Keylogger...Aide D:
- BlueDice
- Born
- Inscription: Juil 03, 2010
- Messages: 2
- Status: Offline
Juillet 3rd, 2010, 2:56 am
Ok Im ainsi à peu près sûr que j'ai un keylogger mon ACCO a WoW ben volé 2 fois et mon compte FB a également été volé 2 fois.
processus en cours:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ nvsvc32.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ Program Files \ Lavasoft \ AAWService \ Ad-Aware. exe
C: \ WINDOWS \ explorer.exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ Program Files \ F-Secure FSM32.EXE \ \ Common
C: \ Program Files \ ManyCam 2,4 \ ManyCam.exe
C: \ Program Files \ Windows Live \ Messenger \ msnmsgr.exe
C: \ WINDOWS \ system32 \ ctfmon.exe
C: \ Program Files \ Messenger \ msmsgs.exe
C: \ Program Files \ Steam \ Steam.exe
C: Spybot \ - Search & Destroy \ TeaTimer.exe
C: \ Program Files \ Fichiers communs \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService. exe
C: \ Program Files \ ApplicationUpdater.exe \ Application de mise à jour
C: \ Program Files \ Bonjour \ mDNSResponder.exe
C: \ Program Files \ F-Secure \ Anti-Virus \ fsgk32st.exe
C: \ Program Files \ F-Secure FSMA32.EXE \ \ Common
C: \ Program Files \ F-Secure FSGK32.EXE \ \ Anti-Virus
C: \ Program Files \ Nero \ Nero 7 \ InCD \ InCDsrv.exe
C: \ Program Files \ Java \ jre6 \ bin \ jqs.exe
C: \ Program Files \ MSCamS32.exe \ Microsoft LifeCam
C: \ Program Files \ F-\ Secure Common \ FSMB32. EXE
C: \ Program Files CyberLink \ \ Shared Files \ RichVideo.exe
C: \ Program Files \ Microsoft \ Pack d'amélioration de la recherche \ SeaPort \ SeaPort.exe
C: \ Program Files \ F-Secure FCH32.EXE \ \ Common
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ wuauclt.exe
C: \ Program Files \ F-Secure FAMEH32.EXE \ \ Common
C: \ Program Files \ F-Secure \ Anti-Virus \ fsqh.exe
C: \ Program Files \ F-Secure \ FSGUI \ fsguidll.exe
C: \ Program Files \ F-Secure \ FSAUA \ \ Program fsaua.exe
C: \ Program Files \ F-Secure \ Anti-Virus \ fssm32. exe
C: \ Program Files \ F-Secure \ FWES \ Program \ fsdfwd.exe
C: \ Program Files \ F-Secure \ FSAUA \ \ Program fsus.exe
C: \ HJT \ HijackThis.exe
C: \ Program Files \ F-Secure \ Anti-Virus \ fsav32.exe
C: \ WINDOWS \ system32 \ taskmgr.exe
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyOverride = *. local
R3 - URLSearchHook: (no name) - (E312764E-7706-43F1-8DAB-FCDD2B1E416D) - C: \ Program Files \ YouTube Downloader Toolbar \ SearchSettings. dll
BHO O2 -: AcroIEHelperStub - (18DF081C-E8AD-4283-A596-FA578C2EBDC3) - C: \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEHelperShim.dll
O2 - BHO: RealPlayer télécharger et d'enregistrer Plugin pour Internet Explorer - (3049C3E9-B461-4BC5-8870-4C09146192CA) - C: \ Program Files \ Real \ RealPlayer \ rpbrowserrecordplugin.dll
BHO O2 -: Spybot-S & D Protection IE - (53707962-6F74-2D53-2644-206D7942484F) - C: Spybot \ - Search & Destroy SDHelper \. dll
O2 - BHO: (no name) - (5C255C8A-E604-49b4-9D64-90988571CECB) - (no file)
BHO O2 -: Recherche Helper - (6EBF7485-159F-4bff-A14F-B9E3AAC4465B) - C: \ Program Files \ Microsoft \ Pack d'amélioration de la recherche SEPsearchhelperie.dll \ \ Search Helper
O2 - BHO: Java (TM) Plug-In SSV Helper - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre6 \ bin \ SSV. dll
O2 - BHO: Windows Liven kirjautumisapuohjelma - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
