Rapport Hijackthis
Peffect
Messages postés
45
Statut
Membre
-
TheDarkTemplier Messages postés 173 Statut Membre -
TheDarkTemplier Messages postés 173 Statut Membre -
Bonjour,
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:43:30, on 27/07/2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\USB Disk Security\USBGuard.exe
C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\SuperCopier2\SuperCopier2.exe
C:\WINDOWS\system32\svchost.exe
C:\DOCUME~1\yacine\LOCALS~1\Temp\934.exe
C:\WINDOWS\cndrive32.exe
C:\WINDOWS\system32\msvmiode.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\DOCUME~1\yacine\LOCALS~1\Temp\218931.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O1 - Hosts: 184.55.4.236 msnfix.changelog.fr
O1 - Hosts: 184.55.4.236 www.incodesolutions.com
O1 - Hosts: 184.55.4.236 virusinfo.prevx.com
O1 - Hosts: 184.55.4.236 download.bleepingcomputer.com
O1 - Hosts: 184.55.4.236 www.dazhizhu.cn
O1 - Hosts: 184.55.4.236 foro.noticias3d.com
O1 - Hosts: 184.55.4.236 www.spybotupdates.com
O1 - Hosts: 184.55.4.236 club.myce.com
O1 - Hosts: 184.55.4.236 www.k7computing.com
O1 - Hosts: 184.55.4.236 softwaresecuritysolutions.com
O1 - Hosts: 184.55.4.236 antonbi.web.id
O1 - Hosts: 184.55.4.236 igoblog.info
O1 - Hosts: 184.55.4.236 www.nabble.com
O1 - Hosts: 184.55.4.236 lurker.clamav.net
O1 - Hosts: 184.55.4.236 lexikon.ikarus.at
O1 - Hosts: 184.55.4.236 research.sunbelt-software.com
O1 - Hosts: 184.55.4.236 www.virusdoctor.jp
O1 - Hosts: 184.55.4.236 www.elitepvpers.de
O1 - Hosts: 184.55.4.236 guru.avg.com
O1 - Hosts: 184.55.4.236 downloads.sophos.com
O1 - Hosts: 184.55.4.236 share.skype.com
O1 - Hosts: 184.55.4.236 myantispyware.com
O1 - Hosts: 184.55.4.236 www.computerhilfen.de
O1 - Hosts: 184.55.4.236 fgsite.com
O1 - Hosts: 184.55.4.236 ca.answers.yahoo.com
O1 - Hosts: 184.55.4.236 www.superuser.co.kr
O1 - Hosts: 184.55.4.236 ntfaq.co.kr
O1 - Hosts: 184.55.4.236 v.dreamwiz.com
O1 - Hosts: 184.55.4.236 cit.kookmin.ac.kr
O1 - Hosts: 184.55.4.236 forums.whatthetech.com
O1 - Hosts: 184.55.4.236 forum.hijackthis.de
O1 - Hosts: 184.55.4.236 avg.vo.llnwd.net
O1 - Hosts: 184.55.4.236 ftp.drweb.com
O1 - Hosts: 184.55.4.236 www.zonealarm.com
O1 - Hosts: 184.55.4.236 smadaver.com
O1 - Hosts: 184.55.4.236 support.emsisoft.com
O1 - Hosts: 184.55.4.236 psychoski.blogspot.com
O1 - Hosts: 184.55.4.236 www.corozilla.net
O1 - Hosts: 184.55.4.236 www.huaifai.go.th
O1 - Hosts: 184.55.4.236 www.mostz.com
O1 - Hosts: 184.55.4.236 www.krupunmai.com
O1 - Hosts: 184.55.4.236 www.cddchiangmai.net
O1 - Hosts: 184.55.4.236 forum.malekal.com
O1 - Hosts: 184.55.4.236 tech.pantip.com
O1 - Hosts: 184.55.4.236 sapcupgrades.com
O1 - Hosts: 184.55.4.236 www.elguruinformatico.com
O1 - Hosts: 184.55.4.236 forums.avg.com
O1 - Hosts: 184.55.4.236 zastita.com
O1 - Hosts: 184.55.4.236 support.kaspersky.com
O1 - Hosts: 184.55.4.236 foro.msgpluslive.es
O1 - Hosts: 184.55.4.236 www.tongjimba.com
O1 - Hosts: 184.55.4.236 www.247fixes.com
O1 - Hosts: 184.55.4.236 forum.sysinternals.com
O1 - Hosts: 184.55.4.236 forum.telecharger.01net.com
O1 - Hosts: 184.55.4.236 sophos.com
O1 - Hosts: 184.55.4.236 foros.softonic.com
