Hum...
Donc les navigateurs étaient bien en tort.
Hum... c'est assez particulier comme souci.
Je ne vois pas bien d'où ça pourrait venir, je sèche.
Ces trucs là sont très collants & souvent farcis de spy's.Les fenêtres qui s'ouvre concerne par moment une sorte de scan anti-virus en ligne répondant au nom de "system-doctor"...
Je suppose qu'il vaut mieux s'écarter de ce genre de propositions...
Logfile of Trend Micro HijackThis v2.0.0 (BETA)
Scan saved at 19:19:23, on 03/05/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
Boot mode: Normal
Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32csrss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32Ati2evxx.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:WINDOWSsystem32Ati2evxx.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSsystem32spoolsv.exe
C:WINDOWSExplorer.EXE
C:WINDOWSSkyTel.EXE
C:WINDOWSRTHDCPL.EXE
C:Program FilesEset
od32kui.exe
C:Program FilesCobian Backup 7cobui.exe
C:Program FilesSuperCopier2SuperCopier2.exe
C:PROGRA~1Microsoft ActiveSyncwcescomm.exe
C:Program FilesMessengermsmsgs.exe
C:PROGRA~1Microsoft ActiveSync
apimgr.exe
C:Program FilesGoogleGoogleToolbarNotifier1.2.1128.5462GoogleToolbarNotifier.exe
C:Program FilesLogitechSetPointSetPoint.exe
C:Program FilesFichiers communsLogitechKhalSharedKHALMNPR.EXE
C:WINDOWSSystem32GEARSec.exe
C:Program FilesEset
od32krn.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSsystem32wdfmgr.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32alg.exe
C:Program FilesMSN Messengermsnmsgr.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSexplorer.exe
C:Program FilesMozilla Firefoxfirefox.exe
L:HiJackThis_v2.exe
C:WINDOWSsystem32wbemwmiprvse.exe
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.google.fr/
R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O1 - Hosts: db27.1and1.fr localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:program filesgooglegoogletoolbar2.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:program filesgooglegoogletoolbar2.dll
O4 - HKLM..Run: [SkyTel] SkyTel.EXE
O4 - HKLM..Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM..Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM..Run: [nod32kui] "C:Program FilesEset
od32kui.exe" /WAITSERVICE
O4 - HKLM..Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM..Run: [Cobian Backup 7 Interface] "C:Program FilesCobian Backup 7cobui.exe" -SERVICE
O4 - HKLM..Run: [AtiPTA] atiptaxx.exe
O4 - HKCU..Run: [SuperCopier2.exe] C:Program FilesSuperCopier2SuperCopier2.exe
O4 - HKCU..Run: [H/PC Connection Agent] "C:PROGRA~1Microsoft ActiveSyncwcescomm.exe"
O4 - HKCU..Run: [MessengerPlus3] "C:Program FilesMessengerPlus! 3MsgPlus.exe" /WinStart
O4 - HKCU..Run: [MSMSGS] "C:Program FilesMessengermsmsgs.exe" /background
O4 - HKCU..Run: [procMast] "C:Program FilesProcess MasterprocMast.exe"
O4 - HKCU..Run: [swg] C:Program FilesGoogleGoogleToolbarNotifier1.2.1128.5462GoogleToolbarNotifier.exe
O4 - Global Startup: Logitech SetPoint.lnk = ?
O6 - HKCUSoftwarePoliciesMicrosoftInternet ExplorerControl Panel present
O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - res://C:Program FilesAdobeAcrobat 7.0AcrobatAcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Download with NetPumper - C:Program FilesNetPumperAddUrl.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:PROGRA~1Microsoft OfficeOFFICE11EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavaj2re1.4.2_08in
pjpi142_08.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:Program FilesJavaj2re1.4.2_08in
pjpi142_08.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:PROGRA~1Microsoft ActiveSyncINetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:PROGRA~1Microsoft ActiveSyncINetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:PROGRA~1Microsoft ActiveSyncINetRepl.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:PROGRA~1Microsoft OfficeOFFICE11REFIEBAR.DLL
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:Program FilesPartyGamingPartyPokerRunApp.exe
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:Program FilesPartyGamingPartyPokerRunApp.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%Network Diagnosticxpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%Network Diagnosticxpnetdiag.exe (file missing)
O9 - Extra button: PartyPoker.net - {F4430FE8-2638-42e5-B849-800749B94EED} - C:Program FilesPartyGaming.NetPartyPokerNetRunPF.exe
O9 - Extra 'Tools' menuitem: PartyPoker.net - {F4430FE8-2638-42e5-B849-800749B94EED} - C:Program FilesPartyGaming.NetPartyPokerNetRunPF.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exe
O15 - Trusted Zone: http://support.fujitsu-siemens.fr
O15 - Trusted Zone: http://www.isketch.net
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:WINDOWSsystem32rowseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:WINDOWSsystem32rowseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:WINDOWSsystem32Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:WINDOWSsystem32ati2sgag.exe (file missing)
O23 - Service: Cobian Backup 7 service (CobBackup7) - Luis Cobian - C:Program FilesCobian Backup 7cbs.exe
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:WINDOWSSystem32dmadmin.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:WINDOWSsystem32services.exe
O23 - Service: GEARSecurity - GEAR Software - C:WINDOWSSystem32GEARSec.exe
O23 - Service: DDE réseau (NetDDE) - Unknown owner - C:WINDOWSsystem32
etdde.exe
O23 - Service: DSDM DDE réseau (NetDDEdsdm) - Unknown owner - C:WINDOWSsystem32
etdde.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:Program FilesEset
od32krn.exe
O23 - Service: Norton Ghost - Symantec Corporation - C:Program FilesSymantecNorton GhostAgentPQV2iSvc.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:WINDOWSsystem32services.exe
O23 - Service: Pml Driver HPZ12 - HP - C:WINDOWSsystem32HPZipm12.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:WINDOWSsystem32sessmgr.exe
O23 - Service: SF FrontLine Drivers Auto Removal (v1) (sfrem01) - Protection Technology (StarForce) - C:WINDOWSsystem32sfrem01.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:WINDOWSsystem32smlogsvc.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:WINDOWSSystem32vssvc.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:WINDOWSsystem32wbemwmiapsrv.exe
--
End of file - 7834 bytes
Utilisateurs parcourant ce forum: Majestic-12 [Bot] et 12 invités
.: Nous contacter :: Flux RSS :: Données personnelles :. |