Internet Explorer puis s'éteint
- sekihotai
- Born
- Inscription: Juil 05, 2009
- Messages: 4
- Status: Offline
Juillet 5th, 2009, 3:02 pm
chaque fois que j'ouvre internet explorer, il arrête tout de suite. J'ai utilisé ce détournement, ce qui est de mon journal
Logfile de Trend Micro HijackThis v2.0.2
Scan sauvé à 6:01:13 PM, le 05.07.2009
Plate-forme: Windows 2003 SP2 (WinNT 5.02.3790)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C: \ Program Files \ Alwil Software \ Avast4 \ aswupdsv.exe
C: \ Program Files \ Alwil Software \ Avast4 \ ashServ.exe
C: \ MMOPro Repack \ Server \ apache \ bin \ apache. exe
C: \ PROGRA ~ 2 \ AVG \ AVG8 \ avgwdsvc.exe
C: \ Program Files (x86) \ Bonjour \ mDNSResponder.exe
C: \ Program Files (x86) \ Java \ jre6 \ bin \ jqs.exe
C: \ WINDOWS \ SysWow64 \ PnkBstrA.exe
C: \ WINDOWS \ SysWow64 \ PnkBstrB.exe
C: \ MMOPro Repack \ Server \ apache \ bin \ apache.exe
C: \ Program Files \ Alwil Software \ Avast4 \ ashmaisv.exe
C: \ Program Files \ Alwil Software \ Avast4 \ ashWebSv.exe
C: \ WINDOWS \ RTHDCPL.EXE
C: \ Program Files (x86) \ MSN Messenger \ MsnMsgr. Exe
C: \ Program Files (x86) \ DAEMON Tools Lite \ daemon.exe
C: \ Program Files \ Messenger \ msmsgs.exe
C: \ Program Files (x86) \ Electronic Arts \ EADM \ Core.exe
C: \ Program Files (x86) \ Internet Download Manager \ IDMan.exe
C: \ WINDOWS \ SysWow64 \ ctfmon.exe
C: \ Program Files (x86) \ Java \ jre6 \ bin \ jusched.exe
C: \ Program Files (x86) \ Common Files \ Real \ Update_OB \ realsched.exe
C: \ Program Files (x86) \ Winamp \ winampa.exe
C: \ PROGRA ~ 2 \ AVG \ AVG8 \ avgtray.exe
C: \ PROGRA ~ 1 \ ALWILS ~ 1 \ Avast4 \ ashDisp. exe
C: \ Program Files (x86) \ MSN Messenger \ usnsvc.exe
C: \ Program Files (x86) \ Mozilla Firefox \ firefox.exe
C: \ Program Files \ Alwil Software \ Avast4 \ ashSimpl.exe
C: \ Program Files (x86) \ Trend Micro \ HijackThis \ HijackThis.exe
C: \ Program Files (x86) \ OGPlanet \ RumbleFighter \ RUMBLEFIGHTER. EXE
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://google.ca/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyOverride = local
R3 - URLSearchHook: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - (no file)
F2 - REG: system.ini: userinit = Userinit
O2 - BHO: IDM Helper - (0055C089-8582-441B-A0BF-17B458C2A3A8) - C: \ Program Files (x86) \ Internet Download Manager \ IDMIECC.dll
O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files (x86) \ Common Files \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper. dll
O2 - BHO: RealPlayer Téléchargez et Record Plugin for Internet Explorer - (3049C3E9-B461-4BC5-8870-4C09146192CA) - C: \ Program Files (x86) \ Real \ RealPlayer \ rpbrowserrecordplugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - (3CA2F312-6F6E-4B53-A66E-4E65E497C8C0) - C: \ Program Files (x86) \ AVG \ AVG8 \ avgssie.dll
O2 - BHO: Groove GFS Browser Helper - (72853161-30C5-4D22-B7F9-0BBC1D38A37E) - C: \ PROGRA ~ 2 \ MICROS ~ 2 \ Office12 \ GRA8E1 ~ 1. DLL
O2 - BHO: Java (tm) Plug-In SSV Helper - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files (x86) \ Java \ jre6 \ bin \ ssv.dll
O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file)
O2 - BHO: Windows Live Sign-in Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files (x86) \ Common Files \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: (no name) - (b3ac7917-f663-439d-b54f-318e8e5e21d2) - C: \ WINDOWS \ SysWow64 \ tuhenato. dll (file missing)
O2 - BHO: Java (tm) Plug-In 2 SSV Helper - (DBC80044-A445-435b-BC74-9C25C1C588A9) - C: \ Program Files (x86) \ Java \ jre6 \ bin \ jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - (E7E6F031-17CE-4C07-BC86-EABFE594F69C) - C: \ Program Files (x86) \ Java \ jre6 \ lib \ déployer \ jqs \ ie \ jqs_plugin.dll
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Program Files (x86) \ Java \ jre6 \ bin \ jusched.exe"
O4 - HKLM \ .. \ Run: [Adobe Reader Speed Launcher] "C: \ Program Files (x86) \ Adobe \ Reader 8. 0 \ Reader \ Reader_sl.exe "
O4 - HKLM \ .. \ Run: [NeroFilterCheck] C: \ WINDOWS \ SysWow64 \ NeroCheck.exe
O4 - HKLM \ .. \ Run: [prunnet] "C: \ WINDOWS \ system32 \ prunnet.exe"
O4 - HKLM \ .. \ Run: [TkBellExe] "C: \ Program Files (x86) \ Common Files \ Real \ Update_OB \ realsched.exe"-osboot
O4 - HKLM \ .. \ Run: [GrooveMonitor] "C: \ Program Files (x86) \ Microsoft Office \ Office12 \ GrooveMonitor.exe"
O4 - HKLM \ .. \ Run: [WinampAgent] "C: \ Program Files (x86) \ Winamp \ winampa. exe "
O4 - HKLM \ .. \ Run: [GroupManager] C: \ Program Files (x86) \ Torrent \ groupmanager.exe
O4 - HKLM \ .. \ Run: [AVG8_TRAY] C: \ PROGRA ~ 2 \ AVG \ AVG8 \ avgtray.exe
O4 - HKLM \ .. \ Run: [kukegijubu] Rundll32.exe "C: \ WINDOWS \ system32 \ yejewusi.dll", s
O4 - HKLM \ .. \ Run: [prnet] "C: \ WINDOWS \ system32 \ prnet.tmp"
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files (x86) \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [avast! ] C: \ PROGRA ~ 1 \ ALWILS ~ 1 \ Avast4 \ ashDisp.exe
O4 - HKCU \ .. \ Run: [MsnMsgr] "C: \ Program Files (x86) \ MSN Messenger \ msnmsgr.exe" / background
O4 - HKCU \ .. \ Run: [NVIDIA nTune] "C: \ Program Files (x86) \ NVIDIA Corporation \ nTune \ nTuneCmd.exe" clair
O4 - HKCU \ .. \ Run: [DAEMON Tools Lite] "C: \ Program Files (x86) \ DAEMON Tools Lite \ daemon.exe"-autorun
O4 - HKCU \ .. \ Run: [MSMSGS] "C: \ Program Files \ Messenger \ msmsgs.exe" / background
O4 - HKCU \ .. \ Run: [prunnet] "C: \ WINDOWS \ system32 \ prunnet.exe"
O4 - HKCU \ .. \ Run: [EA Core] "C: \ Program Files (x86) \ Electronic Arts \ EADM \ Core.exe" silencieux
O4 - HKCU \ .. \ Run: [IDMan] C: \ Program Files (x86) \ Internet Download Manager \ IDMan.exe / ONBOOT
O4 - HKCU \ .. \ Run: [WindowBlinds] C: \ Program Files (x86) \ Stardock \ Object Desktop \ WindowBlinds \ WBInstall64.exe
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKCU \ .. \ Run: [prnet] "C: \ WINDOWS \ system32 \ prnet.tmp"
O4 - HKCU \ .. \ Run: [net] "C: \ WINDOWS \ system32 \ net.net"
O4 - HKCU \ .. \ Run: [Cognac] C: \ DOCUME ~ 1 \ User \ LOCALS ~ 1 \ Temp \ b.exe
O4 - HKUS \ S-1-5-19 \ .. \ RunOnce: [tscuninstall]% systemroot% \ system32 \ tscupgrd.exe (User SERVICE LOCAL)
O4 - HKUS \ S-1-5-20 \ .. \ RunOnce: [tscuninstall]% systemroot% \ system32 \ tscupgrd.exe (User service réseau)
O4 - HKUS \ S-1-5-18 \ .. \ RunOnce: [tscuninstall]% systemroot% \ system32 \ tscupgrd. exe (l'utilisateur "SYSTEM")
O4 - HKUS \. DEFAULT \ .. \ RunOnce: [tscuninstall]% systemroot% \ system32 \ tscupgrd.exe (User utilisateur par défaut)
O8 - Extra du menu contextuel: Télécharger tous les liens avec IDM - C: \ Program Files (x86) \ Internet Download Manager \ IEGetAll.htm
O8 - Extra du menu contextuel: Téléchargement de contenu vidéo FLV avec IDM - C: \ Program Files (x86) \ Internet Download Manager \ IEGetVL.htm
O8 - Extra menu item: Télécharger avec IDM - C: \ Program Files (x86) \ Internet Download Manager \ IEExt. htm
O8 - Extra du menu contextuel: E & xporter vers Microsoft Excel -- res://C : \ PROGRA ~ 2 \ MICROS ~ 2 \ Office12 \ EXCEL.EXE/3000
