Aller au contenu

King_Alexius

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    39

  • Inscription

  • Dernière visite

 Type de contenu 

Tout ce qui a été posté par King_Alexius

  1. King_Alexius
    Ok, bah j'attends que tu finisses alors !!!
  2. King_Alexius
    C:\WINDOWS\System32\asfiles.txt -->10/08/2006 22:32:52 C:\WINDOWS\System32\Uninstall.ico -->10/08/2006 22:27:28 C:\WINDOWS\System32\pavas.ico -->10/08/2006 22:27:28 C:\WINDOWS\System32\Help.ico -->10/08/2006 22:27:28 C:\WINDOWS\System32\perfh00C.dat -->10/08/2006 10:58:45 C:\WINDOWS\System32\perfh009.dat -->10/08/2006 10:58:45 C:\WINDOWS\System32\perfc00C.dat -->10/08/2006 10:58:45 C:\WINDOWS\System32\perfc009.dat -->10/08/2006 10:58:45 C:\WINDOWS\System32\PerfStringBackup.INI -->10/08/2006 10:58:44 C:\WINDOWS\System32\wpa.dbl -->10/08/2006 10:54:48 C:\WINDOWS\System32\nvapps.xml -->10/08/2006 10:54:06 C:\WINDOWS\System32\jupdate-1.5.0_06-b05.log -->04/08/2006 16:28:48 C:\WINDOWS\System32\MRT.exe -->03/08/2006 03:22:50 C:\WINDOWS\System32\BASSMOD.dll -->02/08/2006 01:28:27 C:\WINDOWS\System32\FNTCACHE.DAT -->02/08/2006 01:13:44 C:\WINDOWS\System32\rmoc3260.dll -->30/07/2006 12:22:29 C:\WINDOWS\System32\pndx5032.dll -->30/07/2006 12:22:10 C:\WINDOWS\System32\pndx5016.dll -->30/07/2006 12:22:10 C:\WINDOWS\System32\pncrt.dll -->30/07/2006 12:22:08 C:\WINDOWS\System32\inetcomm.dll -->27/07/2006 15:26:19 C:\WINDOWS\System32\hlink.dll -->21/07/2006 10:27:28 C:\WINDOWS\System32\LuResult.txt -->20/07/2006 13:05:43 C:\WINDOWS\System32\SNYSPLST.OEM -->20/07/2006 12:31:15 C:\WINDOWS\System32\SNYINST.OEM -->20/07/2006 12:31:15 C:\WINDOWS\System32\Snyres.oem -->20/07/2006 12:31:11 C:\WINDOWS\win.ini -->10/08/2006 22:31:39 C:\WINDOWS\setupapi.log -->10/08/2006 22:29:31 C:\WINDOWS\bootstat.dat -->10/08/2006 20:29:09 C:\WINDOWS\WindowsUpdate.log -->10/08/2006 10:54:20 C:\WINDOWS\0.log -->10/08/2006 10:54:04 C:\WINDOWS\SchedLgU.Txt -->10/08/2006 03:06:22 C:\WINDOWS\QTFont.qfn -->10/08/2006 00:01:26 C:\WINDOWS\QTFont.for -->08/08/2006 14:58:08 C:\WINDOWS\iun6002.exe -->07/08/2006 13:10:58 C:\WINDOWS\mozver.dat -->04/08/2006 16:31:04 C:\WINDOWS\_MSRSTRT.EXE -->01/08/2006 18:53:54 C:\WINDOWS\ARCHPR.INI -->01/08/2006 18:52:26 C:\WINDOWS\ARPR.INI -->01/08/2006 17:43:43 C:\WINDOWS\PRISME.INI -->31/07/2006 16:58:54 C:\WINDOWS\mozregistry.dat -->30/07/2006 12:32:51 Le volume dans le lecteur C s'appelle VAIO Le numéro de série du volume est 54A5-8EF0 Répertoire de C:\WINDOWS\system32 05/08/2004 14:00 6 144 csrss.exe 1 fichier(s) 6 144 octets 0 Rép(s) 9 384 235 008 octets libres Le volume dans le lecteur C s'appelle VAIO Le numéro de série du volume est 54A5-8EF0 Répertoire de C:\Program Files 11/08/2006 00:38 <REP> . 11/08/2006 00:38 <REP> .. 08/08/2006 12:20 <REP> a-squared Free 20/07/2006 13:00 <REP> Adobe 16/12/2004 17:18 <REP> Apoint 01/08/2006 18:57 <REP> APRP 02/08/2006 00:37 <REP> Audacity 1.3 Beta 20/07/2006 17:23 <REP> Azureus 09/08/2006 20:33 <REP> BitTornado 25/07/2006 12:31 <REP> Canon 09/08/2006 02:00 <REP> CCleaner 10/08/2006 00:08 <REP> Common Files 16/12/2004 16:21 <REP> ComPlus Applications 16/12/2004 16:34 <REP> CONEXANT 24/07/2006 02:20 <REP> CyberLink 21/07/2006 19:28 <REP> DAEMON Tools 20/07/2006 17:30 <REP> DivX 02/08/2006 00:15 <REP> djDecks VirtualDJ Control Record Plug-In 01/08/2006 10:59 <REP> ElcomSoft 07/08/2006 23:14 <REP> Emilsoft Software 04/08/2006 16:39 <REP> eMule 11/08/2006 00:38 <REP> Fichiers communs 07/08/2006 13:11 <REP> FireTune 16/12/2004 21:46 <REP> FlashPlayer 10/08/2006 22:33 <REP> Free Download Manager 10/08/2006 22:33 <REP> Google 10/08/2006 00:18 <REP> GrabIt 10/08/2006 01:05 <REP> HijackThis 16/12/2004 16:46 <REP> Intel 27/07/2006 16:46 <REP> InterActual 10/08/2006 22:33 <REP> Internet Explorer 16/12/2004 21:41 <REP> InterVideo 20/07/2006 17:24 <REP> iPod 20/07/2006 17:24 <REP> iTunes 04/08/2006 16:28 <REP> Java 20/07/2006 17:04 <REP> Kaspersky Lab 08/08/2006 03:11 <REP> Lavasoft 20/07/2006 17:18 <REP> Messenger 10/08/2006 22:33 <REP> Messenger Plus! Live 16/12/2004 16:24 <REP> microsoft frontpage 28/07/2006 14:06 <REP> Microsoft Games 20/07/2006 12:52 <REP> Microsoft Office 20/07/2006 12:03 <REP> Microsoft Visual Studio 20/07/2006 12:52 <REP> Microsoft Works 20/07/2006 12:59 <REP> MoodLogic 20/07/2006 11:39 <REP> Moodlogic HTML 16/12/2004 16:22 <REP> Movie Maker 07/08/2006 23:51 <REP> MozBackup 10/08/2006 22:33 <REP> Mozilla Firefox 20/07/2006 12:03 <REP> MSBuild 20/07/2006 11:42 <REP> MSECache 16/12/2004 16:20 <REP> MSN 16/12/2004 16:20 <REP> MSN Gaming Zone 10/08/2006 22:33 <REP> MSN Messenger 16/12/2004 16:22 <REP> NetMeeting 20/07/2006 12:50 <REP> Outlook Express 10/08/2006 22:33 <REP> palmOne 02/08/2006 12:36 <REP> PowerPoint to Flash 05/08/2006 03:52 <REP> QuickPar 20/07/2006 17:27 <REP> QuickTime 20/07/2006 09:49 <REP> Raccourcis de programmes 30/07/2006 12:21 <REP> Real 16/12/2004 16:40 <REP> Realtek 16/12/2004 16:22 <REP> Services en ligne 08/08/2006 03:15 <REP> Siber Systems 20/07/2006 11:35 <REP> Sonic 20/07/2006 12:56 <REP> Sony 10/08/2006 22:33 <REP> Spybot - Search & Destroy 10/08/2006 20:19 <REP> UseNeXT 16/12/2004 21:47 <REP> Utimaco 21/07/2006 22:30 <REP> ViaMichelin 02/08/2006 16:59 <REP> VirtualDJ 10/08/2006 22:33 <REP> Windows Desktop Search 29/07/2006 23:47 <REP> Windows Live Safety Center 20/07/2006 17:23 <REP> Windows Media Player 16/12/2004 16:20 <REP> Windows NT 22/07/2006 11:41 <REP> WinHTTrack 05/08/2006 03:50 <REP> WinRAR 16/12/2004 16:24 <REP> xerox 16/12/2004 21:47 <REP> Yahoo HTML 10/08/2006 00:07 <REP> Yahoo! 16/12/2004 21:47 <REP> YahooMFU 0 fichier(s) 0 octets 82 Rép(s) 9 384 230 912 octets libres Le volume dans le lecteur C s'appelle VAIO Le numéro de série du volume est 54A5-8EF0 Répertoire de C:\Program Files\fichiers communs 11/08/2006 00:38 <REP> . 11/08/2006 00:38 <REP> .. 21/07/2006 21:35 <REP> Adobe 21/07/2006 21:39 <REP> Adobe Systems Shared 20/07/2006 12:03 <REP> DESIGNER 16/12/2004 21:41 <REP> InstallShield 16/12/2004 21:37 <REP> Java 20/07/2006 12:52 <REP> Microsoft Shared 16/12/2004 16:22 <REP> MSSoap 16/12/2004 17:16 <REP> ODBC 30/07/2006 12:22 <REP> Real 16/12/2004 16:22 <REP> Services 22/07/2006 17:41 <REP> Sony Shared 16/12/2004 17:16 <REP> SpeechEngines 20/07/2006 12:50 <REP> System 30/07/2006 12:22 <REP> xing shared 0 fichier(s) 0 octets 16 Rép(s) 9 384 230 912 octets libres Le volume dans le lecteur C s'appelle VAIO Le numéro de série du volume est 54A5-8EF0 Répertoire de C:\Program Files\common files 10/08/2006 00:08 <REP> . 10/08/2006 00:08 <REP> .. 10/08/2006 00:08 <REP> Scanner 0 fichier(s) 0 octets 3 Rép(s) 9 384 230 912 octets libres c:\Documents and Settings\Alexandre LEMERLE\Application Data\Microsoft\Installer\{F1E906E7-1120-428D-A124-4938C306427E}\ARPPRODUCTICON.exe c:\Documents and Settings\Alexandre LEMERLE\Application Data\Microsoft\Installer\{F1E906E7-1120-428D-A124-4938C306427E}\PalmDesktopShortcut.exe c:\Documents and Settings\Alexandre LEMERLE\Application Data\Mozilla\Firefox\Profiles\oftruny7.default\FlashGot.exe c:\Documents and Settings\Alexandre LEMERLE\Application Data\Mozilla\Firefox\Profiles\oftruny7.default\extensions\{3cd27e92-1a30-11da-94c6-00e08161165f}\httrack\httrack.exe c:\Documents and Settings\Alexandre LEMERLE\Application Data\Mozilla\Firefox\Profiles\oftruny7.default\extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3}\7za.exe c:\Documents and Settings\Alexandre LEMERLE\Bureau\Virtual DJ.exe c:\Documents and Settings\Alexandre LEMERLE\Bureau\chercher\chercher\LFiles.exe c:\Documents and Settings\Alexandre LEMERLE\Bureau\MemoKit 3.0\mkit30.exe c:\Documents and Settings\Alexandre LEMERLE\Bureau\MemoKit 3.0\rg_memokit30.exe c:\Documents and Settings\Alexandre LEMERLE\Local Settings\Application Data\Microsoft\Messenger\kingalexiusthefirstofnormandy@hotmail.fr\Sharing Folders\alexis.petit@hotmail.fr\3d.