Retour à Forum Microsoft Windows

Est ce que quelqu'un peut vérifier mon Hijack s'il vous plaît? Merci.

  • pampee
  • Student
  • Student
  • No Avatar
  • Inscription: Déc 25, 2007
  • Messages: 90
  • Loc: Philippines
  • Status: Offline

Message Juillet 7th, 2009, 5:52 am

Logfile de Trend Micro HijackThis v2.0.2
Scan sauvé à 3:08:55 PM, le 7/7/2009
Plate-forme: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ WINDOWS \ system32 \ spoolsv. exe
C: \ WINDOWS \ system32 \ acs.exe
C: \ Program Files \ Avira \ AntiVir Desktop \ sched.exe
C: \ Program Files \ Avira \ AntiVir Desktop \ avguard.exe
C: \ Program Files \ Anyplace Control 4 \ apc_host.exe
C: \ Program Files \ TOSHIBA \ ConfigFree \ CFSvcs.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ Program Files \ Toshiba \ TOSHIBA Applet \ TAPPSRV .. exe
C: \ Program Files \ Toshiba \ TOSHIBA DVD PLAYER \ TNaviSrv.exe
C: \ WINDOWS \ system32 \ TODDSrv.exe
c: \ Program Files \ Toshiba \ Bluetooth Toshiba Stack \ TosBtSrv. exe
C: \ WINDOWS \ Explorer.EXE
C: \ WINDOWS \ system32 \ hkcmd.exe
C: \ WINDOWS \ system32 \ igfxpers.exe
C: \ WINDOWS \ system32 \ igfxsrvc.exe
C: \ WINDOWS \ RTHDCPL.EXE
C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe
C: \ Program Files \ Atheros \ ACU.exe
C: \ Program Files \ TOSHIBA \ ConfigFree \ NDSTray.exe
C: \ Program Files \ Toshiba \ Toshiba Applet \ thotkey.exe
C: \ Program Files \ TOSHIBA \ TOSHIBA Zooming Utility \ SmoothView.exe
C: \ Program Files \ TOSHIBA \ TOSHIBA Direct Disc Writer \ ddwmon. exe
C: \ Program Files \ Camera Assistant Software for Toshiba \ traybar.exe
C: \ Program Files \ TOSHIBA \ ConfigFree \ CFSServ.exe
C: \ Program Files \ Microsoft Office \ Office12 \ GrooveMonitor.exe
C: \ Program Files \ Avira \ AntiVir Desktop \ avgnt.exe
C: \ Program Files \ Yahoo! \ Messenger \ YahooMessenger.exe
C: \ Program Files \ Messenger \ msmsgs.exe
C: \ PROGRA ~ 1 \ Chikka ~ 1 \ Chikka ~ 1.4 \ ChikkaLauncher.exe
C: \ WINDOWS \ system32 \ ctfmon.exe
C: \ Program Files \ SUPERAntiSpyware \ SUPERAntiSpyware. exe
C: \ Program Files \ Trend Micro \ HijackThis \ HijackThis. exe

