ie7 se ferme immédiatement après l'ouverture
- dreamuser
- Born
- Inscription: Oct 25, 2008
- Messages: 4
- Status: Offline
Octobre 25th, 2008, 2:25 am
Le malware a xpantivirus2009 sur mon ordinateur et a causé toutes sortes de problèmes. J'ai été en mesure de supprimer les logiciels malveillants à partir de mon ordinateur à l'aide de Malwarebytes Anti-Malware, mais il ya encore des séquelles. Quand j'ouvre IE7, il ouvre la fenêtre, puis se ferme immédiatement et les logiciels malveillants réussi à supprimer 5 Go de fichiers corrompus et autres.
Voici mon fichier de log highjackthis:
Logfile de HijackThis v1.99. 1
Scan sauvé à 4:56:02 AM, le 10.25.2008
Plate-forme: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ System32 \ Novell \ XTAgent.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ Program Files \ Lavasoft \ Ad-Aware \ aawservice. exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
C: \ Program Files \ Bonjour \ mDNSResponder.exe
C: \ Program Files \ Fichiers communs \ Microsoft Shared \ VS7Debug \ Mdm.exe
C: \ Program Files \ Micro Focus \ Net Express 5.0 \ base \ bin \ mfauditmgr.exe
C: \ Program Files \ Micro Focus \ Net Express 5.0 \ base \ bin \ mfds.exe
C: \ Program Files \ Micro Focus \ Net Express 5.0 \ MFSQL \ Bin \ XSRVNX.EXE
C: \ Program Files \ lotus \ notes \ ntmulti. exe
C: \ Program Files \ Novell \ ZENworks \ nalntsrv.exe
C: \ WINDOWS \ system32 \ Srvany.exe
C: \ WINDOWS \ system32 \ RSX.exe
c: \ Program Files \ Microsoft SQL Server \ 90 \ Shared \ sqlwriter.exe
C: \ Program Files \ Viewpoint \ Common \ ViewpointService.exe
C: \ WINDOWS \ Explorer.EXE
C: \ Program Files \ LanExpress \ WirelessAS \ Utility \ Wlan11ag.exe
C: \ Program Files \ Apoint2K \ Apoint.exe
C: \ WINDOWS \ system32 \ NWTRAY.EXE
C: \ WINDOWS \ system32 \ ctfmon.exe
C: \ Program Files \ AIM \ but. exe
C: \ Program Files \ RK Launcher \ RKLauncher.exe
C: \ Program Files \ Apoint2K \ Apntex.exe
C: \ Program Files \ Viewpoint \ Viewpoint Manager \ ViewMgr.exe
C: \ WINDOWS \ system32 \ msiexec.exe
C: \ Program Files \ Mozilla Firefox \ firefox.exe
C: \ WINDOWS \ system32 \ rundll32.exe
C: \ WINDOWS \ Explorer.EXE
C: \ Program Files \ HijackThis \ HijackThis.exe
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = google.net-studio. org
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = google.net-studio.org
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Local Page = google.net-studio.org
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Window Title = Internet Explorer
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyServer = http = 127.0.0.1:6711
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyOverride = *. local
R3 - URLSearchHook: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - (no file)
O4 - HKLM \ .. \ Run: [wlanutilab] C: \ Program Files \ LanExpress \ WirelessAS \ Utility \ Wlan11ag.exe-hide
O4 - HKLM \ .. \ Run: [apoint] C: \ Program Files \ Apoint2K \ Apoint.exe
O4 - HKLM \ .. \ Run: [NWTRAY] NWTRAY.EXE
O4 - HKLM \ .. \ Run: [Google Desktop Search] "C: \ Program Files \ Google \ Google Desktop Search \ GoogleDesktop.exe" / startup
O4 - HKLM \ .. \ Run: [Windows Defender] "C: \ Program Files \ Windows Defender \ MSASCui.exe"-hide
O4 - HKLM \ .. \ Run: [googletalk] C: \ Program Files \ Google \ Google Talk \ googletalk.exe / autostart
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKCU \ .. \ Run: [Aim6] "C: \ Program Files \ AIM6 \ aim6.exe" / d locale = fr-FR ee://aol/imApp
O4 - Startup: AOL Instant Messenger.lnk = C: \ Program Files \ AIM \ aim.exe
O4 - Startup: Raccourci vers RKLauncher.exe. lnk = C: \ Program Files \ RK Launcher \ RKLauncher.exe
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.5.0_09 \ bin \ ssv.dll (file missing)
O9 - Extra "Outils" menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.5.0_09 \ bin \ ssv.dll (file missing)
O9 - Extra button: Envoyer à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ ONBttnIE. dll (file missing)
O9 - Extra "Outils" menuitem: S & end à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ ONBttnIE.dll (file missing)
O9 - Extra button: Yahoo! Services - (5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897) - C: \ Program Files \ Yahoo! \ Common \ yiesrvc.dll
O9 - Extra button: Bonjour - (7F9DB11C-E358-4ca6-A83D-ACC663939424) - C: \ Program Files \ Bonjour \ ExplorerPlugin. dll (file missing)
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ REFIEBAR.DLL (file missing)
O9 - Extra button: AIM - (AC9E2541-2814-11d5-BC6D-00B0D0A1DE45) - C: \ Program Files \ AIM \ aim.exe
O9 - Extra button: Novell rendu applications - (C1994287-422F-47aa-8E5E-6323E210A125) - C: \ Program Files \ Novell \ ZENworks \ AxNalServer.dll (file missing)
O9 - Extra button: @ btrez. dll, -4015 - (CCA281CA-C863-46ef-9331-5C8D4460577F) - C: \ Program Files \ WIDCOMM \ Logiciel Bluetooth \ btsendto_ie.htm
O9 - Extra "Outils" menuitem: @ btrez.dll, -4017 - (CCA281CA-C863-46ef-9331-5C8D4460577F) - C: \ Program Files \ WIDCOMM \ Logiciel Bluetooth \ btsendto_ie.htm
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs. exe (file missing)
