Internet lent hijackthis - help !
eknam
-
toto666 Messages postés 331 Statut Membre -
toto666 Messages postés 331 Statut Membre -
Bonjour,
mon pc est tres lent quand j utilise internet mais je sais pas trop pourquoi
j avais un antivirus pas tres a jour (que g donc remis a jour)
et puis g fait un hijackthis, parait que ca permet de verifier s il y a d prog suspects
par contre j y connais rien, y a qqu un qui pourrait m aider please?
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 오후 7:27:27, on 2009-03-15
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\S24EvMon.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\WINDOWS\system32\ZCfgSvc.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\00THotkey.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\LTSMMSG.exe
C:\Program Files\Samsung\Samsung Optical Wheel Mouse\gnetmous.exe
C:\Program Files\Fasoo DRM\fpm.exe
C:\Program Files\Fasoo DRM\fph.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\WINDOWS\System32\RegSrvc.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\services.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\1XConfig.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\Temporary Internet Files\Content.IE5\W89S4UYR\HiJackThis[1].exe
C:\WINDOWS\system32\notepad.exe
R3 - URLSearchHook: SearchHelper - {C04BB70C-5F50-473B-8A57-34F452CB0D96} - C:\Program Files\Common Files\system\SearchHelper.dll (file missing)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
O2 - BHO: np Class - {0A073DD6-195E-4217-97B6-BB6AECEC9AA5} - C:\WINDOWS\system32\ljk.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {3CB00A8E-FC2D-4E15-BDB2-23E2CEF01506} - C:\WINDOWS\system32\keyinit\keyinit.dll (file missing)
O2 - BHO: noep Class - {660AA989-286A-46ff-9783-B991D5E68EFC} - C:\program Files\OpenSearchPro\ljk.dll
O2 - BHO: (no name) - {689EF894-B19B-4447-A760-75F8AD71941F} - C:\WINDOWS\system32\fromenty.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: ViewSource Class - {7FADEF94-D7AC-4B87-A7A5-BAB79C755C85} - C:\Program Files\daumlink\daumlink.dll (file missing)
O2 - BHO: (no name) - {900F4412-C5F4-4B5C-BF5D-F73D5D458B9B} - C:\PROGRA~1\POINTP~1\pplus.dll (file missing)
O2 - BHO: (no name) - {BC7DB684-3495-4201-85C5-7857F192B234} - C:\PROGRA~1\doumitlb\dtlb.dll (file missing)
O2 - BHO: SearchHelper - {C04BB70C-5F50-473B-8A57-34F452CB0D96} - C:\Program Files\Common Files\system\SearchHelper.dll (file missing)
O2 - BHO: SideBar Class - {E00FFFBF-EF6D-4eff-B9F7-98736BFBBFB3} - C:\Program Files\netsurfing\netsurfing.dll
O2 - BHO: (no name) - ~{E7CFDCBD-BE61-4CB2-8EDF-E3C6B1A690F3} - (no file)
O3 - Toolbar: open Search - {58167296-D57F-4741-892E-0B8E4C43E65C} - C:\program Files\OpenSearchPro\psj.dll
O3 - Toolbar: 서치도우미 - {F7363708-3CA4-4974-AFDA-9725A628FEFC} - C:\Program Files\Common Files\system\SearchInfoBar.dll
O3 - Toolbar: Doumitoolbar - {D083EBAE-FA15-4941-856C-ED9B7565FDE4} - C:\PROGRA~1\doumitlb\dtlb.dll (file missing)
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [00THotkey] C:\WINDOWS\System32\00THotkey.exe
O4 - HKLM\..\Run: [000StTHK] 000StTHK.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [LTSMMSG] LTSMMSG.exe
