S'il vous plaît, aidez-moi
- manu_rocks
- Born
- Inscription: Oct 23, 2006
- Messages: 3
- Status: Offline
Octobre 24th, 2006, 11:27 pm
Ces problèmes sont ce que je suis actuellement confronté sur mon ordinateur portable Toshiba:
1. Taskbar handicapés. J'ai essayé l'un des utilitaires permettant disponible. Maintenant, il est permis, mais quand je double-cliquez dessus, il s'ouvre et se referme quelques secondes plus tard.
2. Paramètres et options de Run dans le menu Démarrer pas là.
3. Bloc-notes, etc regedit ne fonctionne pas.
4. Lorsque je me connecte à Internet, Im battu avec des pop-ups.
Je peux le voir ci-dessus en mode sans échec. S'il vous plaît aviser. J'ai collé mon log HijackThis ci-dessous.
Logfile de HijackThis v1.97.7
Scan sauvé à 11:15:39 PM, le 10.24.2006
Plate-forme: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ Explorer.EXE
C: \ WINDOWS \ system32 \ igfxsrvc. exe
C: \ WINDOWS \ system32 \ cmd.exe
C: \ Documents and Settings \ Administrator \ Desktop \ HijackThis. exe
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Bar = http://www.toshiba.com/search
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.toshibadirect.com/dpdstart
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://www.toshibadirect.com/dpdstart
R1 - HKCU \ Software \ Microsoft \ Internet Connection Wizard, Shellnext = http://www.toshibadirect.com/dpdstart
O2 - BHO: (no name) - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Adobe \ Acrobat 7.0 \ ActiveX \ AcroIEHelper. dll
O2 - BHO: (no name) - (1DAEFCB9-06C8-47c6-8F20-3FB54B244DAA) - (no file)
O2 - BHO: (no name) - (53707962-6F74-2D53-2644-206D7942484F) - C: \ Program Files \ Spybot - Search & Destroy \ SDHelper.dll
O2 - BHO: (no name) - (5C79C342-70D6-9570-B5CB-061BA81FC9DD) - C: \ WINDOWS \ system32 \ pnynlv.dll (file missing)
O2 - BHO: (no name) - (5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB) - C: \ PROGRA ~ 1 \ SPYWAR ~ 1 \ tools \ iesdsg. dll
O2 - BHO: (no name) - (5CA3D70E-1895-11CF-8E15-001234567890) - C: \ WINDOWS \ System32 \ DLA \ DLASHX_W.DLL
O2 - BHO: (no name) - (AA58ED58-01DD-4d91-8333-CF10577473F7) - c: \ program files \ google \ googletoolbar1.dll
O2 - BHO: (no name) - (B56A7D7D-6927-48C8-A975-17DF180C71AC) - C: \ PROGRA ~ 1 \ SPYWAR ~ 1 \ tools \ iesdpb.dll
O2 - BHO: (no name) - (FDB03627-F9FC-4EAB-90E7-95B99171E54D) - C: \ WINDOWS \ system32 \ vtstu. dll (file missing)
O3 - Toolbar: McAfee VirusScan - (BA52B914-B692-46c4-B683-905236F6F655) - c: \ progra ~ 1 \ mcafee.com \ vso \ mcvsshl.dll
O3 - Toolbar: & Google - (2318C2B1-4965-11D4-9B18-009027A5CD4F) - c: \ program files \ google \ googletoolbar1.dll
O3 - Toolbar: (no name) - (C004DEC2-2623-438e-9CA2-C9043AB28508) - (no file)
O4 - HKLM \ .. \ Run: [TFncKy] TFncKy.exe
O4 - HKLM \ .. \ Run: [TDispVol] TDispVol.exe
O4 - HKLM \ .. \ Run: [MCUpdateExe] c: \ PROGRA ~ 1 \ mcafee.com \ agent \ mcupdate. exe
O4 - HKLM \ .. \ Run: [MCAgentExe] c: \ PROGRA ~ 1 \ mcafee.com \ agent \ mcagent.exe
O4 - HKLM \ .. \ Run: [igfxtray] C: \ WINDOWS \ system32 \ igfxtray.exe
O4 - HKLM \ .. \ Run: [igfxhkcmd] C: \ WINDOWS \ system32 \ hkcmd.exe
O4 - HKLM \ .. \ Run: [igfxpers] C: \ WINDOWS \ system32 \ igfxpers.exe
O4 - HKLM \ .. \ Run: [ehTray] C: \ WINDOWS \ ehome \ ehtray.exe
O4 - HKLM \ .. \ Run: [THotkey] C: \ Program Files \ Toshiba \ Toshiba Applet \ thotkey.exe
O4 - HKLM \ .. \ Run: [SynTPLpr] C: \ Program Files \ Synaptics \ SynTP \ SynTPLpr. exe
O4 - HKLM \ .. \ Run: [SynTPEnh] C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe
O4 - HKLM \ .. \ Run: [LtMoh] C: \ Program Files \ ltmoh \ Ltmoh.exe
O4 - HKLM \ .. \ Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM \ .. \ Run: [Tvs] C: \ Program Files \ Toshiba \ Tvs \ tvstray.exe
O4 - HKLM \ .. \ Run: [TPSMain] tpsmain.exe
O4 - HKLM \ .. \ Run: [smoothview] C: \ Program Files \ TOSHIBA \ TOSHIBA Zooming Utility \ SmoothView.exe
O4 - HKLM \ .. \ Run: [dla] C: \ WINDOWS \ system32 \ dla \ DLACTRLW.exe
O4 - HKLM \ .. \ Run: [Pinger] c: \ toshiba \ ivp \ ism \ pinger.exe / run
O4 - HKLM \ .. \ Run: [VSOCheckTask] "C: \ PROGRA ~ 1 \ McAfee.com \ VSO \ mcmnhdlr.exe" / checktask
O4 - HKLM \ .. \ Run: [VirusScan Online] C: \ Program Files \ McAfee.com \ VSO \ mcvsshld.exe
O4 - HKLM \ .. \ Run: [OASClnt] C: \ Program Files \ McAfee.com \ VSO \ oasclnt.exe
O4 - HKLM \ .. \ Run: [IntelZeroConfig] "C: \ Program Files \ Intel \ Wireless \ bin \ ZCfgSvc.exe"
O4 - HKLM \ .. \ Run: [IntelWireless] "C: \ Program Files \ Intel \ Wireless \ Bin \ ifrmewrk.exe" / tf Intel PROSet / Wireless
O4 - HKLM \ .. \ Run: [NeroFilterCheck] C: \ Program Files \ Common Files \ Ahead \ Lib \ NeroCheck.exe
O4 - HKLM \ .. \ Run: [rmalt] C: \ Program Files \ Systems \ Nero-keygen.exe
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKCU \ .. \ Run: [MSMSGS] "C: \ Program Files \ Messenger \ msmsgs.exe" / background
O4 - HKCU \ .. \ Run: [TOSCDSPD] C: \ Program Files \ TOSHIBA \ TOSCDSPD \ toscdspd.exe
