Mon processeur - Page 2

Fermé
Précédent
  • 1
  • 2
Réponse 21 / 26
papyber Messages postés 6430 Statut Contributeur sécurité 257
 
quand tu peux....
0
Réponse 22 / 26
Sismix84 Messages postés 83 Statut Membre 2
 
Salut, je poste le résultat du scan :

ComboFix 08-06-20.4 - João Filipe 2008-07-01 13:53:55.1 - NTFSx86
Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6001.1.1252.1.1036.18.275 [GMT 2:00]
Endroit: C:\Users\João Filipe\Desktop\ComboFix.exe
* Création d'un nouveau point de restauration
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Users\JOOFIL~1\AppData\Roaming\macromedia\Flash Player\#SharedObjects\CQFNS7ZB\iforex.com
C:\Users\JOOFIL~1\AppData\Roaming\macromedia\Flash Player\#SharedObjects\CQFNS7ZB\iforex.com\Emerp\Events\flash_object.swf\user_data.sol
C:\Users\JOOFIL~1\AppData\Roaming\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#iforex.com
C:\Users\JOOFIL~1\AppData\Roaming\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#iforex.com\settings.sol
C:\Users\Maria de Fatima\AppData\Roaming\macromedia\Flash Player\#SharedObjects\GH7E9HVB\iforex.com
C:\Users\Maria de Fatima\AppData\Roaming\macromedia\Flash Player\#SharedObjects\GH7E9HVB\iforex.com\Emerp\Events\flash_object.swf\user_data.sol
C:\Users\Maria de Fatima\AppData\Roaming\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#iforex.com
C:\Users\Maria de Fatima\AppData\Roaming\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#iforex.com\settings.sol

.
((((((((((((((((((((((((((((( Fichiers créés 2008-06-01 to 2008-07-01 ))))))))))))))))))))))))))))))))))))
.