O9 - Extra button: Envoyer à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 2 \ MICROS ~ 2 \ Office12 \ ONBttnIE.dll
O9 - Extra "Outils" menuitem: S & end à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 2 \ MICROS ~ 2 \ Office12 \ ONBttnIE. dll
O9 - Extra button: Add to VideoGet - (88CFA58B-A63F-4A94-9C54-0C7A58E3333E) - C: \ PROGRA ~ 2 \ NUCLEA ~ 1 \ VideoGet \ Plugins \ VIDEOG ~ 1.DLL
O9 - Extra "Outils" menuitem: Add to & VideoGet - (88CFA58B-A63F-4A94-9C54-0C7A58E3333E) - C: \ PROGRA ~ 2 \ NUCLEA ~ 1 \ VideoGet \ Plugins \ VIDEOG ~ 1.DLL
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 2 \ MICROS ~ 2 \ Office12 \ REFIEBAR. DLL
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O15 - Trusted Zone: *. amaena.com
O15 - Trusted Zone: *. antispyexpert.com
O15 - Trusted Zone: *. avsystemcare.com
O15 - Trusted Zone: *. imageservr.com
O15 - Trusted Zone: *. imagesrvr.com
O15 - Trusted Zone: *. onerateld. com
O15 - Trusted Zone: *. safetydownload.com
O15 - Trusted Zone: *. spyguardpro.com
O15 - Trusted Zone: *. storageguardsoft.com
O15 - Trusted Zone: *. trustedantivirus.com
O15 - Trusted Zone: *. virusremover2008.com
O15 - Trusted Zone: *. virusschlacht.com
O15 - Trusted Zone: *. amaena.com (HKLM)
O15 - Trusted Zone: *. antispyexpert.com (HKLM)
O15 - Trusted Zone: *. avsystemcare.com (HKLM)
O15 - Trusted Zone: *. imageservr.com (HKLM)
O15 - Trusted Zone: *. imagesrvr. com (HKLM)
O15 - Trusted Zone: *. onerateld.com (HKLM)
O15 - Trusted Zone: *. safetydownload.com (HKLM)
O15 - Trusted Zone: *. spyguardpro.com (HKLM)
O15 - Trusted Zone: *. storageguardsoft.com (HKLM)
O15 - Trusted Zone: *. trustedantivirus.com (HKLM)
O15 - Trusted Zone: *. virusremover2008.com (HKLM)
O15 - Trusted Zone: *. virusschlacht. com (HKLM)
O15 - Trusted IP range: http://192.168.1.1
O15 - ESC Trusted Zone: http://runonce.msn.com
O15 - ESC Trusted IP range: http://192.168.1.1
O16 - DPF: (5D6F45B3-9043-443D-A792-115447494D24) (UnoCtrl Class) -- http://messenger.zone.msn.com/KO-KR/a-U ... E_UNO1.cab
O16 - DPF: (6414512B-B978-451D-A0D8-FCFDF33E833C) (WUWebControl Class) -- http://www.update.microsoft.com/windows ... 2292610359
O16 - DPF: (69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A) (GameLauncher Control) -- http://www.acclaim.com/cabs/acclaim_v5.cab
O16 - DPF: (784797A8-342D-4072-9486-03C8D0F2F0A1) (Battlefield Heroes Updater) -- https://www.battlefieldheroes.com/stati ... 0.17.0.cab
O16 - DPF: (87A638DE-396F-40FD-A2F8-01B56072F553) (Launcher Class) -- http://download.gemfighter.com/launcher/gemx2.cab
O16 - DPF: (B8339132-E751-452B-87F5-5F3D4365638B) (Wemade Launcher Class) -- http://girlfriend.wemade.com/comsso/weGameLauncher.cab
O16 - DPF: (C3F79A2B-B9B4-4A66-B012-3EE46475B072) (MessengerStatsClient Class) -- http://messenger.zone.msn.com/binary/Me ... b56907.cab
O16 - DPF: (D27CDB6E-AE6D-11CF-96B8-444553540000) (Shockwave Flash Object) -- http://fpdownload2.macromedia.com/get/f ... wflash.cab
O16 - DPF: (F5A7706B-B9C0-4C89-A715-7A0C6B05DD48) (Minesweeper Flags Class) -- http://messenger.zone.msn.com/binary/Mi ... b56986.cab
O16 - DPF : (F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8) (GoPetsWeb Control) -- http://secure.gopetslive.com/dev/GoPetsWeb.cab
O18 - Protocol: grooveLocalGWS - (88FED34C-F0CA-4636-A375-3CB6248B04CD) - C: \ PROGRA ~ 2 \ MICROS ~ 2 \ Office12 \ GR99D3 ~ 1.DLL
O18 - Protocol: linkscanner - (F274614C-63F8-47D5-A4D1-FBDDE494F8D1) - C: \ Program Files (x86) \ AVG \ AVG8 \ avgpp.dll
O20 - AppInit_DLLs:, C: \ DOCUME ~ 1 \ User \ LOCALS ~ 1 \ Temp \ 36377500454mxx.dll
O20 - Winlogon Notify: nnnkHaAR - nnnkHaAR.dll (file missing)
O23 - Service: Apache2. 2 - Apache Software Foundation - C: \ MMOPro Repack \ Server \ apache \ bin \ apache.exe
O23 - Service: avast! iAVS4 Control Service (aswupdsv) - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ aswupdsv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ ashmaisv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ ashWebSv.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, sro - C: \ PROGRA ~ 2 \ AVG \ AVG8 \ avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc - C: \ Program Files (x86) \ Bonjour \ mDNSResponder.exe
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - Unknown owner - C: \ WINDOWS \ System32 \ dmadmin. exe (file missing)
O23 - Service: Event Log (Eventlog) - Unknown owner - C: \ WINDOWS \ system32 \ services.exe (file missing)
O23 - Service: HTTP SSL (HTTPFilter) - Unknown owner - C: \ WINDOWS \ System32 \ lsass.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C: \ Program Files (x86) \ Common Files \ InstallShield \ Driver \ 11 \ Intel 32 \ IDriverT.exe
O23 - Service: IMAPI CD-Burning COM Service (ImapiService) - Unknown owner - C: \ WINDOWS \ system32 \ IMAPI. exe (file missing)
O23 - Service: iPod Service - Apple Inc - C: \ Program Files (x86) \ iPod \ bin \ iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc - C: \ Program Files (x86) \ Java \ jre6 \ bin \ jqs.exe
O23 - Service: Distributed Transaction Coordinator (MSDTC) - Unknown owner - C: \ WINDOWS \ system32 \ msdtc.exe (file missing)
O23 - Service: Net Logon (Netlogon) - Unknown owner - C: \ WINDOWS \ system32 \ lsass. exe (file missing)
O23 - Service: Service nProtect GameGuard (npggsvc) - Unknown owner - C: \ WINDOWS \ system32 \ GameMon.des.exe (file missing)
O23 - Service: NT LM Security Support Provider (NTLMSSP) - Unknown owner - C: \ WINDOWS \ system32 \ lsass.exe (file missing)
O23 - Service: nTune Service (nTuneService) - NVIDIA - C: \ Program Files (x86) \ NVIDIA Corporation \ nTune \ nTuneService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C: \ WINDOWS \ system32 \ nvsvc64. exe (file missing)
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C: \ WINDOWS \ system32 \ services.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C: \ WINDOWS \ system32 \ PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C: \ WINDOWS \ system32 \ PnkBstrB.exe
O23 - Service: IPSEC Services (PolicyAgent) - Unknown owner - C: \ WINDOWS \ system32 \ lsass.exe (file missing)
O23 - Service: Protected Storage (ProtectedStorage) - Unknown owner - C: \ WINDOWS \ system32 \ lsass. exe (file missing)
O23 - Service: Remote Desktop Help Session Manager (RDSessMgr) - Unknown owner - C: \ WINDOWS \ system32 \ sessmgr.exe (file missing)
O23 - Service: Gestionnaire de comptes de sécurité (SamSs) - Unknown owner - C: \ WINDOWS \ system32 \ lsass.exe (file missing)
O23 - Service: Virtual Disk Service (vds) - Unknown owner - C: \ WINDOWS \ System32 \ vds.exe (file missing)
O23 - Service: Volume Shadow Copy (VSS) - Unknown owner - C: \ WINDOWS \ System32 \ vssvc. exe (file missing)
O23 - Service: wampapache - Apache Software Foundation - c: \ wamp \ bin \ apache \ apache2.2.6 \ bin \ httpd.exe
O23 - Service: wampmysqld - Unknown owner - c: \ wamp \ bin \ mysql \ mysql5.0.45 \ bin \ mysqld-NT.EXE
O23 - Service: WMI Performance Adapter (WmiApSrv) - Unknown owner - C: \ WINDOWS \ system32 \ wbem \ wmiapsrv.exe (file missing)
--
Fin de fichier - 14,142 octets
