Hijack a analyser svp
Céline
-
Céline -
Céline -
Bonjour,
J'ai un pb avec mon ordi, d'un seul coup il s'est mis a ramer comme pas possible, et avk me detecte plusieurs virus depuis hier... je n'ai plus de sons non plu.
Pourriez-vs analyser mon log si dessous svp, je ne sais pas quoi faire.
Merci.
Logfile of HijackThis v1.99.1
Scan saved at 13:10:58, on 28/02/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\G DATA InternetSecurity\AVK\AVKService.exe
C:\Program Files\G DATA InternetSecurity\AVK\AVKWCtl.exe
C:\WINDOWS\system32\HPConfig.exe
C:\Program Files\HPQ\Notebook Utilities\HPWirelessMgr.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\G DATA\AVKProxy\AVKProxy.exe
C:\Program Files\G DATA InternetSecurity\Firewall\GDFwSvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\G DATA InternetSecurity\AVKTray\AVKTray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe
C:\WINDOWS\system32\carpserv.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\G DATA InternetSecurity\Firewall\GDFirewallTray.exe
C:\PROGRA~1\Magentic\bin\MgApp.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
C:\Program Files\MSN Messenger\livecall.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mystart.incredimail.com/french
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: G DATA WebFilter Class - {0124123D-61B4-456f-AF86-78C53A0790C5} - C:\Program Files\G DATA InternetSecurity\Webfilter\AvkWebIE.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: G DATA WebFilter - {0124123D-61B4-456f-AF86-78C53A0790C5} - C:\Program Files\G DATA InternetSecurity\Webfilter\AvkWebIE.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Display Settings] C:\Program Files\HPQ\Notebook Utilities\hptasks.exe /s
O4 - HKLM\..\Run: [QT4HPOT] C:\Program Files\HPQ\One-Touch\OneTouch.EXE
O4 - HKLM\..\Run: [AVKTray] "C:\Program Files\G DATA InternetSecurity\AVKTray\AVKTray.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Fichiers communs\Roxio Shared\System\EngUtil.exe"
O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe"
O4 - HKLM\..\Run: [CARPService] carpserv.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [Magentic] C:\PROGRA~1\Magentic\bin\Magentic.exe /c
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O4 - Global Startup: G DATA Firewall Tray.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2\bin\npjpi142.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2\bin\npjpi142.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: AVKProxy - G DATA Software AG - C:\Program Files\Fichiers communs\G DATA\AVKProxy\AVKProxy.exe
O23 - Service: AVK Service (AVKService) - G DATA Software AG - C:\Program Files\G DATA InternetSecurity\AVK\AVKService.exe
O23 - Service: Gardien d'AVK (AVKWCtl) - Unknown owner - C:\Program Files\G DATA InternetSecurity\AVK\AVKWCtl.exe
O23 - Service: G DATA Personal Firewall (GDFwSvc) - Unknown owner - C:\Program Files\G DATA InternetSecurity\Firewall\GDFwSvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Configuration Interface Service (HPConfig) - Hewlett-Packard - C:\WINDOWS\system32\HPConfig.exe
O23 - Service: HPWirelessMgr - Hewlett-Packard Co. - C:\Program Files\HPQ\Notebook Utilities\HPWirelessMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
J'ai un pb avec mon ordi, d'un seul coup il s'est mis a ramer comme pas possible, et avk me detecte plusieurs virus depuis hier... je n'ai plus de sons non plu.
Pourriez-vs analyser mon log si dessous svp, je ne sais pas quoi faire.
Merci.
Logfile of HijackThis v1.99.1
Scan saved at 13:10:58, on 28/02/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\G DATA InternetSecurity\AVK\AVKService.exe
C:\Program Files\G DATA InternetSecurity\AVK\AVKWCtl.exe
C:\WINDOWS\system32\HPConfig.exe
C:\Program Files\HPQ\Notebook Utilities\HPWirelessMgr.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\G DATA\AVKProxy\AVKProxy.exe
C:\Program Files\G DATA InternetSecurity\Firewall\GDFwSvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\G DATA InternetSecurity\AVKTray\AVKTray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe
C:\WINDOWS\system32\carpserv.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\G DATA InternetSecurity\Firewall\GDFirewallTray.exe
C:\PROGRA~1\Magentic\bin\MgApp.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
C:\Program Files\MSN Messenger\livecall.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mystart.incredimail.com/french
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: G DATA WebFilter Class - {0124123D-61B4-456f-AF86-78C53A0790C5} - C:\Program Files\G DATA InternetSecurity\Webfilter\AvkWebIE.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: G DATA WebFilter - {0124123D-61B4-456f-AF86-78C53A0790C5} - C:\Program Files\G DATA InternetSecurity\Webfilter\AvkWebIE.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Display Settings] C:\Program Files\HPQ\Notebook Utilities\hptasks.exe /s
O4 - HKLM\..\Run: [QT4HPOT] C:\Program Files\HPQ\One-Touch\OneTouch.EXE
O4 - HKLM\..\Run: [AVKTray] "C:\Program Files\G DATA InternetSecurity\AVKTray\AVKTray.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Fichiers communs\Roxio Shared\System\EngUtil.exe"
O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe"
O4 - HKLM\..\Run: [CARPService] carpserv.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [Magentic] C:\PROGRA~1\Magentic\bin\Magentic.exe /c
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O4 - Global Startup: G DATA Firewall Tray.lnk = ?
