Aller au contenu

  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

vole de memoire

savoyard
 Partager

Messages recommandés

savoyard Junior Member

savoyard

Posté(e)
  • Auteur
Posté(e)

voila le raport

 

 

Deckard's System Scanner v20071014.68

Run by ange on 2008-05-19 22:04:01

Computer is in Normal Mode.

--------------------------------------------------------------------------------

 

-- System Restore --------------------------------------------------------------

 

Successfully created a Deckard's System Scanner Restore Point.

 

 

-- Last 5 Restore Point(s) --

63: 2008-05-19 20:04:32 UTC - RP340 - Deckard's System Scanner Restore Point

62: 2008-05-18 18:48:41 UTC - RP339 - Installé Java 6 Update 5

61: 2008-05-18 11:44:30 UTC - RP338 - Point de vérification système

60: 2008-05-17 02:16:31 UTC - RP337 - Point de vérification système

59: 2008-05-16 01:10:00 UTC - RP336 - Software Distribution Service 3.0

 

 

-- First Restore Point --

1: 2008-03-22 21:27:28 UTC - RP278 - Removed Microsoft .NET Framework 1.1

 

 

Backed up registry hives.

Performed disk cleanup.

 

 

 

-- HijackThis (run as ange.exe) ------------------------------------------------

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 22:10:32, on 19/05/2008

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Boot mode: Normal

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\ZoneLabs\vsmon.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe

C:\Program Files\Fichiers communs\Maxtor\Schedule2\schedul2.exe

C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe

C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE

C:\WINDOWS\system32\nvsvc32.exe

C:\PROGRA~1\Trend Micro\Internet Security 12\PcCtlCom.exe

C:\WINDOWS\system32\HPZipm12.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\SearchIndexer.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Program Files\Windows Live\Messenger\usnsvc.exe

C:\PROGRA~1\Trend Micro\Internet Security 12\Tmntsrv.exe

C:\PROGRA~1\Trend Micro\Internet Security 12\tmproxy.exe

C:\WINDOWS\system32\wscntfy.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\RunDLL32.exe

C:\Program Files\VIA\RAID\raid_tool.exe

C:\WINDOWS\RTHDCPL.EXE

C:\WINDOWS\system32\rundll32.exe

C:\Program Files\Trend Micro\Internet Security 12\pccguide.exe

C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe

C:\Program Files\Maxtor\MaxBlast\MaxBlastMonitor.exe

C:\Program Files\Maxtor\MaxBlast\TimounterMonitor.exe

C:\Program Files\Fichiers communs\Maxtor\Schedule2\schedhlp.exe

C:\WINDOWS\system32\BtUsrBdg.exe

C:\WINDOWS\system32\BTSetBootKey.exe

C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe

C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files\Windows Live\Messenger\msnmsgr.exe

C:\Documents and Settings\ange\Local Settings\Temporary Internet Files\Content.IE5\DJM7PW6Y\dss[1].exe

C:\WINDOWS\system32\SearchProtocolHost.exe

C:\PROGRA~1\Trend Micro\HIJACK~1\ange.exe

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens

O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: Shareaza Web Download Hook - {0EEDB912-C5FA-486F-8334-57288578C627} - C:\Program Files\Shareaza\Plugins\RazaWebHook.dll

O2 - BHO: (no name) - {100EB1FD-D03E-47FD-81F3-EE91287F9465} - (no file)

O2 - BHO: (no name) - {4596013b-6c31-408b-a266-deae5c086dc2} - (no file)

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: BrowsingEnhancer - {5ABBD91B-0215-2FE1-7A7E-753F05B40CB8} - C:\Program Files\BrowsingEnhancer\BrowsingEnhancer-4.dll (file missing)

O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing)

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: (no name) - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - (no file)

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll

O2 - BHO: (no name) - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - (no file)

O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll

O2 - BHO: (no name) - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - (no file)

O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\system32\msdxm.ocx

O3 - Toolbar: (no name) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - (no file)

O3 - Toolbar: (no name) - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - (no file)

