802\program\fsbwsys.exe
C:\Program Files\PACK SECURITE\Anti-Virus\FSGK32.EXE
C:\Program Files\PACK SECURITE\Common\FSMA32.EXE
C:\Program Files\PACK SECURITE\backweb\542802\Program\fspex.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\PACK SECURITE\Common\FSMB32.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\PACK SECURITE\Anti-Virus\fssm32.exe
C:\Program Files\PACK SECURITE\Common\FCH32.EXE
C:\Program Files\PACK SECURITE\Common\FAMEH32.EXE
C:\Program Files\PACK SECURITE\FSPC\fspc.exe
C:\Program Files\PACK SECURITE\Anti-Virus\fsav32.exe
C:\Program Files\PACK SECURITE\FWES\Program\fsdfwd.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\System32\RunDll32.exe
C:\WINDOWS\system32\CmWatch.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\PACK SECURITE\Common\FSM32.EXE
C:\Program Files\PACK SECURITE\FSGUI\ispnews.exe
C:\Program Files\PACK SECURITE\FSGUI\fsguiexe.exe
C:\WINDOWS\System\SmWizard.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\KODAK\Kodak EasyShare software\bin\EasyShare.exe
C:\Program Files\Realtek\Rtl8180\RtlWake.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\trucs net\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = www.google.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.couldnotfind.com/search_page.html?&account_i...
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://numericable.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.otenet.gr/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.couldnotfind.com/search_page.html?&account_i...
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page_bak = http://www.otenet.gr/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer par NUMERICABLE
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - _{00D6A7E7-4A97-456f-848A-3B75BF7554D7} - (no file)
R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
F3 - REG:win.ini: run=c:\windows\system32\advmon32.exe
O2 - BHO: BHObj Class - {00000010-6F7D-442C-93E3-4A4827C2E4C8} - C:\WINDOWS\nem220.dll (file missing)
O2 - BHO: LocalNRDObj Class - {00320615-B6C2-40A6-8F99-F1C52D674FAD} - C:\WINDOWS\localNRD.dll
O2 - BHO: (no name) - {00D6A7E7-4A97-456f-848A-3B75BF7554D7} - (no file)
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: BAHelper Class - {A3FDD654-A057-4971-9844-4ED8E67DBBB8} - C:\Program Files\SideFind\sfbho.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [CmCardRun] C:\WINDOWS\system32\CmWatch.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\System32\PSDrvCheck.exe
O4 - HKLM\..\Run: [IST Service] C:\Program Files\ISTsvc\istsvc.exe
O4 - HKLM\..\Run: [Internet Optimizer] "C:\Program Files\Internet Optimizer\optimize.exe"
O4 - HKLM\..\Run: [uwkhukpuyb] C:\WINDOWS\System32\xjsqzf.exe
O4 - HKLM\..\Run: [sais] c:\program files\180solutions\sais.exe
O4 - HKLM\..\Run: [conscorr] C:\WINDOWS\conscorr.exe
O4 - HKLM\..\Run: [AQ3HelperStartUp] C:\PROGRA~1\AQUATI~1\AQ3HEL~1.EXE /partner AQ3
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [Advmon32] c:\windows\system32\advmon32.exe
O4 - HKLM\..\Run: [OIJJQOCS] c:\windows\system32\oijjqocs.exe /install
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\PACK SECURITE\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\PACK SECURITE\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\PACK SECURITE\FSGUI\FSSW.EXE" /reboot
O4 - HKLM\..\Run: [News Service] "C:\Program Files\PACK SECURITE\FSGUI\ispnews.exe"
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Advmon32] c:\windows\system32\advmon32.exe
O4 - HKCU\..\Run: [WinFixer2006] "C:\Program Files\WinFixer_2006\uwfx6.exe" /min
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Logiciel Kodak EasyShare.lnk = C:\Program Files\KODAK\Kodak EasyShare software\bin\EasyShare.exe
O4 - Global Startup: RtlWake.lnk = ?