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\System32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [imekrmig7.0] "C:\Program Files\Common Files\Microsoft Shared\IME\IMKR7\IMEKRMIG.EXE"
O4 - HKLM\..\Run: [PRONoMgr.exe] c:\Program Files\Intel\PROSetWireless\NCS\PROSet\PRONoMgr.exe
O4 - HKLM\..\Run: [Gnetmous] C:\Program Files\Samsung\Samsung Optical Wheel Mouse\gnetmous.exe
O4 - HKLM\..\Run: [FPM Exe] "C:\Program Files\Fasoo DRM\fpm.exe"
O4 - HKLM\..\Run: [FPH Exe] "C:\Program Files\Fasoo DRM\fph.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [OsUpdate] $$$C:\program Files\OpenSearchPro\Update.exe
O4 - HKLM\..\Run: [WMSRC] $$$C:\Program Files\Windows Media Player\siratic.exe
O4 - HKLM\..\Run: [SF] C:\Program Files\SearchFree\SFSetup.exe
O4 - HKLM\..\Run: [DiskCheck] $$$C:\WINDOWS\twainxp.exe
O4 - HKLM\..\Run: [spooler] $$$C:\WINDOWS\system32\spool\spooler.exe
O4 - HKLM\..\Run: [vbmvc2] $$$C:\WINDOWS\vbmvc2\vbmvc2.exe
O4 - HKLM\..\Run: [ati2f104] $$$c:\Program Files\Common Files\Services\ati2f104.exe
O4 - HKLM\..\Run: [iedwa104] $$$c:\Program Files\Internet Explorer\iedwa104.exe
O4 - HKLM\..\Run: [plusup] C:\Program Files\pointplus\plusup.exe
O4 - HKLM\..\Run: [wpu] C:\WINDOWS\system32\upstu.exe
O4 - HKLM\..\Run: [WebSearchBar.exe] $$$C:\Program Files\WebSearchBar\WebSearchBar.exe
O4 - HKLM\..\Run: [`bfkp] C:\WINDOWS\system32\adiou.exe
O4 - HKLM\..\Run: [Daumlink] C:\Program Files\daumlink\updatecheck.exe
O4 - HKLM\..\Run: [ncservice] $$$C:\Program Files\CashOn\bin\ncservice.exe
O4 - HKLM\..\Run: [Cashonupdate] $$$C:\Program Files\CashOn\bin\CashOnUpdate08151852.exe
O4 - HKLM\..\Run: [qt_cinr] C:\WINDOWS\system32\rvbgnty.exe
O4 - HKLM\..\Run: [iTHINK.exe] $$$C:\Program Files\iTHINK\iTHINK.exe
O4 - HKLM\..\Run: [바이킬러] vik.exe 1
O4 - HKLM\..\Run: [whoau] C:\WINDOWS\system32\whoau.exe
O4 - HKLM\..\Run: [compros] C:\WINDOWS\compros.exe
O4 - HKLM\..\Run: [ads] C:\Program Files\ADSniper\ADSniper.exe hide
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [snproc] $$$C:\Program Files\snproc\snproc.exe
O4 - HKCU\..\Run: [NeedWeb] $$$C:\Program Files\NeedWeb\NeedWeb.exe
O4 - HKCU\..\Run: [dalgonaTVPlay] C:\Program Files\dalgonaTVPlay\dalgonaTVPlay.exe /WS
O4 - HKCU\..\Run: [OsUpdate] $$$C:\program Files\OpenSearchPro\Update.exe
O4 - HKCU\..\Run: [ninza] C:\WINDOWS\system32\ninza.exe /WS
O4 - HKCU\..\Run: [netsurfing] $$$C:\Program Files\netsurfing\netsurfing.exe /WS
O4 - HKCU\..\Run: [fittonia] C:\WINDOWS\system32\fittonia.exe
O4 - HKCU\..\Run: [keyinit] C:\WINDOWS\system32\keyinit\keyinit.exe s
O4 - HKUS\S-1-5-19\..\Run: [ctfmon.exe] ctfmon.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [ctfmon.exe] ctfmon.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [ctfmon.exe] ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [ctfmon.exe] ctfmon.exe (User 'Default user')
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: 리서치 - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: openSearch검색 - {955582FE-8225-4bf8-B813-A349C96AD4B7} - (no file)
O9 - Extra 'Tools' menuitem: opSearch - {955582FE-8225-4bf8-B813-A349C96AD4B7} - (no file)
O9 - Extra button: (no name) - {E00FFFBF-EF6D-4eff-B9F7-98736BFBBFB3} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O16 - DPF: {044123B5-35DF-4C4E-BAED-26B8ED964342} (HLiveRobotWeb Control) - http://fx.hauri.net/...
