S'IL VOUS PLAÎT HELP ASAP!
- deki-007
- Born
- Inscription: Aoû 10, 2009
- Messages: 2
- Status: Offline
Août 10th, 2009, 12:28 am
Hey guys i think i got a keylogger .. J'ai besoin d'aide et j'ai mal géré une analyse avec spybot et rien n'a été jusqu'à im dans le processus de fonctionnement de scans avec Stinger, Adaware et Eset Smart Security. ici mon fichier de log hijack s'il vous plaît regardez-le!
Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ System32 \ svchost. exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ WINDOWS \ Explorer.EXE
C: \ WINDOWS \ system32 \ igfxtray.exe
C: \ WINDOWS \ system32 \ hkcmd.exe
C: \ WINDOWS \ system32 \ igfxpers.exe
C: \ WINDOWS \ RTHDCPL.EXE
C: \ WINDOWS \ system32 \ igfxsrvc.exe
C: \ Program Files \ ESET \ ESET Smart Security \ egui.exe
C: \ Program Files \ iTunes \ iTunesHelper.exe
C: \ Program Files \ Conceiva \ DownloadStudio \ DownloadStudioScheduleMonitor.exe
C: \ WINDOWS \ system32 \ ctfmon. exe
C: \ Program Files \ Google \ GoogleToolbarNotifier \ GoogleToolbarNotifier.exe
C: \ Program Files \ Windows Live \ Messenger \ msnmsgr.exe
C: \ Program Files \ Messenger \ msmsgs.exe
C: \ Program Files \ Common Files \ Ahead \ Lib \ NMBgMonitor.exe
C: \ Program Files \ NETGEAR \ WG111v2 Configuration Utility \ RtlWake.exe
C: \ Program Files \ Common Files \ Ahead \ Lib \ NMIndexStoreSvr.exe
C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService. exe
C: \ Program Files \ Bonjour \ mDNSResponder.exe
C: \ Program Files \ DU Meter \ DUMeterSvc.exe
C: \ Program Files \ ESET \ ESET Smart Security \ ekrn.exe
C: \ Program Files \ Java \ jre6 \ bin \ jqs.exe
c: \ program files \ grasssoft \ macro expert \ MacroService.exe
C: \ Program Files \ Fichiers communs \ Microsoft Shared \ VS7DEBUG \ Mdm.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ Program Files \ Common Files \ Ahead \ Lib \ NMIndexingService.exe
C: \ Program Files \ iPod \ bin \ iPodService.exe
C: \ WINDOWS \ system32 \ wscntfy. exe
C: \ Program Files \ Windows Live \ Contacts \ wlcomm.exe
c: \ program files \ grasssoft \ macro expert \ MacroServiceWnd.exe
C: \ WINDOWS \ system32 \ Wuauclt.exe
C: \ Program Files \ Lavasoft \ Ad-Aware \ Ad-Aware.exe
C: \ Program Files \ Lavasoft \ Ad-Aware \ AAWService.exe
C: \ Program Files \ Lavasoft \ Ad-Aware \ AAWTray.exe
D: \ stinger1001546.exe
C: \ Program Files \ Trend Micro \ HijackThis \ HijackThis. exe
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://google.com.au/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU \ Software \ Microsoft \ Internet Connection Wizard , ShellNext = http://www.bigpond.com/welcome/offers
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyServer = socks =
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyOverride = plimus.com, www.plimus.com, regnow.com, www.regnow.com,
O2 - BHO: AcroIEHelperStub - (18DF081C-E8AD-4283-A596-FA578C2EBDC3) - C: \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEHelperShim. dll
O2 - BHO: Spybot-S & D IE Protection - (53707962-6F74-2D53-2644-206D7942484F) - C: \ PROGRA ~ 1 \ Spybot ~ 1 \ SDHelper.dll
O2 - BHO: Click-to-Call BHO - (5C255C8A-E604-49b4-9D64-90988571CECB) - C: \ Program Files \ Windows Live \ Messenger \ wlchtc.dll
O2 - BHO: Download Studio Click Monitor - (8170D7DC-BDD6-461e-88EB-F047257898C9) - C: \ Program Files \ Conceiva \ DownloadStudio \ DLMonitr. dll