O3 - Toolbar: (no name) - {4596013b-6c31-408b-a266-deae5c086dc2} - (no file)

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [nwiz] nwiz.exe /install

O4 - HKLM\..\Run: [sW20] C:\WINDOWS\system32\sw20.exe

O4 - HKLM\..\Run: [sW24] C:\WINDOWS\system32\sw24.exe

O4 - HKLM\..\Run: [RaidTool] C:\Program Files\VIA\RAID\raid_tool.exe

O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE

O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE

O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe

O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent

O4 - HKLM\..\Run: [pccguide.exe] "C:\Program Files\Trend Micro\Internet Security 12\pccguide.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"

O4 - HKLM\..\Run: [MaxBlastMonitor.exe] C:\Program Files\Maxtor\MaxBlast\MaxBlastMonitor.exe

O4 - HKLM\..\Run: [AcronisTimounterMonitor] C:\Program Files\Maxtor\MaxBlast\TimounterMonitor.exe

O4 - HKLM\..\Run: [Acronis Scheduler2 Service] "C:\Program Files\Fichiers communs\Maxtor\Schedule2\schedhlp.exe"

O4 - HKLM\..\Run: [bTUSRBDG] BtUsrBdg.exe

O4 - HKLM\..\Run: [bTSETBOOTKEY] BTSetBootKey.exe

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [MbarInstall] C:\DOCUME~1\john\Local Settings\Temp\tem69.tmp.exe

O4 - HKLM\..\Run: [itsTV] "C:\Program Files\Its Label\ItsTV\ItsTV.exe"

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"

O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"

O4 - HKCU\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"

O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O8 - Extra context menu item: Download with &Shareaza - res://C:\Program Files\Shareaza\Plugins\RazaWebHook.dll/3000

O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\Microsoft Office\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab

O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/resources/MSNPUpld.cab

O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab

O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1191098952875

O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab

O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab56986.cab

O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe

O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Fichiers communs\Maxtor\Schedule2\schedul2.exe

O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe

O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe

O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: Trend Micro Central Control Component (PcCtlCom) - Trend Micro Incorporated. - C:\PROGRA~1\Trend Micro\Internet Security 12\PcCtlCom.exe

O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe

O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

O23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Incorporated. - C:\PROGRA~1\Trend Micro\Internet Security 12\Tmntsrv.exe

O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\PROGRA~1\Trend Micro\Internet Security 12\TmPfw.exe

O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - C:\PROGRA~1\Trend Micro\Internet Security 12\tmproxy.exe

O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

 

--

End of file - 11310 bytes

 

-- File Associations -----------------------------------------------------------

 

.scr - PhotoFiltre.Pcx - shell\open\command - "C:\Program Files\PhotoFiltre Studio\pf-studio.exe" "%1"

 

 

-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

 

R0 timounter (Acronis True Image Backup Archive Explorer) - c:\windows\system32\drivers\timntr.sys <Not Verified; Acronis; Acronis True Image>

R1 tmtdi (Trend Micro TDI Driver) - c:\windows\system32\drivers\tmtdi.sys <Not Verified; Trend Micro Inc.; Trend Micro Network Security Component 1.0>

R2 tifsfilter (Acronis True Image FS Filter) - c:\windows\system32\drivers\tifsfilt.sys <Not Verified; Acronis; Acronis True Image>

R2 tm_cfw (Common Firewall Driver) - c:\windows\system32\drivers\tm_cfw.sys <Not Verified; Trend Micro Inc.; Trend Network Security Component 1.0>

R3 Afc (PPdus ASPI Shell) - c:\windows\system32\drivers\afc.sys <Not Verified; Arcsoft, Inc.; Arcsoft® ASPI Shell>

R3 BTCOMM - c:\windows\system32\drivers\btcomm.sys <Not Verified; Windigo Systems; >

R3 BTKRNBDG (Bluetooth COM Bridge) - c:\windows\system32\drivers\btkrnbdg.sys <Not Verified; Windigo Systems; >

R3 ovt530 (Webcam Deluxe) - c:\windows\system32\drivers\ov530vid.sys <Not Verified; OmniVision Technologies, Inc.; Dual Mode USB Camera 530>

