Retour à Forum Microsoft Windows

Keyloggers - la façon de dépister et de se débarrasser?

  • rickatnight11
  • Graduate
  • Graduate
  • Avatar de l’utilisateur
  • Inscription: Mar 13, 2006
  • Messages: 168
  • Loc: Richmond, VA
  • Status: Offline

Message Mars 17th, 2006, 9:26 pm

"Je ne sais pas pourquoi sont - YELLING !
"Beaucoup de bruit!"
-Brick
  • Anonymous
  • Bot
  • No Avatar
  • Inscription: 25 Feb 2008
  • Messages: ?
  • Loc: Ozzuland
  • Status: Online

Message Mars 17th, 2006, 9:26 pm

  • Alkatr0z
  • Mastermind
  • Mastermind
  • No Avatar
  • Inscription: Fév 08, 2004
  • Messages: 1883
  • Loc: Adelaide, Australia
  • Status: Offline

Message Mars 20th, 2006, 4:10 am

doit4God a écrit:
COMMENT PUIS-JE VOIR MON LOG FILE? COMMENT SAVOIR QUE MON LOG FILE A PROBLEME AVEC OU VIRUS SPY ou autre chose?
Je VOIR TOUS LOG FILE POSTE DE VERIFIER SYSTEME MAIS JE Ne HOW TO FIND IT IN MY WINDOW.
MERCI D'AVANCE.


Cliquez ici http://www.ozzu.com/ftopic34568.html et obtenir la dernière version de Hijack This. Suivez les instructions de ce poste.
Ouvrez Hijack This! Cliquez sur "Scan System et mettre log" Lorsque vous cliquez sur le bouton de fermeture à la fin du scan le journal devrait popup notepad.exe dans une fenêtre. Enregistrez-le dans n'importe quel endroit de votre choix, puis poster ici en utilisant Copier-Coller.

Et, s'il vous plaît ne pas taper en majuscules. Comme rickatnight11 dit, il est considéré comme crier. Sauf si bien sûr vous avez un virus rend votre séjour sur capslock clé dans ce cas, nous vous pardonne.
  • kryst
  • Born
  • Born
  • No Avatar
  • Inscription: Juil 06, 2006
  • Messages: 2
  • Status: Offline

Message Juillet 6th, 2006, 10:55 pm

salut, j'ai téléchargé hijack et essayé de le lancer.

mais la demande "n'a pas pu démarrer car MSVBM60.DLL n'a pas été trouvé".

please conseils.
merci!
  • Alkatr0z
  • Mastermind
  • Mastermind
  • No Avatar
  • Inscription: Fév 08, 2004
  • Messages: 1883
  • Loc: Adelaide, Australia
  • Status: Offline

Message Juillet 10th, 2006, 4:26 am

Suivez les instructions ici:
http://www.ozzu.com/ftopic34568.html
  • wolk
  • Born
  • Born
  • No Avatar
  • Inscription: Juin 24, 2007
  • Messages: 1
  • Status: Offline

Message Juin 24th, 2007, 8:58 am

Je pense que j'ai un keylogger .. d'aide?


Running processes:
C: \ Windows \ System32 \ smss.exe
C: \ Windows \ system32 \ csrss.exe
C: \ Windows \ system32 \ Wininit.exe
C: \ Windows \ system32 \ csrss.exe
C: \ Windows \ system32 \ services.exe
C: \ Windows \ system32 \ lsass.exe
C: \ Windows \ system32 \ lsm.exe
C: \ Windows \ system32 \ winlogon.exe
C: \ Windows \ system32 \ svchost.exe
C: \ Windows \ system32 \ svchost.exe
C: \ Windows \ System32 \ svchost.exe
C: \ Windows \ System32 \ svchost. exe
C: \ Windows \ System32 \ svchost.exe
C: \ Windows \ system32 \ svchost.exe
C: \ Windows \ system32 \ SLsvc.exe
C: \ Windows \ system32 \ svchost.exe
C: \ Windows \ system32 \ svchost.exe
C: \ Windows \ System32 \ spoolsv.exe
C: \ Windows \ system32 \ svchost.exe
C: \ Windows \ system32 \ AppleTimeSrv.exe
C: \ Program Files \ Fichiers communs \ Autodesk Shared \ Service \ AdskScSrv.exe
C: \ Program Files \ Bonjour \ mDNSResponder.exe
C: \ Windows \ system32 \ svchost. exe
C: \ Program Files \ Autodesk \ 3dsMax8 \ mentalray \ satellite \ raysat_3dsmax8server.exe
C: \ Windows \ system32 \ svchost.exe
C: \ Program Files \ SigmaTel \ C-Major Audio \ WDM \ STacSV.exe
C: \ Windows \ system32 \ svchost.exe
C: \ Windows \ System32 \ svchost.exe
C: \ Windows \ system32 \ SearchIndexer.exe
C: \ Windows \ system32 \ taskeng.exe
C: \ Windows \ system32 \ UI0Detect.exe
C: \ Windows \ system32 \ taskeng.exe
C: \ Windows \ system32 \ Dwm.exe
C: \ Windows \ Explorer. EXE
C: \ Program Files \ Windows Defender \ MSASCui.exe
C: \ Windows \ sttray.exe
C: \ Windows \ System32 \ IRW.exe
C: \ Program Files \ Apple Keyboard Support \ KbdMgr.exe
C: \ Windows \ System32 \ Brightness.exe
C: \ Program Files \ Java \ jre1.6.0 \ bin \ jusched.exe
C: \ Program Files \ HotKey CD-Eject \ Cdeject.exe
C: \ Program Files \ iTunes \ iTunesHelper.exe
C: \ Program Files \ Picasa2 \ PicasaMediaDetector.exe
C: \ Program Files \ Common Files \ AOL \ 1180786797 \ ee \ aolsoftware. exe
C: \ Program Files \ QuickTime \ qttask.exe
C: \ Program Files \ Windows Sidebar \ sidebar.exe
C: \ Windows \ ehome \ ehtray.exe
C: \ Program Files \ Steam \ Steam.exe
C: \ Program Files \ Skype \ Phone \ Skype.exe
C: \ Program Files \ Common Files \ AOL \ Loader \ aolload.exe
C: \ Windows \ ehome \ ehmsas.exe
C: \ Program Files \ iPod \ bin \ iPodService.exe
C: \ Program Files \ MSN Messenger \ msnmsgr.exe
C: \ Program Files \ MSN Messenger \ usnsvc.exe
C: \ Program Files \ Internet Explorer \ ieuser. exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Users \ Maison \ AppData \ Local \ Microsoft \ Windows \ Temporary Internet Files \ Content.IE5 \ T2JVCJ5W \ sdsetup [1]. Exe
C: \ Users \ Maison \ AppData \ Local \ Temp \ is-0PRNF.tmp \ est-8N03R.tmp
C: \ Windows \ system32 \ SearchProtocolHost.exe
C: \ Windows \ system32 \ searchfilterhost.exe
C: \ Program Files \ HijackThis \ HijackThis.exe
C: \ Windows \ system32 \ cmd.exe
C: \ Windows \ system32 \ net.exe
C: \ Windows \ system32 \ net1. exe
C: \ Program Files \ Spyware Doctor \ swdsvc.exe
C: \ Program Files \ Spyware Doctor \ SDTrayApp. exe