Pensez-vous qu'ils peuvent aider? En utilisant Windows XP édition x64 de profession avec 4 Go de ram
Logfile de Trend Micro HijackThis v2.0.2
Scan sauvé à 6:01:13 PM, le 05.07.2009
Plate-forme: Windows 2003 SP2 (WinNT 5.02.3790)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C: \ Program Files \ Alwil Software \ Avast4 \ aswupdsv.exe
C: \ Program Files \ Alwil Software \ Avast4 \ ashServ.exe
C: \ MMOPro Repack \ Server \ apache \ bin \ apache. exe
C: \ PROGRA ~ 2 \ AVG \ AVG8 \ avgwdsvc.exe
C: \ Program Files (x86) \ Bonjour \ mDNSResponder.exe
C: \ Program Files (x86) \ Java \ jre6 \ bin \ jqs.exe
C: \ WINDOWS \ SysWow64 \ PnkBstrA.exe
C: \ WINDOWS \ SysWow64 \ PnkBstrB.exe
C: \ MMOPro Repack \ Server \ apache \ bin \ apache.exe
C: \ Program Files \ Alwil Software \ Avast4 \ ashmaisv.exe
C: \ Program Files \ Alwil Software \ Avast4 \ ashWebSv.exe
C: \ WINDOWS \ RTHDCPL.EXE
C: \ Program Files (x86) \ MSN Messenger \ MsnMsgr. Exe
C: \ Program Files (x86) \ DAEMON Tools Lite \ daemon.exe
C: \ Program Files \ Messenger \ msmsgs.exe
C: \ Program Files (x86) \ Electronic Arts \ EADM \ Core.exe
C: \ Program Files (x86) \ Internet Download Manager \ IDMan.exe
C: \ WINDOWS \ SysWow64 \ ctfmon.exe
C: \ Program Files (x86) \ Java \ jre6 \ bin \ jusched.exe
C: \ Program Files (x86) \ Common Files \ Real \ Update_OB \ realsched.exe
C: \ Program Files (x86) \ Winamp \ winampa.exe
C: \ PROGRA ~ 2 \ AVG \ AVG8 \ avgtray.exe
C: \ PROGRA ~ 1 \ ALWILS ~ 1 \ Avast4 \ ashDisp. exe
C: \ Program Files (x86) \ MSN Messenger \ usnsvc.exe
C: \ Program Files (x86) \ Mozilla Firefox \ firefox.exe
C: \ Program Files \ Alwil Software \ Avast4 \ ashSimpl.exe
C: \ Program Files (x86) \ Trend Micro \ HijackThis \ HijackThis.exe
C: \ Program Files (x86) \ OGPlanet \ RumbleFighter \ RUMBLEFIGHTER. EXE
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://google.ca/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyOverride = local
R3 - URLSearchHook: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - (no file)
F2 - REG: system.ini: userinit = Userinit
O2 - BHO: IDM Helper - (0055C089-8582-441B-A0BF-17B458C2A3A8) - C: \ Program Files (x86) \ Internet Download Manager \ IDMIECC.dll
O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files (x86) \ Common Files \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper. dll
O2 - BHO: RealPlayer Téléchargez et Record Plugin for Internet Explorer - (3049C3E9-B461-4BC5-8870-4C09146192CA) - C: \ Program Files (x86) \ Real \ RealPlayer \ rpbrowserrecordplugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - (3CA2F312-6F6E-4B53-A66E-4E65E497C8C0) - C: \ Program Files (x86) \ AVG \ AVG8 \ avgssie.dll
O2 - BHO: Groove GFS Browser Helper - (72853161-30C5-4D22-B7F9-0BBC1D38A37E) - C: \ PROGRA ~ 2 \ MICROS ~ 2 \ Office12 \ GRA8E1 ~ 1. DLL
O2 - BHO: Java (tm) Plug-In SSV Helper - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files (x86) \ Java \ jre6 \ bin \ ssv.dll
O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file)
O2 - BHO: Windows Live Sign-in Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files (x86) \ Common Files \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: (no name) - (b3ac7917-f663-439d-b54f-318e8e5e21d2) - C: \ WINDOWS \ SysWow64 \ tuhenato. dll (file missing)
O2 - BHO: Java (tm) Plug-In 2 SSV Helper - (DBC80044-A445-435b-BC74-9C25C1C588A9) - C: \ Program Files (x86) \ Java \ jre6 \ bin \ jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - (E7E6F031-17CE-4C07-BC86-EABFE594F69C) - C: \ Program Files (x86) \ Java \ jre6 \ lib \ déployer \ jqs \ ie \ jqs_plugin.dll
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Program Files (x86) \ Java \ jre6 \ bin \ jusched.exe"
O4 - HKLM \ .. \ Run: [Adobe Reader Speed Launcher] "C: \ Program Files (x86) \ Adobe \ Reader 8. 0 \ Reader \ Reader_sl.exe "
O4 - HKLM \ .. \ Run: [NeroFilterCheck] C: \ WINDOWS \ SysWow64 \ NeroCheck.exe
O4 - HKLM \ .. \ Run: [prunnet] "C: \ WINDOWS \ system32 \ prunnet.exe"
O4 - HKLM \ .. \ Run: [TkBellExe] "C: \ Program Files (x86) \ Common Files \ Real \ Update_OB \ realsched.exe"-osboot
O4 - HKLM \ .. \ Run: [GrooveMonitor] "C: \ Program Files (x86) \ Microsoft Office \ Office12 \ GrooveMonitor.exe"
O4 - HKLM \ .. \ Run: [WinampAgent] "C: \ Program Files (x86) \ Winamp \ winampa. exe "
O4 - HKLM \ .. \ Run: [GroupManager] C: \ Program Files (x86) \ Torrent \ groupmanager.exe
O4 - HKLM \ .. \ Run: [AVG8_TRAY] C: \ PROGRA ~ 2 \ AVG \ AVG8 \ avgtray.exe
O4 - HKLM \ .. \ Run: [kukegijubu] Rundll32.exe "C: \ WINDOWS \ system32 \ yejewusi.dll", s
O4 - HKLM \ .. \ Run: [prnet] "C: \ WINDOWS \ system32 \ prnet.tmp"
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files (x86) \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [avast! ] C: \ PROGRA ~ 1 \ ALWILS ~ 1 \ Avast4 \ ashDisp.exe
O4 - HKCU \ .. \ Run: [MsnMsgr] "C: \ Program Files (x86) \ MSN Messenger \ msnmsgr.exe" / background
O4 - HKCU \ .. \ Run: [NVIDIA nTune] "C: \ Program Files (x86) \ NVIDIA Corporation \ nTune \ nTuneCmd.exe" clair
O4 - HKCU \ .. \ Run: [DAEMON Tools Lite] "C: \ Program Files (x86) \ DAEMON Tools Lite \ daemon.exe"-autorun
O4 - HKCU \ .. \ Run: [MSMSGS] "C: \ Program Files \ Messenger \ msmsgs.exe" / background
O4 - HKCU \ .. \ Run: [prunnet] "C: \ WINDOWS \ system32 \ prunnet.exe"
O4 - HKCU \ .. \ Run: [EA Core] "C: \ Program Files (x86) \ Electronic Arts \ EADM \ Core.exe" silencieux
O4 - HKCU \ .. \ Run: [IDMan] C: \ Program Files (x86) \ Internet Download Manager \ IDMan.exe / ONBOOT
O4 - HKCU \ .. \ Run: [WindowBlinds] C: \ Program Files (x86) \ Stardock \ Object Desktop \ WindowBlinds \ WBInstall64.exe
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKCU \ .. \ Run: [prnet] "C: \ WINDOWS \ system32 \ prnet.tmp"
O4 - HKCU \ .. \ Run: [net] "C: \ WINDOWS \ system32 \ net.net"
O4 - HKCU \ .. \ Run: [Cognac] C: \ DOCUME ~ 1 \ User \ LOCALS ~ 1 \ Temp \ b.exe
O4 - HKUS \ S-1-5-19 \ .. \ RunOnce: [tscuninstall]% systemroot% \ system32 \ tscupgrd.exe (User SERVICE LOCAL)
O4 - HKUS \ S-1-5-20 \ .. \ RunOnce: [tscuninstall]% systemroot% \ system32 \ tscupgrd.exe (User service réseau)
O4 - HKUS \ S-1-5-18 \ .. \ RunOnce: [tscuninstall]% systemroot% \ system32 \ tscupgrd. exe (l'utilisateur "SYSTEM")
O4 - HKUS \. DEFAULT \ .. \ RunOnce: [tscuninstall]% systemroot% \ system32 \ tscupgrd.exe (User utilisateur par défaut)
O8 - Extra du menu contextuel: Télécharger tous les liens avec IDM - C: \ Program Files (x86) \ Internet Download Manager \ IEGetAll.htm
O8 - Extra du menu contextuel: Téléchargement de contenu vidéo FLV avec IDM - C: \ Program Files (x86) \ Internet Download Manager \ IEGetVL.htm
O8 - Extra menu item: Télécharger avec IDM - C: \ Program Files (x86) \ Internet Download Manager \ IEExt. htm
O8 - Extra du menu contextuel: E & xporter vers Microsoft Excel -- res://C : \ PROGRA ~ 2 \ MICROS ~ 2 \ Office12 \ EXCEL.EXE/3000
O9 - Extra button: Envoyer à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 2 \ MICROS ~ 2 \ Office12 \ ONBttnIE.dll