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe (file missing)
O10 - Unknown file dans Winsock LSP: c: \ program files \ bonjour \ mdnsnsp.dll
O11 - Options group: [INTERNATIONAL] International *
O16 - DPF: (2B323CD9-50E3-11D3-9466-00A0C9700498) -- http://us.chat1.yimg.com/us.yimg.com/i/ ... acscom.cab
O16 - DPF: (30528230-99f7-4bb4-88d8-fa1d4f56a2ab) (Installation Support) - C: \ Program Files \ Yahoo! \ Common \ Yinsthelper. dll
O16 - DPF: (3BFFE033-BF43-11D5-A271-00A024A51325) (iNotes6 Class) -- http://web-student-2.udayton.edu/iNotes6W.cab
O16 - DPF: (6414512B-B978-451D-A0D8-FCFDF33E833C) (WUWebControl Class) -- http://update.microsoft.com/microsoftup ... 2854238406
O16 - DPF: (6E32070A-766D-4EE6-879C-DC1FA91D2FC3) (MUWebControl Class) -- http://update.microsoft.com/microsoftup ... 2854224656
O16 - DPF: (6EC00533-A02A-4C97-A93C-66BDB184EBD7) (ZfdWebInstaller Class) -- http://131.238.75.137/nls/English/ZfdInstallMgr.cab
O16 - DPF: (7D1E9C49-BD6A-11D3-87A8-009027A35D73) -- http://chat.yahoo.com/cab/yacsui.cab
O16 - DPF: (D6E7CFB5-C074-4D1C-B647-663D1A8D96BF) (Facebook Photo Uploader 4) -- http://upload.facebook.com/controls/Fac ... der4_5.cab
O18 - Protocol: ms-help - (314111C7-A502-11D2-BBCA-00C04F8EC294) - C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Help \ hxds.dll (file missing)
O18 - Protocol: widimg - (EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA) - C: \ WINDOWS \ system32 \ btxppanel.dll
O18 - Filter hijack: text / xml - (807563E5-5146-11D5-A672-00B0D022E945) - C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Office12 \ MSOXMLMF.DLL
O20 - AppInit_DLLs: Karna. dat
O20 - Winlogon Notify: NavLogon - C: \ WINDOWS \
O20 - Winlogon Notify: NetIdentity Notification - C: \ WINDOWS \ system32 \ Novell \ XtNotify.dll
O20 - Winlogon Notify: WBSrv - C: \ Program Files \ Stardock \ Object Desktop \ WindowBlinds \ wbsrv.dll
O21 - SSODL: WPDShServiceObj - (AAA288BA-9A4C-45B0-95D7-94D524869DB5) - C: \ WINDOWS \ system32 \ WPDShServiceObj.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C: \ Program Files \ Lavasoft \ Ad-Aware \ aawservice. exe
O23 - Service: Adobe LM Service - Unknown owner - C: \ Program Files \ Fichiers communs \ Adobe Systems Shared \ Service \ Adobelmsvc.exe (file missing)
O23 - Service: Apple Mobile Device - Apple, Inc - C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc - C: \ Program Files \ Bonjour \ mDNSResponder.exe
O23 - Service: Service de mise à jour du client Novell (cusrvc) - Novell, Inc - C: \ WINDOWS \ system32 \ cusrvc. exe
O23 - Service: FLEXnet Licensing Service - Unknown owner - C: \ Program Files \ Fichiers communs \ Macrovision Shared \ FLEXnet Publisher \ FNPLicensingService.exe (file missing)
O23 - Service: Google Desktop Manager 5.7.801.1629 (GoogleDesktopManager-010108-205858) - Unknown owner - C: \ Program Files \ Google \ Google Desktop Search \ GoogleDesktop. exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Unknown owner - C: \ Program Files \ Fichiers communs \ InstallShield \ Driver \ 11 \ Intel 32 \ IDriverT.exe (file missing)
O23 - Service: iPod Service - Unknown owner - C: \ Program Files \ iPod \ bin \ iPodService.exe (file missing)
O23 - Service: LiveUpdate - Symantec Corporation - C: \ PROGRA ~ 1 \ Symantec \ LIVEUP ~ 1 \ LUCOMS ~ 1. EXE
O23 - Service: Micro Focus Audit Manager (mfauditmgr) - Micro Focus (IP) Limited - C: \ Program Files \ Micro Focus \ Net Express 5.0 \ base \ bin \ mfauditmgr.exe
O23 - Service: Micro Focus Directory Server (mf_CCITCP2) - Unknown owner - C: \ Program Files \ Micro Focus \ Net Express 5.0 \ base \ bin \ mfds.exe
O23 - Service: Micro Focus XDB Server for NX 5.0 - Unknown owner - C: \ Program Files \ Micro Focus \ Net Express 5.0 \ MFSQL \ Bin \ XSRVNX. EXE
O23 - Service: SQL Server (sqlexpress) (MSSQL $ sqlexpress) - Unknown owner - c: \ Program Files \ Microsoft SQL Server \ MSSQL.1 \ MSSQL \ Binn \ sqlservr.exe "-sSQLEXPRESS (file missing)
O23 - Service: Multi-user Cleanup Service - IBM Corp - C: \ Program Files \ lotus \ notes \ ntmulti.exe
O23 - Service: Novell Application Launcher (NALNTSERVICE) - Novell, Inc - C: \ Program Files \ Novell \ ZENworks \ nalntsrv. exe
O23 - Service: Microsoft Office Diagnostics Service (odserv) - Unknown owner - C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Office12 \ ODSERV.EXE (file missing)
O23 - Service: Office Source Engine (ose) - Unknown owner - C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Source Engine \ Ose.exe (file missing)
O23 - Service: Service Redémarrer X (RSX) - Unknown owner - C: \ WINDOWS \ system32 \ srvany. exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C: \ Program Files \ Viewpoint \ Common \ ViewpointService.exe
O23 - Service: XAMPP Service (XAMPP) - Unknown owner - C: \ Program Files \ xampp \ service.exe (file missing)
O23 - Service: Novell XTier Agent Services (XTAgent) - Novell, Inc - C: \ WINDOWS \ System32 \ Novell \ XTAgent.exe
O23 - Service: Workstation Manager (ZFDWM) - Unknown owner - C: \ Program Files \ Novell \ ZENworks \ wm.exe (file missing)