R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Bar = http://us.rd.yahoo.com/customize/ie/def ... earch.html
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://us.rd.yahoo.com/customize/ie/def ... .yahoo.com
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.yahoo.com/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://us.rd.yahoo.com/customize/ie/def ... .yahoo.com
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Bar = http://us.rd.yahoo.com/customize/ie/def ... earch.html
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://us.rd.yahoo.com/customize/ie/def ... .yahoo.com
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ SearchURL, (Default) = http://us.rd.yahoo.com/customize/ie/def ... .yahoo.com
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Window Title = Mabuhay ang mga DAQUER!
R3 - URLSearchHook: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - C: \ PROGRA ~ 1 \ Yahoo! \ Companion \ Installs \ CPN \ yt.dll
O2 - BHO: & Yahoo! Toolbar Helper - (02478D38-C3F9-4efb-9B51-7695ECA05670) - C: \ PROGRA ~ 1 \ Yahoo! \ Companion \ Installs \ CPN \ yt. dll
O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - c: \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper.dll
O2 - BHO: Groove GFS Browser Helper - (72853161-30C5-4D22-B7F9-0BBC1D38A37E) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ GRA8E1 ~ 1.DLL
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre1.6.0_06 \ bin \ ssv.dll
O2 - BHO: SingleInstance Class - (FDAD4DA1-61A2-4FD8-9C17-86F7AC245081) - C: \ PROGRA ~ 1 \ Yahoo! \ Companion \ Installs \ CPN \ YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - C: \ PROGRA ~ 1 \ Yahoo! \ Companion \ Installs \ CPN \ yt.dll
O4 - HKLM \ .. \ Run: [IgfxTray] C: \ WINDOWS \ system32 \ igfxtray.exe
O4 - HKLM \ .. \ Run: [HotKeysCmds] C: \ WINDOWS \ system32 \ hkcmd.exe
O4 - HKLM \ .. \ Run: [Persistence] C: \ WINDOWS \ system32 \ igfxpers.exe
O4 - HKLM \ .. \ Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM \ .. \ Run: [Alcmtr] alcmtr.exe
O4 - HKLM \ .. \ Run: [SynTPEnh] C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe
O4 - HKLM \ .. \ Run: [ACU] "C: \ Program Files \ Atheros \ ACU.exe" nogui
O4 - HKLM \ .. \ Run: [ITSecMng]% ProgramFiles% \ TOSHIBA \ Bluetooth Toshiba Stack \ ItSecMng.exe / START
O4 - HKLM \ .. \ Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM \ .. \ Run: [THotkey] C: \ Program Files \ Toshiba \ Toshiba Applet \ thotkey.exe
O4 - HKLM \ .. \ Run: [smoothview] C: \ Program Files \ TOSHIBA \ TOSHIBA Zooming Utility \ SmoothView.exe
O4 - HKLM \ .. \ Run: [DDWMon] C: \ Program Files \ TOSHIBA \ TOSHIBA Direct Disc Writer \ \ ddwmon.exe
O4 - HKLM \ .. \ Run: [Google EULA Launcher] C: \ Program Files \ Google \ Google EULA \ \ GoogleEULALauncher.exe IE
O4 - HKLM \ .. \ Run: [Adobe Reader Speed Launcher] "c: \ Program Files \ Adobe \ Reader 8.0 \ Reader \ Reader_sl.exe"
O4 - HKLM \ .. \ Run: [Camera Assistant Software] "C: \ Program Files \ Camera Assistant Software for Toshiba \ traybar.exe" / start
O4 - HKLM \ .. \ Run: [CFSServ.exe] CFSServ. exe-NoClient
O4 - HKLM \ .. \ Run: [GrooveMonitor] "C: \ Program Files \ Microsoft Office \ Office12 \ GrooveMonitor.exe"
O4 - HKLM \ .. \ Run: [JD0717] C: \ WINDOWS \ JD0717.dll.vbs
O4 - HKLM \ .. \ Run: [avgnt] "C: \ Program Files \ Avira \ AntiVir Desktop \ avgnt.exe" / min
O4 - HKCU \ .. \ Run: [Messenger (Yahoo!)] "C: \ Program Files \ Yahoo! \ Messenger \ YahooMessenger.exe"-quiet
O4 - HKCU \ .. \ Run: [MSMSGS] "C: \ Program Files \ Messenger \ msmsgs.exe" / background
O4 - HKCU \ .. \ Run: [ChikkaDefault] C: \ PROGRA ~ 1 \ Chikka ~ 1 \ Chikka ~ 1.4 \ ChikkaLauncher.exe
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKCU \ .. \ Run: [SUPERAntiSpyware] C: \ Program Files \ SUPERAntiSpyware \ SUPERAntiSpyware.exe
O4 - HKUS \ S-1-5-18 \ .. \ Run: [TOSHIBA Online Product Information] C: \ Program Files \ TOSHIBA \ Toshiba Online Product Information \ topi.exe (utilisateur "SYSTEM")
O4 - HKUS \ S-1-5-18 \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ CTFMON.EXE (User "SYSTEM")
O4 - HKUS \. DEFAULT \ .. \ Run: [TOSHIBA Online Product Information] C: \ Program Files \ TOSHIBA \ Toshiba Online Product Information \ topi.exe (utilisateur par défaut de l'utilisateur)
O8 - Extra du menu contextuel: E & xporter vers Microsoft Excel -- res://C : \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ EXCEL.EXE/3000
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_06 \ bin \ ssv.dll
O9 - Extra "Outils" menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1. 6.0_06 \ bin \ ssv.dll
O9 - Extra button: Envoyer à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ ONBttnIE.dll
O9 - Extra "Outils" menuitem: S & end à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ ONBttnIE.dll
O9 - Extra button: eBay.co. uk - Achat Vends Il Love It - (76577871-04EC-495E-A12B-91F7C3600AFA) -- http://rover.ebay.com/rover/1/710-44557-9400-3/4 (fichier manquant)
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ REFIEBAR.DLL
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra "Outils" menuitem: @ xpsp3res.dll, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag. exe
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
Ø14 - IERESET.INF: START_PAGE_URL = http://www.google.com/ig/redirectdomain?brand=TSED&bmod=TSED
O18 - Protocol: grooveLocalGWS - (88FED34C-F0CA-4636-A375-3CB6248B04CD) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ GR99D3 ~ 1. DLL
O20 - Winlogon Notify:! SASWinLogon - C: \ Program Files \ SUPERAntiSpyware \ SASWINLO.dll
O23 - Service: Atheros Configuration Service (ACS) - Atheros - C: \ WINDOWS \ system32 \ acs .. exe
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C: \ Program Files \ Avira \ AntiVir Desktop \ sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C: \ Program Files \ Avira \ AntiVir Desktop \ avguard. exe
O23 - Service: APC-Host - Anyplace Control Software - C: \ Program Files \ Anyplace Control 4 \ apc_host.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C: \ Program Files \ TOSHIBA \ ConfigFree \ CFSvcs.exe
O23 - Service: Google Updater Service (gusvc) - Unknown owner - C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe (file missing)
O23 - Service: TOSHIBA Application Service (TAPPSRV) - TOSHIBA Corp - C: \ Program Files \ Toshiba \ TOSHIBA Applet \ tappsrv.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C: \ Program Files \ Toshiba \ TOSHIBA DVD PLAYER \ TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C: \ WINDOWS \ system32 \ TODDSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c: \ Program Files \ Toshiba \ Bluetooth Toshiba Stack \ TosBtSrv.exe
  • Anonymous
  • Bot
  • No Avatar
  • Inscription: 25 Feb 2008
  • Messages: ?
  • Loc: Ozzuland
  • Status: Online

Message Juillet 7th, 2009, 5:52 am

  • Don2007
  • Web Master
  • Web Master
  • No Avatar
  • Inscription: Nov 21, 2006
  • Messages: 4924
  • Loc: NY
  • Status: Offline

Message Juillet 7th, 2009, 3:30 pm

O4 - HKLM \ .. \ Run: [JD0717] C: \ WINDOWS \ JD0717.dll.vbs

Supprimer ce ^ ^. Je suppose que AVG était endormi.
How do you know when a politician is lying? His mouth is moving.
  • pampee
  • Student
  • Student
  • No Avatar
  • Inscription: Déc 25, 2007
  • Messages: 90
  • Loc: Philippines
  • Status: Offline

Message Juillet 9th, 2009, 3:25 am

Ceci est mon fichier de log de nouveau Don2007. Merci.

