Aller au contenu

  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

virus burst: critical system error

azerty34

Par azerty34
dans Analyses et éradication malwares

 Partager

Messages recommandés

azerty34 Junior Member

azerty34

Posté(e)
  • Auteur
Posté(e)

bonjour, bruce lee

voilà ce que ça me donne

 

Philippe - 06-11-03 15:11:50.90 Service Pack 1

ComboFix 06.11.3W - Running from: "C:\Documents and Settings\Philippe\Bureau"

Command switches used :: /wow

 

((((((((((((((((((((((((((((((( Files Created from 2006-10-03 to 2006-11-03 ))))))))))))))))))))))))))))))))))

 

 

2006-11-02 16:21 <REP> d-------- C:\Documents and Settings\Philippe\Application Data\AdobeUM

2006-11-02 16:21 <REP> d-------- C:\Documents and Settings\Philippe\Application Data\Adobe

2006-10-31 23:54 <REP> d-------- C:\bfu

2006-10-31 19:24 <REP> d-------- C:\hijackthis

2006-10-31 19:18 <REP> d-------- C:\WINDOWS\CSC

2006-10-31 17:56 53,248 --a------ C:\WINDOWS\system32\Process.exe

2006-10-31 17:56 40,960 --a------ C:\WINDOWS\system32\swsc.exe

2006-10-31 17:56 288,417 --a------ C:\WINDOWS\system32\SrchSTS.exe

2006-10-31 17:56 135,168 --a------ C:\WINDOWS\system32\swreg.exe

2006-10-29 18:34 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Adobe

2006-10-29 18:27 <REP> d-------- C:\Documents and Settings\Philippe\Application Data\Google

2006-10-29 18:25 <REP> d-------- C:\Program Files\Lavasoft

2006-10-29 18:21 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Google

2006-10-29 18:20 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Google Updater

2006-10-29 16:11 <REP> dr-h----- C:\Documents and Settings\Philippe\Recent

2006-10-25 13:55 233,984 --a------ C:\WINDOWS\system32\sutianvqy.exe

2006-10-18 09:58 <REP> d-------- C:\Program Files\MaxTV Online

2006-10-18 09:58 <REP> d-------- C:\Program Files\MaxSoftware

2006-10-13 20:38 <REP> d-------- C:\Documents and Settings\Philippe\Application Data\dvdcss

2006-10-08 18:19 <REP> d-------- C:\Program Files\SRTtoSSA

2006-10-08 10:54 <REP> d-------- C:\Program Files\VirtualDub

2006-10-08 00:21 <REP> d-------- C:\Program Files\SLD Codec Pack

2006-10-06 10:18 <REP> d-------- C:\WMR Recordings

2006-10-06 10:16 737,280 --a------ C:\WINDOWS\iun6002.exe

2006-10-06 10:16 <REP> d-------- C:\Program Files\WM Recorder 10.2

2006-10-05 17:11 73 --a------ C:\WINDOWS\system32\ssprs.dll

2006-10-05 17:11 205 --a------ C:\WINDOWS\system32\lsprst7.dll

2006-10-05 17:11 1,025 --a------ C:\WINDOWS\system32\sysprs7.dll

2006-10-05 17:11 1,025 --a------ C:\WINDOWS\system32\clauth2.dll

2006-10-05 17:11 1,025 --a------ C:\WINDOWS\system32\clauth1.dll

2006-10-05 16:59 <REP> d-------- C:\Program Files\Ontrack

2006-10-05 15:50 <REP> d-------- C:\Restoration

 

 

(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))

 

 

2006-11-03 15:14 -------- d-------- C:\Program Files\Fichiers communs

2006-11-03 14:33 -------- d-------- C:\Program Files\Mozilla Firefox

2006-10-31 01:17 -------- d-------- C:\Program Files\Google

2006-10-29 18:33 -------- d-------- C:\Program Files\Adobe

2006-10-29 17:34 -------- d-------- C:\Documents and Settings\Philippe\Application Data\Lavasoft

2006-10-29 17:03 -------- d--h----- C:\Program Files\InstallShield Installation Information

2006-10-29 15:37 -------- d-------- C:\Program Files\Super Internet TV

2006-10-29 15:37 -------- d-------- C:\Program Files\MaxTV Live!

