Hijackthis
Zymbudi
-
Zymbudi -
Zymbudi -
Bonjour.
Voici la photo de mon PC.Y a-t-il des corrections à apporter?Si oui,comment procéder?Logfile of HijackThis v1.99.1
Scan saved at 12:13:39, on 2005-11-29
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Program Files\Java\j2re1.4.2_06\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Spyware Doctor\swdoctor.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Netscape\Netscape\Netscp.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\InterMute\PopSubtract\PopSub.exe
C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\fr-ca\bin\WindowsSearch.exe
C:\Program Files\InterMute\SpySubtract\spysub.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\Program Files\InterMute\SpamSubtract\SpamSub.exe
C:\WINDOWS\System32\gearsec.exe
C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\fr-ca\bin\WindowsSearchIndexer.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\wdfmgr.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\Owner\LOCALS~1\Temp\Temporary Directory 1 for hijackthis.zip\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://sympatico.msn.ca/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R3 - Default URLSearchHook is missing
N3 - Netscape 7: user_pref("browser.startup.homepage", "http://www.netscape.fr"); (C:\Documents and Settings\Owner\Application Data\Mozilla\Profiles\default\yq58y1dv.slt\prefs.js)
N3 - Netscape 7: user_pref("browser.search.defaultengine", "engine://C%3A%5CProgram%20Files%5CNetscape%5CNetscape%5Csearchplugins%5CNetscape_France.src"); (C:\Documents and Settings\Owner\Application Data\Mozilla\Profiles\default\yq58y1dv.slt\prefs.js)
O2 - BHO: Class - {01F91520-9F2B-B84B-1458-DF849EFEAEE8} - C:\WINDOWS\system32\mfcld32.dll (file missing)
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\ycomp5_5_7_0.dll
O2 - BHO: Class - {0435B265-2FA6-A319-F52C-9B10427ADF8D} - C:\WINDOWS\system32\ieke.dll (file missing)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Class - {070C3EB7-6F3B-2B33-71B8-05AA17347B31} - C:\WINDOWS\system32\atlpm32.dll (file missing)
O2 - BHO: Class - {0ADC4EA8-88E9-0336-6EB6-BF9DB04B13C0} - C:\WINDOWS\system32\addas32.dll (file missing)
O2 - BHO: Class - {0E21F25B-0D5F-DB07-A23E-096542875F23} - C:\WINDOWS\sdkfg.dll (file missing)
O2 - BHO: Class - {27CF1C68-19A6-58A8-F34A-D75AF141C93E} - C:\WINDOWS\sdkrh32.dll (file missing)
O2 - BHO: Class - {2D8F6DAA-6B2C-D070-B2CB-029A9926F9E4} - C:\WINDOWS\mstm32.dll (file missing)
O2 - BHO: Class - {33653C70-F82F-3235-E5B9-5751B1F39585} - C:\WINDOWS\system32\ntss32.dll (file missing)
O2 - BHO: Class - {369D3C07-F0E6-911F-75DF-C3B06260CE96} - C:\WINDOWS\system32\mshw.dll (file missing)
O2 - BHO: Class - {377FC94D-A085-2B89-B543-C2E033EE98D3} - C:\WINDOWS\msni32.dll (file missing)
O2 - BHO: Class - {38EAD4E2-8EB6-5806-07DA-402D55C50939} - C:\WINDOWS\system32\mfccs.dll (file missing)
O2 - BHO: Class - {43F24E09-E2C1-F9C2-89AD-A96028168450} - C:\WINDOWS\mfcts.dll (file missing)
O2 - BHO: Class - {46101548-9DC9-0686-2B47-1789B33EB7A0} - C:\WINDOWS\ipuv.dll (file missing)
O2 - BHO: Class - {4FA150BA-1516-4F3B-3410-A9AC37E11963} - C:\WINDOWS\netvx.dll (file missing)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Class - {62339B5F-FF78-9E4F-91EB-D791EAC20279} - C:\WINDOWS\system32\javamn32.dll (file missing)
O2 - BHO: Class - {6BFB4F8E-42B3-1853-FED2-0CE716BE6757} - C:\WINDOWS\system32\d3cq.dll (file missing)
O2 - BHO: Class - {6ED52EC0-9A96-DF2F-9CD2-93160283AE93} - C:\WINDOWS\mspm.dll (file missing)
O2 - BHO: Class - {771317EF-0B4F-CF0A-0367-88AF1EDB349F} - C:\WINDOWS\sdkqr32.dll (file missing)
O2 - BHO: Class - {7D47A91E-9314-11FA-0374-C94B2A97C50C} - C:\WINDOWS\system32\ieth32.dll (file missing)
O2 - BHO: Class - {7E669911-FE7D-F3E4-78BC-DB3681A1083A} - C:\WINDOWS\system32\netzv32.dll (file missing)