BHO O2 -: Demandez BHO Toolbar - (D4027C7F-154A-4066-A1AD-4243D8127440) - C: \ Program Files \ Demandez GenericAskToolbar.dll \ com
O2 - BHO: Java (TM) Plug-In 2 SSV Helper - (DBC80044-A445-435B-BC74-9C25C1C588A9) - C: \ Program Files \ Java \ jre6 \ bin \ jp2ssv. dll
O2 - BHO: Windows Live Toolbar Helper - (E15A8DC0-8516-42A1-81EA-DC94EC1ACF10) - C: \ Program Files \ Windows Live \ Toolbar \ wltcore.dll
O2 - BHO: (no name) - (E312764E-7706-43F1-8DAB-FCDD2B1E416D) - C: \ Program Files \ YouTube Downloader Toolbar \ SearchSettings.dll
O2 - BHO: JQSIEStartDetectorImpl - (E7E6F031-17CE-4C07-BC86-EABFE594F69C) - C: \ Program Files \ Java \ jre6 \ lib \ deploy \ JQS \ ie \ jqs_plugin. dll
O2 - BHO: YouTube Downloader Toolbar - (F3FEE66E-E034-436A-86E4-9690573BEE8A) - C: \ Program Files \ YouTube Downloader Toolbar \ IE \ 1.0 \ youtubedownloaderToolbarIE.dll
Toolbar O3 -: DAEMON Tools Toolbar - (32099AAC-C132-4136-9E9A-4E364A424E17) - C: \ Program Files DAEMON Tools \ Toolbar DTToolbar.dll \
O3 - Toolbar: & Windows Live Toolbar - (21FA44EF-376D-4D53-9B0F-8A89D3229068) - C: \ Program Files \ Windows Live \ Toolbar \ wltcore. dll
Toolbar O3 -: Ask Toolbar - (D4027C7F-154A-4066-A1AD-4243D8127440) - C: \ Program Files \ Demandez GenericAskToolbar.dll \ com
O3 - Toolbar: YouTube Downloader Toolbar - (F3FEE66E-E034-436A-86E4-9690573BEE8A) - C: \ Program Files \ YouTube Downloader Toolbar \ IE \ 1.0 \ youtubedownloaderToolbarIE.dll
O4 - HKLM \ .. \ Run: [NvCplDaemon] RUNDLL32.EXE C: \ WINDOWS \ system32 \ nvcpl.dll, NvStartup
O4 - HKLM \ .. \ Run: [amd_dc_opt] C: \ Program Files \ AMD \ Dual-Core Optimizer \ amd_dc_opt.exe
O4 - HKLM \ .. \ Run: [F-Secure Manager] "C: \ Program Files \ F-Secure \ Common \ FSM32.EXE" / splash
O4 - HKLM \ .. \ Run: [F-] TNB Secure "C: \ Program Files \ F-Secure \ FSGUI \ TNBUtil.exe" / CHECKALL / WAITFORSW
O4 - HKCU \ .. \ Run:] ManyCam ["C: \ Program Files \ ManyCam ManyCam.exe 2,4 \"
O4 - HKCU \ .. \ Run:] msnmsgr ["C: \ Program Files \ Windows Live \ msnmsgr.exe \ Messenger" / background
O4 - HKCU \ .. \ Run:] BitComet ["E: BitLord \ \ BitLord.exe"
O4 - HKCU \ .. \ Run: ctfmon [. exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKCU \ .. \ Run: [msmsgs] "C: \ Program Files \ msmsgs.exe \ Messenger" / background
O4 - HKCU \ .. \ Run: [Steam] "C: \ Program Files \ Steam.exe vapeur \" silencieux
O4 - HKCU \ .. \ Run: [] TeaTimer spybotsd C: Spybot \ - Search & Destroy \ TeaTimer.exe
O4 - HKUS \ S-1-5-19 \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ CTFMON.EXE (User service local)
O4 - HKUS \ S-1-5-20 \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ fichier CTFMON. EXE (service réseau de l'utilisateur)
O4 - HKUS \ S-1-5-18 \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ ctfmon.exe (User "SYSTEM")
O4 - HKUS \. DEFAULT \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ ctfmon.exe (User utilisateur par défaut)
O4 - Startup: CurseClientStartup.ccip
O9 - Extra button: Lisaa blogiin Tama - (219C3416-8CB2-491A-A3C7-D9FCDDC9D600) - C: \ Program Files \ Windows Live \ Writer \ WriterBrowserExtension. dll
O9 - Extra "Outils" menuitem: & Lisaa Tämä blogiin tuotteessa Windows Live Writer - (219C3416-8CB2-491A-A3C7-D9FCDDC9D600) - C: \ Program Files \ Windows Live \ Writer \ WriterBrowserExtension.dll
O9 - Extra button: (no name) - (DFB852A3-47F8-48C4-A200-58CAB36FD2A2) - C: \ Spybot - Search & Destroy \ SDHelper.dll
