Actualité informatique
Test comparatif matériel informatique
Jeux vidéo
Astuces informatique
Vidéo
Télécharger
Services en ligne
Forum informatique
01Business

|-  SECURITE


|||-  

Rapport Hijackthis

 

Ajouter une réponse
 

 
Page photos
 
     
Vider la liste des messages à citer
 
 Page :
1
Auteur
 Sujet :

Rapport Hijackthis

Prévenir les modérateurs en cas d'abus 
Vernst
vernst
Présent de temps en temps (De 50 à 99 messages postés)
  1. Posté le 13/11/2011 à 01:16:22  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Bonsoir, je me permet de publier mon rapport HijackThis, quelqu'un peut t-il me dire, s'il y'a des anomalies dans le résultat? Merci !


 Logfile of Trend Micro HijackThis v2.0.2
 Scan saved at 01:04:38, on 13/11/2011
 Platform: Windows Vista SP1 (WinNT 6.00.1905)
 MSIE: Internet Explorer v8.00 (8.00.6001.19088)
 Boot mode: Normal

 Running processes:
 C:\Windows\system32\Dwm.exe
 c:\Program Files\Hewlett-Packard\IAM\Bin\​AsGHost.exe
 C:\Windows\Explorer.EXE
 C:\Program Files\Windows Defender\MSASCui.exe
 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
 C:\Program Files\ActivIdentity\ActivClien​t\accrdsub.exe
 C:\Program Files\Analog Devices\Core\smax4pnp.exe
 C:\Program Files\Winamp\winampa.exe
 C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
 C:\Program Files\Windows Sidebar\sidebar.exe
 C:\Windows\ehome\ehtray.exe
 C:\Program Files\Analog Devices\SoundMAX\SoundMAX.exe
 C:\Program Files\Internet Download Manager\IDMan.exe
 C:\Program Files\RocketDock\RocketDock.ex​e
 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
 C:\Program Files\BitTorrent\bittorrent.ex​e
 C:\Program Files\DAEMON Tools Pro\DTAgent.exe
 C:\Program Files\Skype\Phone\Skype.exe
 C:\Program Files\Windows Media Player\wmpnscfg.exe
 C:\Windows\system32\taskeng.ex​e
 C:\Windows\ehome\ehmsas.exe
 C:\Program Files\ATI Technologies\ATI.ACE\Core-Stat​ic\MOM.exe
 C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\VolCtrl.exe
 c:\Program Files\ActivIdentity\ActivClien​t\acevents.exe
 C:\Program Files\Internet Download Manager\IEMonitor.exe
 C:\Program Files\ATI Technologies\ATI.ACE\Core-Stat​ic\CCC.exe
 C:\Windows\System32\mobsync.ex​e
 C:\Program Files\Hewlett-Packard\HP wireless Assistant\WiFiMsg.EXE
 C:\Program Files\Windows Live\Contacts\wlcomm.exe
 C:\Windows\system32\wbem\unsec​app.exe
 C:\Users\Yanis\AppData\Local\G​oogle\Chrome\Application\chrom​e.exe
 C:\Users\Yanis\AppData\Local\G​oogle\Chrome\Application\chrom​e.exe
 C:\Users\Yanis\AppData\Local\G​oogle\Chrome\Application\chrom​e.exe
 C:\Users\Yanis\AppData\Local\G​oogle\Chrome\Application\chrom​e.exe
 C:\Users\Yanis\AppData\Local\G​oogle\Chrome\Application\chrom​e.exe
 C:\Users\Yanis\AppData\Local\G​oogle\Chrome\Application\chrom​e.exe
 C:\Users\Yanis\AppData\Local\G​oogle\Chrome\Application\chrom​e.exe
 C:\Users\Yanis\AppData\Local\G​oogle\Chrome\Application\chrom​e.exe
 C:\Users\Yanis\AppData\Local\G​oogle\Chrome\Application\chrom​e.exe
 C:\Windows\system32\rundll32.e​xe
 C:\Users\Yanis\AppData\Local\G​oogle\Chrome\Application\chrom​e.exe
 C:\Windows\system32\wuauclt.ex​e
 C:\Users\Yanis\AppData\Local\G​oogle\Chrome\Application\chrom​e.exe
 C:\Users\Yanis\AppData\Local\G​oogle\Chrome\Application\chrom​e.exe
 C:\Users\Yanis\AppData\Local\G​oogle\Chrome\Application\chrom​e.exe
 C:\Users\Yanis\AppData\Local\G​oogle\Chrome\Application\chrom​e.exe
 C:\Users\Yanis\AppData\Local\G​oogle\Chrome\Application\chrom​e.exe
 C:\Users\Yanis\AppData\Local\G​oogle\Chrome\Application\chrom​e.exe
 C:\Users\Yanis\AppData\Local\G​oogle\Chrome\Application\chrom​e.exe
 C:\Users\Yanis\AppData\Local\G​oogle\Chrome\Application\chrom​e.exe
 C:\Users\Yanis\Downloads\HiJac​kThis.exe