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2\bin\npjpi142.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2\bin\npjpi142.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: AVKProxy - G DATA Software AG - C:\Program Files\Fichiers communs\G DATA\AVKProxy\AVKProxy.exe
O23 - Service: AVK Service (AVKService) - G DATA Software AG - C:\Program Files\G DATA InternetSecurity\AVK\AVKService.exe
O23 - Service: Gardien d'AVK (AVKWCtl) - Unknown owner - C:\Program Files\G DATA InternetSecurity\AVK\AVKWCtl.exe
O23 - Service: G DATA Personal Firewall (GDFwSvc) - Unknown owner - C:\Program Files\G DATA InternetSecurity\Firewall\GDFwSvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Configuration Interface Service (HPConfig) - Hewlett-Packard - C:\WINDOWS\system32\HPConfig.exe
O23 - Service: HPWirelessMgr - Hewlett-Packard Co. - C:\Program Files\HPQ\Notebook Utilities\HPWirelessMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
A voir également:
- Hijack a analyser svp
- Hijack this - Télécharger - Antivirus & Antimalwares
- Analyser disque dur externe - Guide
- Analyser clé usb - Guide
- Image analyser - Télécharger - Photo & Graphisme
- Analyser performance pc - Guide
2 réponses
Bonjour,
je vous aurait bien aidé mais votre scan ne montre aucune erreur dangereuse pour votre système. Pour vérifier copié votre scan ( ce que vous avez envoyé sur le forum) dans le lien suivant puis faites evaluer:
http://www.hijackthis.de/fr
je vous aurait bien aidé mais votre scan ne montre aucune erreur dangereuse pour votre système. Pour vérifier copié votre scan ( ce que vous avez envoyé sur le forum) dans le lien suivant puis faites evaluer:
http://www.hijackthis.de/fr
Ok merci et je fais quoi maintenant, dsl jy connais pa grd chose
:/
Logfile of HijackThis v1.99.1
Genre
Votre version semble être actuelle.
Platform: Windows XP SP2 (WinNT 5.01.2600)
Genre
Analyzerdetails
MSIE: Internet Explorer v7.00 (7.00.6000.16414)
Genre
Votre version semble être actuelle.
Visitor's assessment Analyzerdetails
C:\WINDOWS\System32\smss.exe
Genre
Very safe
Very safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\WINDOWS\system32\winlogon.exe
Genre
Very safe
Very safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\WINDOWS\system32\services.exe
Genre
Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\WINDOWS\system32\lsass.exe
Genre
Very safe
Very safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\WINDOWS\System32\Ati2evxx.exe
Genre
Safe
Safe
ATI2evxx.exe is related to ATI Technologies Inc. hardware.
