Verifiez mon log svp

Verifiez mon log svp - Sécurité - Windows & Software

Marsh Posté le 05-04-2005 à 22:00:57    

Voila mon log sur hijack je sens que mon bébé raenti en ce moment ( mon pc) et c'est pas bon...
donc si quelqu'un pouvait me dire comment virer tout ce qui est bidon ou nefaste! merci d'avance
 
Logfile of HijackThis v1.99.1
Scan saved at 22:00:34, on 05/04/2005
Platform: Windows XP  (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000)
 
Running processes:
C:\BACKUP\System32\smss.exe
C:\BACKUP\system32\winlogon.exe
C:\BACKUP\system32\services.exe
C:\BACKUP\system32\lsass.exe
C:\BACKUP\system32\svchost.exe
C:\BACKUP\System32\svchost.exe
C:\BACKUP\system32\spoolsv.exe
C:\BACKUP\Explorer.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\BACKUP\htpatch.exe
C:\BACKUP\System32\RunDll32.exe
C:\Program Files\Friendly Technologies\BroadbandAccess\fts.exe
C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
C:\BACKUP\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE
C:\Program Files\AVPersonal\AVGNT.EXE
C:\BACKUP\dvjtut.exe
C:\BACKUP\System32\shlox32.exe
C:\BACKUP\System32\ctfmon.exe
C:\BACKUP\System32\wuadmpr.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Fichiers communs\EPSON\EBAPI\eEBSVC.exe
C:\Program Files\AVPersonal\AVGUARD.EXE
C:\BACKUP\System32\Ati2evxx.exe
C:\Program Files\AVPersonal\AVWUPSRV.EXE
C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
C:\BACKUP\System32\svchost.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
C:\BACKUP\System32\wuauclt.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\eChanblard\emule.exe
C:\BACKUP\System32\msmq2inst.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\tecnix\Bureau\HijackThis.exe
 
 
 :hello:


---------------
Cette lettre une part de rêve dans ce pâle réel un poumon quand pour mort mon esprit manque d'air
Reply

Marsh Posté le 05-04-2005 à 22:00:57   

Reply

Marsh Posté le 06-04-2005 à 13:03:53    


Ton bébé a la fièvre. Mais ton log n'est pas complet.

Reply

Marsh Posté le 06-04-2005 à 14:13:23    

acrobaze a écrit :

Ton bébé a la fièvre. Mais ton log n'est pas complet.


 
 
bah voilaz je l'ai refais merci d'avance
 
Logfile of HijackThis v1.99.1
Scan saved at 14:11:39, on 06/04/2005
Platform: Windows XP  (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2600.0000)
 
Running processes:
C:\BACKUP\System32\smss.exe
C:\BACKUP\system32\winlogon.exe
C:\BACKUP\system32\services.exe
C:\BACKUP\system32\lsass.exe
C:\BACKUP\system32\svchost.exe
C:\BACKUP\System32\svchost.exe
C:\BACKUP\system32\spoolsv.exe
C:\BACKUP\Explorer.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\BACKUP\htpatch.exe
C:\BACKUP\System32\RunDll32.exe
C:\Program Files\Friendly Technologies\BroadbandAccess\fts.exe
C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
C:\BACKUP\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE
C:\Program Files\AVPersonal\AVGNT.EXE
C:\BACKUP\dvjtut.exe
C:\BACKUP\System32\shlox32.exe
C:\BACKUP\System32\ctfmon.exe
C:\BACKUP\System32\wuadmpr.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Fichiers communs\EPSON\EBAPI\eEBSVC.exe
C:\Program Files\AVPersonal\AVGUARD.EXE
C:\BACKUP\System32\Ati2evxx.exe
C:\Program Files\AVPersonal\AVWUPSRV.EXE
C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
C:\BACKUP\System32\svchost.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
C:\Program Files\Kerio\Personal Firewall 4\kpf4gui.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\eChanblard\emule.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\BACKUP\system32\winlogon.exe
C:\BACKUP\System32\msmq2inst.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\tecnix\Bureau\HijackThis.exe
 