O4 - HKCU \ .. \ Run: [BgMonitor_ (79662E04-7C6C-4d9f-84C7-88D8A56B10AA)] "C: \ Program Files \ Common Files \ Ahead \ Lib \ NMBgMonitor.exe"
O4 - HKCU \ .. \ RunOnce: [NeroHomeFirstStart] C: \ Program Files \ Common Files \ Ahead \ Lib \ NMFirstStart.exe
O4 - Global Startup: RAMASST.lnk = C: \ WINDOWS \ system32 \ RAMASST.exe
O8 - Extra du menu contextuel: & Google Search -- res://C : \ Program Files \ Google \ GoogleToolbar1. dll / cmsearch.html
O8 - Extra du menu contextuel: Backward Links -- res://C : \ Program Files \ Google \ GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra du menu contextuel: Cached Snapshot of Page -- res://C : \ Program Files \ Google \ GoogleToolbar1.dll/cmcache.html
O8 - Extra du menu contextuel: E & xporter vers Microsoft Excel -- res://C : \ PROGRA ~ 1 \ MICROS ~ 2 \ OFFICE11 \ EXCEL.EXE/3000
O8 - Extra du menu contextuel: Pages similaires -- res://C : \ Program Files \ Google \ GoogleToolbar1. dll / cmsimilar.html
O8 - Extra du menu contextuel: Traduire en français -- res://C : \ Program Files \ Google \ GoogleToolbar1.dll/cmtrans.html
O9 - Extra "Outils" menuitem: Sun Java Console (HKLM)
O9 - Extra button: Spyware Doctor (HKLM)
O9 - Extra "Outils" menuitem: Uninstall BitDefender Online Scanner v8 (HKLM)
O9 - Extra button: Research (HKLM)
O9 - Extra button: Real.com (HKLM)
O9 - Extra button: Yahoo! Messenger (HKLM)
O9 - Extra "Outils" menuitem: Yahoo! Messenger (HKLM)
O9 - Extra button: Messenger (HKLM)
O9 - Extra "Outils" menuitem: Windows Messenger (HKLM)
Ø14 - IERESET.INF: START_PAGE_URL = http://www.toshibadirect.com/dpdstart
O16 - DPF: (215B8138-A3CF-44C5-803F-8226143CFC0A) (Trend Micro ActiveX Scan Agent 6.5) -- http://housecall65.trendmicro.com/house ... hcImpl.cab
O16 - DPF: (5D86DDB5-BDF9-441B-9E9E-D4730F4EE499) (BDSCANONLINE Control) -- http://download.bitdefender.com/resourc ... oscan8.cab
O16 - DPF: (FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6) (IWinAmpActiveX Class) -- http://pdl.stream.aol.com/downloads/aol ... _en_dl.cab
1. Taskbar handicapés. J'ai essayé l'un des utilitaires permettant disponible. Maintenant, il est permis, mais quand je double-cliquez dessus, il s'ouvre et se referme quelques secondes plus tard.
2. Paramètres et options de Run dans le menu Démarrer pas là.
3. Bloc-notes, etc regedit ne fonctionne pas.
4. Lorsque je me connecte à Internet, Im battu avec des pop-ups.
Je peux le voir ci-dessus en mode sans échec. S'il vous plaît aviser. J'ai collé mon log HijackThis ci-dessous.
Logfile de HijackThis v1.97.7
Scan sauvé à 11:15:39 PM, le 10.24.2006
Plate-forme: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ Explorer.EXE
C: \ WINDOWS \ system32 \ igfxsrvc. exe
C: \ WINDOWS \ system32 \ cmd.exe
C: \ Documents and Settings \ Administrator \ Desktop \ HijackThis. exe
R1 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Search Bar = http://www.toshiba.com/search
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://www.toshibadirect.com/dpdstart
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://www.toshibadirect.com/dpdstart
R1 - HKCU \ Software \ Microsoft \ Internet Connection Wizard, Shellnext = http://www.toshibadirect.com/dpdstart
O2 - BHO: (no name) - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Adobe \ Acrobat 7.0 \ ActiveX \ AcroIEHelper. dll
O2 - BHO: (no name) - (1DAEFCB9-06C8-47c6-8F20-3FB54B244DAA) - (no file)
O2 - BHO: (no name) - (53707962-6F74-2D53-2644-206D7942484F) - C: \ Program Files \ Spybot - Search & Destroy \ SDHelper.dll
O2 - BHO: (no name) - (5C79C342-70D6-9570-B5CB-061BA81FC9DD) - C: \ WINDOWS \ system32 \ pnynlv.dll (file missing)
O2 - BHO: (no name) - (5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB) - C: \ PROGRA ~ 1 \ SPYWAR ~ 1 \ tools \ iesdsg. dll
O2 - BHO: (no name) - (5CA3D70E-1895-11CF-8E15-001234567890) - C: \ WINDOWS \ System32 \ DLA \ DLASHX_W.DLL
O2 - BHO: (no name) - (AA58ED58-01DD-4d91-8333-CF10577473F7) - c: \ program files \ google \ googletoolbar1.dll
O2 - BHO: (no name) - (B56A7D7D-6927-48C8-A975-17DF180C71AC) - C: \ PROGRA ~ 1 \ SPYWAR ~ 1 \ tools \ iesdpb.dll
O2 - BHO: (no name) - (FDB03627-F9FC-4EAB-90E7-95B99171E54D) - C: \ WINDOWS \ system32 \ vtstu. dll (file missing)
O3 - Toolbar: McAfee VirusScan - (BA52B914-B692-46c4-B683-905236F6F655) - c: \ progra ~ 1 \ mcafee.com \ vso \ mcvsshl.dll
O3 - Toolbar: & Google - (2318C2B1-4965-11D4-9B18-009027A5CD4F) - c: \ program files \ google \ googletoolbar1.dll
O3 - Toolbar: (no name) - (C004DEC2-2623-438e-9CA2-C9043AB28508) - (no file)
O4 - HKLM \ .. \ Run: [TFncKy] TFncKy.exe
O4 - HKLM \ .. \ Run: [TDispVol] TDispVol.exe
O4 - HKLM \ .. \ Run: [MCUpdateExe] c: \ PROGRA ~ 1 \ mcafee.com \ agent \ mcupdate. exe
O4 - HKLM \ .. \ Run: [MCAgentExe] c: \ PROGRA ~ 1 \ mcafee.com \ agent \ mcagent.exe
O4 - HKLM \ .. \ Run: [igfxtray] C: \ WINDOWS \ system32 \ igfxtray.exe
O4 - HKLM \ .. \ Run: [igfxhkcmd] C: \ WINDOWS \ system32 \ hkcmd.exe
