Cette Hijack Log - Problème avec les enregistreurs de frappe / pop up / redirects
- angelofpassion
- Born
- Inscription: Fév 27, 2009
- Messages: 3
- Status: Offline
Février 27th, 2009, 1:44 am
Salut i a Ad-Aware SE Personal, nod 32, hackmon, le registre d'appoint, de la vitesse de mon pc, gestionnaire de tâches et de la sécurité et je suis toujours des problèmes avec keylogs, pop ups, et aléatoire Web re-dirige.
J'ai aussi fait le journal en ligne de vérifier et il a trouvé des méchants articles qui n'ont pas été supprimés par mon anti-virus et de programmes.
J'ai juste besoin de savoir comment les supprimer.
Merci pour votre temps, voici mon log:
Logfile de Trend Micro HijackThis v2.0. 2
Scan sauvé à 1:31:58 AM, sur 2.27.2009
Plate-forme: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18241)
Boot mode: Normal
Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ Ati2evxx.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ WINDOWS \ System32 \ WLTRYSVC. EXE
C: \ WINDOWS \ System32 \ bcmwltry.exe
C: \ WINDOWS \ system32 \ Ati2evxx.exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
C: \ Program Files \ Bonjour \ mDNSResponder.exe
C: \ WINDOWS \ eHome \ ehrecvr.exe
C: \ WINDOWS \ eHome \ ehSched.exe
C: \ Program Files \ ESET \ ESET Smart Security \ ekrn.exe
C: \ Program Files \ Java \ jre6 \ bin \ jqs.exe
C: \ WINDOWS \ system32 \ drivers \ KodakCCS.exe
C: \ WINDOWS \ system32 \ svchost. exe
C: \ Program Files \ Linksys \ WMP300N \ WLService.EXE
C: \ Program Files \ Linksys \ WMP300N \ WMP300N.exe
C: \ WINDOWS \ Explorer.EXE
C: \ WINDOWS \ system32 \ DLLHost.exe tombait
C: \ Program Files \ TortoiseSVN \ bin \ TSVNCache.exe
C: \ WINDOWS \ stsystra.exe
C: \ Program Files \ ESET \ ESET Smart Security \ egui.exe
C: \ Program Files \ ATI Technologies \ ATI.ACE \ Core-Static \ MOM.exe
C: \ Program Files \ Fichiers communs \ Real \ Update_OB \ realsched.exe
C: \ Program Files \ Java \ jre6 \ bin \ jusched. exe
C: \ Program Files \ Total Security 2007 \ TSAtUdt.exe
C: \ Program Files \ iTunes \ iTunesHelper.exe
C: \ Program Files \ YourWare Solutions \ FreeRAM XP Pro \ FreeRAM XP pro.exe
C: \ PROGRA ~ 1 \ UnHackMe \ hackmon.exe
C: \ WINDOWS \ system32 \ ctfmon.exe
C: \ Program Files \ Kodak \ KODAK Software Updater \ 7288971 \ Program \ Kodak Software Updater.exe
C: \ Program Files \ NETGEAR \ WG111T \ wlan111t.exe
C: \ Program Files \ Common Files \ Nikon \ Monitor \ NkMonitor.exe
C: \ Program Files \ iPod \ bin \ iPodService. exe
C: \ Program Files \ ATI Technologies \ ATI.ACE \ Core-Static \ CCC.exe
C: \ Program Files \ Mozilla Firefox \ firefox.exe
C: \ Program Files \ Trend Micro \ HijackThis \ HijackThis. exe
R1 - HKCU \ Software \ Microsoft \ Internet Explorer, SearchURL = http://internetsearchservice.com
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://internetsearchservice.com
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Bar = http://internetsearchservice.com/ie6.html
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://internetsearchservice.com
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://myspace.com/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Bar = http://internetsearchservice.com/ie6.html
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Search, SearchAssistant = http://internetsearchservice.com
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search , SearchAssistant = http://internetsearchservice.com
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyServer = 91.121.84.92:80