O2 - BHO: Windows Live Sign-in Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - (AA58ED58-01DD-4d91-8333-CF10577473F7) - C: \ Program Files \ Google \ Google Toolbar \ GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - (AF69DE43-7D58-4638-B6FA-CE66B5AD205D) - C: \ Program Files \ Google \ GoogleToolbarNotifier \ 5.1.1309.15642 \ swg. dll
O2 - BHO: Google Dictionary Compression sdch - (C84D72FE-E17D-4195-BB24-76C02E2E7C4E) - C: \ Program Files \ Google \ Google Toolbar \ Component \ fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java (tm) Plug-In 2 SSV Helper - (DBC80044-A445-435b-BC74-9C25C1C588A9) - C: \ Program Files \ Java \ jre6 \ bin \ jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - (E7E6F031-17CE-4C07-BC86-EABFE594F69C) - C: \ Program Files \ Java \ jre6 \ lib \ déployer \ jqs \ ie \ jqs_plugin. dll
O3 - Toolbar: barre d'outils Google - (2318C2B1-4965-11D4-9B18-009027A5CD4F) - C: \ Program Files \ Google \ Google Toolbar \ GoogleToolbar.dll
O4 - HKLM \ .. \ Run: [IgfxTray] C: \ WINDOWS \ system32 \ igfxtray.exe
O4 - HKLM \ .. \ Run: [HotKeysCmds] C: \ WINDOWS \ system32 \ hkcmd.exe
O4 - HKLM \ .. \ Run: [Persistence] C: \ WINDOWS \ system32 \ igfxpers.exe
O4 - HKLM \ .. \ Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM \ .. \ Run: [Alcmtr] alcmtr.exe
O4 - HKLM \ .. \ Run: [egui] "C: \ Program Files \ ESET \ ESET Smart Security \ egui.exe" / hide / waitservice
O4 - HKLM \ .. \ Run: [KernelFaultCheck]% systemroot% \ system32 \ dumprep 0-k
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [iTunesHelper] "C: \ Program Files \ iTunes \ iTunesHelper.exe"
O4 - HKLM \ .. \ Run: [NeroFilterCheck] C: \ Program Files \ Common Files \ Ahead \ Lib \ NeroCheck.exe
O4 - HKLM \ .. \ Run: [DownloadStudio] C: \ Program Files \ Conceiva \ DownloadStudio \ DownloadStudioScheduleMonitor.exe
O4 - HKLM \ .. \ Run: [Adobe Reader Speed Launcher] "C: \ Program Files \ Adobe \ Reader 9.0 \ Reader \ Reader_sl.exe"
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKCU \ .. \ Run: [swg] C: \ Program Files \ Google \ GoogleToolbarNotifier \ GoogleToolbarNotifier.exe
O4 - HKCU \ .. \ Run: [msnmsgr] "C: \ Program Files \ Windows Live \ Messenger \ msnmsgr. exe "/ background
O4 - HKCU \ .. \ Run: [SpybotSD TeaTimer] C: \ Program Files \ Spybot - Search & Destroy \ TeaTimer.exe
O4 - HKCU \ .. \ Run: [DU Meter] C: \ Program Files \ DU Meter \ DUMeter.exe
O4 - HKCU \ .. \ Run: [MSMSGS] "C: \ Program Files \ Messenger \ msmsgs.exe" / background
O4 - HKCU \ .. \ Run: [BgMonitor_ (79662E04-7C6C-4d9f-84C7-88D8A56B10AA)] "C: \ Program Files \ Common Files \ Ahead \ Lib \ NMBgMonitor.exe"
O4 - HKUS \ S-1-5-19 \ .. \ RunOnce: [ShowDeskFix] regsvr32 / s / n / i: u shell32 (User SERVICE LOCAL)
O4 - HKUS \ S-1-5-20 \ .. \ RunOnce: [ShowDeskFix] regsvr32 / s / n / i: u shell32 (User service réseau)
O4 - HKUS \ S-1-5-18 \ .. \ RunOnce: [ShowDeskFix] regsvr32 / s / n / i: u shell32 (User "SYSTEM")
O4 - HKUS \. DEFAULT \ .. \ RunOnce: [ShowDeskFix] regsvr32 / s / n / i: u shell32 (User utilisateur par défaut)
O4 - Startup: Adobe Gamma.lnk = C: \ Program Files \ Fichiers communs \ Adobe \ Calibration \ Adobe Gamma Loader. exe
O4 - Global Startup: WG111v2 Smart Wizard Wireless Setting.lnk =?