Voici mon fichier de log highjackthis:
Logfile de HijackThis v1.99. 1
Scan sauvé à 4:56:02 AM, le 10.25.2008
Plate-forme: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ System32 \ Novell \ XTAgent.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ Program Files \ Lavasoft \ Ad-Aware \ aawservice. exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
C: \ Program Files \ Bonjour \ mDNSResponder.exe
C: \ Program Files \ Fichiers communs \ Microsoft Shared \ VS7Debug \ Mdm.exe
C: \ Program Files \ Micro Focus \ Net Express 5.0 \ base \ bin \ mfauditmgr.exe
C: \ Program Files \ Micro Focus \ Net Express 5.0 \ base \ bin \ mfds.exe
C: \ Program Files \ Micro Focus \ Net Express 5.0 \ MFSQL \ Bin \ XSRVNX.EXE
C: \ Program Files \ lotus \ notes \ ntmulti. exe
C: \ Program Files \ Novell \ ZENworks \ nalntsrv.exe
C: \ WINDOWS \ system32 \ Srvany.exe
C: \ WINDOWS \ system32 \ RSX.exe
c: \ Program Files \ Microsoft SQL Server \ 90 \ Shared \ sqlwriter.exe
C: \ Program Files \ Viewpoint \ Common \ ViewpointService.exe
C: \ WINDOWS \ Explorer.EXE
C: \ Program Files \ LanExpress \ WirelessAS \ Utility \ Wlan11ag.exe
C: \ Program Files \ Apoint2K \ Apoint.exe
C: \ WINDOWS \ system32 \ NWTRAY.EXE
C: \ WINDOWS \ system32 \ ctfmon.exe
C: \ Program Files \ AIM \ but. exe
C: \ Program Files \ RK Launcher \ RKLauncher.exe
C: \ Program Files \ Apoint2K \ Apntex.exe
C: \ Program Files \ Viewpoint \ Viewpoint Manager \ ViewMgr.exe
C: \ WINDOWS \ system32 \ msiexec.exe
C: \ Program Files \ Mozilla Firefox \ firefox.exe
C: \ WINDOWS \ system32 \ rundll32.exe
C: \ WINDOWS \ Explorer.EXE
C: \ Program Files \ HijackThis \ HijackThis.exe
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = google.net-studio. org
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = google.net-studio.org
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Local Page = google.net-studio.org
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Window Title = Internet Explorer
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyServer = http = 127.0.0.1:6711
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyOverride = *. local
R3 - URLSearchHook: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - (no file)
O4 - HKLM \ .. \ Run: [wlanutilab] C: \ Program Files \ LanExpress \ WirelessAS \ Utility \ Wlan11ag.exe-hide
O4 - HKLM \ .. \ Run: [apoint] C: \ Program Files \ Apoint2K \ Apoint.exe
O4 - HKLM \ .. \ Run: [NWTRAY] NWTRAY.EXE
O4 - HKLM \ .. \ Run: [Google Desktop Search] "C: \ Program Files \ Google \ Google Desktop Search \ GoogleDesktop.exe" / startup
O4 - HKLM \ .. \ Run: [Windows Defender] "C: \ Program Files \ Windows Defender \ MSASCui.exe"-hide
O4 - HKLM \ .. \ Run: [googletalk] C: \ Program Files \ Google \ Google Talk \ googletalk.exe / autostart
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKCU \ .. \ Run: [Aim6] "C: \ Program Files \ AIM6 \ aim6.exe" / d locale = fr-FR ee://aol/imApp
O4 - Startup: AOL Instant Messenger.lnk = C: \ Program Files \ AIM \ aim.exe
O4 - Startup: Raccourci vers RKLauncher.exe. lnk = C: \ Program Files \ RK Launcher \ RKLauncher.exe
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.5.0_09 \ bin \ ssv.dll (file missing)
O9 - Extra "Outils" menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.5.0_09 \ bin \ ssv.dll (file missing)
O9 - Extra button: Envoyer à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ ONBttnIE. dll (file missing)
O9 - Extra "Outils" menuitem: S & end à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ ONBttnIE.dll (file missing)
O9 - Extra button: Yahoo! Services - (5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897) - C: \ Program Files \ Yahoo! \ Common \ yiesrvc.dll
O9 - Extra button: Bonjour - (7F9DB11C-E358-4ca6-A83D-ACC663939424) - C: \ Program Files \ Bonjour \ ExplorerPlugin. dll (file missing)
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ REFIEBAR.DLL (file missing)
O9 - Extra button: AIM - (AC9E2541-2814-11d5-BC6D-00B0D0A1DE45) - C: \ Program Files \ AIM \ aim.exe
O9 - Extra button: Novell rendu applications - (C1994287-422F-47aa-8E5E-6323E210A125) - C: \ Program Files \ Novell \ ZENworks \ AxNalServer.dll (file missing)
O9 - Extra button: @ btrez. dll, -4015 - (CCA281CA-C863-46ef-9331-5C8D4460577F) - C: \ Program Files \ WIDCOMM \ Logiciel Bluetooth \ btsendto_ie.htm
O9 - Extra "Outils" menuitem: @ btrez.dll, -4017 - (CCA281CA-C863-46ef-9331-5C8D4460577F) - C: \ Program Files \ WIDCOMM \ Logiciel Bluetooth \ btsendto_ie.htm
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs. exe (file missing)
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe (file missing)
O10 - Unknown file dans Winsock LSP: c: \ program files \ bonjour \ mdnsnsp.dll
O11 - Options group: [INTERNATIONAL] International *
O16 - DPF: (2B323CD9-50E3-11D3-9466-00A0C9700498) -- http://us.chat1.yimg.com/us.yimg.com/i/ ... acscom.cab
O16 - DPF: (30528230-99f7-4bb4-88d8-fa1d4f56a2ab) (Installation Support) - C: \ Program Files \ Yahoo! \ Common \ Yinsthelper. dll
O16 - DPF: (3BFFE033-BF43-11D5-A271-00A024A51325) (iNotes6 Class) -- http://web-student-2.udayton.edu/iNotes6W.cab