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Licences pour mes logiciels.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Mon fichier-clef.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\CIAwarning\ntoskrnl.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\CIAwarning\ntoskrnlSP1.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\FBIwarning\ntoskrnl.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\FBIwarning\ntoskrnlSP1.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\Logiciels\changerxpsetup.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\Logiciels\free-hex-editor.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\Logiciels\LogonStudio_public.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\Logiciels\booteditornew\BootEditor.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\Logiciels\booteditornew\ntoskrnl.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\Logiciels\Image Windows\changerxpsetup.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\Logiciels\logochange\logochange.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\Logiciels\logonuibootrandomizer\LogonUIBootRandomizer.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\Logiciels\logonuibootrandomizer\RandomScreens.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\logonuibootrandomizer\LogonUIBootRandomizer.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\logonuibootrandomizer\RandomScreens.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\MacOSX\ntoskrnl.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\MacOSX\ntoskrnlSP1.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\MatrixXP\ntoskrnl.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\MatrixXP\ntoskrnlSP1.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\NSA\ntoskrnl.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\PresidentialSealWarning\ntoskrnl.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\PresidentialSealWarning\ntoskrnlSP1.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\PS2\ntoskrnl.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\PS2\ntoskrnlSP1.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\Sony\ntoskrnl.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\Sony\ntoskrnlSP1.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\StarWarsII\ntoskrnl.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\StarWarsII\ntoskrnlSP1.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\StealthFighter\ntoskrnl.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\StealthFighter\ntoskrnlSP1.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\[4171]Overclocked_Ed\ntoskrnl.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Ecran d'acceuil Windows\[4171]Overclocked_Ed\ntoskrnlSP.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\MapSonic-Originel\instMS.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\MapSonic-Originel\MapSonic.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\MapSonic-Originel\MapStore.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\MapSonic-Originel\POIManager.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\MapSonic-Originel\UninstallMS.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\MapSonic-Originel\Conduit\MapSonicConduitInstaller.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\MapSonic-Originel\Conduit\MapSonicConduitUnInstaller.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Mes fichiers reçus\auto.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Mes fichiers reçus\clic.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Mes fichiers reçus\Mes fichiers reçus\headache.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Mes fichiers reçus\Mes fichiers reçus\shoot.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Projet Professionnel\Import Pilote d'avion\CadransAF\CadransAF.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Projet Professionnel\Import Pilote d'avion\CadransAF\SETUP1.EXE c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Projet Professionnel\Import Pilote d'avion\CadransAF\CadransAF\setup.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Projet Professionnel\Import Pilote d'avion\CadransAF\CadransAF\Support\CadransAF.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Projet Professionnel\Import Pilote d'avion\CadransAF\CadransAF\Support\SETUP.EXE c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Projet Professionnel\Import Pilote d'avion\CadransAF\CadransAF\Support\SETUP1.EXE c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Projet Professionnel\Import Pilote d'avion\CadransAF\CadransAF\Support\ST6UNST.EXE c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Préférences Firefox\2 - Mardi\Extensions\{3cd27e92-1a30-11da-94c6-00e08161165f}\httrack\httrack.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Préférences Firefox\2 - Mardi\Extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3}\FEBEbg.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Préférences Firefox\2 - Mardi\Extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3}\FEBEunzip.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Préférences Firefox\2 - Mardi\Extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3}\FEBEzip.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Préférences Firefox\3 - Mercredi\Extensions\{3cd27e92-1a30-11da-94c6-00e08161165f}\httrack\httrack.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Préférences Firefox\3 - Mercredi\Extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3}\7za.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Préférences Firefox\3 - Mercredi\Extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3}\FEBEbg.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Préférences Firefox\3 - Mercredi\Extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3}\FEBEunzip.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Préférences Firefox\3 - Mercredi\Extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3}\FEBEzip.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Préférences Firefox\4 - Jeudi\Extensions\{3cd27e92-1a30-11da-94c6-00e08161165f}\httrack\httrack.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Préférences Firefox\4 - Jeudi\Extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3}\7za.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Préférences Firefox\5 - Vendredi\Extensions\{3cd27e92-1a30-11da-94c6-00e08161165f}\httrack\httrack.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Préférences Firefox\5 - Vendredi\Extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3}\7za.exe c:\Documents and Settings\Alexandre LEMERLE\Mes documents\Script MSN\MsgPlusLive-400.exe >>> Log de chercher ! Pour le désinstalleur de Norton, je l'ai téléchargé, car à la base, sur ce PC, j'avais Norton Internet Security 2004 ou 2005, vendu avec l'ordi (90 jours offerts) ! Donc je l'ai téléchargé pour bien virer cette merde en boîte !!!
  3. King_Alexius
    Ouais, c'est tout lu : la commande cmd dans éxécuter marche !!! Donc quand je clique sur le truc de chercher, l'invite de commande s'ouvre, le programme tourne, il y a écrit c:\temp et c:\temp2, mais je vois pas ces fichiers, et le bloc s'ouvre pas !!!