O9 - Extra button: SideFind - {10E42047-DEB9-4535-A118-B3F6EC39B807} - C:\Program Files\SideFind\sidefind.dll (file missing)
O9 - Extra button: Filtre Web - {200DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\PACK SECURITE\FSPC\fspcmsie.dll
O9 - Extra button: (no name) - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\PACK SECURITE\FSPC\fspcmsie.dll
O9 - Extra 'Tools' menuitem: Afficher la &liste des sites Web - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\PACK SECURITE\FSPC\fspcmsie.dll
O9 - Extra button: (no name) - {200DB664-75B5-47c0-8B45-A44ACCF73F02} - C:\Program Files\PACK SECURITE\FSPC\fspcmsie.dll
O9 - Extra 'Tools' menuitem: &Interrompre le filtre de la page Web - {200DB664-75B5-47c0-8B45-A44ACCF73F02} - C:\Program Files\PACK SECURITE\FSPC\fspcmsie.dll
O9 - Extra button: (no name) - {200DB664-75B5-47c0-8B45-A44ACCF73F03} - C:\Program Files\PACK SECURITE\FSPC\fspcmsie.dll
O9 - Extra 'Tools' menuitem: &Refuser ce site Web - {200DB664-75B5-47c0-8B45-A44ACCF73F03} - C:\Program Files\PACK SECURITE\FSPC\fspcmsie.dll
O9 - Extra button: (no name) - {200DB664-75B5-47c0-8B45-A44ACCF73F04} - C:\Program Files\PACK SECURITE\FSPC\fspcmsie.dll
O9 - Extra 'Tools' menuitem: &Autoriser ce site Web - {200DB664-75B5-47c0-8B45-A44ACCF73F04} - C:\Program Files\PACK SECURITE\FSPC\fspcmsie.dll
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O10 - Broken Internet access because of LSP provider 'winsflt.dll' missing
O14 - IERESET.INF: START_PAGE_URL=http://www.otenet.gr/
O16 - DPF: {78AF2F24-A9C3-11D3-BF8C-0060B0FCC122} (AcDcToday Control) - file://C:\Program Files\AutoCAD 2002\AcDcToday.ocx
O16 - DPF: {AE563720-B4F5-11D4-A415-00108302FDFD} (NOXLATE-BANR) - file://C:\Program Files\AutoCAD 2002\InstBanr.ocx
O16 - DPF: {C36112BF-2FA3-4694-8603-3B510EA3B465} (Lycos File Upload Component) - http://f005.mail.caramail.lycos.fr/app/uploader/FileUpl...
O16 - DPF: {C6637286-300D-11D4-AE0A-0010830243BD} (InstaFred) - file://C:\Program Files\AutoCAD 2002\InstFred.ocx
O16 - DPF: {F281A59C-7B65-11D3-8617-0010830243BD} (AcPreview Control) - file://C:\Program Files\AutoCAD 2002\AcPreview.ocx
O18 - Filter: text/html - {7C83AAF5-FA96-40DA-AF92-049D7BC74392} - C:\Documents and Settings\joe\Local Settings\Application Data\microsoft\internet explorer\V0.26.dat
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: PACK SECURITE (BackWeb Plug-in - 542802) - Unknown owner - C:\PROGRA~1\PACKSE~1\backweb\542802\Program\SERVIC~1.EXE
O23 - Service: F-Secure Gatekeeper Handler Starter - F-Secure Corp. - C:\Program Files\PACK SECURITE\Anti-Virus\fsgk32st.exe
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\PACK SECURITE\backweb\542802\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\PACK SECURITE\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure HTTP Server (fshttps) - F-Secure Corporation - C:\Program Files\PACK SECURITE\FSPC\fshttps\fshttps.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\PACK SECURITE\Common\FSMA32.EXE
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
si quelqu'un peut me dire ceux qui va pas, quels trucs je dois cocher je serai très reconnaissant.
A bientot
Logfile of HijackThis v1.99.1
Scan saved at 15:29:14, on 09/02/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\PACKSE~1\backweb\542802\Program\SERVIC~1.EXE
C:\Program Files\PACK SECURITE\Anti-Virus\fsgk32st.exe
C:\Program Files\PACK SECURITE\backweb\542802\program\fsbwsys.exe
C:\Program Files\PACK SECURITE\Anti-Virus\FSGK32.EXE
C:\Program Files\PACK SECURITE\Common\FSMA32.EXE
C:\Program Files\PACK SECURITE\backweb\542802\Program\fspex.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\PACK SECURITE\Common\FSMB32.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\PACK SECURITE\Anti-Virus\fssm32.exe
C:\Program Files\PACK SECURITE\Common\FCH32.EXE
C:\Program Files\PACK SECURITE\Common\FAMEH32.EXE
C:\Program Files\PACK SECURITE\FSPC\fspc.exe
C:\Program Files\PACK SECURITE\Anti-Virus\fsav32.exe
C:\Program Files\PACK SECURITE\FWES\Program\fsdfwd.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\System32\RunDll32.exe
C:\WINDOWS\system32\CmWatch.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\PACK SECURITE\Common\FSM32.EXE
C:\Program Files\PACK SECURITE\FSGUI\ispnews.exe
C:\Program Files\PACK SECURITE\FSGUI\fsguiexe.exe
C:\WINDOWS\System\SmWizard.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\KODAK\Kodak EasyShare software\bin\EasyShare.exe
C:\Program Files\Realtek\Rtl8180\RtlWake.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\trucs net\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = www.google.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.couldnotfind.com/search_page.html?&account_i...
