Dés que je connecte des fenêtres pub m'agressent. J'ai fait un scan avec
hijackthis. Merci de bien vouloir me conseiller.
Logfile of HijackThis v1.99.1
Scan saved at 19:54:53, on 03/06/2007
Platform: Unknown Windows (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16386)
Running processes:
C:Windowssystem32Dwm.exe
C:Windowssystem32taskeng.exe
C:WindowsExplorer.EXE
C:Program FilesWindows DefenderMSASCui.exe
C:WindowsRtHDVCpl.exe
C:Program FilesMotorolaSMSERIALsm56hlpr.exe
C:Program FilesASUSATK MediaDMedia.exe
C:WindowsSystem32ASUSTPE.exe
C:Program FilesSynapticsSynTPSynTPEnh.exe
C:WindowsASScrPro.exe
C:Program FilesAlwil SoftwareAvast4ashDisp.exe
C:Program FilesLexmarkX84-X85AcBtnMgr_X84-X85.exe
C:Program FilesWindows Sidebarsidebar.exe
C:Windowsehomeehtray.exe
C:Program FilesOpenOffice.org 2.2programsoffice.exe
C:Program FilesOpenOffice.org 2.2programsoffice.BIN
C:Program FilesATI TechnologiesATI.ACECore-StaticMOM.EXE
C:Windowsehomeehmsas.exe
C:Program FilesWindows Sidebarsidebar.exe
C:Program FilesATI TechnologiesATI.ACECore-StaticCCC.exe
C:Windowssystem32wbemunsecapp.exe
C:Program FilesInternet Exploreriexplore.exe
C:Program FilesGoogleGoogle UpdaterGoogleUpdater.exe
C:Program FilesInternet ExplorerIEUser.exe
C:Program FilesInternet Exploreriexplore.exe
C:UsersUserAppDataLocalTempTemp1_hijackthis.zipHijackThis.exe
R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page > http://go.microsoft.com/fwlink/?LinkIdT896
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page > http://www.google.fr/
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL > http://www.asus.com
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL > http://go.microsoft.com/fwlink/?LinkIdT896
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page > http://go.microsoft.com/fwlink/?LinkIdT896
R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page > http://go.microsoft.com/fwlink/?LinkIdi157
R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant > R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch > R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName > O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -
C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} -
C:PROGRA~1SPYBOT~1SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} -
c:program filesgooglegoogletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO -
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:Program
FilesGoogleGoogleToolbarNotifier2.0.301.5672swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} -
c:program
filesgooglegoogletoolbar1.dll
O4 - HKLM..Run: [Windows Defender] %ProgramFiles%Windows
DefenderMSASCui.exe -hide
O4 - HKLM..Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM..Run: [SMSERIAL] C:Program
FilesMotorolaSMSERIALsm56hlpr.exe
O4 - HKLM..Run: [ATKMEDIA] C:Program FilesASUSATK MediaDMEDIA.EXE
O4 - HKLM..Run: [ASUSTPE] C:Windowssystem32ASUSTPE.exe
O4 - HKLM..Run: [SynTPEnh] C:Program FilesSynapticsSynTPSynTPEnh.exe
O4 - HKLM..Run: [ASUS Camera ScreenSaver] C:WindowsASScrProlog.exe
O4 - HKLM..Run: [ASUS Screen Saver Protector] C:WindowsASScrPro.exe
O4 - HKLM..Run: [avast!] C:PROGRA~1ALWILS~1Avast4ashDisp.exe
O4 - HKLM..Run: [NeroFilterCheck] C:Program FilesCommon
FilesAheadLibNeroCheck.exe
O4 - HKLM..Run: [Lexmark X84-X85 Button Monitor]
C:PROGRA~1LEXMAR~1ACMonitor_X84-X85.exe
O4 - HKLM..Run: [Lexmark X84-X85 Button Manager]
C:PROGRA~1LEXMAR~1AcBtnMgr_X84-X85.exe
O4 - HKLM..Run: [PrinTray]
C:Windowssystem32spoolDRIVERSW32X863printray.exe
O4 - HKCU..Run: [Sidebar] C:Program FilesWindows Sidebarsidebar.exe
/autoRun
O4 - HKCU..Run: [StartCCC] C:Program FilesATI
TechnologiesATI.ACECore-StaticCLIStart.exe
O4 - HKCU..Run: [swg] C:Program
FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
O4 - HKCU..Run: [ehTray.exe] C:WindowsehomeehTray.exe
O4 - Startup: OpenOffice.org 2.2.lnk = C:Program FilesOpenOffice.org
2.2programquickstart.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:Program
FilesAdobeAcrobat 7.0Readerreader_sl.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:Program
FilesGoogleGoogle UpdaterGoogleUpdater.exe
O10 - Unknown file in Winsock LSP: c:windowssystem32nlaapi.dll
O10 - Unknown file in Winsock LSP: c:windowssystem32napinsp.dll
O11 - Options group: [INTERNATIONAL] International*
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash
Object) -
http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} -
C:PROGRA~1MSNMES~1MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} -
C:PROGRA~1MSNMES~1MSGRAP~1.DLL
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:Program
FilesATK HotkeyASLDRSrv.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software -
C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. -
C:Windowssystem32Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:Program FilesAlwil
SoftwareAvast4ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:Program
FilesAlwil
SoftwareAvast4ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:Program FilesAlwil
SoftwareAvast4ashWebSv.exe" /service (file missing)
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown
owner - C:Program FilesCommon FilesSymantec SharedccSvcHst.exe" /h
ccCommon (file missing)
O23 - Service: @%SystemRoot%ehomeehstart.dll,-101 (ehstart) - Unknown
owner - %windir%system32svchost.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:Program
FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service
(LightScribeService) - Hewlett-Packard Company - C:Program FilesCommon
FilesLightScribeLSSrvc.exe
O23 - Service: NBService - Nero AG - C:Program FilesNeroNero 7Nero
BackItUpNBService.exe
O23 - Service: NMIndexingService - Nero AG - C:Program FilesCommon
FilesAheadLibNMIndexingService.exe
O23 - Service: @%SystemRoot%system32qwave.dll,-1 (QWAVE) - Unknown
owner -
%windir%system32svchost.exe (file missing)
O23 - Service: @%SystemRoot%system32seclogon.dll,-7001 (seclogon) -
Unknown owner - %windir%system32svchost.exe (file missing)
O23 - Service: spmgr - Unknown owner - C:Program FilesASUSNB
ProbeSPMspmgr.exe
O23 - Service: Syntek AVStream USB2.0 WebCam Service (StkSSrv) - Syntek
America Inc. - C:WindowsSystem32StkCSrv.exe
O23 - Service: @%ProgramFiles%Windows Media Playerwmpnetwk.exe,-101
(WMPNetworkSvc) - Unknown owner - %ProgramFiles%Windows Media
Playerwmpnetwk.exe (file missing)
--
Séb
Dés que je connecte des fenêtres pub m'agressent. J'ai fait un scan avec
hijackthis. Merci de bien vouloir me conseiller.