  4. King_Alexius
    --- Search result list --- DoubleClick: Cookie traceur (Firefox: default) (Cookie, nothing done) Common Dialogs: History (6 files) (Clé du registre, nothing done) HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\OpenSaveMRU Log: Activity: SchedLgU.Txt (Sauver le fichier, nothing done) C:\WINDOWS\SchedLgU.Txt Log: Install: setupapi.log (Sauver le fichier, nothing done) C:\WINDOWS\setupapi.log Log: Shutdown: System32\wbem\logs\wbemess.log (Sauver le fichier, nothing done) C:\WINDOWS\System32\wbem\logs\wbemess.log Log: Shutdown: System32\wbem\logs\wbemprox.log (Sauver le fichier, nothing done) C:\WINDOWS\System32\wbem\logs\wbemprox.log Log: Shutdown: System32\wbem\logs\wmiprov.log (Sauver le fichier, nothing done) C:\WINDOWS\System32\wbem\logs\wmiprov.log HTTrack Website Copier: Last used folder (Modification du registre, nothing done) HKEY_USERS\S-1-5-21-1833067411-3518719803-1634589900-1004\Software\WinHTTrack Website Copier\WinHTTrack Website Copier\DefaultValues\BasePath!= HTTrack Website Copier: Recent file list (1 fichiers) (Clé du registre, nothing done) HKEY_USERS\S-1-5-21-1833067411-3518719803-1634589900-1004\Software\WinHTTrack Website Copier\WinHTTrack Website Copier\Recent File List Internet Explorer: Typed URL list (2 fichiers) (Clé du registre, nothing done) HKEY_USERS\S-1-5-21-1833067411-3518719803-1634589900-1004\Software\Microsoft\Internet Explorer\TypedURLs Internet Explorer: User agent (Modification du registre, nothing done) HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent!=Mozilla/4.0 (compatible; MSIE; Win32) Internet Explorer: User agent (Modification du registre, nothing done) HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent!=Mozilla/4.0 (compatible; MSIE; Win32) Internet Explorer: User agent (Modification du registre, nothing done) HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent!=Mozilla/4.0 (compatible; MSIE; Win32) Internet Explorer: User agent (Modification du registre, nothing done) HKEY_USERS\S-1-5-21-1833067411-3518719803-1634589900-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent!=Mozilla/4.0 (compatible; MSIE; Win32) Internet Explorer: User agent (Modification du registre, nothing done) HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent!=Mozilla/4.0 (compatible; MSIE; Win32) MS Media Player: Anonymous ID (Modification du registre, nothing done) HKEY_USERS\S-1-5-21-1833067411-3518719803-1634589900-1004\Software\Microsoft\MediaPlayer\Preferences\SendUserGUID!=B=0 MS Direct3D: Most recent application (Modification du registre, nothing done) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Direct3D\MostRecentApplication\Name!= MS DirectDraw: Most recent application (Modification du registre, nothing done) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DirectDraw\MostRecentApplication\Name!= MS Search Assistant: Typed search terms history (Clé du registre, nothing done) HKEY_USERS\S-1-5-21-1833067411-3518719803-1634589900-1004\Software\Microsoft\Search Assistant\ACMru RealOne Player 2 (aka RealPlayer 6.0): Last login time (Modification du registre, nothing done) HKEY_USERS\S-1-5-21-1833067411-3518719803-1634589900-1004\Software\RealNetworks\RealPlayer\6.0\Preferences\LastLoginTime\!= Windows: Drivers installation paths (Modification du registre, nothing done) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\Installation Sources!= Windows.OpenWith: Open with list - .AVI extension (3 fichiers) (Clé du registre, nothing done) HKEY_USERS\S-1-5-21-1833067411-3518719803-1634589900-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.AVI\OpenWithList Windows.OpenWith: Open with list - .C extension (2 fichiers) (Clé du registre, nothing done) HKEY_USERS\S-1-5-21-1833067411-3518719803-1634589900-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.C\OpenWithList Windows.OpenWith: Open with list - .CFG extension (2 fichiers) (Clé du registre, nothing done) HKEY_USERS\S-1-5-21-1833067411-3518719803-1634589900-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.CFG\OpenWithList Windows.OpenWith: Open with list - .CUE extension (2 fichiers) (Clé du registre, nothing done) HKEY_USERS\S-1-5-21-1833067411-3518719803-1634589900-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.CUE\OpenWithList Windows Explorer: Recent wallpaper list (74 fichiers) (Clé du registre, nothing done) HKEY_USERS\S-1-5-21-1833067411-3518719803-1634589900-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\Wallpaper\MRU Windows Explorer: Run history (2 fichiers) (Clé du registre, nothing done) HKEY_USERS\S-1-5-21-1833067411-3518719803-1634589900-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\RunMRU Windows Explorer: Stream history (6 fichiers) (Clé du registre, nothing done) HKEY_USERS\S-1-5-21-1833067411-3518719803-1634589900-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\StreamMRU Windows Explorer: User Assistant history IE (13 fichiers) (Clé du registre, nothing done) HKEY_USERS\S-1-5-21-1833067411-3518719803-1634589900-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\{5E6AB780-7743-11CF-A12B-00AA004AE837}\Count Windows Explorer: User Assistant history files (383 fichiers) (Clé du registre, nothing done) HKEY_USERS\S-1-5-21-1833067411-3518719803-1634589900-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\{75048700-EF1F-11D0-9888-006097DEACF9}\Count Windows Explorer: Last visited history (4 fichiers) (Clé du registre, nothing done) HKEY_USERS\S-1-5-21-1833067411-3518719803-1634589900-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\LastVisitedMRU Windows Explorer: Recent file global history (Clé du registre, nothing done) HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs Windows Explorer: Recent file global history (Clé du registre, nothing done) HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs Windows Explorer: Recent file global history (Clé du registre, nothing done) HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs Windows Explorer: Recent file global history (Clé du registre, nothing done) HKEY_USERS\S-1-5-21-1833067411-3518719803-1634589900-1004\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs Windows Explorer: Recent file global history (Clé du registre, nothing done) HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs Windows Media SDK: Computer name (Modification du registre, nothing done) HKEY_USERS\.DEFAULT\Software\Microsoft\Windows Media\WMSDK\General\ComputerName!=ComputerName Windows Media SDK: Computer name (Modification du registre, nothing done) HKEY_USERS\S-1-5-21-1833067411-3518719803-1634589900-1004\Software\Microsoft\Windows Media\WMSDK\General\ComputerName!=ComputerName Windows Media SDK: Computer name (Modification du registre, nothing done) HKEY_USERS\S-1-5-18\Software\Microsoft\Windows Media\WMSDK\General\ComputerName!=ComputerName Windows Media SDK: Unique ID (Modification du registre, nothing done) HKEY_USERS\.DEFAULT\Software\Microsoft\Windows Media\WMSDK\General\UniqueID!={00000000-0000-0000-0000-000000000000} Windows Media SDK: Unique ID (Modification du registre, nothing done) HKEY_USERS\S-1-5-21-1833067411-3518719803-1634589900-1004\Software\Microsoft\Windows Media\WMSDK\General\UniqueID!={00000000-0000-0000-0000-000000000000} Windows Media SDK: Unique ID (Modification du registre, nothing done) HKEY_USERS\S-1-5-18\Software\Microsoft\Windows Media\WMSDK\General\UniqueID!={00000000-0000-0000-0000-000000000000} Windows Media SDK: Volume serial number (Valeur du registre, nothing done) HKEY_USERS\.DEFAULT\Software\Microsoft\Windows Media\WMSDK\General\VolumeSerialNumber Windows Media SDK: Volume serial number (Valeur du registre, nothing done) HKEY_USERS\S-1-5-21-1833067411-3518719803-1634589900-1004\Software\Microsoft\Windows Media\WMSDK\General\VolumeSerialNumber Windows Media SDK: Volume serial number (Valeur du registre, nothing done) HKEY_USERS\S-1-5-18\Software\Microsoft\Windows Media\WMSDK\General\VolumeSerialNumber Cookie: Cookie (23) (Cookie, nothing done) Cookie: Cookie (48) (Cookie, nothing done) --- Spybot - Search & Destroy version: 1.4 (build: 20050523) --- 2005-05-31 blindman.exe (1.0.0.1) 2005-05-31 SpybotSD.exe (1.4.0.3) 2005-05-31 TeaTimer.exe (1.4.0.2) 2006-08-08 unins000.exe (51.41.0.0) 2005-05-31 Update.exe (1.4.0.0) 2006-02-06 advcheck.dll (1.0.2.0) 2005-05-31 aports.dll (2.1.0.0) 2005-05-31 borlndmm.dll (7.0.4.453) 2005-05-31 delphimm.dll (7.0.4.453) 2005-05-31 SDHelper.dll (1.4.0.0) 2006-02-20 Tools.dll (2.0.0.2) 2005-05-31 UnzDll.dll (1.73.1.1) 2005-05-31 ZipDll.dll (1.73.2.0) 2006-08-04 Includes\Cookies.sbi (*) 2006-08-04 Includes\Dialer.sbi (*) 2006-08-04 Includes\Hijackers.sbi (*) 2006-08-04 Includes\Keyloggers.sbi (*) 2004-11-29 Includes\LSP.sbi (*) 2006-08-04 Includes\Malware.sbi (*) 2006-08-04 Includes\PUPS.sbi (*) 2006-08-04 Includes\Revision.sbi (*) 2006-08-04 