R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.google.co.uk/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main , Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, SearchAssistant =
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, CustomizeSearch =
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyOverride = *. local
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Toolbar, LinksFolderName =
O1 - Hosts::: 1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - (22BF413B-C6D2-4d91-82A9-A0F997BA588C) - C: \ Program Files \ Skype \ Toolbars \ Internet Explorer \ SkypeIEPlugin. dll
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre1.6.0 \ bin \ ssv.dll
O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file)
O3 - Toolbar: ImageShack Toolbar - (6932D140-ABC4-4073-A44C-D4A541665E35) - C: \ Windows \ ImageShackToolbar \ ImageShackToolbar.dll
O4 - HKLM \ .. \ Run: [Windows Defender]% ProgramFiles% \ Windows Defender \ MSASCui.exe-hide
O4 - HKLM \ .. \ Run: [SigmatelSysTrayApp] sttray.exe
O4 - HKLM \ .. \ Run: [IMR] C: \ Windows \ system32 \ IRW.exe
O4 - HKLM \ .. \ Run: [Apple_KbdMgr] "C: \ Program Files \ Apple Keyboard Support \ KbdMgr.exe"
O4 - HKLM \ .. \ Run [Brightness] C: \ Windows \ system32 \ Brightness.exe
O4 - HKLM \ .. \ Run [SunJavaUpdateSched] "C: \ Program Files \ Java \ jre1.6.0 \ bin \ jusched.exe"
O4 - HKLM \ .. \ Run: [Hot Eject CD] C: \ Program Files \ HotKey CD-Eject \ Cdeject.exe
O4 - HKLM \ .. \ Run: [iTunesHelper] "C: \ Program Files \ iTunes \ iTunesHelper.exe"
O4 - HKLM \ .. \ Run: [Picasa Media Detector] C: \ Program Files \ Picasa2 \ PicasaMediaDetector.exe
O4 - HKLM \ .. \ Run: [HostManager] C: \ Program Files \ Common Files \ AOL \ 1180786797 \ ee \ AOLSoftware.exe
O4 - HKLM \ .. \ Run: [IPHSend] C: \ Program Files \ Common Files \ AOL \ IPHSend \ iphsend.exe
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [SDTray] "C: \ Program Files \ Spyware Doctor \ SDTrayApp.exe"
O4 - HKCU \ .. \ Run: [Sidebar] C: \ Program Files \ Windows Sidebar \ sidebar.exe / autorun
O4 - HKCU \ .. \ Run: [ehTray.exe] C: \ Windows \ ehome \ ehTray.exe
O4 - HKCU \ .. \ Run: [Steam] "C: \ Program Files \ Steam \ Steam.exe"-silent
O4 - HKCU \ .. \ Run: [Pinnacle Game Profiler] "C: \ Program Files \ KALiNKOsoft \ Pinnacle Game Profiler \ pinnacle.exe"-atboottime
O4 - HKCU \ .. \ Run: [Skype] "C: \ Program Files \ Skype \ Phone \ Skype.exe" / nosplash / minimiser
O4 - Startup: Adobe Gamma. lnk = C: \ Program Files \ Fichiers communs \ Adobe \ Calibration \ Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C: \ Program Files \ Adobe \ Reader 8.0 \ Reader \ reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C: \ Program Files \ Adobe \ Reader 8.0 \ Reader \ AdobeCollabSync.exe
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0 \ bin \ npjpi160. dll
O9 - Extra "Outils" menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0 \ bin \ npjpi160.dll
O9 - Extra button: Skype - (77BF5300-1474-4EC7-9980-D32B190E9B07) - C: \ Program Files \ Skype \ Toolbars \ Internet Explorer \ SkypeIEPlugin.dll
O10 - Unknown file dans Winsock LSP: c: \ windows \ system32 \ nlaapi.dll
O10 - Unknown file dans Winsock LSP: c: \ windows \ system32 \ napinsp. dll
O10 - Unknown file dans Winsock LSP: c: \ program files \ bonjour \ mdnsnsp. dll
O11 - Options group: [INTERNATIONAL] International *
O13 - Gopher Prefix:
O15 - Trusted Zone: http://toolbar.imageshack.us
O16 - DPF: (03F998B2-0E00-11D3-A498-00104B6EB52E) (MetaStreamCtl Class) -- https://components.viewpoint.com/adobe/ ... tream3.cab
O16 - DPF: (5C051655-FCD5-4969-9182-770EA5AA5565) (Solitaire Showdown Class) -- http://messenger.zone.msn.com/binary/So ... b56986.cab
O16 - DPF: (6932D140-ABC4-4073-A44C-D4A541665E35) (ImageShack Toolbar) -- http://toolbar.imageshack.us/toolbar/Im ... oolbar.cab
O16 - DPF: (C3F79A2B-B9B4-4A66-B012-3EE46475B072) (MessengerStatsClient Class) -- http://messenger.zone.msn.com/binary/Me ... b56907.cab
O16 - DPF: (D27CDB6E-AE6D-11CF-96B8-444553540000) (Shockwave Flash Object) -- http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: livecall - (828030A1-22C1-4009-854F-8E305202313F) - C: \ PROGRA ~ 1 \ MSNMES ~ 1 \ MSGRAP ~ 1.DLL
O18 - Protocol: msnim - (828030A1-22C1-4009-854F-8E305202313F) - C: \ PROGRA ~ 1 \ MSNMES ~ 1 \ MSGRAP ~ 1.DLL
O18 - Protocol: skype4com - (FFC8B962-9B40-4DFF-9458-1830C7DD7F5D) - C: \ PROGRA ~ 1 \ Common ~ 1 \ Skype \ SKYPE4 ~ 1. DLL
O23 - Service: Adobe LM Service - Adobe Systems - C: \ Program Files \ Fichiers communs \ Adobe Systems Shared \ Service \ Adobelmsvc.exe
O23 - Service: Apple Time Service (AppleTimeSrv) - Apple Inc - C: \ Windows \ system32 \ AppleTimeSrv.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C: \ Program Files \ Fichiers communs \ Autodesk Shared \ Service \ AdskScSrv.exe
O23 - Service: Bonjour Service - Apple Computer, Inc - C: \ Program Files \ Bonjour \ mDNSResponder. exe
O23 - Service: @% SystemRoot% \ ehome \ ehstart.dll, -101 (ehstart) - Unknown owner -% windir% \ system32 \ svchost.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc - C: \ Program Files \ iPod \ bin \ iPodService. exe
O23 - Service: RaySat_3dsmax8 Server (mi-raysat_3dsmax8) - Unknown owner - C: \ Program Files \ Autodesk \ 3dsMax8 \ mentalray \ satellite \ raysat_3dsmax8server.exe
O23 - Service: Service PinnacleUpdate (PinnacleUpdateSvc) - KALiNKOsoft - C: \ Program Files \ KALiNKOsoft \ Pinnacle Game Profiler \ pinnacle_updater.exe
O23 - Service: @% SystemRoot% \ system32 \ qwave.dll, -1 (QWAVE) - Unknown owner -% windir% \ system32 \ svchost. exe (file missing)
O23 - Service: Spyware Doctor Service (sdCoreService) - PC Tools - C: \ Program Files \ Spyware Doctor \ swdsvc.exe
O23 - Service: @% SystemRoot% \ system32 \ seclogon.dll, -7001 (seclogon) - Unknown owner -% windir% \ system32 \ svchost.exe (file missing)
O23 - Service: SigmaTel Audio Service (STacSV) - SigmaTel, Inc - C: \ Program Files \ SigmaTel \ C-Major Audio \ WDM \ STacSV.exe
O23 - Service: @% ProgramFiles% \ Windows Media Player \ wmpnetwk. exe, -101 (WMPNetworkSvc) - Unknown owner -% ProgramFiles% \ Windows Media Player \ wmpnetwk.exe (file missing)
  • Alkatr0z
  • Mastermind
  • Mastermind
  • No Avatar
  • Inscription: Fév 08, 2004
  • Messages: 1883
  • Loc: Adelaide, Australia
  • Status: Offline

Message Juillet 1st, 2007, 8:03 am

Voici les seules choses dans ce journal:
Quote:
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyOverride = *. local
O1 - Hosts::: 1 localhost
O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file)

Redémarrez en mode sans échec et exécuter Ce Hijack et de supprimer les entrées ci-dessus.
  • williamthegod
  • Born
  • Born
  • No Avatar
  • Inscription: Juil 31, 2007
  • Messages: 1
  • Status: Offline

Message Juillet 31st, 2007, 11:16 am

heres mine euh je pense que mon ordinateur a un keylogger + certains adware please can u check ty

