Aller au contenu

  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

gros probleme wind xp pro

issuzu

Par issuzu
dans Analyses et éradication malwares

 Partager

Messages recommandés

pear Devil Member !

pear

Posté(e)
Posté(e)

Bonjour,

 

Tentez ceci:

Télécharger System Repair Engineer - SREng (par Smallfrogs) sur le Bureau :

clic droit sur le fichier .zip -> "Extraire tout..."

double-cliquer sur SREngPS.exe afin de lancer l'outil

Cliquer sur Smart Scan

Cliquer sur le boutonScan.

L'analyse durera quelques instants, surtout si le fichier Hosts est important.

Patientez

Cliquer sur le bouton Save Reports pour Sauvegarder le rapport sur le Bureau

Copier/coller le contenu du fichier SREnglLOG.log dans la prochaine réponse.

  • 1 mois après...
issuzu Junior Member

issuzu

Posté(e)
  • Auteur
Posté(e)

Bonjour, me revoila apres une tres longue absence, desoler, etant nouveau pere de famille, j'avais pas le temps de m'y remettre.

voici le raport SRE.

 

CODE]

 

2010-04-27,14:56:38

 

System Repair Engineer 2.8.2.1321

Smallfrogs (http://www.KZTechs.com'>http://www.KZTechs.com)

 

Windows XP Professional Service Pack 1 (Build 2600) - Administrative User - Completed Functions Allowed

 

Follow item(s) have been selected:

All Boot Items (Including Registry, Startup Folders, Services and so on)

Browser Add-ons

Running Processes (Including process model information)

File Associations

Winsock Provider

Autorun.Inf

HOSTS File

Process Privileges Scan

Scheduled Tasks

Windows Security Update Check

API HOOK

Hidden Process

 

 

Boot Items

Registry

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

<CTFMON.EXE><C:\WINDOWS\System32\CTFMON.EXE> [(Verified)Microsoft Windows XP Publisher]

[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]

<load><> [N/A]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

<SiSUSBRG><C:\WINDOWS\SiSUSBrg.exe> [silicon Integrated Systems Corp.]

<IntelliType><"C:\Program Files\Microsoft Hardware\Keyboard\type32.exe"> [Microsoft Corporation]

<KernelFaultCheck><%systemroot%\system32\dumprep 0 -k> [File is missing]

<Dit><Dit.exe> [iCSI]

<Ulead AutoDetector><C:\Program Files\Ulead Systems\Ulead Photo Explorer 8.0 SE\Monitor.exe> [ulead Systems, Inc.]

<PinnacleDriverCheck><C:\WINDOWS\System32\PSDrvCheck.exe -CheckReg> []

<PaperPort PTD><C:\Program Files\Scansoft\PaperPort\pptd40nt.exe> [scanSoft, Inc.]

<IndexSearch><C:\Program Files\Scansoft\PaperPort\IndexSearch.exe> []

<SunJavaUpdateSched><C:\Program Files\Java\jre1.5.0\bin\jusched.exe> [sun Microsystems, Inc.]

<QuickTime Task><"C:\Program Files\QuickTime\qttask.exe" -atboottime> [Apple Computer, Inc.]

<WOOWATCH><C:\PROGRA~1\WANADOO\Watch.exe> [France Télécom R&D]

<WOOTASKBARICON><C:\PROGRA~1\WANADOO\GestMaj.exe TaskBarIcon.exe> [File is missing]

<lxddmon.exe><"C:\Program Files\Lexmark 2500 Series\lxddmon.exe"> [(Verified)Lexmark International, Inc.]

<lxddamon><"C:\Program Files\Lexmark 2500 Series\lxddamon.exe"> [Lexmark]

<NPSStartup><> [N/A]

<avast5><C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui> [(Verified)ALWIL Software]

<NeroFilterCheck><C:\WINDOWS\system32\NeroCheck.exe> [Ahead Software Gmbh]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]

<shell><Explorer.exe> [(Verified)Microsoft Windows XP Publisher]

<Userinit><C:\WINDOWS\system32\userinit.exe,> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]

<AppInit_DLLs><> [N/A]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]

<UIHost><logonui.exe> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

<{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

<PostBootReminder><%SystemRoot%\system32\SHELL32.dll> [(Verified)Microsoft Windows XP Publisher]

<CDBurn><%SystemRoot%\system32\SHELL32.dll> [(Verified)Microsoft Windows XP Publisher]

<WebCheck><%SystemRoot%\System32\webcheck.dll> [(Verified)Microsoft Windows XP Publisher]

<SysTray><C:\WINDOWS\System32\stobject.dll> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]

<WinlogonNotify: crypt32chain><crypt32.dll> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]