O16 - DPF: (6414512B-B978-451D-A0D8-FCFDF33E833C) (WUWebControl Class) -- http://update.microsoft.com/microsoftup ... 2854238406
O16 - DPF: (6E32070A-766D-4EE6-879C-DC1FA91D2FC3) (MUWebControl Class) -- http://update.microsoft.com/microsoftup ... 2854224656
O16 - DPF: (6EC00533-A02A-4C97-A93C-66BDB184EBD7) (ZfdWebInstaller Class) -- http://131.238.75.137/nls/English/ZfdInstallMgr.cab
O16 - DPF: (7D1E9C49-BD6A-11D3-87A8-009027A35D73) -- http://chat.yahoo.com/cab/yacsui.cab
O16 - DPF: (D6E7CFB5-C074-4D1C-B647-663D1A8D96BF) (Facebook Photo Uploader 4) -- http://upload.facebook.com/controls/Fac ... der4_5.cab
O18 - Protocol: ms-help - (314111C7-A502-11D2-BBCA-00C04F8EC294) - C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Help \ hxds.dll (file missing)
O18 - Protocol: widimg - (EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA) - C: \ WINDOWS \ system32 \ btxppanel.dll
O18 - Filter hijack: text / xml - (807563E5-5146-11D5-A672-00B0D022E945) - C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Office12 \ MSOXMLMF.DLL
O20 - AppInit_DLLs: Karna. dat
O20 - Winlogon Notify: NavLogon - C: \ WINDOWS \
O20 - Winlogon Notify: NetIdentity Notification - C: \ WINDOWS \ system32 \ Novell \ XtNotify.dll
O20 - Winlogon Notify: WBSrv - C: \ Program Files \ Stardock \ Object Desktop \ WindowBlinds \ wbsrv.dll
O21 - SSODL: WPDShServiceObj - (AAA288BA-9A4C-45B0-95D7-94D524869DB5) - C: \ WINDOWS \ system32 \ WPDShServiceObj.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C: \ Program Files \ Lavasoft \ Ad-Aware \ aawservice. exe
O23 - Service: Adobe LM Service - Unknown owner - C: \ Program Files \ Fichiers communs \ Adobe Systems Shared \ Service \ Adobelmsvc.exe (file missing)
O23 - Service: Apple Mobile Device - Apple, Inc - C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc - C: \ Program Files \ Bonjour \ mDNSResponder.exe
O23 - Service: Service de mise à jour du client Novell (cusrvc) - Novell, Inc - C: \ WINDOWS \ system32 \ cusrvc. exe
O23 - Service: FLEXnet Licensing Service - Unknown owner - C: \ Program Files \ Fichiers communs \ Macrovision Shared \ FLEXnet Publisher \ FNPLicensingService.exe (file missing)
O23 - Service: Google Desktop Manager 5.7.801.1629 (GoogleDesktopManager-010108-205858) - Unknown owner - C: \ Program Files \ Google \ Google Desktop Search \ GoogleDesktop. exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Unknown owner - C: \ Program Files \ Fichiers communs \ InstallShield \ Driver \ 11 \ Intel 32 \ IDriverT.exe (file missing)
O23 - Service: iPod Service - Unknown owner - C: \ Program Files \ iPod \ bin \ iPodService.exe (file missing)
O23 - Service: LiveUpdate - Symantec Corporation - C: \ PROGRA ~ 1 \ Symantec \ LIVEUP ~ 1 \ LUCOMS ~ 1. EXE
O23 - Service: Micro Focus Audit Manager (mfauditmgr) - Micro Focus (IP) Limited - C: \ Program Files \ Micro Focus \ Net Express 5.0 \ base \ bin \ mfauditmgr.exe
O23 - Service: Micro Focus Directory Server (mf_CCITCP2) - Unknown owner - C: \ Program Files \ Micro Focus \ Net Express 5.0 \ base \ bin \ mfds.exe
O23 - Service: Micro Focus XDB Server for NX 5.0 - Unknown owner - C: \ Program Files \ Micro Focus \ Net Express 5.0 \ MFSQL \ Bin \ XSRVNX. EXE
O23 - Service: SQL Server (sqlexpress) (MSSQL $ sqlexpress) - Unknown owner - c: \ Program Files \ Microsoft SQL Server \ MSSQL.1 \ MSSQL \ Binn \ sqlservr.exe "-sSQLEXPRESS (file missing)
O23 - Service: Multi-user Cleanup Service - IBM Corp - C: \ Program Files \ lotus \ notes \ ntmulti.exe
O23 - Service: Novell Application Launcher (NALNTSERVICE) - Novell, Inc - C: \ Program Files \ Novell \ ZENworks \ nalntsrv. exe
O23 - Service: Microsoft Office Diagnostics Service (odserv) - Unknown owner - C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Office12 \ ODSERV.EXE (file missing)
O23 - Service: Office Source Engine (ose) - Unknown owner - C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Source Engine \ Ose.exe (file missing)
O23 - Service: Service Redémarrer X (RSX) - Unknown owner - C: \ WINDOWS \ system32 \ srvany. exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C: \ Program Files \ Viewpoint \ Common \ ViewpointService.exe
O23 - Service: XAMPP Service (XAMPP) - Unknown owner - C: \ Program Files \ xampp \ service.exe (file missing)
O23 - Service: Novell XTier Agent Services (XTAgent) - Novell, Inc - C: \ WINDOWS \ System32 \ Novell \ XTAgent.exe
O23 - Service: Workstation Manager (ZFDWM) - Unknown owner - C: \ Program Files \ Novell \ ZENworks \ wm.exe (file missing)
- Anonymous
- Bot
- Inscription: 25 Feb 2008
- Messages: ?
- Loc: Ozzuland
- Status: Online
Octobre 25th, 2008, 2:25 am
- Don2007
- Web Master
- Inscription: Nov 21, 2006
- Messages: 4924
- Loc: NY
- Status: Offline
Octobre 25th, 2008, 7:26 am
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyServer = http = 127.0.0.1:6711
R1 --
Saviez-vous que la procuration? ^ ^ ^ ^ Sinon, supprimez-le.
O20 - AppInit_DLLs: karna.dat
Karna.dat a à faire. En dehors de cela, la seule chose que je vois d'autres sont des fichiers liés à Novell. Si vous n'utilisez pas de Novell, le désinstaller.