Running processes:
C: \ Windows \ System32 \ smss.exe
C: \ Windows \ system32 \ csrss.exe
C: \ Windows \ system32 \ Wininit.exe
C: \ Windows \ system32 \ csrss.exe
C: \ Windows \ system32 \ services.exe
C: \ Windows \ system32 \ lsass.exe
C: \ Windows \ system32 \ lsm.exe
C: \ Windows \ system32 \ winlogon.exe
C: \ Windows \ system32 \ svchost.exe
C: \ Windows \ system32 \ svchost.exe
C: \ Windows \ System32 \ svchost. exe
C: \ Windows \ System32 \ svchost.exe
C: \ Windows \ System32 \ svchost.exe
C: \ Windows \ system32 \ svchost.exe
C: \ Windows \ system32 \ SLsvc.exe
C: \ Windows \ system32 \ svchost.exe
C: \ Windows \ system32 \ svchost.exe
C: \ Program Files \ Common Files \ Symantec Shared \ CCSVCHST.exe
C: \ Program Files \ Common Files \ Symantec Shared \ AppCore \ AppSvc32.exe
C: \ Windows \ System32 \ spoolsv.exe
C: \ Windows \ system32 \ svchost.exe
C: \ Windows \ system32 \ Dwm.exe
C: \ Windows \ Explorer. EXE
C: \ Program Files \ Windows Defender \ MSASCui.exe
C: \ Windows \ RtHDVCpl.exe
C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe
C: \ Program Files \ Common Files \ Symantec Shared \ ccapp.exe
C: \ Windows \ System32 \ rundll32.exe
C: \ Program Files \ Launch Manager \ LManager.exe
C: \ Acer \ Empowering Technology \ eDataSecurity \ eDSloader.exe
C: \ Program Files \ Java \ jre1.6.0_02 \ bin \ jusched.exe
C: \ Windows \ System32 \ igfxtray.exe
C: \ Windows \ System32 \ hkcmd. exe
C: \ Windows \ System32 \ igfxpers.exe
C: \ Program Files \ Windows Sidebar \ sidebar.exe
C: \ Windows \ ehome \ ehtray.exe
C: \ Windows \ system32 \ igfxsrvc.exe
C: \ Windows \ ehome \ ehmsas.exe
C: \ Acer \ Empowering Technology \ ENET \ ENMTRAY.EXE
C: \ Users \ William \ AppData \ Local \ Temp \ RtkBtMnt.exe
C: \ Windows \ system32 \ igfxext.exe
C: \ Acer \ Empowering Technology \ eRecovery \ ERAGENT.EXE
C: \ Program Files \ Symantec \ LiveUpdate \ ALUSchedulerSvc. exe
C: \ Acer \ Empowering Technology \ eLock \ Service \ eLockServ.exe
C: \ Acer \ Empowering Technology \ eNet \ eNet service.exe
C: \ Program Files \ Common Files \ LightScribe \ LSSrvc.exe
C: \ Acer \ Mobility Center \ MobilityService.exe
C: \ Windows \ system32 \ svchost.exe
C: \ Program Files \ CyberLink \ Shared Files \ richvideo.exe
C: \ Windows \ system32 \ svchost.exe
C: \ Windows \ System32 \ svchost.exe
C: \ Windows \ system32 \ SearchIndexer.exe
C: \ Windows \ system32 \ drivers \ xaudio. exe
C: \ Acer \ Empowering Technology \ eRecovery \ eRecoveryService.exe
C: \ Acer \ Empowering Technology \ ePower \ ePowerSvc.exe
C: \ Windows \ system32 \ taskeng.exe
C: \ Windows \ system32 \ taskeng.exe
C: \ Program Files \ Common Files \ Symantec Shared \ DPCC-LC \ symlcsvc.exe
C: \ Windows \ system32 \ taskeng.exe
C: \ Program Files \ Spyware Doctor \ swdsvc.exe
C: \ Program Files \ Spyware Doctor \ SDTrayApp.exe
C: \ Program Files \ Mozilla Firefox \ firefox.exe
C: \ Program Files \ Spyware Doctor \ svcntaux. exe
C: \ Program Files \ Spyware Doctor \ swdoctor.exe
C: \ Windows \ system32 \ SearchProtocolHost.exe
C: \ Program Files \ HijackThis \ HijackThis.exe
C: \ Windows \ system32 \ SearchFilterHost. exe