O9 - Extra "Outils" menuitem: Spybot - Search & Destroy & Configuration - (DFB852A3-47F8-48C4-A200-58CAB36FD2A2) - C: \ Spybot - Search & Destroy \ SDHelper. dll
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
xpsp3res.dll O9 - Extra "Outils" menuitem: @, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra button: Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs. exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O16 - DPF: (6414512B-B978-451D-A0D8-FCFDF33E833C) (WUWebControl Class) - http / / www com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab Microsoft mise à jour? 1233232959228
O16 - DPF: (6E32070A-766D-http 4EE6-879C-DC1FA91D2FC3) (MUWebControl classe) - / / mise à jour com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab Microsoft? 1233325096140
O18 - Protocol: skype4com - (FFC8B962-9B40-4DFF-9458-1830C7DD7F5D) - C: \ PROGRA ~ 1 \ COMMON ~ 1 \ Skype \ ~ SKYPE4 1.DLL
Service O23 -: Apple Mobile Device - Apple Inc - C: \ Program Files \ Common Files \ Support Apple \ Mobile Device \ bin \ AppleMobileDeviceService.exe
Service O23 -: Updater Application - robinet, Inc - C: \ Program Files \ ApplicationUpdater.exe \ Application de mise à jour
O23 - Service: Bonjour-palvelu (Bonjour Service) - Apple Inc - C: \ Program Files \ Bonjour \ mDNSResponder. exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C: \ Program Files \ F-Secure \ Anti-Virus \ fsgk32st.exe
Service O23 -: Service de licences FLEXnet - Macrovision Europe Ltd - C: \ Program Files \ Fichiers communs Macrovision \ Shared \ FNPLicensingService.exe \ FLEXnet Publisher
O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C: \ Program Files \ F-Secure \ FSAUA \ fsaua \ Program. exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C: \ Program Files \ F-Secure \ FWES \ Program \ fsdfwd.exe
Service O23 -: agent de gestion de F-Secure (FSMA) - F-Secure Corporation - C: \ Program Files \ F-Secure FSMA32.EXE \ \ Common
O23 - Service: F-Secure Client ORSP (FSORSPClient) - F-Secure Corporation - C: \ Program Files \ F-Secure \ ORSP Client \ fsorsp. exe
Macrovision Corporation Service O23 -: Gestionnaire d'InstallDriver (IDriverT) - - C: \ Program Files \ Fichiers communs \ InstallShield \ Driver \ 11 \ Intel 32 \ IDriverT.exe
Service O23 -: Helper InCD (InCDsrv) - Nero AG - C: \ Program Files \ Nero \ Nero 7 \ InCD \ InCDsrv.exe
O23 - Service: iPod-palvelu (iPod Service) - Apple Inc - C: \ Program Files \ iPod \ bin \ iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc - C: \ Program Files \ Java \ jre6 \ bin \ JQS. exe
Lavasoft Service O23 -: Service Lavasoft Ad-Aware - - C: \ Program Files \ Lavasoft \ AAWService.exe \ Ad-Aware
Service O23 -: NBService - Nero AG - C: \ Program Files \ Nero \ Nero 7 \ NBService.exe \ Nero BackItUp
Service O23 -: NMIndexingService - Nero AG - C: \ Program Files \ Fichiers communs \ Ahead \ Lib \ NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C: \ WINDOWS \ system32 \ nvsvc32. exe
O23 - Service: Cyberlink RichVideo Service (crvs) (RichVideo) - propriétaire - C: \ Program Files \ CyberLink \ Shared Files \ RichVideo.exe
Nokia Service O23 -: ServiceLayer - - C: \ Program Files \ Nokia \ ServiceLayer.exe PC \ Connectivity Solution
-
End of file - 10510 bytes
Si j'ai keyloggers Comment puis-je les supprimer...Dois-je simplement aller à l'emplacement et supprimez le fichier et de vider ma corbeille?