O4 - HKLM \ .. \ Run: [igfxpers] C: \ WINDOWS \ system32 \ igfxpers.exe
O4 - HKLM \ .. \ Run: [ehTray] C: \ WINDOWS \ ehome \ ehtray.exe
O4 - HKLM \ .. \ Run: [THotkey] C: \ Program Files \ Toshiba \ Toshiba Applet \ thotkey.exe
O4 - HKLM \ .. \ Run: [SynTPLpr] C: \ Program Files \ Synaptics \ SynTP \ SynTPLpr. exe
O4 - HKLM \ .. \ Run: [SynTPEnh] C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe
O4 - HKLM \ .. \ Run: [LtMoh] C: \ Program Files \ ltmoh \ Ltmoh.exe
O4 - HKLM \ .. \ Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM \ .. \ Run: [Tvs] C: \ Program Files \ Toshiba \ Tvs \ tvstray.exe
O4 - HKLM \ .. \ Run: [TPSMain] tpsmain.exe
O4 - HKLM \ .. \ Run: [smoothview] C: \ Program Files \ TOSHIBA \ TOSHIBA Zooming Utility \ SmoothView.exe
O4 - HKLM \ .. \ Run: [dla] C: \ WINDOWS \ system32 \ dla \ DLACTRLW.exe
O4 - HKLM \ .. \ Run: [Pinger] c: \ toshiba \ ivp \ ism \ pinger.exe / run
O4 - HKLM \ .. \ Run: [VSOCheckTask] "C: \ PROGRA ~ 1 \ McAfee.com \ VSO \ mcmnhdlr.exe" / checktask
O4 - HKLM \ .. \ Run: [VirusScan Online] C: \ Program Files \ McAfee.com \ VSO \ mcvsshld.exe
O4 - HKLM \ .. \ Run: [OASClnt] C: \ Program Files \ McAfee.com \ VSO \ oasclnt.exe
O4 - HKLM \ .. \ Run: [IntelZeroConfig] "C: \ Program Files \ Intel \ Wireless \ bin \ ZCfgSvc.exe"
O4 - HKLM \ .. \ Run: [IntelWireless] "C: \ Program Files \ Intel \ Wireless \ Bin \ ifrmewrk.exe" / tf Intel PROSet / Wireless
O4 - HKLM \ .. \ Run: [NeroFilterCheck] C: \ Program Files \ Common Files \ Ahead \ Lib \ NeroCheck.exe
O4 - HKLM \ .. \ Run: [rmalt] C: \ Program Files \ Systems \ Nero-keygen.exe
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKCU \ .. \ Run: [MSMSGS] "C: \ Program Files \ Messenger \ msmsgs.exe" / background
O4 - HKCU \ .. \ Run: [TOSCDSPD] C: \ Program Files \ TOSHIBA \ TOSCDSPD \ toscdspd.exe
O4 - HKCU \ .. \ Run: [BgMonitor_ (79662E04-7C6C-4d9f-84C7-88D8A56B10AA)] "C: \ Program Files \ Common Files \ Ahead \ Lib \ NMBgMonitor.exe"
O4 - HKCU \ .. \ RunOnce: [NeroHomeFirstStart] C: \ Program Files \ Common Files \ Ahead \ Lib \ NMFirstStart.exe
O4 - Global Startup: RAMASST.lnk = C: \ WINDOWS \ system32 \ RAMASST.exe
O8 - Extra du menu contextuel: & Google Search -- res://C : \ Program Files \ Google \ GoogleToolbar1. dll / cmsearch.html
O8 - Extra du menu contextuel: Backward Links -- res://C : \ Program Files \ Google \ GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra du menu contextuel: Cached Snapshot of Page -- res://C : \ Program Files \ Google \ GoogleToolbar1.dll/cmcache.html
O8 - Extra du menu contextuel: E & xporter vers Microsoft Excel -- res://C : \ PROGRA ~ 1 \ MICROS ~ 2 \ OFFICE11 \ EXCEL.EXE/3000
O8 - Extra du menu contextuel: Pages similaires -- res://C : \ Program Files \ Google \ GoogleToolbar1. dll / cmsimilar.html
O8 - Extra du menu contextuel: Traduire en français -- res://C : \ Program Files \ Google \ GoogleToolbar1.dll/cmtrans.html
O9 - Extra "Outils" menuitem: Sun Java Console (HKLM)
O9 - Extra button: Spyware Doctor (HKLM)
O9 - Extra "Outils" menuitem: Uninstall BitDefender Online Scanner v8 (HKLM)
O9 - Extra button: Research (HKLM)
O9 - Extra button: Real.com (HKLM)
O9 - Extra button: Yahoo! Messenger (HKLM)
O9 - Extra "Outils" menuitem: Yahoo! Messenger (HKLM)
O9 - Extra button: Messenger (HKLM)
O9 - Extra "Outils" menuitem: Windows Messenger (HKLM)
Ø14 - IERESET.INF: START_PAGE_URL = http://www.toshibadirect.com/dpdstart
O16 - DPF: (215B8138-A3CF-44C5-803F-8226143CFC0A) (Trend Micro ActiveX Scan Agent 6.5) -- http://housecall65.trendmicro.com/house ... hcImpl.cab
O16 - DPF: (5D86DDB5-BDF9-441B-9E9E-D4730F4EE499) (BDSCANONLINE Control) -- http://download.bitdefender.com/resourc ... oscan8.cab
O16 - DPF: (FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6) (IWinAmpActiveX Class) -- http://pdl.stream.aol.com/downloads/aol ... _en_dl.cab
- Anonymous
- Bot
- Inscription: 25 Feb 2008
- Messages: ?
- Loc: Ozzuland
- Status: Online
Octobre 24th, 2006, 11:27 pm
- ATNO/TW
- Super Moderator
- Inscription: Mai 28, 2003
- Messages: 23404
- Loc: Woodbridge VA
- Status: Offline
Octobre 25th, 2006, 7:11 am
Etes-vous sûr thats l'intégralité de votre journal? Vous semblent manquer à tous vos services d'entrées (023 entrées)
"There's no place like 127.0.0.1 except for ::1."
Alexandria Networks. Leader in IT consulting for associations/non-profits, and small to medium sized businesses around the northern Virginia and Washington D.C. metro area.
Alexandria Networks. Leader in IT consulting for associations/non-profits, and small to medium sized businesses around the northern Virginia and Washington D.C. metro area.
- manu_rocks
- Born
- Inscription: Oct 23, 2006
- Messages: 3
- Status: Offline
Octobre 25th, 2006, 9:27 am
Im sûr que c'est depuis je n'ai Ctrl + A; vais vérifier pour vous en quelques heures.
- manu_rocks
- Born
- Inscription: Oct 23, 2006
- Messages: 3
- Status: Offline
Octobre 25th, 2006, 7:58 pm
Here it is.