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyOverride = *. local
R3 - URLSearchHook: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - (no file)
R3 - URLSearchHook: (no name) - (D73F49B6-B51B-4d32-A3B7-BD04B8342F53) - (no file)
O2 - BHO: AcroIEHlprObj Class - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Adobe \ Acrobat 7.0 \ ActiveX \ AcroIEHelper.dll
O2 - BHO: Java (tm) Plug-In SSV Helper - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre6 \ bin \ ssv. dll
O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file)
O2 - BHO: Windows Live Sign-in Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: Java (tm) Plug-In 2 SSV Helper - (DBC80044-A445-435b-BC74-9C25C1C588A9) - C: \ Program Files \ Java \ jre6 \ bin \ jp2ssv. dll
O2 - BHO: JQSIEStartDetectorImpl - (E7E6F031-17CE-4C07-BC86-EABFE594F69C) - C: \ Program Files \ Java \ jre6 \ lib \ déployer \ jqs \ ie \ jqs_plugin.dll
O3 - Toolbar: & Google - (2318C2B1-4965-11D4-9B18-009027A5CD4F) - c: \ program files \ google \ googletoolbar2.dll
O3 - Toolbar: (no name) - (37B85A29-692B-4205-9CAD-2626E4993404) - (no file)
O3 - Toolbar: Morpheus Toolbar - (3F3714A9-89A4-46be-8AF3-D0C9D1FB03F9) - (no file)
O4 - HKLM \ .. \ Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM \ .. \ Run: [egui] "C: \ Program Files \ ESET \ ESET Smart Security \ egui.exe" / hide / waitservice
O4 - HKLM \ .. \ Run: [StartCCC] "C: \ Program Files \ ATI Technologies \ ATI.ACE \ Core-Static \ CLIStart.exe" MSRun
O4 - HKLM \ .. \ Run: [TkBellExe] "C: \ Program Files \ Fichiers communs \ Real \ Update_OB \ realsched.exe"-osboot
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Program Files \ Java \ jre6 \ bin \ jusched.exe"
O4 - HKLM \ .. \ Run: [TotalSecurityUpdate] "C: \ Program Files \ Total Security 2007 \ TSAtUdt.exe"
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ QTTask.exe"-atboottime
O4 - HKLM \ .. \ Run: [iTunesHelper] "C: \ Program Files \ iTunes \ iTunesHelper.exe"
O4 - HKCU \ .. \ Run: [FreeRAM XP] "C: \ Program Files \ YourWare Solutions \ FreeRAM XP Pro \ FreeRAM XP pro.exe"-win
O4 - HKCU \ .. \ Run: [UnHackMe Monitor] C: \ PROGRA ~ 1 \ UnHackMe \ hackmon.exe
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - Startup: Adobe Gamma.lnk = C: \ Program Files \ Fichiers communs \ Adobe \ Calibration \ Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C: \ Program Files \ Adobe \ Acrobat 7.0 \ Reader \ reader_sl.exe
O4 - Global Startup: Kodak software Updater.lnk = C: \ Program Files \ Kodak \ KODAK Software Updater \ 7288971 \ Program \ Kodak Software Updater.exe
O4 - Global Startup: NETGEAR WG111T Smart Wizard.lnk =?
O4 - Global Startup: Nikon Monitor.lnk = C: \ Program Files \ Common Files \ Nikon \ Monitor \ NkMonitor.exe
O8 - Extra du menu contextuel: & Google Search -- res://c : \ program files \ google \ GoogleToolbar2.dll/cmsearch.html
O8 - Extra du menu contextuel: & Recherche -- http://edits.mywebsearch.com/toolbaredi ... xdm090YYUS
O8 - Extra du menu contextuel: & Translate English Word -- res://c : \ program files \ google \ GoogleToolbar2.dll/cmwordtrans. html
O8 - Extra du menu contextuel: Backward Links -- res://c : \ program files \ google \ GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra du menu contextuel: Cached Snapshot of Page -- res://c : \ program files \ google \ GoogleToolbar2.dll/cmcache.html
O8 - Extra du menu contextuel: Pages similaires -- res://c : \ program files \ google \ GoogleToolbar2.dll/cmsimilar.html