Logfile of HijackThis v1.99.1
Scan saved at 19:54:53, on 03/06/2007
Platform: Unknown Windows (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16386)
Running processes:
C:Windowssystem32Dwm.exe
C:Windowssystem32taskeng.exe
C:WindowsExplorer.EXE
C:Program FilesWindows DefenderMSASCui.exe
C:WindowsRtHDVCpl.exe
C:Program FilesMotorolaSMSERIALsm56hlpr.exe
C:Program FilesASUSATK MediaDMedia.exe
C:WindowsSystem32ASUSTPE.exe
C:Program FilesSynapticsSynTPSynTPEnh.exe
C:WindowsASScrPro.exe
C:Program FilesAlwil SoftwareAvast4ashDisp.exe
C:Program FilesLexmarkX84-X85AcBtnMgr_X84-X85.exe
C:Program FilesWindows Sidebarsidebar.exe
C:Windowsehomeehtray.exe
C:Program FilesOpenOffice.org 2.2programsoffice.exe
C:Program FilesOpenOffice.org 2.2programsoffice.BIN
C:Program FilesATI TechnologiesATI.ACECore-StaticMOM.EXE
C:Windowsehomeehmsas.exe
C:Program FilesWindows Sidebarsidebar.exe
C:Program FilesATI TechnologiesATI.ACECore-StaticCCC.exe
C:Windowssystem32wbemunsecapp.exe
C:Program FilesInternet Exploreriexplore.exe
C:Program FilesGoogleGoogle UpdaterGoogleUpdater.exe
C:Program FilesInternet ExplorerIEUser.exe
C:Program FilesInternet Exploreriexplore.exe
C:UsersUserAppDataLocalTempTemp1_hijackthis.zipHijackThis.exe
R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page > http://go.microsoft.com/fwlink/?LinkIdT896
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page > http://www.google.fr/
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL > http://www.asus.com
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL > http://go.microsoft.com/fwlink/?LinkIdT896
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page > http://go.microsoft.com/fwlink/?LinkIdT896
R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page > http://go.microsoft.com/fwlink/?LinkIdi157
R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant > R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch > R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName > O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -
C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} -
C:PROGRA~1SPYBOT~1SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} -
c:program filesgooglegoogletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO -
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:Program
FilesGoogleGoogleToolbarNotifier2.0.301.5672swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} -
c:program
filesgooglegoogletoolbar1.dll
O4 - HKLM..Run: [Windows Defender] %ProgramFiles%Windows
DefenderMSASCui.exe -hide
O4 - HKLM..Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM..Run: [SMSERIAL] C:Program
FilesMotorolaSMSERIALsm56hlpr.exe
O4 - HKLM..Run: [ATKMEDIA] C:Program FilesASUSATK MediaDMEDIA.EXE
O4 - HKLM..Run: [ASUSTPE] C:Windowssystem32ASUSTPE.exe
O4 - HKLM..Run: [SynTPEnh] C:Program FilesSynapticsSynTPSynTPEnh.exe
O4 - HKLM..Run: [ASUS Camera ScreenSaver] C:WindowsASScrProlog.exe
O4 - HKLM..Run: [ASUS Screen Saver Protector] C:WindowsASScrPro.exe
O4 - HKLM..Run: [avast!] C:PROGRA~1ALWILS~1Avast4ashDisp.exe
O4 - HKLM..Run: [NeroFilterCheck] C:Program FilesCommon
FilesAheadLibNeroCheck.exe
O4 - HKLM..Run: [Lexmark X84-X85 Button Monitor]
C:PROGRA~1LEXMAR~1ACMonitor_X84-X85.exe
O4 - HKLM..Run: [Lexmark X84-X85 Button Manager]
C:PROGRA~1LEXMAR~1AcBtnMgr_X84-X85.exe
O4 - HKLM..Run: [PrinTray]
C:Windowssystem32spoolDRIVERSW32X863printray.exe
O4 - HKCU..Run: [Sidebar] C:Program FilesWindows Sidebarsidebar.exe
/autoRun
O4 - HKCU..Run: [StartCCC] C:Program FilesATI
TechnologiesATI.ACECore-StaticCLIStart.exe
O4 - HKCU..Run: [swg] C:Program
FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
O4 - HKCU..Run: [ehTray.exe] C:WindowsehomeehTray.exe
O4 - Startup: OpenOffice.org 2.2.lnk = C:Program FilesOpenOffice.org
2.2programquickstart.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:Program
FilesAdobeAcrobat 7.0Readerreader_sl.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:Program
FilesGoogleGoogle UpdaterGoogleUpdater.exe
O10 - Unknown file in Winsock LSP: c:windowssystem32nlaapi.dll
O10 - Unknown file in Winsock LSP: c:windowssystem32napinsp.dll
O11 - Options group: [INTERNATIONAL] International*
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash
Object) -
http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} -
C:PROGRA~1MSNMES~1MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} -
C:PROGRA~1MSNMES~1MSGRAP~1.DLL
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:Program
FilesATK HotkeyASLDRSrv.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software -
C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. -
C:Windowssystem32Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:Program FilesAlwil
SoftwareAvast4ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:Program
FilesAlwil
SoftwareAvast4ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:Program FilesAlwil
SoftwareAvast4ashWebSv.exe" /service (file missing)
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown
owner - C:Program FilesCommon FilesSymantec SharedccSvcHst.exe" /h
ccCommon (file missing)
O23 - Service: @%SystemRoot%ehomeehstart.dll,-101 (ehstart) - Unknown