Je voudrais aussi télécharger, mettre à jour et de lutte contre les logiciels malveillants d'exécuter http://www.malwarebytes.org
R1 --
Saviez-vous que la procuration? ^ ^ ^ ^ Sinon, supprimez-le.
O20 - AppInit_DLLs: karna.dat
Karna.dat a à faire. En dehors de cela, la seule chose que je vois d'autres sont des fichiers liés à Novell. Si vous n'utilisez pas de Novell, le désinstaller.
Je voudrais aussi télécharger, mettre à jour et de lutte contre les logiciels malveillants d'exécuter http://www.malwarebytes.org
How do you know when a politician is lying? His mouth is moving.
- dreamuser
- Born
- Inscription: Oct 25, 2008
- Messages: 4
- Status: Offline
Octobre 25th, 2008, 7:40 pm
Qui a essayé et cette erreur:
Aussi, je l'ai dit dans mon premier post que j'ai déjà couru Malwarebytes Anti-Malware.
Quote:
Une erreur inattendue s'est produite lors de la procédure: modBackup_MakeBackup (sItem = O20 - AppInit_DLLs: karna.dat)
Erreur #5 - Invalid Argument ou appel de procédure
S'il vous plaît écrivez-moi à merijn @ spywareinfo. com , Les rapports suivants:
* Qu'est-ce que vous essayez de corriger l'erreur s'est produite lorsque, le cas échéant,
* Comment pouvez-vous reproduire l'erreur
* Un scan log HijackThis, si possible
La version de Windows: Windows NT 5.01.2600
MSIE version: 7.0.5730.11
HijackThis version: 1.99.1
Ce message a été copié dans le presse-papiers.
Cliquez sur OK pour continuer le reste de l'analyse.
Erreur #5 - Invalid Argument ou appel de procédure
S'il vous plaît écrivez-moi à merijn @ spywareinfo. com , Les rapports suivants:
* Qu'est-ce que vous essayez de corriger l'erreur s'est produite lorsque, le cas échéant,
* Comment pouvez-vous reproduire l'erreur
* Un scan log HijackThis, si possible
La version de Windows: Windows NT 5.01.2600
MSIE version: 7.0.5730.11
HijackThis version: 1.99.1
Ce message a été copié dans le presse-papiers.
Cliquez sur OK pour continuer le reste de l'analyse.
Aussi, je l'ai dit dans mon premier post que j'ai déjà couru Malwarebytes Anti-Malware.
- Don2007
- Web Master
- Inscription: Nov 21, 2006
- Messages: 4924
- Loc: NY
- Status: Offline
Octobre 26th, 2008, 6:23 am
Avez-vous eu cette erreur lorsque vous avez essayé de supprimer karna.dat et les avez-vous essayez de supprimer à l'aide de Hijack This? Rechercher dans le registre pour lui si tout le reste échoue.
How do you know when a politician is lying? His mouth is moving.
- dreamuser
- Born
- Inscription: Oct 25, 2008
- Messages: 4
- Status: Offline
Octobre 26th, 2008, 2:05 pm
J'ai eu cette erreur quand je clique sur Fix dans Hijack This.
- Don2007
- Web Master
- Inscription: Nov 21, 2006
- Messages: 4924
- Loc: NY
- Status: Offline
Octobre 27th, 2008, 5:42 am
La recherche que vous avez à la base de registre et de supprimer les valeurs.
How do you know when a politician is lying? His mouth is moving.
- dreamuser
- Born
- Inscription: Oct 25, 2008
- Messages: 4
- Status: Offline
Octobre 29th, 2008, 5:00 am
Ok j'ai fait tout cela et qu'elle ne résout pas le problème. Voici mon nouveau Highjack ce journal:
Code: [ Select ]
Logfile of HijackThis v1.99.1
Scan saved at 7:59:29 AM, on 10/29/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Novell\XTAgent.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Micro Focus\Net Express 5.0\base\bin\mfauditmgr.exe
C:\Program Files\Micro Focus\Net Express 5.0\base\bin\mfds.exe
C:\Program Files\Micro Focus\Net Express 5.0\MFSQL\Bin\XSRVNX.EXE
C:\Program Files\lotus\notes\ntmulti.exe
C:\Program Files\Novell\ZENworks\nalntsrv.exe
C:\WINDOWS\system32\srvany.exe
C:\WINDOWS\system32\RSX.exe
c:\Program Files\Microsoft SQL Server\Shared\sqlwriter.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\LanExpress\WirelessAS\Utility\Wlan11ag.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\WINDOWS\system32\NWTRAY.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\AIM\aim.exe
C:\Program Files\RK Launcher\RKLauncher.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Symantec AntiVirus\SavRoam.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\AIM6\aim6.exe
C:\Program Files\AIM6\aolsoftware.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\regedit.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = google.net-studio.org
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = google.net-studio.org
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = google.net-studio.org
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O4 - HKLM\..\Run: [wlanutilab] C:\Program Files\LanExpress\WirelessAS\Utility\Wlan11ag.exe -hide
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [NWTRAY] NWTRAY.EXE
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [googletalk] C:\Program Files\Google\Google Talk\googletalk.exe /autostart
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Aim6] "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp
O4 - Startup: AOL Instant Messenger.lnk = C:\Program Files\AIM\aim.exe
O4 - Startup: Shortcut to RKLauncher.exe.lnk = C:\Program Files\RK Launcher\RKLauncher.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll (file missing)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll (file missing)
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (file missing)
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Novell delivered applications - {C1994287-422F-47aa-8E5E-6323E210A125} - C:\Program Files\Novell\ZENworks\AxNalServer.dll (file missing)
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O10 - Unknown file in Winsock LSP: c:\program files\bonjour\mdnsnsp.dll
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {2B323CD9-50E3-11D3-9466-00A0C9700498} - http://us.chat1.yimg.com/us.yimg.com/i/ ... acscom.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {3BFFE033-BF43-11D5-A271-00A024A51325} (iNotes6 Class) - http://web-student-2.udayton.edu/iNotes6W.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftup ... 2854238406
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 2854224656
O16 - DPF: {6EC00533-A02A-4C97-A93C-66BDB184EBD7} (ZfdWebInstaller Class) - http://131.238.75.137/nls/English/ZfdInstallMgr.cab
O16 - DPF: {7D1E9C49-BD6A-11D3-87A8-009027A35D73} - http://chat.yahoo.com/cab/yacsui.cab