Logfile de HijackThis v1.99.1
Scan sauvé à 7:53:49 PM, le 10.25.2006
Plate-forme: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ csrss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ svchost. exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ Program Files \ Intel \ Wireless \ Bin \ EvtEng.exe
C: \ Program Files \ Intel \ Wireless \ Bin \ S24EvMon.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ Program Files \ Grisoft \ AVG Anti-Spyware 7.5 \ guard.exe
C: \ Program Files \ TOSHIBA \ ConfigFree \ CFSvcs.exe
C: \ WINDOWS \ system32 \ DVDRAMSV.exe
C: \ WINDOWS \ eHome \ ehrecvr.exe
C: \ WINDOWS \ eHome \ ehSched.exe
c: \ program files \ mcafee. com \ agent \ mcdetect.exe
c: \ PROGRA ~ 1 \ mcafee.com \ vso \ mcshield.exe
c: \ PROGRA ~ 1 \ mcafee.com \ agent \ mctskshd.exe
C: \ Program Files \ Intel \ Wireless \ Bin \ RegSrvc.exe
C: \ Program Files \ Spyware Doctor \ sdhelp.exe
C: \ WINDOWS \ system32 \ svchost.exe
c: \ TOSHIBA \ IVP \ swupdate \ swupdtmr.exe
C: \ Program Files \ TOSHIBA \ TOSHIBA Applet \ tappsrv.exe
C: \ WINDOWS \ ehome \ mcrdsvc.exe
C: \ WINDOWS \ system32 \ DLLHost.exe tombait
C: \ WINDOWS \ System32 \ alg.exe
C: \ WINDOWS \ Explorer. EXE
C: \ Program Files \ TOSHIBA \ TOSHIBA Controls \ TFncKy.exe
C: \ WINDOWS \ system32 \ TDispVol.exe
C: \ PROGRA ~ 1 \ mcafee.com \ agent \ mcagent.exe
C: \ WINDOWS \ system32 \ hkcmd.exe
C: \ WINDOWS \ system32 \ igfxpers.exe
C: \ WINDOWS \ ehome \ ehtray.exe
C: \ Program Files \ Toshiba \ Toshiba Applet \ thotkey.exe
C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe
C: \ Program Files \ ltmoh \ Ltmoh.exe
C: \ WINDOWS \ AGRSMMSG.exe
C: \ Program Files \ Toshiba \ Tvs \ tvstray.exe
C: \ WINDOWS \ system32 \ TPSMain. exe
C: \ WINDOWS \ eHome \ ehmsas.exe
C: \ Program Files \ TOSHIBA \ TOSHIBA Zooming Utility \ SmoothView.exe
C: \ WINDOWS \ system32 \ dla \ DLACTRLW.exe
C: \ toshiba \ ivp \ ism \ pinger.exe
C: \ Program Files \ Synaptics \ SynTP \ Toshiba.exe
C: \ Program Files \ McAfee.com \ VSO \ mcvsshld.exe
C: \ Program Files \ McAfee.com \ VSO \ oasclnt.exe
C: \ Program Files \ Intel \ Wireless \ bin \ ZCfgSvc.exe
c: \ progra ~ 1 \ mcafee.com \ vso \ mcvsescn.exe
C: \ WINDOWS \ system32 \ TPSBattM. exe
C: \ Program Files \ Intel \ Wireless \ Bin \ ifrmewrk.exe
C: \ Program Files \ Grisoft \ AVG Anti-Spyware 7.5 \ avgas.exe
C: \ WINDOWS \ system32 \ ctfmon.exe
C: \ Program Files \ Common Files \ Ahead \ Lib \ NMBgMonitor.exe
C: \ Program Files \ SUPERAntiSpyware \ SUPERAntiSpyware.exe
C: \ PROGRA ~ 1 \ Intel \ Wireless \ Bin \ dot1xcfg.exe
C: \ Program Files \ Common Files \ Ahead \ Lib \ NMIndexStoreSvr.exe
C: \ WINDOWS \ system32 \ Wuauclt.exe
C: \ Program Files \ Spyware Doctor \ swdoctor.exe
C: \ WINDOWS \ system32 \ RAMASST. exe
C: \ WINDOWS \ system32 \ taskmgr.exe
C: \ Documents and Settings \ Nayaks \ Desktop \ HijackThis \ HijackThis.exe
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Toolbar, LinksFolderName =
R3 - URLSearchHook: (no name) - (2EDEC110-29FE-144c-D5BD-2FA7792BE2CC) - (no file)
O2 - BHO: AcroIEHlprObj Class - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Adobe \ Acrobat 7.0 \ ActiveX \ AcroIEHelper. dll
O2 - BHO: (no name) - (1DAEFCB9-06C8-47c6-8F20-3FB54B244DAA) - (no file)
O2 - BHO: (no name) - (53707962-6F74-2D53-2644-206D7942484F) - C: \ Program Files \ Spybot - Search & Destroy \ SDHelper.dll
O2 - BHO: (no name) - (5C79C342-70D6-9570-B5CB-061BA81FC9DD) - C: \ WINDOWS \ system32 \ pnynlv.dll (file missing)
O2 - BHO: PCTOOLS Site Guard - (5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB) - C: \ PROGRA ~ 1 \ SPYWAR ~ 1 \ tools \ iesdsg. dll
O2 - BHO: DriveLetterAccess - (5CA3D70E-1895-11CF-8E15-001234567890) - C: \ WINDOWS \ System32 \ DLA \ DLASHX_W.DLL
O2 - BHO: Google Toolbar Helper - (AA58ED58-01DD-4d91-8333-CF10577473F7) - c: \ program files \ google \ googletoolbar1.dll
O2 - BHO: PCTOOLS Browser Monitor - (B56A7D7D-6927-48C8-A975-17DF180C71AC) - C: \ PROGRA ~ 1 \ SPYWAR ~ 1 \ tools \ iesdpb.dll
O2 - BHO: (no name) - (FDB03627-F9FC-4EAB-90E7-95B99171E54D) - C: \ WINDOWS \ system32 \ vtstu. dll (file missing)
O3 - Toolbar: McAfee VirusScan - (BA52B914-B692-46c4-B683-905236F6F655) - c: \ progra ~ 1 \ mcafee.com \ vso \ mcvsshl.dll
O3 - Toolbar: & Google - (2318C2B1-4965-11D4-9B18-009027A5CD4F) - c: \ program files \ google \ googletoolbar1.dll
O3 - Toolbar: (no name) - (C004DEC2-2623-438e-9CA2-C9043AB28508) - (no file)
O4 - HKLM \ .. \ Run: [TFncKy] TFncKy.exe
O4 - HKLM \ .. \ Run: [TDispVol] TDispVol.exe
O4 - HKLM \ .. \ Run: [MCUpdateExe] C: \ PROGRA ~ 1 \ mcafee.com \ agent \ McUpdate. exe
O4 - HKLM \ .. \ Run: [MCAgentExe] c: \ PROGRA ~ 1 \ mcafee.com \ agent \ mcagent.exe
O4 - HKLM \ .. \ Run: [igfxtray] C: \ WINDOWS \ system32 \ igfxtray.exe
O4 - HKLM \ .. \ Run: [igfxhkcmd] C: \ WINDOWS \ system32 \ hkcmd.exe
O4 - HKLM \ .. \ Run: [igfxpers] C: \ WINDOWS \ system32 \ igfxpers.exe
O4 - HKLM \ .. \ Run: [ehTray] C: \ WINDOWS \ ehome \ ehtray.exe
O4 - HKLM \ .. \ Run: [THotkey] C: \ Program Files \ Toshiba \ Toshiba Applet \ thotkey.exe
O4 - HKLM \ .. \ Run: [SynTPLpr] C: \ Program Files \ Synaptics \ SynTP \ SynTPLpr. exe
O4 - HKLM \ .. \ Run: [SynTPEnh] C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe
O4 - HKLM \ .. \ Run: [LtMoh] C: \ Program Files \ ltmoh \ Ltmoh.exe
O4 - HKLM \ .. \ Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM \ .. \ Run: [Tvs] C: \ Program Files \ Toshiba \ Tvs \ tvstray.exe
O4 - HKLM \ .. \ Run: [TPSMain] tpsmain.exe
O4 - HKLM \ .. \ Run: [smoothview] C: \ Program Files \ TOSHIBA \ TOSHIBA Zooming Utility \ SmoothView.exe