O1 - Hosts: 184.55.4.236 avast-home.uptodown.com
O1 - Hosts: 184.55.4.236 dr-web-cureit.softonic.com
O1 - Hosts: 184.55.4.236 heavenward.ru
O1 - Hosts: 184.55.4.236 forum.smadav.net
O1 - Hosts: 184.55.4.236 www.forum.kaspersky.com
O1 - Hosts: 184.55.4.236 www.dl4all.com
O1 - Hosts: 184.55.4.236 www.freshwap.net
O1 - Hosts: 184.55.4.236 www.f-secure.com
O1 - Hosts: 184.55.4.236 www.chkrootkit.org
O1 - Hosts: 184.55.4.236 diamondcs.com.au
O1 - Hosts: 184.55.4.236 www.rootkit.nl
O1 - Hosts: 184.55.4.236 www.sysinternals.com
O1 - Hosts: 184.55.4.236 z-oleg.com
O1 - Hosts: 184.55.4.236 espanol.dir.groups.yahoo.com
O1 - Hosts: 184.55.4.236 ftp01net.telechargement.fr
O1 - Hosts: 184.55.4.236 modelayu.com
O1 - Hosts: 184.55.4.236 vaksin.com
O1 - Hosts: 184.55.4.236 bbs.kaspersky.com.cn
O1 - Hosts: 184.55.4.236 sf.tapuz.co.il
O1 - Hosts: 184.55.4.236 www.downtr.net
O1 - Hosts: 184.55.4.236 www.castlecrops.com
O1 - Hosts: 184.55.4.236 www.misec.net
O1 - Hosts: 184.55.4.236 safecomputing.umn.edu
O1 - Hosts: 184.55.4.236 www.antirootkit.com
O1 - Hosts: 184.55.4.236 www.greatis.com
O1 - Hosts: 184.55.4.236 ar.answers.yahoo.com
O1 - Hosts: 184.55.4.236 www.elhacker.org
O1 - Hosts: 184.55.4.236 research.pandasecurity.com
O1 - Hosts: 184.55.4.236 www.tpu.ro
O1 - Hosts: 184.55.4.236 www.pinoyden.com
O1 - Hosts: 184.55.4.236 forum.avira.de
O1 - Hosts: 184.55.4.236 www.tanya-it.com
O1 - Hosts: 184.55.4.236 topsy.com
O1 - Hosts: 184.55.4.236 answers.microsoft.com
O1 - Hosts: 184.55.4.236 www.rootkit.com
O1 - Hosts: 184.55.4.236 www.pctools.com
O1 - Hosts: 184.55.4.236 www.pcsupportadvisor.com
O1 - Hosts: 184.55.4.236 www.resplendence.com
O1 - Hosts: 184.55.4.236 www.personal.psu.edu
O1 - Hosts: 184.55.4.236 foro.ethek.com
O1 - Hosts: 184.55.4.236 foro.elhacker.net
O1 - Hosts: 184.55.4.236 download.zonealarm.com
O1 - Hosts: 184.55.4.236 spywarehammer.com
O1 - Hosts: 184.55.4.236 www.codelain.com
O1 - Hosts: 184.55.4.236 www.thaicert.org
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [USB Antivirus] C:\Program Files\USB Disk Security\USBGuard.exe
O4 - HKLM\..\Run: [conime.exe] conime.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [ctfmon.exe] ctfmon.exe
O4 - HKLM\..\Run: [MSODESNV7] C:\WINDOWS\system32\msvmiode.exe
O4 - HKLM\..\Run: [Microsoft Driver Setup] C:\WINDOWS\cndrive32.exe
O4 - HKLM\..\Run: [Advanced DHTML Enable] C:\DOCUME~1\yacine\LOCALS~1\Temp\218931.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [SuperCopier2.exe] C:\Program Files\SuperCopier2\SuperCopier2.exe
O4 - HKCU\..\Run: [MSConfig] C:\Documents and Settings\yacine\fgmmdhb.exe \u
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKLM\..\Policies\Explorer\Run: [Microsoft Driver Setup] C:\WINDOWS\cndrive32.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx2.hotmail.com/mail/w4/pr01/photouploadcontrol/MSNPUpld.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{AA1549F0-73DA-4A38-8C87-6F1E0412DA91}: NameServer = 41.221.20.4 66.28.0.45
O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - (no file)
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:43:30, on 27/07/2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\USB Disk Security\USBGuard.exe