O8 - Extra du menu contextuel: E & xporter vers Microsoft Excel -- res://C : \ PROGRA ~ 1 \ MICROS ~ 4 \ OFFICE11 \ EXCEL.EXE/3000
O9 - Extra button: Blog This - (219C3416-8CB2-491a-A3C7-D9FCDDC9D600) - C: \ Program Files \ Windows Live \ Writer \ WriterBrowserExtension. dll
O9 - Extra "Outils" menuitem: Ce Blog & Windows Live Writer - (219C3416-8CB2-491a-A3C7-D9FCDDC9D600) - C: \ Program Files \ Windows Live \ Writer \ WriterBrowserExtension.dll
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ MICROS ~ 4 \ OFFICE11 \ REFIEBAR.DLL
O9 - Extra button: (no name) - (DFB852A3-47F8-48C4-A200-58CAB36FD2A2) - C: \ PROGRA ~ 1 \ Spybot ~ 1 \ SDHelper. dll
O9 - Extra "Outils" menuitem: Spybot - Search & Destroy Configuration - (DFB852A3-47F8-48C4-A200-58CAB36FD2A2) - C: \ PROGRA ~ 1 \ Spybot ~ 1 \ SDHelper.dll
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra "Outils" menuitem: @ xpsp3res.dll, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag. exe
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O18 - Filter: x-sdch - (B1759355-3EEC-4C1E-B0F1-B719FE26E377) - C: \ Program Files \ Google \ Google Toolbar \ Component \ fastsearch_A8904FB862BD9564. dll
O23 - Service: Adobe LM Service - Adobe Systems - C: \ Program Files \ Fichiers communs \ Adobe Systems Shared \ Service \ Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc - C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc - C: \ Program Files \ Bonjour \ mDNSResponder.exe
O23 - Service: DU Meter Service (DUMeterSvc) - Hagel Technologies Ltd - C: \ Program Files \ DU Meter \ DUMeterSvc. exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C: \ Program Files \ ESET \ ESET Smart Security \ EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C: \ Program Files \ ESET \ ESET Smart Security \ ekrn.exe
O23 - Service: Google Software Updater (gusvc) - Google - C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc - C: \ Program Files \ iPod \ bin \ iPodService. exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc - C: \ Program Files \ Java \ jre6 \ bin \ jqs.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C: \ Program Files \ Lavasoft \ Ad-Aware \ AAWService.exe
O23 - Service: Macro Expert - Unknown owner - c: \ program files \ grasssoft \ macro expert \ MacroService.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C: \ Program Files \ Fichiers communs \ Macromedia Shared \ Service \ Macromedia Licensing. exe
O23 - Service: NBService - Nero AG - C: \ Program Files \ Nero \ Nero 7 \ Nero BackItUp \ NBService.exe
O23 - Service: NMIndexingService - Nero AG - C: \ Program Files \ Common Files \ Ahead \ Lib \ NMIndexingService.exe
O23 - Service: Service nProtect GameGuard (npggsvc) - Unknown owner - C: \ WINDOWS \ system32 \ GameMon.des.exe (file missing)
O23 - Service: OpenVPN Service (OpenVPNService) - Unknown owner - C: \ Program Files \ OpenVPN \ bin \ openvpnserv.exe
O23 - Service: Remote Packet Capture Protocol c. 0 (experimental) (rpcapd) - CACE Technologies - C: \ Program Files \ WinPCap \ rpcapd.exe
O23 - Service: wampapache - Apache Software Foundation - c: \ wamp \ bin \ apache \ apache2.2.8 \ bin \ httpd.exe
O23 - Service: wampmysqld - Unknown owner - c: \ wamp \ bin \ mysql \ mysql5.0.51b \ bin \ mysqld-NT.EXE
Running processes:
C: \ WINDOWS \ System32 \ smss.exe