Merci pour l'aide.
BLueDice
processus en cours:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ nvsvc32.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ Program Files \ Lavasoft \ AAWService \ Ad-Aware. exe
C: \ WINDOWS \ explorer.exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ Program Files \ F-Secure FSM32.EXE \ \ Common
C: \ Program Files \ ManyCam 2,4 \ ManyCam.exe
C: \ Program Files \ Windows Live \ Messenger \ msnmsgr.exe
C: \ WINDOWS \ system32 \ ctfmon.exe
C: \ Program Files \ Messenger \ msmsgs.exe
C: \ Program Files \ Steam \ Steam.exe
C: Spybot \ - Search & Destroy \ TeaTimer.exe
C: \ Program Files \ Fichiers communs \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService. exe
C: \ Program Files \ ApplicationUpdater.exe \ Application de mise à jour
C: \ Program Files \ Bonjour \ mDNSResponder.exe
C: \ Program Files \ F-Secure \ Anti-Virus \ fsgk32st.exe
C: \ Program Files \ F-Secure FSMA32.EXE \ \ Common
C: \ Program Files \ F-Secure FSGK32.EXE \ \ Anti-Virus
C: \ Program Files \ Nero \ Nero 7 \ InCD \ InCDsrv.exe
C: \ Program Files \ Java \ jre6 \ bin \ jqs.exe
C: \ Program Files \ MSCamS32.exe \ Microsoft LifeCam
C: \ Program Files \ F-\ Secure Common \ FSMB32. EXE
C: \ Program Files CyberLink \ \ Shared Files \ RichVideo.exe
C: \ Program Files \ Microsoft \ Pack d'amélioration de la recherche \ SeaPort \ SeaPort.exe
C: \ Program Files \ F-Secure FCH32.EXE \ \ Common
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ wuauclt.exe
C: \ Program Files \ F-Secure FAMEH32.EXE \ \ Common
C: \ Program Files \ F-Secure \ Anti-Virus \ fsqh.exe
C: \ Program Files \ F-Secure \ FSGUI \ fsguidll.exe
C: \ Program Files \ F-Secure \ FSAUA \ \ Program fsaua.exe
C: \ Program Files \ F-Secure \ Anti-Virus \ fssm32. exe
C: \ Program Files \ F-Secure \ FWES \ Program \ fsdfwd.exe
C: \ Program Files \ F-Secure \ FSAUA \ \ Program fsus.exe
C: \ HJT \ HijackThis.exe
C: \ Program Files \ F-Secure \ Anti-Virus \ fsav32.exe
C: \ WINDOWS \ system32 \ taskmgr.exe
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyOverride = *. local
R3 - URLSearchHook: (no name) - (E312764E-7706-43F1-8DAB-FCDD2B1E416D) - C: \ Program Files \ YouTube Downloader Toolbar \ SearchSettings. dll
BHO O2 -: AcroIEHelperStub - (18DF081C-E8AD-4283-A596-FA578C2EBDC3) - C: \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEHelperShim.dll
O2 - BHO: RealPlayer télécharger et d'enregistrer Plugin pour Internet Explorer - (3049C3E9-B461-4BC5-8870-4C09146192CA) - C: \ Program Files \ Real \ RealPlayer \ rpbrowserrecordplugin.dll
BHO O2 -: Spybot-S & D Protection IE - (53707962-6F74-2D53-2644-206D7942484F) - C: Spybot \ - Search & Destroy SDHelper \. dll
O2 - BHO: (no name) - (5C255C8A-E604-49b4-9D64-90988571CECB) - (no file)
BHO O2 -: Recherche Helper - (6EBF7485-159F-4bff-A14F-B9E3AAC4465B) - C: \ Program Files \ Microsoft \ Pack d'amélioration de la recherche SEPsearchhelperie.dll \ \ Search Helper