R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://en.uk.acer.yahoo.com
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://en.uk.acer.yahoo.com
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search , SearchAssistant =
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Search, CustomizeSearch =
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Toolbar, LinksFolderName =
O1 - Hosts::: 1 localhost
O2 - BHO: Yahoo! Toolbar Helper - (02478D38-C3F9-4EFB-9B51-7695ECA05670) - C: \ Program Files \ Yahoo! \ Companion \ Installs \ CPN \ yt.dll
O2 - BHO: AcroIEHlprObj Class - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Adobe \ Acrobat 7.0 \ ActiveX \ AcroIEHelper. dll
O2 - BHO: (no name) - (1E8A6170-7264-4D0F-BEAE-D42A53123C75) - C: \ Program Files \ Common Files \ Symantec Shared \ coShared \ Browser \ 1.0 \ NppBho.dll
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre1.6.0_02 \ bin \ ssv.dll
O3 - Toolbar: Show Norton Toolbar - (90222687-F593-4738-B738-FBEE9C7B26DF) - C: \ Program Files \ Common Files \ Symantec Shared \ coShared \ Browser \ 1.0 \ UIBHO.dll
O3 - Toolbar: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - C: \ Program Files \ Yahoo! \ Companion \ Installs \ CPN \ yt.dll
O3 - Toolbar: Acer eDataSecurity Management - (5CBE3B7C-1E47-477e-A7DD-396DB0476E29) - C: \ Windows \ system32 \ eDStoolbar.dll
O4 - HKLM \ .. \ Run: [Windows Defender]% ProgramFiles% \ Windows Defender \ MSASCui.exe-hide
O4 - HKLM \ .. \ Run: [NvSvc] RUNDLL32.EXE C: \ Windows \ system32 \ nvsvc.dll, nvsvcStart
O4 - HKLM \ .. \ Run: [NvCplDaemon] RUNDLL32.EXE C: \ Windows \ system32 \ NvCpl. dll, NvStartup
O4 - HKLM \ .. \ Run: [NvMediaCenter] RUNDLL32.EXE C: \ Windows \ system32 \ NvMcTray.dll, NvTaskbarInit
O4 - HKLM \ .. \ Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM \ .. \ Run: [SynTPEnh] C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe
O4 - HKLM \ .. \ Run: [ccApp] "C: \ Program Files \ Common Files \ Symantec Shared \ ccapp.exe"
O4 - HKLM \ .. \ Run: [IS CfgWiz] "C: \ Program Files \ Common Files \ Symantec Shared \ OPC \ (31011D49-D90C-4da0-878B-78D28AD507AF) \ cltUIStb. exe "/ MODULE CfgWiz / GUID (BC8D3EAF-F864-4d4b-AB4D-B3D0C32E2840) / MODE CfgWiz / cmdline" REBOOT "
O4 - HKLM \ .. \ Run: [osCheck] "C: \ Program Files \ Norton Internet Security \ osCheck.exe"
O4 - HKLM \ .. \ Run: [WarReg_PopUp] C: \ Acer \ WR_PopUp \ WarReg_PopUp.exe
O4 - HKLM \ .. \ Run: [LManager] C: \ PROGRA ~ 1 \ LAUNCH ~ 1 \ LManager.exe
O4 - HKLM \ .. \ Run: [eDataSecurity Loader] C: \ Acer \ Empowering Technology \ eDataSecurity \ eDSloader.exe
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Program Files \ Java \ jre1.6.0_02 \ bin \ jusched.exe"
O4 - HKLM \ .. \ Run: [IgfxTray] C: \ Windows \ system32 \ igfxtray.exe
O4 - HKLM \ .. \ Run: [HotKeysCmds] C: \ Windows \ system32 \ hkcmd.exe
O4 - HKLM \ .. \ Run: [Persistence] C: \ Windows \ system32 \ igfxpers.exe
O4 - HKLM \ .. \ Run: [SDTray] "C: \ Program Files \ Spyware Doctor \ SDTrayApp.exe"
O4 - HKCU \ .. \ Run: [Sidebar] C: \ Program Files \ Windows Sidebar \ sidebar.exe / autorun
O4 - HKCU \ .. \ Run: [ehTray. exe] C: \ Windows \ ehome \ ehTray.exe
O4 - HKCU \ .. \ Run: [ISUSPM Startup] "C: \ Program Files \ Fichiers communs \ InstallShield \ UpdateService \ ISUSPM.exe"-startup
O4 - HKCU \ .. \ Run: [Spyware Begone] C: \ Program Files \ SpeedItUpFree \ FreeScan \ FreeScan.exe-FastScan
O4 - HKCU \ .. \ Run: [SpeedItUpEX] C: \ Program Files \ SpeedItUpFree \ SpeedItUp.exe-MINI
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C: \ Program Files \ Adobe \ Acrobat 7.0 \ Reader \ reader_sl. exe
O4 - Global Startup: Empowering Technology Launcher.lnk =?
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_02 \ bin \ ssv.dll
O9 - Extra "Outils" menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_02 \ bin \ ssv.dll
O10 - Unknown file dans Winsock LSP: c: \ windows \ system32 \ nlaapi.dll
O10 - Unknown file dans Winsock LSP: c: \ windows \ system32 \ napinsp. dll
O11 - Options group: [INTERNATIONAL] International *
O13 - Gopher Prefix:
O20 - Winlogon Notify: igfxcui - C: \ Windows \ SYSTEM32 \ igfxdev.dll
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Société - C: \ Program Files \ Symantec \ LiveUpdate \ aluschedulersvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Unknown owner - C: \ Program Files \ Common Files \ Symantec Shared \ ccSvcHst. exe "/ h ccCommon (file missing)
O23 - Service: Symantec Settings Manager (ccSetMgr) - Unknown owner - C: \ Program Files \ Common Files \ Symantec Shared \ CCSVCHST.exe "/ h ccCommon (file missing)
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C: \ Program Files \ Common Files \ Symantec Shared \ ccSvcHst. exe "/ h ccCommon (file missing)
O23 - Service: COM Host (comHost) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ VAScanner \ comHost.exe
O23 - Service: @% SystemRoot% \ ehome \ ehstart.dll, -101 (ehstart) - Unknown owner -% windir% \ system32 \ svchost.exe (file missing)
O23 - Service: eLock Service (eLockService) - Acer Inc - C: \ Acer \ Empowering Technology \ eLock \ Service \ eLockServ.exe
O23 - Service: eNet Service - Acer Inc - C: \ Acer \ Empowering Technology \ eNet \ eNet service.exe
O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc - C: \ Acer \ Empowering Technology \ eRecovery \ eRecoveryService.exe
O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C: \ Acer \ Empowering Technology \ eSettings \ Service \ capuserv.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C: \ Program Files \ Norton Internet Security \ isPwdSvc. exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C: \ Program Files \ Common Files \ LightScribe \ LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C: \ PROGRA ~ 1 \ Symantec \ LIVEUP ~ 1 \ LUCOMS ~ 1.EXE
O23 - Service: MobilityService - Unknown owner - C: \ Acer \ Mobility Center \ MobilityService.exe
O23 - Service: @% SystemRoot% \ system32 \ qwave.dll, -1 (QWAVE) - Unknown owner -% windir% \ system32 \ svchost. exe (file missing)
O23 - Service: Cyberlink RichVideo Service (CRVS) (RichVideo) - Unknown owner - C: \ Program Files \ CyberLink \ Shared Files \ richvideo.exe
O23 - Service: Spyware Doctor Auxiliary Service (sdAuxService) - PC Tools - C: \ Program Files \ Spyware Doctor \ svcntaux.exe
O23 - Service: Spyware Doctor Service (sdCoreService) - PC Tools - C: \ Program Files \ Spyware Doctor \ swdsvc.exe
O23 - Service: @% SystemRoot% \ system32 \ seclogon. dll, -7001 (seclogon) - Unknown owner -% windir% \ system32 \ svchost.exe (file missing)
O23 - Service: Symantec Core LC - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ DPCC-LC \ symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ AppCore \ AppSvc32.exe
O23 - Service: ePower Service (WMIService) - acer - C: \ Acer \ Empowering Technology \ ePower \ ePowerSvc. exe
O23 - Service: @% ProgramFiles% \ Windows Media Player \ wmpnetwk.exe, -101 (WMPNetworkSvc) - Unknown owner -% ProgramFiles% \ Windows Media Player \ wmpnetwk.exe (file missing)
O23 - Service: XAudioService - Conexant Systems, Inc - C: \ Windows \ system32 \ DRIVERS \ xaudio.exe
  • Bogey
  • Bogey
  • Genius
  • Avatar de l’utilisateur
  • Inscription: Juil 14, 2005
  • Messages: 8211
  • Loc: USA
  • Status: Offline

Message Août 2nd, 2007, 9:56 pm

Le fichier semble propre à moi.
"Bring forth therefore fruits meet for repentance:" Matthew 3:8
  • Jlpowerade
  • Born
  • Born
  • No Avatar
  • Inscription: Aoû 22, 2007
  • Messages: 1
  • Status: Offline

Message Août 22nd, 2007, 8:34 pm

ok im comptuer ce nouveau 2 stuff et je pense avoir un bûcheron alors comment puis-je copier coller chaque chose n wat fromage doodle dose 4 u guys 2 vérifier si il ya une clé de journalisation dans mon ordi me please
  • bbgrh
  • Novice
  • Novice
  • No Avatar
  • Inscription: Aoû 25, 2007
  • Messages: 20
  • Status: Offline

Message Août 25th, 2007, 4:17 am

Je soupçonne également un keylogger voici mon hijack ce journal:

Logfile de HijackThis v1.99.1
Scan sauvé à 4:12:53 AM, le 8.25.2007
Plate-forme: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)

Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ System32 \ svchost. exe
C: \ Program Files \ Alwil Software \ Avast4 \ aswupdsv.exe
C: \ Program Files \ Alwil Software \ Avast4 \ ashServ.exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ Program Files \ Ashampoo \ Ashampoo AntiSpyWare 2 \ AntiSpyWareService.exe
C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
C: \ WINDOWS \ system32 \ gearsec.exe
C: \ Program Files \ Alcohol Soft \ Alcohol 120 \ StarWind \ starwindservice.exe
C: \ WINDOWS \ system32 \ svchost. exe
C: \ Program Files \ Common Files \ Ulead Systems \ DVD \ ULCDRSvr.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ Program Files \ Alwil Software \ Avast4 \ ashmaisv.exe
C: \ Program Files \ Alwil Software \ Avast4 \ ashWebSv.exe
C: \ WINDOWS \ Explorer.EXE
C: \ Program Files \ Analog Devices \ Core \ smax4pnp.exe
C: \ WINDOWS \ system32 \ hkcmd.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ Program Files \ CyberLink \ PowerDVD \ DVDLauncher.exe
C: \ WINDOWS \ system32 \ dla \ tfswctrl. exe
C: \ PROGRA ~ 1 \ ALWILS ~ 1 \ Avast4 \ ashDisp.exe
C: \ Program Files \ Java \ jre1.6.0_02 \ bin \ jusched.exe
C: \ Program Files \ Microsoft Office \ Office12 \ GrooveMonitor.exe
C: \ WINDOWS \ system32 \ ctfmon.exe
C: \ Program Files \ Hewlett-Packard \ Aio \ hp psc 700 series \ Bin \ hpobrt07.exe
C: \ PROGRA ~ 1 \ HEWLET ~ 1 \ Aio \ Shared \ Bin \ hpoevm07.exe
C: \ WINDOWS \ system32 \ hpoipm07.exe
C: \ Program Files \ Hewlett-Packard \ Aio \ Shared \ bin \ hpOSTS07.exe
C: \ Program Files \ Mozilla Firefox \ firefox. exe
C: \ Program Files \ HijackThis \ HijackThis. exe