<WinlogonNotify: cryptnet><cryptnet.dll> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]

<WinlogonNotify: cscdll><cscdll.dll> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]

<WinlogonNotify: ScCertProp><wlnotify.dll> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]

<WinlogonNotify: Schedule><wlnotify.dll> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]

<WinlogonNotify: sclgntfy><sclgntfy.dll> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]

<WinlogonNotify: SensLogn><WlNotify.dll> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]

<WinlogonNotify: termsrv><wlnotify.dll> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]

<WinlogonNotify: wlballoon><wlnotify.dll> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]

<{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\System32\browseui.dll> [(Verified)Microsoft Windows Component Publisher]

<{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\System32\browseui.dll> [(Verified)Microsoft Windows Component Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]

<Lecteur Windows Media><C:\WINDOWS\inf\unregmp2.exe /ShowWMP> [Microsoft Corporation]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]

<Internet Explorer><%systemroot%\system32\shmgrate.exe OCInstallUserConfigIE> [File is missing]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]

<Personnalisation du navigateur><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]

<Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE> [File is missing]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]

<Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll> [File is missing]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{306D6C21-C1B6-4629-986C-E59E1875B8AF}]

<N/A><"C:\WINDOWS\System32\rundll32.exe" "C:\Program Files\Messenger\msgsc.dll",ShowIconsUser> [(Verified)Microsoft Corporation]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]

<Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install> [File is missing]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]

<NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]

<Windows Messenger><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.Install.PerUser> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]

<Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp.inf,PerUserStub> []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]

<Carnet d'adresses 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install> [File is missing]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]

<Mise à jour du Bureau Windows><regsvr32.exe /s /n /i:U shell32.dll> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]

<Internet Explorer 6><%SystemRoot%\system32\ie4uinit.exe> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]

<N/A><C:\WINDOWS\System32\Rundll32.exe C:\WINDOWS\System32\mscories.dll,Install> [Microsoft Corporation]

[HKEY_CURRENT_USER\Control Panel\Desktop]

<SCRNSAVE.EXE><%SystemRoot%\System32\logon.scr> [(Verified)Microsoft Windows XP Publisher]

 

==================================

Startup Folders

[smartUI]

<C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\SmartUI.lnk --> C:\PROGRA~1\Scansoft\PAPERP~1\SmartUI\SmartUI.exe [scansoft, Inc.]><N>

 

==================================

Services

[avast! Antivirus / avast! Antivirus][stopped/Auto Start]

<"C:\Program Files\Alwil Software\Avast5\AvastSvc.exe"><ALWIL Software>

[avast! Mail Scanner / avast! Mail Scanner][stopped/Manual Start]

<"C:\Program Files\Alwil Software\Avast5\AvastSvc.exe"><ALWIL Software>

[avast! Web Scanner / avast! Web Scanner][stopped/Manual Start]

<"C:\Program Files\Alwil Software\Avast5\AvastSvc.exe"><ALWIL Software>

[boonty Games / Boonty Games][stopped/Manual Start]

<"C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe"><BOONTY>

[FsUsbExService / FsUsbExService][stopped/Auto Start]

<C:\WINDOWS\System32\FsUsbExService.Exe><Teruten>

[France Telecom Routing Table Service / FTRTSVC][stopped/Auto Start]

<C:\WINDOWS\System32\FTRTSVC.exe><France Telecom>

[getPlus® Helper / getPlusHelper][stopped/Manual Start]

<C:\WINDOWS\System32\svchost.exe -k getPlusHelper-->C:\Program Files\NOS\bin\getPlus_Helper.dll><N/A>

[Accès du périphérique d'interface utilisateur / HidServ][stopped/Disabled]

<C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>

[installDriver Table Manager / IDriverT][stopped/Manual Start]

<"C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe"><Macrovision Corporation>

[lxddCATSCustConnectService / lxddCATSCustConnectService][stopped/Auto Start]

<C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxddserv.exe><Lexmark International, Inc.>

[lxdd_device / lxdd_device][stopped/Auto Start]

<C:\WINDOWS\System32\lxddcoms.exe -service><>

[service de numéro de série du lecteur multimédia portable / WmdmPmSN][stopped/Manual Start]

<C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\WINDOWS\System32\mspmsnsv.dll><Microsoft Corporation>

 

==================================

Drivers

[speedTouch USB ADSL PPP Networking Driver (NDISWAN) / alcan5wn][stopped/Manual Start]

<System32\DRIVERS\alcan5wn.sys><THOMSON>

[speedTouch ADSL Modem ATM Transport / alcaudsl][stopped/Manual Start]

<System32\DRIVERS\alcaudsl.sys><THOMSON>

[ASAPIW2k / ASAPIW2k][Running/Manual Start]

