Suis-je infecté (rapport HijackThis).
Utilisateur anonyme
-
Utilisateur anonyme -
Utilisateur anonyme -
Bonjour,Je voudrais savoir si mon ordinateur était en bonne état voici mon rapport HijackThis
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:31:20, on 25/03/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\iPod\Bin\iPodSrv.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Hercules\WiFi Station\WifiStation.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\LimeWire\LimeWire.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = https://portail.free.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Popup Manager - {08E74C67-99A6-45C7-94DA-A397A8FD8082} - (no file)
O2 - BHO: (no name) - {0D3E9C78-8CE2-4222-AFA7-E9D8974D0B4C} - (no file)
O2 - BHO: (no name) - {0E229538-9841-4BE7-069A-5DBB0A201667} - (no file)
O2 - BHO: (no name) - {110D6444-9CC7-47B6-AAE5-A9AA52823346} - (no file)
O2 - BHO: (no name) - {179A54AE-9F7D-48C5-AF77-641FAA2F5CCD} - (no file)
O2 - BHO: (no name) - {29E5DB24-B5C2-471B-A3A3-8E248A720B20} - (no file)
O2 - BHO: (no name) - {3533728E-1A85-42F3-8F29-57CFA72F66AF} - (no file)
O2 - BHO: (no name) - {37C47C14-CD8E-4752-AE58-BAB481ECEEC5} - (no file)
O2 - BHO: (no name) - {47E14067-1267-49A3-BC18-8C937B02825F} - (no file)
O2 - BHO: (no name) - {4F5A1E7F-5388-44DC-93BB-66A155CE5E1F} - (no file)
O2 - BHO: (no name) - {510247af-ff8b-44ed-921b-84108885a4d0} - (no file)
O2 - BHO: (no name) - {61210148-0170-4A26-A2A1-E71B66FC9F3C} - (no file)
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: (no name) - {65876774-B17A-4A90-966F-1CCB3C4F2BD6} - (no file)
O2 - BHO: (no name) - {67602201-1254-40F6-9565-208BFDF794FB} - (no file)
O2 - BHO: (no name) - {69af0e78-a36a-4083-a11f-2bef7e39b3d9} - (no file)
O2 - BHO: (no name) - {6EC4E01B-DBDD-4FED-AC84-C0F4FA06E329} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7B89E8C0-04E0-4EF8-BD8B-8D306305E65E} - (no file)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {86034AC2-9E33-4B0A-1285-E55448EA80B4} - (no file)
O2 - BHO: (no name) - {8D1B6220-7A6B-4706-8410-A15CDE7B3B18} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {9BC5681C-0BA7-421E-97BB-E5602E2203CA} - (no file)
O2 - BHO: (no name) - {A083FD98-285A-4FC2-81A1-52CEFB8C44FF} - (no file)
O2 - BHO: (no name) - {A1DBB56C-2CF2-49F2-9440-AAFDF0027944} - (no file)
O2 - BHO: (no name) - {B1B20837-6EBB-4B3C-B893-0F436FE5FD2A} - (no file)
O2 - BHO: (no name) - {B35DFFFF-53CF-4B07-981F-278710B5C6FA} - (no file)
O2 - BHO: (no name) - {B813124D-B958-4354-8DEA-DBF5A6C2B752} - (no file)
O2 - BHO: (no name) - {BC8EE999-540D-4DEE-B2F9-A5092CC1881D} - (no file)
O2 - BHO: (no name) - {C085F10A-8F8A-430D-2EB3-A40AF26FFE89} - (no file)
O2 - BHO: (no name) - {CEA1D74E-7384-4A41-90A9-48C7B0E1527B} - (no file)
O2 - BHO: (no name) - {D1DD36C6-511E-4CEC-BC90-69CC8DBC5A29} - (no file)
O2 - BHO: (no name) - {D3F9CE4E-2354-4973-AACA-383E87632F99} - (no file)
O2 - BHO: (no name) - {DD6922E7-87E6-4128-8AFD-7DBA107B072D} - (no file)