O4 - HKLM \ .. \ Run: [dla] C: \ WINDOWS \ system32 \ dla \ DLACTRLW.exe
O4 - HKLM \ .. \ Run: [Pinger] c: \ toshiba \ ivp \ ism \ pinger.exe / run
O4 - HKLM \ .. \ Run: [VSOCheckTask] "C: \ PROGRA ~ 1 \ McAfee.com \ VSO \ mcmnhdlr.exe" / checktask
O4 - HKLM \ .. \ Run: [VirusScan Online] C: \ Program Files \ McAfee.com \ VSO \ mcvsshld.exe
O4 - HKLM \ .. \ Run: [OASClnt] C: \ Program Files \ McAfee.com \ VSO \ oasclnt.exe
O4 - HKLM \ .. \ Run: [IntelZeroConfig] "C: \ Program Files \ Intel \ Wireless \ bin \ ZCfgSvc.exe"
O4 - HKLM \ .. \ Run: [IntelWireless] "C: \ Program Files \ Intel \ Wireless \ Bin \ ifrmewrk.exe" / tf Intel PROSet / Wireless
O4 - HKLM \ .. \ Run: [NeroFilterCheck] C: \ Program Files \ Common Files \ Ahead \ Lib \ NeroCheck.exe
O4 - HKLM \ .. \ Run: [! AVG Anti-Spyware] "C: \ Program Files \ Grisoft \ AVG Anti-Spyware 7.5 \ avgas.exe" / minimiser
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKCU \ .. \ Run: [BgMonitor_ (79662E04-7C6C-4d9f-84C7-88D8A56B10AA)] "C: \ Program Files \ Common Files \ Ahead \ Lib \ NMBgMonitor.exe"
O4 - HKCU \ .. \ Run: [SUPERAntiSpyware] C: \ Program Files \ SUPERAntiSpyware \ SUPERAntiSpyware.exe
O4 - HKCU \ .. \ Run: [Spyware Doctor] "C: \ Program Files \ Spyware Doctor \ swdoctor.exe" / Q
O4 - HKCU \ .. \ Run: [OMD] "C: \ WINDOWS \ system32 \ CROSOF ~ 1 \ wuauboot.exe"-vt yazb
O4 - HKCU \ .. \ Run: [Egsfsgn] C: \ WINDOWS \ s? Sécurité \ w? Wexec. exe
O4 - Global Startup: RAMASST.lnk = C: \ WINDOWS \ system32 \ RAMASST.exe
O6 - HKCU \ Software \ Policies \ Microsoft \ Internet Explorer \ Restrictions présent
O7 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ System, DisableRegedit = 1
O8 - Extra du menu contextuel: E & xporter vers Microsoft Excel -- res://C : \ PROGRA ~ 1 \ MICROS ~ 2 \ OFFICE11 \ EXCEL.EXE/3000
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.5.0_04 \ bin \ npjpi150_04. dll
O9 - Extra "Outils" menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.5.0_04 \ bin \ npjpi150_04.dll
O9 - Extra button: Spyware Doctor - (2D663D1A-8670-49D9-A1A5-4C56B4E14E84) - C: \ PROGRA ~ 1 \ SPYWAR ~ 1 \ tools \ iesdpb.dll
O9 - Extra button: (no name) - (85d1f590-48F4-11d9-9669-0800200c9a66) -% windir% \ bdoscandel. exe (file missing)
O9 - Extra "Outils" menuitem: Uninstall BitDefender Online Scanner v8 - (85d1f590-48F4-11d9-9669-0800200c9a66) -% windir% \ bdoscandel.exe (file missing)
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ OFFICE11 \ REFIEBAR.DLL
O9 - Extra button: Real.com - (CD67F990-D8E9-11d2-98FE-00C0F0318AFE) - C: \ WINDOWS \ system32 \ Shdocvw.dll
O9 - Extra button: Yahoo! Messenger - (E5D12C4E-7B4F-11D3-B5C9-0050045C3C96) - C: \ Program Files \ Yahoo! \ Messenger \ YahooMessenger.exe
O9 - Extra "Outils" menuitem: Yahoo! Messenger - (E5D12C4E-7B4F-11D3-B5C9-0050045C3C96) - C: \ Program Files \ Yahoo! \ Messenger \ YahooMessenger.exe
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs. exe
Ø14 - IERESET.INF: START_PAGE_URL = http://www.toshibadirect.com/dpdstart
O16 - DPF: (215B8138-A3CF-44C5-803F-8226143CFC0A) (Trend Micro ActiveX Scan Agent 6. 5) -- http://housecall65.trendmicro.com/house ... hcImpl.cab
O16 - DPF: (5D86DDB5-BDF9-441B-9E9E-D4730F4EE499) (BDSCANONLINE Control) -- http://download.bitdefender.com/resourc ... oscan8.cab
O16 - DPF: (EF791A6B-FC12-4C68-99EF-FB9E207A39E6) (McFreeScan Class) -- http://download.mcafee.com/molbin/iss-l ... cfscan.cab
O16 - DPF: (FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6) (IWinAmpActiveX Class) -- http://pdl.stream.aol.com/downloads/aol ... _en_dl.cab
O20 - Winlogon Notify:! SASWinLogon - C: \ Program Files \ SUPERAntiSpyware \ SASWINLO.dll
O20 - Winlogon Notify: igfxcui - C: \ WINDOWS \ SYSTEM32 \ igfxdev. dll
O20 - Winlogon Notify: winwim32 - winwim32.dll (file missing)
O23 - Service: Service d'Etat ASP.NET (aspnet_state) - Unknown owner - C: \ WINDOWS \ Microsoft.NET \ Framework \ v2.0.50727 \ aspnet_state.exe (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development as - C: \ Program Files \ Grisoft \ AVG Anti-Spyware 7.5 \ guard.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C: \ Program Files \ TOSHIBA \ ConfigFree \ CFSvcs. exe
O23 - Service: DVD-RAM_Service - *plum* Electric Industrial Co., Ltd - C: \ WINDOWS \ system32 \ DVDRAMSV.exe
O23 - Service: Intel (R) PROSet / Wireless Event Log (EvtEng) - Intel Corporation - C: \ Program Files \ Intel \ Wireless \ Bin \ EvtEng.exe
O23 - Service: McAfee WSC Integration (mcdetect.exe) - McAfee, Inc - c: \ program files \ mcafee.com \ agent \ mcdetect.exe
O23 - Service: McAfee.com McShield (McShield) - McAfee Inc - c: \ PROGRA ~ 1 \ mcafee.com \ vso \ McShield. exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c: \ PROGRA ~ 1 \ mcafee.com \ agent \ mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C: \ PROGRA ~ 1 \ McAfee.com \ Agent \ mcupdmgr.exe
O23 - Service: NBService - Nero AG - C: \ Program Files \ Nero \ Nero 7 \ Nero BackItUp \ NBService.exe
O23 - Service: Intel (R) PROSet / Wireless Registry Service (RegSrvc) - Intel Corporation - C: \ Program Files \ Intel \ Wireless \ Bin \ RegSrvc. exe
O23 - Service: Intel (R) PROSet / Wireless Service (S24EventMonitor) - Intel Corporation - C: \ Program Files \ Intel \ Wireless \ Bin \ S24EvMon.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C: \ Program Files \ Spyware Doctor \ sdhelp.exe
O23 - Service: Swupdtmr - Unknown owner - c: \ TOSHIBA \ IVP \ swupdate \ swupdtmr.exe
O23 - Service: TOSHIBA Application Service (TAPPSRV) - TOSHIBA Corp - C: \ Program Files \ TOSHIBA \ TOSHIBA Applet \ TAPPSRV. exe
Apprécions grandement votre aide.