Visitor's assessment Analyzerdetails
C:\WINDOWS\system32\svchost.exe
Genre
Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\WINDOWS\System32\svchost.exe
Genre
Very safe
Very safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\WINDOWS\system32\spoolsv.exe
Genre
Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\G DATA InternetSecurity\AVK\AVKService.exe
Genre
Very safe
Very safe
GData Antivirenkit
Visitor's assessment Analyzerdetails
C:\Program Files\G DATA InternetSecurity\AVK\AVKWCtl.exe
Genre
Very safe
Very safe
GData Antivirenkit
Visitor's assessment Analyzerdetails
C:\WINDOWS\system32\HPConfig.exe
Genre
Visitor's assessment Analyzerdetails
C:\Program Files\HPQ\Notebook Utilities\HPWirelessMgr.exe
Genre
Neutral
Neutral
Hewlett-Packard Wireless Manager
Visitor's assessment Analyzerdetails
C:\WINDOWS\system32\svchost.exe
Genre
Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\Fichiers communs\G DATA\AVKProxy\AVKProxy.exe
Genre
Very safe
Very safe
Part of G-Data Antiviruskit
Visitor's assessment Analyzerdetails
C:\Program Files\G DATA InternetSecurity\Firewall\GDFwSvc.exe
Genre
Eventuellement méchant! Selon notre base de données, ce processus s’exécute normalement dans c:\programme\antivirenkit internetsecurity\firewall\! Vérifiez si vous connaissez ce processus et arrangez un contrôle antivirus si nécessaire.GData AntivirenKit InternetSecurity
Visitor's assessment Analyzerdetails
C:\WINDOWS\Explorer.EXE
Genre
Very safe
Very safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
Genre
Very safe
Very safe
Visitor's assessment Analyzerdetails
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
Genre
Safe
Safe
Visitor's assessment Analyzerdetails
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
Genre
Very safe
Very safe
ATI Desktop Control Panel from ATI Technologies
Visitor's assessment Analyzerdetails
C:\Program Files\G DATA InternetSecurity\AVKTray\AVKTray.exe
Genre
Part of G DATA AntiVirenKit
Visitor's assessment Analyzerdetails
C:\Program Files\iTunes\iTunesHelper.exe
Genre
Safe
Safe
Non dangereux, mais tout de même superflu.
Apple iTunes
Visitor's assessment Analyzerdetails
C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe
Genre
Roxio Easy CD Creator DragToDisc
Visitor's assessment Analyzerdetails
C:\WINDOWS\system32\carpserv.exe
Genre
Modemtreiber des Sony Vaio Notebooks
Visitor's assessment Analyzerdetails
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
Genre
Associated with GoogleToolbarNotifier from Google Inc.
Visitor's assessment Analyzerdetails
C:\WINDOWS\system32\ctfmon.exe
Genre
Very safe
Very safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\iPod\bin\iPodService.exe
Genre
Very safe
Very safe
Visitor's assessment Analyzerdetails
C:\Program Files\MSN Messenger\MsnMsgr.Exe
Genre
Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\G DATA InternetSecurity\Firewall\GDFirewallTray.exe
Genre
Part of GData Internet Security
Visitor's assessment Analyzerdetails
C:\PROGRA~1\Magentic\bin\MgApp.exe
Genre
Safe
Safe
Wallpaperchanger
Visitor's assessment Analyzerdetails
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
Genre
Very safe
Very safe
Incredi Mail
Visitor's assessment Analyzerdetails
C:\Program Files\MSN Messenger\livecall.exe
Genre
Very safe
Very safe
Part of MSN Messenger
Visitor's assessment Analyzerdetails
C:\Program Files\MSN Messenger\usnsvc.exe
Genre
Very safe
Very safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\Mozilla Firefox\firefox.exe
Genre
Very safe
Very safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE
Genre
Safe
Safe
Tâche inconnue.
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mystart.incredimail.com/french
Genre
Ce site a été identifié comme étant non dangereux
Visitor's assessment Analyzerdetails
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
Genre
Safe
Safe
Ce site a été identifié comme étant non dangereux
Visitor's assessment Analyzerdetails
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
Genre
Neutral
Neutral
Ce site a été identifié comme étant non dangereux
Visitor's assessment Analyzerdetails
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
Genre
Safe
Safe
Ce site a été identifié comme étant non dangereux
Visitor's assessment Analyzerdetails
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
Genre
Neutral
Neutral
Ce site a été identifié comme étant non dangereux
Visitor's assessment Analyzerdetails
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
Genre
Very safe
Very safe
Ce site a été identifié comme étant non dangereux
Visitor's assessment Analyzerdetails
O2 - BHO: G DATA WebFilter Class - {0124123D-61B4-456f-AF86-78C53A0790C5} - C:\Program Files\G DATA InternetSecurity\Webfilter\AvkWebIE.dll
Genre
AvkWebIE.dll - G DATA Internet Security, https://www.gdata.de/shop 8/28/
Visitor's assessment Analyzerdetails
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
Genre
AcroIEhelper.ocx, AcroIEhelper.dll - Adobe Acrobat reader, http://www.adobe.com/products/acrobat/re adstep2.html
Visitor's assessment Analyzerdetails
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
Genre
Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
Genre
Neutral
Neutral
Programme inconnu.
Inscription superflue (car sans effet) qui peut donc être effacée !