O2 - BHO: (no name) - {E3D46394-0854-4511-9D76-98D3E385D47B} - (no file)
O2 - BHO: (no name) - {E758A8FB-FD4C-4380-A1B4-6DF73E39271F} - (no file)
O2 - BHO: (no name) - {F0DF92C7-738A-4302-9F16-DE8A2B60F855} - (no file)
O2 - BHO: (no name) - {f1fe1f4a-6fec-4c31-b261-cff85b56a4dd} - (no file)
O2 - BHO: (no name) - {F4102828-150B-47D3-A126-D30D768D37CF} - (no file)
O2 - BHO: (no name) - {f85cdad1-73b5-4b72-ba38-450ebf64d3cb} - (no file)
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O4 - HKLM\..\Run: [avast!] "C:\Program Files\Alwil Software\Avast4\ashDisp.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - Global Startup: WiFi Station.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O20 - Winlogon Notify: vtstq - C:\WINDOWS\
O20 - Winlogon Notify: xxyyayx - xxyyayx.dll (file missing)
O22 - SharedTaskScheduler: {874443fe-aa33-4ebf-a6ac-73208787e62d} - bestreak - (no file)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPodSrv - Unknown owner - C:\Program Files\iPod\Bin\iPodSrv.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O24 - Desktop Component 0: (no name) - C:\Program Files\WindowsUpdate\profsybywuus.html
O24 - Desktop Component 1: (no name) - http://www.psg.fr/images/photo_content/cp_44c296aaa36b934AC1534papier.jpg
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:31:20, on 25/03/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\iPod\Bin\iPodSrv.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\Program Files\Sunbelt Software\Personal Firewall\kpf4gui.exe
C:\WINDOWS\system32\WgaTray.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Hercules\WiFi Station\WifiStation.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\LimeWire\LimeWire.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = https://portail.free.fr/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Popup Manager - {08E74C67-99A6-45C7-94DA-A397A8FD8082} - (no file)
O2 - BHO: (no name) - {0D3E9C78-8CE2-4222-AFA7-E9D8974D0B4C} - (no file)
O2 - BHO: (no name) - {0E229538-9841-4BE7-069A-5DBB0A201667} - (no file)
O2 - BHO: (no name) - {110D6444-9CC7-47B6-AAE5-A9AA52823346} - (no file)
O2 - BHO: (no name) - {179A54AE-9F7D-48C5-AF77-641FAA2F5CCD} - (no file)
O2 - BHO: (no name) - {29E5DB24-B5C2-471B-A3A3-8E248A720B20} - (no file)
O2 - BHO: (no name) - {3533728E-1A85-42F3-8F29-57CFA72F66AF} - (no file)
O2 - BHO: (no name) - {37C47C14-CD8E-4752-AE58-BAB481ECEEC5} - (no file)
O2 - BHO: (no name) - {47E14067-1267-49A3-BC18-8C937B02825F} - (no file)
O2 - BHO: (no name) - {4F5A1E7F-5388-44DC-93BB-66A155CE5E1F} - (no file)
O2 - BHO: (no name) - {510247af-ff8b-44ed-921b-84108885a4d0} - (no file)
O2 - BHO: (no name) - {61210148-0170-4A26-A2A1-E71B66FC9F3C} - (no file)
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - (no file)
O2 - BHO: (no name) - {65876774-B17A-4A90-966F-1CCB3C4F2BD6} - (no file)
O2 - BHO: (no name) - {67602201-1254-40F6-9565-208BFDF794FB} - (no file)
O2 - BHO: (no name) - {69af0e78-a36a-4083-a11f-2bef7e39b3d9} - (no file)