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://numericable.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.otenet.gr/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.couldnotfind.com/search_page.html?&account_i...
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page_bak = http://www.otenet.gr/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer par NUMERICABLE
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - _{00D6A7E7-4A97-456f-848A-3B75BF7554D7} - (no file)
R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
F3 - REG:win.ini: run=c:\windows\system32\advmon32.exe
O2 - BHO: BHObj Class - {00000010-6F7D-442C-93E3-4A4827C2E4C8} - C:\WINDOWS\nem220.dll (file missing)
O2 - BHO: LocalNRDObj Class - {00320615-B6C2-40A6-8F99-F1C52D674FAD} - C:\WINDOWS\localNRD.dll
O2 - BHO: (no name) - {00D6A7E7-4A97-456f-848A-3B75BF7554D7} - (no file)
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: BAHelper Class - {A3FDD654-A057-4971-9844-4ED8E67DBBB8} - C:\Program Files\SideFind\sfbho.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [CmCardRun] C:\WINDOWS\system32\CmWatch.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\System32\PSDrvCheck.exe
O4 - HKLM\..\Run: [IST Service] C:\Program Files\ISTsvc\istsvc.exe
O4 - HKLM\..\Run: [Internet Optimizer] "C:\Program Files\Internet Optimizer\optimize.exe"
O4 - HKLM\..\Run: [uwkhukpuyb] C:\WINDOWS\System32\xjsqzf.exe
O4 - HKLM\..\Run: [sais] c:\program files\180solutions\sais.exe
O4 - HKLM\..\Run: [conscorr] C:\WINDOWS\conscorr.exe
O4 - HKLM\..\Run: [AQ3HelperStartUp] C:\PROGRA~1\AQUATI~1\AQ3HEL~1.EXE /partner AQ3
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [Advmon32] c:\windows\system32\advmon32.exe
O4 - HKLM\..\Run: [OIJJQOCS] c:\windows\system32\oijjqocs.exe /install
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\PACK SECURITE\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\PACK SECURITE\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\PACK SECURITE\FSGUI\FSSW.EXE" /reboot
O4 - HKLM\..\Run: [News Service] "C:\Program Files\PACK SECURITE\FSGUI\ispnews.exe"
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Advmon32] c:\windows\system32\advmon32.exe
O4 - HKCU\..\Run: [WinFixer2006] "C:\Program Files\WinFixer_2006\uwfx6.exe" /min
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Logiciel Kodak EasyShare.lnk = C:\Program Files\KODAK\Kodak EasyShare software\bin\EasyShare.exe
O4 - Global Startup: RtlWake.lnk = ?
O9 - Extra button: SideFind - {10E42047-DEB9-4535-A118-B3F6EC39B807} - C:\Program Files\SideFind\sidefind.dll (file missing)
O9 - Extra button: Filtre Web - {200DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\PACK SECURITE\FSPC\fspcmsie.dll
O9 - Extra button: (no name) - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\PACK SECURITE\FSPC\fspcmsie.dll
O9 - Extra 'Tools' menuitem: Afficher la &liste des sites Web - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\PACK SECURITE\FSPC\fspcmsie.dll
O9 - Extra button: (no name) - {200DB664-75B5-47c0-8B45-A44ACCF73F02} - C:\Program Files\PACK SECURITE\FSPC\fspcmsie.dll
O9 - Extra 'Tools' menuitem: &Interrompre le filtre de la page Web - {200DB664-75B5-47c0-8B45-A44ACCF73F02} - C:\Program Files\PACK SECURITE\FSPC\fspcmsie.dll
O9 - Extra button: (no name) - {200DB664-75B5-47c0-8B45-A44ACCF73F03} - C:\Program Files\PACK SECURITE\FSPC\fspcmsie.dll
O9 - Extra 'Tools' menuitem: &Refuser ce site Web - {200DB664-75B5-47c0-8B45-A44ACCF73F03} - C:\Program Files\PACK SECURITE\FSPC\fspcmsie.dll
O9 - Extra button: (no name) - {200DB664-75B5-47c0-8B45-A44ACCF73F04} - C:\Program Files\PACK SECURITE\FSPC\fspcmsie.dll
O9 - Extra 'Tools' menuitem: &Autoriser ce site Web - {200DB664-75B5-47c0-8B45-A44ACCF73F04} - C:\Program Files\PACK SECURITE\FSPC\fspcmsie.dll
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O10 - Broken Internet access because of LSP provider 'winsflt.dll' missing
O14 - IERESET.INF: START_PAGE_URL=http://www.otenet.gr/
O16 - DPF: {78AF2F24-A9C3-11D3-BF8C-0060B0FCC122} (AcDcToday Control) - file://C:\Program Files\AutoCAD 2002\AcDcToday.ocx
O16 - DPF: {AE563720-B4F5-11D4-A415-00108302FDFD} (NOXLATE-BANR) - file://C:\Program Files\AutoCAD 2002\InstBanr.ocx
O16 - DPF: {C36112BF-2FA3-4694-8603-3B510EA3B465} (Lycos File Upload Component) - http://f005.mail.caramail.lycos.fr/app/uploader/FileUpl...