Logfile de HijackThis v1.99.1
Scan sauvé à 7:53:49 PM, le 10.25.2006
Plate-forme: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ csrss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ svchost. exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ Program Files \ Intel \ Wireless \ Bin \ EvtEng.exe
C: \ Program Files \ Intel \ Wireless \ Bin \ S24EvMon.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ Program Files \ Grisoft \ AVG Anti-Spyware 7.5 \ guard.exe
C: \ Program Files \ TOSHIBA \ ConfigFree \ CFSvcs.exe
C: \ WINDOWS \ system32 \ DVDRAMSV.exe
C: \ WINDOWS \ eHome \ ehrecvr.exe
C: \ WINDOWS \ eHome \ ehSched.exe
c: \ program files \ mcafee. com \ agent \ mcdetect.exe
c: \ PROGRA ~ 1 \ mcafee.com \ vso \ mcshield.exe
c: \ PROGRA ~ 1 \ mcafee.com \ agent \ mctskshd.exe
C: \ Program Files \ Intel \ Wireless \ Bin \ RegSrvc.exe
C: \ Program Files \ Spyware Doctor \ sdhelp.exe
C: \ WINDOWS \ system32 \ svchost.exe
c: \ TOSHIBA \ IVP \ swupdate \ swupdtmr.exe
C: \ Program Files \ TOSHIBA \ TOSHIBA Applet \ tappsrv.exe
C: \ WINDOWS \ ehome \ mcrdsvc.exe
C: \ WINDOWS \ system32 \ DLLHost.exe tombait
C: \ WINDOWS \ System32 \ alg.exe
C: \ WINDOWS \ Explorer. EXE
C: \ Program Files \ TOSHIBA \ TOSHIBA Controls \ TFncKy.exe
C: \ WINDOWS \ system32 \ TDispVol.exe
C: \ PROGRA ~ 1 \ mcafee.com \ agent \ mcagent.exe
C: \ WINDOWS \ system32 \ hkcmd.exe
C: \ WINDOWS \ system32 \ igfxpers.exe
C: \ WINDOWS \ ehome \ ehtray.exe
C: \ Program Files \ Toshiba \ Toshiba Applet \ thotkey.exe
C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe
C: \ Program Files \ ltmoh \ Ltmoh.exe
C: \ WINDOWS \ AGRSMMSG.exe
C: \ Program Files \ Toshiba \ Tvs \ tvstray.exe
C: \ WINDOWS \ system32 \ TPSMain. exe
C: \ WINDOWS \ eHome \ ehmsas.exe
C: \ Program Files \ TOSHIBA \ TOSHIBA Zooming Utility \ SmoothView.exe
C: \ WINDOWS \ system32 \ dla \ DLACTRLW.exe
C: \ toshiba \ ivp \ ism \ pinger.exe
C: \ Program Files \ Synaptics \ SynTP \ Toshiba.exe
C: \ Program Files \ McAfee.com \ VSO \ mcvsshld.exe
C: \ Program Files \ McAfee.com \ VSO \ oasclnt.exe
C: \ Program Files \ Intel \ Wireless \ bin \ ZCfgSvc.exe
c: \ progra ~ 1 \ mcafee.com \ vso \ mcvsescn.exe
C: \ WINDOWS \ system32 \ TPSBattM. exe
C: \ Program Files \ Intel \ Wireless \ Bin \ ifrmewrk.exe
C: \ Program Files \ Grisoft \ AVG Anti-Spyware 7.5 \ avgas.exe
C: \ WINDOWS \ system32 \ ctfmon.exe
C: \ Program Files \ Common Files \ Ahead \ Lib \ NMBgMonitor.exe
C: \ Program Files \ SUPERAntiSpyware \ SUPERAntiSpyware.exe
C: \ PROGRA ~ 1 \ Intel \ Wireless \ Bin \ dot1xcfg.exe
C: \ Program Files \ Common Files \ Ahead \ Lib \ NMIndexStoreSvr.exe
C: \ WINDOWS \ system32 \ Wuauclt.exe
C: \ Program Files \ Spyware Doctor \ swdoctor.exe
C: \ WINDOWS \ system32 \ RAMASST. exe
C: \ WINDOWS \ system32 \ taskmgr.exe
C: \ Documents and Settings \ Nayaks \ Desktop \ HijackThis \ HijackThis.exe
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Toolbar, LinksFolderName =
R3 - URLSearchHook: (no name) - (2EDEC110-29FE-144c-D5BD-2FA7792BE2CC) - (no file)
O2 - BHO: AcroIEHlprObj Class - (06849E9F-C8D7-4D59-B87D-784B7D6BE0B3) - C: \ Program Files \ Adobe \ Acrobat 7.0 \ ActiveX \ AcroIEHelper. dll
O2 - BHO: (no name) - (1DAEFCB9-06C8-47c6-8F20-3FB54B244DAA) - (no file)
O2 - BHO: (no name) - (53707962-6F74-2D53-2644-206D7942484F) - C: \ Program Files \ Spybot - Search & Destroy \ SDHelper.dll
O2 - BHO: (no name) - (5C79C342-70D6-9570-B5CB-061BA81FC9DD) - C: \ WINDOWS \ system32 \ pnynlv.dll (file missing)
O2 - BHO: PCTOOLS Site Guard - (5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB) - C: \ PROGRA ~ 1 \ SPYWAR ~ 1 \ tools \ iesdsg. dll
O2 - BHO: DriveLetterAccess - (5CA3D70E-1895-11CF-8E15-001234567890) - C: \ WINDOWS \ System32 \ DLA \ DLASHX_W.DLL
O2 - BHO: Google Toolbar Helper - (AA58ED58-01DD-4d91-8333-CF10577473F7) - c: \ program files \ google \ googletoolbar1.dll
O2 - BHO: PCTOOLS Browser Monitor - (B56A7D7D-6927-48C8-A975-17DF180C71AC) - C: \ PROGRA ~ 1 \ SPYWAR ~ 1 \ tools \ iesdpb.dll
O2 - BHO: (no name) - (FDB03627-F9FC-4EAB-90E7-95B99171E54D) - C: \ WINDOWS \ system32 \ vtstu. dll (file missing)
O3 - Toolbar: McAfee VirusScan - (BA52B914-B692-46c4-B683-905236F6F655) - c: \ progra ~ 1 \ mcafee.com \ vso \ mcvsshl.dll
O3 - Toolbar: & Google - (2318C2B1-4965-11D4-9B18-009027A5CD4F) - c: \ program files \ google \ googletoolbar1.dll
O3 - Toolbar: (no name) - (C004DEC2-2623-438e-9CA2-C9043AB28508) - (no file)
O4 - HKLM \ .. \ Run: [TFncKy] TFncKy.exe
O4 - HKLM \ .. \ Run: [TDispVol] TDispVol.exe
O4 - HKLM \ .. \ Run: [MCUpdateExe] C: \ PROGRA ~ 1 \ mcafee.com \ agent \ McUpdate. exe
O4 - HKLM \ .. \ Run: [MCAgentExe] c: \ PROGRA ~ 1 \ mcafee.com \ agent \ mcagent.exe
O4 - HKLM \ .. \ Run: [igfxtray] C: \ WINDOWS \ system32 \ igfxtray.exe
O4 - HKLM \ .. \ Run: [igfxhkcmd] C: \ WINDOWS \ system32 \ hkcmd.exe