Visitor's assessment Analyzerdetails
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
Genre
Safe
Safe
googletoolbar.dll, googletoolbar*.dll (* = number), googletoolbar_en_*.**-big.dll, Googletoolbar_en_*.*.**-deleon.dll. - Google toolbar, http://www.google.com/intl/fr/toolbar/ie/index.html
Visitor's assessment Analyzerdetails
O3 - Toolbar: G DATA WebFilter - {0124123D-61B4-456f-AF86-78C53A0790C5} - C:\Program Files\G DATA InternetSecurity\Webfilter\AvkWebIE.dll
Genre
AvkWebIE.dll - G DATA Internet Security, https://www.gdata.de/shop 8/28/
Visitor's assessment Analyzerdetails
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
Genre
Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
Genre
Very safe
Very safe
Synaptics touchpad driver helper. Required for touchpad features to work
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
Genre
Very safe
Very safe
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
Genre
Neutral
Neutral
System Tray icon to access ATI graphics card settings and the Hydravision Desktop Manager
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
Genre
Very safe
Very safe
Control panel for the ATI series of video cards allowing access to such features as display resolution, colour depth, etc. Available via Start -> Settings -> Control Panel -> Display. Some users may need it if they have optimised their settings
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
Genre
Safe
Safe
Non dangereux, mais tout de même superflu.Default settings software in Hewlett Packard notebook
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
Genre
Neutral
Neutral
Non dangereux, mais tout de même superflu.QuickTime
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [Display Settings] C:\Program Files\HPQ\Notebook Utilities\hptasks.exe /s
Genre
Non dangereux, mais tout de même superflu.Allows for the adjustment of the display for LCD screen, CRT Monitor and TV output on HP computers.
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [QT4HPOT] C:\Program Files\HPQ\One-Touch\OneTouch.EXE
Genre
Very safe
Very safe
Hewlett Packard One Touch keyboard driver. Required if you use the additional keys
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [AVKTray] "C:\Program Files\G DATA InternetSecurity\AVKTray\AVKTray.exe"
Genre
AntiVirenKit InternetSecurity
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
Genre
Safe
Safe
Non dangereux, mais tout de même superflu.
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
Genre
Adobe Photoshop Album Starter Edition
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Fichiers communs\Roxio Shared\System\EngUtil.exe"
Genre
Part of Roxio EasyCD Creator 6.0 - corrects any modification made to the Roxio Engine, it exits after checking
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe"
Genre
Non dangereux, mais tout de même superflu.Part of Roxio EasyCD Creator 6.0 - places the Roxio Drag-to-Disc icon in you system tray. "Easily drag and drop files for burning to CD or DVD. Disc formatting and burning will happen automatically". Not required for Roxio to work properly
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [CARPService] carpserv.exe
Genre
Safe
Safe
Associated with Zoltrix modems - enables the internal modem speaker, allowing you to listen to the dial-up sounds for example
Visitor's assessment Analyzerdetails
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
Genre
Associated with GoogleToolbarNotifier from Google Inc.
Visitor's assessment Analyzerdetails
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
Genre
Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
Genre
Very safe
Very safe
Microsoft s MSN Messenger 6
Visitor's assessment Analyzerdetails
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
Genre
Neutral
Neutral
Incredi Mail
Visitor's assessment Analyzerdetails
O4 - HKCU\..\Run: [Magentic] C:\PROGRA~1\Magentic\bin\Magentic.exe /c
Genre
Magentic
Visitor's assessment Analyzerdetails
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
Genre
Safe
Safe
Adobe Reader Synchronizer
Visitor's assessment Analyzerdetails
O4 - Global Startup: G DATA Firewall Tray.lnk = ?
Genre
Very safe
Very safe
Cette inscription est superflue est peut être effacée !
Visitor's assessment Analyzerdetails
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
Genre
Part of Acrobat Reader 7
Visitor's assessment Analyzerdetails
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
Genre
Safe
Safe
Non dangereux, mais tout de même superflu.Application which launches common MS Office components to help speed up the launch of Office programs. It's somewhat of a resource hog
Visitor's assessment Analyzerdetails
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2\bin\npjpi142.dll
Genre
Cette inscription a été identifiée comme étant non dangereuse.
Visitor's assessment Analyzerdetails
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2\bin\npjpi142.dll
Genre
Cette inscription Console Java a été identifiée comme étant non dangereuse.