2008-06-29 14:15 . 2008-06-29 14:15 <REP> d-------- C:\Users\Marie-Alice\AppData\Roaming\Subversion
2008-06-29 10:46 . 2008-06-29 10:46 <REP> d-------- C:\Program Files\Common Files\Macrovision Shared
2008-06-28 20:40 . 2008-06-28 20:40 <REP> d--hs---- C:\Windows\ftpcache
2008-06-28 20:40 . 2008-06-28 20:41 <REP> d-------- C:\Program Files\McDonaldsDragons
2008-06-28 17:59 . 2008-06-28 17:59 355,584 --a------ C:\Windows\System32\TuneUpDefragService.exe
2008-06-28 17:59 . 2008-05-29 09:28 28,416 --a------ C:\Windows\System32\uxtuneup.dll
2008-06-28 17:59 . 2008-05-29 09:28 16,640 --a------ C:\Windows\System32\authuitu.dll
2008-06-26 17:30 . 2008-06-26 17:30 <REP> d-------- C:\Users\João\AppData\Roaming\Subversion
2008-06-21 09:45 . 2008-06-21 09:50 <REP> d-------- C:\Users\João\AppData\Roaming\Real
2008-06-21 09:45 . 2008-06-21 09:46 <REP> d-------- C:\Users\João\AppData\Roaming\Adobe
2008-06-20 14:55 . 2008-06-20 14:55 <REP> d-------- C:\Program Files\Opera
2008-06-15 17:33 . 2008-06-15 17:33 <REP> d-------- C:\Users\Public\Notepad++
2008-06-15 10:49 . 2008-04-23 06:42 428,544 --a------ C:\Windows\System32\EncDec.dll
2008-06-15 10:48 . 2008-04-23 06:42 293,376 --a------ C:\Windows\System32\psisdecd.dll
2008-06-15 10:48 . 2008-04-23 06:41 218,624 --a------ C:\Windows\System32\psisrndr.ax
2008-06-15 10:48 . 2008-04-23 06:41 57,856 --a------ C:\Windows\System32\MSDvbNP.ax
2008-06-14 21:48 . 2008-06-14 21:48 <REP> d-------- C:\Program Files\LaBoiteACouleurs
2008-06-14 19:18 . 2008-06-14 19:18 <REP> d-------- C:\Users\All Users\Pinnacle VideoSpin
2008-06-14 19:18 . 2008-06-14 19:18 <REP> d-------- C:\ProgramData\Pinnacle VideoSpin
2008-06-14 19:12 . 2008-06-14 19:12 <REP> d-------- C:\Users\All Users\VideoSpin
2008-06-14 19:12 . 2008-06-14 19:12 <REP> d-------- C:\ProgramData\VideoSpin
2008-06-14 19:12 . 2008-06-14 19:12 <REP> d-------- C:\Program Files\Common Files\Yahoo!
2008-06-14 19:08 . 2008-06-14 19:08 <REP> d-------- C:\Users\All Users\Pinnacle
2008-06-14 19:08 . 2008-06-14 19:08 <REP> d-------- C:\ProgramData\Pinnacle
2008-06-13 21:53 . 2008-06-13 21:53 <REP> d-------- C:\Program Files\OpenAL
2008-06-13 21:53 . 2007-10-12 15:14 3,734,536 --a------ C:\Windows\System32\d3dx9_36.dll
2008-06-13 21:53 . 2008-06-13 21:53 413,696 --a------ C:\Windows\System32\wrap_oal.dll
2008-06-13 21:53 . 2008-06-13 21:53 110,592 --a------ C:\Windows\System32\OpenAL32.dll
2008-06-13 21:34 . 2008-06-13 21:42 <REP> d-------- C:\Downloads
2008-06-12 19:33 . 2008-06-12 19:33 <REP> d-------- C:\Users\All Users\FLEXnet
2008-06-12 19:33 . 2008-06-12 19:33 <REP> d-------- C:\ProgramData\FLEXnet
2008-06-12 19:03 . 2007-02-20 16:04 2,463,976 --a------ C:\Windows\System32\NPSWF32.dll
2008-06-12 19:03 . 2007-02-20 16:04 190,696 --a------ C:\Windows\System32\NPSWF32_FlashUtil.exe
2008-06-12 18:55 . 2008-06-12 18:55 <REP> d-------- C:\Program Files\Bonjour
2008-06-11 14:54 . 2008-05-10 05:35 885,248 --a------ C:\Windows\System32\RacEngn.dll
2008-06-11 14:54 . 2008-05-10 00:22 9,127 --a------ C:\Windows\System32\RacUR.xml
2008-06-11 14:54 . 2008-05-10 00:22 153 --a------ C:\Windows\System32\RacUREx.xml
2008-06-11 14:52 . 2008-04-25 04:12 1,383,424 --a------ C:\Windows\System32\mshtml.tlb
2008-06-11 14:52 . 2008-04-26 10:08 1,314,816 --a------ C:\Windows\System32\quartz.dll
2008-06-11 14:52 . 2008-04-25 06:35 826,880 --a------ C:\Windows\System32\wininet.dll
2008-06-11 14:52 . 2008-05-10 03:33 113,664 --a------ C:\Windows\System32\drivers\rmcast.sys
2008-06-10 18:22 . 2008-06-10 22:51 <REP> d-------- C:\Users\JOOFIL~1\AppData\Roaming\Notepad++
2008-06-10 18:22 . 2008-06-10 18:22 <REP> d-------- C:\Program Files\Notepad++
2008-06-09 18:52 . 2008-06-09 18:52 <REP> d-------- C:\Deckard
2008-06-07 09:47 . 2008-06-07 09:47 <REP> d-------- C:\Users\Public\w810
2008-06-07 09:23 . 2008-06-07 09:40 <REP> d-------- C:\Users\JOOFIL~1\AppData\Roaming\TeamViewer
2008-06-07 09:22 . 2008-06-07 09:23 <REP> d-------- C:\Program Files\TeamViewer3
2008-06-07 09:21 . 2008-06-07 09:21 <REP> d-------- C:\Users\João Filipe\temp
2008-06-07 09:21 . 2008-06-07 09:21 <REP> d-------- C:\Users\João Filipe\temp
2008-06-06 19:37 . 2008-06-06 19:37 <REP> d-------- C:\Program Files\Rockstar Games
2008-06-05 14:08 . 2008-06-05 14:08 <REP> d-------- C:\Users\All Users\Avira
2008-06-05 14:08 . 2008-06-05 14:08 <REP> d-------- C:\ProgramData\Avira
2008-06-05 14:08 . 2008-06-05 14:08 <REP> d-------- C:\Program Files\Avira
2008-06-04 15:14 . 2008-06-04 15:14 <REP> d-------- C:\Windows\System32\Kaspersky Lab
2008-06-04 14:48 . 2008-06-04 14:48 <REP> d-------- C:\Users\All Users\phenomedia
2008-06-04 14:48 . 2008-06-04 14:48 <REP> d-------- C:\ProgramData\phenomedia
2008-06-04 14:48 . 2008-06-04 14:48 <REP> d-------- C:\Program Files\phenomedia
2008-06-04 11:26 . 2007-04-26 21:23 <REP> d--h----- C:\hp
2008-06-04 11:23 . 2008-06-04 11:23 <REP> d-------- C:\Windows\System32\OEM
2008-06-04 11:23 . 2007-03-01 23:07 <REP> d-------- C:\Windows\Panther
2008-06-04 11:23 . 2008-04-11 11:26 <REP> d--hs---- C:\Boot
2008-06-04 11:23 . 2008-01-19 09:45 333,203 -rahs---- C:\bootmgr
2008-06-04 11:22 . 2008-06-28 15:54 714,390 --a------ C:\Windows\System32\perfh00C.dat
2008-06-04 11:22 . 2008-06-04 11:20 340,236 --a------ C:\Windows\System32\perfi00C.dat
2008-06-04 11:22 . 2008-06-28 15:54 143,166 --a------ C:\Windows\System32\perfc00C.dat
2008-06-04 11:22 . 2008-06-04 11:20 37,390 --a------ C:\Windows\System32\perfd00C.dat
2008-06-04 11:21 . 2008-03-22 18:20 <REP> d-------- C:\Windows\System32\fr
2008-06-04 11:21 . 2008-03-22 18:20 <REP> d-------- C:\Windows\System32\drivers\fr-FR
2008-06-04 11:21 . 2008-06-04 11:21 <REP> d-------- C:\Windows\System32\[u]0/u40C
2008-06-04 11:21 . 2008-06-04 11:21 <REP> d-------- C:\Windows\fr-FR
2008-06-04 01:34 . 2006-09-07 19:13 1,060,864 --a------ C:\Windows\System32\mfc71.dll
2008-06-04 01:34 . 2006-09-07 19:13 348,160 --a------ C:\Windows\System32\msvcr71.dll
2008-06-04 01:34 . 2006-07-16 23:23 327,680 --a------ C:\Windows\System32\pythoncom24.dll
2008-06-04 01:34 . 2006-07-16 23:15 102,400 --a------ C:\Windows\System32\pywintypes24.dll
2008-06-04 01:33 . 2008-06-29 10:59 <REP> d--hs---- C:\Windows\Installer
2008-06-04 01:28 . 2007-11-21 17:36 <REP> d-------- C:\Windows\Debug
2008-06-03 21:44 . 2008-05-30 01:06 34,296 --a------ C:\Windows\System32\drivers\mbamcatchme.sys
2008-06-03 21:44 . 2008-05-30 01:06 15,864 --a------ C:\Windows\System32\drivers\mbam.sys
2008-06-03 19:16 . 2008-06-03 19:16 203,776 --a------ C:\Windows\System32\clrviddc.dll
2008-06-03 19:16 . 1997-06-11 19:01 30,208 --a------ C:\Windows\System32\wnaspi32.BAK
2008-06-03 19:16 . 1999-09-10 13:06 25,244 --a------ C:\Windows\System32\drivers\aspi32.sys
2008-06-03 19:16 . 1999-09-10 13:06 4,672 --a------ C:\Windows\system\wowpost.exe
2008-06-03 19:16 . 1999-10-22 17:58 4,030 --a------ C:\Windows\system\winaspi.BAK
2008-06-02 12:40 . 2008-06-02 12:40 <REP> d-------- C:\Program Files\SpeedFan
2008-06-02 12:40 . 2008-06-02 12:40 45 --a------ C:\Windows\System32\initdebug.nfo
2008-06-01 15:48 . 2008-06-01 16:03 <REP> d-------- C:\Lop SD
2008-06-01 14:44 . 2008-06-01 14:44 <REP> d-------- C:\Users\Daniel\AppData\Roaming\Subversion