O16 - DPF: {04E7BADF-F3B9-420D-B82D-8D8CADEFE4F9} (CyImage2Ctl Class) - http://cyimg8.cyworld.com/ImageUpload/CyImageUpload_10212.cab
O16 - DPF: {057E566C-74EE-495E-81D9-7A17AA835070} (MMServer Control) - http://www.mnet.com/Ver2/App/totalApp/maxmemo/MaxMemo.cab
O16 - DPF: {1A0DC5DA-3FC4-417D-8499-15A3D467DB3D} (SKWRDlg Control) - http://www.linese.com/model/chengo1/SKWRDlg.cab
O16 - DPF: {1ABB898B-8A1A-40CB-8DE7-DAF5E560E814} (DSubActX Control) - http://cab1.diskster.com/sub/DSubActX.cab
O16 - DPF: {1D4FC3AF-3253-43A4-B346-5D1198D1EB8E} (CINIWebPlus Class) - http://img.shinhan.com/rib/common/INISWebPlus/INISWebPlus10.cab
O16 - DPF: {1DE9BB01-B121-401D-8877-BCD5ED5B7EE5} (Tpwin Control) - https://www.crezio.com/test/leeyunho/AlwaysOn/AlwaysOn.CAB
O16 - DPF: {2D394D05-A066-4678-BA38-E85882B09B2E} (Controller Class) - http://www.cosmotan.com/cabinet/myspeed.cab
O16 - DPF: {32D94A9F-9A18-4E12-863D-8AABA8CBDA78} (NateOnMMSAtx3 Class) - http://sms.nate.com/error/error.html
O16 - DPF: {386EDCD0-72B4-42F4-9942-049B8A92FC48} (FgAddOn Control) - http://down.fileguri.com/FgAddOn.cab
O16 - DPF: {39FC0CF9-86F3-4502-B773-D16706EDEC83} (SCSK Control) - http://img.shinhan.com/rib/common/keyStroke/SoftCamp/40854/scsk4.cab
O16 - DPF: {416C52A8-DCC8-4791-90E0-6C96A08C4675} - http://drama.xpeed.com/download/XPEEDLauncher.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/pr02/resources/MSNPUpld.cab
O16 - DPF: {66413DC2-F891-40BC-822D-B7EEC8ADC281} (ProWorksGrid Control) - http://img.shinhan.com/rib/common/ProWorksGrid_78.cab
O16 - DPF: {7E9FDB80-5316-11D4-B02C-00C04F0CD404} (XecureWeb 4.0 Client Control) - http://download.softforum.co.kr/Published/XecureWeb/v5.4.8.5/xw_install.cab
O16 - DPF: {882A7CC6-0163-4BC1-8BC1-505E36C9FFA2} (MaxHelper Control) - http://www.mnet.com/Ver2/App/totalApp/maxhelper/maxhelper.cab
O16 - DPF: {8FA8D5F7-7CBA-46D4-9568-68D70C5280E8} (NoPhishingX Control) - http://www.nophishing.co.kr/softrun/SH02/SRNPSH.cab
O16 - DPF: {913BF18F-672D-4676-9855-F9A192A88886} (IMBCContents Control) - http://touch.imbc.com/ocx/Online.cab
O16 - DPF: {92E82FBB-DA00-41E0-ABFE-95482E21A4F6} (NMTransX Module) - http://download.netmarble.com/NMChatX/NMTransX.cab
O16 - DPF: {934CEFDC-E880-446F-880F-6560F613D8AA} (FCliVer Class) - http://www.conpia.com/0511/tv/Fasoo/Client/fclient(v1.2.28.0).cab
O16 - DPF: {938527D1-CDB7-4147-998A-B20FCA5CC976} (Cdmcco Class) - http://cafeimg.hanmail.net/cab9_1/dmcc2.cab?Version=1,0,0,10
O16 - DPF: {99C709C7-4F58-46C1-855B-90213C760395} (v3d Class) - https://secure.kcp.co.kr/webpay/v3d/file/kcp_ansimclick.cab
O16 - DPF: {9B75502C-BBED-4BBD-8FE2-822E5E0AD32C} (MagicLockOCX Control) - http://www.diodeo.com/DioDeoPlayer.cab
O16 - DPF: {9CDD57AC-CA86-464C-B920-3228A388CC78} (NaverFileControl Control) - http://file.naver.com/activex/NaverFile.cab
O16 - DPF: {9DEFEDFC-8193-4BE6-AA60-B6375AB7C8BE} (Launcher Class) - http://patch.mnet.com/NaverMusic/ActiveX/naverx.cab
O16 - DPF: {A671DC03-71D0-4CF0-895C-7D4A248FC1F1} (skcbgmset Class) - http://cyimg7.cyworld.nate.com/cymusic/package/skcbgmset.cab
O16 - DPF: {AF11AA64-87A5-4146-AF3B-A7BD0F278485} (SBStarter Control) - http://download.soribada.com/down/Soribada/Setup/20060830/SBStart.CAB