Visitor's assessment Analyzerdetails
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
Genre
Safe
Safe
Inscription superflue (car sans effet) qui peut donc être effacée !This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
Genre
Safe
Safe
Inscription superflue (car sans effet) qui peut donc être effacée !This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
Genre
Very safe
Very safe
Cette inscription Messenger a été identifiée comme étant non dangereuse.
Visitor's assessment Analyzerdetails
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
Genre
Safe
Safe
Cette inscription Windows Messenger a été identifiée comme étant non dangereuse.
Visitor's assessment Analyzerdetails
O11 - Options group: [INTERNATIONAL] International*
Genre
Neutral
Neutral
Visitor's assessment Analyzerdetails
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
Genre
Neutral
Neutral
Cette inscription a été identifiée comme étant non dangereuse.
Visitor's assessment Analyzerdetails
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Genre
Safe
Safe
Cette inscription a été identifiée comme étant non dangereuse.
Visitor's assessment Analyzerdetails
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
Genre
Very safe
Very safe
Cette inscription a été identifiée comme étant non dangereuse.
Visitor's assessment Analyzerdetails
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
Genre
Cette inscription a été identifiée comme étant non dangereuse.
Visitor's assessment Analyzerdetails
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
Genre
Cette inscription a été identifiée comme étant non dangereuse.
Visitor's assessment Analyzerdetails
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
Genre
Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
Genre
Safe
Safe
Ce service (Ati2evxx.exe) a été identifié comme étant légitime.
Visitor's assessment Analyzerdetails
O23 - Service: AVKProxy - G DATA Software AG - C:\Program Files\Fichiers communs\G DATA\AVKProxy\AVKProxy.exe
Genre
Safe
Safe
Ce service (AVKProxy.exe) a été identifié comme étant légitime.
Visitor's assessment Analyzerdetails
O23 - Service: AVK Service (AVKService) - G DATA Software AG - C:\Program Files\G DATA InternetSecurity\AVK\AVKService.exe
Genre
Ce service (AVKService.exe) a été identifié comme étant légitime.
Visitor's assessment Analyzerdetails
O23 - Service: Gardien d'AVK (AVKWCtl) - Unknown owner - C:\Program Files\G DATA InternetSecurity\AVK\AVKWCtl.exe
Genre
Ce service (AVKWCtl.exe) a été identifié comme étant légitime.
Visitor's assessment Analyzerdetails
O23 - Service: G DATA Personal Firewall (GDFwSvc) - Unknown owner - C:\Program Files\G DATA InternetSecurity\Firewall\GDFwSvc.exe
Genre
Ce service (GDFwSvc.exe) a été identifié comme étant légitime.
Visitor's assessment Analyzerdetails
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
Genre
Safe
Safe
Ce service (GoogleUpdaterService.exe) a été identifié comme étant légitime.
Visitor's assessment Analyzerdetails
O23 - Service: HP Configuration Interface Service (HPConfig) - Hewlett-Packard - C:\WINDOWS\system32\HPConfig.exe
Genre
Neutral
Neutral
Ce service (HPConfig.exe) a été identifié comme étant légitime.
Visitor's assessment Analyzerdetails
O23 - Service: HPWirelessMgr - Hewlett-Packard Co. - C:\Program Files\HPQ\Notebook Utilities\HPWirelessMgr.exe
Genre
Ce service (HPWirelessMgr.exe) a été identifié comme étant légitime.
Visitor's assessment Analyzerdetails
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
Genre
Very safe
Very safe
Ce service (IDriverT.exe) a été identifié comme étant légitime.
Visitor's assessment Analyzerdetails
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
Genre
Very safe
Very safe
Ce service (iPodService.exe) a été identifié comme étant légitime.
:/
Logfile of HijackThis v1.99.1
Genre
Votre version semble être actuelle.
Platform: Windows XP SP2 (WinNT 5.01.2600)
Genre
Analyzerdetails
MSIE: Internet Explorer v7.00 (7.00.6000.16414)
Genre
Votre version semble être actuelle.
Visitor's assessment Analyzerdetails
C:\WINDOWS\System32\smss.exe
Genre
Very safe
Very safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\WINDOWS\system32\winlogon.exe
Genre
Very safe
Very safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\WINDOWS\system32\services.exe
Genre
Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\WINDOWS\system32\lsass.exe
Genre
Very safe
Very safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\WINDOWS\System32\Ati2evxx.exe
Genre
Safe
Safe
ATI2evxx.exe is related to ATI Technologies Inc. hardware.