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-07-01 12:01 8,650,752 ----a-w C:\Users\João Filipe\ntuser.dat
2008-07-01 12:01 8,650,752 ----a-w C:\Users\João Filipe\ntuser.dat
2008-07-01 11:53 3,932,160 --sha-w C:\Users\João\NTUSER.DAT
2008-07-01 11:53 3,932,160 --sha-w C:\Users\João\NTUSER.DAT
2008-07-01 08:50 3,698 ----a-w C:\Users\Maria de Fatima\AppData\Roaming\wklnhst.dat
2008-06-29 08:55 --------- d-----w C:\Program Files\Common Files\Adobe
2008-06-28 15:59 --------- d-----w C:\Program Files\TuneUp Utilities 2008
2008-06-26 15:30 --------- d-----w C:\Users\João\AppData\Roaming\Subversion
2008-06-21 07:50 --------- d-----w C:\Users\João\AppData\Roaming\Real
2008-06-21 07:46 --------- d-----w C:\Users\João\AppData\Roaming\Adobe
2008-06-20 15:44 --------- d-----w C:\Program Files\Steam
2008-06-14 17:12 --------- d-----w C:\Program Files\Pinnacle
2008-06-14 10:12 6,854 ----a-w C:\Users\JOOFIL~1\AppData\Roaming\wklnhst.dat
2008-06-12 07:35 --------- d-----w C:\Program Files\Common Files\Steam
2008-06-11 19:29 --------- d-----w C:\Program Files\Windows Mail
2008-06-06 17:37 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-06-03 19:44 --------- d-----w C:\Program Files\Malwarebytes' Anti-Malware
2008-05-29 16:40 --------- d-----w C:\Users\JOOFIL~1\AppData\Roaming\MessengerGadget
2008-05-27 16:27 --------- d-----w C:\Program Files\SoftwareClub.ws
2008-05-26 10:25 --------- d-----w C:\Users\Maria de Fatima\AppData\Roaming\Subversion
2008-05-24 13:28 --------- d-----w C:\Program Files\OpenOffice.org 2.4
2008-05-24 13:27 --------- d-----w C:\Program Files\OpenOffice.org 2.3
2008-05-24 13:20 --------- d-----w C:\Program Files\Java
2008-05-24 12:31 --------- d-----w C:\Users\JOOFIL~1\AppData\Roaming\OpenOffice.org2
2008-05-23 07:09 --------- d-----w C:\Users\JOOFIL~1\AppData\Roaming\Subversion
2008-05-23 07:04 --------- d-----w C:\Program Files\TortoiseSVN
2008-05-20 06:01 --------- d-----w C:\Program Files\Microsoft Silverlight
2008-05-17 20:06 --------- d-----w C:\Program Files\Sony
2008-05-17 20:05 --------- d-----w C:\ProgramData\Sony
2008-05-14 14:35 --------- d-----w C:\Program Files\Messenger Plus! Live
2008-05-09 15:52 --------- d-----w C:\Program Files\Project64 1.7 Beta
2008-05-07 15:05 --------- d-----w C:\ProgramData\Skyline
2008-05-07 14:24 --------- d-----w C:\Program Files\Autodesk
2008-05-07 14:22 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2008-05-07 14:21 --------- d-----w C:\Users\JOOFIL~1\AppData\Roaming\Lavasoft
2008-05-05 16:56 --------- d-----w C:\Program Files\NRJ
2008-05-05 16:55 --------- d-----w C:\Program Files\Ubisoft
2008-05-05 16:52 --------- d-----w C:\Program Files\SolidWorks
2008-05-03 20:50 --------- d-----w C:\ProgramData\TrackMania
2008-04-16 17:16 2,560 ----a-w C:\Windows\System32\bitcometres.dll
2008-04-01 09:54 319,456 ----a-w C:\Windows\DIFxAPI.dll
2008-04-01 09:54 315,392 ----a-w C:\Windows\HideWin.exe
2008-03-22 16:31 174 --sha-w C:\Program Files\desktop.ini
2007-12-20 12:46 364 ----a-w C:\Users\Daniel\AppData\Roaming\wklnhst.dat
2007-06-23 17:23 47,360 ----a-w C:\Users\JOOFIL~1\AppData\Roaming\pcouffin.sys
2007-06-12 17:43 94 ----a-w C:\Users\Marie-Alice\AppData\Roaming\wklnhst.dat
2007-05-18 10:47 22 --sha-w C:\Windows\SMINST\HPCD.sys
.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\1TortoiseSVN]
@={30351346-7B7D-4FCC-81B4-1E394CA267EB}