owner - %windir%system32svchost.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:Program
FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service
(LightScribeService) - Hewlett-Packard Company - C:Program FilesCommon
FilesLightScribeLSSrvc.exe
O23 - Service: NBService - Nero AG - C:Program FilesNeroNero 7Nero
BackItUpNBService.exe
O23 - Service: NMIndexingService - Nero AG - C:Program FilesCommon
FilesAheadLibNMIndexingService.exe
O23 - Service: @%SystemRoot%system32qwave.dll,-1 (QWAVE) - Unknown
owner -
%windir%system32svchost.exe (file missing)
O23 - Service: @%SystemRoot%system32seclogon.dll,-7001 (seclogon) -
Unknown owner - %windir%system32svchost.exe (file missing)
O23 - Service: spmgr - Unknown owner - C:Program FilesASUSNB
ProbeSPMspmgr.exe
O23 - Service: Syntek AVStream USB2.0 WebCam Service (StkSSrv) - Syntek
America Inc. - C:WindowsSystem32StkCSrv.exe
O23 - Service: @%ProgramFiles%Windows Media Playerwmpnetwk.exe,-101
(WMPNetworkSvc) - Unknown owner - %ProgramFiles%Windows Media
Playerwmpnetwk.exe (file missing)
--
Séb
Dés que je connecte des fenêtres pub m'agressent. J'ai fait un scan avec
hijackthis. Merci de bien vouloir me conseiller.
Logfile of HijackThis v1.99.1
Scan saved at 19:54:53, on 03/06/2007
Platform: Unknown Windows (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16386)
Running processes:
C:Windowssystem32Dwm.exe
C:Windowssystem32taskeng.exe
C:WindowsExplorer.EXE
C:Program FilesWindows DefenderMSASCui.exe
C:WindowsRtHDVCpl.exe
C:Program FilesMotorolaSMSERIALsm56hlpr.exe
C:Program FilesASUSATK MediaDMedia.exe
C:WindowsSystem32ASUSTPE.exe
C:Program FilesSynapticsSynTPSynTPEnh.exe
C:WindowsASScrPro.exe
C:Program FilesAlwil SoftwareAvast4ashDisp.exe
C:Program FilesLexmarkX84-X85AcBtnMgr_X84-X85.exe
C:Program FilesWindows Sidebarsidebar.exe
C:Windowsehomeehtray.exe
C:Program FilesOpenOffice.org 2.2programsoffice.exe
C:Program FilesOpenOffice.org 2.2programsoffice.BIN
C:Program FilesATI TechnologiesATI.ACECore-StaticMOM.EXE
C:Windowsehomeehmsas.exe
C:Program FilesWindows Sidebarsidebar.exe
C:Program FilesATI TechnologiesATI.ACECore-StaticCCC.exe
C:Windowssystem32wbemunsecapp.exe
C:Program FilesInternet Exploreriexplore.exe
C:Program FilesGoogleGoogle UpdaterGoogleUpdater.exe
C:Program FilesInternet ExplorerIEUser.exe
C:Program FilesInternet Exploreriexplore.exe
C:UsersUserAppDataLocalTempTemp1_hijackthis.zipHijackThis.exe
R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page > http://go.microsoft.com/fwlink/?LinkIdT896
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page > http://www.google.fr/
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL > http://www.asus.com
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL > http://go.microsoft.com/fwlink/?LinkIdT896
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page > http://go.microsoft.com/fwlink/?LinkIdT896
R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page > http://go.microsoft.com/fwlink/?LinkIdi157
R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant > R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch > R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName > O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -
C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} -
C:PROGRA~1SPYBOT~1SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} -
c:program filesgooglegoogletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO -
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:Program
FilesGoogleGoogleToolbarNotifier2.0.301.5672swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} -
c:program
filesgooglegoogletoolbar1.dll
O4 - HKLM..Run: [Windows Defender] %ProgramFiles%Windows
DefenderMSASCui.exe -hide
O4 - HKLM..Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM..Run: [SMSERIAL] C:Program
FilesMotorolaSMSERIALsm56hlpr.exe
O4 - HKLM..Run: [ATKMEDIA] C:Program FilesASUSATK MediaDMEDIA.EXE
O4 - HKLM..Run: [ASUSTPE] C:Windowssystem32ASUSTPE.exe
O4 - HKLM..Run: [SynTPEnh] C:Program FilesSynapticsSynTPSynTPEnh.exe
O4 - HKLM..Run: [ASUS Camera ScreenSaver] C:WindowsASScrProlog.exe
O4 - HKLM..Run: [ASUS Screen Saver Protector] C:WindowsASScrPro.exe
O4 - HKLM..Run: [avast!] C:PROGRA~1ALWILS~1Avast4ashDisp.exe
O4 - HKLM..Run: [NeroFilterCheck] C:Program FilesCommon
FilesAheadLibNeroCheck.exe
O4 - HKLM..Run: [Lexmark X84-X85 Button Monitor]
C:PROGRA~1LEXMAR~1ACMonitor_X84-X85.exe
O4 - HKLM..Run: [Lexmark X84-X85 Button Manager]
C:PROGRA~1LEXMAR~1AcBtnMgr_X84-X85.exe
O4 - HKLM..Run: [PrinTray]
C:Windowssystem32spoolDRIVERSW32X863printray.exe
O4 - HKCU..Run: [Sidebar] C:Program FilesWindows Sidebarsidebar.exe
/autoRun
O4 - HKCU..Run: [StartCCC] C:Program FilesATI
TechnologiesATI.ACECore-StaticCLIStart.exe
O4 - HKCU..Run: [swg] C:Program
FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
O4 - HKCU..Run: [ehTray.exe] C:WindowsehomeehTray.exe
O4 - Startup: OpenOffice.org 2.2.lnk = C:Program FilesOpenOffice.org
2.2programquickstart.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:Program
FilesAdobeAcrobat 7.0Readerreader_sl.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:Program
FilesGoogleGoogle UpdaterGoogleUpdater.exe