<system32\drivers\ASAPIW2k.sys><Pinnacle Systems GmbH>

[basic2 / basic2][stopped/Manual Start]

<System32\DRIVERS\HSF_BSC2.sys><Conexant>

[Pilote de filtre Brother MFC / brfilt][stopped/Manual Start]

<System32\Drivers\Brfilt.sys><Brother Industries Ltd.>

[Pilote d'image parallèle multifonction Brother / brparimg][stopped/Manual Start]

<System32\DRIVERS\BrParImg.sys><Brother Industries Ltd.>

[Pilote parallèle WDM Brother / BrParWdm][stopped/Manual Start]

<System32\Drivers\BrParwdm.sys><Brother Industries Ltd.>

[Pilote série Brother / BrSerWDM][stopped/Manual Start]

<System32\Drivers\BrSerWdm.sys><Brother Industries Ltd.>

[C-Media WDM Audio Interface / cmuda][stopped/Manual Start]

<system32\drivers\cmuda.sys><N/A>

[Pilote de la carte EtherLink XL 90XB/C 3Com / EL90XBC][Running/Manual Start]

<System32\DRIVERS\el90xbc5.sys><3Com Corporation>

[Fallback / Fallback][stopped/Auto Start]

<System32\DRIVERS\HSF_FALL.sys><Conexant>

[Fsks / Fsks][stopped/Auto Start]

<System32\DRIVERS\HSF_FSKS.sys><Conexant>

[FsUsbExDisk / FsUsbExDisk][stopped/Manual Start]

<\??\C:\WINDOWS\System32\FsUsbExDisk.SYS><N/A>

[hsf_msft / hsf_msft][stopped/Manual Start]

<System32\DRIVERS\HSF_MSFT.sys><Conexant>

[K56 / K56][stopped/Auto Start]

<System32\DRIVERS\HSF_K56K.sys><Conexant>

[Pinnacle Marvin Bus / MarvinBus][Running/Manual Start]

<System32\DRIVERS\MarvinBus.sys><Pinnacle Systems GmbH>

[nv4 / nv4][stopped/Manual Start]

<System32\DRIVERS\nv4.sys><NVIDIA Corporation>

[PCAMPR5 NDIS Protocol Driver / PCAMPR5][stopped/Manual Start]

<\??\C:\WINDOWS\System32\PCAMPR5.SYS><N/A>

[PCANDIS5 NDIS Protocol Driver / PCANDIS5][stopped/Manual Start]

<\??\C:\WINDOWS\System32\PCANDIS5.SYS><Printing Communications Assoc., Inc. (PCAUSA)>

[PCLEPCI / PCLEPCI][stopped/System Start]

<\??\C:\WINDOWS\System32\drivers\pclepci.sys><Pinnacle Systems GmbH>

[Pilote de liaison parallèle directe / Ptilink][Running/Manual Start]

<System32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>

[PzWDM / PzWDM][Running/Boot Start]

<\SystemRoot\System32\Drivers\PzWDM.sys><Prassi Technology>

[Rksample / Rksample][stopped/Manual Start]

<System32\DRIVERS\HSF_SAMP.sys><Conexant>

[secdrv / Secdrv][stopped/Auto Start]

<System32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>

[service for AC'97 Sample Driver (WDM) / SiS7012][stopped/Manual Start]

<system32\drivers\sis7012.sys><Silicon Integrated Systems Corporation>

[siS AGP Filter / sisagp][Running/Boot Start]

<\SystemRoot\System32\DRIVERS\SISAGPX.sys><Silicon Integrated Systems Corporation>

[siSide / SiSide][Running/Boot Start]

<\SystemRoot\System32\DRIVERS\siside.sys><Silicon Integrated Systems Corp.>

[sisidex / sisidex][Running/Boot Start]

<\SystemRoot\system32\drivers\sisidex.sys><Windows ® 2000 DDK provider>

[Add Performance Filter Driver / sisperf][Running/Boot Start]

<\SystemRoot\system32\drivers\sisperf.sys><Silicon Integrated Systems Corp.>

[softFax / SoftFax][stopped/Auto Start]

<System32\DRIVERS\HSF_FAXX.sys><Conexant>

[sptd / sptd][Running/Boot Start]

<\SystemRoot\System32\Drivers\sptd.sys><N/A>

[sSHDRV82 / SSHDRV82][Running/System Start]

<\??\C:\WINDOWS\System32\drivers\SSHDRV82.sys><>

[sAMSUNG Mobile USB Device 1.0 driver (WDM) / ss_bus][stopped/Manual Start]

<System32\DRIVERS\ss_bus.sys><MCCI Corporation>

[sAMSUNG Mobile USB Modem 1.0 Filter / ss_mdfl][stopped/Manual Start]