O16 - DPF: {C6637286-300D-11D4-AE0A-0010830243BD} (InstaFred) - file://C:\Program Files\AutoCAD 2002\InstFred.ocx
O16 - DPF: {F281A59C-7B65-11D3-8617-0010830243BD} (AcPreview Control) - file://C:\Program Files\AutoCAD 2002\AcPreview.ocx
O18 - Filter: text/html - {7C83AAF5-FA96-40DA-AF92-049D7BC74392} - C:\Documents and Settings\joe\Local Settings\Application Data\microsoft\internet explorer\V0.26.dat
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: PACK SECURITE (BackWeb Plug-in - 542802) - Unknown owner - C:\PROGRA~1\PACKSE~1\backweb\542802\Program\SERVIC~1.EXE
O23 - Service: F-Secure Gatekeeper Handler Starter - F-Secure Corp. - C:\Program Files\PACK SECURITE\Anti-Virus\fsgk32st.exe
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\PACK SECURITE\backweb\542802\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\PACK SECURITE\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure HTTP Server (fshttps) - F-Secure Corporation - C:\Program Files\PACK SECURITE\FSPC\fshttps\fshttps.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\PACK SECURITE\Common\FSMA32.EXE
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
si quelqu'un peut me dire ceux qui va pas, quels trucs je dois cocher je serai très reconnaissant.
A bientot
0/ Desinstalle via Ajout/Suppression programme (si existe)
Winfixer
SideFind
180solution
1/ Redemarre en mode sans echec
2/ Lance Hijackthis ->Do a system scan only
->Coche les lignes puis Fix checked
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.couldnotfind.com/search_page.html?&account_i...
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.couldnotfind.com/search_page.html?&account_i...
R3 - URLSearchHook: (no name) - _{00D6A7E7-4A97-456f-848A-3B75BF7554D7} - (no file)
R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
F3 - REG:win.ini: run=c:\windows\system32\advmon32.exe
O2 - BHO: BHObj Class - {00000010-6F7D-442C-93E3-4A4827C2E4C8} - C:\WINDOWS\nem220.dll (file missing)
O2 - BHO: LocalNRDObj Class - {00320615-B6C2-40A6-8F99-F1C52D674FAD} - C:\WINDOWS\localNRD.dll
O2 - BHO: (no name) - {00D6A7E7-4A97-456f-848A-3B75BF7554D7} - (no file)
2 - BHO: BAHelper Class - {A3FDD654-A057-4971-9844-4ED8E67DBBB8} - C:\Program Files\SideFind\sfbho.dll
O4 - HKLM\..\Run: [uwkhukpuyb] C:\WINDOWS\System32\xjsqzf.exe
O4 - HKLM\..\Run: [sais] c:\program files\180solutions\sais.exe
O4 - HKLM\..\Run: [conscorr] C:\WINDOWS\conscorr.exe
O4 - HKLM\..\Run: [Advmon32] c:\windows\system32\advmon32.exe
O4 - HKCU\..\Run: [Advmon32] c:\windows\system32\advmon32.exe
O4 - HKCU\..\Run: [WinFixer2006] "C:\Program Files\WinFixer_2006\uwfx6.exe" /min
O9 - Extra button: SideFind - {10E42047-DEB9-4535-A118-B3F6EC39B807} - C:\Program Files\SideFind\sidefind.dll (file missing)
Assure toi d'avoir acces au dossier/fichiers caches
->Panneau de configuration
->Options dossiers
->Coche Afficher les dossiers caches
Decoche Masquer les extensions...