O10 - Unknown file in Winsock LSP: c:windowssystem32nlaapi.dll
O10 - Unknown file in Winsock LSP: c:windowssystem32napinsp.dll
O11 - Options group: [INTERNATIONAL] International*
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash
Object) -
http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} -
C:PROGRA~1MSNMES~1MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} -
C:PROGRA~1MSNMES~1MSGRAP~1.DLL
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:Program
FilesATK HotkeyASLDRSrv.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software -
C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. -
C:Windowssystem32Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:Program FilesAlwil
SoftwareAvast4ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:Program
FilesAlwil
SoftwareAvast4ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:Program FilesAlwil
SoftwareAvast4ashWebSv.exe" /service (file missing)
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown
owner - C:Program FilesCommon FilesSymantec SharedccSvcHst.exe" /h
ccCommon (file missing)
O23 - Service: @%SystemRoot%ehomeehstart.dll,-101 (ehstart) - Unknown
owner - %windir%system32svchost.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:Program
FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service
(LightScribeService) - Hewlett-Packard Company - C:Program FilesCommon
FilesLightScribeLSSrvc.exe
O23 - Service: NBService - Nero AG - C:Program FilesNeroNero 7Nero
BackItUpNBService.exe
O23 - Service: NMIndexingService - Nero AG - C:Program FilesCommon
FilesAheadLibNMIndexingService.exe
O23 - Service: @%SystemRoot%system32qwave.dll,-1 (QWAVE) - Unknown
owner -
%windir%system32svchost.exe (file missing)
O23 - Service: @%SystemRoot%system32seclogon.dll,-7001 (seclogon) -
Unknown owner - %windir%system32svchost.exe (file missing)
O23 - Service: spmgr - Unknown owner - C:Program FilesASUSNB
ProbeSPMspmgr.exe
O23 - Service: Syntek AVStream USB2.0 WebCam Service (StkSSrv) - Syntek
America Inc. - C:WindowsSystem32StkCSrv.exe
O23 - Service: @%ProgramFiles%Windows Media Playerwmpnetwk.exe,-101
(WMPNetworkSvc) - Unknown owner - %ProgramFiles%Windows Media
Playerwmpnetwk.exe (file missing)
--
Séb
"Manzoni Sébastien" a écrit dans
le message de news:Dés que je connecte des fenêtres pub m'agressent. J'ai fait un scan avec
hijackthis. Merci de bien vouloir me conseiller.
Logfile of HijackThis v1.99.1
Scan saved at 19:54:53, on 03/06/2007
Platform: Unknown Windows (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16386)
Running processes:
C:Windowssystem32Dwm.exe
C:Windowssystem32taskeng.exe
C:WindowsExplorer.EXE
C:Program FilesWindows DefenderMSASCui.exe
C:WindowsRtHDVCpl.exe
C:Program FilesMotorolaSMSERIALsm56hlpr.exe
C:Program FilesASUSATK MediaDMedia.exe
C:WindowsSystem32ASUSTPE.exe
C:Program FilesSynapticsSynTPSynTPEnh.exe
C:WindowsASScrPro.exe
C:Program FilesAlwil SoftwareAvast4ashDisp.exe
C:Program FilesLexmarkX84-X85AcBtnMgr_X84-X85.exe
C:Program FilesWindows Sidebarsidebar.exe
C:Windowsehomeehtray.exe
C:Program FilesOpenOffice.org 2.2programsoffice.exe
C:Program FilesOpenOffice.org 2.2programsoffice.BIN
C:Program FilesATI TechnologiesATI.ACECore-StaticMOM.EXE
C:Windowsehomeehmsas.exe
C:Program FilesWindows Sidebarsidebar.exe
C:Program FilesATI TechnologiesATI.ACECore-StaticCCC.exe
C:Windowssystem32wbemunsecapp.exe
C:Program FilesInternet Exploreriexplore.exe
C:Program FilesGoogleGoogle UpdaterGoogleUpdater.exe
C:Program FilesInternet ExplorerIEUser.exe
C:Program FilesInternet Exploreriexplore.exe
C:UsersUserAppDataLocalTempTemp1_hijackthis.zipHijackThis.exe
R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page > > http://go.microsoft.com/fwlink/?LinkIdT896
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page > > http://www.google.fr/
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL > > http://www.asus.com
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL > > http://go.microsoft.com/fwlink/?LinkIdT896
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page > > http://go.microsoft.com/fwlink/?LinkIdT896
R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page > > http://go.microsoft.com/fwlink/?LinkIdi157
R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant > > R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch > > R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName > > O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -
C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} -
C:PROGRA~1SPYBOT~1SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} -
c:program filesgooglegoogletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO -
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:Program
FilesGoogleGoogleToolbarNotifier2.0.301.5672swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} -
c:program
filesgooglegoogletoolbar1.dll
O4 - HKLM..Run: [Windows Defender] %ProgramFiles%Windows
DefenderMSASCui.exe -hide
O4 - HKLM..Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM..Run: [SMSERIAL] C:Program
FilesMotorolaSMSERIALsm56hlpr.exe
O4 - HKLM..Run: [ATKMEDIA] C:Program FilesASUSATK MediaDMEDIA.EXE
O4 - HKLM..Run: [ASUSTPE] C:Windowssystem32ASUSTPE.exe