<System32\DRIVERS\ss_mdfl.sys><MCCI Corporation>

[sAMSUNG Mobile USB Modem 1.0 Drivers / ss_mdm][stopped/Manual Start]

<System32\DRIVERS\ss_mdm.sys><MCCI Corporation>

[Tones / Tones][stopped/Auto Start]

<System32\DRIVERS\HSF_TONE.sys><Conexant>

[uSBIO Driver (usbio.sys) / USBIO][stopped/Manual Start]

<System32\Drivers\usbio.sys><Thesycon GmbH, Germany>

[V124 / V124][stopped/Auto Start]

<System32\DRIVERS\HSF_V124.sys><Conexant>

[WAN Miniport (ATW) / wanatw][stopped/Manual Start]

<System32\DRIVERS\wanatw4.sys><N/A>

 

==================================

Browser Add-ons

[Lexmark Barre d'outils]

{1017A80C-6F09-4548-A84D-EDD6AC9525F0} <C:\Program Files\Lexmark Toolbar\toolband.dll, N/A>

[Java Plug-in 1.5.0]

{08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll, Sun Microsystems, Inc.>

[&Rechercher]

{92780B25-18CC-41C8-B9BE-3C9C571A8263} <D:\MICROS~1\OFFICE11\REFIEBAR.DLL, (Signed) Microsoft Corporation>

[]

{CD67F990-D8E9-11d2-98FE-00C0F0318AFE} <, >

[&Radio]

{8E718888-423F-11D2-876E-00A0C9082467} <C:\WINDOWS\System32\msdxm.ocx, (Signed) Microsoft Corporation>

[Lexmark Barre d'outils]

{1017A80C-6F09-4548-A84D-EDD6AC9525F0} <C:\Program Files\Lexmark Toolbar\toolband.dll, N/A>

[shockwave ActiveX Control]

{166B1BCA-3F9C-11CF-8075-444553540000} <C:\WINDOWS\System32\Adobe\Director\SwDir.dll, N/A>

[shockwave Flash Object]

{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\System32\Macromed\Flash\Flash10c.ocx, (Signed) Adobe Systems, Inc.>

[]

{E2883E8F-472F-4FB0-9522-AC9BF37916A7} <, >

 

==================================

Running Processes

[PID: 404 / SYSTEM][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)]

[PID: 528 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]

[PID: 552 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)]

[PID: 596 / SYSTEM][C:\WINDOWS\system32\services.exe] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]

[PID: 608 / SYSTEM][C:\WINDOWS\system32\lsass.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)]

[PID: 760 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]

[PID: 792 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]

[PID: 848 / SERVICE RÉSEAU][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]

[PID: 860 / SERVICE LOCAL][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]

[PID: 1112 / SYSTEM][C:\WINDOWS\PCHealth\HelpCtr\Binaries\HelpSvc.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)]

[PID: 1272 / Administrateur][C:\WINDOWS\Explorer.EXE] [Microsoft Corporation, 6.00.2800.1221 (xpsp2.030511-1403)]

[PID: 1776 / Administrateur][G:\sreng2\SREngLdr.EXE] [smallfrogs Studio, 2.8.2.1321]

[PID: 1788 / Administrateur][G:\sreng2\SRE234c011a.EXE] [smallfrogs Studio, 2.8.2.1321]

[G:\sreng2\Upload\3rdUpd.DLL] [smallfrogs Studio, 2, 1, 0, 15]

 

==================================

File Associations

.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]

.EXE OK. ["%1" %*]

.COM OK. ["%1" %*]

.PIF OK. ["%1" %*]

.REG OK. [regedit.exe "%1"]

.BAT OK. ["%1" %*]

.SCR OK. ["%1" /S]

.CHM OK. ["C:\WINDOWS\hh.exe" %1]

.HLP OK. [%SystemRoot%\system32\winhlp32.exe %1]

.INI OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]

.INF OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]

.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]

.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]

.LNK OK. [{00021401-0000-0000-C000-000000000046}]

 

==================================

Winsock Provider

N/A

 

==================================

Autorun.Inf

N/A

 

==================================

HOSTS File

127.0.0.1 localhost

 

==================================

Process Privileges Scan

N/A

 

==================================

Scheduled Tasks

N/A

 

==================================

Windows Security Update Check

N/A

 

==================================

API HOOK

N/A

 

==================================

Hidden Process

N/A

 

==================================

 

 

[/code]

 

 

cordiallement

 

Bonjour, me revoila apres une tres longue absence, desoler, etant nouveau pere de famille, j'avais pas le temps de m'y remettre.

voici le raport SRE.