Decoche Masquer les fichiers proteges...
3/ Suppime ces fichiers/dossiers si existe
C:\WINDOWS\System32\xjsqzf.exe
C:\program files\180solutions
C:\WINDOWS\conscorr.exe
C:\windows\system32\advmon32.exe
C:\Program Files\WinFixer_2006
C:\Program Files\SideFind
4/ Lance un nettoyage Ccleaner
Poste les rapports dans un sujet cree pour l'occasion
5/ Lance un scan Ewido Ad Aware Spybot(mis a jour)
6/ Fais un scan en ligne Panda
Poste le rapport
7/ Reposte un log Hijackthis
As tu encore des problemes ?
Winfixer
SideFind
180solution
1/ Redemarre en mode sans echec
2/ Lance Hijackthis ->Do a system scan only
->Coche les lignes puis Fix checked
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.couldnotfind.com/search_page.html?&account_i...
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.couldnotfind.com/search_page.html?&account_i...
R3 - URLSearchHook: (no name) - _{00D6A7E7-4A97-456f-848A-3B75BF7554D7} - (no file)
R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
F3 - REG:win.ini: run=c:\windows\system32\advmon32.exe
O2 - BHO: BHObj Class - {00000010-6F7D-442C-93E3-4A4827C2E4C8} - C:\WINDOWS\nem220.dll (file missing)
O2 - BHO: LocalNRDObj Class - {00320615-B6C2-40A6-8F99-F1C52D674FAD} - C:\WINDOWS\localNRD.dll
O2 - BHO: (no name) - {00D6A7E7-4A97-456f-848A-3B75BF7554D7} - (no file)
2 - BHO: BAHelper Class - {A3FDD654-A057-4971-9844-4ED8E67DBBB8} - C:\Program Files\SideFind\sfbho.dll
O4 - HKLM\..\Run: [uwkhukpuyb] C:\WINDOWS\System32\xjsqzf.exe
O4 - HKLM\..\Run: [sais] c:\program files\180solutions\sais.exe
O4 - HKLM\..\Run: [conscorr] C:\WINDOWS\conscorr.exe
O4 - HKLM\..\Run: [Advmon32] c:\windows\system32\advmon32.exe
O4 - HKCU\..\Run: [Advmon32] c:\windows\system32\advmon32.exe
O4 - HKCU\..\Run: [WinFixer2006] "C:\Program Files\WinFixer_2006\uwfx6.exe" /min
O9 - Extra button: SideFind - {10E42047-DEB9-4535-A118-B3F6EC39B807} - C:\Program Files\SideFind\sidefind.dll (file missing)
Assure toi d'avoir acces au dossier/fichiers caches
->Panneau de configuration
->Options dossiers
->Coche Afficher les dossiers caches
Decoche Masquer les extensions...
Decoche Masquer les fichiers proteges...
3/ Suppime ces fichiers/dossiers si existe
C:\WINDOWS\System32\xjsqzf.exe
C:\program files\180solutions
C:\WINDOWS\conscorr.exe
C:\windows\system32\advmon32.exe
C:\Program Files\WinFixer_2006
C:\Program Files\SideFind
4/ Lance un nettoyage Ccleaner
Poste les rapports dans un sujet cree pour l'occasion
5/ Lance un scan Ewido Ad Aware Spybot(mis a jour)
6/ Fais un scan en ligne Panda
Poste le rapport
7/ Reposte un log Hijackthis
As tu encore des problemes ?
voici le rapport fait par panda. qu'est ce que tu en penses??