O9 - Extra "Outils" menuitem: S & end à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 2 \ MICROS ~ 2 \ Office12 \ ONBttnIE. dll
O9 - Extra button: Add to VideoGet - (88CFA58B-A63F-4A94-9C54-0C7A58E3333E) - C: \ PROGRA ~ 2 \ NUCLEA ~ 1 \ VideoGet \ Plugins \ VIDEOG ~ 1.DLL
O9 - Extra "Outils" menuitem: Add to & VideoGet - (88CFA58B-A63F-4A94-9C54-0C7A58E3333E) - C: \ PROGRA ~ 2 \ NUCLEA ~ 1 \ VideoGet \ Plugins \ VIDEOG ~ 1.DLL
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 2 \ MICROS ~ 2 \ Office12 \ REFIEBAR. DLL
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O15 - Trusted Zone: *. amaena.com
O15 - Trusted Zone: *. antispyexpert.com
O15 - Trusted Zone: *. avsystemcare.com
O15 - Trusted Zone: *. imageservr.com
O15 - Trusted Zone: *. imagesrvr.com
O15 - Trusted Zone: *. onerateld. com
O15 - Trusted Zone: *. safetydownload.com
O15 - Trusted Zone: *. spyguardpro.com
O15 - Trusted Zone: *. storageguardsoft.com
O15 - Trusted Zone: *. trustedantivirus.com
O15 - Trusted Zone: *. virusremover2008.com
O15 - Trusted Zone: *. virusschlacht.com
O15 - Trusted Zone: *. amaena.com (HKLM)
O15 - Trusted Zone: *. antispyexpert.com (HKLM)
O15 - Trusted Zone: *. avsystemcare.com (HKLM)
O15 - Trusted Zone: *. imageservr.com (HKLM)
O15 - Trusted Zone: *. imagesrvr. com (HKLM)
O15 - Trusted Zone: *. onerateld.com (HKLM)
O15 - Trusted Zone: *. safetydownload.com (HKLM)
O15 - Trusted Zone: *. spyguardpro.com (HKLM)
O15 - Trusted Zone: *. storageguardsoft.com (HKLM)
O15 - Trusted Zone: *. trustedantivirus.com (HKLM)
O15 - Trusted Zone: *. virusremover2008.com (HKLM)
O15 - Trusted Zone: *. virusschlacht. com (HKLM)
O15 - Trusted IP range: http://192.168.1.1
O15 - ESC Trusted Zone: http://runonce.msn.com
O15 - ESC Trusted IP range: http://192.168.1.1
O16 - DPF: (5D6F45B3-9043-443D-A792-115447494D24) (UnoCtrl Class) -- http://messenger.zone.msn.com/KO-KR/a-U ... E_UNO1.cab
O16 - DPF: (6414512B-B978-451D-A0D8-FCFDF33E833C) (WUWebControl Class) -- http://www.update.microsoft.com/windows ... 2292610359
O16 - DPF: (69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A) (GameLauncher Control) -- http://www.acclaim.com/cabs/acclaim_v5.cab
O16 - DPF: (784797A8-342D-4072-9486-03C8D0F2F0A1) (Battlefield Heroes Updater) -- https://www.battlefieldheroes.com/stati ... 0.17.0.cab
O16 - DPF: (87A638DE-396F-40FD-A2F8-01B56072F553) (Launcher Class) -- http://download.gemfighter.com/launcher/gemx2.cab
O16 - DPF: (B8339132-E751-452B-87F5-5F3D4365638B) (Wemade Launcher Class) -- http://girlfriend.wemade.com/comsso/weGameLauncher.cab
O16 - DPF: (C3F79A2B-B9B4-4A66-B012-3EE46475B072) (MessengerStatsClient Class) -- http://messenger.zone.msn.com/binary/Me ... b56907.cab
O16 - DPF: (D27CDB6E-AE6D-11CF-96B8-444553540000) (Shockwave Flash Object) -- http://fpdownload2.macromedia.com/get/f ... wflash.cab
O16 - DPF: (F5A7706B-B9C0-4C89-A715-7A0C6B05DD48) (Minesweeper Flags Class) -- http://messenger.zone.msn.com/binary/Mi ... b56986.cab
O16 - DPF : (F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8) (GoPetsWeb Control) -- http://secure.gopetslive.com/dev/GoPetsWeb.cab
O18 - Protocol: grooveLocalGWS - (88FED34C-F0CA-4636-A375-3CB6248B04CD) - C: \ PROGRA ~ 2 \ MICROS ~ 2 \ Office12 \ GR99D3 ~ 1.DLL
O18 - Protocol: linkscanner - (F274614C-63F8-47D5-A4D1-FBDDE494F8D1) - C: \ Program Files (x86) \ AVG \ AVG8 \ avgpp.dll
O20 - AppInit_DLLs:, C: \ DOCUME ~ 1 \ User \ LOCALS ~ 1 \ Temp \ 36377500454mxx.dll
O20 - Winlogon Notify: nnnkHaAR - nnnkHaAR.dll (file missing)
O23 - Service: Apache2. 2 - Apache Software Foundation - C: \ MMOPro Repack \ Server \ apache \ bin \ apache.exe
O23 - Service: avast! iAVS4 Control Service (aswupdsv) - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ aswupdsv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ ashmaisv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ ashWebSv.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, sro - C: \ PROGRA ~ 2 \ AVG \ AVG8 \ avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc - C: \ Program Files (x86) \ Bonjour \ mDNSResponder.exe
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - Unknown owner - C: \ WINDOWS \ System32 \ dmadmin. exe (file missing)
O23 - Service: Event Log (Eventlog) - Unknown owner - C: \ WINDOWS \ system32 \ services.exe (file missing)
O23 - Service: HTTP SSL (HTTPFilter) - Unknown owner - C: \ WINDOWS \ System32 \ lsass.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C: \ Program Files (x86) \ Common Files \ InstallShield \ Driver \ 11 \ Intel 32 \ IDriverT.exe
O23 - Service: IMAPI CD-Burning COM Service (ImapiService) - Unknown owner - C: \ WINDOWS \ system32 \ IMAPI. exe (file missing)
O23 - Service: iPod Service - Apple Inc - C: \ Program Files (x86) \ iPod \ bin \ iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc - C: \ Program Files (x86) \ Java \ jre6 \ bin \ jqs.exe
O23 - Service: Distributed Transaction Coordinator (MSDTC) - Unknown owner - C: \ WINDOWS \ system32 \ msdtc.exe (file missing)
O23 - Service: Net Logon (Netlogon) - Unknown owner - C: \ WINDOWS \ system32 \ lsass. exe (file missing)
O23 - Service: Service nProtect GameGuard (npggsvc) - Unknown owner - C: \ WINDOWS \ system32 \ GameMon.des.exe (file missing)
O23 - Service: NT LM Security Support Provider (NTLMSSP) - Unknown owner - C: \ WINDOWS \ system32 \ lsass.exe (file missing)
O23 - Service: nTune Service (nTuneService) - NVIDIA - C: \ Program Files (x86) \ NVIDIA Corporation \ nTune \ nTuneService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C: \ WINDOWS \ system32 \ nvsvc64. exe (file missing)
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C: \ WINDOWS \ system32 \ services.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C: \ WINDOWS \ system32 \ PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C: \ WINDOWS \ system32 \ PnkBstrB.exe
O23 - Service: IPSEC Services (PolicyAgent) - Unknown owner - C: \ WINDOWS \ system32 \ lsass.exe (file missing)
O23 - Service: Protected Storage (ProtectedStorage) - Unknown owner - C: \ WINDOWS \ system32 \ lsass. exe (file missing)
O23 - Service: Remote Desktop Help Session Manager (RDSessMgr) - Unknown owner - C: \ WINDOWS \ system32 \ sessmgr.exe (file missing)
O23 - Service: Gestionnaire de comptes de sécurité (SamSs) - Unknown owner - C: \ WINDOWS \ system32 \ lsass.exe (file missing)
O23 - Service: Virtual Disk Service (vds) - Unknown owner - C: \ WINDOWS \ System32 \ vds.exe (file missing)
O23 - Service: Volume Shadow Copy (VSS) - Unknown owner - C: \ WINDOWS \ System32 \ vssvc. exe (file missing)
O23 - Service: wampapache - Apache Software Foundation - c: \ wamp \ bin \ apache \ apache2.2.6 \ bin \ httpd.exe
O23 - Service: wampmysqld - Unknown owner - c: \ wamp \ bin \ mysql \ mysql5.0.45 \ bin \ mysqld-NT.EXE
O23 - Service: WMI Performance Adapter (WmiApSrv) - Unknown owner - C: \ WINDOWS \ system32 \ wbem \ wmiapsrv.exe (file missing)
--
Fin de fichier - 14,142 octets
Pensez-vous qu'ils peuvent aider? En utilisant Windows XP édition x64 de profession avec 4 Go de ram
- Anonymous
- Bot
- Inscription: 25 Feb 2008
- Messages: ?