O2 - BHO: Class - {81733AEA-50C2-0143-A6CA-38D56855C20A} - C:\WINDOWS\appos.dll (file missing)
O2 - BHO: Class - {8C2CBD99-0FCD-5C08-EDD5-4E5F4A8D33A0} - C:\WINDOWS\system32\javalq32.dll (file missing)
O2 - BHO: Class - {9B293A2D-7FF9-2CB8-C184-A394A6D55F31} - C:\WINDOWS\system32\netqd32.dll (file missing)
O2 - BHO: Class - {A4ABF050-EDD0-852F-9DD7-BB315E8F9B10} - C:\WINDOWS\system32\mfcpr.dll (file missing)
O2 - BHO: Class - {A5B70C48-44FC-EE21-10FB-6B345BD9B634} - C:\WINDOWS\system32\mshp.dll (file missing)
O2 - BHO: Class - {AA258D02-7EAF-CF17-74F9-F542353A0DA6} - C:\WINDOWS\system32\addlt32.dll (file missing)
O2 - BHO: Class - {B32A4F79-97B4-22B1-D6EB-E169E8EB619C} - C:\WINDOWS\atlqz32.dll (file missing)
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O2 - BHO: Barre d'outils de MSN Recherche Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1082\fr-ca\msntb.dll
O2 - BHO: Class - {C3BE66A7-5D8D-CE88-E63D-D32D9FEE6546} - C:\WINDOWS\atlbh32.dll (file missing)
O2 - BHO: Class - {D8DEC485-CE65-A3D0-7970-3801569ABBF8} - C:\WINDOWS\system32\crfy32.dll (file missing)
O2 - BHO: Class - {F19C092B-94D8-5E55-32D6-D05850CEB9A8} - C:\WINDOWS\appll.dll (file missing)
O2 - BHO: Class - {F5CF3F4A-988E-9AB7-E7A6-D24B11A15E2C} - C:\WINDOWS\system32\atlwq32.dll (file missing)
O2 - BHO: Class - {FC88F82F-1D7B-B4D4-7BA7-EADBF9D6CC4F} - C:\WINDOWS\ntdy.dll (file missing)
O3 - Toolbar: Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\ycomp5_5_7_0.dll
O3 - Toolbar: Barre d'outils de MSN Recherche - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1082\fr-ca\msntb.dll
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_06\bin\jusched.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKCU\..\Run: [Spyware Doctor] "C:\Program Files\Spyware Doctor\swdoctor.exe" /Q
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Mozilla Quick Launch] "C:\Program Files\Netscape\Netscape\Netscp.exe" -turbo
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - Startup: IMStart.lnk = C:\Program Files\InterMute\IMStart.exe
O4 - Startup: SpamSubtract.lnk = C:\Program Files\InterMute\SpamSubtract\SpamSub.exe
O4 - Global Startup: Compaq Connections.lnk = C:\Program Files\Compaq Connections\1940576\Program\BackWeb-1940576.exe
O4 - Global Startup: hp psc 2000 Series.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe
O4 - Global Startup: hpoddt01.exe.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: PopSubtract.lnk = C:\Program Files\InterMute\PopSubtract\PopSub.exe
O4 - Global Startup: Recherche sur le bureau de Windows.lnk = C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\fr-ca\bin\WindowsSearch.exe
O4 - Global Startup: SpySubtract.lnk = C:\Program Files\InterMute\SpySubtract\spysub.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .wav: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1095979219453
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {EB387D2F-E27B-4D36-979E-847D1036C65D} (QDiagHUpdateObj Class) - http://h30043.www3.hp.com/aio/fr/check/qdiagh.cab?323
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: Gear Security Service (GEARSecurity) - GEAR Software - C:\WINDOWS\System32\gearsec.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools - C:\Program Files\Spyware Doctor\sdhelp.exe
Voici la photo de mon PC.Y a-t-il des corrections à apporter?Si oui,comment procéder?Logfile of HijackThis v1.99.1
Scan saved at 12:13:39, on 2005-11-29
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Program Files\Java\j2re1.4.2_06\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Spyware Doctor\swdoctor.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Netscape\Netscape\Netscp.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\InterMute\PopSubtract\PopSub.exe
C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\fr-ca\bin\WindowsSearch.exe