R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.yahoo.com/
O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - (22BF413B-C6D2-4d91-82A9-A0F997BA588C) - C: \ Program Files \ Skype \ Toolbars \ Internet Explorer \ SkypeIEPlugin. dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - (AE7CD045-E861-484f-8273-0445EE161910) - C: \ Program Files \ Adobe \ Acrobat 8.0 \ Acrobat \ AcroIEFavClient.dll
O2 - BHO: Java (tm) Plug-In 2 SSV Helper - (DBC80044-A445-435b-BC74-9C25C1C588A9) - C: \ Program Files \ Java \ jre6 \ bin \ jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - (E7E6F031-4C07-17CE-BC86-EABFE594F69C) - C: \ Program Files \ Java \ jre6 \ lib \ déployer \ jqs \ ie \ jqs_plugin. dll
O3 - Toolbar: Adobe PDF - (47833539-D0C5-4125-9FA8-0819E2EAAC93) - C: \ Program Files \ Adobe \ Acrobat 8.0 \ Acrobat \ AcroIEFavClient.dll
O4 - HKLM \ .. \ Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM \ .. \ Run: [Alcmtr] alcmtr.exe
O4 - HKLM \ .. \ Run: [NvCplDaemon] RUNDLL32.EXE C: \ WINDOWS \ system32 \ NvCpl.dll, NvStartup
O4 - HKLM \ .. \ Run: [nwiz] nwiz.exe / install
O4 - HKLM \ .. \ Run: [NvMediaCenter] RUNDLL32.EXE C: \ WINDOWS \ system32 \ NvMcTray.dll, NvTaskbarInit
O4 - HKLM \ .. \ Run: [WinampAgent] C: \ Program Files \ Winamp \ winampa.exe
O4 - HKLM \ .. \ Run: [NeroFilterCheck] C: \ WINDOWS \ system32 \ NeroCheck.exe
O4 - HKLM \ .. \ Run: [Acrobat Assistant 8.0] "C: \ Program Files \ Adobe \ Acrobat 8.0 \ Acrobat \ Acrotray.exe"
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ QTTask.exe"-atboottime
O4 - HKLM \ .. \ Run: [FLVGrab] C: \ Program Files \ BlueSprite \ Flash Video Grabber \ FlashGrab.exe
O4 - HKLM \ .. \ Run: [Y! Amp_M9] D: \ mike \ Mike NE SUPPRIMEZ PAS \ Installer \ Applications \ Y! Amp_M9.exe
O4 - HKLM \ .. \ Run: [LogitechCommunicationsManager] "C: \ Program Files \ Common Files \ LogiShrd \ LComMgr \ Communications_Helper.exe"
O4 - HKLM \ .. \ Run: [LogitechQuickCamRibbon] "C: \ Program Files \ Logitech \ QuickCam \ Quickcam.exe" / hide
O4 - HKLM \ .. \ Run: [avgnt] "C: \ Program Files \ Avira \ AntiVir Desktop \ avgnt.exe" / min
O4 - HKLM \ .. \ Run: [DAEMON Tools-1033] "C: \ Program Files \ D-Tools \ daemon. exe "-lang 1033
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Program Files \ Java \ jre6 \ bin \ jusched.exe"
O4 - HKLM \ .. \ Run: [cFosSpeed] C: \ Program Files \ cFosSpeed \ cFosSpeed.exe
O4 - HKCU \ .. \ Run: [SUPERAntiSpyware] C: \ Program Files \ SUPERAntiSpyware \ SUPERAntiSpyware.exe
O4 - HKCU \ .. \ Run: [MSMSGS] "C: \ Program Files \ Messenger \ msmsgs.exe" / background
O4 - HKCU \ .. \ Run: [Y! Amp] C: \ DOCUME ~ 1 \ Loverez \ LOCALS ~ 1 \ Temp \ Rar $ EX00.172 \ Y! Amp M8 \ Y! _Amp_Messenger_8. exe
O4 - HKCU \ .. \ Run: [Skype] "C: \ Program Files \ Skype \ Phone \ Skype.exe" / nosplash / minimiser
O4 - S-1-5-18 Startup: Adobe Gamma.lnk = C: \ Program Files \ Fichiers communs \ Adobe \ Calibration \ Adobe Gamma Loader.exe (User "SYSTEM")
O4 -. DEFAULT Startup: Adobe Gamma.lnk = C: \ Program Files \ Fichiers communs \ Adobe \ Calibration \ Adobe Gamma Loader.exe (User utilisateur par défaut)
O4 - Startup: Adobe Gamma.lnk = C: \ Program Files \ Fichiers communs \ Adobe \ Calibration \ Adobe Gamma Loader. exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C: \ Program Files \ Adobe \ Reader 8.0 \ Reader \ reader_sl.exe
O8 - Extra du menu contextuel: Ajouter au fichier PDF existant -- res://C : \ Program Files \ Adobe \ Acrobat 8.0 \ Acrobat \ AcroIEFavClient.dll / AcroIEAppend.html