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\2TortoiseSVN]
@={30351347-7B7D-4FCC-81B4-1E394CA267EB}

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\3TortoiseSVN]
@={30351348-7B7D-4FCC-81B4-1E394CA267EB}

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\4TortoiseSVN]
@={3035134B-7B7D-4FCC-81B4-1E394CA267EB}

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\5TortoiseSVN]
@={3035134C-7B7D-4FCC-81B4-1E394CA267EB}

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\6TortoiseSVN]
@={3035134D-7B7D-4FCC-81B4-1E394CA267EB}

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\7TortoiseSVN]
@={3035134E-7B7D-4FCC-81B4-1E394CA267EB}

[HKEY_CLASSES_ROOT\CLSID\{30351346-7B7D-4FCC-81B4-1E394CA267EB}]
2008-01-05 14:03 536576 --a------ C:\Program Files\TortoiseSVN\bin\tortoisesvn.dll

[HKEY_CLASSES_ROOT\CLSID\{30351347-7B7D-4FCC-81B4-1E394CA267EB}]
2008-01-05 14:03 536576 --a------ C:\Program Files\TortoiseSVN\bin\tortoisesvn.dll

[HKEY_CLASSES_ROOT\CLSID\{30351348-7B7D-4FCC-81B4-1E394CA267EB}]
2008-01-05 14:03 536576 --a------ C:\Program Files\TortoiseSVN\bin\tortoisesvn.dll

[HKEY_CLASSES_ROOT\CLSID\{3035134B-7B7D-4FCC-81B4-1E394CA267EB}]
2008-01-05 14:03 536576 --a------ C:\Program Files\TortoiseSVN\bin\tortoisesvn.dll

[HKEY_CLASSES_ROOT\CLSID\{3035134C-7B7D-4FCC-81B4-1E394CA267EB}]
2008-01-05 14:03 536576 --a------ C:\Program Files\TortoiseSVN\bin\tortoisesvn.dll

[HKEY_CLASSES_ROOT\CLSID\{3035134D-7B7D-4FCC-81B4-1E394CA267EB}]
2008-01-05 14:03 536576 --a------ C:\Program Files\TortoiseSVN\bin\tortoisesvn.dll

[HKEY_CLASSES_ROOT\CLSID\{3035134E-7B7D-4FCC-81B4-1E394CA267EB}]
2008-01-05 14:03 536576 --a------ C:\Program Files\TortoiseSVN\bin\tortoisesvn.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="C:\Windows\ehome\ehTray.exe" [2008-01-19 09:33 125952]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [2008-01-19 09:33 1233920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"hpsysdrv"="c:\hp\support\hpsysdrv.exe" [2006-09-28 15:42 65536]
"OsdMaestro"="C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe" [2006-11-20 13:34 155648]
"KBD"="C:\HP\KBD\KbdStub.EXE" [2006-12-08 17:16 65536]
"RtHDVCpl"="RtHDVCpl.exe" [2008-01-15 11:26 4874240 C:\Windows\RtHDVCpl.exe]
"HP Software Update"="C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe" [2006-12-10 21:52 49152]
"Sony Ericsson PC Suite"="C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2007-06-13 08:16 528384]
"PAC7302_Monitor"="C:\Windows\PixArt\PAC7302\Monitor.exe" [2006-11-03 12:01 319488]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe" [2008-03-25 04:28 144784]
"QuickTime Task"="C:\Program Files\VistaCodecPack\QT\QTTask.exe" [2008-03-28 23:37 413696]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2008-03-30 10:36 267048]
"NvSvc"="C:\Windows\system32\nvsvc.dll" [2007-12-11 17:06 86016]
"NvCplDaemon"="C:\Windows\system32\NvCpl.dll" [2007-12-11 17:06 8530464]
"NvMediaCenter"="C:\Windows\system32\NvMcTray.dll" [2007-12-11 17:06 81920]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2008-04-25 19:06 185896]
"Shim Fork"="C:\ProgramData\gram hold hold.4bgp1af" [ ]
"Frag Ooze Cash Scr"="C:\ProgramData\Trans Chic Drive.4gmje" [ ]
"avgnt"="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-02-12 10:06 262401]
"WPCUMI"="C:\Windows\system32\WpcUmi.exe" [2006-11-02 14:35 176128]
"Adobe_ID0EYTHM"="C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE" [2007-03-20 16:40 1884160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"Launcher"="C:\Windows\SMINST\launcher.exe" [2006-11-24 17:20 44136]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe [2007-01-02 21:40:10 210520]
Run Google Web Accelerator.lnk - C:\Program Files\Google\Web Accelerator\GoogleWebAccWarden.exe [2007-07-09 23:24:38 1134592]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"FilterAdministratorToken"= 1 (0x1)
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"LogonHoursAction"= 2 (0x2)
"DontDisplayLogonHoursWarnings"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WBSrv]
C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\wbsrv.dll 2007-03-07 11:08 112304 C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\WbSrv.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"vidc.mjpg"= pvmjpg30.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"mxomssmenu"="C:\Program Files\Maxtor\OneTouch Status\maxmenumgr.exe"
"QuickTime Task"="C:\Program Files\VistaCodecPack\QT\QTTask.exe" -atboottime