O16 - DPF: {B9B38E70-EEF6-4E3A-AE84-DDE59A053B7C} (Daum ActiveX manager Class) - http://cafeimg.hanmail.net/cto/1_2_3_5/xman.cab?ver=1,2,3,5
O16 - DPF: {C1143E84-B2B1-473B-9F20-E62DD754FCAF} (VineTransfer Control) - https://vbv.lgcard.com/infovine/VineTransfer.cab
O16 - DPF: {C2C16510-10F4-46FE-A82C-4846435EBDEB} (p3muzset Class) - http://muzic.sbs.co.kr/player/aod/dll/p3sbsset.cab
O16 - DPF: {C394A9A2-C51D-4C26-BB2C-6DEB30A890F4} (ActiveDiodeoPlayer Control) - http://www.diodeo.com/ActiveDiodeoPlayer.cab
O16 - DPF: {CF362BDB-4EA2-11D5-AB47-000102913414} (SetGlb Control) - http://touch.imbc.com/ocx/SetGlb.cab
O16 - DPF: {CFCB7308-782F-11D4-BE27-000102598CE4} (NPX Control) - http://update.nprotect.net/nprotect/module/npx.cab
O16 - DPF: {D0126883-0FAB-468A-8A78-E8FE4A9A4F38} (PCInfo Class) - http://drama.xpeed.com/download/VodDownloader.cab
O16 - DPF: {D26A941D-7E89-4098-B583-43291FC14218} (Pull0PlayerX Control) - http://image.pullbbang.com/images/Pull0Control.ocx
O16 - DPF: {D6D424E5-DE1C-4E91-8B59-00F5D860E3BF} (KillRecord Control) - http://dist.cdnetworks.co.kr/cdndist/killrecord/KillRecord.cab
O16 - DPF: {D8F001C6-43B1-4CFD-9DAF-C8BEAE0E2B6D} (Touch Control) - http://touch.imbc.com/ocx/test/Online.cab
O16 - DPF: {E1CDC08F-F464-4682-AE6A-7689451387C0} (CAFE multiupload control) - http://cafeimg.hanmail.net/activex/dmcm.cab?Version=1,0,0,22
O16 - DPF: {E78928A6-3D2A-4BF7-A100-F3FBAA351B49} (KvpIspCtlD Control) - https://www.vpay.co.kr/kvpfiles/KVPISPCTLD.cab
O16 - DPF: {E8580BEA-BC7D-40BC-AA2E-E2A44E12CED8} (MCInfoOCX Control) - http://img.megastudy.net/InfoOcx.Cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O21 - SSODL: kdyjr - {A3924143-C80B-4217-98F9-2F93913B40E0} - C:\WINDOWS\system32\kdyjr.dll (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Error Event System (erevents) - Unknown owner - C:\WINDOWS\system32\drivers\syslgerr.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Localy Control lagacy (LClyagacy) - Unknown owner - C:\WINDOWS\npkscvc.exe (file missing)
O23 - Service: Local Manager lagacy (LMlagacy) - Unknown owner - C:\WINDOWS\ctfmon.exe (file missing)
O23 - Service: npkcsvc - INCA Internet Co., Ltd. - C:\WINDOWS\System32\npkcsvc.exe
O23 - Service: RegSrvc - Intel Corporation - C:\WINDOWS\System32\RegSrvc.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\WINDOWS\System32\S24EvMon.exe
O23 - Service: Session Simulator (sessionsim) - Unknown owner - C:\Program Files\NetMeeting\sssnsml.exe (file missing)
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: System Spool Service (sspoolsrv) - Unknown owner - C:\WINDOWS\system32\wbem\spoolsv.exe (file missing)
O23 - Service: System Service (systemservice) - Unknown owner - C:\WINDOWS\services.exe
O23 - Service: USBest Service Zero (UTSCSI) - Unknown owner - C:\WINDOWS\system32\UTSCSI.EXE
O23 - Service: Workstation Service (wkststp) - Unknown owner - C:\WINDOWS\system32\tlnter.exe (file missing)
O23 - Service: Windows Management Network (WMN) (WNManage) - Unknown owner - C:\WINDOWS\conime.exe (file missing)
mon pc est tres lent quand j utilise internet mais je sais pas trop pourquoi
j avais un antivirus pas tres a jour (que g donc remis a jour)
et puis g fait un hijackthis, parait que ca permet de verifier s il y a d prog suspects
par contre j y connais rien, y a qqu un qui pourrait m aider please?