R3 pcouffin (VSO Software pcouffin) - c:\windows\system32\drivers\pcouffin.sys <Not Verified; VSO Software; Patin couffin engine>

R3 vad_multi (Windigo Virtual Audio Device (WDM)) - c:\windows\system32\drivers\vadmulti.sys <Not Verified; Windigo Systems; >

 

S3 Ad-Watch Connect Filter (Ad-Watch Connect Kernel Filter) - c:\windows\system32\drivers\nsdriver.sys <Not Verified; Lavasoft AB; Ad-Watch Connections>

S3 CAM1210 (USB Video Camera) - c:\windows\system32\drivers\cam1210.sys <Not Verified; USB Generic Camera; Camera 1210 Series Driver>

S3 CSRBC01 (%CSRBC01.SvcDesc%) - c:\windows\system32\drivers\csrbc01.sys <Not Verified; Windigo; Windigo USB Device Driver>

S3 GMSIPCI - d:\install\gmsipci.sys (file missing)

S3 NTACCESS - d:\ntaccess.sys (file missing)

S3 SetupNTGLM7X - d:\ntglm7x.sys (file missing)

 

 

-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

 

R2 aawservice (Ad-Aware 2007 Service) - "c:\program files\lavasoft\ad-aware 2007\aawservice.exe" <Not Verified; Lavasoft AB; Ad-Aware 2007 Service>

R2 Apple Mobile Device - "c:\program files\fichiers communs\apple\mobile device support\bin\applemobiledeviceservice.exe" <Not Verified; Apple, Inc.; Apple Mobile Device Service>

R2 Bonjour Service (Service Bonjour) - "c:\program files\bonjour\mdnsresponder.exe" <Not Verified; Apple Inc.; Bonjour>

R2 PcCtlCom (Trend Micro Central Control Component) - c:\progra~1\trend micro\internet security 12\pcctlcom.exe <Not Verified; Trend Micro Incorporated.; Trend Micro Internet Security>

R2 Tmntsrv (Trend Micro Real-time Service) - c:\progra~1\trend micro\internet security 12\tmntsrv.exe <Not Verified; Trend Micro Incorporated.; Trend Micro Internet Security>

R2 tmproxy (Trend Micro Proxy Service) - c:\progra~1\trend micro\internet security 12\tmproxy.exe <Not Verified; Trend Micro Inc.; Trend Micro Network Security Components 1.0>

 

S2 TmPfw (Trend Micro Personal Firewall) - c:\progra~1\trend micro\internet security 12\tmpfw.exe <Not Verified; Trend Micro Inc.; Trend Network Security Component 1.0>

S3 FLEXnet Licensing Service - "c:\program files\fichiers communs\macrovision shared\flexnet publisher\fnplicensingservice.exe" <Not Verified; Macrovision Europe Ltd.; FLEXnet Publisher (32 bit)>

S3 ServiceLayer - "c:\program files\pc connectivity solution\servicelayer.exe" <Not Verified; Nokia.; PC Connectivity Solution>

 

 

-- Device Manager: Disabled ----------------------------------------------------

 

No disabled devices found.

 

 

-- Scheduled Tasks -------------------------------------------------------------

 

2008-05-12 14:36:11 284 --a----c- C:\WINDOWS\Tasks\AppleSoftwareUpdate.job

 

 

-- Files created between 2008-04-19 and 2008-05-19 -----------------------------

 

2008-05-17 16:12:29 5236768 --ahs--c- C:\WINDOWS\system32\drivers\fidbox.dat

2008-05-17 16:03:57 0 d------c- C:\Documents and Settings\All Users.WINDOWS\Application Data\MailFrontier

2008-05-17 16:03:29 4212 ---h---c- C:\WINDOWS\system32\zllictbl.dat

2008-05-17 16:02:47 11264 --a----c- C:\WINDOWS\system32\SpOrder.dll <Not Verified; Microsoft Corporation; Microsoft® Windows NT Operating System>