- Loc: Ozzuland
- Status: Online
Juillet 5th, 2009, 3:02 pm
- Don2007
- Web Master
- Inscription: Nov 21, 2006
- Messages: 4924
- Loc: NY
- Status: Offline
Juillet 5th, 2009, 4:33 pm
Quel gâchis! Vous avez plusieurs instances de logiciels malveillants, pour dire le moins. En plus de ce que j'ai énumérés ci-dessous, je propose le texte suivant: Supprimer tous les fichiers. Cab en O16. Si vous n'avez pas tous les domaines que vous zones de confiance, de supprimer celles qui sont bien. Après cela, de télécharger, mettre à jour et de lutte contre les logiciels malveillants d'exécuter malwarebytes.org
Enfin, je ne sais pas si j'ai confiance Internet Download Manager. Voilà à vous.
O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file)
O2 - BHO: (no name) - (b3ac7917-f663-439d-b54f-318e8e5e21d2) - C: \ WINDOWS \ SysWow64 \ tuhenato.dll (file missing)
O4 - HKLM \ .. \ Run: [prunnet] "C: \ WINDOWS \ system32 \ prunnet.exe"
O4 - HKLM \ .. \ Run: [kukegijubu] Rundll32.exe "C: \ WINDOWS \ system32 \ yejewusi.dll", s
O4 - HKLM \ .. \ Run: [prnet] "C: \ WINDOWS \ system32 \ prnet.tmp"
O4 - HKCU \ .. \ Run: [prunnet] "C: \ WINDOWS \ system32 \ prunnet.exe"
O4 - HKCU \ .. \ Run: [IDMan] C: \ Program Files (x86) \ Internet Download Manager \ IDMan.exe / ONBOOT
O4 - HKCU \ .. \ Run: [prnet] "C: \ WINDOWS \ system32 \ prnet.tmp"
O4 - HKCU \ .. \ Run: [net] "C: \ WINDOWS \ system32 \ net.net"
O4 - HKCU \ .. \ Run: [Cognac] C: \ DOCUME ~ 1 \ User \ LOCALS ~ 1 \ Temp \ b.exe
O4 - HKUS \ S-1-5-19 \ .. \ RunOnce: [tscuninstall]% systemroot% \ system32 \ tscupgrd. exe (User SERVICE LOCAL)
O4 - HKUS \ S-1-5-20 \ .. \ RunOnce: [tscuninstall]% systemroot% \ system32 \ tscupgrd.exe (User service réseau)
O4 - HKUS \ S-1-5-18 \ .. \ RunOnce: [tscuninstall]% systemroot% \ system32 \ tscupgrd.exe (User "SYSTEM")
O4 - HKUS \. DEFAULT \ .. \ RunOnce: [tscuninstall]% systemroot% \ system32 \ tscupgrd.exe (User utilisateur par défaut)
O20 - AppInit_DLLs:, C: \ DOCUME ~ 1 \ User \ LOCALS ~ 1 \ Temp \ 36377500454mxx.dll
O20 - Winlogon Notify: nnnkHaAR - nnnkHaAR.dll (file missing)
Enfin, je ne sais pas si j'ai confiance Internet Download Manager. Voilà à vous.
O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file)
O2 - BHO: (no name) - (b3ac7917-f663-439d-b54f-318e8e5e21d2) - C: \ WINDOWS \ SysWow64 \ tuhenato.dll (file missing)
O4 - HKLM \ .. \ Run: [prunnet] "C: \ WINDOWS \ system32 \ prunnet.exe"
O4 - HKLM \ .. \ Run: [kukegijubu] Rundll32.exe "C: \ WINDOWS \ system32 \ yejewusi.dll", s
O4 - HKLM \ .. \ Run: [prnet] "C: \ WINDOWS \ system32 \ prnet.tmp"
O4 - HKCU \ .. \ Run: [prunnet] "C: \ WINDOWS \ system32 \ prunnet.exe"
O4 - HKCU \ .. \ Run: [IDMan] C: \ Program Files (x86) \ Internet Download Manager \ IDMan.exe / ONBOOT
O4 - HKCU \ .. \ Run: [prnet] "C: \ WINDOWS \ system32 \ prnet.tmp"
O4 - HKCU \ .. \ Run: [net] "C: \ WINDOWS \ system32 \ net.net"
O4 - HKCU \ .. \ Run: [Cognac] C: \ DOCUME ~ 1 \ User \ LOCALS ~ 1 \ Temp \ b.exe
O4 - HKUS \ S-1-5-19 \ .. \ RunOnce: [tscuninstall]% systemroot% \ system32 \ tscupgrd. exe (User SERVICE LOCAL)
O4 - HKUS \ S-1-5-20 \ .. \ RunOnce: [tscuninstall]% systemroot% \ system32 \ tscupgrd.exe (User service réseau)
O4 - HKUS \ S-1-5-18 \ .. \ RunOnce: [tscuninstall]% systemroot% \ system32 \ tscupgrd.exe (User "SYSTEM")
O4 - HKUS \. DEFAULT \ .. \ RunOnce: [tscuninstall]% systemroot% \ system32 \ tscupgrd.exe (User utilisateur par défaut)
O20 - AppInit_DLLs:, C: \ DOCUME ~ 1 \ User \ LOCALS ~ 1 \ Temp \ 36377500454mxx.dll
O20 - Winlogon Notify: nnnkHaAR - nnnkHaAR.dll (file missing)
How do you know when a politician is lying? His mouth is moving.
- sekihotai
- Born
- Inscription: Juil 05, 2009
- Messages: 4
- Status: Offline
Juillet 5th, 2009, 8:46 pm
Merci beaucoup mec! J'ai suivi toutes vos démarches, et cela a fonctionné. Encore une fois, merci l'homme. Mesures simples, mais très efficace.
- Don2007
- Web Master
- Inscription: Nov 21, 2006
- Messages: 4924
- Loc: NY
- Status: Offline
Juillet 6th, 2009, 5:49 am
Glad to hear it.
How do you know when a politician is lying? His mouth is moving.
- sekihotai
- Born
- Inscription: Juil 05, 2009
- Messages: 4
- Status: Offline
Juillet 7th, 2009, 12:31 pm
J'ai rencontré un autre problème, mais je ne sais pas si je dois continuer ce sujet car le problème découlant de cette solution. Mauvais, il suffit de continuer de toute façon. Après j'ai suivi Don2007s solution, Ive a réalisé que je ne pouvais pas télécharger ActiveX. Theres un jeu que je joue, "Gem Fighter". C'est un jeu coréen. Vous devez vous connecter au site, puis cliquez sur un bouton qui se déroulera le match. De toute façon, mon internet explorer ne montrera pas la barre d'or de haut je ne peux donc pas installer Active X. Aussi, aucun des boutons de mon travail. Refresh, d'outils, d'arrêter, rien. Je ne peux pas non plus le type de recherche dans les bars. Mais je sais que sa juste IE, parce que Mozilla Firefox est très bien. Des idées? Heres my Hijack Ce journal.