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 오후 7:27:27, on 2009-03-15
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\S24EvMon.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\WINDOWS\system32\ZCfgSvc.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\00THotkey.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\LTSMMSG.exe
C:\Program Files\Samsung\Samsung Optical Wheel Mouse\gnetmous.exe
C:\Program Files\Fasoo DRM\fpm.exe
C:\Program Files\Fasoo DRM\fph.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\WINDOWS\System32\RegSrvc.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\services.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\1XConfig.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\Temporary Internet Files\Content.IE5\W89S4UYR\HiJackThis[1].exe
C:\WINDOWS\system32\notepad.exe
R3 - URLSearchHook: SearchHelper - {C04BB70C-5F50-473B-8A57-34F452CB0D96} - C:\Program Files\Common Files\system\SearchHelper.dll (file missing)
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
O2 - BHO: np Class - {0A073DD6-195E-4217-97B6-BB6AECEC9AA5} - C:\WINDOWS\system32\ljk.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {3CB00A8E-FC2D-4E15-BDB2-23E2CEF01506} - C:\WINDOWS\system32\keyinit\keyinit.dll (file missing)
O2 - BHO: noep Class - {660AA989-286A-46ff-9783-B991D5E68EFC} - C:\program Files\OpenSearchPro\ljk.dll
O2 - BHO: (no name) - {689EF894-B19B-4447-A760-75F8AD71941F} - C:\WINDOWS\system32\fromenty.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: ViewSource Class - {7FADEF94-D7AC-4B87-A7A5-BAB79C755C85} - C:\Program Files\daumlink\daumlink.dll (file missing)
O2 - BHO: (no name) - {900F4412-C5F4-4B5C-BF5D-F73D5D458B9B} - C:\PROGRA~1\POINTP~1\pplus.dll (file missing)
O2 - BHO: (no name) - {BC7DB684-3495-4201-85C5-7857F192B234} - C:\PROGRA~1\doumitlb\dtlb.dll (file missing)
O2 - BHO: SearchHelper - {C04BB70C-5F50-473B-8A57-34F452CB0D96} - C:\Program Files\Common Files\system\SearchHelper.dll (file missing)
O2 - BHO: SideBar Class - {E00FFFBF-EF6D-4eff-B9F7-98736BFBBFB3} - C:\Program Files\netsurfing\netsurfing.dll
O2 - BHO: (no name) - ~{E7CFDCBD-BE61-4CB2-8EDF-E3C6B1A690F3} - (no file)
O3 - Toolbar: open Search - {58167296-D57F-4741-892E-0B8E4C43E65C} - C:\program Files\OpenSearchPro\psj.dll
O3 - Toolbar: 서치도우미 - {F7363708-3CA4-4974-AFDA-9725A628FEFC} - C:\Program Files\Common Files\system\SearchInfoBar.dll
O3 - Toolbar: Doumitoolbar - {D083EBAE-FA15-4941-856C-ED9B7565FDE4} - C:\PROGRA~1\doumitlb\dtlb.dll (file missing)
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [00THotkey] C:\WINDOWS\System32\00THotkey.exe
O4 - HKLM\..\Run: [000StTHK] 000StTHK.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [LTSMMSG] LTSMMSG.exe
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\System32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [imekrmig7.0] "C:\Program Files\Common Files\Microsoft Shared\IME\IMKR7\IMEKRMIG.EXE"
O4 - HKLM\..\Run: [PRONoMgr.exe] c:\Program Files\Intel\PROSetWireless\NCS\PROSet\PRONoMgr.exe
O4 - HKLM\..\Run: [Gnetmous] C:\Program Files\Samsung\Samsung Optical Wheel Mouse\gnetmous.exe
O4 - HKLM\..\Run: [FPM Exe] "C:\Program Files\Fasoo DRM\fpm.exe"
O4 - HKLM\..\Run: [FPH Exe] "C:\Program Files\Fasoo DRM\fph.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [OsUpdate] $$$C:\program Files\OpenSearchPro\Update.exe
O4 - HKLM\..\Run: [WMSRC] $$$C:\Program Files\Windows Media Player\siratic.exe
O4 - HKLM\..\Run: [SF] C:\Program Files\SearchFree\SFSetup.exe
O4 - HKLM\..\Run: [DiskCheck] $$$C:\WINDOWS\twainxp.exe
O4 - HKLM\..\Run: [spooler] $$$C:\WINDOWS\system32\spool\spooler.exe
O4 - HKLM\..\Run: [vbmvc2] $$$C:\WINDOWS\vbmvc2\vbmvc2.exe
O4 - HKLM\..\Run: [ati2f104] $$$c:\Program Files\Common Files\Services\ati2f104.exe
O4 - HKLM\..\Run: [iedwa104] $$$c:\Program Files\Internet Explorer\iedwa104.exe