O8 - Extra du menu contextuel: Traduire la page en anglais -- res://c : \ program files \ google \ GoogleToolbar2. dll / cmtrans.html
O9 - Extra button: (no name) - (39FD89BF-D3F1-45b6-BB56-3582CCF489E1) - C: \ Program Files \ McAfee \ SpamKiller \ mcapfbho.dll (file missing)
O9 - Extra "Outils" menuitem: McAfee Anti-Phishing Filter - (39FD89BF-D3F1-45b6-BB56-3582CCF489E1) - C: \ Program Files \ McAfee \ SpamKiller \ mcapfbho. dll (file missing)
O9 - Extra button: (no name) - (CD67F990-D8E9-11d2-98FE-00C0F0318AFE) - (no file)
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra "Outils" menuitem: @ xpsp3res.dll, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs. exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O10 - Unknown file dans Winsock LSP: c: \ windows \ system32 \ nwprovau. dll
O16 - DPF: (1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB) -- http://ak.exe.imgfarm.com/images/nocach ... 0.0.15.cab
O16 - DPF: (48884C41-EFAC-433D-958A-9FADAC41408E) (EGamesPlugin Class) -- https://www.e-games.com.my/com/EGamesPlugin.cab
O16 - DPF: (4F1E5B1A-2A80-42CA-8532-2D05CB959537) (MSN Photo Upload Tool) -- http://by113fd.bay113.hotmail.msn.com/r ... nPUpld.cab
O16 - DPF: (D27CDB6E-AE6D-11CF-96B8-444553540000) (Shockwave Flash Object) -- http://fpdownload2.macromedia.com/get/s ... wflash.cab
O21 - SSODL: SSODL - (EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4) - (no file)
O22 - SharedTaskScheduler: STS - (EC43E3FD-5C60-46a6-97D7 -E0B85DBDD6C4) - (no file)
O23 - Service: Adobe LM Service - Adobe Systems - C: \ Program Files \ Fichiers communs \ Adobe Systems Shared \ Service \ Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc - C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc - C: \ WINDOWS \ system32 \ Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C: \ WINDOWS \ system32 \ ati2sgag. exe
O23 - Service: Bonjour Service - Apple Inc - C: \ Program Files \ Bonjour \ mDNSResponder.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C: \ Program Files \ ESET \ ESET Smart Security \ EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C: \ Program Files \ ESET \ ESET Smart Security \ ekrn.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C: \ Program Files \ Fichiers communs \ InstallShield \ Driver \ 1150 \ Intel 32 \ IDriverT. exe
O23 - Service: iPod Service - Apple Inc - C: \ Program Files \ iPod \ bin \ iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc - C: \ Program Files \ Java \ jre6 \ bin \ jqs.exe
O23 - Service: Kodak Camera Connection Software (KodakCCS) - Eastman Kodak Company - C: \ WINDOWS \ system32 \ drivers \ KodakCCS. exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Unknown owner - (no file)
O23 - Service: Roxio upnp Server 9 - Unknown owner - C: \ Program Files \ Common Files \ Sonic Shared \ RoxioUpnpService9.exe (file missing)
O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Unknown owner - C: \ Program Files \ Common Files \ Roxio Shared \ 9.0 \ SharedCOM \ RoxLiveShare9.exe (file missing)
O23 - Service: stllssvr - Unknown owner - C: \ Program Files \ Common Files \ SureThing Shared \ stllssvr. exe (file missing)
O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Unknown owner - C: \ WINDOWS \ System32 \ WLTRYSVC.EXE
O23 - Service: WMP300NSvc - GEMTEKS - C: \ Program Files \ Linksys \ WMP300N \ WLService.EXE
--
Fin de fichier - 10,570 octets
J'ai aussi fait le journal en ligne de vérifier et il a trouvé des méchants articles qui n'ont pas été supprimés par mon anti-virus et de programmes.
J'ai juste besoin de savoir comment les supprimer.