O2 - BHO: Java (TM) Plug-In SSV Helper - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre6 \ bin \ SSV. dll
O2 - BHO: Windows Liven kirjautumisapuohjelma - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
BHO O2 -: Demandez BHO Toolbar - (D4027C7F-154A-4066-A1AD-4243D8127440) - C: \ Program Files \ Demandez GenericAskToolbar.dll \ com
O2 - BHO: Java (TM) Plug-In 2 SSV Helper - (DBC80044-A445-435B-BC74-9C25C1C588A9) - C: \ Program Files \ Java \ jre6 \ bin \ jp2ssv. dll
O2 - BHO: Windows Live Toolbar Helper - (E15A8DC0-8516-42A1-81EA-DC94EC1ACF10) - C: \ Program Files \ Windows Live \ Toolbar \ wltcore.dll
O2 - BHO: (no name) - (E312764E-7706-43F1-8DAB-FCDD2B1E416D) - C: \ Program Files \ YouTube Downloader Toolbar \ SearchSettings.dll
O2 - BHO: JQSIEStartDetectorImpl - (E7E6F031-17CE-4C07-BC86-EABFE594F69C) - C: \ Program Files \ Java \ jre6 \ lib \ deploy \ JQS \ ie \ jqs_plugin. dll
O2 - BHO: YouTube Downloader Toolbar - (F3FEE66E-E034-436A-86E4-9690573BEE8A) - C: \ Program Files \ YouTube Downloader Toolbar \ IE \ 1.0 \ youtubedownloaderToolbarIE.dll
Toolbar O3 -: DAEMON Tools Toolbar - (32099AAC-C132-4136-9E9A-4E364A424E17) - C: \ Program Files DAEMON Tools \ Toolbar DTToolbar.dll \
O3 - Toolbar: & Windows Live Toolbar - (21FA44EF-376D-4D53-9B0F-8A89D3229068) - C: \ Program Files \ Windows Live \ Toolbar \ wltcore. dll
Toolbar O3 -: Ask Toolbar - (D4027C7F-154A-4066-A1AD-4243D8127440) - C: \ Program Files \ Demandez GenericAskToolbar.dll \ com
O3 - Toolbar: YouTube Downloader Toolbar - (F3FEE66E-E034-436A-86E4-9690573BEE8A) - C: \ Program Files \ YouTube Downloader Toolbar \ IE \ 1.0 \ youtubedownloaderToolbarIE.dll
O4 - HKLM \ .. \ Run: [NvCplDaemon] RUNDLL32.EXE C: \ WINDOWS \ system32 \ nvcpl.dll, NvStartup
O4 - HKLM \ .. \ Run: [amd_dc_opt] C: \ Program Files \ AMD \ Dual-Core Optimizer \ amd_dc_opt.exe
O4 - HKLM \ .. \ Run: [F-Secure Manager] "C: \ Program Files \ F-Secure \ Common \ FSM32.EXE" / splash
O4 - HKLM \ .. \ Run: [F-] TNB Secure "C: \ Program Files \ F-Secure \ FSGUI \ TNBUtil.exe" / CHECKALL / WAITFORSW
O4 - HKCU \ .. \ Run:] ManyCam ["C: \ Program Files \ ManyCam ManyCam.exe 2,4 \"
O4 - HKCU \ .. \ Run:] msnmsgr ["C: \ Program Files \ Windows Live \ msnmsgr.exe \ Messenger" / background
O4 - HKCU \ .. \ Run:] BitComet ["E: BitLord \ \ BitLord.exe"
O4 - HKCU \ .. \ Run: ctfmon [. exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKCU \ .. \ Run: [msmsgs] "C: \ Program Files \ msmsgs.exe \ Messenger" / background
O4 - HKCU \ .. \ Run: [Steam] "C: \ Program Files \ Steam.exe vapeur \" silencieux
O4 - HKCU \ .. \ Run: [] TeaTimer spybotsd C: Spybot \ - Search & Destroy \ TeaTimer.exe
O4 - HKUS \ S-1-5-19 \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ CTFMON.EXE (User service local)
O4 - HKUS \ S-1-5-20 \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ fichier CTFMON. EXE (service réseau de l'utilisateur)