C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\SuperCopier2\SuperCopier2.exe
C:\WINDOWS\system32\svchost.exe
C:\DOCUME~1\yacine\LOCALS~1\Temp\934.exe
C:\WINDOWS\cndrive32.exe
C:\WINDOWS\system32\msvmiode.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\DOCUME~1\yacine\LOCALS~1\Temp\218931.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O1 - Hosts: 184.55.4.236 msnfix.changelog.fr
O1 - Hosts: 184.55.4.236 www.incodesolutions.com
O1 - Hosts: 184.55.4.236 virusinfo.prevx.com
O1 - Hosts: 184.55.4.236 download.bleepingcomputer.com
O1 - Hosts: 184.55.4.236 www.dazhizhu.cn
O1 - Hosts: 184.55.4.236 foro.noticias3d.com
O1 - Hosts: 184.55.4.236 www.spybotupdates.com
O1 - Hosts: 184.55.4.236 club.myce.com
O1 - Hosts: 184.55.4.236 www.k7computing.com
O1 - Hosts: 184.55.4.236 softwaresecuritysolutions.com
O1 - Hosts: 184.55.4.236 antonbi.web.id
O1 - Hosts: 184.55.4.236 igoblog.info
O1 - Hosts: 184.55.4.236 www.nabble.com
O1 - Hosts: 184.55.4.236 lurker.clamav.net
O1 - Hosts: 184.55.4.236 lexikon.ikarus.at
O1 - Hosts: 184.55.4.236 research.sunbelt-software.com
O1 - Hosts: 184.55.4.236 www.virusdoctor.jp
O1 - Hosts: 184.55.4.236 www.elitepvpers.de
O1 - Hosts: 184.55.4.236 guru.avg.com
O1 - Hosts: 184.55.4.236 downloads.sophos.com
O1 - Hosts: 184.55.4.236 share.skype.com
O1 - Hosts: 184.55.4.236 myantispyware.com
O1 - Hosts: 184.55.4.236 www.computerhilfen.de
O1 - Hosts: 184.55.4.236 fgsite.com
O1 - Hosts: 184.55.4.236 ca.answers.yahoo.com
O1 - Hosts: 184.55.4.236 www.superuser.co.kr
O1 - Hosts: 184.55.4.236 ntfaq.co.kr
O1 - Hosts: 184.55.4.236 v.dreamwiz.com
O1 - Hosts: 184.55.4.236 cit.kookmin.ac.kr
O1 - Hosts: 184.55.4.236 forums.whatthetech.com
O1 - Hosts: 184.55.4.236 forum.hijackthis.de
O1 - Hosts: 184.55.4.236 avg.vo.llnwd.net
O1 - Hosts: 184.55.4.236 ftp.drweb.com
O1 - Hosts: 184.55.4.236 www.zonealarm.com
O1 - Hosts: 184.55.4.236 smadaver.com
O1 - Hosts: 184.55.4.236 support.emsisoft.com
O1 - Hosts: 184.55.4.236 psychoski.blogspot.com
O1 - Hosts: 184.55.4.236 www.corozilla.net
O1 - Hosts: 184.55.4.236 www.huaifai.go.th
O1 - Hosts: 184.55.4.236 www.mostz.com
O1 - Hosts: 184.55.4.236 www.krupunmai.com
O1 - Hosts: 184.55.4.236 www.cddchiangmai.net
O1 - Hosts: 184.55.4.236 forum.malekal.com
O1 - Hosts: 184.55.4.236 tech.pantip.com
O1 - Hosts: 184.55.4.236 sapcupgrades.com
O1 - Hosts: 184.55.4.236 www.elguruinformatico.com
O1 - Hosts: 184.55.4.236 forums.avg.com
O1 - Hosts: 184.55.4.236 zastita.com
O1 - Hosts: 184.55.4.236 support.kaspersky.com
O1 - Hosts: 184.55.4.236 foro.msgpluslive.es
O1 - Hosts: 184.55.4.236 www.tongjimba.com
O1 - Hosts: 184.55.4.236 www.247fixes.com
O1 - Hosts: 184.55.4.236 forum.sysinternals.com
O1 - Hosts: 184.55.4.236 forum.telecharger.01net.com
O1 - Hosts: 184.55.4.236 sophos.com
O1 - Hosts: 184.55.4.236 foros.softonic.com
O1 - Hosts: 184.55.4.236 avast-home.uptodown.com
O1 - Hosts: 184.55.4.236 dr-web-cureit.softonic.com
O1 - Hosts: 184.55.4.236 heavenward.ru
O1 - Hosts: 184.55.4.236 forum.smadav.net
O1 - Hosts: 184.55.4.236 www.forum.kaspersky.com
O1 - Hosts: 184.55.4.236 www.dl4all.com