O4 - HKLM\..\Run: [plusup] C:\Program Files\pointplus\plusup.exe
O4 - HKLM\..\Run: [wpu] C:\WINDOWS\system32\upstu.exe
O4 - HKLM\..\Run: [WebSearchBar.exe] $$$C:\Program Files\WebSearchBar\WebSearchBar.exe
O4 - HKLM\..\Run: [`bfkp] C:\WINDOWS\system32\adiou.exe
O4 - HKLM\..\Run: [Daumlink] C:\Program Files\daumlink\updatecheck.exe
O4 - HKLM\..\Run: [ncservice] $$$C:\Program Files\CashOn\bin\ncservice.exe
O4 - HKLM\..\Run: [Cashonupdate] $$$C:\Program Files\CashOn\bin\CashOnUpdate08151852.exe
O4 - HKLM\..\Run: [qt_cinr] C:\WINDOWS\system32\rvbgnty.exe
O4 - HKLM\..\Run: [iTHINK.exe] $$$C:\Program Files\iTHINK\iTHINK.exe
O4 - HKLM\..\Run: [바이킬러] vik.exe 1
O4 - HKLM\..\Run: [whoau] C:\WINDOWS\system32\whoau.exe
O4 - HKLM\..\Run: [compros] C:\WINDOWS\compros.exe
O4 - HKLM\..\Run: [ads] C:\Program Files\ADSniper\ADSniper.exe hide
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [snproc] $$$C:\Program Files\snproc\snproc.exe
O4 - HKCU\..\Run: [NeedWeb] $$$C:\Program Files\NeedWeb\NeedWeb.exe
O4 - HKCU\..\Run: [dalgonaTVPlay] C:\Program Files\dalgonaTVPlay\dalgonaTVPlay.exe /WS
O4 - HKCU\..\Run: [OsUpdate] $$$C:\program Files\OpenSearchPro\Update.exe
O4 - HKCU\..\Run: [ninza] C:\WINDOWS\system32\ninza.exe /WS
O4 - HKCU\..\Run: [netsurfing] $$$C:\Program Files\netsurfing\netsurfing.exe /WS
O4 - HKCU\..\Run: [fittonia] C:\WINDOWS\system32\fittonia.exe
O4 - HKCU\..\Run: [keyinit] C:\WINDOWS\system32\keyinit\keyinit.exe s
O4 - HKUS\S-1-5-19\..\Run: [ctfmon.exe] ctfmon.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [ctfmon.exe] ctfmon.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [ctfmon.exe] ctfmon.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [ctfmon.exe] ctfmon.exe (User 'Default user')
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: 리서치 - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: openSearch검색 - {955582FE-8225-4bf8-B813-A349C96AD4B7} - (no file)
O9 - Extra 'Tools' menuitem: opSearch - {955582FE-8225-4bf8-B813-A349C96AD4B7} - (no file)
O9 - Extra button: (no name) - {E00FFFBF-EF6D-4eff-B9F7-98736BFBBFB3} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O16 - DPF: {044123B5-35DF-4C4E-BAED-26B8ED964342} (HLiveRobotWeb Control) - http://fx.hauri.net/...
O16 - DPF: {04E7BADF-F3B9-420D-B82D-8D8CADEFE4F9} (CyImage2Ctl Class) - http://cyimg8.cyworld.com/ImageUpload/CyImageUpload_10212.cab
O16 - DPF: {057E566C-74EE-495E-81D9-7A17AA835070} (MMServer Control) - http://www.mnet.com/Ver2/App/totalApp/maxmemo/MaxMemo.cab
O16 - DPF: {1A0DC5DA-3FC4-417D-8499-15A3D467DB3D} (SKWRDlg Control) - http://www.linese.com/model/chengo1/SKWRDlg.cab
O16 - DPF: {1ABB898B-8A1A-40CB-8DE7-DAF5E560E814} (DSubActX Control) - http://cab1.diskster.com/sub/DSubActX.cab
O16 - DPF: {1D4FC3AF-3253-43A4-B346-5D1198D1EB8E} (CINIWebPlus Class) - http://img.shinhan.com/rib/common/INISWebPlus/INISWebPlus10.cab
O16 - DPF: {1DE9BB01-B121-401D-8877-BCD5ED5B7EE5} (Tpwin Control) - https://www.crezio.com/test/leeyunho/AlwaysOn/AlwaysOn.CAB
O16 - DPF: {2D394D05-A066-4678-BA38-E85882B09B2E} (Controller Class) - http://www.cosmotan.com/cabinet/myspeed.cab
O16 - DPF: {32D94A9F-9A18-4E12-863D-8AABA8CBDA78} (NateOnMMSAtx3 Class) - http://sms.nate.com/error/error.html
O16 - DPF: {386EDCD0-72B4-42F4-9942-049B8A92FC48} (FgAddOn Control) - http://down.fileguri.com/FgAddOn.cab
O16 - DPF: {39FC0CF9-86F3-4502-B773-D16706EDEC83} (SCSK Control) - http://img.shinhan.com/rib/common/keyStroke/SoftCamp/40854/scsk4.cab
O16 - DPF: {416C52A8-DCC8-4791-90E0-6C96A08C4675} - http://drama.xpeed.com/download/XPEEDLauncher.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/pr02/resources/MSNPUpld.cab
O16 - DPF: {66413DC2-F891-40BC-822D-B7EEC8ADC281} (ProWorksGrid Control) - http://img.shinhan.com/rib/common/ProWorksGrid_78.cab