2006-10-18 09:29 -------- d-------- C:\Program Files\TVTuner4

2006-10-18 09:20 2 ---hs---- C:\WINDOWS\system32\verwttxp.dll

2006-10-07 23:37 -------- d-------- C:\Program Files\Movie Maker

2006-10-07 22:22 -------- d-------- C:\Program Files\Kill Process

2006-09-27 11:01 -------- d-------- C:\Documents and Settings\Philippe\Application Data\Talkback

2006-09-23 23:05 -------- d-------- C:\Program Files\FileZilla

2006-09-23 15:22 -------- d-------- C:\Program Files\Internet Explorer

2006-09-21 16:45 -------- d---s---- C:\Documents and Settings\Philippe\Application Data\Microsoft

2006-09-21 16:09 -------- d-------- C:\Program Files\Microsoft Encarta

2006-09-21 16:09 -------- d-------- C:\Program Files\Fichiers communs\Microsoft Shared

2006-08-24 15:53 16384 --a------ C:\WINDOWS\system32\svcia32.dll

2006-08-23 19:09 196608 --a------ C:\SuperInternetTV-6.8.exe

2006-08-23 18:17 53760 --a------ C:\WINDOWS\system32\Squeeze.dll

2006-08-23 18:17 34308 --a------ C:\WINDOWS\system32\Chip.dll

2006-08-23 17:09 2560 --a------ C:\WINDOWS\_MSRSTRT.EXE

2006-08-21 16:33 11776 --a------ C:\WINDOWS\system32\xlkg.dll

2006-08-15 21:08 209636 --a------ C:\WINDOWS\IPUI_DivXG400.exe

2006-08-09 21:41 43520 --a------ C:\WINDOWS\system32\CmdLineExt03.dll

 

 

(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))

 

*Note* empty entries are not shown

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]

"msnmsgr"="\"C:\\Program Files\\MSN Messenger\\msnmsgr.exe\" /background"

"C:\\Program Files\\FeedReader30\\feedreader.exe"="C:\\Program Files\\FeedReader30\\feedreader.exe"

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]

"KAVPersonal50"="\"C:\\Program Files\\Kaspersky Lab\\Kaspersky Anti-Virus Personal\\kav.exe\" /minimize"

"TkBellExe"="\"C:\\Program Files\\Fichiers communs\\Real\\Update_OB\\realsched.exe\" -osboot"

"QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"

"NeroCheck"="C:\\WINDOWS\\System32\\NeroCheck.exe"

"sutianvqy"="c:\\windows\\system32\\sutianvqy.exe sutianvqy"

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]

"Installed"="1"

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]

"Installed"="1"

"NoChange"="1"

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]

"Installed"="1"

 

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components]

"DeskHtmlVersion"=dword:00000110

"DeskHtmlMinorVersion"=dword:00000005

"Settings"=dword:00000001

"GeneralFlags"=dword:00000002

 

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]

"CTFMON.EXE"="C:\\WINDOWS\\System32\\CTFMON.EXE"

 

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\run]

"CTFMON.EXE"="C:\\WINDOWS\\System32\\CTFMON.EXE"

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler]

"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui"

"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant"

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]

"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]

"DisableClock"=dword:00000001

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]

"NoDriveTypeAutoRun"=dword:00000091

"NoSetFolders"=dword:00000000

"NoSetTaskbar"=dword:00000000

"NoControlPanel"=dword:00000000

"NoRun"=dword:00000000

"NoFind"=dword:00000000

"NoMultiIE"=dword:00000000

"LWA"=dword:00000000

"LWB"=dword:00000000

"LWC"=dword:00000000

"LWD"=dword:00000000

"LWE"=dword:00000000

"LWF"=dword:00000000

"LWG"=dword:00000000

"LWH"=dword:00000000

"LWI"=dword:00000000

"LWJ"=dword:00000000

"LWK"=dword:00000000

"LWL"=dword:00000000

"LWM"=dword:00000000

"LWN"=dword:00000000

"LWO"=dword:00000000

"LWP"=dword:00000000

"LWQ"=dword:00000000

"LWR"=dword:00000000

"LWS"=dword:00000000

"LWT"=dword:00000000

"LWU"=dword:00000000

"LWV"=dword:00000000

"LWW"=dword:00000000

"LWX"=dword:00000000

"LWY"=dword:00000000

"LWZ"=dword:00000000

"NoDrives"=dword:00000000

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\Run]