Logfile de Trend Micro HijackThis v2.0.2
Scan sauvé à 3:30:59 PM, le 07/07/2009
Plate-forme: Windows 2003 SP2 (WinNT 5.02.3790)
MSIE: Internet Explorer v7.00 (7.00.6000.16850)
Boot mode: Normal
Running processes:
C: \ Program Files \ Alwil Software \ Avast4 \ aswupdsv. exe
C: \ Program Files \ Alwil Software \ Avast4 \ ashServ.exe
C: \ MMOPro Repack \ Server \ apache \ bin \ apache.exe
C: \ PROGRA ~ 2 \ AVG \ AVG8 \ avgwdsvc.exe
C: \ Program Files (x86) \ Bonjour \ mDNSResponder.exe
C: \ Program Files (x86) \ Java \ jre6 \ bin \ jqs.exe
C: \ WINDOWS \ SysWow64 \ PnkBstrA.exe
C: \ WINDOWS \ SysWow64 \ PnkBstrB.exe
C: \ MMOPro Repack \ Server \ apache \ bin \ apache.exe
C: \ Program Files \ Alwil Software \ Avast4 \ ashmaisv.exe
C: \ Program Files \ Alwil Software \ Avast4 \ ashWebSv. exe
C: \ WINDOWS \ SysWow64 \ ctfmon.exe
C: \ WINDOWS \ RTHDCPL.EXE
C: \ Program Files (x86) \ MSN Messenger \ msnmsgr.exe
C: \ Program Files (x86) \ DAEMON Tools Lite \ daemon.exe
C: \ Program Files \ Messenger \ msmsgs.exe
C: \ Program Files (x86) \ Electronic Arts \ EADM \ Core.exe
C: \ Program Files (x86) \ Internet Download Manager \ IDMan.exe
C: \ Program Files (x86) \ Java \ jre6 \ bin \ jusched.exe
C: \ Program Files (x86) \ Common Files \ Real \ Update_OB \ realsched.exe
C: \ Program Files (x86) \ Winamp \ winampa. exe
C: \ PROGRA ~ 2 \ AVG \ AVG8 \ avgtray.exe
C: \ PROGRA ~ 1 \ ALWILS ~ 1 \ Avast4 \ ashDisp.exe
C: \ Program Files (x86) \ Mozilla Firefox \ firefox.exe
C: \ Program Files (x86) \ Trend Micro \ HijackThis \ HijackThis. exe
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, First Home Page = http://go.microsoft.com/fwlink/?LinkId=54843
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyOverride = local
O2 - BHO: IDM Helper - (0055C089-8582-441B-A0BF-17B458C2A3A8) - C: \ Program Files (x86) \ Internet Download Manager \ IDMIECC.dll
O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files (x86) \ Common Files \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper. dll
O2 - BHO: RealPlayer Téléchargez et Record Plugin for Internet Explorer - (3049C3E9-B461-4BC5-8870-4C09146192CA) - C: \ Program Files (x86) \ Real \ RealPlayer \ rpbrowserrecordplugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - (3CA2F312-6F6E-4B53-A66E-4E65E497C8C0) - C: \ Program Files (x86) \ AVG \ AVG8 \ avgssie. dll
O2 - BHO: E-Zsoft VideoDownloaderToolBar - (4322A444-92F8-4C3E-BD4C-013BA51E2871) - (no file)
O2 - BHO: Groove GFS Browser Helper - (72853161-30C5-4D22-B7F9-0BBC1D38A37E) - C: \ PROGRA ~ 2 \ MICROS ~ 2 \ Office12 \ GRA8E1 ~ 1.DLL
O2 - BHO: Java (tm) Plug-In SSV Helper - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files (x86) \ Java \ jre6 \ bin \ ssv. dll
O2 - BHO: Windows Live Sign-in Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files (x86) \ Common Files \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: Java (tm) Plug-In 2 SSV Helper - (DBC80044-A445-435b-BC74-9C25C1C588A9) - C: \ Program Files (x86) \ Java \ jre6 \ bin \ jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - (E7E6F031-17CE-4C07-BC86-EABFE594F69C) - C: \ Program Files (x86) \ Java \ jre6 \ lib \ déployer \ jqs \ ie \ jqs_plugin. dll
O3 - Toolbar: (no name) - (4322A444-92F8-4C3E-BD4C-013BA51E2871) - (no file)
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Program Files (x86) \ Java \ jre6 \ bin \ jusched.exe"
O4 - HKLM \ .. \ Run: [Adobe Reader Speed Launcher] "C: \ Program Files (x86) \ Adobe \ Reader 8.0 \ Reader \ Reader_sl.exe"
O4 - HKLM \ .. \ Run: [NeroFilterCheck] C: \ WINDOWS \ SysWow64 \ NeroCheck.exe
O4 - HKLM \ .. \ Run: [TkBellExe] "C: \ Program Files (x86) \ Common Files \ Real \ Update_OB \ realsched. exe "-osboot
O4 - HKLM \ .. \ Run: [GrooveMonitor] "C: \ Program Files (x86) \ Microsoft Office \ Office12 \ GrooveMonitor.exe"
O4 - HKLM \ .. \ Run: [WinampAgent] "C: \ Program Files (x86) \ Winamp \ winampa.exe"
O4 - HKLM \ .. \ Run: [AVG8_TRAY] C: \ PROGRA ~ 2 \ AVG \ AVG8 \ avgtray.exe
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files (x86) \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [avast!] C: \ PROGRA ~ 1 \ ALWILS ~ 1 \ Avast4 \ ashDisp.exe
O4 - HKCU \ .. \ Run: [MsnMsgr] "C: \ Program Files (x86) \ MSN Messenger \ msnmsgr.exe" / background
O4 - HKCU \ .. \ Run: [NVIDIA nTune] "C: \ Program Files (x86) \ NVIDIA Corporation \ nTune \ nTuneCmd.exe" clair
O4 - HKCU \ .. \ Run: [DAEMON Tools Lite] "C: \ Program Files (x86) \ DAEMON Tools Lite \ daemon.exe"-autorun
O4 - HKCU \ .. \ Run: [MSMSGS] "C: \ Program Files \ Messenger \ msmsgs.exe" / background
O4 - HKCU \ .. \ Run: [EA Core] "C: \ Program Files (x86) \ Electronic Arts \ EADM \ Core. exe "-silent
O4 - HKCU \ .. \ Run: [WindowBlinds] C: \ Program Files (x86) \ Stardock \ Object Desktop \ WindowBlinds \ WBInstall64.exe
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKCU \ .. \ Run: [IDMan] C: \ Program Files (x86) \ Internet Download Manager \ IDMan.exe / ONBOOT
O8 - Extra du menu contextuel: Télécharger tous les liens avec IDM - C: \ Program Files (x86) \ Internet Download Manager \ IEGetAll. htm
O8 - Extra du menu contextuel: Télécharger Internet Download par VersalSoft - C: \ Program Files (x86) \ VersalSoft \ InternetDownload \ adddownload.htm
O8 - Extra du menu contextuel: Téléchargement de contenu vidéo FLV avec IDM - C: \ Program Files (x86) \ Internet Download Manager \ IEGetVL.htm
O8 - Extra menu item: Télécharger avec IDM - C: \ Program Files (x86) \ Internet Download Manager \ IEExt. htm
O9 - Extra button: Envoyer à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 2 \ MICROS ~ 2 \ Office12 \ ONBttnIE.dll
O9 - Extra "Outils" menuitem: S & end à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 2 \ MICROS ~ 2 \ Office12 \ ONBttnIE.dll
O9 - Extra button: Add to VideoGet - (88CFA58B-A63F-4A94-9C54-0C7A58E3333E) - C: \ PROGRA ~ 2 \ NUCLEA ~ 1 \ VideoGet \ Plugins \ VIDEOG ~ 1. DLL
O9 - Extra "Outils" menuitem: Add to & VideoGet - (88CFA58B-A63F-4A94-9C54-0C7A58E3333E) - C: \ PROGRA ~ 2 \ NUCLEA ~ 1 \ VideoGet \ Plugins \ VIDEOG ~ 1.DLL
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 2 \ MICROS ~ 2 \ Office12 \ REFIEBAR.DLL
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs. exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O15 - ESC Trusted Zone: http://runonce.msn.com
O18 - Protocol: grooveLocalGWS - (88FED34C-F0CA-4636-A375-3CB6248B04CD) - C: \ PROGRA ~ 2 \ MICROS ~ 2 \ Office12 \ GR99D3 ~ 1.DLL
O18 - Protocol: linkscanner - (F274614C-63F8-47D5-A4D1-FBDDE494F8D1) - C: \ Program Files (x86) \ AVG \ AVG8 \ avgpp.dll
O23 - Service: Apache2. 2 - Apache Software Foundation - C: \ MMOPro Repack \ Server \ apache \ bin \ apache.exe