O2 - BHO: (no name) - {6EC4E01B-DBDD-4FED-AC84-C0F4FA06E329} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7B89E8C0-04E0-4EF8-BD8B-8D306305E65E} - (no file)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {86034AC2-9E33-4B0A-1285-E55448EA80B4} - (no file)
O2 - BHO: (no name) - {8D1B6220-7A6B-4706-8410-A15CDE7B3B18} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {9BC5681C-0BA7-421E-97BB-E5602E2203CA} - (no file)
O2 - BHO: (no name) - {A083FD98-285A-4FC2-81A1-52CEFB8C44FF} - (no file)
O2 - BHO: (no name) - {A1DBB56C-2CF2-49F2-9440-AAFDF0027944} - (no file)
O2 - BHO: (no name) - {B1B20837-6EBB-4B3C-B893-0F436FE5FD2A} - (no file)
O2 - BHO: (no name) - {B35DFFFF-53CF-4B07-981F-278710B5C6FA} - (no file)
O2 - BHO: (no name) - {B813124D-B958-4354-8DEA-DBF5A6C2B752} - (no file)
O2 - BHO: (no name) - {BC8EE999-540D-4DEE-B2F9-A5092CC1881D} - (no file)
O2 - BHO: (no name) - {C085F10A-8F8A-430D-2EB3-A40AF26FFE89} - (no file)
O2 - BHO: (no name) - {CEA1D74E-7384-4A41-90A9-48C7B0E1527B} - (no file)
O2 - BHO: (no name) - {D1DD36C6-511E-4CEC-BC90-69CC8DBC5A29} - (no file)
O2 - BHO: (no name) - {D3F9CE4E-2354-4973-AACA-383E87632F99} - (no file)
O2 - BHO: (no name) - {DD6922E7-87E6-4128-8AFD-7DBA107B072D} - (no file)
O2 - BHO: (no name) - {E3D46394-0854-4511-9D76-98D3E385D47B} - (no file)
O2 - BHO: (no name) - {E758A8FB-FD4C-4380-A1B4-6DF73E39271F} - (no file)
O2 - BHO: (no name) - {F0DF92C7-738A-4302-9F16-DE8A2B60F855} - (no file)
O2 - BHO: (no name) - {f1fe1f4a-6fec-4c31-b261-cff85b56a4dd} - (no file)
O2 - BHO: (no name) - {F4102828-150B-47D3-A126-D30D768D37CF} - (no file)
O2 - BHO: (no name) - {f85cdad1-73b5-4b72-ba38-450ebf64d3cb} - (no file)
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O4 - HKLM\..\Run: [avast!] "C:\Program Files\Alwil Software\Avast4\ashDisp.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - Global Startup: WiFi Station.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O20 - Winlogon Notify: vtstq - C:\WINDOWS\
O20 - Winlogon Notify: xxyyayx - xxyyayx.dll (file missing)
O22 - SharedTaskScheduler: {874443fe-aa33-4ebf-a6ac-73208787e62d} - bestreak - (no file)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPodSrv - Unknown owner - C:\Program Files\iPod\Bin\iPodSrv.exe
O23 - Service: Sunbelt Kerio Personal Firewall 4 (KPF4) - Sunbelt Software - C:\Program Files\Sunbelt Software\Personal Firewall\kpf4ss.exe
O24 - Desktop Component 0: (no name) - C:\Program Files\WindowsUpdate\profsybywuus.html
O24 - Desktop Component 1: (no name) - http://www.psg.fr/images/photo_content/cp_44c296aaa36b934AC1534papier.jpg
A voir également:
- Suis-je infecté (rapport HijackThis).
- Hijackthis - Télécharger - Antivirus & Antimalwares
- Plan rapport de stage - Guide
- Rapport de crash windows - Guide
- Impression rapport de stage ✓ - Forum Word
- Modifier rapport d'échelle pdf xchange viewer ✓ - Forum PDF
3 réponses
Utilisateur anonyme
Salut mon antivirus est Avast!Antivirus je l'ai téléchargé avec un pare-feu qui se nomme Sunbelt Kerio Personal Firewall plus connu sous le nom de KERIO.