Includes\Security.sbi (*) 2006-08-04 Includes\Spybots.sbi (*) 2005-02-17 Includes\Tracks.uti (*) 2006-08-04 Includes\Trojans.sbi (*) --- System information --- Windows XP (Build: 2600) Service Pack 2 / .NETFramework / 1.1: Microsoft .NET Framework 1.1 Hotfix (KB886903) / .NETFramework / 1.1: Microsoft .NET Framework 1.1 Service Pack 1 (KB867460) / Microsoft .NET Framework 2.0: This Security Update is for Microsoft .NET Framework 2.0. \n If you later install a more recent service pack, this Security Update will be uninstalled automatically. \n For more information, visit http://support.microsoft.com/kb/917283 / Step By Step Interactive Training / SP2: Mise à jour de sécurité pour Step by Step Interactive Training (KB898458) / Windows Media Player 10: Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734) / Windows XP / SP3: Correctif Windows XP - KB307154 / Windows XP / SP3: Correctif Windows XP - KB834707 / Windows XP / SP3: Correctif Windows XP - KB873339 / Windows XP / SP3: Correctif Windows XP - KB884018 / Windows XP / SP3: Correctif Windows XP - KB884575 / Windows XP / SP3: Correctif Windows XP - KB885835 / Windows XP / SP3: Correctif Windows XP - KB885836 / Windows XP / SP3: Correctif Windows XP - KB886185 / Windows XP / SP3: Correctif Windows XP - KB887472 / Windows XP / SP3: Correctif Windows XP - KB888113 / Windows XP / SP3: Correctif Windows XP - KB888302 / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB890046) / Windows XP / SP3: Correctif Windows XP - KB890859 / Windows XP / SP3: Correctif Windows XP - KB891781 / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB893756) / Windows XP / SP3: Windows Installer 3.1 (KB893803) / Windows XP / SP3: Mise à jour pour Windows XP (KB894391) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896358) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896423) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896424) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB896428) / Windows XP / SP3: Mise à jour pour Windows XP (KB898461) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB899587) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB899589) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB899591) / Windows XP / SP3: Mise à jour pour Windows XP (KB900485) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB900725) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB901017) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB901214) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB902400) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB904706) / Windows XP / SP3: Mise à jour pour Windows XP (KB904942) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB905414) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB905749) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB908519) / Windows XP / SP3: Mise à jour pour Windows XP (KB908531) / Windows XP / SP3: Mise à jour pour Windows XP (KB910437) / Windows XP / SP3: Mise à jour pour Windows XP (KB911280) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911562) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911567) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB911927) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB912919) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB913580) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB914388) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB914389) / Windows XP / SP3: Correctif pour Windows XP (KB914440) / Windows XP / SP3: Hotfix for Windows XP (KB915865) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB916281) / Windows XP / SP3: Mise à jour pour Windows XP (KB916595) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917159) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917344) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917422) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB917953) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB918439) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920214) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920670) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB920683) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB921398) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB921883) / Windows XP / SP3: Mise à jour de sécurité pour Windows XP (KB922616) / Windows XP OOB / SP10: High Definition Audio Driver Package - KB835221 --- Startup entries list --- Located: HK_LM:Run, DAEMON Tools command: "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 -noicon file: C:\Program Files\DAEMON Tools\daemon.exe size: 133016 MD5: d050311a72d10d4d2cffacf5728fc978 Located: HK_LM:Run, kis command: "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe" file: C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe size: 139367 MD5: 69c7be814a10a6d9e584a297d76bb859 Located: HK_LM:Run, NvCplDaemon command: RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup file: C:\WINDOWS\system32\RUNDLL32.EXE size: 33792 MD5: f5402cd47b7389ddc21f92119a906eee Located: HK_CU:Run, CTFMON.EXE command: C:\WINDOWS\system32\ctfmon.exe file: C:\WINDOWS\system32\ctfmon.exe size: 15360 MD5: 5584247b568c2e53934873f4b655fe6a Located: HK_CU:Run, Free Download Manager command: C:\Program Files\Free Download Manager\fdm.exe -autorun file: Located: HK_CU:Run, RoboForm command: "C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe" file: C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe size: 144448 MD5: cdef06435a8c7a6aad04c8ebef32764d Located: HK_CU:Run, SpybotSD TeaTimer command: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe file: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe size: 1415824 MD5: 70496eee0ddbe485f658693826f44d38 Located: Démarrage (tous utilisateurs), Lancement rapide d'Adobe Acrobat.lnk command: C:\WINDOWS\Installer\{AC76BA86-1033-F400-7760-000000000002}\SC_Acrobat.exe file: C:\WINDOWS\Installer\{AC76BA86-1033-F400-7760-000000000002}\SC_Acrobat.exe size: 25214 MD5: d6294d59171ac375cd142003566aa89e Located: Démarrage (tous utilisateurs), Lancement rapide d'Adobe Reader.lnk command: C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe file: C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe size: 29696 MD5: 43362b96870ce8649f4f2ec893da93f0 Located: System.ini, crypt32chain command: crypt32.dll file: crypt32.dll Located: System.ini, cryptnet command: cryptnet.dll file: cryptnet.dll Located: System.ini, cscdll command: cscdll.dll file: cscdll.dll Located: System.ini, klogon command: C:\WINDOWS\system32\klogon.dll file: C:\WINDOWS\system32\klogon.dll size: 28778 MD5: 7072750eb5c0f0cd54b48f972855ca61 Located: System.ini, ScCertProp command: wlnotify.dll file: wlnotify.dll Located: System.ini, Schedule command: wlnotify.dll file: wlnotify.dll Located: System.ini, sclgntfy command: sclgntfy.dll file: sclgntfy.dll Located: System.ini, SensLogn command: WlNotify.dll file: WlNotify.dll Located: System.ini, termsrv command: wlnotify.dll file: wlnotify.dll Located: System.ini, VESWinlogon command: VESWinlogon.dll file: VESWinlogon.dll Located: System.ini, WgaLogon command: WgaLogon.dll file: WgaLogon.dll Located: System.ini, wlballoon command: wlnotify.dll file: wlnotify.dll --- Browser helper object list --- {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} (SSVHelper Class) BHO name: CLSID name: SSVHelper Class Path: C:\Program Files\Java\jre1.5.0_07\bin\ Long name: ssv.dll Short name: Date (created): 03/05/2006 02:57:02 Date (last access): 10/08/2006 23:46:16 Date (last write): 03/05/2006 03:14:38 Filesize: 434279 Attributes: archive MD5: 162186B53BBB5964F9E806F96934338E CRC32: 1C68240D Version: 5.0.70.3 {9030D464-4C02-4ABF-8ECC-5164760863C6} (Windows Live Sign-in Helper) BHO name: CLSID name: Windows Live Sign-in Helper Path: C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\ Long name: WindowsLiveLogin.dll Short name: WINDOW~1.DLL Date (created): 17/04/2006 13:32:58 Date (last access): 10/08/2006 23:46:16 Date (last write): 17/04/2006 13:32:58 Filesize: 323904 Attributes: archive MD5: 4D834364B09155778A3330A67EBD4621 CRC32: D2CB2586 Version: 4.0.248.1 {AA58ED58-01DD-4d91-8333-CF10577473F7} (Google Toolbar Helper) BHO name: CLSID name: Google Toolbar Helper description: Google toolbar classification: Open for discussion known filename: googletoolbar.dll<br>googletoolbar*.dll<br>(* = number)<br>googletoolbar_en_*.**-big.dll<br>Googletoolbar_en_*.*.