O8 - Extra du menu contextuel: Convertir la cible au format Adobe PDF -- res://C : \ Program Files \ Adobe \ Acrobat 8.0 \ Acrobat \ AcroIEFavClient.dll / AcroIECapture. html
O8 - Extra du menu contextuel: Convertir la cible à des PDF -- res://C : \ Program Files \ Adobe \ Acrobat 8.0 \ Acrobat \ AcroIEFavClient.dll / AcroIEAppend.html
O8 - Extra du menu contextuel: Convertir les liens sélectionnés au format Adobe PDF -- res://C : \ Program Files \ Adobe \ Acrobat 8.0 \ Acrobat \ AcroIEFavClient.dll / AcroIECaptureSelLinks.html
O8 - Extra du menu contextuel: Convertir liens existants PDF -- res://C : \ Program Files \ Adobe \ Acrobat 8.0 \ Acrobat \ AcroIEFavClient. dll / AcroIEAppendSelLinks.html
O8 - Extra du menu contextuel: Convertir la sélection au format Adobe PDF -- res://C : \ Program Files \ Adobe \ Acrobat 8.0 \ Acrobat \ AcroIEFavClient.dll / AcroIECapture.html
O8 - Extra du menu contextuel: Convertir la sélection au PDF existant -- res://C : \ Program Files \ Adobe \ Acrobat 8.0 \ Acrobat \ AcroIEFavClient.dll / AcroIEAppend.html
O8 - Extra du menu contextuel: Convert to Adobe PDF -- res://C : \ Program Files \ Adobe \ Acrobat 8.0 \ Acrobat \ AcroIEFavClient. dll / AcroIECapture.html
O8 - Extra du menu contextuel: E & xporter vers Microsoft Excel -- res://C : \ PROGRA ~ 1 \ MICROS ~ 2 \ OFFICE11 \ EXCEL.EXE/3000
O9 - Extra button: Skype - (77BF5300-1474-4EC7-9980-D32B190E9B07) - C: \ Program Files \ Skype \ Toolbars \ Internet Explorer \ SkypeIEPlugin.dll
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ OFFICE11 \ REFIEBAR. DLL
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O18 - Protocol: skype4com - (FFC8B962-9B40-4DFF-9458-1830C7DD7F5D) - C: \ PROGRA ~ 1 \ Common ~ 1 \ Skype \ SKYPE4 ~ 1.DLL
O20 - Winlogon Notify:! SASWinLogon - C: \ Program Files \ SUPERAntiSpyware \ SASWINLO. DLL
O23 - Service: Adobe LM Service - Adobe Systems - C: \ Program Files \ Fichiers communs \ Adobe Systems Shared \ Service \ Adobelmsvc.exe
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C: \ Program Files \ Avira \ AntiVir Desktop \ sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C: \ Program Files \ Avira \ AntiVir Desktop \ avguard.exe
O23 - Service: ##Id_String1. 6844F930_1628_4223_B5CC_5BB94B879762 ##(Bonjour Service) - Apple Computer, Inc - C: \ Program Files \ Bonjour \ mDNSResponder.exe
O23 - Service: cFosSpeed System Service (cFosSpeedS) - cFos Software GmbH - C: \ Program Files \ cFosSpeed \ spd.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd - C: \ Program Files \ Fichiers communs \ Macrovision Shared \ FLEXnet Publisher \ FNPLicensingService. exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc - C: \ Program Files \ Java \ jre6 \ bin \ jqs.exe
O23 - Service: LVCOMSer - Logitech Inc - C: \ Program Files \ Common Files \ LogiShrd \ LVCOMSER \ LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc - C: \ Program Files \ Common Files \ LogiShrd \ LVMVFM \ LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc - C: \ Program Files \ Common Files \ LogiShrd \ SrvLnch \ SrvLnch. exe
O23 - Service: Service nProtect GameGuard (npggsvc) - Unknown owner - C: \ WINDOWS \ system32 \ GameMon.des.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C: \ WINDOWS \ system32 \ nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C: \ WINDOWS \ system32 \ PnkBstrA.exe
O23 - Service: Viewpoint Manager Service - Viewpo
  • Don2007
  • Web Master
  • Web Master
  • No Avatar
  • Inscription: Nov 21, 2006
  • Messages: 4924
  • Loc: NY
  • Status: Offline