 

CODE]

 

2010-04-27,14:56:38

 

System Repair Engineer 2.8.2.1321

Smallfrogs (http://www.KZTechs.com)

 

Windows XP Professional Service Pack 1 (Build 2600) - Administrative User - Completed Functions Allowed

 

Follow item(s) have been selected:

All Boot Items (Including Registry, Startup Folders, Services and so on)

Browser Add-ons

Running Processes (Including process model information)

File Associations

Winsock Provider

Autorun.Inf

HOSTS File

Process Privileges Scan

Scheduled Tasks

Windows Security Update Check

API HOOK

Hidden Process

 

 

Boot Items

Registry

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

<CTFMON.EXE><C:\WINDOWS\System32\CTFMON.EXE> [(Verified)Microsoft Windows XP Publisher]

[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]

<load><> [N/A]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

<SiSUSBRG><C:\WINDOWS\SiSUSBrg.exe> [silicon Integrated Systems Corp.]

<IntelliType><"C:\Program Files\Microsoft Hardware\Keyboard\type32.exe"> [Microsoft Corporation]

<KernelFaultCheck><%systemroot%\system32\dumprep 0 -k> [File is missing]

<Dit><Dit.exe> [iCSI]

<Ulead AutoDetector><C:\Program Files\Ulead Systems\Ulead Photo Explorer 8.0 SE\Monitor.exe> [ulead Systems, Inc.]

<PinnacleDriverCheck><C:\WINDOWS\System32\PSDrvCheck.exe -CheckReg> []

<PaperPort PTD><C:\Program Files\Scansoft\PaperPort\pptd40nt.exe> [scanSoft, Inc.]

<IndexSearch><C:\Program Files\Scansoft\PaperPort\IndexSearch.exe> []

<SunJavaUpdateSched><C:\Program Files\Java\jre1.5.0\bin\jusched.exe> [sun Microsystems, Inc.]

<QuickTime Task><"C:\Program Files\QuickTime\qttask.exe" -atboottime> [Apple Computer, Inc.]

<WOOWATCH><C:\PROGRA~1\WANADOO\Watch.exe> [France Télécom R&D]

<WOOTASKBARICON><C:\PROGRA~1\WANADOO\GestMaj.exe TaskBarIcon.exe> [File is missing]

<lxddmon.exe><"C:\Program Files\Lexmark 2500 Series\lxddmon.exe"> [(Verified)Lexmark International, Inc.]

<lxddamon><"C:\Program Files\Lexmark 2500 Series\lxddamon.exe"> [Lexmark]

<NPSStartup><> [N/A]

<avast5><C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui> [(Verified)ALWIL Software]

<NeroFilterCheck><C:\WINDOWS\system32\NeroCheck.exe> [Ahead Software Gmbh]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]

<shell><Explorer.exe> [(Verified)Microsoft Windows XP Publisher]

<Userinit><C:\WINDOWS\system32\userinit.exe,> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]

<AppInit_DLLs><> [N/A]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]

<UIHost><logonui.exe> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]

<{AEB6717E-7E19-11d0-97EE-00C04FD91972}><shell32.dll> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

<PostBootReminder><%SystemRoot%\system32\SHELL32.dll> [(Verified)Microsoft Windows XP Publisher]

<CDBurn><%SystemRoot%\system32\SHELL32.dll> [(Verified)Microsoft Windows XP Publisher]

<WebCheck><%SystemRoot%\System32\webcheck.dll> [(Verified)Microsoft Windows XP Publisher]

<SysTray><C:\WINDOWS\System32\stobject.dll> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]

<WinlogonNotify: crypt32chain><crypt32.dll> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]

<WinlogonNotify: cryptnet><cryptnet.dll> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]

<WinlogonNotify: cscdll><cscdll.dll> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]

<WinlogonNotify: ScCertProp><wlnotify.dll> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]

<WinlogonNotify: Schedule><wlnotify.dll> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]

<WinlogonNotify: sclgntfy><sclgntfy.dll> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]

<WinlogonNotify: SensLogn><WlNotify.dll> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]

<WinlogonNotify: termsrv><wlnotify.dll> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]

<WinlogonNotify: wlballoon><wlnotify.dll> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]

<{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\System32\browseui.dll> [(Verified)Microsoft Windows Component Publisher]

<{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\System32\browseui.dll> [(Verified)Microsoft Windows Component Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]

<Lecteur Windows Media><C:\WINDOWS\inf\unregmp2.exe /ShowWMP> [Microsoft Corporation]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]

<Internet Explorer><%systemroot%\system32\shmgrate.exe OCInstallUserConfigIE> [File is missing]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]

<Personnalisation du navigateur><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]

<Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE> [File is missing]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]

<Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll> [File is missing]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{306D6C21-C1B6-4629-986C-E59E1875B8AF}]

<N/A><"C:\WINDOWS\System32\rundll32.exe" "C:\Program Files\Messenger\msgsc.dll",ShowIconsUser> [(Verified)Microsoft Corporation]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]

<Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install> [File is missing]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]

<NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]

<Windows Messenger><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.Install.PerUser> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]

<Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp.inf,PerUserStub> []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]

<Carnet d'adresses 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install> [File is missing]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]

<Mise à jour du Bureau Windows><regsvr32.exe /s /n /i:U shell32.dll> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]

<Internet Explorer 6><%SystemRoot%\system32\ie4uinit.exe> [(Verified)Microsoft Windows XP Publisher]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]

<N/A><C:\WINDOWS\System32\Rundll32.exe C:\WINDOWS\System32\mscories.dll,Install> [Microsoft Corporation]

[HKEY_CURRENT_USER\Control Panel\Desktop]

<SCRNSAVE.EXE><%SystemRoot%\System32\logon.scr> [(Verified)Microsoft Windows XP Publisher]

 

==================================

Startup Folders

[smartUI]

<C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\SmartUI.lnk --> C:\PROGRA~1\Scansoft\PAPERP~1\SmartUI\SmartUI.exe [scansoft, Inc.]><N>

 

==================================

Services

[avast! Antivirus / avast! Antivirus][stopped/Auto Start]

<"C:\Program Files\Alwil Software\Avast5\AvastSvc.exe"><ALWIL Software>

[avast! Mail Scanner / avast! Mail Scanner][stopped/Manual Start]

<"C:\Program Files\Alwil Software\Avast5\AvastSvc.exe"><ALWIL Software>

[avast! Web Scanner / avast! Web Scanner][stopped/Manual Start]

<"C:\Program Files\Alwil Software\Avast5\AvastSvc.exe"><ALWIL Software>

[boonty Games / Boonty Games][stopped/Manual Start]

<"C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe"><BOONTY>

[FsUsbExService / FsUsbExService][stopped/Auto Start]

<C:\WINDOWS\System32\FsUsbExService.Exe><Teruten>

[France Telecom Routing Table Service / FTRTSVC][stopped/Auto Start]

<C:\WINDOWS\System32\FTRTSVC.exe><France Telecom>

[getPlus® Helper / getPlusHelper][stopped/Manual Start]

<C:\WINDOWS\System32\svchost.exe -k getPlusHelper-->C:\Program Files\NOS\bin\getPlus_Helper.dll><N/A>

[Accès du périphérique d'interface utilisateur / HidServ][stopped/Disabled]

<C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>

[installDriver Table Manager / IDriverT][stopped/Manual Start]

<"C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe"><Macrovision Corporation>

[lxddCATSCustConnectService / lxddCATSCustConnectService][stopped/Auto Start]

<C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxddserv.exe><Lexmark International, Inc.>

[lxdd_device / lxdd_device][stopped/Auto Start]

<C:\WINDOWS\System32\lxddcoms.exe -service><>

[service de numéro de série du lecteur multimédia portable / WmdmPmSN][stopped/Manual Start]

<C:\WINDOWS\System32\svchost.exe -k netsvcs-->C:\WINDOWS\System32\mspmsnsv.dll><Microsoft Corporation>

 

==================================

Drivers

[speedTouch USB ADSL PPP Networking Driver (NDISWAN) / alcan5wn][stopped/Manual Start]

<System32\DRIVERS\alcan5wn.sys><THOMSON>

[speedTouch ADSL Modem ATM Transport / alcaudsl][stopped/Manual Start]

<System32\DRIVERS\alcaudsl.sys><THOMSON>

[ASAPIW2k / ASAPIW2k][Running/Manual Start]

<system32\drivers\ASAPIW2k.sys><Pinnacle Systems GmbH>

[basic2 / basic2][stopped/Manual Start]

<System32\DRIVERS\HSF_BSC2.sys><Conexant>

[Pilote de filtre Brother MFC / brfilt][stopped/Manual Start]

<System32\Drivers\Brfilt.sys><Brother Industries Ltd.>

[Pilote d'image parallèle multifonction Brother / brparimg][stopped/Manual Start]

<System32\DRIVERS\BrParImg.sys><Brother Industries Ltd.>

[Pilote parallèle WDM Brother / BrParWdm][stopped/Manual Start]

<System32\Drivers\BrParwdm.sys><Brother Industries Ltd.>

[Pilote série Brother / BrSerWDM][stopped/Manual Start]

<System32\Drivers\BrSerWdm.sys><Brother Industries Ltd.>

[C-Media WDM Audio Interface / cmuda][stopped/Manual Start]