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"dontdisplaylastusername"=dword:00000000

"legalnoticecaption"=""

"legalnoticetext"=""

"shutdownwithoutlogon"=dword:00000001

"undockwithoutlogon"=dword:00000001

 

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]

"NoDriveTypeAutoRun"=dword:00000091

 

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer]

"NoDriveTypeAutoRun"=dword:00000091

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload]

"PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}"

"CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}"

"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"

"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}"

"HziNvoXYhmKLFq"="{3449D119-9EE3-7BB3-1DD5-B88263BAEB5E}"

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Privoxy.lnk]

"path"="C:\\Documents and Settings\\All Users\\Menu Démarrer\\Programmes\\Démarrage\\Privoxy.lnk"

"backup"="C:\\WINDOWS\\pss\\Privoxy.lnkCommon Startup"

"location"="Common Startup"

"command"="C:\\Program Files\\Privoxy\\privoxy.exe "

"item"="Privoxy"

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Philippe^Menu Démarrer^Programmes^Démarrage^Microsoft Office.lnk]

"path"="C:\\Documents and Settings\\Philippe\\Menu Démarrer\\Programmes\\Démarrage\\Microsoft Office.lnk"

"backup"="C:\\WINDOWS\\pss\\Microsoft Office.lnkStartup"

"location"="Startup"

"command"="C:\\PROGRA~1\\MICROS~2\\Office10\\OSA.EXE -b -l"

"item"="Microsoft Office"

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg]

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcxMonitor]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="ALCXMNTR"

"hkey"="HKLM"

"command"="ALCXMNTR.EXE"

"inimapping"="0"

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools-1033]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="daemon"

"hkey"="HKLM"

"command"="\"D:\\Program Files\\D-Tools\\daemon.exe\" -lang 1033"

"inimapping"="0"

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EoClock]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"=""

"hkey"="HKLM"

"command"=""

"inimapping"="0"

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EoEngine]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"=""

"hkey"="HKLM"

"command"=""

"inimapping"="0"

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HbTools]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="HbtOEAddOn"

"hkey"="HKLM"

"command"="C:\\Program Files\\HbTools\\Bin\\4.7.7.0\\HbtOEAddOn.exe"

"inimapping"="0"

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="NvCpl"

"hkey"="HKLM"

"command"="RUNDLL32.EXE C:\\WINDOWS\\System32\\NvCpl.dll,NvStartup"

"inimapping"="0"

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="nwiz"

"hkey"="HKLM"

"command"="nwiz.exe /install"

"inimapping"="0"

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\overtoolsupdate]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="patch"

"hkey"="HKLM"

"command"="\"C:\\PROGRA~1\\SBSToolBar\\patch.exe\""

"inimapping"="0"

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="qttask"

"hkey"="HKLM"

"command"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"

"inimapping"="0"

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="realsched"

"hkey"="HKLM"

"command"="\"C:\\Program Files\\Fichiers communs\\Real\\Update_OB\\realsched.exe\" -osboot"

"inimapping"="0"

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTimer]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="VTTimer"

"hkey"="HKLM"

"command"="VTTimer.exe"

"inimapping"="0"

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WeatherOnTray]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="HbtWeatherOnTray"

"hkey"="HKLM"

"command"="C:\\Program Files\\HbTools\\Bin\\4.7.7.0\\HbtWeatherOnTray.exe"

"inimapping"="0"

 

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinSvr]

"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"

"item"="WinTmr"

"hkey"="HKLM"

"command"="C:\\WINDOWS\\System32\\tmr\\WinTmr.exe"

"inimapping"="0"

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]

"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"

 

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost]

LocalService REG_MULTI_SZ Alerter\0WebClient\0LmHosts\0RemoteRegistry\0upnphost\0SSDPSRV\0\0

NetworkService REG_MULTI_SZ DnsCache\0\0

rpcss REG_MULTI_SZ RpcSs\0\0

imgsvc REG_MULTI_SZ StiSvc\0\0

termsvcs REG_MULTI_SZ TermService\0\0

 