O4 - HKLM..Run: [SynTPEnh] C:Program FilesSynapticsSynTPSynTPEnh.exe
O4 - HKLM..Run: [ASUS Camera ScreenSaver] C:WindowsASScrProlog.exe
O4 - HKLM..Run: [ASUS Screen Saver Protector] C:WindowsASScrPro.exe
O4 - HKLM..Run: [avast!] C:PROGRA~1ALWILS~1Avast4ashDisp.exe
O4 - HKLM..Run: [NeroFilterCheck] C:Program FilesCommon
FilesAheadLibNeroCheck.exe
O4 - HKLM..Run: [Lexmark X84-X85 Button Monitor]
C:PROGRA~1LEXMAR~1ACMonitor_X84-X85.exe
O4 - HKLM..Run: [Lexmark X84-X85 Button Manager]
C:PROGRA~1LEXMAR~1AcBtnMgr_X84-X85.exe
O4 - HKLM..Run: [PrinTray]
C:Windowssystem32spoolDRIVERSW32X863printray.exe
O4 - HKCU..Run: [Sidebar] C:Program FilesWindows Sidebarsidebar.exe
/autoRun
O4 - HKCU..Run: [StartCCC] C:Program FilesATI
TechnologiesATI.ACECore-StaticCLIStart.exe
O4 - HKCU..Run: [swg] C:Program
FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
O4 - HKCU..Run: [ehTray.exe] C:WindowsehomeehTray.exe
O4 - Startup: OpenOffice.org 2.2.lnk = C:Program FilesOpenOffice.org
2.2programquickstart.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:Program
FilesAdobeAcrobat 7.0Readerreader_sl.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:Program
FilesGoogleGoogle UpdaterGoogleUpdater.exe
O10 - Unknown file in Winsock LSP: c:windowssystem32nlaapi.dll
O10 - Unknown file in Winsock LSP: c:windowssystem32napinsp.dll
O11 - Options group: [INTERNATIONAL] International*
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash
Object) -
http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} -
C:PROGRA~1MSNMES~1MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} -
C:PROGRA~1MSNMES~1MSGRAP~1.DLL
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:Program
FilesATK HotkeyASLDRSrv.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software -
C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. -
C:Windowssystem32Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:Program FilesAlwil
SoftwareAvast4ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:Program
FilesAlwil
SoftwareAvast4ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:Program FilesAlwil
SoftwareAvast4ashWebSv.exe" /service (file missing)
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown
owner - C:Program FilesCommon FilesSymantec SharedccSvcHst.exe" /h
ccCommon (file missing)
O23 - Service: @%SystemRoot%ehomeehstart.dll,-101 (ehstart) - Unknown
owner - %windir%system32svchost.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:Program
FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service
(LightScribeService) - Hewlett-Packard Company - C:Program FilesCommon
FilesLightScribeLSSrvc.exe
O23 - Service: NBService - Nero AG - C:Program FilesNeroNero 7Nero
BackItUpNBService.exe
O23 - Service: NMIndexingService - Nero AG - C:Program FilesCommon
FilesAheadLibNMIndexingService.exe
O23 - Service: @%SystemRoot%system32qwave.dll,-1 (QWAVE) - Unknown
owner -
%windir%system32svchost.exe (file missing)
O23 - Service: @%SystemRoot%system32seclogon.dll,-7001 (seclogon) -
Unknown owner - %windir%system32svchost.exe (file missing)
O23 - Service: spmgr - Unknown owner - C:Program FilesASUSNB
ProbeSPMspmgr.exe
O23 - Service: Syntek AVStream USB2.0 WebCam Service (StkSSrv) - Syntek
America Inc. - C:WindowsSystem32StkCSrv.exe
O23 - Service: @%ProgramFiles%Windows Media Playerwmpnetwk.exe,-101
(WMPNetworkSvc) - Unknown owner - %ProgramFiles%Windows Media
Playerwmpnetwk.exe (file missing)
--
Séb
PS : Votre version de hijackthis n'est pas adapté à Windows Vista (il faut
la 2.0, maintenant faites par TrendMicro)
En mode sans échec, supprimez ces lignes :
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} -
c:program filesgooglegoogletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO -
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:Program
FilesGoogleGoogleToolbarNotifier2.0.301.5672swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:program
filesgooglegoogletoolbar1.dll
O4 - HKLM..Run: [NeroFilterCheck] C:Program FilesCommon
FilesAheadLibNeroCheck.exe
O4 - HKCU..Run: [swg] C:Program
FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:Program
FilesGoogleGoogle UpdaterGoogleUpdater.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown
owner - C:Program FilesCommon FilesSymantec SharedccSvcHst.exe" /h
ccCommon (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:Program
FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 - Service: NBService - Nero AG - C:Program FilesNeroNero 7Nero
BackItUpNBService.exe
O23 - Service: NMIndexingService - Nero AG - C:Program FilesCommon
FilesAheadLibNMIndexingService.exe
RIEN ne laisse penser que vous avez un SPYWARE ou autre chose dans ce log,
faites en un avec la nouvelle version du programme.
Par contre, vous avez beaucoup de programme consomateur de resource inutile,
la barre google (inutile avec IE7)
Et l'indexation des fichiers de néro, inutile avec Vista (c'est inclus..
fonction rechercher du menu démarrer)
--
Fabrice
Microsoft MVP
http://www.fab3d.fr.st
Faq Windows XP :
http://a.vouillon.online.fr/faq-winxp.htm
"Manzoni Sébastien" <ManzoniSbastien@discussions.microsoft.com> a écrit dans
le message de news:777350B9-0F2F-45CE-9374-957FAC7DE98C@microsoft.com...