O1 - Hosts: 184.55.4.236 www.freshwap.net
O1 - Hosts: 184.55.4.236 www.f-secure.com
O1 - Hosts: 184.55.4.236 www.chkrootkit.org
O1 - Hosts: 184.55.4.236 diamondcs.com.au
O1 - Hosts: 184.55.4.236 www.rootkit.nl
O1 - Hosts: 184.55.4.236 www.sysinternals.com
O1 - Hosts: 184.55.4.236 z-oleg.com
O1 - Hosts: 184.55.4.236 espanol.dir.groups.yahoo.com
O1 - Hosts: 184.55.4.236 ftp01net.telechargement.fr
O1 - Hosts: 184.55.4.236 modelayu.com
O1 - Hosts: 184.55.4.236 vaksin.com
O1 - Hosts: 184.55.4.236 bbs.kaspersky.com.cn
O1 - Hosts: 184.55.4.236 sf.tapuz.co.il
O1 - Hosts: 184.55.4.236 www.downtr.net
O1 - Hosts: 184.55.4.236 www.castlecrops.com
O1 - Hosts: 184.55.4.236 www.misec.net
O1 - Hosts: 184.55.4.236 safecomputing.umn.edu
O1 - Hosts: 184.55.4.236 www.antirootkit.com
O1 - Hosts: 184.55.4.236 www.greatis.com
O1 - Hosts: 184.55.4.236 ar.answers.yahoo.com
O1 - Hosts: 184.55.4.236 www.elhacker.org
O1 - Hosts: 184.55.4.236 research.pandasecurity.com
O1 - Hosts: 184.55.4.236 www.tpu.ro
O1 - Hosts: 184.55.4.236 www.pinoyden.com
O1 - Hosts: 184.55.4.236 forum.avira.de
O1 - Hosts: 184.55.4.236 www.tanya-it.com
O1 - Hosts: 184.55.4.236 topsy.com
O1 - Hosts: 184.55.4.236 answers.microsoft.com
O1 - Hosts: 184.55.4.236 www.rootkit.com
O1 - Hosts: 184.55.4.236 www.pctools.com
O1 - Hosts: 184.55.4.236 www.pcsupportadvisor.com
O1 - Hosts: 184.55.4.236 www.resplendence.com
O1 - Hosts: 184.55.4.236 www.personal.psu.edu
O1 - Hosts: 184.55.4.236 foro.ethek.com
O1 - Hosts: 184.55.4.236 foro.elhacker.net
O1 - Hosts: 184.55.4.236 download.zonealarm.com
O1 - Hosts: 184.55.4.236 spywarehammer.com
O1 - Hosts: 184.55.4.236 www.codelain.com
O1 - Hosts: 184.55.4.236 www.thaicert.org
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [USB Antivirus] C:\Program Files\USB Disk Security\USBGuard.exe
O4 - HKLM\..\Run: [conime.exe] conime.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [ctfmon.exe] ctfmon.exe
O4 - HKLM\..\Run: [MSODESNV7] C:\WINDOWS\system32\msvmiode.exe
O4 - HKLM\..\Run: [Microsoft Driver Setup] C:\WINDOWS\cndrive32.exe
O4 - HKLM\..\Run: [Advanced DHTML Enable] C:\DOCUME~1\yacine\LOCALS~1\Temp\218931.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [SuperCopier2.exe] C:\Program Files\SuperCopier2\SuperCopier2.exe
O4 - HKCU\..\Run: [MSConfig] C:\Documents and Settings\yacine\fgmmdhb.exe \u
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKLM\..\Policies\Explorer\Run: [Microsoft Driver Setup] C:\WINDOWS\cndrive32.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx2.hotmail.com/mail/w4/pr01/photouploadcontrol/MSNPUpld.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{AA1549F0-73DA-4A38-8C87-6F1E0412DA91}: NameServer = 41.221.20.4 66.28.0.45
O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - (no file)
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Service Google Update (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe
A voir également:
- Rapport Hijackthis
- Hijackthis - Télécharger - Antivirus & Antimalwares
- Plan rapport de stage - Guide
- Rapport de crash windows - Guide
- Impression rapport de stage ✓ - Forum Word
- Modifier rapport d'échelle pdf xchange viewer ✓ - Forum PDF