Message Juillet 9th, 2009, 6:25 am

O4 - HKLM \ .. \ Run: [nwiz] nwiz.exe / install

A vous de trouver ^ ^ que dans le registre depuis sa encore là, mais le supprimer à nouveau de toute façon.

O4 - HKLM \ .. \ Run: [Y! Amp_M9] D: \ mike \ Mike NE SUPPRIMEZ PAS \ Installer \ Applications \ Y! Amp_M9.exe

^ Que l'on n'y était pas avant ou j'ai raté, mais il a trop à faire.

Téléchargement, la mise à jour et de lutte contre les logiciels malveillants d'exécuter malwarebytes.org
How do you know when a politician is lying? His mouth is moving.
  • pampee
  • Student
  • Student
  • No Avatar
  • Inscription: Déc 25, 2007
  • Messages: 90
  • Loc: Philippines
  • Status: Offline

Message Juillet 10th, 2009, 2:51 am

Im sorry. Voici son est nouveau.
S'il vous plaît vérifier. Merci.

Logfile de Trend Micro HijackThis v2.0.2
Scan sauvé à 1:10:29 PM, le 7.9.2009
Plate-forme: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ System32 \ svchost. exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ WINDOWS \ system32 \ acs.exe
C: \ Program Files \ Avira \ AntiVir Desktop \ sched.exe
C: \ Program Files \ Avira \ AntiVir Desktop \ avguard.exe
C: \ Program Files \ Anyplace Control 4 \ apc_host.exe
C: \ Program Files \ TOSHIBA \ ConfigFree \ CFSvcs.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ Program Files \ Toshiba \ TOSHIBA Applet \ TAPPSRV .. exe
C: \ Program Files \ Toshiba \ TOSHIBA DVD PLAYER \ TNaviSrv.exe
C: \ WINDOWS \ system32 \ TODDSrv. exe
c: \ Program Files \ Toshiba \ Bluetooth Toshiba Stack \ TosBtSrv.exe
C: \ WINDOWS \ Explorer.EXE
C: \ WINDOWS \ system32 \ hkcmd.exe
C: \ WINDOWS \ system32 \ igfxpers.exe
C: \ WINDOWS \ RTHDCPL.EXE
C: \ WINDOWS \ system32 \ igfxsrvc.exe
C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe
C: \ Program Files \ Atheros \ ACU.exe
C: \ Program Files \ TOSHIBA \ ConfigFree \ NDSTray.exe
C: \ Program Files \ Toshiba \ Toshiba Applet \ thotkey.exe
C: \ Program Files \ TOSHIBA \ TOSHIBA Zooming Utility \ smoothview. exe
C: \ Program Files \ TOSHIBA \ TOSHIBA Direct Disc Writer \ ddwmon.exe
C: \ Program Files \ Camera Assistant Software for Toshiba \ traybar.exe
C: \ Program Files \ TOSHIBA \ ConfigFree \ CFSServ.exe
C: \ Program Files \ Microsoft Office \ Office12 \ GrooveMonitor.exe
C: \ Program Files \ Avira \ AntiVir Desktop \ avgnt.exe
C: \ Program Files \ Yahoo! \ Messenger \ YahooMessenger.exe
C: \ Program Files \ Messenger \ msmsgs.exe
C: \ WINDOWS \ system32 \ ctfmon.exe
C: \ Program Files \ SUPERAntiSpyware \ SUPERAntiSpyware. exe
C: \ Program Files \ uTorrent \ uTorrent.exe
C: \ Program Files \ Trend Micro \ HijackThis \ HijackThis. exe