Incident Status Location
Spyware:Cookie/adultfriendfinder Not disinfected C:\Documents and Settings\joe\Cookies\joe@adultfriendfinder[1].txt
Spyware:Cookie/Cd Freaks Not disinfected C:\Documents and Settings\joe\Cookies\joe@cdfreaks[2].txt
Spyware:Cookie/Cd Freaks Not disinfected C:\Documents and Settings\joe\Cookies\joe@club.cdfreaks[2].txt
Spyware:Cookie/go Not disinfected C:\Documents and Settings\joe\Cookies\joe@go[2].txt
Spyware:Cookie/OfferOptimizer Not disinfected C:\Documents and Settings\joe\Cookies\joe@offeroptimizer[1].txt
Spyware:Cookie/Searchportal Not disinfected C:\Documents and Settings\joe\Cookies\joe@searchportal.information[1].txt
Spyware:Cookie/WinFixer Not disinfected C:\Documents and Settings\joe\Cookies\joe@winfixer[2].txt
Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\joe\Cookies\joe@xiti[1].txt
Dialer![:D]( ":D")
ialer.DK Not disinfected C:\Documents and Settings\joe\Local Settings\Application Data\Microsoft\Internet Explorer\__delete_on_reboot__v0.26.dat
Potentially unwanted tool:Application/Winantivirus2006 Not disinfected C:\Program Files\Fichiers communs\WinFixer 2006\pcheck.dll
Adware:Adware/IST.SideFind Not disinfected C:\Program Files\SideFind\__delete_on_reboot__sfbho.dll
Adware:Adware/Transponder Not disinfected C:\RECYCLER\S-1-5-21-2573474188-1235050204-3409994884-1005\Dc2.0XE
Adware:Adware/IPInsight Not disinfected C:\RECYCLER\S-1-5-21-2573474188-1235050204-3409994884-1005\Dc5.0xe
Virus:Trj/SysCenter.B Disinfected C:\RECYCLER\S-1-5-21-2573474188-1235050204-3409994884-1005\Dc6.0xe
Adware:Adware/IST.SideFind Not disinfected C:\trucs net\backups\backup-20060209-191238-160.dll
Adware:Adware/LocalNRD Not disinfected C:\trucs net\backups\backup-20060209-191238-424.dll
Adware:Adware/KeenValue Not disinfected C:\WINDOWS\browserxtras\pn\remove.0xe
Potentially unwanted tool:application/winfixer2005 Not disinfected C:\WINDOWS\Downloaded Program Files\UWFX5_0001_N66M1101NetInstaller.exe
Adware:adware/gator Not disinfected C:\WINDOWS\GatorHDPlugin.log
Adware:Adware/IPInsight Not disinfected C:\WINDOWS\inf\conscorr.inf
Adware:Adware/LocalNRD Not disinfected C:\WINDOWS\inf\localNrd.inf
Adware:Adware/Twain-Tech Not disinfected C:\WINDOWS\preInsln.exe
Spyware:application/bestoffer Not disinfected C:\WINDOWS\smdat32a.sys
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\aqxxxlkv.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\ayddviyv.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\bfjbqxrn.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\bpnzzcfy.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\cfiqpivy.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\clapebcl.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\crxpvsdo.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\dinpefui.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\dnzmdjwk.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\einmbhpq.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\eldmgpqa.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\ezrpfnot.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\fbcszesl.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\ftpiszzw.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\gothkgnn.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\gzrzirqb.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\hirzrtno.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\hoakjxun.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\iblgomrw.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\idkxbpfp.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\iitevief.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\ijawrwju.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\ipsbxscg.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\izunxhob.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\jefodtdk.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\jehydket.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\jkdedadl.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\jlpieqpu.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\jmzulbkx.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\jpaljack.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\jxiuzago.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\kfwfadpy.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\kqptbtat.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\lejrfexc.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\lzduasmr.0xe
Virus:Trj/Downloader.gen Disinfected C:\WINDOWS\system32\msdlupd.0ll
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\myolojqf.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\nnjyhivx.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\ntlqszqq.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\ohocmksg.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\oijjqocs.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\onmigwem.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\onmoezlk.0xe
Adware:Adware/P2PNetworking Not disinfected C:\WINDOWS\system32\P2P Networking\MARSHAL.DLL
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\qiqksayq.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\qjkgdkwc.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\qkqwbftp.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\rahzigzz.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\rgjktayt.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\rgxqymva.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\rjfhwrev.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\rlnyeukw.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\rtzwqcmh.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\rzamkyjj.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\snvrsgas.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\srbqkpys.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\tsufwkgm.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\txjldhvj.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\urdvcnah.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\uzufamph.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\vbcskpsu.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\vobrrfap.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\vrqkfstx.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\wibbskgv.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\wiinhjxe.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\wsoodbgr.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\xewkwlim.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\xmjkbmxz.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\yequsaoj.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\yivezwuy.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\yleqduct.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\zmnnsdzw.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\ztzxyefd.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\zwhfuiwt.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\zxwbjoow.0xe
