Qui peut me m'étudier ce log Hijackth SVP
Résolu
Utilisateur anonyme
-
Utilisateur anonyme -
Utilisateur anonyme -
Salut,
j'ai un big problème sur mon pc (voir ici http://www.commentcamarche.net/forum/affich-1324699-Big-Probl%E8me-XP-Pro).
Au cas où, qq1 peut me dire s'il trouve quelque chose de suspect ?
Merci
Logfile of HijackThis v1.99.1
Scan saved at 10:17:05, on 22/02/2005
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\System32\cisvc.exe
C:\Program Files\NavNT\defwatch.exe
C:\Program Files\NavNT\rtvscan.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\ctfmon.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\mmc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\mmc.exe
A:\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.euro.dell.com/countries/fr/fra/gen/default.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.euro.dell.com/countries/fr/fra/gen/default.htm
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.euro.dell.com/countries/fr/fra/gen/default.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll (disabled by BHODemon)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll (disabled by BHODemon)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2004061001/housecall.trendmicro.com/housecall/xscan53.cab
O16 - DPF: {90A29DA5-D020-4B18-8660-6689520C7CD7} (DmiReader Class) - http://support.euro.dell.com/global/apps/systemprofiler/PROFILER.CAB
O16 - DPF: {D670D0B3-05AB-4115-9F87-D983EF1AC747} (AOL Downloader Plugin) - http://photos02.aol.fr/ygp/aol/plugin/download/YGPPicDownload.fr-FR.9.1.6.18.cab
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = domaine.net
O17 - HKLM\Software\..\Telephony: DomainName = domaine.net
O17 - HKLM\System\CCS\Services\Tcpip\..\{A7BE1272-B011-4E8A-954A-20A729CD52E4}: NameServer = 192.168.94.191
O17 - HKLM\System\CCS\Services\Tcpip\..\{CE1BDFB9-B336-485F-9B8E-DEEFAC74E388}: NameServer = 192.168.94.191
O20 - Winlogon Notify: NavLogon - C:\WINDOWS\System32\NavLogon.dll
O23 - Service: DefWatch - Symantec Corporation - C:\Program Files\NavNT\defwatch.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe
O23 - Service: Norton AntiVirus Client (Norton AntiVirus Server) - Symantec Corporation - C:\Program Files\NavNT\rtvscan.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
j'ai un big problème sur mon pc (voir ici http://www.commentcamarche.net/forum/affich-1324699-Big-Probl%E8me-XP-Pro).
Au cas où, qq1 peut me dire s'il trouve quelque chose de suspect ?
Merci
Logfile of HijackThis v1.99.1
Scan saved at 10:17:05, on 22/02/2005
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\System32\cisvc.exe
C:\Program Files\NavNT\defwatch.exe
C:\Program Files\NavNT\rtvscan.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\ctfmon.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\mmc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\mmc.exe
A:\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.euro.dell.com/countries/fr/fra/gen/default.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.euro.dell.com/countries/fr/fra/gen/default.htm
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.euro.dell.com/countries/fr/fra/gen/default.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll (disabled by BHODemon)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll (disabled by BHODemon)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2004061001/housecall.trendmicro.com/housecall/xscan53.cab
O16 - DPF: {90A29DA5-D020-4B18-8660-6689520C7CD7} (DmiReader Class) - http://support.euro.dell.com/global/apps/systemprofiler/PROFILER.CAB
O16 - DPF: {D670D0B3-05AB-4115-9F87-D983EF1AC747} (AOL Downloader Plugin) - http://photos02.aol.fr/ygp/aol/plugin/download/YGPPicDownload.fr-FR.9.1.6.18.cab
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = domaine.net
O17 - HKLM\Software\..\Telephony: DomainName = domaine.net
O17 - HKLM\System\CCS\Services\Tcpip\..\{A7BE1272-B011-4E8A-954A-20A729CD52E4}: NameServer = 192.168.94.191
O17 - HKLM\System\CCS\Services\Tcpip\..\{CE1BDFB9-B336-485F-9B8E-DEEFAC74E388}: NameServer = 192.168.94.191
O20 - Winlogon Notify: NavLogon - C:\WINDOWS\System32\NavLogon.dll
O23 - Service: DefWatch - Symantec Corporation - C:\Program Files\NavNT\defwatch.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe
O23 - Service: Norton AntiVirus Client (Norton AntiVirus Server) - Symantec Corporation - C:\Program Files\NavNT\rtvscan.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
A voir également:
- Qui peut me m'étudier ce log Hijackth SVP
- Vpn no log - Guide
- View rescue log traduction - Guide
- Log crash windows - Guide
- Hijackthis log analyzer ✓ - Forum Virus
- 0.log miui - Forum Logiciels
3 réponses
Salut
redemarrer en mode sans echec(presser F8 des l'allumage du pc)
cocher et fixer
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O16 - DPF: {90A29DA5-D020-4B18-8660-6689520C7CD7} (DmiReader Class) - http://support.euro.dell.com/global/apps/systemprofiler/PROFILER.CAB
redemarrer en mode sans echec(presser F8 des l'allumage du pc)
cocher et fixer
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\surfpass\mssplsp.dll
O16 - DPF: {90A29DA5-D020-4B18-8660-6689520C7CD7} (DmiReader Class) - http://support.euro.dell.com/global/apps/systemprofiler/PROFILER.CAB
Remarque:
Pense a installer un firewall et peut etre de passer a XP SP2
Sinon pas mal de problemes peuvent revenir.....
Pense a installer un firewall et peut etre de passer a XP SP2
Sinon pas mal de problemes peuvent revenir.....
MERCI !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
Tout mes problèmes (voir http://www.commentcamarche.net/forum/affich-1324699-Big-Probl%E8me-XP-Pro) venaient de là, du moins des lignes 010.
Hisjackthis n'a pas pu me les virer, et m'a proposer de télécharger LSP FIX. Là miracle, mon pc retourne comme il faut...
Merci encore !
Tout mes problèmes (voir http://www.commentcamarche.net/forum/affich-1324699-Big-Probl%E8me-XP-Pro) venaient de là, du moins des lignes 010.
Hisjackthis n'a pas pu me les virer, et m'a proposer de télécharger LSP FIX. Là miracle, mon pc retourne comme il faut...
Merci encore !