C:\Program Files\InterMute\SpySubtract\spysub.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\Program Files\InterMute\SpamSubtract\SpamSub.exe
C:\WINDOWS\System32\gearsec.exe
C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\fr-ca\bin\WindowsSearchIndexer.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\wdfmgr.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\Owner\LOCALS~1\Temp\Temporary Directory 1 for hijackthis.zip\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://sympatico.msn.ca/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R3 - Default URLSearchHook is missing
N3 - Netscape 7: user_pref("browser.startup.homepage", "http://www.netscape.fr"); (C:\Documents and Settings\Owner\Application Data\Mozilla\Profiles\default\yq58y1dv.slt\prefs.js)
N3 - Netscape 7: user_pref("browser.search.defaultengine", "engine://C%3A%5CProgram%20Files%5CNetscape%5CNetscape%5Csearchplugins%5CNetscape_France.src"); (C:\Documents and Settings\Owner\Application Data\Mozilla\Profiles\default\yq58y1dv.slt\prefs.js)
O2 - BHO: Class - {01F91520-9F2B-B84B-1458-DF849EFEAEE8} - C:\WINDOWS\system32\mfcld32.dll (file missing)
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\ycomp5_5_7_0.dll
O2 - BHO: Class - {0435B265-2FA6-A319-F52C-9B10427ADF8D} - C:\WINDOWS\system32\ieke.dll (file missing)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Class - {070C3EB7-6F3B-2B33-71B8-05AA17347B31} - C:\WINDOWS\system32\atlpm32.dll (file missing)
O2 - BHO: Class - {0ADC4EA8-88E9-0336-6EB6-BF9DB04B13C0} - C:\WINDOWS\system32\addas32.dll (file missing)
O2 - BHO: Class - {0E21F25B-0D5F-DB07-A23E-096542875F23} - C:\WINDOWS\sdkfg.dll (file missing)
O2 - BHO: Class - {27CF1C68-19A6-58A8-F34A-D75AF141C93E} - C:\WINDOWS\sdkrh32.dll (file missing)
O2 - BHO: Class - {2D8F6DAA-6B2C-D070-B2CB-029A9926F9E4} - C:\WINDOWS\mstm32.dll (file missing)
O2 - BHO: Class - {33653C70-F82F-3235-E5B9-5751B1F39585} - C:\WINDOWS\system32\ntss32.dll (file missing)
O2 - BHO: Class - {369D3C07-F0E6-911F-75DF-C3B06260CE96} - C:\WINDOWS\system32\mshw.dll (file missing)
O2 - BHO: Class - {377FC94D-A085-2B89-B543-C2E033EE98D3} - C:\WINDOWS\msni32.dll (file missing)
O2 - BHO: Class - {38EAD4E2-8EB6-5806-07DA-402D55C50939} - C:\WINDOWS\system32\mfccs.dll (file missing)
O2 - BHO: Class - {43F24E09-E2C1-F9C2-89AD-A96028168450} - C:\WINDOWS\mfcts.dll (file missing)
O2 - BHO: Class - {46101548-9DC9-0686-2B47-1789B33EB7A0} - C:\WINDOWS\ipuv.dll (file missing)
O2 - BHO: Class - {4FA150BA-1516-4F3B-3410-A9AC37E11963} - C:\WINDOWS\netvx.dll (file missing)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Class - {62339B5F-FF78-9E4F-91EB-D791EAC20279} - C:\WINDOWS\system32\javamn32.dll (file missing)
O2 - BHO: Class - {6BFB4F8E-42B3-1853-FED2-0CE716BE6757} - C:\WINDOWS\system32\d3cq.dll (file missing)
O2 - BHO: Class - {6ED52EC0-9A96-DF2F-9CD2-93160283AE93} - C:\WINDOWS\mspm.dll (file missing)
O2 - BHO: Class - {771317EF-0B4F-CF0A-0367-88AF1EDB349F} - C:\WINDOWS\sdkqr32.dll (file missing)
O2 - BHO: Class - {7D47A91E-9314-11FA-0374-C94B2A97C50C} - C:\WINDOWS\system32\ieth32.dll (file missing)
O2 - BHO: Class - {7E669911-FE7D-F3E4-78BC-DB3681A1083A} - C:\WINDOWS\system32\netzv32.dll (file missing)
O2 - BHO: Class - {81733AEA-50C2-0143-A6CA-38D56855C20A} - C:\WINDOWS\appos.dll (file missing)
O2 - BHO: Class - {8C2CBD99-0FCD-5C08-EDD5-4E5F4A8D33A0} - C:\WINDOWS\system32\javalq32.dll (file missing)
O2 - BHO: Class - {9B293A2D-7FF9-2CB8-C184-A394A6D55F31} - C:\WINDOWS\system32\netqd32.dll (file missing)
O2 - BHO: Class - {A4ABF050-EDD0-852F-9DD7-BB315E8F9B10} - C:\WINDOWS\system32\mfcpr.dll (file missing)
O2 - BHO: Class - {A5B70C48-44FC-EE21-10FB-6B345BD9B634} - C:\WINDOWS\system32\mshp.dll (file missing)
O2 - BHO: Class - {AA258D02-7EAF-CF17-74F9-F542353A0DA6} - C:\WINDOWS\system32\addlt32.dll (file missing)
O2 - BHO: Class - {B32A4F79-97B4-22B1-D6EB-E169E8EB619C} - C:\WINDOWS\atlqz32.dll (file missing)