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\adm.exe
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\adm25.dll
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\adm4.dll
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\admdata.dll
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\admdloader.dll
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\admfdi.dll
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\admprog.dll
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\dmfiles.cab
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\dmfiles.cab[AltnetUninstall.exe]
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\dmfiles.cab[asmend.exe]
Potentially unwanted tool:Application/MyWay Not disinfected C:\WINDOWS\Temp\Altnet\mysearch.cab
Potentially unwanted tool:Application/MyWay Not disinfected C:\WINDOWS\Temp\Altnet\mysearch.cab[mySetp.exe]
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\pmexe.cab
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\pmexe.cab[Points Manager.exe]
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\pmfiles.cab
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\pmfiles.cab[sysdetect.dll]
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\Setup.exe
Adware:Adware/LocalNRD Not disinfected C:\WINDOWS\__delete_on_reboot__localNRD.dll
Incident Status Location
Spyware:Cookie/adultfriendfinder Not disinfected C:\Documents and Settings\joe\Cookies\joe@adultfriendfinder[1].txt
Spyware:Cookie/Cd Freaks Not disinfected C:\Documents and Settings\joe\Cookies\joe@cdfreaks[2].txt
Spyware:Cookie/Cd Freaks Not disinfected C:\Documents and Settings\joe\Cookies\joe@club.cdfreaks[2].txt
Spyware:Cookie/go Not disinfected C:\Documents and Settings\joe\Cookies\joe@go[2].txt
Spyware:Cookie/OfferOptimizer Not disinfected C:\Documents and Settings\joe\Cookies\joe@offeroptimizer[1].txt
Spyware:Cookie/Searchportal Not disinfected C:\Documents and Settings\joe\Cookies\joe@searchportal.information[1].txt
Spyware:Cookie/WinFixer Not disinfected C:\Documents and Settings\joe\Cookies\joe@winfixer[2].txt
Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\joe\Cookies\joe@xiti[1].txt
Dialer
ialer.DK Not disinfected C:\Documents and Settings\joe\Local Settings\Application Data\Microsoft\Internet Explorer\__delete_on_reboot__v0.26.dat Potentially unwanted tool:Application/Winantivirus2006 Not disinfected C:\Program Files\Fichiers communs\WinFixer 2006\pcheck.dll
Adware:Adware/IST.SideFind Not disinfected C:\Program Files\SideFind\__delete_on_reboot__sfbho.dll
Adware:Adware/Transponder Not disinfected C:\RECYCLER\S-1-5-21-2573474188-1235050204-3409994884-1005\Dc2.0XE
Adware:Adware/IPInsight Not disinfected C:\RECYCLER\S-1-5-21-2573474188-1235050204-3409994884-1005\Dc5.0xe
Virus:Trj/SysCenter.B Disinfected C:\RECYCLER\S-1-5-21-2573474188-1235050204-3409994884-1005\Dc6.0xe
Adware:Adware/IST.SideFind Not disinfected C:\trucs net\backups\backup-20060209-191238-160.dll
Adware:Adware/LocalNRD Not disinfected C:\trucs net\backups\backup-20060209-191238-424.dll
Adware:Adware/KeenValue Not disinfected C:\WINDOWS\browserxtras\pn\remove.0xe
Potentially unwanted tool:application/winfixer2005 Not disinfected C:\WINDOWS\Downloaded Program Files\UWFX5_0001_N66M1101NetInstaller.exe
Adware:adware/gator Not disinfected C:\WINDOWS\GatorHDPlugin.log
Adware:Adware/IPInsight Not disinfected C:\WINDOWS\inf\conscorr.inf
Adware:Adware/LocalNRD Not disinfected C:\WINDOWS\inf\localNrd.inf
Adware:Adware/Twain-Tech Not disinfected C:\WINDOWS\preInsln.exe
Spyware:application/bestoffer Not disinfected C:\WINDOWS\smdat32a.sys
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\aqxxxlkv.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\ayddviyv.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\bfjbqxrn.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\bpnzzcfy.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\cfiqpivy.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\clapebcl.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\crxpvsdo.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\dinpefui.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\dnzmdjwk.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\einmbhpq.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\eldmgpqa.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\ezrpfnot.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\fbcszesl.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\ftpiszzw.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\gothkgnn.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\gzrzirqb.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\hirzrtno.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\hoakjxun.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\iblgomrw.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\idkxbpfp.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\iitevief.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\ijawrwju.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\ipsbxscg.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\izunxhob.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\jefodtdk.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\jehydket.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\jkdedadl.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\jlpieqpu.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\jmzulbkx.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\jpaljack.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\jxiuzago.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\kfwfadpy.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\kqptbtat.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\lejrfexc.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\lzduasmr.0xe