Dés que je connecte des fenêtres pub m'agressent. J'ai fait un scan avec
hijackthis. Merci de bien vouloir me conseiller.
Logfile of HijackThis v1.99.1
Scan saved at 19:54:53, on 03/06/2007
Platform: Unknown Windows (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16386)
Running processes:
C:Windowssystem32Dwm.exe
C:Windowssystem32taskeng.exe
C:WindowsExplorer.EXE
C:Program FilesWindows DefenderMSASCui.exe
C:WindowsRtHDVCpl.exe
C:Program FilesMotorolaSMSERIALsm56hlpr.exe
C:Program FilesASUSATK MediaDMedia.exe
C:WindowsSystem32ASUSTPE.exe
C:Program FilesSynapticsSynTPSynTPEnh.exe
C:WindowsASScrPro.exe
C:Program FilesAlwil SoftwareAvast4ashDisp.exe
C:Program FilesLexmarkX84-X85AcBtnMgr_X84-X85.exe
C:Program FilesWindows Sidebarsidebar.exe
C:Windowsehomeehtray.exe
C:Program FilesOpenOffice.org 2.2programsoffice.exe
C:Program FilesOpenOffice.org 2.2programsoffice.BIN
C:Program FilesATI TechnologiesATI.ACECore-StaticMOM.EXE
C:Windowsehomeehmsas.exe
C:Program FilesWindows Sidebarsidebar.exe
C:Program FilesATI TechnologiesATI.ACECore-StaticCCC.exe
C:Windowssystem32wbemunsecapp.exe
C:Program FilesInternet Exploreriexplore.exe
C:Program FilesGoogleGoogle UpdaterGoogleUpdater.exe
C:Program FilesInternet ExplorerIEUser.exe
C:Program FilesInternet Exploreriexplore.exe
C:UsersUserAppDataLocalTempTemp1_hijackthis.zipHijackThis.exe
R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page > > http://go.microsoft.com/fwlink/?LinkIdT896
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page > > http://www.google.fr/
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL > > http://www.asus.com
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL > > http://go.microsoft.com/fwlink/?LinkIdT896
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page > > http://go.microsoft.com/fwlink/?LinkIdT896
R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page > > http://go.microsoft.com/fwlink/?LinkIdi157
R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant > > R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch > > R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName > > O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -
C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} -
C:PROGRA~1SPYBOT~1SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} -
c:program filesgooglegoogletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO -
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:Program
FilesGoogleGoogleToolbarNotifier2.0.301.5672swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} -
c:program
filesgooglegoogletoolbar1.dll
O4 - HKLM..Run: [Windows Defender] %ProgramFiles%Windows
DefenderMSASCui.exe -hide
O4 - HKLM..Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM..Run: [SMSERIAL] C:Program
FilesMotorolaSMSERIALsm56hlpr.exe
O4 - HKLM..Run: [ATKMEDIA] C:Program FilesASUSATK MediaDMEDIA.EXE
O4 - HKLM..Run: [ASUSTPE] C:Windowssystem32ASUSTPE.exe
O4 - HKLM..Run: [SynTPEnh] C:Program FilesSynapticsSynTPSynTPEnh.exe
O4 - HKLM..Run: [ASUS Camera ScreenSaver] C:WindowsASScrProlog.exe
O4 - HKLM..Run: [ASUS Screen Saver Protector] C:WindowsASScrPro.exe
O4 - HKLM..Run: [avast!] C:PROGRA~1ALWILS~1Avast4ashDisp.exe
O4 - HKLM..Run: [NeroFilterCheck] C:Program FilesCommon
FilesAheadLibNeroCheck.exe
O4 - HKLM..Run: [Lexmark X84-X85 Button Monitor]
C:PROGRA~1LEXMAR~1ACMonitor_X84-X85.exe
O4 - HKLM..Run: [Lexmark X84-X85 Button Manager]
C:PROGRA~1LEXMAR~1AcBtnMgr_X84-X85.exe
O4 - HKLM..Run: [PrinTray]
C:Windowssystem32spoolDRIVERSW32X863printray.exe
O4 - HKCU..Run: [Sidebar] C:Program FilesWindows Sidebarsidebar.exe
/autoRun
O4 - HKCU..Run: [StartCCC] C:Program FilesATI
TechnologiesATI.ACECore-StaticCLIStart.exe
O4 - HKCU..Run: [swg] C:Program
FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
O4 - HKCU..Run: [ehTray.exe] C:WindowsehomeehTray.exe
O4 - Startup: OpenOffice.org 2.2.lnk = C:Program FilesOpenOffice.org
2.2programquickstart.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:Program
FilesAdobeAcrobat 7.0Readerreader_sl.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:Program
FilesGoogleGoogle UpdaterGoogleUpdater.exe
O10 - Unknown file in Winsock LSP: c:windowssystem32nlaapi.dll
O10 - Unknown file in Winsock LSP: c:windowssystem32napinsp.dll
O11 - Options group: [INTERNATIONAL] International*
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash
Object) -
http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} -
C:PROGRA~1MSNMES~1MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} -
C:PROGRA~1MSNMES~1MSGRAP~1.DLL
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:Program
FilesATK HotkeyASLDRSrv.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software -
C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. -
C:Windowssystem32Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:Program FilesAlwil
SoftwareAvast4ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:Program
FilesAlwil
SoftwareAvast4ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:Program FilesAlwil
SoftwareAvast4ashWebSv.exe" /service (file missing)
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown
owner - C:Program FilesCommon FilesSymantec SharedccSvcHst.exe" /h
ccCommon (file missing)
O23 - Service: @%SystemRoot%ehomeehstart.dll,-101 (ehstart) - Unknown
owner - %windir%system32svchost.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:Program
FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service
(LightScribeService) - Hewlett-Packard Company - C:Program FilesCommon
FilesLightScribeLSSrvc.exe
O23 - Service: NBService - Nero AG - C:Program FilesNeroNero 7Nero
BackItUpNBService.exe
O23 - Service: NMIndexingService - Nero AG - C:Program FilesCommon
FilesAheadLibNMIndexingService.exe
O23 - Service: @%SystemRoot%system32qwave.dll,-1 (QWAVE) - Unknown
owner -
%windir%system32svchost.exe (file missing)
O23 - Service: @%SystemRoot%system32seclogon.dll,-7001 (seclogon) -
Unknown owner - %windir%system32svchost.exe (file missing)
O23 - Service: spmgr - Unknown owner - C:Program FilesASUSNB
ProbeSPMspmgr.exe
O23 - Service: Syntek AVStream USB2.0 WebCam Service (StkSSrv) - Syntek
America Inc. - C:WindowsSystem32StkCSrv.exe
O23 - Service: @%ProgramFiles%Windows Media Playerwmpnetwk.exe,-101
(WMPNetworkSvc) - Unknown owner - %ProgramFiles%Windows Media
Playerwmpnetwk.exe (file missing)
--
Séb
PS : Votre version de hijackthis n'est pas adapté à Windows Vista (il faut
la 2.0, maintenant faites par TrendMicro)
En mode sans échec, supprimez ces lignes :
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} -
c:program filesgooglegoogletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO -
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:Program
FilesGoogleGoogleToolbarNotifier2.0.301.5672swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:program
filesgooglegoogletoolbar1.dll
O4 - HKLM..Run: [NeroFilterCheck] C:Program FilesCommon
FilesAheadLibNeroCheck.exe
O4 - HKCU..Run: [swg] C:Program
FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:Program
FilesGoogleGoogle UpdaterGoogleUpdater.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown
owner - C:Program FilesCommon FilesSymantec SharedccSvcHst.exe" /h
ccCommon (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:Program
FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 - Service: NBService - Nero AG - C:Program FilesNeroNero 7Nero
BackItUpNBService.exe
O23 - Service: NMIndexingService - Nero AG - C:Program FilesCommon
FilesAheadLibNMIndexingService.exe
RIEN ne laisse penser que vous avez un SPYWARE ou autre chose dans ce log,
faites en un avec la nouvelle version du programme.
Par contre, vous avez beaucoup de programme consomateur de resource inutile,
la barre google (inutile avec IE7)
Et l'indexation des fichiers de néro, inutile avec Vista (c'est inclus..
fonction rechercher du menu démarrer)
--
Fabrice
Microsoft MVP
http://www.fab3d.fr.st
Faq Windows XP :
http://a.vouillon.online.fr/faq-winxp.htm
"Manzoni Sébastien" a écrit dans
le message de news:Dés que je connecte des fenêtres pub m'agressent. J'ai fait un scan avec
hijackthis. Merci de bien vouloir me conseiller.
Logfile of HijackThis v1.99.1
Scan saved at 19:54:53, on 03/06/2007
Platform: Unknown Windows (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16386)
Running processes:
C:Windowssystem32Dwm.exe
C:Windowssystem32taskeng.exe
C:WindowsExplorer.EXE
C:Program FilesWindows DefenderMSASCui.exe
C:WindowsRtHDVCpl.exe
C:Program FilesMotorolaSMSERIALsm56hlpr.exe
C:Program FilesASUSATK MediaDMedia.exe
C:WindowsSystem32ASUSTPE.exe
C:Program FilesSynapticsSynTPSynTPEnh.exe
C:WindowsASScrPro.exe
C:Program FilesAlwil SoftwareAvast4ashDisp.exe
C:Program FilesLexmarkX84-X85AcBtnMgr_X84-X85.exe
C:Program FilesWindows Sidebarsidebar.exe
C:Windowsehomeehtray.exe
C:Program FilesOpenOffice.org 2.2programsoffice.exe
C:Program FilesOpenOffice.org 2.2programsoffice.BIN
C:Program FilesATI TechnologiesATI.ACECore-StaticMOM.EXE
C:Windowsehomeehmsas.exe
C:Program FilesWindows Sidebarsidebar.exe
C:Program FilesATI TechnologiesATI.ACECore-StaticCCC.exe
C:Windowssystem32wbemunsecapp.exe
C:Program FilesInternet Exploreriexplore.exe
C:Program FilesGoogleGoogle UpdaterGoogleUpdater.exe
C:Program FilesInternet ExplorerIEUser.exe
C:Program FilesInternet Exploreriexplore.exe
C:UsersUserAppDataLocalTempTemp1_hijackthis.zipHijackThis.exe
R1 - HKCUSoftwareMicrosoftInternet ExplorerMain,Search Page > > http://go.microsoft.com/fwlink/?LinkIdT896
R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page > > http://www.google.fr/
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL > > http://www.asus.com
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL > > http://go.microsoft.com/fwlink/?LinkIdT896
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page > > http://go.microsoft.com/fwlink/?LinkIdT896
R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page > > http://go.microsoft.com/fwlink/?LinkIdi157
R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,SearchAssistant > > R0 - HKLMSoftwareMicrosoftInternet ExplorerSearch,CustomizeSearch > > R0 - HKCUSoftwareMicrosoftInternet ExplorerToolbar,LinksFolderName > > O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -
C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} -
C:PROGRA~1SPYBOT~1SDHelper.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} -
c:program filesgooglegoogletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO -
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:Program
FilesGoogleGoogleToolbarNotifier2.0.301.5672swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} -
c:program
filesgooglegoogletoolbar1.dll
O4 - HKLM..Run: [Windows Defender] %ProgramFiles%Windows
DefenderMSASCui.exe -hide