C: \ WINDOWS \ system32 \ winlogon.exe
C: \ WINDOWS \ system32 \ services.exe
C: \ WINDOWS \ system32 \ lsass.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ WINDOWS \ System32 \ svchost. exe
C: \ WINDOWS \ system32 \ spoolsv.exe
C: \ WINDOWS \ Explorer.EXE
C: \ WINDOWS \ system32 \ igfxtray.exe
C: \ WINDOWS \ system32 \ hkcmd.exe
C: \ WINDOWS \ system32 \ igfxpers.exe
C: \ WINDOWS \ RTHDCPL.EXE
C: \ WINDOWS \ system32 \ igfxsrvc.exe
C: \ Program Files \ ESET \ ESET Smart Security \ egui.exe
C: \ Program Files \ iTunes \ iTunesHelper.exe
C: \ Program Files \ Conceiva \ DownloadStudio \ DownloadStudioScheduleMonitor.exe
C: \ WINDOWS \ system32 \ ctfmon. exe
C: \ Program Files \ Google \ GoogleToolbarNotifier \ GoogleToolbarNotifier.exe
C: \ Program Files \ Windows Live \ Messenger \ msnmsgr.exe
C: \ Program Files \ Messenger \ msmsgs.exe
C: \ Program Files \ Common Files \ Ahead \ Lib \ NMBgMonitor.exe
C: \ Program Files \ NETGEAR \ WG111v2 Configuration Utility \ RtlWake.exe
C: \ Program Files \ Common Files \ Ahead \ Lib \ NMIndexStoreSvr.exe
C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService. exe
C: \ Program Files \ Bonjour \ mDNSResponder.exe
C: \ Program Files \ DU Meter \ DUMeterSvc.exe
C: \ Program Files \ ESET \ ESET Smart Security \ ekrn.exe
C: \ Program Files \ Java \ jre6 \ bin \ jqs.exe
c: \ program files \ grasssoft \ macro expert \ MacroService.exe
C: \ Program Files \ Fichiers communs \ Microsoft Shared \ VS7DEBUG \ Mdm.exe
C: \ WINDOWS \ system32 \ svchost.exe
C: \ Program Files \ Common Files \ Ahead \ Lib \ NMIndexingService.exe
C: \ Program Files \ iPod \ bin \ iPodService.exe
C: \ WINDOWS \ system32 \ wscntfy. exe
C: \ Program Files \ Windows Live \ Contacts \ wlcomm.exe
c: \ program files \ grasssoft \ macro expert \ MacroServiceWnd.exe
C: \ WINDOWS \ system32 \ Wuauclt.exe
C: \ Program Files \ Lavasoft \ Ad-Aware \ Ad-Aware.exe
C: \ Program Files \ Lavasoft \ Ad-Aware \ AAWService.exe
C: \ Program Files \ Lavasoft \ Ad-Aware \ AAWTray.exe
D: \ stinger1001546.exe
C: \ Program Files \ Trend Micro \ HijackThis \ HijackThis. exe
R0 - HKCU \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://google.com.au/
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM \ Software \ Microsoft \ Internet Explorer \ Main, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU \ Software \ Microsoft \ Internet Connection Wizard , ShellNext = http://www.bigpond.com/welcome/offers
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyServer = socks =
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyOverride = plimus.com, www.plimus.com, regnow.com, www.regnow.com,
O2 - BHO: AcroIEHelperStub - (18DF081C-E8AD-4283-A596-FA578C2EBDC3) - C: \ Program Files \ Fichiers communs \ Adobe \ Acrobat \ ActiveX \ AcroIEHelperShim. dll
O2 - BHO: Spybot-S & D IE Protection - (53707962-6F74-2D53-2644-206D7942484F) - C: \ PROGRA ~ 1 \ Spybot ~ 1 \ SDHelper.dll
O2 - BHO: Click-to-Call BHO - (5C255C8A-E604-49b4-9D64-90988571CECB) - C: \ Program Files \ Windows Live \ Messenger \ wlchtc.dll
O2 - BHO: Download Studio Click Monitor - (8170D7DC-BDD6-461e-88EB-F047257898C9) - C: \ Program Files \ Conceiva \ DownloadStudio \ DLMonitr. dll