2008-05-17 16:01:23 0 d------c- C:\WINDOWS\system32\ZoneLabs

2008-05-17 16:00:12 0 d------c- C:\WINDOWS\Internet Logs

2008-05-15 19:54:48 0 d------c- C:\Documents and Settings\ange\Application Data\Icone

2008-05-13 03:53:16 3596288 --a----c- C:\WINDOWS\system32\qt-dx331.dll

2008-05-13 03:50:16 196608 --a----c- C:\WINDOWS\system32\dtu100.dll <Not Verified; DivX, Inc.; DivX, Inc. dtu100>

2008-05-13 03:50:16 81920 --a----c- C:\WINDOWS\system32\dpl100.dll <Not Verified; DivX, Inc.; DivX, Inc. dpl100>

2008-05-13 03:50:08 802816 --a----c- C:\WINDOWS\system32\divx_xx11.dll <Not Verified; DivX, Inc.; DivX?>

2008-05-13 03:50:08 823296 --a----c- C:\WINDOWS\system32\divx_xx0c.dll <Not Verified; DivX, Inc.; DivX®>

2008-05-13 03:50:08 831488 --a----c- C:\WINDOWS\system32\divx_xx0a.dll

2008-05-13 03:50:08 823296 --a----c- C:\WINDOWS\system32\divx_xx07.dll <Not Verified; DivX, Inc.; DivX®>

2008-05-13 03:50:06 682496 --a----c- C:\WINDOWS\system32\DivX.dll <Not Verified; DivX, Inc.; DivX®>

2008-05-13 03:49:02 12288 --a----c- C:\WINDOWS\system32\DivXWMPExtType.dll

2008-05-07 18:04:33 0 d-------- C:\Documents and Settings\fille.TITANIUM\Application Data\Real

2008-05-07 00:13:36 0 d-------- C:\Program Files\Fichiers communs\Blizzard Entertainment

2008-05-07 00:13:11 0 d-------- C:\Program Files\World of Warcraft Trial

2008-05-06 20:29:09 47360 --a----c- C:\WINDOWS\system32\drivers\pcouffin.sys <Not Verified; VSO Software; Patin couffin engine>

2008-05-06 20:29:09 0 d------c- C:\Documents and Settings\ange\Application Data\Vso

2008-05-06 20:29:09 47360 --a----c- C:\Documents and Settings\ange\Application Data\pcouffin.sys <Not Verified; VSO Software; Patin couffin engine>

2008-05-06 20:29:09 81920 --a----c- C:\Documents and Settings\ange\Application Data\ezpinst.exe

2008-05-06 20:04:18 0 d------c- C:\Documents and Settings\ange\Application Data\Real

2008-04-29 15:35:12 0 d-------- C:\Program Files\Seagrand

2008-04-29 15:31:50 0 d-------- C:\Program Files\PhotoFiltre

2008-04-29 15:26:09 0 d-------- C:\Program Files\Pixiphot

2008-04-28 19:22:55 0 d-------- C:\Program Files\AviSynth 2.5

2008-04-28 18:44:48 0 d-------- C:\Program Files\DVDStyler

 

 

-- Find3M Report ---------------------------------------------------------------

 

2008-05-19 22:09:49 0 d-------- C:\Program Files\Trend Micro

2008-05-19 21:34:01 53 --a----c- C:\biosinfo

2008-05-19 20:25:11 0 d-------- C:\Program Files\eMule

2008-05-18 20:50:32 0 d-------- C:\Program Files\Java

2008-05-18 16:44:32 0 d-a----c- C:\Documents and Settings\ange\Application Data\OpenOffice.org2

2008-05-17 02:24:04 0 d-------- C:\Program Files\DivX

2008-05-15 23:11:10 0 d-------- C:\Program Files\Bonjour

2008-05-15 23:09:39 0 d-------- C:\Program Files\CyberLink

2008-05-13 00:17:29 0 d-------- C:\Program Files\Windows Live Safety Center

2008-05-07 00:13:36 0 d-------- C:\Program Files\Fichiers communs

2008-05-06 20:29:34 34 --a----c- C:\Documents and Settings\ange\Application Data\pcouffin.log