O4 - HKLM..Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM..Run: [SMSERIAL] C:Program
FilesMotorolaSMSERIALsm56hlpr.exe
O4 - HKLM..Run: [ATKMEDIA] C:Program FilesASUSATK MediaDMEDIA.EXE
O4 - HKLM..Run: [ASUSTPE] C:Windowssystem32ASUSTPE.exe
O4 - HKLM..Run: [SynTPEnh] C:Program FilesSynapticsSynTPSynTPEnh.exe
O4 - HKLM..Run: [ASUS Camera ScreenSaver] C:WindowsASScrProlog.exe
O4 - HKLM..Run: [ASUS Screen Saver Protector] C:WindowsASScrPro.exe
O4 - HKLM..Run: [avast!] C:PROGRA~1ALWILS~1Avast4ashDisp.exe
O4 - HKLM..Run: [NeroFilterCheck] C:Program FilesCommon
FilesAheadLibNeroCheck.exe
O4 - HKLM..Run: [Lexmark X84-X85 Button Monitor]
C:PROGRA~1LEXMAR~1ACMonitor_X84-X85.exe
O4 - HKLM..Run: [Lexmark X84-X85 Button Manager]
C:PROGRA~1LEXMAR~1AcBtnMgr_X84-X85.exe
O4 - HKLM..Run: [PrinTray]
C:Windowssystem32spoolDRIVERSW32X863printray.exe
O4 - HKCU..Run: [Sidebar] C:Program FilesWindows Sidebarsidebar.exe
/autoRun
O4 - HKCU..Run: [StartCCC] C:Program FilesATI
TechnologiesATI.ACECore-StaticCLIStart.exe
O4 - HKCU..Run: [swg] C:Program
FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
O4 - HKCU..Run: [ehTray.exe] C:WindowsehomeehTray.exe
O4 - Startup: OpenOffice.org 2.2.lnk = C:Program FilesOpenOffice.org
2.2programquickstart.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:Program
FilesAdobeAcrobat 7.0Readerreader_sl.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:Program
FilesGoogleGoogle UpdaterGoogleUpdater.exe
O10 - Unknown file in Winsock LSP: c:windowssystem32nlaapi.dll
O10 - Unknown file in Winsock LSP: c:windowssystem32napinsp.dll
O11 - Options group: [INTERNATIONAL] International*
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash
Object) -
http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} -
C:PROGRA~1MSNMES~1MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} -
C:PROGRA~1MSNMES~1MSGRAP~1.DLL
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:Program
FilesATK HotkeyASLDRSrv.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software -
C:Program FilesAlwil SoftwareAvast4aswUpdSv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. -
C:Windowssystem32Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:Program FilesAlwil
SoftwareAvast4ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:Program
FilesAlwil
SoftwareAvast4ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:Program FilesAlwil
SoftwareAvast4ashWebSv.exe" /service (file missing)
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown
owner - C:Program FilesCommon FilesSymantec SharedccSvcHst.exe" /h
ccCommon (file missing)
O23 - Service: @%SystemRoot%ehomeehstart.dll,-101 (ehstart) - Unknown
owner - %windir%system32svchost.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:Program
FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service
(LightScribeService) - Hewlett-Packard Company - C:Program FilesCommon
FilesLightScribeLSSrvc.exe
O23 - Service: NBService - Nero AG - C:Program FilesNeroNero 7Nero
BackItUpNBService.exe
O23 - Service: NMIndexingService - Nero AG - C:Program FilesCommon
FilesAheadLibNMIndexingService.exe
O23 - Service: @%SystemRoot%system32qwave.dll,-1 (QWAVE) - Unknown
owner -
%windir%system32svchost.exe (file missing)
O23 - Service: @%SystemRoot%system32seclogon.dll,-7001 (seclogon) -
Unknown owner - %windir%system32svchost.exe (file missing)
O23 - Service: spmgr - Unknown owner - C:Program FilesASUSNB
ProbeSPMspmgr.exe
O23 - Service: Syntek AVStream USB2.0 WebCam Service (StkSSrv) - Syntek
America Inc. - C:WindowsSystem32StkCSrv.exe
O23 - Service: @%ProgramFiles%Windows Media Playerwmpnetwk.exe,-101
(WMPNetworkSvc) - Unknown owner - %ProgramFiles%Windows Media
Playerwmpnetwk.exe (file missing)
--
Séb
PS : Votre version de hijackthis n'est pas adapté à Windows Vista (il faut
la 2.0, maintenant faites par TrendMicro)
En mode sans échec, supprimez ces lignes :
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} -
c:program filesgooglegoogletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO -
{AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:Program
FilesGoogleGoogleToolbarNotifier2.0.301.5672swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:program
filesgooglegoogletoolbar1.dll
O4 - HKLM..Run: [NeroFilterCheck] C:Program FilesCommon
FilesAheadLibNeroCheck.exe
O4 - HKCU..Run: [swg] C:Program
FilesGoogleGoogleToolbarNotifierGoogleToolbarNotifier.exe
O4 - Global Startup: Outil de mise à jour Google.lnk = C:Program
FilesGoogleGoogle UpdaterGoogleUpdater.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown
owner - C:Program FilesCommon FilesSymantec SharedccSvcHst.exe" /h
ccCommon (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:Program
FilesGoogleCommonGoogle UpdaterGoogleUpdaterService.exe
O23 - Service: NBService - Nero AG - C:Program FilesNeroNero 7Nero
BackItUpNBService.exe
O23 - Service: NMIndexingService - Nero AG - C:Program FilesCommon
FilesAheadLibNMIndexingService.exe
RIEN ne laisse penser que vous avez un SPYWARE ou autre chose dans ce log,
faites en un avec la nouvelle version du programme.
Par contre, vous avez beaucoup de programme consomateur de resource inutile,
la barre google (inutile avec IE7)
Et l'indexation des fichiers de néro, inutile avec Vista (c'est inclus..
fonction rechercher du menu démarrer)
--
Fabrice
Microsoft MVP
http://www.fab3d.fr.st
Faq Windows XP :
http://a.vouillon.online.fr/faq-winxp.htm