O4 - HKLM \ .. \ Run: [igfxpers] C: \ WINDOWS \ system32 \ igfxpers.exe
O4 - HKLM \ .. \ Run: [ehTray] C: \ WINDOWS \ ehome \ ehtray.exe
O4 - HKLM \ .. \ Run: [THotkey] C: \ Program Files \ Toshiba \ Toshiba Applet \ thotkey.exe
O4 - HKLM \ .. \ Run: [SynTPLpr] C: \ Program Files \ Synaptics \ SynTP \ SynTPLpr. exe
O4 - HKLM \ .. \ Run: [SynTPEnh] C: \ Program Files \ Synaptics \ SynTP \ SynTPEnh.exe
O4 - HKLM \ .. \ Run: [LtMoh] C: \ Program Files \ ltmoh \ Ltmoh.exe
O4 - HKLM \ .. \ Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM \ .. \ Run: [Tvs] C: \ Program Files \ Toshiba \ Tvs \ tvstray.exe
O4 - HKLM \ .. \ Run: [TPSMain] tpsmain.exe
O4 - HKLM \ .. \ Run: [smoothview] C: \ Program Files \ TOSHIBA \ TOSHIBA Zooming Utility \ SmoothView.exe
O4 - HKLM \ .. \ Run: [dla] C: \ WINDOWS \ system32 \ dla \ DLACTRLW.exe
O4 - HKLM \ .. \ Run: [Pinger] c: \ toshiba \ ivp \ ism \ pinger.exe / run
O4 - HKLM \ .. \ Run: [VSOCheckTask] "C: \ PROGRA ~ 1 \ McAfee.com \ VSO \ mcmnhdlr.exe" / checktask
O4 - HKLM \ .. \ Run: [VirusScan Online] C: \ Program Files \ McAfee.com \ VSO \ mcvsshld.exe
O4 - HKLM \ .. \ Run: [OASClnt] C: \ Program Files \ McAfee.com \ VSO \ oasclnt.exe
O4 - HKLM \ .. \ Run: [IntelZeroConfig] "C: \ Program Files \ Intel \ Wireless \ bin \ ZCfgSvc.exe"
O4 - HKLM \ .. \ Run: [IntelWireless] "C: \ Program Files \ Intel \ Wireless \ Bin \ ifrmewrk.exe" / tf Intel PROSet / Wireless
O4 - HKLM \ .. \ Run: [NeroFilterCheck] C: \ Program Files \ Common Files \ Ahead \ Lib \ NeroCheck.exe
O4 - HKLM \ .. \ Run: [! AVG Anti-Spyware] "C: \ Program Files \ Grisoft \ AVG Anti-Spyware 7.5 \ avgas.exe" / minimiser
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKCU \ .. \ Run: [BgMonitor_ (79662E04-7C6C-4d9f-84C7-88D8A56B10AA)] "C: \ Program Files \ Common Files \ Ahead \ Lib \ NMBgMonitor.exe"
O4 - HKCU \ .. \ Run: [SUPERAntiSpyware] C: \ Program Files \ SUPERAntiSpyware \ SUPERAntiSpyware.exe
O4 - HKCU \ .. \ Run: [Spyware Doctor] "C: \ Program Files \ Spyware Doctor \ swdoctor.exe" / Q
O4 - HKCU \ .. \ Run: [OMD] "C: \ WINDOWS \ system32 \ CROSOF ~ 1 \ wuauboot.exe"-vt yazb
O4 - HKCU \ .. \ Run: [Egsfsgn] C: \ WINDOWS \ s? Sécurité \ w? Wexec. exe
O4 - Global Startup: RAMASST.lnk = C: \ WINDOWS \ system32 \ RAMASST.exe
O6 - HKCU \ Software \ Policies \ Microsoft \ Internet Explorer \ Restrictions présent
O7 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Policies \ System, DisableRegedit = 1
O8 - Extra du menu contextuel: E & xporter vers Microsoft Excel -- res://C : \ PROGRA ~ 1 \ MICROS ~ 2 \ OFFICE11 \ EXCEL.EXE/3000
O9 - Extra button: (no name) - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.5.0_04 \ bin \ npjpi150_04. dll
O9 - Extra "Outils" menuitem: Sun Java Console - (08B0E5C0-4FCB-11CF-AAA5-00401C608501) - C: \ Program Files \ Java \ jre1.5.0_04 \ bin \ npjpi150_04.dll
O9 - Extra button: Spyware Doctor - (2D663D1A-8670-49D9-A1A5-4C56B4E14E84) - C: \ PROGRA ~ 1 \ SPYWAR ~ 1 \ tools \ iesdpb.dll
O9 - Extra button: (no name) - (85d1f590-48F4-11d9-9669-0800200c9a66) -% windir% \ bdoscandel. exe (file missing)
O9 - Extra "Outils" menuitem: Uninstall BitDefender Online Scanner v8 - (85d1f590-48F4-11d9-9669-0800200c9a66) -% windir% \ bdoscandel.exe (file missing)
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ OFFICE11 \ REFIEBAR.DLL
O9 - Extra button: Real.com - (CD67F990-D8E9-11d2-98FE-00C0F0318AFE) - C: \ WINDOWS \ system32 \ Shdocvw.dll
O9 - Extra button: Yahoo! Messenger - (E5D12C4E-7B4F-11D3-B5C9-0050045C3C96) - C: \ Program Files \ Yahoo! \ Messenger \ YahooMessenger.exe
O9 - Extra "Outils" menuitem: Yahoo! Messenger - (E5D12C4E-7B4F-11D3-B5C9-0050045C3C96) - C: \ Program Files \ Yahoo! \ Messenger \ YahooMessenger.exe
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs. exe
Ø14 - IERESET.INF: START_PAGE_URL = http://www.toshibadirect.com/dpdstart
O16 - DPF: (215B8138-A3CF-44C5-803F-8226143CFC0A) (Trend Micro ActiveX Scan Agent 6. 5) -- http://housecall65.trendmicro.com/house ... hcImpl.cab
O16 - DPF: (5D86DDB5-BDF9-441B-9E9E-D4730F4EE499) (BDSCANONLINE Control) -- http://download.bitdefender.com/resourc ... oscan8.cab
O16 - DPF: (EF791A6B-FC12-4C68-99EF-FB9E207A39E6) (McFreeScan Class) -- http://download.mcafee.com/molbin/iss-l ... cfscan.cab
O16 - DPF: (FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6) (IWinAmpActiveX Class) -- http://pdl.stream.aol.com/downloads/aol ... _en_dl.cab
O20 - Winlogon Notify:! SASWinLogon - C: \ Program Files \ SUPERAntiSpyware \ SASWINLO.dll
O20 - Winlogon Notify: igfxcui - C: \ WINDOWS \ SYSTEM32 \ igfxdev. dll
O20 - Winlogon Notify: winwim32 - winwim32.dll (file missing)
O23 - Service: Service d'Etat ASP.NET (aspnet_state) - Unknown owner - C: \ WINDOWS \ Microsoft.NET \ Framework \ v2.0.50727 \ aspnet_state.exe (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development as - C: \ Program Files \ Grisoft \ AVG Anti-Spyware 7.5 \ guard.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C: \ Program Files \ TOSHIBA \ ConfigFree \ CFSvcs. exe