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"UacDisableNotify"=dword:00000001
"InternetSettingsDisableNotify"=dword:00000001
"AutoUpdateDisableNotify"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"TCP Query User{659F64FD-F2BC-4F74-A06B-FC6D983DE9C8}C:\\program files\\valve\\steam\\steamapps\\sismix84\\condition zero\\hl.exe"= UDP:C:\program files\valve\steam\steamapps\sismix84\condition zero\hl.exe:Half-Life Launcher
"UDP Query User{AE180A44-6782-4519-A1DB-1C934F099F99}C:\\program files\\valve\\steam\\steamapps\\sismix84\\condition zero\\hl.exe"= TCP:C:\program files\valve\steam\steamapps\sismix84\condition zero\hl.exe:Half-Life Launcher
"{54396A3D-96A2-493D-960B-52329600DFDC}"= UDP:C:\Program Files\Electronic Arts\Battlefield 2142\BF2142.exe:Battlefield 2
"{6156A217-43FE-42C7-B700-69FFFCA21829}"= TCP:C:\Program Files\Electronic Arts\Battlefield 2142\BF2142.exe:Battlefield 2
"{38CAAF10-7703-4BEE-A19A-45C532FDCECE}"= UDP:1993:Port 1
"{55F60C63-EDB8-4DE6-9962-14EBB9EC9CD6}"= TCP:1994:Port 2
"{66DC03B1-B5F0-4133-A0F2-37BA241414A9}"= TCP:7777:Port 3
"TCP Query User{A59A0AA9-6DBF-4D56-878B-2A5DEE72F740}C:\\program files\\motorola\\software update\\msu.exe"= UDP:C:\program files\motorola\software update\msu.exe:msu
"UDP Query User{C2CD1A22-CD92-49C8-A3CC-DAF40CDCA4ED}C:\\program files\\motorola\\software update\\msu.exe"= TCP:C:\program files\motorola\software update\msu.exe:msu
"TCP Query User{1B41E54F-D540-4982-A59C-09DABA2A1630}C:\\program files\\valve\\steam\\steam.exe"= UDP:C:\program files\valve\steam\steam.exe:Steam
"UDP Query User{7C0099C3-B86A-4AC7-97D8-19A4A59B8121}C:\\program files\\valve\\steam\\steam.exe"= TCP:C:\program files\valve\steam\steam.exe:Steam
"TCP Query User{336A7E20-52E9-410F-8B35-857660080C8F}C:\\program files\\mta san andreas\\server\\mta server.exe"= UDP:C:\program files\mta san andreas\server\mta server.exe:MTA Server
"UDP Query User{5DD8E38E-43A9-4EDF-8DC3-FF2610D7CFD6}C:\\program files\\mta san andreas\\server\\mta server.exe"= TCP:C:\program files\mta san andreas\server\mta server.exe:MTA Server
"TCP Query User{E9982794-CF24-4318-93EB-24C9E3B9F7EC}L:\\msn messenger\\msnmsgr.exe"= UDP:L:\msn messenger\msnmsgr.exe:Messenger
"UDP Query User{9C121950-8FCE-47BC-8195-64C05BE226FE}L:\\msn messenger\\msnmsgr.exe"= TCP:L:\msn messenger\msnmsgr.exe:Messenger
"{D87742EE-0413-4E29-A8E9-B06D015727A3}"= C:\Program Files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone)
"TCP Query User{87A2F41D-93F5-46F6-9625-76997CA41931}C:\\program files\\ubisoft\\tom clancy's splinter cell chaos theory\\system\\splintercell3.exe"= UDP:C:\program files\ubisoft\tom clancy's splinter cell chaos theory\system\splintercell3.exe:splintercell3
"UDP Query User{E9237F38-E740-494D-8BA6-744E69B29770}C:\\program files\\ubisoft\\tom clancy's splinter cell chaos theory\\system\\splintercell3.exe"= TCP:C:\program files\ubisoft\tom clancy's splinter cell chaos theory\system\splintercell3.exe:splintercell3
"TCP Query User{5570368E-4F8C-4009-9B03-7D8C0A0240EF}C:0\\program files\\emule\\emule.exe"= UDP:C:0\program files\emule\emule.exe:emule.exe
"UDP Query User{C3FDCE3F-DE23-4377-88EE-BC0F253409A3}C:0\\program files\\emule\\emule.exe"= TCP:C:0\program files\emule\emule.exe:emule.exe
"{9916D77B-BF06-44A9-B3AB-087AD575D385}"= UDP:C:\Program Files\Autodesk\Backburner\monitor.exe:backburner 2.3 monitor
"{B2693690-8D92-4D8C-B37D-A1B6F6254D03}"= TCP:C:\Program Files\Autodesk\Backburner\monitor.exe:backburner 2.3 monitor
"{FF76C4A1-7998-4E54-9735-D29203F84546}"= UDP:C:\Program Files\Autodesk\Backburner\manager.exe:backburner 2.3 manager
"{970C17CF-A367-4996-9636-CDBC3F6FBD44}"= TCP:C:\Program Files\Autodesk\Backburner\manager.exe:backburner 2.3 manager
"{8222D988-A161-40F4-ACC1-D82C00FF6ED7}"= UDP:C:\Program Files\Autodesk\Backburner\server.exe:backburner 2.3 server
"{B91236E9-7664-491F-9C20-7A01B2E48EDB}"= TCP:C:\Program Files\Autodesk\Backburner\server.exe:backburner 2.3 server
"TCP Query User{993959BE-1FEB-469C-B972-145403335E26}E:\\program files\\emule\\emule.exe"= UDP:E:\program files\emule\emule.exe:eMule
"UDP Query User{5CDB1BB5-66A7-47CE-BB2D-4C3142E8FB32}E:\\program files\\emule\\emule.exe"= TCP:E:\program files\emule\emule.exe:eMule
"{BB29BC9B-989F-468B-8197-DA881776EB16}"= UDP:C:\Program Files\Microsoft Games\Zoo Tycoon 2\zt.exe:Zoo Tycoon 2 Executable
"{577FF9D7-366F-4A3A-9CB5-09C908CA4B35}"= TCP:C:\Program Files\Microsoft Games\Zoo Tycoon 2\zt.exe:Zoo Tycoon 2 Executable
"TCP Query User{651CA27C-4256-461C-A63F-18E4CB12E4CF}C:\\program files\\valve\\steam\\steamapps\\user\\counter-strike source\\hl2.exe"= UDP:C:\program files\valve\steam\steamapps\user\counter-strike source\hl2.exe:hl2
"UDP Query User{DB205CAC-D2BF-426F-BE1D-4FE9C022B22B}C:\\program files\\valve\\steam\\steamapps\\user\\counter-strike source\\hl2.exe"= TCP:C:\program files\valve\steam\steamapps\user\counter-strike source\hl2.exe:hl2
"TCP Query User{0E6A958A-20E0-40F9-A297-FC0DC4767AE0}C:\\program files\\valve\\steam\\steamapps\\user\\half-life 2\\hl2.exe"= UDP:C:\program files\valve\steam\steamapps\user\half-life 2\hl2.exe:hl2
"UDP Query User{1D852A0D-108A-48CD-A748-395701CA9DCB}C:\\program files\\valve\\steam\\steamapps\\user\\half-life 2\\hl2.exe"= TCP:C:\program files\valve\steam\steamapps\user\half-life 2\hl2.exe:hl2
"TCP Query User{2F2C591A-43D5-4552-AF88-9B910D6AADF1}C:\\windows\\system32\\dplaysvr.exe"= UDP:C:\windows\system32\dplaysvr.exe:Application d'assistance Microsoft DirectPlay
"UDP Query User{6816689D-DB85-44BD-95E0-F936C37BFE09}C:\\windows\\system32\\dplaysvr.exe"= TCP:C:\windows\system32\dplaysvr.exe:Application d'assistance Microsoft DirectPlay
"TCP Query User{22A3003E-DB78-4768-9AAF-5DAD9F534CD6}C:\\program files\\half-life 2\\hl2.exe"= UDP:C:\program files\half-life 2\hl2.exe:hl2
"UDP Query User{B30A805D-0EBD-4CE9-AAD0-E5BAD62DFC64}C:\\program files\\half-life 2\\hl2.exe"= TCP:C:\program files\half-life 2\hl2.exe:hl2