O2 - BHO: Windows Live Sign-in Helper - (9030D464-4C02-4ABF-8ECC-5164760863C6) - C: \ Program Files \ Fichiers communs \ Microsoft Shared \ Windows Live \ WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - (AA58ED58-01DD-4d91-8333-CF10577473F7) - C: \ Program Files \ Google \ Google Toolbar \ GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - (AF69DE43-7D58-4638-B6FA-CE66B5AD205D) - C: \ Program Files \ Google \ GoogleToolbarNotifier \ 5.1.1309.15642 \ swg. dll
O2 - BHO: Google Dictionary Compression sdch - (C84D72FE-E17D-4195-BB24-76C02E2E7C4E) - C: \ Program Files \ Google \ Google Toolbar \ Component \ fastsearch_A8904FB862BD9564.dll
O2 - BHO: Java (tm) Plug-In 2 SSV Helper - (DBC80044-A445-435b-BC74-9C25C1C588A9) - C: \ Program Files \ Java \ jre6 \ bin \ jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - (E7E6F031-17CE-4C07-BC86-EABFE594F69C) - C: \ Program Files \ Java \ jre6 \ lib \ déployer \ jqs \ ie \ jqs_plugin. dll
O3 - Toolbar: barre d'outils Google - (2318C2B1-4965-11D4-9B18-009027A5CD4F) - C: \ Program Files \ Google \ Google Toolbar \ GoogleToolbar.dll
O4 - HKLM \ .. \ Run: [IgfxTray] C: \ WINDOWS \ system32 \ igfxtray.exe
O4 - HKLM \ .. \ Run: [HotKeysCmds] C: \ WINDOWS \ system32 \ hkcmd.exe
O4 - HKLM \ .. \ Run: [Persistence] C: \ WINDOWS \ system32 \ igfxpers.exe
O4 - HKLM \ .. \ Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM \ .. \ Run: [Alcmtr] alcmtr.exe
O4 - HKLM \ .. \ Run: [egui] "C: \ Program Files \ ESET \ ESET Smart Security \ egui.exe" / hide / waitservice
O4 - HKLM \ .. \ Run: [KernelFaultCheck]% systemroot% \ system32 \ dumprep 0-k
O4 - HKLM \ .. \ Run: [QuickTime Task] "C: \ Program Files \ QuickTime \ qttask.exe"-atboottime
O4 - HKLM \ .. \ Run: [iTunesHelper] "C: \ Program Files \ iTunes \ iTunesHelper.exe"
O4 - HKLM \ .. \ Run: [NeroFilterCheck] C: \ Program Files \ Common Files \ Ahead \ Lib \ NeroCheck.exe
O4 - HKLM \ .. \ Run: [DownloadStudio] C: \ Program Files \ Conceiva \ DownloadStudio \ DownloadStudioScheduleMonitor.exe
O4 - HKLM \ .. \ Run: [Adobe Reader Speed Launcher] "C: \ Program Files \ Adobe \ Reader 9.0 \ Reader \ Reader_sl.exe"
O4 - HKCU \ .. \ Run: [ctfmon.exe] C: \ WINDOWS \ system32 \ ctfmon.exe
O4 - HKCU \ .. \ Run: [swg] C: \ Program Files \ Google \ GoogleToolbarNotifier \ GoogleToolbarNotifier.exe
O4 - HKCU \ .. \ Run: [msnmsgr] "C: \ Program Files \ Windows Live \ Messenger \ msnmsgr. exe "/ background
O4 - HKCU \ .. \ Run: [SpybotSD TeaTimer] C: \ Program Files \ Spybot - Search & Destroy \ TeaTimer.exe
O4 - HKCU \ .. \ Run: [DU Meter] C: \ Program Files \ DU Meter \ DUMeter.exe
O4 - HKCU \ .. \ Run: [MSMSGS] "C: \ Program Files \ Messenger \ msmsgs.exe" / background
O4 - HKCU \ .. \ Run: [BgMonitor_ (79662E04-7C6C-4d9f-84C7-88D8A56B10AA)] "C: \ Program Files \ Common Files \ Ahead \ Lib \ NMBgMonitor.exe"
O4 - HKUS \ S-1-5-19 \ .. \ RunOnce: [ShowDeskFix] regsvr32 / s / n / i: u shell32 (User SERVICE LOCAL)
O4 - HKUS \ S-1-5-20 \ .. \ RunOnce: [ShowDeskFix] regsvr32 / s / n / i: u shell32 (User service réseau)
O4 - HKUS \ S-1-5-18 \ .. \ RunOnce: [ShowDeskFix] regsvr32 / s / n / i: u shell32 (User "SYSTEM")
O4 - HKUS \. DEFAULT \ .. \ RunOnce: [ShowDeskFix] regsvr32 / s / n / i: u shell32 (User utilisateur par défaut)
O4 - Startup: Adobe Gamma.lnk = C: \ Program Files \ Fichiers communs \ Adobe \ Calibration \ Adobe Gamma Loader. exe
O4 - Global Startup: WG111v2 Smart Wizard Wireless Setting.lnk =?