Merci pour votre temps, voici mon log:
Logfile de Trend Micro HijackThis v2.0. 2
Scan sauvé à 1:31:58 AM, sur 2.27.2009
Plate-forme: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18241)
Boot mode: Normal
Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ Ati2evxx.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ WINDOWS \ System32 \ WLTRYSVC. EXE
C: \ WINDOWS \ System32 \ bcmwltry.exe
C: \ WINDOWS \ system32 \ Ati2evxx.exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
C: \ Program Files \ Bonjour \ mDNSResponder.exe
C: \ WINDOWS \ eHome \ ehrecvr.exe
C: \ WINDOWS \ eHome \ ehSched.exe
C: \ Program Files \ ESET \ ESET Smart Security \ ekrn.exe
C: \ Program Files \ Java \ jre6 \ bin \ jqs.exe
C: \ WINDOWS \ system32 \ drivers \ KodakCCS.exe
C: \ WINDOWS \ system32 \ svchost. exe
C: \ Program Files \ Linksys \ WMP300N \ WLService.EXE
C: \ Program Files \ Linksys \ WMP300N \ WMP300N.exe
C: \ WINDOWS \ Explorer.EXE
C: \ WINDOWS \ system32 \ DLLHost.exe tombait
C: \ Program Files \ TortoiseSVN \ bin \ TSVNCache.exe
C: \ WINDOWS \ stsystra.exe
C: \ Program Files \ ESET \ ESET Smart Security \ egui.exe
C: \ Program Files \ ATI Technologies \ ATI.ACE \ Core-Static \ MOM.exe
C: \ Program Files \ Fichiers communs \ Real \ Update_OB \ realsched.exe
C: \ Program Files \ Java \ jre6 \ bin \ jusched. exe
C: \ Program Files \ Total Security 2007 \ TSAtUdt.exe
C: \ Program Files \ iTunes \ iTunesHelper.exe
C: \ Program Files \ YourWare Solutions \ FreeRAM XP Pro \ FreeRAM XP pro.exe
C: \ PROGRA ~ 1 \ UnHackMe \ hackmon.exe
C: \ WINDOWS \ system32 \ ctfmon.exe
C: \ Program Files \ Kodak \ KODAK Software Updater \ 7288971 \ Program \ Kodak Software Updater.exe
C: \ Program Files \ NETGEAR \ WG111T \ wlan111t.exe
C: \ Program Files \ Common Files \ Nikon \ Monitor \ NkMonitor.exe
C: \ Program Files \ iPod \ bin \ iPodService. exe
C: \ Program Files \ ATI Technologies \ ATI.ACE \ Core-Static \ CCC.exe
C: \ Program Files \ Mozilla Firefox \ firefox.exe
C: \ Program Files \ Trend Micro \ HijackThis \ HijackThis. exe
R1 - HKCU \ Software \ Microsoft \ Internet Explorer, SearchURL = http://internetsearchservice.com
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://internetsearchservice.com
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Bar = http://internetsearchservice.com/ie6.html
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://internetsearchservice.com
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://myspace.com/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Bar = http://internetsearchservice.com/ie6.html
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Search, SearchAssistant = http://internetsearchservice.com
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search , SearchAssistant = http://internetsearchservice.com
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyServer = 91.121.84.92:80
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyOverride = *. local
R3 - URLSearchHook: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - (no file)
R3 - URLSearchHook: (no name) - (D73F49B6-B51B-4d32-A3B7-BD04B8342F53) - (no file)
O2 - BHO: AcroIEHlprObj Class - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Adobe \ Acrobat 7.0 \ ActiveX \ AcroIEHelper.dll
O2 - BHO: Java (tm) Plug-In SSV Helper - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre6 \ bin \ ssv. dll
O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file)
O2 - BHO: Windows Live Sign-in Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: Java (tm) Plug-In 2 SSV Helper - (DBC80044-A445-435b-BC74-9C25C1C588A9) - C: \ Program Files \ Java \ jre6 \ bin \ jp2ssv. dll
O2 - BHO: JQSIEStartDetectorImpl - (E7E6F031-17CE-4C07-BC86-EABFE594F69C) - C: \ Program Files \ Java \ jre6 \ lib \ déployer \ jqs \ ie \ jqs_plugin.dll
O3 - Toolbar: & Google - (2318C2B1-4965-11D4-9B18-009027A5CD4F) - c: \ program files \ google \ googletoolbar2.dll