Virus:Trj/Downloader.gen Disinfected C:\WINDOWS\system32\msdlupd.0ll
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\myolojqf.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\nnjyhivx.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\ntlqszqq.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\ohocmksg.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\oijjqocs.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\onmigwem.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\onmoezlk.0xe
Adware:Adware/P2PNetworking Not disinfected C:\WINDOWS\system32\P2P Networking\MARSHAL.DLL
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\qiqksayq.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\qjkgdkwc.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\qkqwbftp.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\rahzigzz.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\rgjktayt.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\rgxqymva.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\rjfhwrev.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\rlnyeukw.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\rtzwqcmh.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\rzamkyjj.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\snvrsgas.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\srbqkpys.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\tsufwkgm.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\txjldhvj.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\urdvcnah.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\uzufamph.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\vbcskpsu.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\vobrrfap.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\vrqkfstx.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\wibbskgv.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\wiinhjxe.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\wsoodbgr.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\xewkwlim.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\xmjkbmxz.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\yequsaoj.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\yivezwuy.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\yleqduct.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\zmnnsdzw.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\ztzxyefd.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\zwhfuiwt.0xe
Spyware:Spyware/Dluca Not disinfected C:\WINDOWS\system32\zxwbjoow.0xe
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\adm.exe
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\adm25.dll
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\adm4.dll
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\admdata.dll
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\admdloader.dll
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\admfdi.dll
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\admprog.dll
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\dmfiles.cab
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\dmfiles.cab[AltnetUninstall.exe]
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\dmfiles.cab[asmend.exe]
Potentially unwanted tool:Application/MyWay Not disinfected C:\WINDOWS\Temp\Altnet\mysearch.cab
Potentially unwanted tool:Application/MyWay Not disinfected C:\WINDOWS\Temp\Altnet\mysearch.cab[mySetp.exe]
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\pmexe.cab
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\pmexe.cab[Points Manager.exe]
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\pmfiles.cab
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\pmfiles.cab[sysdetect.dll]
Spyware:Spyware/Altnet Not disinfected C:\WINDOWS\Temp\Altnet\Setup.exe
Adware:Adware/LocalNRD Not disinfected C:\WINDOWS\__delete_on_reboot__localNRD.dll
Logfile of HijackThis v1.99.1
Scan saved at 10:11:10, on 10/02/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\DAP\DAP.EXE
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Documents and Settings\PAPA\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: DAPHelper Class - {0000CC75-ACF3-4cac-A0A9-DD3868E06852} - C:\Program Files\DAP\dapbho.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [DownloadAccelerator] "C:\Program Files\DAP\DAP.EXE" /STARTUP
O4 - HKLM\..\Run: [Synchronization Manager] %SystemRoot%\system32\mobsync.exe /logon
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab312...
O16 - DPF: {8C875948-9C60-4381-9248-0DF180542D53} - http://installs.hotbar.com/installs/hbtools/programs/hb...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDown...
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown....
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O21 - SSODL: lOQzMhCtg - {68DF1E15-C275-B4BF-6290-D73A7E0591DC} - C:\WINDOWS\System32\eha.dll (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
>Voilà un autre rapport d'Hijack This de mon ordi portable y'a t'il des erreurs svp ?? merci
Scan saved at 10:11:10, on 10/02/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\DAP\DAP.EXE
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Documents and Settings\PAPA\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: DAPHelper Class - {0000CC75-ACF3-4cac-A0A9-DD3868E06852} - C:\Program Files\DAP\dapbho.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [DownloadAccelerator] "C:\Program Files\DAP\DAP.EXE" /STARTUP
O4 - HKLM\..\Run: [Synchronization Manager] %SystemRoot%\system32\mobsync.exe /logon
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O8 - Extra context menu item: &Download with &DAP - C:\Program Files\DAP\dapextie.htm
O8 - Extra context menu item: Download &all with DAP - C:\Program Files\DAP\dapextie2.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab312...
O16 - DPF: {8C875948-9C60-4381-9248-0DF180542D53} - http://installs.hotbar.com/installs/hbtools/programs/hb...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDown...
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown....
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O21 - SSODL: lOQzMhCtg - {68DF1E15-C275-B4BF-6290-D73A7E0591DC} - C:\WINDOWS\System32\eha.dll (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
>Voilà un autre rapport d'Hijack This de mon ordi portable y'a t'il des erreurs svp ?? merci
Lassé par la pub ? Créez un compte
- Contenus similaires :
