bonjour a tous,
voila je pense que j ai un probleme de virus ou autre car mon pc deconne,il redemarre tout seul,il est tres lent pourtant j ai un p4 2.6 et 1 Gb de ram,j ai memturbo et de fois il descend carrement a 1,toute ma memoire vive est prise,j ai vu sur d autres poste qu on demander de mettre le rapport HijackThis et de ewido,donc je me suis permis de le faire.
d avance je vous remercie.
rapport hijackthis
Logfile of HijackThis v1.99.1
Scan saved at 01:20:27, on 04/09/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\The Cleaner\tca.exe
C:\Program Files\The Cleaner\tcm.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe
C:\Program Files\ewido anti-spyware 4.0\ewido.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmon.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\PROGRA~1\ZONELA~1\ZONEAL~1\MAILFR~1\mantispm.exe
C:\WINDOWS\system32\ZoneLabs\isafe.exe
C:\PROGRA~1\MOZILL~1\FIREFOX.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\MemTurbo30\MemTurbo.exe
C:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.generation-nt.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Application Accelerator\iaanotif.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [tcactive] C:\Program Files\The Cleaner\tca.exe
O4 - HKLM\..\Run: [tcmonitor] C:\Program Files\The Cleaner\tcm.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [Lexmark X1100 Series] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [!ewido] "C:\Program Files\ewido anti-spyware 4.0\ewido.exe" /minimized
O4 - HKLM\..\Run: [SpySweeper] "C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe" /startintray
O4 - Startup: MemTurbo.lnk = C:\Program Files\MemTurbo30\MemTurbo.exe
O4 - Startup: Mozilla Firefox.lnk = C:\Program Files\Mozilla Firefox\firefox.exe
O4 - Startup: Trend Micro Anti-Spyware.lnk = C:\Program Files\Trend Micro\Tmas\Tmas.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=www.generation-nt.com
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=58813
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/window [...] 1703072049
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/micros [...] 1962356062
O16 - DPF: {7F8C8173-AD80-4807-AA75-5672F22B4582} (ICSScanner Class) - http://download.zonelabs.com/bin/p [...] r37960.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: CA ISafe (CAISafe) - Computer Associates International, Inc. - C:\WINDOWS\system32\ZoneLabs\isafe.exe
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: IAA Event Monitor (IAANTMon) - Intel - C:\Program Files\Intel\Intel Application Accelerator\iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\WRSSSDK.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
rapport ewido
---------------------------------------------------------
ewido anti-spyware - Scan Report
---------------------------------------------------------
+ Created at: 02:00:03 04/09/2006
+ Scan result:
:mozilla.39:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.40:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.41:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.42:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.247realmedia : No action taken.
:mozilla.59:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.60:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.61:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Adbrite : No action taken.
:mozilla.146:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.147:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Adtech : No action taken.
:mozilla.213:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.214:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.215:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Advertising : No action taken.
:mozilla.43:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Bluestreak : No action taken.
:mozilla.302:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Casalemedia : No action taken.
:mozilla.400:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.401:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.402:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.403:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.404:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.405:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.406:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.407:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.408:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.409:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.410:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Falkag : No action taken.
:mozilla.321:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.397:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.416:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.432:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.433:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Googleadservices : No action taken.
:mozilla.103:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Mediaplex : No action taken.
:mozilla.303:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Revenue : No action taken.
:mozilla.195:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.196:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.197:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.198:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Serving-sys : No action taken.
:mozilla.36:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.37:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.38:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Smartadserver : No action taken.
:mozilla.172:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.173:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.177:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Tradedoubler : No action taken.
:mozilla.82:C:\Documents and Settings\Administrateur\Application Data\Mozilla\Firefox\Profiles\p0vi4ge9.default\cookies.txt -> TrackingCookie.Weborama : No action taken.
::Report end
Message édité par decarpentry le 04-09-2006 à 02:01:26