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O2 - BHO: Barre d'outils de MSN Recherche Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1082\fr-ca\msntb.dll
O2 - BHO: Class - {C3BE66A7-5D8D-CE88-E63D-D32D9FEE6546} - C:\WINDOWS\atlbh32.dll (file missing)
O2 - BHO: Class - {D8DEC485-CE65-A3D0-7970-3801569ABBF8} - C:\WINDOWS\system32\crfy32.dll (file missing)
O2 - BHO: Class - {F19C092B-94D8-5E55-32D6-D05850CEB9A8} - C:\WINDOWS\appll.dll (file missing)
O2 - BHO: Class - {F5CF3F4A-988E-9AB7-E7A6-D24B11A15E2C} - C:\WINDOWS\system32\atlwq32.dll (file missing)
O2 - BHO: Class - {FC88F82F-1D7B-B4D4-7BA7-EADBF9D6CC4F} - C:\WINDOWS\ntdy.dll (file missing)
O3 - Toolbar: Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\ycomp5_5_7_0.dll
O3 - Toolbar: Barre d'outils de MSN Recherche - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar Suite\TB\02.05.0000.1082\fr-ca\msntb.dll
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_06\bin\jusched.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKCU\..\Run: [Spyware Doctor] "C:\Program Files\Spyware Doctor\swdoctor.exe" /Q
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Mozilla Quick Launch] "C:\Program Files\Netscape\Netscape\Netscp.exe" -turbo
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\mnyexpr.exe"
O4 - Startup: IMStart.lnk = C:\Program Files\InterMute\IMStart.exe
O4 - Startup: SpamSubtract.lnk = C:\Program Files\InterMute\SpamSubtract\SpamSub.exe
O4 - Global Startup: Compaq Connections.lnk = C:\Program Files\Compaq Connections\1940576\Program\BackWeb-1940576.exe
O4 - Global Startup: hp psc 2000 Series.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe
O4 - Global Startup: hpoddt01.exe.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: PopSubtract.lnk = C:\Program Files\InterMute\PopSubtract\PopSub.exe
O4 - Global Startup: Recherche sur le bureau de Windows.lnk = C:\Program Files\MSN Toolbar Suite\DS\02.05.0001.1119\fr-ca\bin\WindowsSearch.exe
O4 - Global Startup: SpySubtract.lnk = C:\Program Files\InterMute\SpySubtract\spysub.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .wav: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft.com/v5consumer/V5Controls/en/x86/client/wuweb_site.cab?1095979219453
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {EB387D2F-E27B-4D36-979E-847D1036C65D} (QDiagHUpdateObj Class) - http://h30043.www3.hp.com/aio/fr/check/qdiagh.cab?323
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: Gear Security Service (GEARSecurity) - GEAR Software - C:\WINDOWS\System32\gearsec.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools - C:\Program Files\Spyware Doctor\sdhelp.exe
A voir également:
- Hijackthis
- Hijackthis - Télécharger - Antivirus & Antimalwares
- Entraide Hijackthis ✓ - Forum Virus
- Analyse HiJackThis - Forum Virus
- Raport hijackthis - Forum Virus
- Analyse rapport Hijackthis - Forum Virus
1 réponse
salut telecharge et execute ces antispywares ( pense a les mettre a jour avant de les lancées)
(1) ad-aware version 1.06
(ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
voir demo
http://pageperso.aol.fr/balltrap34/adwseflash.zip
***
(2) spybot version 1.4
(ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
voir demo d utilisation
http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm
***
et aussi ceci
(3) CleanUp40.exe
http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
voir demo
http://pageperso.aol.fr/balltrap34/democleanup.htm
***
(4) a2
http://www.emsisoft.net/fr/
penser a le metre a jour avant de scanner le pc
***
ps : un grand merci a balltrap pour les lien :)
(5) Edwido
http://download.ewido.net/ewido-setup.exe
Pendant l'installation, sur la page "Additional Options", décoche les deux options "Install background guard" et "Install scan via context menu Ewido Security Suite. Clique sur mise à jour.