O16 - DPF: {7E9FDB80-5316-11D4-B02C-00C04F0CD404} (XecureWeb 4.0 Client Control) - http://download.softforum.co.kr/Published/XecureWeb/v5.4.8.5/xw_install.cab
O16 - DPF: {882A7CC6-0163-4BC1-8BC1-505E36C9FFA2} (MaxHelper Control) - http://www.mnet.com/Ver2/App/totalApp/maxhelper/maxhelper.cab
O16 - DPF: {8FA8D5F7-7CBA-46D4-9568-68D70C5280E8} (NoPhishingX Control) - http://www.nophishing.co.kr/softrun/SH02/SRNPSH.cab
O16 - DPF: {913BF18F-672D-4676-9855-F9A192A88886} (IMBCContents Control) - http://touch.imbc.com/ocx/Online.cab
O16 - DPF: {92E82FBB-DA00-41E0-ABFE-95482E21A4F6} (NMTransX Module) - http://download.netmarble.com/NMChatX/NMTransX.cab
O16 - DPF: {934CEFDC-E880-446F-880F-6560F613D8AA} (FCliVer Class) - http://www.conpia.com/0511/tv/Fasoo/Client/fclient(v1.2.28.0).cab
O16 - DPF: {938527D1-CDB7-4147-998A-B20FCA5CC976} (Cdmcco Class) - http://cafeimg.hanmail.net/cab9_1/dmcc2.cab?Version=1,0,0,10
O16 - DPF: {99C709C7-4F58-46C1-855B-90213C760395} (v3d Class) - https://secure.kcp.co.kr/webpay/v3d/file/kcp_ansimclick.cab
O16 - DPF: {9B75502C-BBED-4BBD-8FE2-822E5E0AD32C} (MagicLockOCX Control) - http://www.diodeo.com/DioDeoPlayer.cab
O16 - DPF: {9CDD57AC-CA86-464C-B920-3228A388CC78} (NaverFileControl Control) - http://file.naver.com/activex/NaverFile.cab
O16 - DPF: {9DEFEDFC-8193-4BE6-AA60-B6375AB7C8BE} (Launcher Class) - http://patch.mnet.com/NaverMusic/ActiveX/naverx.cab
O16 - DPF: {A671DC03-71D0-4CF0-895C-7D4A248FC1F1} (skcbgmset Class) - http://cyimg7.cyworld.nate.com/cymusic/package/skcbgmset.cab
O16 - DPF: {AF11AA64-87A5-4146-AF3B-A7BD0F278485} (SBStarter Control) - http://download.soribada.com/down/Soribada/Setup/20060830/SBStart.CAB
O16 - DPF: {B9B38E70-EEF6-4E3A-AE84-DDE59A053B7C} (Daum ActiveX manager Class) - http://cafeimg.hanmail.net/cto/1_2_3_5/xman.cab?ver=1,2,3,5
O16 - DPF: {C1143E84-B2B1-473B-9F20-E62DD754FCAF} (VineTransfer Control) - https://vbv.lgcard.com/infovine/VineTransfer.cab
O16 - DPF: {C2C16510-10F4-46FE-A82C-4846435EBDEB} (p3muzset Class) - http://muzic.sbs.co.kr/player/aod/dll/p3sbsset.cab
O16 - DPF: {C394A9A2-C51D-4C26-BB2C-6DEB30A890F4} (ActiveDiodeoPlayer Control) - http://www.diodeo.com/ActiveDiodeoPlayer.cab
O16 - DPF: {CF362BDB-4EA2-11D5-AB47-000102913414} (SetGlb Control) - http://touch.imbc.com/ocx/SetGlb.cab
O16 - DPF: {CFCB7308-782F-11D4-BE27-000102598CE4} (NPX Control) - http://update.nprotect.net/nprotect/module/npx.cab
O16 - DPF: {D0126883-0FAB-468A-8A78-E8FE4A9A4F38} (PCInfo Class) - http://drama.xpeed.com/download/VodDownloader.cab
O16 - DPF: {D26A941D-7E89-4098-B583-43291FC14218} (Pull0PlayerX Control) - http://image.pullbbang.com/images/Pull0Control.ocx
O16 - DPF: {D6D424E5-DE1C-4E91-8B59-00F5D860E3BF} (KillRecord Control) - http://dist.cdnetworks.co.kr/cdndist/killrecord/KillRecord.cab
O16 - DPF: {D8F001C6-43B1-4CFD-9DAF-C8BEAE0E2B6D} (Touch Control) - http://touch.imbc.com/ocx/test/Online.cab
O16 - DPF: {E1CDC08F-F464-4682-AE6A-7689451387C0} (CAFE multiupload control) - http://cafeimg.hanmail.net/activex/dmcm.cab?Version=1,0,0,22
O16 - DPF: {E78928A6-3D2A-4BF7-A100-F3FBAA351B49} (KvpIspCtlD Control) - https://www.vpay.co.kr/kvpfiles/KVPISPCTLD.cab
O16 - DPF: {E8580BEA-BC7D-40BC-AA2E-E2A44E12CED8} (MCInfoOCX Control) - http://img.megastudy.net/InfoOcx.Cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O21 - SSODL: kdyjr - {A3924143-C80B-4217-98F9-2F93913B40E0} - C:\WINDOWS\system32\kdyjr.dll (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Error Event System (erevents) - Unknown owner - C:\WINDOWS\system32\drivers\syslgerr.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Localy Control lagacy (LClyagacy) - Unknown owner - C:\WINDOWS\npkscvc.exe (file missing)
O23 - Service: Local Manager lagacy (LMlagacy) - Unknown owner - C:\WINDOWS\ctfmon.exe (file missing)
O23 - Service: npkcsvc - INCA Internet Co., Ltd. - C:\WINDOWS\System32\npkcsvc.exe