 R1 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
 R1 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Search Bar = http://g.msn.fr/0SEFRFR/SAOS02
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://startsear.ch/?aff=1
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
 R1 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://startsear.ch/?aff=1
 R1 - HKCU\Software\Microsoft\Window​s\CurrentVersion\Internet Settings,ProxyOverride = local
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Toolbar,LinksFolderNa​me =
 R3 - URLSearchHook: douniamusic.com Toolbar - {fa4acd63-fdbf-4ee2-85e1-cad95​e77cdf0} - C:\Program Files\douniamusic.com\prxtbdou​n.dll
 R3 - URLSearchHook: (no name) - {ef79f67a-6ad7-4715-a0f8-932fc​a442023} - (no file)
 R3 - URLSearchHook: (no name) - {4daac69c-cba7-45e2-9bc8-10444​83d3352} - (no file)
 O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B45​8C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
 O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578​C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\Ac​roIEHelperShim.dll
 O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA​6BD249D} - C:\Program Files\ConduitEngine\prxConduit​Engine.dll
 O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-51647​60863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
 O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F78​51A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
 O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C​1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
 O2 - BHO: Credential Manager for HP ProtectTools - {DF21F1DB-80C6-11D3-9483-B03D0​EC10000} - c:\Program Files\Hewlett-Packard\IAM\Bin\​ItIEAddIn.dll
 O2 - BHO: douniamusic.com - {fa4acd63-fdbf-4ee2-85e1-cad95​e77cdf0} - C:\Program Files\douniamusic.com\prxtbdou​n.dll
 O3 - Toolbar: douniamusic.com Toolbar - {fa4acd63-fdbf-4ee2-85e1-cad95​e77cdf0} - C:\Program Files\douniamusic.com\prxtbdou​n.dll
 O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA​6BD249D} - C:\Program Files\ConduitEngine\prxConduit​Engine.dll
 O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
 O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
 O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
 O4 - HKLM\..\Run: [accrdsub] "c:\Program Files\ActivIdentity\ActivClien​t\accrdsub.exe"
 O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
 O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Stat​ic\CLIStart.exe"
 O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
 O4 - HKLM\..\Run: [NotebookHardwareControl] "C:\Program Files\Notebook Hardware Control\nhc.exe" -quiet
 O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
 O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.e​xe"
 O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
 O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
 O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
 O4 - HKCU\..\Run: [SoundMax] "C:\Program Files\Analog Devices\SoundMAX\SoundMAX.exe" /tray
 O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
 O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.ex​e"
 O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
 O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\BitTorrent.ex​e"
 O4 - HKCU\..\Run: [Google Update] "C:\Users\Yanis\AppData\Local\​Google\Update\GoogleUpdate.exe​" /c
 O4 - HKCU\..\Run: [PCSpeedUp] C:\Program Files\Accelerer PC\PCSpeedUp.lnk
 O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files\DAEMON Tools Pro\DTAgent.exe" -autorun
 O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
 O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
 O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFF​ICE11\EXCEL.EXE/3000
 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Off​ice12\EXCEL.EXE/3000
 O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
 O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
 O8 - Extra context menu item: Liens de téléchargement avec Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm
 O8 - Extra context menu item: Télécharger avec IDM - C:\Program Files\Internet Download Manager\IEExt.htm
 O8 - Extra context menu item: Télécharger le contenu de video FLV avec IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
 O8 - Extra context menu item: Télécharger tous les liens avec IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
 O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCD​DC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExten​sion.dll
 O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCD​DC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExten​sion.dll
 O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46​303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
 O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46​303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
 O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C5​71A8263} - C:\PROGRA~1\MICROS~2\Office12\​REFIEBAR.DLL
 O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4​460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
 O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4​460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
 O16 - DPF: {0CCA191D-13A6-4E29-B746-314DE​E697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/con [...] oader5.cab
 O16 - DPF: {5D6F45B3-9043-443D-A792-11544​7494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/ [...] E_UNO1.cab
 O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F2​1721616} (DivXBrowserPlugin Object) - http://download.divx.com/playe [...] Plugin.cab
 O16 - DPF: {78ABDC59-D8E7-44D3-9A76-9A091​8C52B4A} (DLoader Class) - http://dl.uc.sina.com/cab/downloader.cab
 O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE​305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/con [...] ader55.cab
 O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46​475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/ [...] b56907.cab
 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-44455​3540000} (Shockwave Flash Object) - http://fpdownload2.macromedia. [...] wflash.cab
 O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617​B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
 O20 - AppInit_DLLs: c:\progra~1\wi9130~1\datamngr\​datamngr.dll c:\windows\system32\apshook.dl​l c:\windows\system32\apshook.dl​l apshook.dll
 O23 - Service: ActivClient Middleware Service (accoca) - ActivIdentity - c:\Program Files\ActivIdentity\ActivClien​t\accoca.exe
 O23 - Service: Andrea ADI Filters Service (AEADIFilters) - Andrea Electronics Corporation - C:\Windows\system32\AEADISRV.E​XE
 O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.e​xe
 O23 - Service: Avira Mail Protection (AntiVirMailService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avmailc.exe
 O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe
 O23 - Service: Avira Realtime Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
 O23 - Service: Avira Web Protection (AntiVirWebService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
 O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceServi​ce.exe
 O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.e​xe
 O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.e​xe
 O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.ex​e
 O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver​.exe
 O23 - Service: Folding@home-CPU-[1] - Unknown owner - C:\Folding@HomeCPU\1\Fah.exe
 O23 - Service: Folding@home-CPU-[2] - Unknown owner - C:\Folding@HomeCPU\2\Fah.exe
 O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpda​te.exe
 O23 - Service: Service Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpda​te.exe
 O23 - Service: HP ProtectTools Service - Hewlett-Packard Development Company, L.P - c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.​exe
 O23 - Service: Drive Encryption Service (HpFkCryptService) - SafeBoot International - c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe
 O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\h​pqwmiex.exe
 O23 - Service: HP Service (hpsrv) - Hewlett-Packard Corporation - C:\Windows\system32\Hpservice.​exe
 O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
 O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
 O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviReg​Mgr.exe
 O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
 O23 - Service: MSSQL$SONY_MEDIAMGR - Unknown owner - C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Bi​nn\sqlservr.exe (file missing)
 O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-2​00 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
 O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.de​s.exe (file missing)
 O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.e​xe
 O23 - Service: SQLAgent$SONY_MEDIAMGR - Unknown owner - C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Bi​nn\sqlagent.EXE (file missing)