Visitor's assessment Analyzerdetails
C:\WINDOWS\system32\svchost.exe
Genre
Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\WINDOWS\System32\svchost.exe
Genre
Very safe
Very safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\WINDOWS\system32\spoolsv.exe
Genre
Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\G DATA InternetSecurity\AVK\AVKService.exe
Genre
Very safe
Very safe
GData Antivirenkit
Visitor's assessment Analyzerdetails
C:\Program Files\G DATA InternetSecurity\AVK\AVKWCtl.exe
Genre
Very safe
Very safe
GData Antivirenkit
Visitor's assessment Analyzerdetails
C:\WINDOWS\system32\HPConfig.exe
Genre
Visitor's assessment Analyzerdetails
C:\Program Files\HPQ\Notebook Utilities\HPWirelessMgr.exe
Genre
Neutral
Neutral
Hewlett-Packard Wireless Manager
Visitor's assessment Analyzerdetails
C:\WINDOWS\system32\svchost.exe
Genre
Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\Fichiers communs\G DATA\AVKProxy\AVKProxy.exe
Genre
Very safe
Very safe
Part of G-Data Antiviruskit
Visitor's assessment Analyzerdetails
C:\Program Files\G DATA InternetSecurity\Firewall\GDFwSvc.exe
Genre
Eventuellement méchant! Selon notre base de données, ce processus s’exécute normalement dans c:\programme\antivirenkit internetsecurity\firewall\! Vérifiez si vous connaissez ce processus et arrangez un contrôle antivirus si nécessaire.GData AntivirenKit InternetSecurity
Visitor's assessment Analyzerdetails
C:\WINDOWS\Explorer.EXE
Genre
Very safe
Very safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
Genre
Very safe
Very safe
Visitor's assessment Analyzerdetails
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
Genre
Safe
Safe
Visitor's assessment Analyzerdetails
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
Genre
Very safe
Very safe
ATI Desktop Control Panel from ATI Technologies
Visitor's assessment Analyzerdetails
C:\Program Files\G DATA InternetSecurity\AVKTray\AVKTray.exe
Genre
Part of G DATA AntiVirenKit
Visitor's assessment Analyzerdetails
C:\Program Files\iTunes\iTunesHelper.exe
Genre
Safe
Safe
Non dangereux, mais tout de même superflu.
Apple iTunes
Visitor's assessment Analyzerdetails
C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe
Genre
Roxio Easy CD Creator DragToDisc
Visitor's assessment Analyzerdetails
C:\WINDOWS\system32\carpserv.exe
Genre
Modemtreiber des Sony Vaio Notebooks
Visitor's assessment Analyzerdetails
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
Genre
Associated with GoogleToolbarNotifier from Google Inc.
Visitor's assessment Analyzerdetails
C:\WINDOWS\system32\ctfmon.exe
Genre
Very safe
Very safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\iPod\bin\iPodService.exe
Genre
Very safe
Very safe
Visitor's assessment Analyzerdetails
C:\Program Files\MSN Messenger\MsnMsgr.Exe
Genre
Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\G DATA InternetSecurity\Firewall\GDFirewallTray.exe
Genre
Part of GData Internet Security
Visitor's assessment Analyzerdetails
C:\PROGRA~1\Magentic\bin\MgApp.exe
Genre
Safe
Safe
Wallpaperchanger
Visitor's assessment Analyzerdetails
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
Genre
Very safe
Very safe
Incredi Mail
Visitor's assessment Analyzerdetails
C:\Program Files\MSN Messenger\livecall.exe
Genre
Very safe
Very safe
Part of MSN Messenger
Visitor's assessment Analyzerdetails
C:\Program Files\MSN Messenger\usnsvc.exe
Genre
Very safe
Very safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\Mozilla Firefox\firefox.exe
Genre
Very safe
Very safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE
Genre
Safe
Safe
Tâche inconnue.
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mystart.incredimail.com/french
Genre
Ce site a été identifié comme étant non dangereux
Visitor's assessment Analyzerdetails
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
Genre
Safe
Safe
Ce site a été identifié comme étant non dangereux
Visitor's assessment Analyzerdetails
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
Genre
Neutral
Neutral
Ce site a été identifié comme étant non dangereux
Visitor's assessment Analyzerdetails
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
Genre
Safe
Safe
Ce site a été identifié comme étant non dangereux
Visitor's assessment Analyzerdetails
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
Genre
Neutral
Neutral
Ce site a été identifié comme étant non dangereux
Visitor's assessment Analyzerdetails
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
Genre
Very safe
Very safe
Ce site a été identifié comme étant non dangereux
Visitor's assessment Analyzerdetails
O2 - BHO: G DATA WebFilter Class - {0124123D-61B4-456f-AF86-78C53A0790C5} - C:\Program Files\G DATA InternetSecurity\Webfilter\AvkWebIE.dll
Genre
AvkWebIE.dll - G DATA Internet Security, https://www.gdata.de/shop 8/28/
Visitor's assessment Analyzerdetails
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
Genre
AcroIEhelper.ocx, AcroIEhelper.dll - Adobe Acrobat reader, http://www.adobe.com/products/acrobat/re adstep2.html
Visitor's assessment Analyzerdetails
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
Genre
Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
Genre
Neutral
Neutral
Programme inconnu.