R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.yahoo.com/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://www.yahoo.com/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://us.rd.yahoo.com/customize/ie/def ... .yahoo.com
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Bar = http://us.rd.yahoo.com/customize/ie/def ... earch.html
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main , Search Page = http://us.rd.yahoo.com/customize/ie/def ... .yahoo.com
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.yahoo.com/
R1 - HKCU \ Software \ Microsoft \ Internet Connection Wizard, ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
O2 - BHO: Yahoo! Toolbar Helper - (02478D38-C3F9-4EFB-9B51-7695ECA05670) - C: \ Program Files \ Yahoo! \ Companion \ Installs \ CPN \ yt.dll
O2 - BHO: (no name) - (3F9D0C61-44D1-737D-BD80-91AF857061CC) - C: \ WINDOWS \ system32 \ jkklkjj.dll (file missing)
O2 - BHO: Yahoo! IE Services Button - (5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897) - C: \ Program Files \ Yahoo! \ Common \ yiesrvc.dll
O2 - BHO: DriveLetterAccess - (5CA3D70E-1895-11CF-8E15-001234567890) - C: \ WINDOWS \ system32 \ dla \ tfswshx.dll
O2 - BHO: Groove GFS Browser Helper - (72853161-30C5-4D22-B7F9-0BBC1D38A37E) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ GRA8E1 ~ 1.DLL
O2 - BHO: SSVHelper Class - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C: \ Program Files \ Java \ jre1.6.0_02 \ bin \ ssv. dll
O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file)
O2 - BHO: Windows Live Sign-in Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: (no name) - (DBCECF49-0510-4AD3-9D33-80FA15669B8D) - C: \ WINDOWS \ system32 \ jkklj.dll (file missing)
O3 - Toolbar: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - C: \ Program Files \ Yahoo! \ Companion \ Installs \ CPN \ yt. dll
O4 - HKLM \ .. \ Run: [SoundMAXPnP] "C: \ Program Files \ Analog Devices \ Core \ smax4pnp.exe"
O4 - HKLM \ .. \ Run: [IgfxTray] C: \ WINDOWS \ system32 \ igfxtray.exe
O4 - HKLM \ .. \ Run: [HotKeysCmds] C: \ WINDOWS \ system32 \ hkcmd.exe
O4 - HKLM \ .. \ Run: [DVDLauncher] "C: \ Program Files \ CyberLink \ PowerDVD \ DVDLauncher.exe"
O4 - HKLM \ .. \ Run: [dla] C: \ WINDOWS \ system32 \ dla \ tfswctrl.exe
O4 - HKLM \ .. \ Run: [avast!] C: \ PROGRA ~ 1 \ ALWILS ~ 1 \ Avast4 \ ashDisp.exe
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] "C: \ Program Files \ Java \ jre1.6.0_02 \ bin \ jusched.exe"
O4 - HKLM \ .. \ Run: [GrooveMonitor] "C: \ Program Files \ Microsoft Office \ Office12 \ GrooveMonitor.exe"
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - Global Startup: HPAiODevice (hp psc 700 series) - 1.lnk = C: \ Program Files \ Hewlett-Packard \ Aio \ hp psc 700 series \ Bin \ hpobrt07. exe
O8 - Extra du menu contextuel: E & xporter vers Microsoft Excel -- res://C : \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ EXCEL.EXE/3000
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_02 \ bin \ ssv.dll
O9 - Extra "Outils" menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.6.0_02 \ bin \ ssv. dll
O9 - Extra button: Envoyer à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ ONBttnIE.dll
O9 - Extra "Outils" menuitem: S & end à OneNote - (2670000A-7350-4f3c-8081-5663EE0C6C49) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ ONBttnIE.dll
O9 - Extra button: Yahoo! Services - (5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897) - C: \ Program Files \ Yahoo! \ Common \ yiesrvc.dll
O9 - Extra button: (no name) - (85d1f590-48F4-11d9-9669-0800200c9a66) -% windir% \ bdoscandel. exe (file missing)
O9 - Extra "Outils" menuitem: Uninstall BitDefender Online Scanner v8 - (85d1f590-48F4-11d9-9669-0800200c9a66) -% windir% \ bdoscandel.exe (file missing)
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ REFIEBAR.DLL
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) -% windir% \ Network Diagnostic \ xpnetdiag.exe (file missing)
O9 - Extra "Outils" menuitem: @ xpsp3res. dll, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) -% windir% \ Network Diagnostic \ xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O11 - Options group: [INTERNATIONAL] International *
O15 - Trusted Zone: *. adxgate.net (HKLM)
O15 - Trusted Zone: *. errorprotector.com (HKLM)
O15 - Trusted Zone: *. errorsafe.com (HKLM)
O15 - Trusted Zone: *. imagesrvr.com (HKLM)
O15 - Trusted Zone: *. snipenet.net (HKLM)
O15 - Trusted Zone: *. systemdoctor.com (HKLM)
O15 - Trusted Zone: *. winantivirus.com (HKLM)
O15 - Trusted Zone: *. winfixer. com (HKLM)
O16 - DPF: (193C772A-87BE-4B19-A7BB-445B226FE9A1) (ewidoOnlineScan Control) -- http://downloads.ewido.net/ewidoOnlineScan.cab
O16 - DPF: (1C3DE665-D259-4C72-9D7D-C51FCB4CCFB9) (Panasonic Network Camera) -- http://mtstandard.serveftp.net:19141/SysCamInst.cab
O16 - DPF: (215B8138-A3CF-44C5-803F-8226143CFC0A) (Trend Micro ActiveX Scan Agent 6. 6) -- http://housecall65.trendmicro.com/house ... hcImpl.cab
O16 - DPF: (2BC66F54-93A8-11D3-BEB6-00105AA9B6AE) (Symantec AntiVirus scanner) -- http://security.symantec.com/sscv6/Shar ... vSniff.cab
O16 - DPF: (30528230-99f7-4bb4-88d8-fa1d4f56a2ab) (YInstStarter Class) - C: \ Program Files \ Yahoo! \ Common \ yinsthelper. dll
O16 - DPF: (5D86DDB5-BDF9-441B-9E9E-D4730F4EE499) (BDSCANONLINE Control) -- http://download.bitdefender.com/resourc ... oscan8.cab
O16 - DPF: (644E432F-49D3-41A1-8DD5-E099162EEEC5) (Symantec RuFSI Utility Class) -- http://security.symantec.com/sscv6/Shar ... /cabsa.cab
O16 - DPF: (8AD9C840-044E-11D1-B3E9-00805F499D93) (Java Runtime Environment 1.6.0) -- http://javadl-esd.sun.com/update/1.6.0/ ... 586-jc.cab
O18 - Protocol: grooveLocalGWS - (88FED34C-F0CA-4636-A375-3CB6248B04CD) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ GR99D3 ~ 1. DLL
O18 - Protocol: livecall - (828030A1-22C1-4009-854F-8E305202313F) - C: \ PROGRA ~ 1 \ MSNMES ~ 1 \ MSGRAP ~ 1.DLL
O18 - Protocol: ms-help - (314111C7-A502-11D2-BBCA-00C04F8EC294) - C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Help \ hxds.dll
O18 - Protocol: msnim - (828030A1-22C1-4009-854F-8E305202313F) - C: \ PROGRA ~ 1 \ MSNMES ~ 1 \ MSGRAP ~ 1.DLL
O18 - Filter hijack: text / xml - (807563E5-5146-11D5-A672-00B0D022E945) - C: \ PROGRA ~ 1 \ Common ~ 1 \ MICROS ~ 1 \ Office12 \ MSOXMLMF. DLL
O20 - Winlogon Notify: igfxcui - C: \ WINDOWS \ SYSTEM32 \ igfxsrvc.dll
O20 - Winlogon Notify: jkklkjj - jkklkjj.dll (file missing)
O20 - Winlogon Notify: WgaLogon - C: \ WINDOWS \ SYSTEM32 \ WgaLogon.dll
O23 - Service: Ashampoo AntiSpyWare 2 Service (AASW2_Service) - Unknown owner - C: \ Program Files \ Ashampoo \ Ashampoo AntiSpyWare 2 \ AntiSpyWareService.exe
O23 - Service: Apple Mobile Device - Apple, Inc - C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswupdsv) - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ aswupdsv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C: \ Program Files \ Alwil Software \ Avast4 \ ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C: \ Program Files \ Alwil Software \ Avast4 \ ashmaisv.exe "/ service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C: \ Program Files \ Alwil Software \ Avast4 \ ashWebSv.exe "/ service (file missing)
O23 - Service: gearsec - GEAR Software - C: \ WINDOWS \ system32 \ gearsec.exe
O23 - Service: iPod Service - Apple Inc - C: \ Program Files \ iPod \ bin \ iPodService.exe
O23 - Service: NMIndexingService - Unknown owner - C: \ Program Files \ Common Files \ Ahead \ Lib \ NMIndexingService. exe (file missing)
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C: \ Program Files \ Alcohol Soft \ Alcohol 120 \ StarWind \ starwindservice.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc - C: \ Program Files \ Common Files \ Ulead Systems \ DVD \ ULCDRSvr.exe
  • bbgrh
  • Novice
  • Novice
  • No Avatar
  • Inscription: Aoû 25, 2007
  • Messages: 20
  • Status: Offline