"{8783D613-2C3C-4D35-B510-33CAD18B3E89}"= UDP:E:\Program Files\uTorrent\uTorrent.exe:µTorrent
"{E9BAE9D4-9770-4C7D-8D37-A12DA835D8C2}"= TCP:E:\Program Files\uTorrent\uTorrent.exe:µTorrent
"{D005F636-984D-4A31-AA53-67CD3A4397BA}"= UDP:C:\Program Files\uTorrent\uTorrent.exe:µTorrent
"{6F995844-2077-4E01-9C14-CE00B0BF7C70}"= TCP:C:\Program Files\uTorrent\uTorrent.exe:µTorrent
"{B0676D14-4784-478B-A4D9-9DA81BABC567}"= UDP:1990:Port 4
"TCP Query User{0D1703CD-4FB8-4B41-9C31-90E79241C1D5}C:\\program files\\valve\\steam\\steamapps\\sismix84\\counter-strike\\hl.exe"= UDP:C:\program files\valve\steam\steamapps\sismix84\counter-strike\hl.exe:Half-Life Launcher
"UDP Query User{FC3B8BF6-6462-4E95-9DD1-5033DB63048B}C:\\program files\\valve\\steam\\steamapps\\sismix84\\counter-strike\\hl.exe"= TCP:C:\program files\valve\steam\steamapps\sismix84\counter-strike\hl.exe:Half-Life Launcher
"TCP Query User{34AF4D0A-F883-4521-A1FA-DFA6154C125E}C:\\program files\\valve\\steam\\steamapps\\sismix84\\condition zero deleted scenes\\hl.exe"= UDP:C:\program files\valve\steam\steamapps\sismix84\condition zero deleted scenes\hl.exe:Half-Life Launcher
"UDP Query User{9A111C94-95E4-4BDA-A760-46F295C345FB}C:\\program files\\valve\\steam\\steamapps\\sismix84\\condition zero deleted scenes\\hl.exe"= TCP:C:\program files\valve\steam\steamapps\sismix84\condition zero deleted scenes\hl.exe:Half-Life Launcher
"{DEE263DE-93C4-4548-BC10-10336B6684ED}"= UDP:E:\utorrent.exe:µTorrent
"{B1148095-606F-42DA-99A5-5CDFE5AC4544}"= TCP:E:\utorrent.exe:µTorrent
"{E925C19E-CD32-4F14-92CD-28F4A6A6B153}"= UDP:C:\Program Files\iTunes\iTunes.exe:iTunes
"{1C065937-FAE3-49D1-9574-3D607F0E2FAB}"= TCP:C:\Program Files\iTunes\iTunes.exe:iTunes
"{9D78701C-64D6-4B8C-AC04-5CC861A8700B}"= UDP:27182:BitCometBeta 27182 TCP
"{2864126A-60F8-45FE-A480-CCF5078BAAAB}"= TCP:27182:BitCometBeta 27182 UDP
"TCP Query User{4DCC65A5-C76B-4841-8C62-369C88797E00}E:\\program files\\bitcomet\\bitcomet.exe"= UDP:E:\program files\bitcomet\bitcomet.exe:BitCometBeta - a BitTorrent Client
"UDP Query User{647EBE3E-96D4-464A-A6E1-136CCB6A0A84}E:\\program files\\bitcomet\\bitcomet.exe"= TCP:E:\program files\bitcomet\bitcomet.exe:BitCometBeta - a BitTorrent Client
"{3B624316-7AAA-4C56-8BC2-58F20D678D91}"= TCP:1990:BitCometBeta 1990 UDP
"TCP Query User{CBF8BF1C-53BE-40A8-9BF8-B20AE3151222}C:\\program files\\steam\\steamapps\\common\\trackmania nations forever\\tmforever.exe"= UDP:C:\program files\steam\steamapps\common\trackmania nations forever\tmforever.exe:TmForever
"UDP Query User{6971578A-888F-469A-B0CD-8F2E0CEF7844}C:\\program files\\steam\\steamapps\\common\\trackmania nations forever\\tmforever.exe"= TCP:C:\program files\steam\steamapps\common\trackmania nations forever\tmforever.exe:TmForever
"TCP Query User{C1860E28-EB6C-4C75-95D0-31A50177353B}C:\\program files\\steam\\steamapps\\sismix84\\source sdk base\\hl2.exe"= UDP:C:\program files\steam\steamapps\sismix84\source sdk base\hl2.exe:hl2
"UDP Query User{F3C0B706-3A08-4C8B-85BA-7BD5ACC5611E}C:\\program files\\steam\\steamapps\\sismix84\\source sdk base\\hl2.exe"= TCP:C:\program files\steam\steamapps\sismix84\source sdk base\hl2.exe:hl2
"TCP Query User{16704AB4-3FB6-47E8-BFEA-1039B260FDCB}C:\\program files\\steam\\steamapps\\sismix84\\garrysmod\\hl2.exe"= UDP:C:\program files\steam\steamapps\sismix84\garrysmod\hl2.exe:hl2
"UDP Query User{1605D756-1EB3-401B-B180-A11A78F1B018}C:\\program files\\steam\\steamapps\\sismix84\\garrysmod\\hl2.exe"= TCP:C:\program files\steam\steamapps\sismix84\garrysmod\hl2.exe:hl2
"TCP Query User{C65680A3-D450-4184-AF21-E0D9BD6CC061}C:\\program files\\codemasters\\dirt demo\\dirtdemo.exe"= UDP:C:\program files\codemasters\dirt demo\dirtdemo.exe:DiRT Demo Executable
"UDP Query User{C410DE0A-1050-44EF-9238-C11F4DA070DE}C:\\program files\\codemasters\\dirt demo\\dirtdemo.exe"= TCP:C:\program files\codemasters\dirt demo\dirtdemo.exe:DiRT Demo Executable
"{8D33CC54-D48A-4D4B-9B4A-F7973F059B01}"= UDP:58904:Pando P2P TCP Listening Port
"{ECAA1BA4-6930-4919-B98F-386E79C8F67F}"= TCP:58904:Pando P2P UDP Listening Port
"TCP Query User{C81B2AD2-8231-4CCB-951D-D76444B58A12}C:\\program files\\windows sidebar\\sidebar.exe"= UDP:C:\program files\windows sidebar\sidebar.exe:Volet Windows
"UDP Query User{2B9BBE5E-B30B-4BA2-A46B-28F8C3DD00E3}C:\\program files\\windows sidebar\\sidebar.exe"= TCP:C:\program files\windows sidebar\sidebar.exe:Volet Windows
"{4DFFC499-0582-4E96-8ABA-28927889F42A}"= UDP:3703:Adobe Version Cue CS3 Server
"{CBD05DFA-6D25-4427-AFA2-734EBBE0F9F5}"= UDP:3704:Adobe Version Cue CS3 Server
"{59542601-E00D-4FF8-8CAD-11DAE7978B42}"= UDP:50900:Adobe Version Cue CS3 Server
"{33343DE7-1AE0-4E89-BE79-A49C3FCD0FF3}"= UDP:50901:Adobe Version Cue CS3 Server
"{7EED4172-A902-4B16-AA5E-72DDB3242778}"= UDP:C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe:Adobe Version Cue CS3 Server
"{BA4DC3F9-4FD0-4815-8727-D6F18CAFE525}"= TCP:C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe:Adobe Version Cue CS3 Server
"{4B21CC43-76DC-4B81-8703-66BAE973A0DF}"= UDP:C:\Program Files\Pinnacle\VideoSpin\Programs\RM.exe:Render Manager
"{3790F397-A753-46E0-8875-B5C129AC23D1}"= TCP:C:\Program Files\Pinnacle\VideoSpin\Programs\RM.exe:Render Manager
"{FB39EB94-4ABD-4683-BC7B-B6ECFC2FF071}"= UDP:C:\Program Files\Pinnacle\VideoSpin\Programs\PMSRegisterFile.exe:PMSRegisterFile
"{012AA18A-9257-4FF1-9987-09F391589E63}"= TCP:C:\Program Files\Pinnacle\VideoSpin\Programs\PMSRegisterFile.exe:PMSRegisterFile
"{1DDC5BE1-810B-4585-850C-97B8DB125DB9}"= UDP:C:\Program Files\Pinnacle\VideoSpin\Programs\umi.exe:umi
"{0566A06B-DC7E-4554-9A9C-8417511E7AB2}"= TCP:C:\Program Files\Pinnacle\VideoSpin\Programs\umi.exe:umi
"{68FC7EEB-47CA-4D88-8B1B-00FC900DCD03}"= UDP:C:\Program Files\Pinnacle\VideoSpin\Programs\VideoSpin.exe:Pinnacle VideoSpin
"{E8DCE87B-A930-4FCC-8A33-755270B35359}"= TCP:C:\Program Files\Pinnacle\VideoSpin\Programs\VideoSpin.exe:Pinnacle VideoSpin