O23 - Service: DVD-RAM_Service - *plum* Electric Industrial Co., Ltd - C: \ WINDOWS \ system32 \ DVDRAMSV.exe
O23 - Service: Intel (R) PROSet / Wireless Event Log (EvtEng) - Intel Corporation - C: \ Program Files \ Intel \ Wireless \ Bin \ EvtEng.exe
O23 - Service: McAfee WSC Integration (mcdetect.exe) - McAfee, Inc - c: \ program files \ mcafee.com \ agent \ mcdetect.exe
O23 - Service: McAfee.com McShield (McShield) - McAfee Inc - c: \ PROGRA ~ 1 \ mcafee.com \ vso \ McShield. exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c: \ PROGRA ~ 1 \ mcafee.com \ agent \ mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C: \ PROGRA ~ 1 \ McAfee.com \ Agent \ mcupdmgr.exe
O23 - Service: NBService - Nero AG - C: \ Program Files \ Nero \ Nero 7 \ Nero BackItUp \ NBService.exe
O23 - Service: Intel (R) PROSet / Wireless Registry Service (RegSrvc) - Intel Corporation - C: \ Program Files \ Intel \ Wireless \ Bin \ RegSrvc. exe
O23 - Service: Intel (R) PROSet / Wireless Service (S24EventMonitor) - Intel Corporation - C: \ Program Files \ Intel \ Wireless \ Bin \ S24EvMon.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C: \ Program Files \ Spyware Doctor \ sdhelp.exe
O23 - Service: Swupdtmr - Unknown owner - c: \ TOSHIBA \ IVP \ swupdate \ swupdtmr.exe
O23 - Service: TOSHIBA Application Service (TAPPSRV) - TOSHIBA Corp - C: \ Program Files \ TOSHIBA \ TOSHIBA Applet \ TAPPSRV. exe
Apprécions grandement votre aide.
- ashishverma
- Born
- Inscription: Juil 11, 2009
- Messages: 1
- Status: Offline
Juillet 11th, 2009, 2:20 am
ATNO/TW a écrit:
Etes-vous sûr thats l'intégralité de votre journal? Vous semblent manquer à tous vos services d'entrées (023 entrées)
Logfile de Trend Micro HijackThis v2.0.2
Scan sauvé à 2:37:00 PM, le 7.11.2009
Plate-forme: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 SP2 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass. exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ Program Files \ ESET \ ESET Smart Security \ ekrn.exe
C: \ WINDOWS \ System32 \ svchost.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ Explorer.EXE
C: \ Program Files \ ESET \ ESET Smart Security \ egui.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ Program Files \ Trend Micro \ HijackThis \ HijackThis. exe
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = environ & #058; blanc
R1 - HKCU \ Software \ Microsoft \ Internet Connection Wizard, ShellNext = http://windowsupdate.microsoft.com/
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyOverride = *. local
F2 - REG: system.ini: Shell = Explorer.exe rundll32.exe beforemain
O2 - BHO: AcroIEHelperStub - (18DF081C-E8AD-4283-A596-FA578C2EBDC3) - C: \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEHelperShim. dll
O4 - HKLM \ .. \ Run: [egui] "C: \ Program Files \ ESET \ ESET Smart Security \ egui.exe" / hide / waitservice
O4 - HKLM \ .. \ Run: [regedit32] C: \ WINDOWS \ system32 \ regedit.exe
O4 - HKCU \ .. \ Run: [cdoosoft] C: \ DOCUME ~ 1 \ bureau \ LOCALS ~ 1 \ Temp \ olhrwef.exe
O8 - Extra du menu contextuel: & Clean Traces - C: \ Program Files \ DAP \ Privacy Package \ dapcleanerie.htm
O8 - Extra du menu contextuel: & Download with & DAP - C: \ Program Files \ DAP \ dapextie. htm
O8 - Extra du menu contextuel: Télécharger tout avec & DAP - C: \ Program Files \ DAP \ dapextie2.htm
O8 - Extra du menu contextuel: E & xporter vers Microsoft Excel -- res://C : \ PROGRA ~ 1 \ MICROS ~ 2 \ Office10 \ EXCEL.EXE/3000
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ MICROS ~ 2 \ Office12 \ REFIEBAR.DLL
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs. exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O12 - Plugin for. Tif: C: \ Program Files \ Internet Explorer \ PLUGINS \ npqtplugin3.dll
O17 - HKLM \ System \ CCS \ Services \ Tcpip \ .. \ (F864E3A3-DE5B-4AFD-B66B-48469DA554D4): NameServer = 192.168.1.1
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C: \ Program Files \ ESET \ ESET Smart Security \ EHttpSrv. exe
O23 - Service: Eset Service (ekrn) - ESET - C: \ Program Files \ ESET \ ESET Smart Security \ ekrn.exe
O23 - Service: ServiceLayer - Nokia. - C: \ Program Files \ PC Connectivity Solution \ ServiceLayer.exe
--
Fin de fichier - 2791 octets
Page 1 sur 1
Pour répondre à ce sujet, vous devez vous connecter ou vous enregistrer. Il est gratuit.
Afficher de l'information
- Total des messages de ce sujet: 5 messages
- Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 125 invités
- Vous ne pouvez pas poster de nouveaux sujets
- Vous ne pouvez pas répondre aux sujets
- Vous ne pouvez pas éditer vos messages
- Vous ne pouvez pas supprimer vos messages
- Vous ne pouvez pas joindre des fichiers