Inscription superflue (car sans effet) qui peut donc être effacée !
Visitor's assessment Analyzerdetails
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
Genre
Safe
Safe
googletoolbar.dll, googletoolbar*.dll (* = number), googletoolbar_en_*.**-big.dll, Googletoolbar_en_*.*.**-deleon.dll. - Google toolbar, http://www.google.com/intl/fr/toolbar/ie/index.html
Visitor's assessment Analyzerdetails
O3 - Toolbar: G DATA WebFilter - {0124123D-61B4-456f-AF86-78C53A0790C5} - C:\Program Files\G DATA InternetSecurity\Webfilter\AvkWebIE.dll
Genre
AvkWebIE.dll - G DATA Internet Security, https://www.gdata.de/shop 8/28/
Visitor's assessment Analyzerdetails
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
Genre
Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
Genre
Very safe
Very safe
Synaptics touchpad driver helper. Required for touchpad features to work
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
Genre
Very safe
Very safe
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
Genre
Neutral
Neutral
System Tray icon to access ATI graphics card settings and the Hydravision Desktop Manager
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
Genre
Very safe
Very safe
Control panel for the ATI series of video cards allowing access to such features as display resolution, colour depth, etc. Available via Start -> Settings -> Control Panel -> Display. Some users may need it if they have optimised their settings
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
Genre
Safe
Safe
Non dangereux, mais tout de même superflu.Default settings software in Hewlett Packard notebook
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
Genre
Neutral
Neutral
Non dangereux, mais tout de même superflu.QuickTime
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [Display Settings] C:\Program Files\HPQ\Notebook Utilities\hptasks.exe /s
Genre
Non dangereux, mais tout de même superflu.Allows for the adjustment of the display for LCD screen, CRT Monitor and TV output on HP computers.
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [QT4HPOT] C:\Program Files\HPQ\One-Touch\OneTouch.EXE
Genre
Very safe
Very safe
Hewlett Packard One Touch keyboard driver. Required if you use the additional keys
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [AVKTray] "C:\Program Files\G DATA InternetSecurity\AVKTray\AVKTray.exe"
Genre
AntiVirenKit InternetSecurity
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
Genre
Safe
Safe
Non dangereux, mais tout de même superflu.
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.0\Apps\apdproxy.exe"
Genre
Adobe Photoshop Album Starter Edition
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Fichiers communs\Roxio Shared\System\EngUtil.exe"
Genre
Part of Roxio EasyCD Creator 6.0 - corrects any modification made to the Roxio Engine, it exits after checking
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe"
Genre
Non dangereux, mais tout de même superflu.Part of Roxio EasyCD Creator 6.0 - places the Roxio Drag-to-Disc icon in you system tray. "Easily drag and drop files for burning to CD or DVD. Disc formatting and burning will happen automatically". Not required for Roxio to work properly
Visitor's assessment Analyzerdetails
O4 - HKLM\..\Run: [CARPService] carpserv.exe
Genre
Safe
Safe
Associated with Zoltrix modems - enables the internal modem speaker, allowing you to listen to the dial-up sounds for example
Visitor's assessment Analyzerdetails
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
Genre
Associated with GoogleToolbarNotifier from Google Inc.
Visitor's assessment Analyzerdetails
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
Genre
Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
Genre
Very safe
Very safe
Microsoft s MSN Messenger 6
Visitor's assessment Analyzerdetails
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
Genre
Neutral
Neutral
Incredi Mail
Visitor's assessment Analyzerdetails
O4 - HKCU\..\Run: [Magentic] C:\PROGRA~1\Magentic\bin\Magentic.exe /c
Genre
Magentic
Visitor's assessment Analyzerdetails
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
Genre
Safe
Safe
Adobe Reader Synchronizer
Visitor's assessment Analyzerdetails
O4 - Global Startup: G DATA Firewall Tray.lnk = ?