O3 - Toolbar: (no name) - (37B85A29-692B-4205-9CAD-2626E4993404) - (no file)
O3 - Toolbar: Morpheus Toolbar - (3F3714A9-89A4-46be-8AF3-D0C9D1FB03F9) - (no file)
O4 - HKLM \ .. \ Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM \ .. \ Run: [egui] "C: \ Program Files \ ESET \ ESET Smart Security \ egui.exe" / hide / waitservice
O4 - HKLM \ .. \ Run: [StartCCC] "C: \ Program Files \ ATI Technologies \ ATI.ACE \ Core-Static \ CLIStart.exe" MSRun
O4 - HKLM \ .. \ Run: [TkBellExe] "C: \ Program Files \ Fichiers communs \ Real \ Update_OB \ realsched.exe"-osboot
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Program Files \ Java \ jre6 \ bin \ jusched.exe"
O4 - HKLM \ .. \ Run: [TotalSecurityUpdate] "C: \ Program Files \ Total Security 2007 \ TSAtUdt.exe"
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ QTTask.exe"-atboottime
O4 - HKLM \ .. \ Run: [iTunesHelper] "C: \ Program Files \ iTunes \ iTunesHelper.exe"
O4 - HKCU \ .. \ Run: [FreeRAM XP] "C: \ Program Files \ YourWare Solutions \ FreeRAM XP Pro \ FreeRAM XP pro.exe"-win
O4 - HKCU \ .. \ Run: [UnHackMe Monitor] C: \ PROGRA ~ 1 \ UnHackMe \ hackmon.exe
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - Startup: Adobe Gamma.lnk = C: \ Program Files \ Fichiers communs \ Adobe \ Calibration \ Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C: \ Program Files \ Adobe \ Acrobat 7.0 \ Reader \ reader_sl.exe
O4 - Global Startup: Kodak software Updater.lnk = C: \ Program Files \ Kodak \ KODAK Software Updater \ 7288971 \ Program \ Kodak Software Updater.exe
O4 - Global Startup: NETGEAR WG111T Smart Wizard.lnk =?
O4 - Global Startup: Nikon Monitor.lnk = C: \ Program Files \ Common Files \ Nikon \ Monitor \ NkMonitor.exe
O8 - Extra du menu contextuel: & Google Search -- res://c : \ program files \ google \ GoogleToolbar2.dll/cmsearch.html
O8 - Extra du menu contextuel: & Recherche -- http://edits.mywebsearch.com/toolbaredi ... xdm090YYUS
O8 - Extra du menu contextuel: & Translate English Word -- res://c : \ program files \ google \ GoogleToolbar2.dll/cmwordtrans. html
O8 - Extra du menu contextuel: Backward Links -- res://c : \ program files \ google \ GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra du menu contextuel: Cached Snapshot of Page -- res://c : \ program files \ google \ GoogleToolbar2.dll/cmcache.html
O8 - Extra du menu contextuel: Pages similaires -- res://c : \ program files \ google \ GoogleToolbar2.dll/cmsimilar.html
O8 - Extra du menu contextuel: Traduire la page en anglais -- res://c : \ program files \ google \ GoogleToolbar2. dll / cmtrans.html
O9 - Extra button: (no name) - (39FD89BF-D3F1-45b6-BB56-3582CCF489E1) - C: \ Program Files \ McAfee \ SpamKiller \ mcapfbho.dll (file missing)
O9 - Extra "Outils" menuitem: McAfee Anti-Phishing Filter - (39FD89BF-D3F1-45b6-BB56-3582CCF489E1) - C: \ Program Files \ McAfee \ SpamKiller \ mcapfbho. dll (file missing)
O9 - Extra button: (no name) - (CD67F990-D8E9-11d2-98FE-00C0F0318AFE) - (no file)
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra "Outils" menuitem: @ xpsp3res.dll, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs. exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O10 - Unknown file dans Winsock LSP: c: \ windows \ system32 \ nwprovau. dll
O16 - DPF: (1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB) -- http://ak.exe.imgfarm.com/images/nocach ... 0.0.15.cab
O16 - DPF: (48884C41-EFAC-433D-958A-9FADAC41408E) (EGamesPlugin Class) -- https://www.e-games.com.my/com/EGamesPlugin.cab
O16 - DPF: (4F1E5B1A-2A80-42CA-8532-2D05CB959537) (MSN Photo Upload Tool) -- http://by113fd.bay113.hotmail.msn.com/r ... nPUpld.cab
O16 - DPF: (D27CDB6E-AE6D-11CF-96B8-444553540000) (Shockwave Flash Object) -- http://fpdownload2.macromedia.com/get/s ... wflash.cab
O21 - SSODL: SSODL - (EC43E3FD-5C60-46a6-97D7-E0B85DBDD6C4) - (no file)
