salut a tous!
voilà j'ai fait un HijackThis de mon ordi et je souhaiterais savoir si c'est" bon".(avant de venir sur le forum je ne savais meme pas que ça existé,suis content ,je progresse!)
j'utilise mozilla comme navigateur,mais je suis obligé de me connecter avec aol.
je voudrais aussi savoir si je peux laisser passer avec mon firewall:"aolsp scheduler.exe tente d'accéder a internet". car par ignorence je préfère le bloquer. MEEEEERCI!
Logfile of HijackThis v1.98.2
Scan saved at 18:56:25, on 04/01/2005
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
c:Program FilesFichiers communsSymantec SharedccSetMgr.exe
c:Program FilesNorton Personal FirewallNISUM.EXE
c:Program FilesFichiers communsSymantec SharedccEvtMgr.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSSystem32driversCDAC11BA.EXE
c:Program FilesNorton Personal FirewallccPxySvc.exe
c:Program FilesNorton AntiVirus
avapsvc.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSwanmpsvc.exe
C:WINDOWSExplorer.EXE
C:Program FilesJavaj2re1.4.2_03injusched.exe
C:windowssystemhpsysdrv.exe
C:WINDOWSSystem32hkcmd.exe
C:WINDOWSSystem32hphmon05.exe
C:HPKBDKBD.EXE
C:Program FilesFichiers communsSymantec SharedccApp.exe
C:WINDOWSALCXMNTR.EXE
C:PROGRA~1TECHCI~1AOLSAVAOLAgent.exe
C:Program FilesThomsonSpeedTouch USBDragdiag.exe
C:Program FilesScanSoftOmniPageSEopware32.exe
C:Program FilesFichiers communsRealUpdate_OB
ealsched.exe
C:PROGRA~1FICHIE~1AOLAOLSPY~1AOLSP Scheduler.exe
C:PROGRA~1PRESAR~1PresarioXPHWWRP4plugininPCHButton.exe
C:Program FilesAOL 8.0aaoltray.exe
C:Program FilesHPDigital Imaginginhpqtra08.exe
C:WINDOWSFSScrCtl.exe
C:Program FilesAOL 8.0awaol.exe
C:Program FilesAOL 8.0ashellmon.exe
C:Program FilesMozilla Firefoxfirefox.exe
C:Documents and SettingsPropriétaireBureauHijackThis.exe
R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL =
http://qfr10.hpwis.com/
R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL =
http://srch-qfr10.hpwis.com/
R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Bar =
http://srch-qfr10.hpwis.com/
R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page =
http://srch-qfr10.hpwis.com/
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page =
http://www.google.fr/
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL =
http://qfr10.hpwis.com/
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL =
http://srch-qfr10.hpwis.com/
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Bar =
http://srch-qfr10.hpwis.com/
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page =
http://srch-qfr10.hpwis.com/
R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page =
http://qfr10.hpwis.com/
R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:Program FilesAdobeAcrobat 5.0ReaderActiveXAcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:PROGRA~1SPYBOT~1SDHelper.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - c:Program FilesNorton AntiVirusNavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - c:Program FilesNorton AntiVirusNavShExt.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:WINDOWSSystem32msdxm.ocx
O4 - HKLM..Run: [SunJavaUpdateSched] C:Program FilesJavaj2re1.4.2_03injusched.exe
O4 - HKLM..Run: [hpsysdrv] c:windowssystemhpsysdrv.exe
O4 - HKLM..Run: [HotKeysCmds] C:WINDOWSSystem32hkcmd.exe
O4 - HKLM..Run: [HPHUPD05] c:Program FilesHP{45B6180B-DCAB-4093-8EE8-6164457517F0}hphupd05.exe
O4 - HKLM..Run: [HPHmon05] C:WINDOWSSystem32hphmon05.exe
O4 - HKLM..Run: [KBD] C:HPKBDKBD.EXE
O4 - HKLM..Run: [UpdateManager] "C:Program FilesFichiers communsSonicUpdate Managersgtray.exe" /r
O4 - HKLM..Run: [Recguard] C:WINDOWSSMINSTRECGUARD.EXE
O4 - HKLM..Run: [VTTimer] VTTimer.exe
O4 - HKLM..Run: [ccApp] "c:Program FilesFichiers communsSymantec SharedccApp.exe"
O4 - HKLM..Run: [PS2] C:WINDOWSsystem32ps2.exe
O4 - HKLM..Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM..Run: [EPSON Stylus C64 Series] C:WINDOWSSystem32spoolDRIVERSW32X863E_S4I0C2.EXE /P23 "EPSON Stylus C64 Series" /O5 "LPT1:" /M "Stylus C64"
O4 - HKLM..Run: [ccRegVfy] "c:Program FilesFichiers communsSymantec SharedccRegVfy.exe"
O4 - HKLM..Run: [AOLSAV] C:PROGRA~1TECHCI~1AOLSAVAOLAgent.exe
O4 - HKLM..Run: [SpeedTouch USB Diagnostics] "C:Program FilesThomsonSpeedTouch USBDragdiag.exe" /icon
O4 - HKLM..Run: [Omnipage] C:Program FilesScanSoftOmniPageSEopware32.exe
O4 - HKLM..Run: [SSC_UserPrompt] C:Program FilesFichiers communsSymantec SharedSecurity CenterUsrPrmpt.exe
O4 - HKLM..Run: [TkBellExe] "C:Program FilesFichiers communsRealUpdate_OB
ealsched.exe" -osboot
O4 - HKLM..Run: [Symantec NetDriver Monitor] C:PROGRA~1SYMNET~1SNDMon.exe
O4 - HKLM..Run: [AOL Spyware Protection] "C:PROGRA~1FICHIE~1AOLAOLSPY~1AOLSP Scheduler.exe"
O4 - HKCU..Run: [Acme.PCHButton] C:PROGRA~1PRESAR~1PresarioXPHWWRP4plugininPCHButton.exe
O4 - Startup: Screen Saver Control.lnk = C:WINDOWSFSScrCtl.exe
O4 - Global Startup: AOL 8.0 Icône AOL.lnk = C:Program FilesAOL 8.0aaoltray.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:Program FilesHPDigital Imaginginhpqtra08.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:WINDOWSSystem32msjava.dll (file missing)
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:WINDOWSSystem32msjava.dll (file missing)
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:WINDOWSSystem32Shdocvw.dll
O16 - DPF: {0246ECA8-996F-11D1-BE2F-00A0C9037DFE} (TDServer Control) -
http://api.ehmel.hachette-multimedia.fr ... server.cab
O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} (RdxIE Class) -
http://software-dl.real.com/26664f3f7a3 ... xIE601.cab
O16 - DPF: {981D847D-2C06-4FB7-A09C-4F0A48601B2C} (DiagSetup Class) -
http://techcity.aol.fr/download/img/DiagSetup.cab
O17 - HKLMSystemCCSServicesTcpip..{A04C80D9-650B-409D-8BD7-6C52AE0FEF90}: NameServer = 205.188.146.145