O4 - HKUS \ S-1-5-18 \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ ctfmon.exe (User "SYSTEM")
O4 - HKUS \. DEFAULT \ .. \ Run: [CTFMON.EXE] C: \ WINDOWS \ system32 \ ctfmon.exe (User utilisateur par défaut)
O4 - Startup: CurseClientStartup.ccip
O9 - Extra button: Lisaa blogiin Tama - (219C3416-8CB2-491A-A3C7-D9FCDDC9D600) - C: \ Program Files \ Windows Live \ Writer \ WriterBrowserExtension. dll
O9 - Extra "Outils" menuitem: & Lisaa Tämä blogiin tuotteessa Windows Live Writer - (219C3416-8CB2-491A-A3C7-D9FCDDC9D600) - C: \ Program Files \ Windows Live \ Writer \ WriterBrowserExtension.dll
O9 - Extra button: (no name) - (DFB852A3-47F8-48C4-A200-58CAB36FD2A2) - C: \ Spybot - Search & Destroy \ SDHelper.dll
O9 - Extra "Outils" menuitem: Spybot - Search & Destroy & Configuration - (DFB852A3-47F8-48C4-A200-58CAB36FD2A2) - C: \ Spybot - Search & Destroy \ SDHelper. dll
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
xpsp3res.dll O9 - Extra "Outils" menuitem: @, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra button: Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs. exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11D2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O16 - DPF: (6414512B-B978-451D-A0D8-FCFDF33E833C) (WUWebControl Class) - http / / www com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab Microsoft mise à jour? 1233232959228
O16 - DPF: (6E32070A-766D-http 4EE6-879C-DC1FA91D2FC3) (MUWebControl classe) - / / mise à jour com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab Microsoft? 1233325096140
O18 - Protocol: skype4com - (FFC8B962-9B40-4DFF-9458-1830C7DD7F5D) - C: \ PROGRA ~ 1 \ COMMON ~ 1 \ Skype \ ~ SKYPE4 1.DLL
Service O23 -: Apple Mobile Device - Apple Inc - C: \ Program Files \ Common Files \ Support Apple \ Mobile Device \ bin \ AppleMobileDeviceService.exe
Service O23 -: Updater Application - robinet, Inc - C: \ Program Files \ ApplicationUpdater.exe \ Application de mise à jour
O23 - Service: Bonjour-palvelu (Bonjour Service) - Apple Inc - C: \ Program Files \ Bonjour \ mDNSResponder. exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C: \ Program Files \ F-Secure \ Anti-Virus \ fsgk32st.exe
Service O23 -: Service de licences FLEXnet - Macrovision Europe Ltd - C: \ Program Files \ Fichiers communs Macrovision \ Shared \ FNPLicensingService.exe \ FLEXnet Publisher
O23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C: \ Program Files \ F-Secure \ FSAUA \ fsaua \ Program. exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C: \ Program Files \ F-Secure \ FWES \ Program \ fsdfwd.exe
Service O23 -: agent de gestion de F-Secure (FSMA) - F-Secure Corporation - C: \ Program Files \ F-Secure FSMA32.EXE \ \ Common
O23 - Service: F-Secure Client ORSP (FSORSPClient) - F-Secure Corporation - C: \ Program Files \ F-Secure \ ORSP Client \ fsorsp. exe
Macrovision Corporation Service O23 -: Gestionnaire d'InstallDriver (IDriverT) - - C: \ Program Files \ Fichiers communs \ InstallShield \ Driver \ 11 \ Intel 32 \ IDriverT.exe