Completion time: 06-11-03 15:14:31.62

C:\ComboFix.txt ... 06-11-03 15:14

C:\ComboFix2.txt ... 06-11-03 15:07

Lien vers le commentaire
Partager sur d’autres sites

azerty34 Junior Member

azerty34

Posté(e)
  • Auteur
Posté(e)

re,

voilà le rapport

Logfile of HijackThis v1.99.1

Scan saved at 21:04:08, on 03/11/2006

Platform: Windows XP SP1 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

 

Running processes:

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\System32\svchost.exe

D:\Program Files\eMule\emule.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\FeedReader30\feedreader.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Documents and Settings\Philippe\Bureau\HijackThis.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: Zango Search Assistant Helper - {56F1D444-11BF-4879-A12B-79CF0177F038} - c:\program files\zango\zangohook.dll (file missing)

O2 - BHO: EoBho Class - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)

O2 - BHO: H&otbar - {74CC49F7-EB32-4A08-B204-948962A6E3DB} - C:\Program Files\HbTools\Bin\4.7.7.0\HbtHostIE.dll (file missing)

O2 - BHO: OTSI Class - {85CC6BFF-5A5C-4A76-8FC8-DB0787DF1597} - C:\PROGRA~1\SBSTOO~1\OTS.dll (file missing)

O3 - Toolbar: Barre d'outils MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar\01.01.2607.0\fr\msntb.dll (file missing)

O3 - Toolbar: H&otbar - {74CC49F7-EB32-4A08-B204-948962A6E3DB} - C:\Program Files\HbTools\Bin\4.7.7.0\HbtHostIE.dll (file missing)

O3 - Toolbar: SBS Åø¹Ù - {E74BC74F-F470-4AD7-9FB4-1A4170A06082} - C:\PROGRA~1\SBSTOO~1\OTWiz.dll (file missing)

O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx

O4 - HKLM\..\Run: [KAVPersonal50] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe" /minimize

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\System32\NeroCheck.exe

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [C:\Program Files\FeedReader30\feedreader.exe] C:\Program Files\FeedReader30\feedreader.exe

O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe

O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000

O14 - IERESET.INF: START_PAGE_URL=http://www.google.fr/

O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://spaces.msn.com//PhotoUpload/MsnPUpld.cab

O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} (RdxIE Class) - http://software-dl.real.com/29fc39b5eeb838...RdxIE601_fr.cab

O16 - DPF: {71DA2A4E-ACB3-4065-9E41-8BC42EABE427} - http://scripts.dlv4.com/binaries/IA/svcia32_FR_XP.cab

O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab

O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab

O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697514} (NsvPlayX Control) - http://www.nullsoft.com/nsv/embed/nsvplayx_vp3_mp3.cab

O16 - DPF: {DECEAAA2-370A-49BB-9362-68C3A58DDC62} (SAIX) - http://static.zangocash.com/cab/Zango/ie/b...d5399c7e98303f9

O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab31267.cab

O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://secure.logmein.com/activex/ractrl.cab?lmi=100

O17 - HKLM\System\CCS\Services\Tcpip\..\{D6DE4C00-6F3D-4EA6-9E20-726619D22225}: NameServer = 192.168.1.1

O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)

O21 - SSODL: HziNvoXYhmKLFq - {3449D119-9EE3-7BB3-1DD5-B88263BAEB5E} - C:\WINDOWS\System32\rmzvt.dll (file missing)

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: kavsvc - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe

O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe

O23 - Service: RA Server (Slave) - TWD Industries, LLC - C:\WINDOWS\Slave.exe

 

Lien vers le commentaire
Partager sur d’autres sites

Rejoindre la conversation

Vous pouvez publier maintenant et vous inscrire plus tard. Si vous avez un compte, connectez-vous maintenant pour publier avec votre compte.
Remarque : votre message nécessitera l’approbation d’un modérateur avant de pouvoir être visible.

Invité
Répondre à ce sujet…

×   Collé en tant que texte enrichi.   Coller en tant que texte brut à la place

  Seulement 75 émoticônes maximum sont autorisées.

×   Votre lien a été automatiquement intégré.   Afficher plutôt comme un lien

×   Votre contenu précédent a été rétabli.   Vider l’éditeur

×   Vous ne pouvez pas directement coller des images. Envoyez-les depuis votre ordinateur ou insérez-les depuis une URL.

×
 Partager
Aller sur la liste des sujets

  • En ligne récemment   0 membre est en ligne

    • Aucun utilisateur enregistré regarde cette page.
×
×
  • Créer...