R2 Maxtor Sync Service;Maxtor Service;"C:\Program Files\Maxtor\Sync\SyncServices.exe" [2007-09-28 13:24]
R2 NMSAccessU;NMSAccessU;C:\Program Files\CDBurnerXP\NMSAccessU.exe [2008-03-09 11:20]
S3 PAC7302;PAC7302 VGA USB Camera;C:\Windows\system32\DRIVERS\PAC7302.SYS [2007-06-14 16:29]
S3 PIXMC10;JVC Communication PIX-MC10 Driver;C:\Windows\system32\Drivers\pixmc10c.sys [2003-12-05 15:39]
S3 PIXMC10A;JVC PIX-MC10 Audio Capture;C:\Windows\system32\Drivers\pixmc10a.sys [2003-12-05 15:39]
S3 PIXMC10V;JVC PIX-MC10 Video Capture;C:\Windows\system32\Drivers\pixmc10v.sys [2003-12-05 15:39]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{da61d521-05ca-11dc-930f-001a925d2aef}]
\shell\AutoRun\command - L:\InstallTomTomHOME.exe

*Newly Created Service* - CATCHME
.
Contenu du dossier 'Scheduled Tasks/Tâches planifiées'
"2008-06-30 19:20:13 C:\Windows\Tasks\User_Feed_Synchronization-{3D51593A-22C3-4D80-99D6-689FFDE3FA9A}.job"
- C:\Windows\system32\msfeedssync.exe
.
**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-01 14:01:39
Windows 6.0.6001 Service Pack 1 NTFS