Service O23 -: Helper InCD (InCDsrv) - Nero AG - C: \ Program Files \ Nero \ Nero 7 \ InCD \ InCDsrv.exe
O23 - Service: iPod-palvelu (iPod Service) - Apple Inc - C: \ Program Files \ iPod \ bin \ iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc - C: \ Program Files \ Java \ jre6 \ bin \ JQS. exe
Lavasoft Service O23 -: Service Lavasoft Ad-Aware - - C: \ Program Files \ Lavasoft \ AAWService.exe \ Ad-Aware
Service O23 -: NBService - Nero AG - C: \ Program Files \ Nero \ Nero 7 \ NBService.exe \ Nero BackItUp
Service O23 -: NMIndexingService - Nero AG - C: \ Program Files \ Fichiers communs \ Ahead \ Lib \ NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C: \ WINDOWS \ system32 \ nvsvc32. exe
O23 - Service: Cyberlink RichVideo Service (crvs) (RichVideo) - propriétaire - C: \ Program Files \ CyberLink \ Shared Files \ RichVideo.exe
Nokia Service O23 -: ServiceLayer - - C: \ Program Files \ Nokia \ ServiceLayer.exe PC \ Connectivity Solution
-
End of file - 10510 bytes
Si j'ai keyloggers Comment puis-je les supprimer...Dois-je simplement aller à l'emplacement et supprimez le fichier et de vider ma corbeille?
Merci pour l'aide.
BLueDice
- Anonymous
- Bot
- Inscription: 25 Feb 2008
- Messages: ?
- Loc: Ozzuland
- Status: Online
Juillet 3rd, 2010, 2:56 am
- Don2007
- Web Master
- Inscription: Nov 21, 2006
- Messages: 4924
- Loc: NY
- Status: Offline
Juillet 3rd, 2010, 6:12 am
O2 - BHO: (no name) - (5C255C8A-E604-49b4-9D64-90988571CECB) - (no file)
Heres ce que je ferais si j'étais vous. Je voudrais supprimer l'entrée ci-dessus et désinstaller toutes les barres d'outils, en particulier celle youtube downloader. Je ne fais pas confiance ou l'autre des fichiers CAB. O16 en. Ils peuvent être supprimés dans ce détournement. Il suffit de cocher les cases et cliquez sur fix ou quoi que ce dit au fond.
Heres ce que je ferais si j'étais vous. Je voudrais supprimer l'entrée ci-dessus et désinstaller toutes les barres d'outils, en particulier celle youtube downloader. Je ne fais pas confiance ou l'autre des fichiers CAB. O16 en. Ils peuvent être supprimés dans ce détournement. Il suffit de cocher les cases et cliquez sur fix ou quoi que ce dit au fond.
How do you know when a politician is lying? His mouth is moving.
- BlueDice
- Born
- Inscription: Juil 03, 2010
- Messages: 2
- Status: Offline
Juillet 3rd, 2010, 6:14 am
Cheers!
Je vais essayer que
Je vais essayer que
Page 1 sur 1
Pour répondre à ce sujet, vous devez vous connecter ou vous enregistrer. Il est gratuit.
Afficher de l'information
- Total des messages de ce sujet: 3 messages
- Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 188 invités
- Vous ne pouvez pas poster de nouveaux sujets
- Vous ne pouvez pas répondre aux sujets
- Vous ne pouvez pas éditer vos messages
- Vous ne pouvez pas supprimer vos messages
- Vous ne pouvez pas joindre des fichiers