<system32\drivers\cmuda.sys><N/A>

[Pilote de la carte EtherLink XL 90XB/C 3Com / EL90XBC][Running/Manual Start]

<System32\DRIVERS\el90xbc5.sys><3Com Corporation>

[Fallback / Fallback][stopped/Auto Start]

<System32\DRIVERS\HSF_FALL.sys><Conexant>

[Fsks / Fsks][stopped/Auto Start]

<System32\DRIVERS\HSF_FSKS.sys><Conexant>

[FsUsbExDisk / FsUsbExDisk][stopped/Manual Start]

<\??\C:\WINDOWS\System32\FsUsbExDisk.SYS><N/A>

[hsf_msft / hsf_msft][stopped/Manual Start]

<System32\DRIVERS\HSF_MSFT.sys><Conexant>

[K56 / K56][stopped/Auto Start]

<System32\DRIVERS\HSF_K56K.sys><Conexant>

[Pinnacle Marvin Bus / MarvinBus][Running/Manual Start]

<System32\DRIVERS\MarvinBus.sys><Pinnacle Systems GmbH>

[nv4 / nv4][stopped/Manual Start]

<System32\DRIVERS\nv4.sys><NVIDIA Corporation>

[PCAMPR5 NDIS Protocol Driver / PCAMPR5][stopped/Manual Start]

<\??\C:\WINDOWS\System32\PCAMPR5.SYS><N/A>

[PCANDIS5 NDIS Protocol Driver / PCANDIS5][stopped/Manual Start]

<\??\C:\WINDOWS\System32\PCANDIS5.SYS><Printing Communications Assoc., Inc. (PCAUSA)>

[PCLEPCI / PCLEPCI][stopped/System Start]

<\??\C:\WINDOWS\System32\drivers\pclepci.sys><Pinnacle Systems GmbH>

[Pilote de liaison parallèle directe / Ptilink][Running/Manual Start]

<System32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>

[PzWDM / PzWDM][Running/Boot Start]

<\SystemRoot\System32\Drivers\PzWDM.sys><Prassi Technology>

[Rksample / Rksample][stopped/Manual Start]

<System32\DRIVERS\HSF_SAMP.sys><Conexant>

[secdrv / Secdrv][stopped/Auto Start]

<System32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>

[service for AC'97 Sample Driver (WDM) / SiS7012][stopped/Manual Start]

<system32\drivers\sis7012.sys><Silicon Integrated Systems Corporation>

[siS AGP Filter / sisagp][Running/Boot Start]

<\SystemRoot\System32\DRIVERS\SISAGPX.sys><Silicon Integrated Systems Corporation>

[siSide / SiSide][Running/Boot Start]

<\SystemRoot\System32\DRIVERS\siside.sys><Silicon Integrated Systems Corp.>

[sisidex / sisidex][Running/Boot Start]

<\SystemRoot\system32\drivers\sisidex.sys><Windows ® 2000 DDK provider>

[Add Performance Filter Driver / sisperf][Running/Boot Start]

<\SystemRoot\system32\drivers\sisperf.sys><Silicon Integrated Systems Corp.>

[softFax / SoftFax][stopped/Auto Start]

<System32\DRIVERS\HSF_FAXX.sys><Conexant>

[sptd / sptd][Running/Boot Start]

<\SystemRoot\System32\Drivers\sptd.sys><N/A>

[sSHDRV82 / SSHDRV82][Running/System Start]

<\??\C:\WINDOWS\System32\drivers\SSHDRV82.sys><>

[sAMSUNG Mobile USB Device 1.0 driver (WDM) / ss_bus][stopped/Manual Start]

<System32\DRIVERS\ss_bus.sys><MCCI Corporation>

[sAMSUNG Mobile USB Modem 1.0 Filter / ss_mdfl][stopped/Manual Start]

<System32\DRIVERS\ss_mdfl.sys><MCCI Corporation>

[sAMSUNG Mobile USB Modem 1.0 Drivers / ss_mdm][stopped/Manual Start]

<System32\DRIVERS\ss_mdm.sys><MCCI Corporation>

[Tones / Tones][stopped/Auto Start]

<System32\DRIVERS\HSF_TONE.sys><Conexant>

[uSBIO Driver (usbio.sys) / USBIO][stopped/Manual Start]

<System32\Drivers\usbio.sys><Thesycon GmbH, Germany>

[V124 / V124][stopped/Auto Start]

<System32\DRIVERS\HSF_V124.sys><Conexant>

[WAN Miniport (ATW) / wanatw][stopped/Manual Start]

<System32\DRIVERS\wanatw4.sys><N/A>

 

==================================

Browser Add-ons

[Lexmark Barre d'outils]

