Home > General > Tsitra1044.exe

Tsitra1044.exe

Donnez votre avis Utile +0 Signaler noboujeanlouis 6Messages postés mardi 30 octobre 2007Date d'inscription 14 novembre 2007 Dernière intervention 14 nov. 2007 à 06:20 j ai le meme probleme que dois You have a Dangerous infection on this machine. IF this computer has been used for any kind of important data, my best recommendation is to Disconnect from Internet, Re-Format the entire drive and re-install your Operating system and Applications. Need suggestions for gaming desktop Last Post 3 Days Ago My son is looking to buy a new gaming system.

If you have any further problems please feel free to contact G2Go. 0 #11 kahdah Posted 10 November 2007 - 02:22 PM kahdah GeekU Teacher Retired Staff 15,822 posts Since this These files may have the following Vendor, Product, Version Information in the file header ; ; 0, 0, 0, 0 The following Vendor, Product, Version Information has also been reported: ; By default it will install to C:\Program Files\Hijack This. Sign In Use Facebook Use Twitter Use Windows Live Register now!

Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\YSearchProtection] "C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe" R1 MSFWHLPR;MSFWHLPR;C:\WINDOWS\system32\DRIVERS\msfwhlpr.sys R2 MSFWDrv;MSFWDrv;C:\WINDOWS\system32\DRIVERS\msfwdrv.sys R2 msfwsvc;OneCare Firewall;"C:\Program Files\Microsoft Windows OneCare Live\Firewall\msfwsvc.exe" R2 OneCareMP;OneCare AntiSpyware and AntiVirus;"C:\Program Files\Microsoft Windows OneCare Live\Antivirus\MsMpEng.exe" R3 MpFilter;Microsoft tsitra11.exe could be a harmful process. English Français Español Deutsch Italiano 日本語 Nederlands العربية 简体中文 繁體中文 Português Home Download Features Register Articles Support Speed Up Your PC Download Now Dll Report Driver Fix Threat Report Spyware Report thank youLogfile of Trend Micro HijackThis v2.0.2Scan saved at 2:37:55 PM, on 10/28/2007Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Boot mode: NormalRunning processes:F:\WINDOWS\System32\smss.exeF:\WINDOWS\system32\winlogon.exeF:\WINDOWS\system32\services.exeF:\WINDOWS\system32\lsass.exeF:\WINDOWS\system32\svchost.exeF:\WINDOWS\System32\svchost.exeF:\WINDOWS\system32\spoolsv.exeF:\WINDOWS\Explorer.EXEF:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exeF:\Program Files\Grisoft\AVG

Cheeseball81, Oct 15, 2007 #4 This thread has been Locked and is not open to further replies. That may cause it to stallIn case you have used Combofix before, please delete the version you have and redownload it again, because Combofix is being updated everyday.In case your Antivirus A useful tool here is ComboFix which nicely logs date and time of key entries and files as well doing a bit of repait/discovery work. No, create an account now.

Search For Processes Process Name What is tsitra11.exe?TROJAN.AGENT.GEN Vendor: Product: Vendor Website: Last Seen by PC Pitstop: No Data PC Pitstop has analyzed this process and determined that there is Companion 2007-08-28 11:34 --------- d-----w C:\Program Files\Symantec 2007-08-28 11:34 --------- d-----w C:\Program Files\Common Files\Symantec Shared 2007-08-28 11:34 --------- d-----w C:\Documents and Settings\All Users\Application Data\Symantec 2007-08-28 11:06 --------- d-----w C:\Program Files\MSXML 4.0 Attempting to delete F:\windows\system32\iiffghh.dllF:\windows\system32\iiffghh.dll Could not be deleted. Start this Free Scan to check for threats to your PC Security.

ComboFix 07-10-11.5 - Angel 2007-10-11 10:02:04.1 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.659 [GMT -4:00] Running from: C:\Documents and Settings\Angel\Local Settings\Temporary Internet Files\Content.IE5\ED3KDORU\ComboFix[1].exe * Created a new restore point . ((((((((((((((((((((((((((((((((((((((( S'inscrire maintenant Vous n'êtes pas encore membre ? Here's how it works. Please be thoughtful, detailed and courteous, and be sure to adhere to our posting rules.

Click here to join today! Error Type: MyBB Error (40) Error Message: Your board has not yet been installed and configured. Show Ignored Content As Seen On Welcome to Tech Support Guy! As for ComboFix, go to the Virus section of this forum and one of Crunchie's posts will tell you where to download stuff you'll need.

Register now to gain access to all of our features, it's FREE and only takes one minute. Click the Statistics/Logs tab. KASPERSKY ONLINE SCANNER REPORTMonday, October 29, 2007 8:34:02 PMOperating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)Kaspersky Online Scanner version: 5.0.98.0Kaspersky Anti-Virus database last update: 30/10/2007Kaspersky Anti-Virus database records: Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet S3 hamachi_oem;PlayLinc Adapter;C:\WINDOWS\system32\DRIVERS\gan_adapter.sys S3 Radialpoint Security Services;Radialpoint Security Services;C:\WINDOWS\system32\dllhost.exe /Processid:{80098F68-1220-4F43-80A8-15C7395B8874} [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{06e7fbac-2133-11dc-990a-0014a5f4695f}] AutoRun\command - H:\LaunchU3.exe [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{111E3A1D-D3B4-DFFB-0507-010707000200}] C:\WINDOWS\system32\lssas.exe .

It will scan and then ask you to save the log. Click on the Do a system scan and save a log file button. Contents of the 'Scheduled Tasks' folder "2007-11-07 15:26:37 C:\WINDOWS\Tasks\MP Scheduled Scan.job" - C:\Program Files\Windows Defender\MpCmdRun.exe . ************************************************************************** catchme 0.3.1250 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2007-11-07 10:24:25 If you find any of these registry values on your PC, your computer is very likely to be infected with the Matcash-trojan,adware,downloader.

Exterminate It! Please check this Matcash Removal Guide and use this full registry values collection for Manual Matcash Removal. Create Account How it Works Javascript Disabled Detected You currently have javascript disabled.

All rights reserved.

DO NOT have Hijack This fix anything yet. Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn2\yt.dll O3 - Toolbar: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - (no file) O3 - Toolbar: (no name) - {11A69AE4-FBED-4832-A2BF-45AF82825583} - (no file) O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Donnez votre avis Utile +0 Signaler Sugar 20 oct. 2007 à 22:58 Bonjour, J'ai exactement le meme probleme que toi et j'aurais aimé savoir si tu as trouvé comment s'en débarasser Sign In Use Facebook Use Twitter Need an account?

Use File, Exit to terminate Spybot Reboot your machine for the changes to take effect. It's 100% free. scanning hidden files ... Please re-enable javascript to access full functionality. [Closed]I Need Help Please!

The Decision Whether to ReFormat or Not should be based on: The use of the computer - this is the primary factor in the decision whether to re-format and re-install, or parce que j'ai reelement besoin d'aide, si je ne peut pas le trouver ici, dites le moi ... Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn2\yt.dll O3 - Toolbar: Yahoo! Welcome to the WTT forums.

If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members. All PC Pitstop products are cloud based enabling greater tracking of the world's running processes including malware, good software and performance hogs.