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\BACKUP\System32\msdxm.ocx
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: (no name) - {44BE0690-5429-47f0-85BB-3FFD8020233E} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [HTpatch] C:\BACKUP\htpatch.exe
O4 - HKLM\..\Run: [SiSUSBRG] C:\BACKUP\SiSUSBrg.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [DSLAGENTEXE] dslagent.exe
O4 - HKLM\..\Run: [%FP%Friendly fts.exe] "C:\Program Files\Friendly Technologies\BroadbandAccess\fts.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
O4 - HKLM\..\Run: [NeroCheck] C:\BACKUP\System32\\NeroCheck.exe
O4 - HKLM\..\Run: [EPSON Stylus CX3200] C:\BACKUP\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P19 "EPSON Stylus CX3200" /O6 "USB001" /M "Stylus CX3200"
O4 - HKLM\..\Run: [MSWINHELP] wuadmpr.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [AVGCtrl] C:\Program Files\AVPersonal\AVGNT.EXE /min
O4 - HKLM\..\Run: [MS Unix Binary] msmq2inst.exe
O4 - HKLM\..\Run: [Media Access] C:\Program Files\Media Access\MediaAccK.exe
O4 - HKLM\..\Run: [ch8R] C:\BACKUP\dvjtut.exe
O4 - HKLM\..\Run: [ps7Q3pV] shlox32.exe
O4 - HKLM\..\RunServices: [MSWINHELP] wuadmpr.exe
O4 - HKLM\..\RunServices: [MS Unix Binary] msmq2inst.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\BACKUP\System32\ctfmon.exe
O4 - HKCU\..\Run: [Microsoft NT Update] winexec32.exe
O4 - HKCU\..\Run: [MSWINHELP] wuadmpr.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [MS Unix Binary] msmq2inst.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe (file missing)
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe (file missing)
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/ac [...] 0-3-17.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by24fd.bay24.hotmail.msn.co [...] nPUpld.cab
O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} (RdxIE Class) - http://software-dl.real.com/04ead2 [...] 601_fr.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://v5.windowsupdate.microsoft. [...] 2713514075
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537 [...] scan53.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoftware.com/activescan/as5/asinst.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/ [...] loader.cab
O16 - DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} (Hotmail Attachments Control) - http://by102fd.bay102.hotmail.msn. [...] Atchmt.ocx
O17 - HKLM\System\CCS\Services\Tcpip\..\{B0BFF82A-7615-479D-930C-D57675B068CD}: NameServer = 80.118.192.110 80.118.196.40
O23 - Service: AntiVir Service (AntiVirService) - H+BEDV Datentechnik GmbH - C:\Program Files\AVPersonal\AVGUARD.EXE
O23 - Service: Ati HotKey Poller - Unknown owner - C:\BACKUP\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\BACKUP\system32\ati2sgag.exe
O23 - Service: AntiVir Update (AVWUpSrv) - H+BEDV Datentechnik GmbH, Germany - C:\Program Files\AVPersonal\AVWUPSRV.EXE
O23 - Service: EpsonBidirectionalService - Unknown owner - C:\Program Files\Fichiers communs\EPSON\EBAPI\eEBSVC.exe
O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Fichiers communs\EPSON\EBAPI\SAgent2.exe
O23 - Service: Kerio Personal Firewall 4 (KPF4) - Kerio Technologies - C:\Program Files\Kerio\Personal Firewall 4\kpf4ss.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\FICHIE~1\SONYSH~1\AVLib\Sptisrv.exe
 
 :(


---------------
Cette lettre une part de rêve dans ce pâle réel un poumon quand pour mort mon esprit manque d'air
Reply

Sujets relatifs:

Leave a Replay

Make sure you enter the(*)required information where indicate.HTML code is not allowed