 --
 End of file - 14648 bytes

vernst
Présent de temps en temps (De 50 à 99 messages postés)
  1. Posté le 20/11/2011 à 21:04:02  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Super la solidarité  :(

(Publicité)
Imagine ...
Profil : Equipe sécurité
kmisol
Célèbre sur tout le forum (de 30 000 à 99 999 messages postés)
  1. Posté le 21/11/2011 à 21:32:43  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
:hello:

 



je me permet de publier mon rapport HijackThis



 Si toutefois tu reviens faire un tour par ici, ce qui suit est pour toi ...

 http://forum.telecharger.01net [...] ges-1.html

 Qui plus est, cette version de HJT n'a plus cours !

 Page :
1

Aller à :
 

Sujets relatifs
Aide pour analyser mon rapport HiJackThis Rapport RogueKiller [Résolu]
rapprot hijackthis Rapport suppression Toolbars [Résolu]
fenetres intempestives // rapport hijackthis Rapport ADW cleaner pour supprimer searchnu.com/406
Rapport Hijackthis car PC très lent infection search nu. aide sur rapport ZHPDiag
avis sur rapport zhp diag suite a virus smart hdd rapport d'essai AdwCleaner
Plus de sujets relatifs à : Rapport Hijackthis

Les 5 sujets de discussion précédents Nombre de réponses Dernier message
Virus privacy protection et security defender 1
PC infecté :Trojan.generic et+ encore!! 2
Help me, Qui peut m'aider à éliminer Seeearch.com ? ça devient grave sur mon PC 45
Comment Supprimer C:/Drivers/MCDBF/source1/other.exe/bioslock.pif et .exe 1
Ordinateur portable lent 15