Clique sur scanner puis sur scan complet du système.
puis avec hijack fix ces lignes :
R3 - Default URLSearchHook is missing
O2 - BHO: Class - {01F91520-9F2B-B84B-1458-DF849EFEAEE8} - C:\WINDOWS\system32\mfcld32.dll (file missing)
O2 - BHO: Class - {0435B265-2FA6-A319-F52C-9B10427ADF8D} - C:\WINDOWS\system32\ieke.dll (file missing)
O2 - BHO: Class - {070C3EB7-6F3B-2B33-71B8-05AA17347B31} - C:\WINDOWS\system32\atlpm32.dll (file missing)
O2 - BHO: Class - {0ADC4EA8-88E9-0336-6EB6-BF9DB04B13C0} - C:\WINDOWS\system32\addas32.dll (file missing)
O2 - BHO: Class - {0E21F25B-0D5F-DB07-A23E-096542875F23} - C:\WINDOWS\sdkfg.dll (file missing)
O2 - BHO: Class - {27CF1C68-19A6-58A8-F34A-D75AF141C93E} - C:\WINDOWS\sdkrh32.dll (file missing)
O2 - BHO: Class - {2D8F6DAA-6B2C-D070-B2CB-029A9926F9E4} - C:\WINDOWS\mstm32.dll (file missing)
O2 - BHO: Class - {33653C70-F82F-3235-E5B9-5751B1F39585} - C:\WINDOWS\system32\ntss32.dll (file missing)
O2 - BHO: Class - {369D3C07-F0E6-911F-75DF-C3B06260CE96} - C:\WINDOWS\system32\mshw.dll (file missing)
O2 - BHO: Class - {377FC94D-A085-2B89-B543-C2E033EE98D3} - C:\WINDOWS\msni32.dll (file missing)
O2 - BHO: Class - {38EAD4E2-8EB6-5806-07DA-402D55C50939} - C:\WINDOWS\system32\mfccs.dll (file missing)
O2 - BHO: Class - {43F24E09-E2C1-F9C2-89AD-A96028168450} - C:\WINDOWS\mfcts.dll (file missing)
O2 - BHO: Class - {46101548-9DC9-0686-2B47-1789B33EB7A0} - C:\WINDOWS\ipuv.dll (file missing)
O2 - BHO: Class - {4FA150BA-1516-4F3B-3410-A9AC37E11963} - C:\WINDOWS\netvx.dll (file missing)
O2 - BHO: Class - {62339B5F-FF78-9E4F-91EB-D791EAC20279} - C:\WINDOWS\system32\javamn32.dll (file missing)
O2 - BHO: Class - {6BFB4F8E-42B3-1853-FED2-0CE716BE6757} - C:\WINDOWS\system32\d3cq.dll (file missing)
O2 - BHO: Class - {6ED52EC0-9A96-DF2F-9CD2-93160283AE93} - C:\WINDOWS\mspm.dll (file missing)
O2 - BHO: Class - {771317EF-0B4F-CF0A-0367-88AF1EDB349F} - C:\WINDOWS\sdkqr32.dll (file missing)
O2 - BHO: Class - {7D47A91E-9314-11FA-0374-C94B2A97C50C} - C:\WINDOWS\system32\ieth32.dll (file missing)
O2 - BHO: Class - {7E669911-FE7D-F3E4-78BC-DB3681A1083A} - C:\WINDOWS\system32\netzv32.dll (file missing)