{1017A80C-6F09-4548-A84D-EDD6AC9525F0} <C:\Program Files\Lexmark Toolbar\toolband.dll, N/A>

[Java Plug-in 1.5.0]

{08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll, Sun Microsystems, Inc.>

[&Rechercher]

{92780B25-18CC-41C8-B9BE-3C9C571A8263} <D:\MICROS~1\OFFICE11\REFIEBAR.DLL, (Signed) Microsoft Corporation>

[]

{CD67F990-D8E9-11d2-98FE-00C0F0318AFE} <, >

[&Radio]

{8E718888-423F-11D2-876E-00A0C9082467} <C:\WINDOWS\System32\msdxm.ocx, (Signed) Microsoft Corporation>

[Lexmark Barre d'outils]

{1017A80C-6F09-4548-A84D-EDD6AC9525F0} <C:\Program Files\Lexmark Toolbar\toolband.dll, N/A>

[shockwave ActiveX Control]

{166B1BCA-3F9C-11CF-8075-444553540000} <C:\WINDOWS\System32\Adobe\Director\SwDir.dll, N/A>

[shockwave Flash Object]

{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\System32\Macromed\Flash\Flash10c.ocx, (Signed) Adobe Systems, Inc.>

[]

{E2883E8F-472F-4FB0-9522-AC9BF37916A7} <, >

 

==================================

Running Processes

[PID: 404 / SYSTEM][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)]

[PID: 528 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]

[PID: 552 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)]

[PID: 596 / SYSTEM][C:\WINDOWS\system32\services.exe] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]

[PID: 608 / SYSTEM][C:\WINDOWS\system32\lsass.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)]

[PID: 760 / SYSTEM][C:\WINDOWS\system32\svchost.exe] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]

[PID: 792 / SYSTEM][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]

[PID: 848 / SERVICE RÉSEAU][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]

[PID: 860 / SERVICE LOCAL][C:\WINDOWS\System32\svchost.exe] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]

[PID: 1112 / SYSTEM][C:\WINDOWS\PCHealth\HelpCtr\Binaries\HelpSvc.exe] [Microsoft Corporation, 5.1.2600.1106 (xpsp1.020828-1920)]

[PID: 1272 / Administrateur][C:\WINDOWS\Explorer.EXE] [Microsoft Corporation, 6.00.2800.1221 (xpsp2.030511-1403)]

[PID: 1776 / Administrateur][G:\sreng2\SREngLdr.EXE] [smallfrogs Studio, 2.8.2.1321]

[PID: 1788 / Administrateur][G:\sreng2\SRE234c011a.EXE] [smallfrogs Studio, 2.8.2.1321]

[G:\sreng2\Upload\3rdUpd.DLL] [smallfrogs Studio, 2, 1, 0, 15]

 

==================================

File Associations

.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]

.EXE OK. ["%1" %*]

.COM OK. ["%1" %*]

.PIF OK. ["%1" %*]

.REG OK. [regedit.exe "%1"]

.BAT OK. ["%1" %*]

.SCR OK. ["%1" /S]

.CHM OK. ["C:\WINDOWS\hh.exe" %1]

.HLP OK. [%SystemRoot%\system32\winhlp32.exe %1]

.INI OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]

.INF OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]

.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]

.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]

.LNK OK. [{00021401-0000-0000-C000-000000000046}]

 

==================================

Winsock Provider

N/A

 

==================================

Autorun.Inf

N/A

 

==================================

HOSTS File

127.0.0.1 localhost

 

==================================

Process Privileges Scan

N/A

 

==================================

Scheduled Tasks

N/A

 

==================================

Windows Security Update Check

N/A

 

==================================

API HOOK

N/A

 

==================================

Hidden Process

N/A

 

==================================

 

 

[/code]

 

 

cordiallement

Rejoindre la conversation

Vous pouvez publier maintenant et vous inscrire plus tard. Si vous avez un compte, connectez-vous maintenant pour publier avec votre compte.
Remarque : votre message nécessitera l’approbation d’un modérateur avant de pouvoir être visible.

Invité
Répondre à ce sujet…

×   Collé en tant que texte enrichi.   Coller en tant que texte brut à la place

  Seulement 75 émoticônes maximum sont autorisées.

×   Votre lien a été automatiquement intégré.   Afficher plutôt comme un lien

×   Votre contenu précédent a été rétabli.   Vider l’éditeur

×   Vous ne pouvez pas directement coller des images. Envoyez-les depuis votre ordinateur ou insérez-les depuis une URL.

×
 Partager
Aller sur la liste des sujets

  • En ligne récemment   0 membre est en ligne

    • Aucun utilisateur enregistré regarde cette page.
×
×
  • Créer...