O8 - Extra du menu contextuel: E & xporter vers Microsoft Excel -- res://C : \ PROGRA ~ 1 \ MICROS ~ 4 \ OFFICE11 \ EXCEL.EXE/3000
O9 - Extra button: Blog This - (219C3416-8CB2-491a-A3C7-D9FCDDC9D600) - C: \ Program Files \ Windows Live \ Writer \ WriterBrowserExtension. dll
O9 - Extra "Outils" menuitem: Ce Blog & Windows Live Writer - (219C3416-8CB2-491a-A3C7-D9FCDDC9D600) - C: \ Program Files \ Windows Live \ Writer \ WriterBrowserExtension.dll
O9 - Extra button: Research - (92780B25-18CC-41C8-B9BE-3C9C571A8263) - C: \ PROGRA ~ 1 \ MICROS ~ 4 \ OFFICE11 \ REFIEBAR.DLL
O9 - Extra button: (no name) - (DFB852A3-47F8-48C4-A200-58CAB36FD2A2) - C: \ PROGRA ~ 1 \ Spybot ~ 1 \ SDHelper. dll
O9 - Extra "Outils" menuitem: Spybot - Search & Destroy Configuration - (DFB852A3-47F8-48C4-A200-58CAB36FD2A2) - C: \ PROGRA ~ 1 \ Spybot ~ 1 \ SDHelper.dll
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag.exe
O9 - Extra "Outils" menuitem: @ xpsp3res.dll, -20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C: \ WINDOWS \ Network Diagnostic \ xpnetdiag. exe
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O9 - Extra "Outils" menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C: \ Program Files \ Messenger \ msmsgs.exe
O18 - Filter: x-sdch - (B1759355-3EEC-4C1E-B0F1-B719FE26E377) - C: \ Program Files \ Google \ Google Toolbar \ Component \ fastsearch_A8904FB862BD9564. dll
O23 - Service: Adobe LM Service - Adobe Systems - C: \ Program Files \ Fichiers communs \ Adobe Systems Shared \ Service \ Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc - C: \ Program Files \ Common Files \ Apple \ Mobile Device Support \ bin \ AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc - C: \ Program Files \ Bonjour \ mDNSResponder.exe
O23 - Service: DU Meter Service (DUMeterSvc) - Hagel Technologies Ltd - C: \ Program Files \ DU Meter \ DUMeterSvc. exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C: \ Program Files \ ESET \ ESET Smart Security \ EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C: \ Program Files \ ESET \ ESET Smart Security \ ekrn.exe
O23 - Service: Google Software Updater (gusvc) - Google - C: \ Program Files \ Google \ Common \ Google Updater \ GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc - C: \ Program Files \ iPod \ bin \ iPodService. exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc - C: \ Program Files \ Java \ jre6 \ bin \ jqs.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C: \ Program Files \ Lavasoft \ Ad-Aware \ AAWService.exe
O23 - Service: Macro Expert - Unknown owner - c: \ program files \ grasssoft \ macro expert \ MacroService.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C: \ Program Files \ Fichiers communs \ Macromedia Shared \ Service \ Macromedia Licensing. exe
O23 - Service: NBService - Nero AG - C: \ Program Files \ Nero \ Nero 7 \ Nero BackItUp \ NBService.exe
O23 - Service: NMIndexingService - Nero AG - C: \ Program Files \ Common Files \ Ahead \ Lib \ NMIndexingService.exe
O23 - Service: Service nProtect GameGuard (npggsvc) - Unknown owner - C: \ WINDOWS \ system32 \ GameMon.des.exe (file missing)
O23 - Service: OpenVPN Service (OpenVPNService) - Unknown owner - C: \ Program Files \ OpenVPN \ bin \ openvpnserv.exe
O23 - Service: Remote Packet Capture Protocol c. 0 (experimental) (rpcapd) - CACE Technologies - C: \ Program Files \ WinPCap \ rpcapd.exe
O23 - Service: wampapache - Apache Software Foundation - c: \ wamp \ bin \ apache \ apache2.2.8 \ bin \ httpd.exe
O23 - Service: wampmysqld - Unknown owner - c: \ wamp \ bin \ mysql \ mysql5.0.51b \ bin \ mysqld-NT.EXE
- Anonymous
- Bot
- Inscription: 25 Feb 2008
- Messages: ?