O2 - BHO: Class - {81733AEA-50C2-0143-A6CA-38D56855C20A} - C:\WINDOWS\appos.dll (file missing)
O2 - BHO: Class - {8C2CBD99-0FCD-5C08-EDD5-4E5F4A8D33A0} - C:\WINDOWS\system32\javalq32.dll (file missing)
O2 - BHO: Class - {9B293A2D-7FF9-2CB8-C184-A394A6D55F31} - C:\WINDOWS\system32\netqd32.dll (file missing)
O2 - BHO: Class - {A4ABF050-EDD0-852F-9DD7-BB315E8F9B10} - C:\WINDOWS\system32\mfcpr.dll (file missing)
O2 - BHO: Class - {A5B70C48-44FC-EE21-10FB-6B345BD9B634} - C:\WINDOWS\system32\mshp.dll (file missing)
O2 - BHO: Class - {AA258D02-7EAF-CF17-74F9-F542353A0DA6} - C:\WINDOWS\system32\addlt32.dll (file missing)
O2 - BHO: Class - {B32A4F79-97B4-22B1-D6EB-E169E8EB619C} - C:\WINDOWS\atlqz32.dll (file missing)
O2 - BHO: Class - {C3BE66A7-5D8D-CE88-E63D-D32D9FEE6546} - C:\WINDOWS\atlbh32.dll (file missing)
O2 - BHO: Class - {D8DEC485-CE65-A3D0-7970-3801569ABBF8} - C:\WINDOWS\system32\crfy32.dll (file missing)
O2 - BHO: Class - {F19C092B-94D8-5E55-32D6-D05850CEB9A8} - C:\WINDOWS\appll.dll (file missing)
O2 - BHO: Class - {F5CF3F4A-988E-9AB7-E7A6-D24B11A15E2C} - C:\WINDOWS\system32\atlwq32.dll (file missing)
O2 - BHO: Class - {FC88F82F-1D7B-B4D4-7BA7-EADBF9D6CC4F} - C:\WINDOWS\ntdy.dll (file missing)
@+++++++
(1) ad-aware version 1.06
(ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
voir demo
http://pageperso.aol.fr/balltrap34/adwseflash.zip
***
(2) spybot version 1.4
(ici) http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
voir demo d utilisation
http://pageperso.aol.fr/Balltrap34/demo%20spybot.htm
***
et aussi ceci
(3) CleanUp40.exe
http://www.florensac-chasse-trap.com/ section virus/logiciel de securite
voir demo
http://pageperso.aol.fr/balltrap34/democleanup.htm
***
(4) a2
http://www.emsisoft.net/fr/
penser a le metre a jour avant de scanner le pc
***
ps : un grand merci a balltrap pour les lien :)
(5) Edwido
http://download.ewido.net/ewido-setup.exe
Pendant l'installation, sur la page "Additional Options", décoche les deux options "Install background guard" et "Install scan via context menu Ewido Security Suite. Clique sur mise à jour.
Clique sur scanner puis sur scan complet du système.