Message Août 25th, 2007, 2:17 pm

J'ai oublié de mentionner...quelqu'un pourrait m'aider s'il vous plaît? Je n'ai aucune idée de ce que je fais. Je voudrais vraiment avoir des conseils, je vous remercie beaucoup!
  • Bogey
  • Bogey
  • Genius
  • Avatar de l’utilisateur
  • Inscription: Juil 14, 2005
  • Messages: 8211
  • Loc: USA
  • Status: Offline

Message Août 25th, 2007, 3:42 pm

Supprimer le texte suivant en utilisant HijackThis

Quote:
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Bar = http://us.rd.yahoo.com/customize/ie/def ... //www.yaho o.com / ext / search / search.html
O2 - BHO: (no name) - (3F9D0C61-44D1-737D-BD80-91AF857061CC) - C: \ WINDOWS \ system32 \ jkklkjj.dll (file missing)
O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file)
O2 - BHO: (no name) - (DBCECF49-0510-4AD3-9D33-80FA15669B8D) - C: \ WINDOWS \ system32 \ jkklj. dll (file missing)
O15 - Trusted Zone: *. errorprotector.com (HKLM)
O15 - Trusted Zone: *. errorsafe.com (HKLM)
O15 - Trusted Zone: *. imagesrvr.com (HKLM)
O15 - Trusted Zone: *. systemdoctor.com (HKLM)
O15 - Trusted Zone: *. winantivirus.com (HKLM)
O15 - Trusted Zone: *. winfixer.com (HKLM)
O20 - Winlogon Notify: jkklkjj - jkklkjj.dll (file missing)
"Bring forth therefore fruits meet for repentance:" Matthew 3:8
  • batu544
  • Beginner
  • Beginner
  • No Avatar
  • Inscription: Aoû 20, 2007
  • Messages: 37
  • Loc: India
  • Status: Offline

Message Août 27th, 2007, 3:11 am

Mieux, vous pouvez installer

Windows Defender .. Il ne permettra pas d'exécuter un programme automatiquement :)

vous pouvez le télécharger à partir de ce site Web de Microsoft, mais que votre OS ne devrait pas être un pirate :)


merci,
batu544
  • serialelf
  • Born
  • Born
  • No Avatar
  • Inscription: Sep 02, 2007
  • Messages: 1
  • Loc: Texas
  • Status: Offline

Message Septembre 2nd, 2007, 1:33 am

Ce que quelqu'un me faire savoir si son amende.

Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ WINDOWS \ System32 \ brsvc01a.exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ WINDOWS \ System32 \ brss01a.exe
C: \ WINDOWS \ Explorer.EXE
C: \ Program Files \ Java \ j2re1.4.2_03 \ bin \ jusched. exe
C: \ windows \ system \ hpsysdrv.exe
C: \ WINDOWS \ system32 \ hkcmd.exe
C: \ HP \ KBD \ KBD.EXE
C: \ WINDOWS \ AGRSMMSG.exe
C: \ Program Files \ Common Files \ Symantec Shared \ ccapp.exe
C: \ WINDOWS \ system32 \ igfxtray.exe
C: \ Program Files \ QuickTime \ qttask.exe
C: \ Program Files \ Scansoft \ PaperPort \ pptd40nt.exe
C: \ Program Files \ iTunes \ iTunesHelper.exe
C: \ WINDOWS \ system32 \ ctfmon.exe
C: \ Program Files \ Compaq Connections \ 1940576 \ Program \ BackWeb-1940576. exe
C: \ Program Files \ Scansoft \ PaperPort \ SmartUI \ SmartUI.exe
C: \ Program Files \ Symantec \ LiveUpdate \ aluschedulersvc.exe
C: \ WINDOWS \ system32 \ Brmfrmps.exe
C: \ Program Files \ Common Files \ Symantec Shared \ ccProxy.exe
C: \ Program Files \ Common Files \ Symantec Shared \ ccsetmgr.exe
C: \ Program Files \ Norton Internet Security \ issvc.exe
C: \ Program Files \ Norton Internet Security \ Norton AntiVirus \ NAVAPSVC.EXE
C: \ Program Files \ Common Files \ Symantec Shared \ SNDSrvc. exe
C: \ Program Files \ Common Files \ Symantec Shared \ SPBBC \ spbbcsvc.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ Program Files \ Common Files \ Symantec Shared \ DPCC-LC \ symlcsvc.exe
C: \ Program Files \ Common Files \ Symantec Shared \ ccEvtMgr.exe
C: \ Program Files \ iPod \ bin \ iPodService.exe
C: \ WINDOWS \ system32 \ wscntfy.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Program Files \ Internet Explorer \ iexplore.exe
C: \ Program Files \ HijackThis \ HijackThis. exe
C: \ Program Files \ Messenger \ msmsgs. exe