O16 - DPF: {D6E7CFB5-C074-4D1C-B647-663D1A8D96BF} (Facebook Photo Uploader 4) - http://upload.facebook.com/controls/Fac ... der4_5.cab
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (file missing)
O18 - Protocol: widimg - {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} - C:\WINDOWS\system32\btxppanel.dll
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL
O20 - Winlogon Notify: NavLogon - C:\WINDOWS\system32\NavLogon.dll
O20 - Winlogon Notify: NetIdentity Notification - C:\WINDOWS\system32\Novell\XtNotify.dll
O20 - Winlogon Notify: WBSrv - C:\Program Files\Stardock\Object Desktop\WindowBlinds\wbsrv.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe (file missing)
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: Client Update Service for Novell (cusrvc) - Novell, Inc. - C:\WINDOWS\system32\cusrvc.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: FLEXnet Licensing Service - Unknown owner - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (file missing)
O23 - Service: Google Desktop Manager 5.7.801.1629 (GoogleDesktopManager-010108-205858) - Unknown owner - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Unknown owner - C:\Program Files\Common Files\InstallShield\Driver\Intel 32\IDriverT.exe (file missing)
O23 - Service: iPod Service - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Micro Focus Audit Manager (mfauditmgr) - Micro Focus (IP) Limited - C:\Program Files\Micro Focus\Net Express 5.0\base\bin\mfauditmgr.exe
O23 - Service: Micro Focus Directory Server (mf_CCITCP2) - Unknown owner - C:\Program Files\Micro Focus\Net Express 5.0\base\bin\mfds.exe
O23 - Service: Micro Focus XDB Server for NX 5.0 - Unknown owner - C:\Program Files\Micro Focus\Net Express 5.0\MFSQL\Bin\XSRVNX.EXE
O23 - Service: SQL Server (SQLEXPRESS) (MSSQL$SQLEXPRESS) - Unknown owner - c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sSQLEXPRESS (file missing)
O23 - Service: Multi-user Cleanup Service - IBM Corp - C:\Program Files\lotus\notes\ntmulti.exe
O23 - Service: Novell Application Launcher (NALNTSERVICE) - Novell, Inc. - C:\Program Files\Novell\ZENworks\nalntsrv.exe
O23 - Service: Office Source Engine (ose) - Unknown owner - C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE (file missing)
O23 - Service: Restart Service X (RSX) - Unknown owner - C:\WINDOWS\system32\srvany.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe
O23 - Service: XAMPP Service (XAMPP) - Unknown owner - C:\Program Files\xampp\service.exe (file missing)
O23 - Service: Novell XTier Agent Services (XTAgent) - Novell, Inc. - C:\WINDOWS\System32\Novell\XTAgent.exe
O23 - Service: Workstation Manager (ZFDWM) - Unknown owner - C:\Program Files\Novell\ZENworks\wm.exe (file missing)
Scan saved at 7:59:29 AM, on 10/29/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Novell\XTAgent.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Micro Focus\Net Express 5.0\base\bin\mfauditmgr.exe
C:\Program Files\Micro Focus\Net Express 5.0\base\bin\mfds.exe
C:\Program Files\Micro Focus\Net Express 5.0\MFSQL\Bin\XSRVNX.EXE
C:\Program Files\lotus\notes\ntmulti.exe
C:\Program Files\Novell\ZENworks\nalntsrv.exe
C:\WINDOWS\system32\srvany.exe
C:\WINDOWS\system32\RSX.exe
c:\Program Files\Microsoft SQL Server\Shared\sqlwriter.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\LanExpress\WirelessAS\Utility\Wlan11ag.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\WINDOWS\system32\NWTRAY.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\AIM\aim.exe
C:\Program Files\RK Launcher\RKLauncher.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Symantec AntiVirus\SavRoam.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\AIM6\aim6.exe
C:\Program Files\AIM6\aolsoftware.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\regedit.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = google.net-studio.org
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = google.net-studio.org
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = google.net-studio.org
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O4 - HKLM\..\Run: [wlanutilab] C:\Program Files\LanExpress\WirelessAS\Utility\Wlan11ag.exe -hide
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [NWTRAY] NWTRAY.EXE
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [googletalk] C:\Program Files\Google\Google Talk\googletalk.exe /autostart
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Aim6] "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp
O4 - Startup: AOL Instant Messenger.lnk = C:\Program Files\AIM\aim.exe
O4 - Startup: Shortcut to RKLauncher.exe.lnk = C:\Program Files\RK Launcher\RKLauncher.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll (file missing)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll (file missing)
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (file missing)
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Novell delivered applications - {C1994287-422F-47aa-8E5E-6323E210A125} - C:\Program Files\Novell\ZENworks\AxNalServer.dll (file missing)
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O10 - Unknown file in Winsock LSP: c:\program files\bonjour\mdnsnsp.dll
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {2B323CD9-50E3-11D3-9466-00A0C9700498} - http://us.chat1.yimg.com/us.yimg.com/i/ ... acscom.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {3BFFE033-BF43-11D5-A271-00A024A51325} (iNotes6 Class) - http://web-student-2.udayton.edu/iNotes6W.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftup ... 2854238406
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 2854224656
O16 - DPF: {6EC00533-A02A-4C97-A93C-66BDB184EBD7} (ZfdWebInstaller Class) - http://131.238.75.137/nls/English/ZfdInstallMgr.cab
O16 - DPF: {7D1E9C49-BD6A-11D3-87A8-009027A35D73} - http://chat.yahoo.com/cab/yacsui.cab
O16 - DPF: {D6E7CFB5-C074-4D1C-B647-663D1A8D96BF} (Facebook Photo Uploader 4) - http://upload.facebook.com/controls/Fac ... der4_5.cab
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (file missing)
O18 - Protocol: widimg - {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} - C:\WINDOWS\system32\btxppanel.dll
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL
O20 - Winlogon Notify: NavLogon - C:\WINDOWS\system32\NavLogon.dll
O20 - Winlogon Notify: NetIdentity Notification - C:\WINDOWS\system32\Novell\XtNotify.dll
O20 - Winlogon Notify: WBSrv - C:\Program Files\Stardock\Object Desktop\WindowBlinds\wbsrv.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe (file missing)
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: Client Update Service for Novell (cusrvc) - Novell, Inc. - C:\WINDOWS\system32\cusrvc.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: FLEXnet Licensing Service - Unknown owner - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (file missing)
O23 - Service: Google Desktop Manager 5.7.801.1629 (GoogleDesktopManager-010108-205858) - Unknown owner - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Unknown owner - C:\Program Files\Common Files\InstallShield\Driver\Intel 32\IDriverT.exe (file missing)
O23 - Service: iPod Service - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Micro Focus Audit Manager (mfauditmgr) - Micro Focus (IP) Limited - C:\Program Files\Micro Focus\Net Express 5.0\base\bin\mfauditmgr.exe
O23 - Service: Micro Focus Directory Server (mf_CCITCP2) - Unknown owner - C:\Program Files\Micro Focus\Net Express 5.0\base\bin\mfds.exe
O23 - Service: Micro Focus XDB Server for NX 5.0 - Unknown owner - C:\Program Files\Micro Focus\Net Express 5.0\MFSQL\Bin\XSRVNX.EXE
O23 - Service: SQL Server (SQLEXPRESS) (MSSQL$SQLEXPRESS) - Unknown owner - c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sSQLEXPRESS (file missing)
O23 - Service: Multi-user Cleanup Service - IBM Corp - C:\Program Files\lotus\notes\ntmulti.exe
O23 - Service: Novell Application Launcher (NALNTSERVICE) - Novell, Inc. - C:\Program Files\Novell\ZENworks\nalntsrv.exe
O23 - Service: Office Source Engine (ose) - Unknown owner - C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE (file missing)
O23 - Service: Restart Service X (RSX) - Unknown owner - C:\WINDOWS\system32\srvany.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe
O23 - Service: XAMPP Service (XAMPP) - Unknown owner - C:\Program Files\xampp\service.exe (file missing)
O23 - Service: Novell XTier Agent Services (XTAgent) - Novell, Inc. - C:\WINDOWS\System32\Novell\XTAgent.exe
O23 - Service: Workstation Manager (ZFDWM) - Unknown owner - C:\Program Files\Novell\ZENworks\wm.exe (file missing)
- Logfile of HijackThis v1.99.1
- Scan saved at 7:59:29 AM, on 10/29/2008
- Platform: Windows XP SP2 (WinNT 5.01.2600)
- MSIE: Unable to get Internet Explorer version!
- Running processes:
- C:\WINDOWS\System32\smss.exe
- C:\WINDOWS\system32\winlogon.exe
- C:\WINDOWS\system32\services.exe
- C:\WINDOWS\system32\lsass.exe
- C:\WINDOWS\System32\Novell\XTAgent.exe
- C:\WINDOWS\system32\svchost.exe
- C:\WINDOWS\System32\svchost.exe
- C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
- C:\WINDOWS\system32\spoolsv.exe
- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
- C:\Program Files\Bonjour\mDNSResponder.exe
- C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
- C:\Program Files\Micro Focus\Net Express 5.0\base\bin\mfauditmgr.exe
- C:\Program Files\Micro Focus\Net Express 5.0\base\bin\mfds.exe
- C:\Program Files\Micro Focus\Net Express 5.0\MFSQL\Bin\XSRVNX.EXE
- C:\Program Files\lotus\notes\ntmulti.exe
- C:\Program Files\Novell\ZENworks\nalntsrv.exe
- C:\WINDOWS\system32\srvany.exe
- C:\WINDOWS\system32\RSX.exe
- c:\Program Files\Microsoft SQL Server\Shared\sqlwriter.exe
- C:\Program Files\Viewpoint\Common\ViewpointService.exe
- C:\WINDOWS\Explorer.EXE
- C:\Program Files\LanExpress\WirelessAS\Utility\Wlan11ag.exe
- C:\Program Files\Apoint2K\Apoint.exe
- C:\WINDOWS\system32\NWTRAY.EXE
- C:\WINDOWS\system32\ctfmon.exe
- C:\Program Files\AIM\aim.exe
- C:\Program Files\RK Launcher\RKLauncher.exe
- C:\Program Files\Apoint2K\Apntex.exe
- C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
- C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
- C:\Program Files\Symantec AntiVirus\SavRoam.exe
- C:\Program Files\Common Files\Symantec Shared\ccApp.exe
- C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
- C:\Program Files\AIM6\aim6.exe
- C:\Program Files\AIM6\aolsoftware.exe
- C:\WINDOWS\system32\svchost.exe
- C:\WINDOWS\system32\wuauclt.exe
- C:\Program Files\Mozilla Firefox\firefox.exe
- C:\WINDOWS\regedit.exe
- C:\WINDOWS\Explorer.EXE
- C:\Program Files\HijackThis\HijackThis.exe
- R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = google.net-studio.org
- R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = google.net-studio.org
- R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = google.net-studio.org
- R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer
- R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
- O4 - HKLM\..\Run: [wlanutilab] C:\Program Files\LanExpress\WirelessAS\Utility\Wlan11ag.exe -hide
- O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
- O4 - HKLM\..\Run: [NWTRAY] NWTRAY.EXE
- O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
- O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
- O4 - HKLM\..\Run: [googletalk] C:\Program Files\Google\Google Talk\googletalk.exe /autostart
- O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
- O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
- O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
- O4 - HKCU\..\Run: [Aim6] "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp
- O4 - Startup: AOL Instant Messenger.lnk = C:\Program Files\AIM\aim.exe
- O4 - Startup: Shortcut to RKLauncher.exe.lnk = C:\Program Files\RK Launcher\RKLauncher.exe
- O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll (file missing)
- O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll (file missing)
- O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
- O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
- O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
- O9 - Extra button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll (file missing)
- O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (file missing)
- O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