2008-05-06 20:29:10 1144 --a----c- C:\Documents and Settings\ange\Application Data\pcouffin.inf

2008-05-06 20:29:10 7176 --a----c- C:\Documents and Settings\ange\Application Data\pcouffin.cat

2008-04-28 19:15:35 0 d-------- C:\Program Files\movie maker

2008-04-24 01:13:16 0 d-------- C:\Program Files\Google

2008-04-24 01:12:18 0 d-------- C:\Program Files\Norton Security Scan

2008-04-24 01:12:15 0 d-------- C:\Program Files\Fichiers communs\Symantec Shared

2008-04-22 11:53:49 0 d-------- C:\Program Files\Windows Live

2008-04-22 11:48:51 526166 --a----c- C:\WINDOWS\system32\perfh00C.dat

2008-04-22 11:48:51 90560 --a----c- C:\WINDOWS\system32\perfc00C.dat

2008-04-20 00:42:12 0 d-a----c- C:\Documents and Settings\ange\Application Data\Apple Computer

2008-04-14 14:49:58 0 d-------- C:\Program Files\Safari

2008-04-14 14:48:57 0 d-------- C:\Program Files\iTunes

2008-04-14 14:48:36 0 d-------- C:\Program Files\iPod

2008-04-14 14:45:39 0 d-------- C:\Program Files\QuickTime

2008-04-03 23:03:56 0 d-------- C:\Program Files\Microsoft Silverlight

2008-04-03 22:52:28 0 d-------- C:\Program Files\MSECache

2008-04-02 22:02:03 0 d-------- C:\Program Files\Messenger Plus! Live

2008-03-29 21:18:27 0 d-a----c- C:\Documents and Settings\ange\Application Data\Grisoft

2008-03-28 13:52:42 0 d-------- C:\Program Files\YesMessenger

2008-03-25 13:03:28 0 d-------- C:\Program Files\Linearteam

2008-03-25 13:02:39 0 d-------- C:\Program Files\VstPlugins

2008-03-25 12:21:59 0 d-------- C:\Program Files\Free Download Manager

2008-03-23 01:27:32 0 d-------- C:\Program Files\OpenOffice.org 2.3

2008-03-23 00:05:05 0 d-------- C:\Program Files\VideoLAN

2008-03-23 00:04:20 0 d-------- C:\Program Files\Apple Software Update

2008-03-23 00:02:28 0 d-------- C:\Program Files\MSN Reaper

2008-03-23 00:00:55 0 d-------- C:\Program Files\LimeWire

2008-03-22 23:10:06 0 d-------- C:\Program Files\MP3 EasySplitter Trial

2008-03-22 22:53:31 0 d-------- C:\Program Files\Image-Line

2008-03-22 18:26:10 0 d-a----c- C:\Documents and Settings\ange\Application Data\Ahead

2008-03-22 17:22:19 0 d-------- C:\Program Files\Shareaza

2008-03-22 12:21:11 0 d-------- C:\Program Files\eChanblard

 

 

-- Registry Dump ---------------------------------------------------------------

 

*Note* empty entries & legit default entries are not shown

 

 

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{100EB1FD-D03E-47FD-81F3-EE91287F9465}]

 

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{5ABBD91B-0215-2FE1-7A7E-753F05B40CB8}]

C:\Program Files\BrowsingEnhancer\BrowsingEnhancer-4.dll

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [01/06/2006 11:22]

"NvMediaCenter"="NvMCTray.dll" [01/06/2006 11:22 C:\WINDOWS\system32\nvmctray.dll]

"nwiz"="nwiz.exe" [01/06/2006 11:22 C:\WINDOWS\system32\nwiz.exe]

"SW20"="C:\WINDOWS\system32\sw20.exe" [18/05/2006 03:15]

"SW24"="C:\WINDOWS\system32\sw24.exe" [17/05/2006 04:37]

"RaidTool"="C:\Program Files\VIA\RAID\raid_tool.exe" [23/11/2005 04:12]

"RTHDCPL"="RTHDCPL.EXE" [17/04/2006 09:34 C:\WINDOWS\RTHDCPL.exe]