O22 - SharedTaskScheduler: STS - (EC43E3FD-5C60-46a6-97D7 -E0B85DBDD6C4) - (no file)
O23 - Service: Adobe LM Service - Adobe Systems - C: \ Program Files \ Fichiers communs \ Adobe Systems Shared \ Service \ Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc - C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc - C: \ WINDOWS \ system32 \ Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C: \ WINDOWS \ system32 \ ati2sgag. exe
O23 - Service: Bonjour Service - Apple Inc - C: \ Program Files \ Bonjour \ mDNSResponder.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C: \ Program Files \ ESET \ ESET Smart Security \ EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C: \ Program Files \ ESET \ ESET Smart Security \ ekrn.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C: \ Program Files \ Fichiers communs \ InstallShield \ Driver \ 1150 \ Intel 32 \ IDriverT. exe
O23 - Service: iPod Service - Apple Inc - C: \ Program Files \ iPod \ bin \ iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc - C: \ Program Files \ Java \ jre6 \ bin \ jqs.exe
O23 - Service: Kodak Camera Connection Software (KodakCCS) - Eastman Kodak Company - C: \ WINDOWS \ system32 \ drivers \ KodakCCS. exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Unknown owner - (no file)
O23 - Service: Roxio upnp Server 9 - Unknown owner - C: \ Program Files \ Common Files \ Sonic Shared \ RoxioUpnpService9.exe (file missing)
O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Unknown owner - C: \ Program Files \ Common Files \ Roxio Shared \ 9.0 \ SharedCOM \ RoxLiveShare9.exe (file missing)
O23 - Service: stllssvr - Unknown owner - C: \ Program Files \ Common Files \ SureThing Shared \ stllssvr. exe (file missing)
O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Unknown owner - C: \ WINDOWS \ System32 \ WLTRYSVC.EXE
O23 - Service: WMP300NSvc - GEMTEKS - C: \ Program Files \ Linksys \ WMP300N \ WLService.EXE
--
Fin de fichier - 10,570 octets
- Anonymous
- Bot
- Inscription: 25 Feb 2008
- Messages: ?
- Loc: Ozzuland
- Status: Online
Février 27th, 2009, 1:44 am
- angelofpassion
- Born
- Inscription: Fév 27, 2009
- Messages: 3
- Status: Offline
Février 27th, 2009, 1:55 am
Oh, et je viens de rappeler,
Aussi Hackmon fait preuve d'un programme qui doit être supprimé, mais n'a pas été en mesure de réussir à supprimer...
mofofufu.exe
seulement par le regard de celui-ci, je pourrais vous dire qu'il n'est pas légitime...
mais pour une raison quelconque, est incapable de le supprimer et je me demandais s'il existe un processus manuel,
aussi, cela montre à mon Msconfig démarrage et je sais qu'il n'y était pas avant,
fehijagu - Rundll32. exe "c: \ windows \ system32 \ fehijagu.dll", un
Aussi Hackmon fait preuve d'un programme qui doit être supprimé, mais n'a pas été en mesure de réussir à supprimer...
mofofufu.exe
seulement par le regard de celui-ci, je pourrais vous dire qu'il n'est pas légitime...
mais pour une raison quelconque, est incapable de le supprimer et je me demandais s'il existe un processus manuel,
aussi, cela montre à mon Msconfig démarrage et je sais qu'il n'y était pas avant,
fehijagu - Rundll32. exe "c: \ windows \ system32 \ fehijagu.dll", un
- angelofpassion
- Born
- Inscription: Fév 27, 2009
- Messages: 3
- Status: Offline
Mars 2nd, 2009, 5:57 pm
J'ai remarqué que d'autres faisaient de réponses, mais pas moi donc je cogné ce retour à une réponse, i hope thats ok
Page 1 sur 1
Pour répondre à ce sujet, vous devez vous connecter ou vous enregistrer. Il est gratuit.
Afficher de l'information
- Total des messages de ce sujet: 3 messages
- Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 112 invités
- Vous ne pouvez pas poster de nouveaux sujets
- Vous ne pouvez pas répondre aux sujets
- Vous ne pouvez pas éditer vos messages
- Vous ne pouvez pas supprimer vos messages
- Vous ne pouvez pas joindre des fichiers