puis avec hijack fix ces lignes :
R3 - Default URLSearchHook is missing
O2 - BHO: Class - {01F91520-9F2B-B84B-1458-DF849EFEAEE8} - C:\WINDOWS\system32\mfcld32.dll (file missing)
O2 - BHO: Class - {0435B265-2FA6-A319-F52C-9B10427ADF8D} - C:\WINDOWS\system32\ieke.dll (file missing)
O2 - BHO: Class - {070C3EB7-6F3B-2B33-71B8-05AA17347B31} - C:\WINDOWS\system32\atlpm32.dll (file missing)
O2 - BHO: Class - {0ADC4EA8-88E9-0336-6EB6-BF9DB04B13C0} - C:\WINDOWS\system32\addas32.dll (file missing)
O2 - BHO: Class - {0E21F25B-0D5F-DB07-A23E-096542875F23} - C:\WINDOWS\sdkfg.dll (file missing)
O2 - BHO: Class - {27CF1C68-19A6-58A8-F34A-D75AF141C93E} - C:\WINDOWS\sdkrh32.dll (file missing)
O2 - BHO: Class - {2D8F6DAA-6B2C-D070-B2CB-029A9926F9E4} - C:\WINDOWS\mstm32.dll (file missing)
O2 - BHO: Class - {33653C70-F82F-3235-E5B9-5751B1F39585} - C:\WINDOWS\system32\ntss32.dll (file missing)
O2 - BHO: Class - {369D3C07-F0E6-911F-75DF-C3B06260CE96} - C:\WINDOWS\system32\mshw.dll (file missing)
O2 - BHO: Class - {377FC94D-A085-2B89-B543-C2E033EE98D3} - C:\WINDOWS\msni32.dll (file missing)
O2 - BHO: Class - {38EAD4E2-8EB6-5806-07DA-402D55C50939} - C:\WINDOWS\system32\mfccs.dll (file missing)
O2 - BHO: Class - {43F24E09-E2C1-F9C2-89AD-A96028168450} - C:\WINDOWS\mfcts.dll (file missing)
O2 - BHO: Class - {46101548-9DC9-0686-2B47-1789B33EB7A0} - C:\WINDOWS\ipuv.dll (file missing)
O2 - BHO: Class - {4FA150BA-1516-4F3B-3410-A9AC37E11963} - C:\WINDOWS\netvx.dll (file missing)
O2 - BHO: Class - {62339B5F-FF78-9E4F-91EB-D791EAC20279} - C:\WINDOWS\system32\javamn32.dll (file missing)
O2 - BHO: Class - {6BFB4F8E-42B3-1853-FED2-0CE716BE6757} - C:\WINDOWS\system32\d3cq.dll (file missing)
O2 - BHO: Class - {6ED52EC0-9A96-DF2F-9CD2-93160283AE93} - C:\WINDOWS\mspm.dll (file missing)
O2 - BHO: Class - {771317EF-0B4F-CF0A-0367-88AF1EDB349F} - C:\WINDOWS\sdkqr32.dll (file missing)
O2 - BHO: Class - {7D47A91E-9314-11FA-0374-C94B2A97C50C} - C:\WINDOWS\system32\ieth32.dll (file missing)
O2 - BHO: Class - {7E669911-FE7D-F3E4-78BC-DB3681A1083A} - C:\WINDOWS\system32\netzv32.dll (file missing)
O2 - BHO: Class - {81733AEA-50C2-0143-A6CA-38D56855C20A} - C:\WINDOWS\appos.dll (file missing)
O2 - BHO: Class - {8C2CBD99-0FCD-5C08-EDD5-4E5F4A8D33A0} - C:\WINDOWS\system32\javalq32.dll (file missing)
O2 - BHO: Class - {9B293A2D-7FF9-2CB8-C184-A394A6D55F31} - C:\WINDOWS\system32\netqd32.dll (file missing)
O2 - BHO: Class - {A4ABF050-EDD0-852F-9DD7-BB315E8F9B10} - C:\WINDOWS\system32\mfcpr.dll (file missing)
O2 - BHO: Class - {A5B70C48-44FC-EE21-10FB-6B345BD9B634} - C:\WINDOWS\system32\mshp.dll (file missing)
O2 - BHO: Class - {AA258D02-7EAF-CF17-74F9-F542353A0DA6} - C:\WINDOWS\system32\addlt32.dll (file missing)
O2 - BHO: Class - {B32A4F79-97B4-22B1-D6EB-E169E8EB619C} - C:\WINDOWS\atlqz32.dll (file missing)
O2 - BHO: Class - {C3BE66A7-5D8D-CE88-E63D-D32D9FEE6546} - C:\WINDOWS\atlbh32.dll (file missing)
O2 - BHO: Class - {D8DEC485-CE65-A3D0-7970-3801569ABBF8} - C:\WINDOWS\system32\crfy32.dll (file missing)
O2 - BHO: Class - {F19C092B-94D8-5E55-32D6-D05850CEB9A8} - C:\WINDOWS\appll.dll (file missing)
O2 - BHO: Class - {F5CF3F4A-988E-9AB7-E7A6-D24B11A15E2C} - C:\WINDOWS\system32\atlwq32.dll (file missing)
O2 - BHO: Class - {FC88F82F-1D7B-B4D4-7BA7-EADBF9D6CC4F} - C:\WINDOWS\ntdy.dll (file missing)
@+++++++
Zymbudi
Merci.