Genre
Very safe
Very safe
Cette inscription est superflue est peut être effacée !
Visitor's assessment Analyzerdetails
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
Genre
Part of Acrobat Reader 7
Visitor's assessment Analyzerdetails
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
Genre
Safe
Safe
Non dangereux, mais tout de même superflu.Application which launches common MS Office components to help speed up the launch of Office programs. It's somewhat of a resource hog
Visitor's assessment Analyzerdetails
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2\bin\npjpi142.dll
Genre
Cette inscription a été identifiée comme étant non dangereuse.
Visitor's assessment Analyzerdetails
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2\bin\npjpi142.dll
Genre
Cette inscription Console Java a été identifiée comme étant non dangereuse.
Visitor's assessment Analyzerdetails
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
Genre
Safe
Safe
Inscription superflue (car sans effet) qui peut donc être effacée !This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
Genre
Safe
Safe
Inscription superflue (car sans effet) qui peut donc être effacée !This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
Genre
Very safe
Very safe
Cette inscription Messenger a été identifiée comme étant non dangereuse.
Visitor's assessment Analyzerdetails
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
Genre
Safe
Safe
Cette inscription Windows Messenger a été identifiée comme étant non dangereuse.
Visitor's assessment Analyzerdetails
O11 - Options group: [INTERNATIONAL] International*
Genre
Neutral
Neutral
Visitor's assessment Analyzerdetails
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
Genre
Neutral
Neutral
Cette inscription a été identifiée comme étant non dangereuse.
Visitor's assessment Analyzerdetails
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Genre
Safe
Safe
Cette inscription a été identifiée comme étant non dangereuse.
Visitor's assessment Analyzerdetails
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
Genre
Very safe
Very safe
Cette inscription a été identifiée comme étant non dangereuse.
Visitor's assessment Analyzerdetails
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
Genre
Cette inscription a été identifiée comme étant non dangereuse.
Visitor's assessment Analyzerdetails
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
Genre
Cette inscription a été identifiée comme étant non dangereuse.
Visitor's assessment Analyzerdetails
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
Genre
Safe
Safe
This entry was classified from our visitors as good.
Visitor's assessment Analyzerdetails
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
Genre
Safe
Safe
Ce service (Ati2evxx.exe) a été identifié comme étant légitime.
Visitor's assessment Analyzerdetails
O23 - Service: AVKProxy - G DATA Software AG - C:\Program Files\Fichiers communs\G DATA\AVKProxy\AVKProxy.exe
Genre
Safe
Safe
Ce service (AVKProxy.exe) a été identifié comme étant légitime.
Visitor's assessment Analyzerdetails
O23 - Service: AVK Service (AVKService) - G DATA Software AG - C:\Program Files\G DATA InternetSecurity\AVK\AVKService.exe
Genre
Ce service (AVKService.exe) a été identifié comme étant légitime.
Visitor's assessment Analyzerdetails
O23 - Service: Gardien d'AVK (AVKWCtl) - Unknown owner - C:\Program Files\G DATA InternetSecurity\AVK\AVKWCtl.exe
Genre
Ce service (AVKWCtl.exe) a été identifié comme étant légitime.
Visitor's assessment Analyzerdetails
O23 - Service: G DATA Personal Firewall (GDFwSvc) - Unknown owner - C:\Program Files\G DATA InternetSecurity\Firewall\GDFwSvc.exe
Genre
Ce service (GDFwSvc.exe) a été identifié comme étant légitime.
Visitor's assessment Analyzerdetails
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
Genre
Safe
Safe
Ce service (GoogleUpdaterService.exe) a été identifié comme étant légitime.
Visitor's assessment Analyzerdetails
O23 - Service: HP Configuration Interface Service (HPConfig) - Hewlett-Packard - C:\WINDOWS\system32\HPConfig.exe
Genre
Neutral
Neutral
Ce service (HPConfig.exe) a été identifié comme étant légitime.
Visitor's assessment Analyzerdetails
O23 - Service: HPWirelessMgr - Hewlett-Packard Co. - C:\Program Files\HPQ\Notebook Utilities\HPWirelessMgr.exe
Genre
Ce service (HPWirelessMgr.exe) a été identifié comme étant légitime.
Visitor's assessment Analyzerdetails
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
Genre
Very safe
Very safe
Ce service (IDriverT.exe) a été identifié comme étant légitime.
Visitor's assessment Analyzerdetails
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
Genre
Very safe
Very safe
Ce service (iPodService.exe) a été identifié comme étant légitime.