R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktop
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.yahoo.com/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://www.yahoo.com
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE= ... pf=desktop
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.yahoo.com
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Window Title = Windows Internet Explorer fourni par Yahoo!
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyOverride = localhost
R3 - URLSearchHook: Yahoo! Toolbar - (EF99BD32-C1FB-11D2-892F-0090271D4F88) - (pas de fichier)
O2 - BHO: Adobe PDF Reader Link Helper - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEHelper.dll
O2 - BHO: CNisExtBho Class - (9ECB9560-04F9-4bbc-943D-298DDF1699E1) - C: \ Program Files \ Common Files \ Symantec Shared \ AdBlocking \ NISShExt. dll
O2 - BHO: CNavExtBho Class - (BDF3E430-B101-42AD-A544-FADC6B084872) - C: \ Program Files \ Norton Internet Security \ Norton AntiVirus \ NavShExt.dll
O3 - Toolbar: Norton Internet Security - (0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7) - C: \ Program Files \ Common Files \ Symantec Shared \ AdBlocking \ NISShExt.dll
O3 - Toolbar: Norton AntiVirus - (42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6) - C: \ Program Files \ Norton Internet Security \ Norton AntiVirus \ NavShExt. dll
O3 - Toolbar: (no name) - (0BF43445-2F28-4351-9252-17FE6E806AA0) - (no file)
O4 - HKLM \ .. \ Run: [SunJavaUpdateSched] C: \ Program Files \ Java \ j2re1.4.2_03 \ bin \ jusched.exe
O4 - HKLM \ .. \ Run: [hpsysdrv] c: \ windows \ system \ hpsysdrv.exe
O4 - HKLM \ .. \ Run: [HotKeysCmds] C: \ WINDOWS \ system32 \ hkcmd.exe
O4 - HKLM \ .. \ Run: [KBD] C: \ HP \ KBD \ KBD.EXE
O4 - HKLM \ .. \ Run: [TkBellExe] "C: \ Program Files \ Fichiers communs \ Real \ Update_OB \ realsched.exe"-osboot
O4 - HKLM \ .. \ Run: [Recguard] C: \ WINDOWS \ SMINST \ RECGUARD.EXE
O4 - HKLM \ .. \ Run: [VTTimer] VTTimer.exe
O4 - HKLM \ .. \ Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM \ .. \ Run: [PS2] C: \ WINDOWS \ system32 \ ps2.exe
O4 - HKLM \ .. \ Run: [ccApp] "C: \ Program Files \ Common Files \ Symantec Shared \ ccapp.exe"
O4 - HKLM \ .. \ Run: [IgfxTray] C: \ WINDOWS \ system32 \ igfxtray.exe
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [PaperPort PTD] C: \ Program Files \ Scansoft \ PaperPort \ pptd40nt.exe
O4 - HKLM \ .. \ Run: [IndexSearch] C: \ Program Files \ Scansoft \ PaperPort \ IndexSearch.exe
O4 - HKLM \ .. \ Run: [SetDefPrt] C: \ Program Files \ Brother \ Brmfl03a \ BrStDvPt.exe
O4 - HKLM \ .. \ Run: [iTunesHelper] "C: \ Program Files \ iTunes \ iTunesHelper.exe"
O4 - HKCU \ .. \ Run: [Acme.PCHButton] C: \ PROGRA ~ 1 \ COMPAQ ~ 2 \ Presario \ XPHNARS4EN \ plugin \ bin \ PCHButton.exe
O4 - HKCU \ .. \ Run: [igndlm. exe] C: \ Program Files \ IGN \ Download Manager \ DLM.exe / windowsstart / startifwork
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - Startup: Adobe Gamma.lnk = C: \ Program Files \ Fichiers communs \ Adobe \ Calibration \ Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C: \ Program Files \ Adobe \ Reader 8.0 \ Reader \ reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C: \ Program Files \ Adobe \ Reader 8.0 \ Reader \ AdobeCollabSync. exe
O4 - Global Startup: Compaq Connections.lnk = C: \ Program Files \ Compaq Connections \ 1940576 \ Program \ BackWeb-1940576.exe
O4 - Global Startup: SmartUI.lnk =?
O8 - Extra du menu contextuel: E & xporter vers Microsoft Excel -- res://C : \ PROGRA ~ 1 \ MI1933 ~ 1 \ OFFICE11 \ EXCEL.EXE/3000
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ WINDOWS \ System32 \ MSJAVA. dll (file missing)
O9 - Extra "Outils" menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ WINDOWS \ System32 \ Msjava.dll (file missing)
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) -% windir% \ Network Diagnostic \ xpnetdiag.exe (file missing)
O9 - Extra "Outils" menuitem: @ xpsp3res.dll, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) -% windir% \ Network Diagnostic \ xpnetdiag. exe (file missing)
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs. exe
O11 - Options group: [INTERNATIONAL] International *
O16 - DPF: (17492023-C23A-453E-A040-C7C580BBF700) (Windows Genuine Advantage Validation Tool) -- http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: (2ED9BC2B-4DF1-472E-9B5E-55477D2C97F5) (Microsoft Data Collection Control) -- https://support.microsoft.com/OAS/ActiveX/odc.cab
O16 - DPF: (39B0684F-D7BF-4743-B050-FDC3F48F7E3B) (CDownloadCtrl Object) -- http://www.fileplanet.com/fpdlmgr/cabs/ ... .3.102.cab
O16 - DPF: (4F1E5B1A-2A80-42CA-8532-2D05CB959537) (MSN Photo Upload Tool) -- http://serialelf.spaces.live.com//Photo ... nPUpld.cab
O16 - DPF: (5F8469B4-B055 -49DD-83F7-62B522420ECC) (Facebook Photo Uploader Control) -- http://upload.facebook.com/controls/Fac ... loader.cab
O16 - DPF: (6414512B-B978-451D-A0D8-FCFDF33E833C) (WUWebControl Class) -- http://update.microsoft.com/windowsupda ... 1137613609
O16 - DPF: (6E32070A-766D-4EE6-879C-DC1FA91D2FC3) (MUWebControl Class) -- http://update.microsoft.com/microsoftup ... 2026769656
O16 - DPF: (B8BE5E93-A60C-4D26-A2DC-220313175592) (MSN Games - Installer) -- http://cdn2.zone.msn.com/binFramework/v ... b56649.cab
O16 - DPF: (E473A65C-8087-49A3-AFFD-C5BC4A10669B) (Quantum Streaming IE Player Class) -- http://mvnet.xlontech.net/qm/fox/061011 ... 101001.cab
O16 - DPF: (F04A8AE2-A59D-11D2 -8792-00C04F8EF29D) (Hotmail Attachments Control) -- http://by107fd.bay107.hotmail.msn.com/a ... Atchmt.ocx
O20 - Winlogon Notify: igfxcui - C: \ WINDOWS \ SYSTEM32 \ igfxsrvc.dll
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C: \ Program Files \ Symantec \ LiveUpdate \ aluschedulersvc.exe
O23 - Service: Brother Popup Suspend service for Resource manager (brmfrmps) - Unknown owner - C: \ WINDOWS \ system32 \ Brmfrmps. exe "-service (file missing)
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C: \ WINDOWS \ System32 \ brsvc01a.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ ccProxy. exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ ccsetmgr.exe
O23 - Service: iPod Service - Apple Inc - C: \ Program Files \ iPod \ bin \ iPodService.exe
O23 - Service: ISSvc (ISSVC) - Symantec Corporation - C: \ Program Files \ Norton Internet Security \ ISSVC. exe
O23 - Service: LiveUpdate - Symantec Corporation - C: \ PROGRA ~ 1 \ Symantec \ LIVEUP ~ 1 \ LUCOMS ~ 1.EXE
O23 - Service: Macromedia Licensing Service - Unknown owner - C: \ Program Files \ Common Files \ Macromedia Shared \ Service \ Macromedia Licensing.exe
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C: \ Program Files \ Norton Internet Security \ Norton AntiVirus \ navapsvc. exe
O23 - Service: SAVScan - Symantec Corporation - C: \ Program Files \ Norton Internet Security \ Norton AntiVirus \ SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C: \ PROGRA ~ 1 \ Common ~ 1 \ SYMANT ~ 1 \ SCRIPT ~ 1 \ SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ SNDSrvc. exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ SPBBC \ spbbcsvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C: \ Program Files \ Common Files \ Symantec Shared \ DPCC-LC \ symlcsvc.exe
  • canucksfan94
  • Born
  • Born
  • No Avatar
  • Inscription: Sep 16, 2007
  • Messages: 1
  • Status: Offline

Message Septembre 16th, 2007, 4:43 pm

Je pense avoir un keylogger. J'ai couru et il a trouvé Spybot Perfect Keylogger. Pouvez-vous me dire si Spybot raté quelque chose?

Logfile de HijackThis v1.99.1
Scan sauvé à 4:43:11 PM, le 16/09/2007
Plate-forme: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
E: \ WINDOWS \ System32 \ smss.exe
E: \ WINDOWS \ system32 \ winlogon.exe
E: \ WINDOWS \ system32 \ services.exe
E: \ WINDOWS \ system32 \ lsass. exe
E: \ WINDOWS \ system32 \ svchost.exe
E: \ WINDOWS \ System32 \ svchost.exe
E: \ Program Files \ Lavasoft \ Ad-Aware 2007 \ aawservice.exe
E: \ WINDOWS \ system32 \ spoolsv.exe
E: \ WINDOWS \ Explorer.EXE
E: \ PROGRA ~ 1 \ Grisoft \ AVGFRE ~ 1 \ avgamsvr.exe
E: \ PROGRA ~ 1 \ Grisoft \ AVGFRE ~ 1 \ avgupsvc.exe
E: \ PROGRA ~ 1 \ Grisoft \ AVGFRE ~ 1 \ avgemc.exe
E: \ PROGRA ~ 1 \ Grisoft \ AVGFRE ~ 1 \ avgcc.exe
E: \ PROGRA ~ 1 \ Sony \ SONICS ~ 1 \ SsAAD.exe
E: \ Program Files \ Lavasoft \ Ad-Aware 2007 \ AAWTray. exe
E: \ Program Files \ Messenger \ msmsgs.exe
E: \ Program Files \ MicroStar \ WLANUtility \ WlanUtility.exe
E: \ Program Files \ Microsoft Office \ Office \ FINDFAST.EXE
E: \ Program Files \ Microsoft Office \ Office \ Osa.exe
E: \ Program Files \ Common Files \ Sony Shared \ AVLib \ SSScsiSV.exe
E: \ Program Files \ MicroStar \ WLANUtility \ WLAN_Service.exe
E: \ Program Files \ MSN Messenger \ usnsvc.exe
E: \ Program Files \ Mozilla Firefox \ firefox. exe
E: \ Documents and Settings \ Sheldon \ Desktop \ HijackThis \ HijackThis.exe