R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Bar = http://us.rd.yahoo.com/customize/ie/def ... earch.html
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://us.rd.yahoo.com/customize/ie/def ... .yahoo.com
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.yahoo.com/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://us.rd.yahoo.com/customize/ie/def ... .yahoo.com
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Bar = http://us.rd.yahoo.com/customize/ie/def ... earch.html
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://us.rd.yahoo.com/customize/ie/def ... .yahoo.com
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ SearchURL, (Default) = http://us.rd.yahoo.com/customize/ie/def ... .yahoo.com
R3 - URLSearchHook: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - C: \ PROGRA ~ 1 \ Yahoo! \ Companion \ Installs \ CPN \ yt.dll
O2 - BHO: & Yahoo! Toolbar Helper - (02478D38-C3F9-4efb-9B51-7695ECA05670) - C: \ PROGRA ~ 1 \ Yahoo! \ Companion \ Installs \ CPN \ yt. dll
O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - c: \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper.dll
O2 - BHO: Groove GFS Browser Helper - (72853161-30C5-4D22-B7F9-0BBC1D38A37E) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ GRA8E1 ~ 1.DLL
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre1.6.0_06 \ bin \ ssv.dll
O2 - BHO: SingleInstance Class - (FDAD4DA1-61A2-4FD8-9C17-86F7AC245081) - C: \ PROGRA ~ 1 \ Yahoo! \ Companion \ Installs \ CPN \ YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - C: \ PROGRA ~ 1 \ Yahoo! \ Companion \ Installs \ CPN \ yt.dll
O4 - HKLM \ .. \ Run: [IgfxTray] C: \ WINDOWS \ system32 \ igfxtray.exe
O4 - HKLM \ .. \ Run: [HotKeysCmds] C: \ WINDOWS \ system32 \ hkcmd.exe
O4 - HKLM \ .. \ Run: [Persistence] C: \ WINDOWS \ system32 \ igfxpers.exe
O4 - HKLM \ .. \ Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM \ .. \ Run: [Alcmtr] alcmtr.exe
O4 - HKLM \ .. \ Run: [SynTPEnh] C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe
O4 - HKLM \ .. \ Run: [ACU] "C: \ Program Files \ Atheros \ ACU.exe" nogui
O4 - HKLM \ .. \ Run: [ITSecMng]% ProgramFiles% \ TOSHIBA \ Bluetooth Toshiba Stack \ ItSecMng.exe / START
O4 - HKLM \ .. \ Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM \ .. \ Run: [THotkey] C: \ Program Files \ Toshiba \ Toshiba Applet \ thotkey.exe
O4 - HKLM \ .. \ Run: [smoothview] C: \ Program Files \ TOSHIBA \ TOSHIBA Zooming Utility \ SmoothView.exe
O4 - HKLM \ .. \ Run: [DDWMon] C: \ Program Files \ TOSHIBA \ TOSHIBA Direct Disc Writer \ \ ddwmon.exe
O4 - HKLM \ .. \ Run: [Google EULA Launcher] C: \ Program Files \ Google \ Google EULA \ \ GoogleEULALauncher.exe IE
O4 - HKLM \ .. \ Run: [Adobe Reader Speed Launcher] "c: \ Program Files \ Adobe \ Reader 8.0 \ Reader \ Reader_sl.exe"
O4 - HKLM \ .. \ Run: [Camera Assistant Software] "C: \ Program Files \ Camera Assistant Software for Toshiba \ traybar.exe" / start
O4 - HKLM \ .. \ Run: [CFSServ.exe] CFSServ. exe-NoClient
O4 - HKLM \ .. \ Run: [GrooveMonitor] "C: \ Program Files \ Microsoft Office \ Office12 \ GrooveMonitor.exe"
O4 - HKLM \ .. \ Run: [avgnt] "C: \ Program Files \ Avira \ AntiVir Desktop \ avgnt.exe" / min
O4 - HKCU \ .. \ Run: [Messenger (Yahoo!)] "C: \ Program Files \ Yahoo! \ Messenger \ YahooMessenger.exe"-quiet
O4 - HKCU \ .. \ Run: [MSMSGS] "C: \ Program Files \ Messenger \ msmsgs.exe" / background
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon. exe
O4 - HKCU \ .. \ Run: [SUPERAntiSpyware] C: \ Program Files \ SUPERAntiSpyware \ SUPERAntiSpyware.exe
O4 - HKUS \ S-1-5-18 \...\ Run: [TOSHIBA Online Product Information] C: \ Program Files \ TOSHIBA \ Toshiba Online Product Information \ topi.exe (utilisateur "SYSTEM")
O4 - HKUS \ S-1-5-18 \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ CTFMON.EXE (User "SYSTEM")
O4 - HKUS \. DEFAULT \ .. \ Run: [TOSHIBA Online Product Information] C: \ Program Files \ TOSHIBA \ Toshiba Online Product Information \ topi. exe (l'utilisateur par défaut de l'utilisateur)
O8 - Extra du menu contextuel: E & xporter vers Microsoft Excel -- res://C : \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ EXCEL.EXE/3000
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_06 \ bin \ ssv.dll
O9 - Extra "Outils" menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_06 \ bin \ ssv. dll
O9 - Extra button: Envoyer à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ ONBttnIE.dll
O9 - Extra "Outils" menuitem: S & end à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ ONBttnIE.dll
O9 - Extra button: eBay.co. uk - Achat Vends Il Love It - (76577871-04EC-495E-A12B-91F7C3600AFA) -- http://rover.ebay.com/rover/1/710-44557-9400-3/4 (fichier manquant)
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ REFIEBAR.DLL
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra "Outils" menuitem: @ xpsp3res.dll, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag. exe
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
Ø14 - IERESET.INF: START_PAGE_URL = http://www.google.com/ig/redirectdomain?brand=TSED&bmod=TSED
O18 - Protocol: grooveLocalGWS - (88FED34C-F0CA-4636-A375-3CB6248B04CD) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ GR99D3 ~ 1. DLL
O20 - Winlogon Notify:! SASWinLogon - C: \ Program Files \ SUPERAntiSpyware \ SASWINLO.dll
O23 - Service: Atheros Configuration Service (ACS) - Atheros - C: \ WINDOWS \ system32 \ acs.exe
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C: \ Program Files \ Avira \ AntiVir Desktop \ sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C: \ Program Files \ Avira \ AntiVir Desktop \ avguard. exe
O23 - Service: APC-Host - Anyplace Control Software - C: \ Program Files \ Anyplace Control 4 \ apc_host.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C: \ Program Files \ TOSHIBA \ ConfigFree \ CFSvcs.exe
O23 - Service: Google Updater Service (gusvc) - Unknown owner - C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe (file missing)
O23 - Service: TOSHIBA Application Service (TAPPSRV) - TOSHIBA Corp - C: \ Program Files \ Toshiba \ TOSHIBA Applet \ tappsrv.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C: \ Program Files \ Toshiba \ TOSHIBA DVD PLAYER \ TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C: \ WINDOWS \ system32 \ TODDSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c: \ Program Files \ Toshiba \ Bluetooth Toshiba Stack \ TosBtSrv.exe
  • Don2007
  • Web Master
  • Web Master
  • No Avatar
  • Inscription: Nov 21, 2006
  • Messages: 4924
  • Loc: NY
  • Status: Offline

Message Juillet 10th, 2009, 5:53 am

Il semble avoir disparu aujourd'hui.
How do you know when a politician is lying? His mouth is moving.
  • pampee
  • Student
  • Student
  • No Avatar
  • Inscription: Déc 25, 2007
  • Messages: 90
  • Loc: Philippines
  • Status: Offline

Message Juillet 17th, 2009, 1:05 pm

Don s'il vous plaît aider. Mon portable est lent. S'il vous plaît, aidez. Ceci est mon nouveau hijack.