"Alcmtr"="ALCMTR.EXE" [03/05/2005 12:43 C:\WINDOWS\Alcmtr.exe]

"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [09/07/2001 11:50]

"BluetoothAuthenticationAgent"="bthprops.cpl" [04/08/2004 02:55 C:\WINDOWS\system32\bthprops.cpl]

"pccguide.exe"="C:\Program Files\Trend Micro\Internet Security 12\pccguide.exe" [27/10/2004 11:05]

"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" [12/07/2007 04:00]

"MaxBlastMonitor.exe"="C:\Program Files\Maxtor\MaxBlast\MaxBlastMonitor.exe" [15/06/2007 09:55]

"AcronisTimounterMonitor"="C:\Program Files\Maxtor\MaxBlast\TimounterMonitor.exe" [15/06/2007 09:58]

"Acronis Scheduler2 Service"="C:\Program Files\Fichiers communs\Maxtor\Schedule2\schedhlp.exe" [14/06/2007 17:43]

"BTUSRBDG"="BtUsrBdg.exe" [05/11/2003 22:21 C:\WINDOWS\system32\BtUsrBdg.exe]

"BTSETBOOTKEY"="BTSetBootKey.exe" [15/04/2003 10:48 C:\WINDOWS\system32\BTSetBootKey.exe]

"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [12/05/2005 00:12]

"MbarInstall"="C:\DOCUME~1\john\Local Settings\Temp\tem69.tmp.exe" []

"EoEngine"="" []

"EoWeather"="" []

"ItsTV"="C:\Program Files\Its Label\ItsTV\ItsTV.exe" []

"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [11/01/2008 23:16]

"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [28/03/2008 23:37]

"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [30/03/2008 10:36]

"TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [06/05/2008 20:04]

"RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" []

"LanguageShortcut"="C:\Program Files\CyberLink\PowerDVD\Language\Language.exe" []

 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [28/03/2008 23:37]

"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [04/08/2004 02:54]

"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [28/01/2008 12:43]

"NBJ"="C:\Program Files\Ahead\Nero BackItUp\NBJ.exe" [10/02/2006 22:40]

"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [23/03/2008 00:47]

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]

"DisableRegistryTools"=0 (0x0)

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [05/02/2007 15:39 294400]

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]

"Authentication Packages"= msv1_0 relog_ap

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

@="Service"

 

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

bthsvcs BthServ

 

 

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{42a6a5f9-0034-11dd-9c66-001617cb72fa}]

AutoRun\command- C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL wscript.exe MS32DLL.dll.vbs

 

 

 

 

-- Hosts -----------------------------------------------------------------------

 

127.0.0.1 007guard.com

127.0.0.1 www.007guard.com

127.0.0.1 008i.com

127.0.0.1 008k.com

127.0.0.1 www.008k.com

127.0.0.1 00hq.com

127.0.0.1 www.00hq.com

127.0.0.1 010402.com

127.0.0.1 032439.com

127.0.0.1 www.032439.com

 

8471 more entries in hosts file.

 

 

-- End of Deckard's System Scanner: finished at 2008-05-19 22:15:16 ------------

Rejoindre la conversation

Vous pouvez publier maintenant et vous inscrire plus tard. Si vous avez un compte, connectez-vous maintenant pour publier avec votre compte.
Remarque : votre message nécessitera l’approbation d’un modérateur avant de pouvoir être visible.

Invité
Répondre à ce sujet…

×   Collé en tant que texte enrichi.   Coller en tant que texte brut à la place

  Seulement 75 émoticônes maximum sont autorisées.

×   Votre lien a été automatiquement intégré.   Afficher plutôt comme un lien

×   Votre contenu précédent a été rétabli.   Vider l’éditeur

×   Vous ne pouvez pas directement coller des images. Envoyez-les depuis votre ordinateur ou insérez-les depuis une URL.

×
 Partager
Aller sur la liste des sujets

  • En ligne récemment   0 membre est en ligne

    • Aucun utilisateur enregistré regarde cette page.
×
×
  • Créer...