- O9 - Extra button: Novell delivered applications - {C1994287-422F-47aa-8E5E-6323E210A125} - C:\Program Files\Novell\ZENworks\AxNalServer.dll (file missing)
- O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
- O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
- O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
- O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
- O10 - Unknown file in Winsock LSP: c:\program files\bonjour\mdnsnsp.dll
- O11 - Options group: [INTERNATIONAL] International*
- O16 - DPF: {2B323CD9-50E3-11D3-9466-00A0C9700498} - http://us.chat1.yimg.com/us.yimg.com/i/ ... acscom.cab
- O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
- O16 - DPF: {3BFFE033-BF43-11D5-A271-00A024A51325} (iNotes6 Class) - http://web-student-2.udayton.edu/iNotes6W.cab
- O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftup ... 2854238406
- O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftup ... 2854224656
- O16 - DPF: {6EC00533-A02A-4C97-A93C-66BDB184EBD7} (ZfdWebInstaller Class) - http://131.238.75.137/nls/English/ZfdInstallMgr.cab
- O16 - DPF: {7D1E9C49-BD6A-11D3-87A8-009027A35D73} - http://chat.yahoo.com/cab/yacsui.cab
- O16 - DPF: {D6E7CFB5-C074-4D1C-B647-663D1A8D96BF} (Facebook Photo Uploader 4) - http://upload.facebook.com/controls/Fac ... der4_5.cab
- O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (file missing)
- O18 - Protocol: widimg - {EE7C2AFF-5742-44FF-BD0E-E521B0D3C3BA} - C:\WINDOWS\system32\btxppanel.dll
- O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL
- O20 - Winlogon Notify: NavLogon - C:\WINDOWS\system32\NavLogon.dll
- O20 - Winlogon Notify: NetIdentity Notification - C:\WINDOWS\system32\Novell\XtNotify.dll
- O20 - Winlogon Notify: WBSrv - C:\Program Files\Stardock\Object Desktop\WindowBlinds\wbsrv.dll
- O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
- O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
- O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe (file missing)
- O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
- O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
- O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
- O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
- O23 - Service: Client Update Service for Novell (cusrvc) - Novell, Inc. - C:\WINDOWS\system32\cusrvc.exe
- O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
- O23 - Service: FLEXnet Licensing Service - Unknown owner - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe (file missing)
- O23 - Service: Google Desktop Manager 5.7.801.1629 (GoogleDesktopManager-010108-205858) - Unknown owner - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (file missing)
- O23 - Service: InstallDriver Table Manager (IDriverT) - Unknown owner - C:\Program Files\Common Files\InstallShield\Driver\Intel 32\IDriverT.exe (file missing)
- O23 - Service: iPod Service - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)
- O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
- O23 - Service: Micro Focus Audit Manager (mfauditmgr) - Micro Focus (IP) Limited - C:\Program Files\Micro Focus\Net Express 5.0\base\bin\mfauditmgr.exe
- O23 - Service: Micro Focus Directory Server (mf_CCITCP2) - Unknown owner - C:\Program Files\Micro Focus\Net Express 5.0\base\bin\mfds.exe
- O23 - Service: Micro Focus XDB Server for NX 5.0 - Unknown owner - C:\Program Files\Micro Focus\Net Express 5.0\MFSQL\Bin\XSRVNX.EXE
- O23 - Service: SQL Server (SQLEXPRESS) (MSSQL$SQLEXPRESS) - Unknown owner - c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sSQLEXPRESS (file missing)
- O23 - Service: Multi-user Cleanup Service - IBM Corp - C:\Program Files\lotus\notes\ntmulti.exe
- O23 - Service: Novell Application Launcher (NALNTSERVICE) - Novell, Inc. - C:\Program Files\Novell\ZENworks\nalntsrv.exe
- O23 - Service: Office Source Engine (ose) - Unknown owner - C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE (file missing)
- O23 - Service: Restart Service X (RSX) - Unknown owner - C:\WINDOWS\system32\srvany.exe
- O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
- O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
- O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
- O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
- O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe
- O23 - Service: XAMPP Service (XAMPP) - Unknown owner - C:\Program Files\xampp\service.exe (file missing)
- O23 - Service: Novell XTier Agent Services (XTAgent) - Novell, Inc. - C:\WINDOWS\System32\Novell\XTAgent.exe
- O23 - Service: Workstation Manager (ZFDWM) - Unknown owner - C:\Program Files\Novell\ZENworks\wm.exe (file missing)
- Don2007
- Web Master
- Inscription: Nov 21, 2006
- Messages: 4924
- Loc: NY
- Status: Offline
Octobre 29th, 2008, 6:26 am
Je ne vois vraiment beaucoup de mauvaises choses dans le journal, bien que je n'aime pas Yahoo ou Symantec. Parfois, les programmes de Symantec peut provoquer des conflits, alors je suggère que vous exécutez msconfig, aller au démarrage et désactiver ce que vous n'avez pas besoin de charger au démarrage, qui est à peu près tout dans ce pays. Reboot, cliquez sur OK dans la boîte de dialogue et ne pas revenir à la normale de démarrage. Vous pouvez aussi voir si cela se produit en mode sans échec.
Après que le registre ouvert à nouveau. Aller au dossier dans le Run HKLM et HKCU en cliquant sur le signe +
Logiciels
Microsoft
Windows
CurrentVersion
Ouvrez le dossier Exécuter et supprimer tout ce qui ne fait pas partie.
Après que le registre ouvert à nouveau. Aller au dossier dans le Run HKLM et HKCU en cliquant sur le signe +
Logiciels
Microsoft
Windows
CurrentVersion
Ouvrez le dossier Exécuter et supprimer tout ce qui ne fait pas partie.
How do you know when a politician is lying? His mouth is moving.
Page 1 sur 1
Pour répondre à ce sujet, vous devez vous connecter ou vous enregistrer. Il est gratuit.
Afficher de l'information
- Total des messages de ce sujet: 8 messages
- Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 101 invités
- Vous ne pouvez pas poster de nouveaux sujets
- Vous ne pouvez pas répondre aux sujets
- Vous ne pouvez pas éditer vos messages
- Vous ne pouvez pas supprimer vos messages
- Vous ne pouvez pas joindre des fichiers