Logfile de Trend Micro HijackThis v2.0.2
Scan sauvé à 2:04:06 AM, le 7.17.2009
Plate-forme: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ svchost. exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ WINDOWS \ system32 \ acs.exe
C: \ Program Files \ Avira \ AntiVir Desktop \ sched.exe
C: \ Program Files \ Avira \ AntiVir Desktop \ avguard.exe
C: \ Program Files \ TOSHIBA \ ConfigFree \ CFSvcs.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ Program Files \ Toshiba \ TOSHIBA Applet \ tappsrv.exe
C: \ Program Files \ Toshiba \ TOSHIBA DVD PLAYER \ TNaviSrv.exe
C: \ WINDOWS \ system32 \ TODDSrv. exe
c: \ Program Files \ Toshiba \ Bluetooth Toshiba Stack \ TosBtSrv.exe
C: \ WINDOWS \ Explorer.EXE
C: \ WINDOWS \ system32 \ hkcmd.exe
C: \ WINDOWS \ system32 \ igfxpers.exe
C: \ WINDOWS \ RTHDCPL.EXE
C: \ WINDOWS \ system32 \ igfxsrvc.exe
C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe
C: \ Program Files \ Atheros \ ACU.exe
C: \ Program Files \ TOSHIBA \ ConfigFree \ NDSTray.exe
C: \ Program Files \ Toshiba \ Toshiba Applet \ thotkey.exe
C: \ Program Files \ TOSHIBA \ TOSHIBA Zooming Utility \ smoothview. exe
C: \ Program Files \ TOSHIBA \ TOSHIBA Direct Disc Writer \ ddwmon.exe
C: \ Program Files \ Adobe \ Reader 8.0 \ Reader \ Reader_sl.exe
C: \ Program Files \ Camera Assistant Software for Toshiba \ traybar.exe
C: \ Program Files \ TOSHIBA \ ConfigFree \ CFSServ.exe
C: \ Program Files \ Microsoft Office \ Office12 \ GrooveMonitor.exe
C: \ Program Files \ Avira \ AntiVir Desktop \ avgnt.exe
C: \ WINDOWS \ system32 \ ctfmon.exe
C: \ Program Files \ SUPERAntiSpyware \ SUPERAntiSpyware.exe
C: \ WINDOWS \ system32 \ wuauclt. exe
C: \ Program Files \ Yahoo! \ Messenger \ ymsgr_tray.exe
C: \ Program Files \ Trend Micro \ HijackThis \ HijackThis. exe