O23 - Service: avast! iAVS4 Control Service (aswupdsv) - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ aswupdsv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ ashmaisv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ ashWebSv.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, sro - C: \ PROGRA ~ 2 \ AVG \ AVG8 \ avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc - C: \ Program Files (x86) \ Bonjour \ mDNSResponder.exe
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - Unknown owner - C: \ WINDOWS \ System32 \ dmadmin. exe (file missing)
O23 - Service: Event Log (Eventlog) - Unknown owner - C: \ WINDOWS \ system32 \ services.exe (file missing)
O23 - Service: HTTP SSL (HTTPFilter) - Unknown owner - C: \ WINDOWS \ System32 \ lsass.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C: \ Program Files (x86) \ Common Files \ InstallShield \ Driver \ 11 \ Intel 32 \ IDriverT.exe
O23 - Service: IMAPI CD-Burning COM Service (ImapiService) - Unknown owner - C: \ WINDOWS \ system32 \ IMAPI. exe (file missing)
O23 - Service: iPod Service - Apple Inc - C: \ Program Files (x86) \ iPod \ bin \ iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc - C: \ Program Files (x86) \ Java \ jre6 \ bin \ jqs.exe
O23 - Service: Distributed Transaction Coordinator (MSDTC) - Unknown owner - C: \ WINDOWS \ system32 \ msdtc.exe (file missing)
O23 - Service: Net Logon (Netlogon) - Unknown owner - C: \ WINDOWS \ system32 \ lsass. exe (file missing)
O23 - Service: Service nProtect GameGuard (npggsvc) - Unknown owner - C: \ WINDOWS \ system32 \ GameMon.des.exe (file missing)
O23 - Service: NT LM Security Support Provider (NTLMSSP) - Unknown owner - C: \ WINDOWS \ system32 \ lsass.exe (file missing)
O23 - Service: nTune Service (nTuneService) - NVIDIA - C: \ Program Files (x86) \ NVIDIA Corporation \ nTune \ nTuneService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C: \ WINDOWS \ system32 \ nvsvc64. exe (file missing)
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C: \ WINDOWS \ system32 \ services.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C: \ WINDOWS \ system32 \ PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C: \ WINDOWS \ system32 \ PnkBstrB.exe
O23 - Service: IPSEC Services (PolicyAgent) - Unknown owner - C: \ WINDOWS \ system32 \ lsass.exe (file missing)
O23 - Service: Protected Storage (ProtectedStorage) - Unknown owner - C: \ WINDOWS \ system32 \ lsass. exe (file missing)
O23 - Service: Remote Desktop Help Session Manager (RDSessMgr) - Unknown owner - C: \ WINDOWS \ system32 \ sessmgr.exe (file missing)
O23 - Service: Gestionnaire de comptes de sécurité (SamSs) - Unknown owner - C: \ WINDOWS \ system32 \ lsass.exe (file missing)
O23 - Service: Virtual Disk Service (vds) - Unknown owner - C: \ WINDOWS \ System32 \ vds.exe (file missing)
O23 - Service: Volume Shadow Copy (VSS) - Unknown owner - C: \ WINDOWS \ System32 \ vssvc. exe (file missing)
O23 - Service: wampapache - Apache Software Foundation - c: \ wamp \ bin \ apache \ apache2.2.6 \ bin \ httpd.exe
O23 - Service: wampmysqld - Unknown owner - c: \ wamp \ bin \ mysql \ mysql5.0.45 \ bin \ mysqld-NT.EXE
O23 - Service: WMI Performance Adapter (WmiApSrv) - Unknown owner - C: \ WINDOWS \ system32 \ wbem \ wmiapsrv.exe (file missing)
--
Fin de fichier - 10,406 octets
Logfile de Trend Micro HijackThis v2.0.2
Scan sauvé à 3:30:59 PM, le 07/07/2009
Plate-forme: Windows 2003 SP2 (WinNT 5.02.3790)
MSIE: Internet Explorer v7.00 (7.00.6000.16850)
Boot mode: Normal
Running processes:
C: \ Program Files \ Alwil Software \ Avast4 \ aswupdsv. exe
C: \ Program Files \ Alwil Software \ Avast4 \ ashServ.exe
C: \ MMOPro Repack \ Server \ apache \ bin \ apache.exe
C: \ PROGRA ~ 2 \ AVG \ AVG8 \ avgwdsvc.exe
C: \ Program Files (x86) \ Bonjour \ mDNSResponder.exe
C: \ Program Files (x86) \ Java \ jre6 \ bin \ jqs.exe
C: \ WINDOWS \ SysWow64 \ PnkBstrA.exe
C: \ WINDOWS \ SysWow64 \ PnkBstrB.exe
C: \ MMOPro Repack \ Server \ apache \ bin \ apache.exe
C: \ Program Files \ Alwil Software \ Avast4 \ ashmaisv.exe
C: \ Program Files \ Alwil Software \ Avast4 \ ashWebSv. exe
C: \ WINDOWS \ SysWow64 \ ctfmon.exe
C: \ WINDOWS \ RTHDCPL.EXE
C: \ Program Files (x86) \ MSN Messenger \ msnmsgr.exe
C: \ Program Files (x86) \ DAEMON Tools Lite \ daemon.exe
C: \ Program Files \ Messenger \ msmsgs.exe
C: \ Program Files (x86) \ Electronic Arts \ EADM \ Core.exe
C: \ Program Files (x86) \ Internet Download Manager \ IDMan.exe
C: \ Program Files (x86) \ Java \ jre6 \ bin \ jusched.exe
C: \ Program Files (x86) \ Common Files \ Real \ Update_OB \ realsched.exe
C: \ Program Files (x86) \ Winamp \ winampa. exe
C: \ PROGRA ~ 2 \ AVG \ AVG8 \ avgtray.exe
C: \ PROGRA ~ 1 \ ALWILS ~ 1 \ Avast4 \ ashDisp.exe
C: \ Program Files (x86) \ Mozilla Firefox \ firefox.exe
C: \ Program Files (x86) \ Trend Micro \ HijackThis \ HijackThis. exe
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, First Home Page = http://go.microsoft.com/fwlink/?LinkId=54843
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyOverride = local
O2 - BHO: IDM Helper - (0055C089-8582-441B-A0BF-17B458C2A3A8) - C: \ Program Files (x86) \ Internet Download Manager \ IDMIECC.dll
O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files (x86) \ Common Files \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper. dll
O2 - BHO: RealPlayer Téléchargez et Record Plugin for Internet Explorer - (3049C3E9-B461-4BC5-8870-4C09146192CA) - C: \ Program Files (x86) \ Real \ RealPlayer \ rpbrowserrecordplugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - (3CA2F312-6F6E-4B53-A66E-4E65E497C8C0) - C: \ Program Files (x86) \ AVG \ AVG8 \ avgssie. dll
O2 - BHO: E-Zsoft VideoDownloaderToolBar - (4322A444-92F8-4C3E-BD4C-013BA51E2871) - (no file)
O2 - BHO: Groove GFS Browser Helper - (72853161-30C5-4D22-B7F9-0BBC1D38A37E) - C: \ PROGRA ~ 2 \ MICROS ~ 2 \ Office12 \ GRA8E1 ~ 1.DLL
O2 - BHO: Java (tm) Plug-In SSV Helper - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files (x86) \ Java \ jre6 \ bin \ ssv. dll
O2 - BHO: Windows Live Sign-in Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files (x86) \ Common Files \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: Java (tm) Plug-In 2 SSV Helper - (DBC80044-A445-435b-BC74-9C25C1C588A9) - C: \ Program Files (x86) \ Java \ jre6 \ bin \ jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - (E7E6F031-17CE-4C07-BC86-EABFE594F69C) - C: \ Program Files (x86) \ Java \ jre6 \ lib \ déployer \ jqs \ ie \ jqs_plugin. dll
O3 - Toolbar: (no name) - (4322A444-92F8-4C3E-BD4C-013BA51E2871) - (no file)
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Program Files (x86) \ Java \ jre6 \ bin \ jusched.exe"
O4 - HKLM \ .. \ Run: [Adobe Reader Speed Launcher] "C: \ Program Files (x86) \ Adobe \ Reader 8.0 \ Reader \ Reader_sl.exe"
O4 - HKLM \ .. \ Run: [NeroFilterCheck] C: \ WINDOWS \ SysWow64 \ NeroCheck.exe
O4 - HKLM \ .. \ Run: [TkBellExe] "C: \ Program Files (x86) \ Common Files \ Real \ Update_OB \ realsched. exe "-osboot