**-deleon.dll info link: http://toolbar.google.com/ info source: TonyKlein Path: c:\program files\google\ Long name: GoogleToolbar2.dll Short name: GOOGLE~2.DLL Date (created): 20/07/2006 09:59:12 Date (last access): 10/08/2006 23:46:16 Date (last write): 14/02/2006 20:06:14 Filesize: 1204224 Attributes: readonly archive MD5: D91CB7361D7814035F543C7CCAE9DD60 CRC32: 16D568FF Version: 3.0.131.0 --- ActiveX list --- {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) DPF name: CLSID name: Office Genuine Advantage Validation Tool Installer: C:\WINDOWS\Downloaded Program Files\OGAControl.inf Codebase: http://go.microsoft.com/fwlink/?linkid=58813 Path: C:\WINDOWS\system32\ Long name: OGACheckControl.DLL Short name: OGACHE~1.DLL Date (created): 23/05/2006 17:25:56 Date (last access): 10/08/2006 21:04:14 Date (last write): 23/05/2006 17:25:56 Filesize: 448816 Attributes: archive MD5: 406B36B9BE53D9B93B48E59A3DEDC737 CRC32: E20B2942 Version: 1.5.532.0 {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) DPF name: CLSID name: ActiveScan Installer Class Installer: C:\WINDOWS\Downloaded Program Files\asinst.inf Codebase: http://acs.pandasoftware.com/activescan/as5free/asinst.cab description: classification: Open for discussion known filename: ASINST.DLL info link: info source: Safer Networking Ltd. Path: C:\WINDOWS\Downloaded Program Files\ Long name: asinst.dll Short name: Date (created): 11/04/2006 17:10:10 Date (last access): 11/08/2006 00:09:46 Date (last write): 11/04/2006 17:10:10 Filesize: 135168 Attributes: archive MD5: 7267AE9C8DF527C30885DC29687D2A9B CRC32: 1B1733A3 Version: 58.5.0.0 {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0) DPF name: Java Runtime Environment 1.5.0 CLSID name: Java Plug-in 1.5.0_06 Installer: Codebase: http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab Path: C:\Program Files\Java\jre1.5.0_06\bin\ Long name: NPJPI150_06.dll Short name: NPJPI1~1.DLL Date (created): 02/03/2006 13:52:58 Date (last access): 08/08/2006 02:48:44 Date (last write): 10/11/2005 13:22:12 Filesize: 69746 Attributes: archive MD5: D2CF6BB5E9020E6707B62575F8083954 CRC32: 7F39DC54 Version: 5.0.60.5 {CAFEEFAC-0015-0000-0007-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0) DPF name: Java Runtime Environment 1.5.0 CLSID name: Java Plug-in 1.5.0_07 Installer: Codebase: http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab Path: C:\Program Files\Java\jre1.5.0_07\bin\ Long name: NPJPI150_07.dll Short name: NPJPI1~1.DLL Date (created): 03/05/2006 02:57:02 Date (last access): 08/08/2006 02:48:52 Date (last write): 03/05/2006 03:14:38 Filesize: 69746 Attributes: archive MD5: 2663A75A8F6DAD0F7C10BF920AE81940 CRC32: 5235B91D Version: 5.0.70.3 {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Runtime Environment 1.5.0) DPF name: Java Runtime Environment 1.5.0 CLSID name: Java Plug-in 1.5.0_07 Installer: Codebase: http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab Path: C:\Program Files\Java\jre1.5.0_07\bin\ Long name: NPJPI150_07.dll Short name: NPJPI1~1.DLL Date (created): 03/05/2006 02:57:02 Date (last access): 11/08/2006 00:39:42 Date (last write): 03/05/2006 03:14:38 Filesize: 69746 Attributes: archive MD5: 2663A75A8F6DAD0F7C10BF920AE81940 CRC32: 5235B91D Version: 5.0.70.3 --- Process list --- PID: 0 ( 0) [system] PID: 880 ( 4) \SystemRoot\System32\smss.exe PID: 972 ( 880) \??\C:\WINDOWS\system32\csrss.exe PID: 1060 ( 880) \??\C:\WINDOWS\system32\winlogon.exe PID: 1112 (1060) C:\WINDOWS\system32\services.exe size: 108544 MD5: 732E0B1ABAACE15D80EC19056B0A2AF9 PID: 1124 (1060) C:\WINDOWS\system32\lsass.exe size: 13312 MD5: 9F3744A5C6F49291A7A685040A013399 PID: 1280 (1112) C:\WINDOWS\system32\svchost.exe size: 14336 MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA PID: 1348 (1112) C:\WINDOWS\system32\svchost.exe size: 14336 MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA PID: 1404 (1112) C:\WINDOWS\System32\svchost.exe size: 14336 MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA PID: 1456 (1112) C:\Program Files\Intel\Wireless\Bin\EvtEng.exe size: 86016 MD5: B0C6B8DF9F20F84BDC9183DD520A8275 PID: 1524 (1112) C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe size: 360521 MD5: 2F7A8BE42103918BBD4A30F62EDA6931 PID: 1564 (1112) C:\WINDOWS\system32\svchost.exe size: 14336 MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA PID: 1700 (1112) C:\WINDOWS\system32\svchost.exe size: 14336 MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA PID: 208 (1112) C:\WINDOWS\system32\spoolsv.exe size: 57856 MD5: DA81EC57ACD4CDC3D4C51CF3D409AF9F PID: 900 ( 816) C:\WINDOWS\Explorer.EXE size: 1036288 MD5: 4C33E5B9A6197B6ED215F6CFBA0A2DAA PID: 1656 (1112) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe size: 139367 MD5: 69C7BE814A10A6D9E584A297D76BB859 PID: 1684 (1112) C:\WINDOWS\system32\svchost.exe size: 14336 MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA PID: 1756 (1112) C:\WINDOWS\system32\nvsvc32.exe size: 127043 MD5: 2B7C638B9CE0054DC12A41EF1CAACAC3 PID: 1800 (1112) C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe size: 139264 MD5: B44B1BF0107C55707494F5E83A17D35B PID: 1908 (1112) C:\WINDOWS\system32\wdfmgr.exe size: 38912 MD5: AB0A7CA90D9E3D6A193905DC1715DED0 PID: 280 (1112) C:\Program Files\Sony\VAIO Event Service\VESMgr.exe size: 176128 MD5: 1D5425783D92F34C63075FA0C4E2C3D5 PID: 328 ( 900) C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe size: 139367 MD5: 69C7BE814A10A6D9E584A297D76BB859 PID: 428 ( 900) C:\WINDOWS\system32\ctfmon.exe size: 15360 MD5: 5584247B568C2E53934873F4B655FE6A PID: 444 ( 900) C:\Program Files\Free Download Manager\fdm.exe size: 1990703 MD5: F922B346D3AD7AB9C7A37C0123A50519 PID: 500 ( 900) C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe size: 144448 MD5: CDEF06435A8C7A6AAD04C8EBEF32764D PID: 584 (1112) C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe size: 278528 MD5: 13D605FCE195E9EF827184DA2134D572 PID: 808 (1112) C:\WINDOWS\system32\SearchIndexer.exe size: 214528 MD5: 11FF81BD29A9118076BC435E90EFE450 PID: 1072 (1112) C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe size: 131072 MD5: 15DDA77E434484E6B5B4D0B60EFE76ED PID: 1616 (1112) C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe size: 118784 MD5: 0E362E517AFEB0669BD473315BE3CDE5 PID: 2940 (1112) C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment\VzRs\VzRs.exe size: 139264 MD5: 5255C0E41FA138C153A1AA9B1339F700 PID: 3020 (1112) C:\WINDOWS\System32\alg.exe size: 44544 MD5: 2FE681D10C5FC343DBBC0610B8DD4D24 PID: 3380 (1112) C:\WINDOWS\system32\svchost.exe size: 14336 MD5: 1BD6C2F707A275CB7C16FD99FE0F31CA PID: 2564 ( 900) C:\Program Files\Mozilla Firefox\firefox.exe size: 7183469 MD5: 2C291E37AB2796FC43944B8219D47C61 PID: 3520 ( 900) C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe size: 4393096 MD5: 09CA174A605B480318731E691DC98539 PID: 632 (2288) C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe size: 167936 MD5: 467EE7AF4C27C1FF0A2929DECF86E6AA PID: 3988 ( 900) C:\WINDOWS\system32\rundll32.exe size: 33792 MD5: F5402CD47B7389DDC21F92119A906EEE PID: 2580 ( 900) C:\Program Files\DAEMON Tools\daemon.exe size: 133016 MD5: D050311A72D10D4D2CFFACF5728FC978 PID: 3140 ( 900) C:\Downloads\SymNRT.exe size: 693904 MD5: F8F1EFF77A21935C76916C3CC55E61EC PID: 4 ( 0) System --- Browser start & search pages list --- Spybot - Search & Destroy browser pages report, 11/08/2006 00:39:42 HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Local Page C:\WINDOWS\system32\blank.htm HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Search Page http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\Start Page http://www.google.fr/ HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Local Page %SystemRoot%\system32\blank.htm HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Search Page http://go.microsoft.com/fwlink/?LinkId=54896 HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Start Page http://go.microsoft.com/fwlink/?LinkId=552...cid={SUB_CLCID} HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Page_URL http://go.microsoft.com/fwlink/?LinkId=54729 HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\Default_Search_URL http://go.microsoft.com/fwlink/?LinkId=54896 HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\SearchAssistant http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Search\CustomizeSearch http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm --- Winsock Layered Service Provider list --- --- Uninstall list --- a-squared Free 2.0 2.0 (a-squared Free_is1) install location: C:\Program Files\a-squared Free\ uninstall cmd: "C:\Program Files\a-squared Free\unins000.exe" publisher: Emsi Software GmbH comments: a-squared help link: http://forum.emsisoft.com Ad-Aware SE Personal 1.06 (Ad-Aware SE Personal) uninstall cmd: C:\PROGRA~1\Lavasoft\AD-AWA~1\UNWISE.EXE C:\PROGRA~1\Lavasoft\AD-AWA~1\INSTALL.LOG publisher: Lavasoft help link: http://www.lavasoft.com (AddressBook) Adobe Acrobat 7.0.8 Professional - English, Français, Deutsch 7.0.8 (Adobe Acrobat 7.0 Professional - EFG) version (major): 7 version (minor): 5 install date: 22/07/2006 install location: C:\Program Files\Adobe\Acrobat 7.0\ uninstall cmd: msiexec /I {AC76BA86-1033-F400-7760-000000000002} publisher: Adobe Systems contact: Customer Support help link: http://www.adobe.com/support/main.html help telephone: readme: C:\Program Files\Adobe\Acrobat 7.0\Readme.htm Adobe Photoshop Elements 2.0 2.0 (Adobe Photoshop Elements 2.0) version (major): 2 install location: C:\Program Files\Adobe\Photoshop Elements 2 install source: C:\WINDOWS\Temp\VARU\Temp1\SP007603\BIN\ uninstall cmd: C:\WINDOWS\ISUN040C.EXE -f"C:\Program Files\Adobe\Photoshop Elements 2\Uninst.isu" -c"C:\Program Files\Adobe\Photoshop Elements 2\Uninst.dll" publisher: Adobe Systems, Inc. Advanced Archive Password Recovery (remove only) (Advanced Archive Password Recovery) uninstall cmd: C:\Program Files\ElcomSoft\ARCHPR\uninstall.exe Advanced RAR Password Recovery (remove only) (Advanced RAR Password Recovery) uninstall cmd: C:\Program Files\ElcomSoft\ARPR\uninstall.exe AI RoboForm (All Users) (AI RoboForm) uninstall cmd: "C:\Program Files\Siber Systems\AI RoboForm\rfwipeout.exe" help link: http://www.roboform.com/php/rtss/main/ Audacity 1.3.0 (Audacity 1.3 Beta_is1) install location: C:\Program Files\Audacity 1.3 Beta\ uninstall cmd: "C:\Program Files\Audacity 1.3 Beta\unins000.exe" help link: http://audacity.sourceforge.net Azureus 2.4.0.2 (Azureus) install location: C:\Program Files\Azureus uninstall cmd: C:\Program Files\Azureus\Uninstall.exe BitTornado 0.3.15 0.3.15 (BitTornado) uninstall cmd: C:\Program Files\BitTornado\uninst.exe publisher: John Hoffman Canon PIXMA iP4000 (CANONBJ_Deinstall_CNMCP64.DLL) uninstall cmd: C:\WINDOWS\system32\CNMCP64.exe "-PRINTERNAMECanon PIXMA iP4000" "-HELPERDLLC:\BJPrinter\CNMWINDOWS\Canon PIXMA iP4000 Installer\Inst2\cnmis.dll" "-RCDLLC:\BJPrinter\CNMWINDOWS\Canon PIXMA iP4000 Installer\Inst2\cnmi040c.dll" CCleaner (remove only) (CCleaner) uninstall cmd: "C:\Program Files\CCleaner\uninst.exe" HDAUDIO SoftV92 Data Fax Modem with SmartCP (CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_20030003) uninstall cmd: C:\Program Files\CONEXANT\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_20030003\HXFSETUP.EXE -U -IHDAUDIO\FUNC_02&VEN_14F1&DEV_2BFA&SUBSYS_20030003 (Connection Manager) (DirectAnimation) (DirectDrawEx) (DXM_Runtime) Canon Utilities Easy-PhotoPrint (Easy-PhotoPrint) uninstall cmd: C:\Program Files\Canon\Easy-PhotoPrint\uninst.exe C:\Program Files\Canon\Easy-PhotoPrint\uninst.ini Canon Utilities Easy-PrintToolBox (Easy-PrintToolBox) uninstall cmd: C:\WINDOWS\BJPSUNST.EXE Easy-WebPrint (Easy-WebPrint) uninstall cmd: C:\WINDOWS\IsUn040c.exe -f"C:\Program Files\Canon\Easy-WebPrint\Uninst.isu" eMule (eMule) uninstall cmd: "C:\Program Files\eMule\Uninstall.exe" FireTune (FireTune1.1.2 for Firefox v1.x) uninstall cmd: C:\WINDOWS\iun6002.exe "C:\Program Files\FireTune\irunin.ini" (Fontcore) Free Download Manager 2.0 (Free Download Manager_is1) install location: C:\Program Files\Free Download Manager\ uninstall cmd: "C:\Program Files\Free Download Manager\unins000.exe" publisher: VicMan Software help link: http://www.freedownloadmanager.org/ GrabIt 1.6.2 Beta (build 940) (GrabIt_is1) install location: C:\Program Files\GrabIt\ uninstall cmd: "C:\Program Files\GrabIt\unins000.exe" publisher: Ilan Shemes help link: http://www.shemes.com/ HijackThis 1.99.1 1.99.1 (HijackThis) uninstall cmd: C:\Program Files\HijackThis\HijackThis.exe /uninstall publisher: Soeperman Enterprises Ltd. (ICW) (IE40) (IE4Data) (IE5BAKEX) Windows Internet Explorer 7 Beta 3 20060623.092706 (ie7beta3) install date: 20060808 uninstall cmd: "C:\WINDOWS\ie7beta3\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://www.microsoft.com/ie (IEData) (InstallShield Uninstall Information) Age of Empires III 1.00.0000 (InstallShield_{485775E8-AEB8-46BD-922B-242879E03DD5}) version: 16777216 version (major): 1 estimated size: 2099680 install date: 20060728 install location: C:\Program Files\Microsoft Games\Age of Empires III\ install source: F:\ uninstall cmd: C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{485775E8-AEB8-46BD-922B-242879E03DD5} publisher: Microsoft Game Studios help link: http://www.microsoft.com/games/age3/support.asp iTunes 6.0.5.20 (InstallShield_{54C0D94A-F467-4ABC-9D02-6E58748668D4}) version: 100663301 version (major): 6 estimated size: 35158 install date: 20060720 install location: C:\Program Files\iTunes\ install source: C:\WINDOWS\Downloaded Installations\{54C0D94A-F467-4ABC-9D02-6E58748668D4}\ uninstall cmd: C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{54C0D94A-F467-4ABC-9D02-6E58748668D4} /l1036 publisher: Apple Computer, Inc. contact: Assistance AppleCare help link: http://www.info.apple.com/frfr/index.html help telephone: 1-800-275-2273 Mon Centre d'Information 1.6.5.1 (InstallShield_{62B715BC-01F5-4CC9-9811-D24ED44C16D4}) version: 17170437 version (major): 1 version (minor): 6 estimated size: 3069 install date: 20041216 install source: C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\_is1D2\ uninstall cmd: C:\Program Files\Fichiers communs\InstallShield\Driver\8\Intel 32\IDriver.exe /M{62B715BC-01F5-4CC9-9811-D24ED44C16D4} /l1036 publisher: Sony comments: Veuillez d'abord installer Macromedia Flash Player version 7 ou ultérieure contact: Service support clientèle help link: http://www.vaio-link.com help telephone: 0 Enregistrement en ligne VAIO (Français) 4.4.0.0 (InstallShield_{668B1BD6-4593-4959-970E-249AFFE6F35C}) version: 67371008 version (major): 4 version (minor): 4 estimated size: 1774 install date: 20041216 install source: C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\_is38\ uninstall cmd: C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{668B1BD6-4593-4959-970E-249AFFE6F35C} /l1036 publisher: Sony Corporation comments: Enregistrez-vous au Club VAIO contact: Service support clientèle: VAIO-Link help link: http://www.vaio-link.com help telephone: Consultez le manuel Dépannage OpenMG Secure Module 4.0.00 4.0.00.06170 (InstallShield_{6F1974D6-4249-43B6-88B0-9A9B8A33956C}) version: 67108864 version (major): 4 estimated size: 15109 install date: 20060720 install location: C:\Program Files\Sony Corporation\OpenMG Secure Module\ install source: C:\WINDOWS\Temp\VARU\Temp1\SP007797\BIN\ uninstall cmd: C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{6F1974D6-4249-43B6-88B0-9A9B8A33956C} /l1033 UNINSTALL publisher: Sony Corporation VAIO Enquête (Français) 1.1.1.1 (InstallShield_{9080C5D2-82FA-452A-87FA-CBB4B05D67A5}) version: 16842753 version (major): 1 version (minor): 1 estimated size: 837 install date: 20041216 install source: C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\_is1FF\ uninstall cmd: C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{9080C5D2-82FA-452A-87FA-CBB4B05D67A5} /l1036 publisher: Sony Corporation comments: Votre voix compte contact: Service support clientèle: VAIO-Link help link: http://www.vaio-link.com help telephone: Consultez le manuel Dépannage QuickTime 7.1 (InstallShield_{C21D5524-A970-42FA-AC8A-59B8C7CDCA31}) version: 117506048 version (major): 7 version (minor): 1 estimated size: 71347 install date: 20060720 install location: C:\Program Files\QuickTime\ install source: C:\DOCUME~1\ALEXAN~1\LOCALS~1\Temp\_is36C\ uninstall cmd: C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{C21D5524-A970-42FA-AC8A-59B8C7CDCA31} /l1036 publisher: Apple Computer, Inc. contact: Assistance AppleCare help link: http://www.apple.com/fr/support/ help telephone: (33) 0825 888 024 Kaspersky Internet Security 6.0 6.0.0.300 (InstallWIX_{D0DCD54F-C829-41A5-AF32-71E632BB0E2C}) uninstall cmd: MsiExec.exe /I{D0DCD54F-C829-41A5-AF32-71E632BB0E2C} publisher: Kaspersky Lab help link: http://www.kaspersky.com/fr/service InterActual Player (InterActual Player) uninstall cmd: C:\Program Files\InterActual\InterActual Player\inuninst.exe Correctif Windows XP - KB307154 20040813.160158 (KB307154) uninstall cmd: C:\WINDOWS\$NtUninstallKB307154$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=307154 Correctif Windows XP - KB834707 20040929.110854 (KB834707) uninstall cmd: C:\WINDOWS\$NtUninstallKB834707$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=834707 High Definition Audio Driver Package - KB835221 20040219.000000 (KB835221WXP) uninstall cmd: C:\WINDOWS\$NtUninstallKB835221WXP$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=KB835221 Correctif Windows XP - KB873339 20041117.092459 (KB873339) uninstall cmd: C:\WINDOWS\$NtUninstallKB873339$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=873339 (KB884016) Correctif Windows XP - KB884018 20040812.132033 (KB884018) uninstall cmd: C:\WINDOWS\$NtUninstallKB884018$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=884018 Correctif Windows XP - KB884575 20040827.145237 (KB884575) uninstall cmd: C:\WINDOWS\$NtUninstallKB884575$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=884575 Correctif