R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Bar = http://us.rd.yahoo.com/customize/ie/def ... earch.html
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://us.rd.yahoo.com/customize/ie/def ... .yahoo.com
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.yahoo.com/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://us.rd.yahoo.com/customize/ie/def ... .yahoo.com
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Bar = http://us.rd.yahoo.com/customize/ie/def ... earch.html
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://us.rd.yahoo.com/customize/ie/def ... .yahoo.com
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ SearchURL, (Default) = http://us.rd.yahoo.com/customize/ie/def ... .yahoo.com
R3 - URLSearchHook: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - C: \ PROGRA ~ 1 \ Yahoo! \ Companion \ Installs \ CPN \ yt.dll
O2 - BHO: & Yahoo! Toolbar Helper - (02478D38-C3F9-4efb-9B51-7695ECA05670) - C: \ PROGRA ~ 1 \ Yahoo! \ Companion \ Installs \ CPN \ yt. dll
O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - c: \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper.dll
O2 - BHO: Groove GFS Browser Helper - (72853161-30C5-4D22-B7F9-0BBC1D38A37E) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ GRA8E1 ~ 1.DLL
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre1.6.0_06 \ bin \ ssv.dll
O2 - BHO: SingleInstance Class - (FDAD4DA1-61A2-4FD8-9C17-86F7AC245081) - C: \ PROGRA ~ 1 \ Yahoo! \ Companion \ Installs \ CPN \ YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - C: \ PROGRA ~ 1 \ Yahoo! \ Companion \ Installs \ CPN \ yt.dll
O4 - HKLM \ .. \ Run: [IgfxTray] C: \ WINDOWS \ system32 \ igfxtray.exe
O4 - HKLM \ .. \ Run: [HotKeysCmds] C: \ WINDOWS \ system32 \ hkcmd.exe
O4 - HKLM \ .. \ Run: [Persistence] C: \ WINDOWS \ system32 \ igfxpers.exe
O4 - HKLM \ .. \ Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM \ .. \ Run: [Alcmtr] alcmtr.exe
O4 - HKLM \ .. \ Run: [SynTPEnh] C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe
O4 - HKLM \ .. \ Run: [ACU] "C: \ Program Files \ Atheros \ ACU.exe" nogui
O4 - HKLM \ .. \ Run: [ITSecMng]% ProgramFiles% \ TOSHIBA \ Bluetooth Toshiba Stack \ ItSecMng.exe / START
O4 - HKLM \ .. \ Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM \ .. \ Run: [THotkey] C: \ Program Files \ Toshiba \ Toshiba Applet \ thotkey.exe
O4 - HKLM \ .. \ Run: [smoothview] C: \ Program Files \ TOSHIBA \ TOSHIBA Zooming Utility \ SmoothView.exe
O4 - HKLM \ .. \ Run: [DDWMon] C: \ Program Files \ TOSHIBA \ TOSHIBA Direct Disc Writer \ \ ddwmon.exe
O4 - HKLM \ .. \ Run: [Google EULA Launcher] C: \ Program Files \ Google \ Google EULA \ \ GoogleEULALauncher.exe IE
O4 - HKLM \ .. \ Run: [Adobe Reader Speed Launcher] "c: \ Program Files \ Adobe \ Reader 8.0 \ Reader \ Reader_sl.exe"
O4 - HKLM \ .. \ Run: [Camera Assistant Software] "C: \ Program Files \ Camera Assistant Software for Toshiba \ traybar.exe" / start
O4 - HKLM \ .. \ Run: [CFSServ.exe] CFSServ. exe-NoClient
O4 - HKLM \ .. \ Run: [GrooveMonitor] "C: \ Program Files \ Microsoft Office \ Office12 \ GrooveMonitor.exe"
O4 - HKLM \ .. \ Run: [avgnt] "C: \ Program Files \ Avira \ AntiVir Desktop \ avgnt.exe" / min
O4 - HKCU \ .. \ Run: [Messenger (Yahoo!)] "C: \ Program Files \ Yahoo! \ Messenger \ YahooMessenger.exe"-quiet
O4 - HKCU \ .. \ Run: [MSMSGS] "C: \ Program Files \ Messenger \ msmsgs.exe" / background
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon. exe
O4 - HKCU \ .. \ Run: [SUPERAntiSpyware] C: \ Program Files \ SUPERAntiSpyware \ SUPERAntiSpyware.exe
O4 - HKUS \ S-1-5-18 \ .. \ Run: [TOSHIBA Online Product Information] C: \ Program Files \ TOSHIBA \ Toshiba Online Product Information \ topi.exe (utilisateur "SYSTEM")
O4 - HKUS \ S-1-5-18 \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ CTFMON.EXE (User "SYSTEM")
O4 - HKUS \. DEFAULT \ .. \ Run: [TOSHIBA Online Product Information] C: \ Program Files \ TOSHIBA \ Toshiba Online Product Information \ topi. exe (l'utilisateur par défaut de l'utilisateur)
O8 - Extra du menu contextuel: E & xporter vers Microsoft Excel -- res://C : \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ EXCEL.EXE/3000
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_06 \ bin \ ssv.dll
O9 - Extra "Outils" menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_06 \ bin \ ssv. dll
O9 - Extra button: Envoyer à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ ONBttnIE.dll
O9 - Extra "Outils" menuitem: S & end à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ ONBttnIE.dll
O9 - Extra button: eBay.co. uk - Achat Vends Il Love It - (76577871-04EC-495E-A12B-91F7C3600AFA) -- http://rover.ebay.com/rover/1/710-44557-9400-3/4 (fichier manquant)
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ REFIEBAR.DLL
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra "Outils" menuitem: @ xpsp3res.dll, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag. exe
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
Ø14 - IERESET.INF: START_PAGE_URL = http://www.google.com/ig/redirectdomain?brand=TSED&bmod=TSED
O18 - Protocol: grooveLocalGWS - (88FED34C-F0CA-4636-A375-3CB6248B04CD) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ GR99D3 ~ 1. DLL
O20 - Winlogon Notify:! SASWinLogon - C: \ Program Files \ SUPERAntiSpyware \ SASWINLO.dll
O23 - Service: Atheros Configuration Service (ACS) - Atheros - C: \ WINDOWS \ system32 \ acs.exe
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C: \ Program Files \ Avira \ AntiVir Desktop \ sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C: \ Program Files \ Avira \ AntiVir Desktop \ avguard. exe
O23 - Service: APC-Host - Anyplace Control Software - C: \ Program Files \ Anyplace Control 4 \ apc_host.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C: \ Program Files \ TOSHIBA \ ConfigFree \ CFSvcs.exe
O23 - Service: Google Updater Service (gusvc) - Unknown owner - C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe (file missing)
O23 - Service: TOSHIBA Application Service (TAPPSRV) - TOSHIBA Corp - C: \ Program Files \ Toshiba \ TOSHIBA Applet \ tappsrv.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C: \ Program Files \ Toshiba \ TOSHIBA DVD PLAYER \ TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C: \ WINDOWS \ system32 \ TODDSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c: \ Program Files \ Toshiba \ Bluetooth Toshiba Stack \ TosBtSrv.exe

--
Fin de file - 8815 bytes
  • Don2007
  • Web Master
  • Web Master
  • No Avatar
  • Inscription: Nov 21, 2006
  • Messages: 4924
  • Loc: NY
  • Status: Offline

Message Juillet 17th, 2009, 6:38 pm

O9 - Extra button: eBay.co.uk - Achat Vends Il Love It - (76577871-04EC-495E-A12B-91F7C3600AFA) -- http://rover.ebay.com/rover/1/710-44557-9400-3/4 (fichier manquant)

Le log est propre, mais vous pouvez le supprimer de toute façon.

Votre machine est lente parce que vous avez un bateau de Toshiba ordures, avec qui sait ce que, dans le démarrage. Vous n'avez pas besoin de tout ce qui junk chargement en mémoire lors du démarrage. Exécuter msconfig et désactiver tout ce que vous n'avez pas besoin de chargement sous l'onglet Démarrage. Reboot et cliquez sur OK.
How do you know when a politician is lying? His mouth is moving.

Page 1 sur 1

Afficher de l'information

  • Total des messages de ce sujet: 8 messages
  • Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 177 invités
  • Vous ne pouvez pas poster de nouveaux sujets
  • Vous ne pouvez pas répondre aux sujets
  • Vous ne pouvez pas éditer vos messages
  • Vous ne pouvez pas supprimer vos messages
  • Vous ne pouvez pas joindre des fichiers
 
 

© 2011 Unmelted, LLC. Ozzu® est une marque déposée de Unmelted, LLC