O23 - Service: RegSrvc - Intel Corporation - C:\WINDOWS\System32\RegSrvc.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\WINDOWS\System32\S24EvMon.exe
O23 - Service: Session Simulator (sessionsim) - Unknown owner - C:\Program Files\NetMeeting\sssnsml.exe (file missing)
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: System Spool Service (sspoolsrv) - Unknown owner - C:\WINDOWS\system32\wbem\spoolsv.exe (file missing)
O23 - Service: System Service (systemservice) - Unknown owner - C:\WINDOWS\services.exe
O23 - Service: USBest Service Zero (UTSCSI) - Unknown owner - C:\WINDOWS\system32\UTSCSI.EXE
O23 - Service: Workstation Service (wkststp) - Unknown owner - C:\WINDOWS\system32\tlnter.exe (file missing)
O23 - Service: Windows Management Network (WMN) (WNManage) - Unknown owner - C:\WINDOWS\conime.exe (file missing)
A voir également:
- Internet lent hijackthis - help !
- Pc lent - Guide
- Hijackthis - Télécharger - Antivirus & Antimalwares
- Mon mac est lent comment le nettoyer - Guide
- Gps sans internet - Guide
- Internet explorer - Guide
1 réponse
Salut eknam,
On trouve de tous dans ton rapports il y a pas mal de boulot....
I)Télécharger sur ton bureau Malwarebyte's Anti-Malware :
telecharge malware's bytes a cette adresse:
http://www.malwarebytes.org/mbam/program/mbam-setup.exe
1)Double-clic « mbam-setup »,l'installation se lance (installer sans rien changer).
2)Lance le programme,va dans l'onlet « mise à jour » puis clique « recherche de mise à jour ».
3)Va dans l'onglet « recherche » puis cocher « Exécuter un exament complet » >>clique « rechercher » puis lancer l'examen.
4)A la fin du scan ,si il y a des infections clique « afficher résultat ».
5)fermer toutes les autres applications.
6)Vérifier si tout est coché et clic « Supprimer la sélection ».
7)Un rapport s'ouvre copier-coller dans ta prochaine réponse
SearchHelper.dll ---> infection toolbar (ien a d'autre)
I)Télécharger Toolbar S&D :
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2
1)Double clique sur l’icone ToolbarSD.exe, le menu s’ouvre tape « f » puis entrée.(un message d’avertissement arrivera clique sur ok)
2)Choisit l’option 1 pour la recherche (tape 1)
3)Laisse chercher le logiciel….
4)A la fin de la recherche le bloc notes s’ouvrira, fait moi un copier-coller de ce rapport dans ta prochaine réponse.
(note :le rapport se trouve dans C:\TB.txt)
(Attention :Pour l’instant n’effectue pas l’option 2 avant que je te le dise)
On trouve de tous dans ton rapports il y a pas mal de boulot....
I)Télécharger sur ton bureau Malwarebyte's Anti-Malware :
telecharge malware's bytes a cette adresse:
http://www.malwarebytes.org/mbam/program/mbam-setup.exe
1)Double-clic « mbam-setup »,l'installation se lance (installer sans rien changer).
2)Lance le programme,va dans l'onlet « mise à jour » puis clique « recherche de mise à jour ».
3)Va dans l'onglet « recherche » puis cocher « Exécuter un exament complet » >>clique « rechercher » puis lancer l'examen.
4)A la fin du scan ,si il y a des infections clique « afficher résultat ».
5)fermer toutes les autres applications.
6)Vérifier si tout est coché et clic « Supprimer la sélection ».
7)Un rapport s'ouvre copier-coller dans ta prochaine réponse
SearchHelper.dll ---> infection toolbar (ien a d'autre)
I)Télécharger Toolbar S&D :
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2
1)Double clique sur l’icone ToolbarSD.exe, le menu s’ouvre tape « f » puis entrée.(un message d’avertissement arrivera clique sur ok)
2)Choisit l’option 1 pour la recherche (tape 1)
3)Laisse chercher le logiciel….
4)A la fin de la recherche le bloc notes s’ouvrira, fait moi un copier-coller de ce rapport dans ta prochaine réponse.
(note :le rapport se trouve dans C:\TB.txt)
(Attention :Pour l’instant n’effectue pas l’option 2 avant que je te le dise)