Windows XP - KB885835 20041027.181713 (KB885835) uninstall cmd: C:\WINDOWS\$NtUninstallKB885835$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=885835 Correctif Windows XP - KB885836 20041028.173203 (KB885836) uninstall cmd: C:\WINDOWS\$NtUninstallKB885836$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=885836 Correctif Windows XP - KB886185 20041021.090540 (KB886185) uninstall cmd: C:\WINDOWS\$NtUninstallKB886185$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=886185 Correctif Windows XP - KB887472 20041014.162858 (KB887472) uninstall cmd: C:\WINDOWS\$NtUninstallKB887472$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=887472 Correctif Windows XP - KB888113 20041116.131036 (KB888113) uninstall cmd: C:\WINDOWS\$NtUninstallKB888113$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=888113 Correctif Windows XP - KB888302 20041207.111426 (KB888302) uninstall cmd: C:\WINDOWS\$NtUninstallKB888302$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=888302 Mise à jour de sécurité pour Windows XP (KB890046) 1 (KB890046) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB890046$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=890046 Correctif Windows XP - KB890859 1 (KB890859) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB890859$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=890859 Windows Media Format SDK Hotfix - KB891122 (KB891122) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB891122$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=891122 Correctif Windows XP - KB891781 20050110.165439 (KB891781) uninstall cmd: C:\WINDOWS\$NtUninstallKB891781$\spuninst\spuninst.exe publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=891781 Mise à jour de sécurité pour Windows XP (KB893756) 1 (KB893756) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB893756$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=893756 (KB893803) Windows Installer 3.1 (KB893803) 3.1 (KB893803v2) uninstall cmd: "C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://go.microsoft.com/fwlink/?LinkId=42467 Mise à jour pour Windows XP (KB894391) 1 (KB894391) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB894391$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=894391 Mise à jour de sécurité pour Windows XP (KB896358) 1 (KB896358) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB896358$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=896358 Mise à jour de sécurité pour Windows XP (KB896423) 1 (KB896423) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB896423$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=896423 Mise à jour de sécurité pour Windows XP (KB896424) 1 (KB896424) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB896424$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=896424 Mise à jour de sécurité pour Windows XP (KB896428) 1 (KB896428) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB896428$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=896428 Mise à jour de sécurité pour Step by Step Interactive Training (KB898458) 20050502.101010 (KB898458) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB898458$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com/kb/898458 Mise à jour pour Windows XP (KB898461) 1 (KB898461) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=898461 Mise à jour de sécurité pour Windows XP (KB899587) 1 (KB899587) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB899587$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=899587 Mise à jour de sécurité pour Windows XP (KB899589) 1 (KB899589) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB899589$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=899589 Mise à jour de sécurité pour Windows XP (KB899591) 1 (KB899591) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB899591$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=899591 Mise à jour pour Windows XP (KB900485) 2 (KB900485) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB900485$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=900485 Mise à jour de sécurité pour Windows XP (KB900725) 1 (KB900725) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB900725$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=900725 Mise à jour de sécurité pour Windows XP (KB901017) 1 (KB901017) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB901017$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=901017 Mise à jour de sécurité pour Windows XP (KB901214) 1 (KB901214) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB901214$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=901214 Hotfix for Windows Media Format SDK (KB902344) (KB902344) uninstall cmd: "C:\WINDOWS\$NtUninstallKB902344$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=902344 Mise à jour de sécurité pour Windows XP (KB902400) 1 (KB902400) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB902400$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=902400 Mise à jour de sécurité pour Windows XP (KB904706) 2 (KB904706) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB904706$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=904706 Mise à jour pour Windows XP (KB904942) 2 (KB904942) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB904942$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=904942 Mise à jour de sécurité pour Windows XP (KB905414) 1 (KB905414) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB905414$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=905414 Mise à jour de sécurité pour Windows XP (KB905749) 1 (KB905749) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB905749$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=905749 Mise à jour de sécurité pour Windows XP (KB908519) 1 (KB908519) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB908519$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=908519 Mise à jour pour Windows XP (KB908531) 2 (KB908531) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB908531$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=908531 Mise à jour pour Windows XP (KB910437) 1 (KB910437) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB910437$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=910437 Mise à jour pour Windows XP (KB911280) 2 (KB911280) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB911280$\spuninst\spuninst.exe" publisher: Microsoft Corporation help link: http://support.microsoft.com?kbid=911280 Mise à jour de sécurité pour Windows XP (KB911562) 1 (KB911562) install date: 20060720 uninstall cmd: "C:\WINDOWS\$NtUninstallKB911562$\spuninst&
  5. King_Alexius
    Ok, pour les logs ! Spybot est en train de tourner, je sui vers la fin, et pour le moment, il n'y a rien !!! Sinon, pour chercher... la fenêtre bloc note ne s'ouvre pas !!! Je fais comment ?
  6. King_Alexius
    salut Charles ! Peux-tu me donner l'URL pour virer la daube Norton ? Car à la base, j'avais pendant 90 jours de Norton AV, que j'ai vite désinstallé, vu la merde que c'est !!!! Peux-tu me donner ce lien sur mon post, STP, car je n'aurais pas le réflexe de retourner sur celui-ci... Merci !
  7. King_Alexius
    Salut !! Quels rapports de scan veux-tu ?? Concernant la clef orpheline de Intcodec, c'est pas possible de la virer ? Dois-je suivre la même procédure que le post spécial pour l'infection paar Intcoded crée par un autre membre ???
  8. King_Alexius
    Voici le rapport Active Scan : Incident Statut Analyse Adware:adware/intcodec No Désinfecté Registre Windows Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Alexandre LEMERLE\Application Data\Mozilla\Firefox\Profiles\oftruny7.default\cookies.txt[.xiti.com/] Spyware:Cookie/Doubleclick No Désinfecté C:\Documents and Settings\Alexandre LEMERLE\Application Data\Mozilla\Firefox\Profiles\oftruny7.default\cookies.txt[.doubleclick.net/] Spyware:Cookie/Bluestreak No Désinfecté C:\Documents and Settings\Alexandre LEMERLE\Cookies\alexandre_lemerle@bluestreak[2].txt Spyware:Cookie/Xiti No Désinfecté C:\Documents and Settings\Alexandre LEMERLE\Cookies\alexandre_lemerle@xiti[1].txt Je vais de ce pas lancer un SpyBot puis un Ad-Aware !!! Mais ce que je veux flinguer en priorité, c'est cette trace du faux codec Intcodec !!! Une idée ???
  9. King_Alexius
    Ah ah ah ah ! Monssieur est connaisseur, et à tout de suite renifler l'arnaque ! ! Donc, je pense que cet écran de la mort intervient à cause de l'application torrent Azureus !!! Mais rassurez-vous, rien d'illégal dans tout ça : http://www.vistatorrent.com/ ! Eh oui, j'essaye tant bei nque mal de télécharger Windows Vista sur mon ordi... Concernant la ligne realteck disparue, il ne me semble pas l'avoir effacée par moi-même e, utilisatn HijackThis ! C'est pour ça que je te disais que j'étais étonné... Voilà, le scan Panda va se faire là, je l'enverrais tout à l'heure...