- Loc: Ozzuland
- Status: Online
Août 10th, 2009, 12:28 am
- Don2007
- Web Master
- Inscription: Nov 21, 2006
- Messages: 4924
- Loc: NY
- Status: Offline
Août 10th, 2009, 5:01 pm
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyServer = socks =
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyOverride = plimus.com, www.plimus.com, regnow.com, www.regnow.com,
Si vous n'avez pas mis les procurations ^ ^, supprimez-les.
O4 - HKCU \ .. \ Run: [BgMonitor_ (79662E04-7C6C-4d9f-84C7-88D8A56B10AA)] "C: \ Program Files \ Common Files \ Ahead \ Lib \ NMBgMonitor.exe"
O4 - HKUS \ S-1-5-19 \ .. \ RunOnce: [ShowDeskFix] regsvr32 / s / n / i: u shell32 (User SERVICE LOCAL)
O4 - HKUS \ S-1-5-20 \ .. \ RunOnce: [ShowDeskFix] regsvr32 / s / n / i: u shell32 (User service réseau)
O4 - HKUS \ S-1-5-18 \ .. \ RunOnce: [ShowDeskFix] regsvr32 / s / n / i: u shell32 (User "SYSTEM")
O4 - HKUS \. DEFAULT \ .. \ RunOnce: [ShowDeskFix] regsvr32 / s / n / i: u shell32 (User utilisateur par défaut)
Je ne sais pas ce qu'ils sont. (O4)
R1 - HKCU \ Software \ Microsoft \ Windows \ CurrentVersion \ Internet Settings, ProxyOverride = plimus.com, www.plimus.com, regnow.com, www.regnow.com,
Si vous n'avez pas mis les procurations ^ ^, supprimez-les.
O4 - HKCU \ .. \ Run: [BgMonitor_ (79662E04-7C6C-4d9f-84C7-88D8A56B10AA)] "C: \ Program Files \ Common Files \ Ahead \ Lib \ NMBgMonitor.exe"
O4 - HKUS \ S-1-5-19 \ .. \ RunOnce: [ShowDeskFix] regsvr32 / s / n / i: u shell32 (User SERVICE LOCAL)
O4 - HKUS \ S-1-5-20 \ .. \ RunOnce: [ShowDeskFix] regsvr32 / s / n / i: u shell32 (User service réseau)
O4 - HKUS \ S-1-5-18 \ .. \ RunOnce: [ShowDeskFix] regsvr32 / s / n / i: u shell32 (User "SYSTEM")
O4 - HKUS \. DEFAULT \ .. \ RunOnce: [ShowDeskFix] regsvr32 / s / n / i: u shell32 (User utilisateur par défaut)
Je ne sais pas ce qu'ils sont. (O4)
How do you know when a politician is lying? His mouth is moving.
- deki-007
- Born
- Inscription: Aoû 10, 2009
- Messages: 2
- Status: Offline
Août 11th, 2009, 11:36 pm
Umm i ensemble des proxies moi-même, mais les trucs ci-dessous ne vous crois que je devrais le supprimer? aider quelqu'un?
- Don2007
- Web Master
- Inscription: Nov 21, 2006
- Messages: 4924
- Loc: NY
- Status: Offline
Août 12th, 2009, 7:12 am
Je n'ai aucune idée de ce qui est showdeskfix. Sa place pour vous. I wouldnt voulez, moi-même.
Vous pouvez laisser NMBgMonitor.exe Thats ok.
Vous pouvez laisser NMBgMonitor.exe Thats ok.
How do you know when a politician is lying? His mouth is moving.
Page 1 sur 1
Pour répondre à ce sujet, vous devez vous connecter ou vous enregistrer. Il est gratuit.
Afficher de l'information
- Total des messages de ce sujet: 4 messages
- Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 181 invités
- Vous ne pouvez pas poster de nouveaux sujets
- Vous ne pouvez pas répondre aux sujets
- Vous ne pouvez pas éditer vos messages
- Vous ne pouvez pas supprimer vos messages
- Vous ne pouvez pas joindre des fichiers