Balayage processus cachés ...

Balayage caché autostart entries ...

Balayage des fichiers cachés ...

Scan terminé avec succès
Les fichiers cachés: 0

**************************************************************************
.
Temps d'accomplissement: 2008-07-01 14:04:06
ComboFix-quarantined-files.txt 2008-07-01 12:03:54

Pre-Run: 128,592,220,160 octets libres
Post-Run: 128,698,609,664 octets libres

357 --- E O F --- 2008-06-28 10:53:31
0
Réponse 23 / 26
papyber Messages postés 6430 Statut Contributeur sécurité 257
 
Télécharger Lop S&D.exe de eric71 et angeldark
https://sites.google.com/site/eric71mespages/lop.sd.exe
scanne ton Pc option1

0
Réponse 24 / 26
Sismix84 Messages postés 83 Statut Membre 2
 
J'ai déjà scanné mon PC avec Lop S&D, je le refait ?
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 26
papyber Messages postés 6430 Statut Contributeur sécurité 257
 
il semble qu'il reste des lignes infectieuses oui recommence stp
0
Réponse 26 / 26
Sismix84 Messages postés 83 Statut Membre 2
 
Salut, je crois devoir faire changer ma livebox, j'ai toujours des problème avec internet. Mais c'est bon, je devrais avoir internet pour quelque temps encore.

Pour mon problème, je crois qu'il est résolu, mon processeur ne travail plus comme avant, il est normal. A mon avis c'est le logiciel que propose Microsoft dans les mise à jour pour Vista qui a détecté un truc. Je vais quand même faire l'analyse que tu ma dit. On sais jamais.

Merci.
0
Précédent
  • 1
  • 2

Discussions similaires

Durée de fonctionnement CPU
Theodose3 -
Aubin -

7 réponses
overlay windows processeur IPS S.O. graphique LAT S.O.
ov3rlord91 -
smile -

11 réponses
PC multiprocesseur ACPI
alfredsson11 -
marcmarais -

1 réponse
Durée de Fonctionnement processeur
Neozik_ -
Neozik_ -

2 réponses
Que veut dire x64 ?
deneb -
epango -

56 réponses