O4 - HKLM \ .. \ Run: [GrooveMonitor] "C: \ Program Files (x86) \ Microsoft Office \ Office12 \ GrooveMonitor.exe"
O4 - HKLM \ .. \ Run: [WinampAgent] "C: \ Program Files (x86) \ Winamp \ winampa.exe"
O4 - HKLM \ .. \ Run: [AVG8_TRAY] C: \ PROGRA ~ 2 \ AVG \ AVG8 \ avgtray.exe
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files (x86) \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [avast!] C: \ PROGRA ~ 1 \ ALWILS ~ 1 \ Avast4 \ ashDisp.exe
O4 - HKCU \ .. \ Run: [MsnMsgr] "C: \ Program Files (x86) \ MSN Messenger \ msnmsgr.exe" / background
O4 - HKCU \ .. \ Run: [NVIDIA nTune] "C: \ Program Files (x86) \ NVIDIA Corporation \ nTune \ nTuneCmd.exe" clair
O4 - HKCU \ .. \ Run: [DAEMON Tools Lite] "C: \ Program Files (x86) \ DAEMON Tools Lite \ daemon.exe"-autorun
O4 - HKCU \ .. \ Run: [MSMSGS] "C: \ Program Files \ Messenger \ msmsgs.exe" / background
O4 - HKCU \ .. \ Run: [EA Core] "C: \ Program Files (x86) \ Electronic Arts \ EADM \ Core. exe "-silent
O4 - HKCU \ .. \ Run: [WindowBlinds] C: \ Program Files (x86) \ Stardock \ Object Desktop \ WindowBlinds \ WBInstall64.exe
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKCU \ .. \ Run: [IDMan] C: \ Program Files (x86) \ Internet Download Manager \ IDMan.exe / ONBOOT
O8 - Extra du menu contextuel: Télécharger tous les liens avec IDM - C: \ Program Files (x86) \ Internet Download Manager \ IEGetAll. htm
O8 - Extra du menu contextuel: Télécharger Internet Download par VersalSoft - C: \ Program Files (x86) \ VersalSoft \ InternetDownload \ adddownload.htm
O8 - Extra du menu contextuel: Téléchargement de contenu vidéo FLV avec IDM - C: \ Program Files (x86) \ Internet Download Manager \ IEGetVL.htm
O8 - Extra menu item: Télécharger avec IDM - C: \ Program Files (x86) \ Internet Download Manager \ IEExt. htm
O9 - Extra button: Envoyer à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 2 \ MICROS ~ 2 \ Office12 \ ONBttnIE.dll
O9 - Extra "Outils" menuitem: S & end à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 2 \ MICROS ~ 2 \ Office12 \ ONBttnIE.dll
O9 - Extra button: Add to VideoGet - (88CFA58B-A63F-4A94-9C54-0C7A58E3333E) - C: \ PROGRA ~ 2 \ NUCLEA ~ 1 \ VideoGet \ Plugins \ VIDEOG ~ 1. DLL
O9 - Extra "Outils" menuitem: Add to & VideoGet - (88CFA58B-A63F-4A94-9C54-0C7A58E3333E) - C: \ PROGRA ~ 2 \ NUCLEA ~ 1 \ VideoGet \ Plugins \ VIDEOG ~ 1.DLL
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 2 \ MICROS ~ 2 \ Office12 \ REFIEBAR.DLL
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs. exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O15 - ESC Trusted Zone: http://runonce.msn.com
O18 - Protocol: grooveLocalGWS - (88FED34C-F0CA-4636-A375-3CB6248B04CD) - C: \ PROGRA ~ 2 \ MICROS ~ 2 \ Office12 \ GR99D3 ~ 1.DLL
O18 - Protocol: linkscanner - (F274614C-63F8-47D5-A4D1-FBDDE494F8D1) - C: \ Program Files (x86) \ AVG \ AVG8 \ avgpp.dll
O23 - Service: Apache2. 2 - Apache Software Foundation - C: \ MMOPro Repack \ Server \ apache \ bin \ apache.exe
O23 - Service: avast! iAVS4 Control Service (aswupdsv) - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ aswupdsv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ ashmaisv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ ashWebSv.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, sro - C: \ PROGRA ~ 2 \ AVG \ AVG8 \ avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc - C: \ Program Files (x86) \ Bonjour \ mDNSResponder.exe
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - Unknown owner - C: \ WINDOWS \ System32 \ dmadmin. exe (file missing)
O23 - Service: Event Log (Eventlog) - Unknown owner - C: \ WINDOWS \ system32 \ services.exe (file missing)
O23 - Service: HTTP SSL (HTTPFilter) - Unknown owner - C: \ WINDOWS \ System32 \ lsass.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C: \ Program Files (x86) \ Common Files \ InstallShield \ Driver \ 11 \ Intel 32 \ IDriverT.exe
O23 - Service: IMAPI CD-Burning COM Service (ImapiService) - Unknown owner - C: \ WINDOWS \ system32 \ IMAPI. exe (file missing)
O23 - Service: iPod Service - Apple Inc - C: \ Program Files (x86) \ iPod \ bin \ iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc - C: \ Program Files (x86) \ Java \ jre6 \ bin \ jqs.exe
O23 - Service: Distributed Transaction Coordinator (MSDTC) - Unknown owner - C: \ WINDOWS \ system32 \ msdtc.exe (file missing)
O23 - Service: Net Logon (Netlogon) - Unknown owner - C: \ WINDOWS \ system32 \ lsass. exe (file missing)
O23 - Service: Service nProtect GameGuard (npggsvc) - Unknown owner - C: \ WINDOWS \ system32 \ GameMon.des.exe (file missing)
O23 - Service: NT LM Security Support Provider (NTLMSSP) - Unknown owner - C: \ WINDOWS \ system32 \ lsass.exe (file missing)
O23 - Service: nTune Service (nTuneService) - NVIDIA - C: \ Program Files (x86) \ NVIDIA Corporation \ nTune \ nTuneService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C: \ WINDOWS \ system32 \ nvsvc64. exe (file missing)
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C: \ WINDOWS \ system32 \ services.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C: \ WINDOWS \ system32 \ PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C: \ WINDOWS \ system32 \ PnkBstrB.exe
O23 - Service: IPSEC Services (PolicyAgent) - Unknown owner - C: \ WINDOWS \ system32 \ lsass.exe (file missing)
O23 - Service: Protected Storage (ProtectedStorage) - Unknown owner - C: \ WINDOWS \ system32 \ lsass. exe (file missing)
O23 - Service: Remote Desktop Help Session Manager (RDSessMgr) - Unknown owner - C: \ WINDOWS \ system32 \ sessmgr.exe (file missing)
O23 - Service: Gestionnaire de comptes de sécurité (SamSs) - Unknown owner - C: \ WINDOWS \ system32 \ lsass.exe (file missing)
O23 - Service: Virtual Disk Service (vds) - Unknown owner - C: \ WINDOWS \ System32 \ vds.exe (file missing)
O23 - Service: Volume Shadow Copy (VSS) - Unknown owner - C: \ WINDOWS \ System32 \ vssvc. exe (file missing)
O23 - Service: wampapache - Apache Software Foundation - c: \ wamp \ bin \ apache \ apache2.2.6 \ bin \ httpd.exe
O23 - Service: wampmysqld - Unknown owner - c: \ wamp \ bin \ mysql \ mysql5.0.45 \ bin \ mysqld-NT.EXE
O23 - Service: WMI Performance Adapter (WmiApSrv) - Unknown owner - C: \ WINDOWS \ system32 \ wbem \ wmiapsrv.exe (file missing)
--
Fin de fichier - 10,406 octets
- sekihotai
- Born
- Inscription: Juil 05, 2009
- Messages: 4
- Status: Offline
Août 26th, 2009, 4:23 pm
Any ideas anyone?
Page 1 sur 1
Pour répondre à ce sujet, vous devez vous connecter ou vous enregistrer. Il est gratuit.
Afficher de l'information
- Total des messages de ce sujet: 6 messages
- Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 90 invités
- Vous ne pouvez pas poster de nouveaux sujets
- Vous ne pouvez pas répondre aux sujets
- Vous ne pouvez pas éditer vos messages
- Vous ne pouvez pas supprimer vos messages
- Vous ne pouvez pas joindre des fichiers