  10. King_Alexius
    Il y a un truc bizarre : je n'ai pas supprimé le truc que tu me demandes, et il ne figure plus dans le log HiJackThis !!! Voici le log que je viens de faire : Logfile of HijackThis v1.99.1 Scan saved at 00:48:35, on 10/08/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5450.0004) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Intel\Wireless\Bin\EvtEng.exe C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe C:\Program Files\Sony\VAIO Event Service\VESMgr.exe C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe C:\WINDOWS\system32\SearchIndexer.exe C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Free Download Manager\fdm.exe C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe C:\Program Files\palmOne\HOTSYNC.EXE C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment\VzRs\VzRs.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\UseNeXT\UseNeXT.exe C:\Program Files\GrabIt\GrabIt.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=54729 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=552...cid={SUB_CLCID} R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8080 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [kis] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [Free Download Manager] C:\Program Files\Free Download Manager\fdm.exe -autorun O4 - HKCU\..\Run: [RoboForm] "C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe" O4 - Startup: HotSync Manager.lnk = C:\Program Files\palmOne\HOTSYNC.EXE O4 - Global Startup: Lancement rapide d'Adobe Acrobat.lnk = ? O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html O8 - Extra context menu item: Ajouter à Kaspersky Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\\ie_banner_deny.htm O8 - Extra context menu item: Barre RoboForm - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html O8 - Extra context menu item: Convertir en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir la cible du lien en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir la cible du lien en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir la sélection en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir la sélection en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convertir les liens sélectionnés en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html O8 - Extra context menu item: Enregistrer le formulaire - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html O8 - Extra context menu item: Personnaliser le menu - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: Remplir le formulaire - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm O8 - Extra context menu item: Télécharger le site avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlpage.htm O8 - Extra context menu item: Télécharger les tous avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll O9 - Extra button: Antivirus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\scieplugin.dll O9 - Extra button: Remplir - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html O9 - Extra 'Tools' menuitem: Remplir le formulaire - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html O9 - Extra button: Enregistrer - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html O9 - Extra 'Tools' menuitem: Enregistrer le formulaire - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll O9 - Extra button: Barre RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html O9 - Extra 'Tools' menuitem: Barre RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O11 - Options group: [iNTERNATIONAL] International* O14 - IERESET.INF: START_PAGE_URL=http://www.club-vaio.com/fr/ O15 - Trusted Zone: *.sony-europe.com O15 - Trusted Zone: *.sonystyle-europe.com O15 - Trusted Zone: *.vaio-link.com O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=58813 O16 - DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} (YInstStarter Class) - http://us.dl1.yimg.com/download.yahoo.com/...nst20040510.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by110w.bay110.mail.live.com/mail/re...es/MsnPUpld.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1153407168703 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll O20 - Winlogon Notify: VESWinlogon - C:\WINDOWS\SYSTEM32\VESWinlogon.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Kaspersky Internet Security 6.0 (AVP) - Unknown owner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe" -r (file missing) O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe O23 - Service: VAIO Entertainment Aggregation and Control Service - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment\VzRs\VzRs.exe O23 - Service: VAIO Entertainment Task Scheduler - Sony Corporation - C:\Program Files\Sony\VAIO Entertainment\VzTaskScheduler.exe O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe O23 - Service: VAIO Media Integrated Server (VAIOMediaPlatform-IntegratedServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe O23 - Service: VAIO Media Integrated Server (HTTP) (VAIOMediaPlatform-IntegratedServer-HTTP) - Unknown owner - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-IntegratedServer-HTTP /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="Applications\IntegratedServer\HTTP (file missing) O23 - Service: VAIO Media Integrated Server (UPnP) (VAIOMediaPlatform-IntegratedServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe O23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Unknown owner - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe" /Service=VAIOMediaPlatform-Mobile-Gateway /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Addons\Packages\Mobile\Gateway" /DisplayName="VAIO Media Gateway Server (file missing) O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe O23 - Service: VAIO Entertainment File Import Service (VzFw) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe Je ferais le scan en ligne sur Panda demain matin... Pour l'écran bleu de la mort, je crois que ça écrit éxactement ce que tu as dit !!! (je peux te donner ce que je pense être la raison de ce message, par MP ; je pense que c'est dû à une certaine application...)
  11. King_Alexius
    Euh, pour le truc de realtech, t's sûr qu'il faut le supprimer ? Car s'il fait partie de la carte son, j'ai pas envie que ça fasse des conflits... Sinon, le PC marche normalement... Même si en ce moment, j'ai souvent des écrans bleu de plantage, qui font redémarrer l'ordi... (je travail sous XP Pro SP2). Peux-tu m'en dire plus sur les causes de ces écrans bleus plutôt bizarres ??? Je ferais le scan en ligne demain matin... Sinon, plutôt que de le faire avec panda, est-ce que je peux le faire directement sur ma bécane avec Kaspersky Internet Security ? A ce propos, pour toi, quel est le meilleur AV et le meilleur firewall ??? Merci d'avance...
  12. King_Alexius
    Je me permets de faire remonter ce post... J'ai fait des analyses avec SpyBot et Ad-Aware, qui se sont révélées négatives, mais je resque quand même sur mes gardes... A vous !
  13. King_Alexius
    Merci pour cette rapide réponse... Voici le log : Logfile of HijackThis v1.99.1 Scan saved at 23:26:57, on 07/08/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Intel\Wireless\Bin\EvtEng.exe C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe C:\Program Files\Apoint\Apoint.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\Sony\VAIO Event Service\VESMgr.exe C:\WINDOWS\system32\ICO.EXE C:\Program Files\Sony\VAIO Power Management\SPMgr.exe C:\Program Files\Sony\ISB Utility\ISBMgr.exe C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe C:\Program Files\Sony\VAIO Update 2\VAIOUpdt.exe C:\Program Files\Apoint\Apntex.exe C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\DAEMON Tools\daemon.exe C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Free Download Manager\fdm.exe C:\WINDOWS\system32\SearchIndexer.exe C:\Program Files\palmOne\HOTSYNC.EXE C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment\VzRs\VzRs.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\SearchFilterHost.exe C:\WINDOWS\system32\SearchProtocolHost.exe C:\Program Files\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.club-vaio.com/fr/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [Mouse Suite 98 Daemon] ICO.EXE O4 - HKLM\..\Run: [sonyPowerCfg] C:\Program Files\Sony\VAIO Power Management\SPMgr.exe O4 - HKLM\..\Run: [iSBMgr.exe] C:\Program Files\Sony\ISB Utility\ISBMgr.exe O4 - HKLM\..\Run: [switcher.exe] C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe O4 - HKLM\..\Run: [VAIO Update 2] "C:\Program Files\Sony\VAIO Update 2\VAIOUpdt.exe" /Stationary O4 - HKLM\..\Run: [PDService.exe] C:\Program Files\Utimaco\SafeGuard PrivateDisk\pdservice.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe O4 - HKLM\..\Run: [kis] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe" O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [Free Download Manager] C:\Program Files\Free Download Manager\fdm.exe -autorun O4 - Startup: HotSync Manager.lnk = C:\Program Files\palmOne\HOTSYNC.EXE O4 - Global Startup: Lancement rapide d'Adobe Acrobat.lnk = ? O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html O8 - Extra context menu item: Ajouter à Kaspersky Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\\ie_banner_deny.htm O8 - Extra context menu item: Convertir en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir la cible du lien en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir la cible du lien en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir la sélection en Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir la sélection en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convertir les liens sélectionnés en un fichier PDF existant - res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm O8 - Extra context menu item: Télécharger le site avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlpage.htm O8 - Extra context menu item: Télécharger les tous avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll O9 - Extra button: Antivirus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\scieplugin.dll O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://www.club-vaio.com/fr/ O15 - Trusted Zone: *.sony-europe.com O15 - Trusted Zone: *.sonystyle-europe.com O15 - Trusted Zone: *.vaio-link.com O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=58813 O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by110w.bay110.mail.live.com/mail/re...es/MsnPUpld.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1153407168703 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll O20 - Winlogon Notify: VESWinlogon - C:\WINDOWS\SYSTEM32\VESWinlogon.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Kaspersky Internet Security 6.0 (AVP) - Unknown owner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe" -r (file missing) O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe O23 - Service: VAIO Entertainment Aggregation and Control Service - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment\VzRs\VzRs.exe O23 - Service: VAIO Entertainment Task Scheduler - Sony Corporation - C:\Program Files\Sony\VAIO Entertainment\VzTaskScheduler.exe O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe O23 - Service: VAIO Media Integrated Server (VAIOMediaPlatform-IntegratedServer-AppServer) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe O23 - Service: VAIO Media Integrated Server (HTTP) (VAIOMediaPlatform-IntegratedServer-HTTP) - Unknown owner - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe" /Service=VAIOMediaPlatform-IntegratedServer-HTTP /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="Applications\IntegratedServer\HTTP (file missing) O23 - Service: VAIO Media Integrated Server (UPnP) (VAIOMediaPlatform-IntegratedServer-UPnP) - Sony Corporation - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe O23 - Service: VAIO Media Gateway Server (VAIOMediaPlatform-Mobile-Gateway) - Unknown owner - C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe" /Service=VAIOMediaPlatform-Mobile-Gateway /RegRoot="SOFTWARE\Sony Corporation\VAIO Media Platform\2.0" /RegExt="\Addons\Packages\Mobile\Gateway" /DisplayName="VAIO Media Gateway Server (file missing) O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe O23 - Service: VAIO Entertainment File Import Service (VzFw) - Sony Corporation - C:\Program Files\Fichiers communs\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
  14. King_Alexius
    Bonjour à tous, je vous poste ici un rapport généré par SmitFraudFix, pouvez-vous l'analyser ??? Jai été aiguiller vers ce logiciel, suite à l'infection de mon ordi par un faux décodeur video... J'ai donc vu sur le net qu'il fallait télécharger ce logiciel... Voici le rapport : SmitFraudFix v2.81 Rapport fait à 16:07:49,31, 07/08/2006 Executé à partir de C:\Downloads\SmitfraudFix\SmitfraudFix OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT Fix executé en mode normal »»»»»»»»»»»»»»»»»»»»»»»» C:\ »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web »»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32 »»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Alexandre X\Application Data »»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer »»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\ALEXAN~1\Favoris »»»»»»»»»»»»»»»»»»»»»»»» Bureau »»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files »»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues »»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0] "Source"="About:Home" "SubscribedURL"="About:Home" "FriendlyName"="Ma page d'accueil" »»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler !!!Attention, les clés qui suivent ne sont pas forcément infectées!!! SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll »»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll »»»»»»»»»»»»»»»»»»»»»»»» Fin _______________________________________ Merci d'avance...
×
×
  • Créer...