R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Bar = http://g.msn.ca/0SEENCA/SAOS01
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.google.ca/
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://hsremove.com/done.htm
O2 - BHO: AcroIEHlprObj Class - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - E: \ Program Files \ Adobe \ Acrobat 6.0 \ Reader \ ActiveX \ AcroIEHelper. dll
O2 - BHO: Spybot-S & D IE Protection - (53707962-6F74-2D53-2644-206D7942484F) - E: \ PROGRA ~ 1 \ Spybot ~ 1 \ SDHelper.dll
O2 - BHO: (no name) - (5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB) - (no file)
O2 - BHO: (no name) - (7E853D72-626A-48EC-A868-BA8D5E23E045) - (no file)
O2 - BHO: (no name) - (E0DAAC49-ED59-3BC8-9E39-9F1A3A899E79) - E: \ DOCUME ~ 1 \ Sheldon \ APPLIC ~ 1 \ À mi \ style ball.exe (file missing)
O4 - HKLM \ .. \ Run: [SiSUSBRG] E: \ WINDOWS \ SiSUSBrg.exe
O4 - HKLM \ .. \ Run: [AVG7_CC] E: \ PROGRA ~ 1 \ Grisoft \ AVGFRE ~ 1 \ avgcc.exe / STARTUP
O4 - HKLM \ .. \ Run: [SsAAD.exe] E: \ PROGRA ~ 1 \ Sony \ SONICS ~ 1 \ SsAAD.exe
O4 - HKLM \ .. \ Run: [AAWTray] E: \ Program Files \ Lavasoft \ Ad-Aware 2007 \ AAWTray.exe
O4 - HKCU \ .. \ Run: [MSMSGS] "E: \ Program Files \ Messenger \ msmsgs.exe" / background
O4 - Startup: Microsoft Recherche Fast.lnk = E: \ Program Files \ Microsoft Office \ Office \ FINDFAST.EXE
O4 - Startup: Office Startup.lnk = E: \ Program Files \ Microsoft Office \ Office \ OSA. EXE
O4 - Global Startup: WlanUtility.lnk = E: \ Program Files \ MicroStar \ WLANUtility \ WlanUtility.exe
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - E: \ Program Files \ Java \ jre1.5.0_02 \ bin \ npjpi150_02.dll
O9 - Extra "Outils" menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - E: \ Program Files \ Java \ jre1.5.0_02 \ bin \ npjpi150_02.dll
O9 - Extra button: (no name) - (DFB852A3-47F8-48C4-A200-58CAB36FD2A2) - E: \ PROGRA ~ 1 \ Spybot ~ 1 \ SDHelper. dll
O9 - Extra "Outils" menuitem: Spybot - Search & Destroy Configuration - (DFB852A3-47F8-48C4-A200-58CAB36FD2A2) - E: \ PROGRA ~ 1 \ Spybot ~ 1 \ SDHelper.dll
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - E: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - E: \ Program Files \ Messenger \ msmsgs. exe
O16 - DPF: RaptisoftGameLoader -- http://www.miniclip.com/hamsterball/rap ... loader.cab
O16 - DPF: (00B71CFB-6864-4346-A978-C0A14556272C) (Checkers Class) -- http://messenger.zone.msn.com/binary/ms ... b31267.cab
O16 - DPF: (14B87622-7E19-4EA8-93B3-97215F77A6BC) (MessengerStatsClient Class) -- http://messenger.zone.msn.com/binary/Me ... b31267.cab
O16 - DPF: (17492023-C23A-453E-A040-C7C580BBF700) (Windows Genuine Advantage) -- http://go.microsoft.com/fwlink/?linkid= ... lcid=0x409
O16 - DPF: (288C5F13-7E52-4ADA-A32E-F5BF9D125F99) (CR64Loader Object) -- http://www.miniclip.com/supergerball/mi ... Loader.dll
O16 - DPF: (2917297F-F02B-4B9D-81DF-494B6333150B) (Minesweeper Flags Class) -- http://messenger.zone.msn.com/binary/Mi ... b31267.cab
O16 - DPF: (33288993-5664-11D4-8B5B-00D0B73B3518) (ell Class) -- http://www.easports.com/downloads/games ... /ieell.cab
O16 - DPF: (4F1E5B1A-2A80-42CA-8532-2D05CB959537) (MSN Photo Upload Tool) -- http://spaces.msn.com//PhotoUpload/MsnPUpld.cab
O16 - DPF: (665585FD-2068-4C5E-A6D3-53AC3270ECD4) (FileSharingCtrl Class) -- http://appdirectory.messenger.msn.com/A ... ngctrl.cab
O16 - DPF: (77E32299-629F-43C6-AB77-6A1E6D7663F6) -- http://www.nick.com/common/groove/gx/GrooveAX27.cab
O16 - DPF: (8E0D4DE5-3180-4024-A327-4DFAD1796A8D) (MessengerStatsClient Class) -- http://messenger.zone.msn.com/binary/Me ... b31267.cab
O16 - DPF: (B38870E4 -7ECB-40DA-8C6A-595F0A5519FF) (MsnMessengerSetupDownloadControl Class) -- http://messenger.msn.com/download/MsnMe ... loader.cab
O16 - DPF: (B8BE5E93-A60C-4D26-A2DC-220313175592) (ZoneIntro Class) -- http://messenger.zone.msn.com/binary/ZI ... b32846.cab
O16 - DPF: (BD393C14-72AD-4790-A095-76522973D6B8) (CBreakshotControl Class) -- http://messenger.zone.msn.com/binary/Ba ... b31267.cab
O16 - DPF: (DA758BB1-5F89-4465-975F-8D7179A4BCF3) (WheelofFortune Object) -- http://messenger.zone.msn.com/binary/WoF.cab31267.cab
O16 - DPF: (E6187999-9FEC-46A1-A20F-F4CA977D5643) (ZoneChess Object) -- http://messenger.zone.msn.com/binary/Chess.cab31267.cab
O16 - DPF: (F6BF0D00-0B2A-4A75-BF7B -F385591623AF) (Solitaire Showdown Class) -- http://messenger.zone.msn.com/binary/So ... b31267.cab
O18 - Protocol: livecall - (828030A1-22C1-4009-854F-8E305202313F) - E: \ PROGRA ~ 1 \ MSNMES ~ 1 \ MSGRAP ~ 1.DLL
O18 - Protocol: msnim - (828030A1-22C1-4009-854F-8E305202313F) - E: \ PROGRA ~ 1 \ MSNMES ~ 1 \ MSGRAP ~ 1.DLL
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - E: \ Program Files \ Lavasoft \ Ad-Aware 2007 \ aawservice.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, sro - E: \ PROGRA ~ 1 \ Grisoft \ AVGFRE ~ 1 \ avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, sro - E: \ PROGRA ~ 1 \ Grisoft \ AVGFRE ~ 1 \ avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, sro - E: \ PROGRA ~ 1 \ Grisoft \ AVGFRE ~ 1 \ avgemc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - E: \ Program Files \ Fichiers communs \ InstallShield \ Driver \ 11 \ Intel 32 \ IDriverT. exe
O23 - Service: MSCSPTISRV - Sony Corporation - E: \ Program Files \ Common Files \ Sony Shared \ AVLib \ MSCSPTISRV.exe
O23 - Service: PACSPTISVR - Sony Corporation - E: \ Program Files \ Common Files \ Sony Shared \ AVLib \ PACSPTISVR.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - E: \ Program Files \ Common Files \ Sony Shared \ AVLib \ SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - E: \ Program Files \ Common Files \ Sony Shared \ AVLib \ SSScsiSV.exe
  • Anonymous
  • Bot
  • No Avatar
  • Inscription: 25 Feb 2008
  • Messages: ?
  • Loc: Ozzuland
  • Status: Online

Message Septembre 16th, 2007, 4:43 pm

1, 2, 3, 4, 5

Afficher de l'information

  • Total des messages de ce sujet: 61 messages
  • Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 157 invités
  • Vous ne pouvez pas poster de nouveaux sujets
  • Vous ne pouvez pas répondre aux sujets
  • Vous ne pouvez pas éditer vos messages
  • Vous ne pouvez pas supprimer vos messages
  • Vous ne pouvez pas joindre des fichiers
 
 

© 2011 Unmelted, LLC. Ozzu® est une marque déposée de Unmelted, LLC