|
|
|
|
|
|
|
CONTACT
|
|
Gsiteg(à)gmail.com
Renplacer (à) par @
|
|
|
|
|
|
|
|
|
|
|
|
|
| Auteur |
Message |
swifer67
Inscrit le: 16 Avr 2007
Messages: 14
|
 Posté le: Ven Fév 15, 2008 11:30 am Sujet du message: Fenêtres pubs intempestives |
 |
|
Bonjour tout le monde,
Depuis quelques jours, à chaque fois que j'ouvre Mozilla Firefox, une fenêtre de pub s'ouvre, de type Gladiatus et puis quand je navigue, il y en a d'autre qui apparaissent de type "hopelessromantic.com" , casino , zedo.... Je ne sais pas du tout comment ça se fait. C'est pour ça que je viens demander de l'aide ici. Si quelqu'un trouve une solution, ça m'intéresserait beaucoup. Je remercie tous ceux qui m'aideront à résoudre le Problème.
Sur ce Bonne journée à Tous.
PS: Ces pubs ne s'affichent pas toute les 2 minutes je tiens à le préciser, mais c'est tout de même assez énervant. |
|
|
|
|
arba
..
Inscrit le: 27 Jan 2008
Messages: 864
|
| Posté le: Ven Fév 15, 2008 7:12 pm Sujet du message: - : Fenêtres pubs intempestives |
|
|
salut
- Télécharge le fichier executable Hijackthis V 2.02 -://www.trendsecure.com/portal/fr/tools/security_tools/hijackthis/download
- Fais un double clic sur HJTInstall.exe afin de lancer l'installation
- Clique sur Install ensuite sur I Accept
- Clique sur Do a scan system and save log file
- Notepad s'ouvrira fais un copier coller de tout son contenu ici dans ta prochaine réponse.
- Aide à son installation : -://cybersecurite.xooit.com/t138[...]kThis-2-0-2.htm |
|
|
|
|
|
swifer67
Inscrit le: 16 Avr 2007
Messages: 14
|
| Posté le: Ven Fév 15, 2008 7:48 pm Sujet du message: - : Fenêtres pubs intempestives |
|
|
Voici le rapport :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:36, on 15/02/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Program Files\Executive Software\Diskeeper\DkService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Network LookOut\Net Monitor for Employees Professional\bin\NLSAgentSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Network LookOut\Net Monitor for Employees Professional\bin\NLSAgent.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Microsoft Encarta\Microsoft Encarta 2007 - Collection DVD\EDICT.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\BitTorrent_DNA\dna.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\BitTorrent\bittorrent.exe
C:\Program Files\Samsung\Samsung PC Studio 3\Launcher.exe
C:\Program Files\Samsung\Samsung PC Studio 3\ConMgr.exe
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceHelper.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\distnoted.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = -://www.google.fr/keyword/%s
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = -://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = -://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = -://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = -://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O2 - BHO: BrowsingTool - {D0661233-42D4-F7F1-80E1-8A9E0E99E71D} - C:\Program Files\BrowsingTool\BrowsingTool-2.dll
O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\RunOnce: [WIAWizardMenu] RUNDLL32.EXE C:\WINDOWS\system32\sti_ci.dll,WiaCreateWizardMenu
O4 - HKCU\..\Run: [E07FXLRD_38083015] "C:\Program Files\Microsoft Encarta\Microsoft Encarta 2007 - Collection DVD\EDICT.EXE" -m
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\BitTorrent_DNA\dna.exe"
O4 - HKUS\S-1-5-19\..\Run: [UberIcon] "C:\Program Files\UberIcon\UberIcon Manager.exe" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [VisualTaskTips] C:\Windows\System32\VisualTaskTips.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [Vistadrv] C:\Windows\System32\Vistadrive\vsdrv.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [TweakRAM] C:\Program Files\TweakRAM\TweakRAM.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [LClock] C:\Program Files\LClock\lclock.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVGFRE~1\avgw.exe /RUNONCE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nltide3] cmd.exe /C rundll32 advpack.dll,LaunchINFSection nLite.inf,C (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [UberIcon] "C:\Program Files\UberIcon\UberIcon Manager.exe" (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [nltide3] cmd.exe /C rundll32 advpack.dll,LaunchINFSection nLite.inf,C (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [UberIcon] "C:\Program Files\UberIcon\UberIcon Manager.exe" (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide3] cmd.exe /C rundll32 advpack.dll,LaunchINFSection nLite.inf,C (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [UberIcon] "C:\Program Files\UberIcon\UberIcon Manager.exe" (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide3] cmd.exe /C rundll32 advpack.dll,LaunchINFSection nLite.inf,C (User 'Default user')
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - -://webscanner.kaspersky.fr/kavwebscan_unicode.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - -://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - -://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - -://go.divx.com/plugin/DivXBrowserPlugin.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - -://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - -://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\Diskeeper\DkService.exe
O23 - Service: GhostStartService - Symantec Corporation - C:\Program Files\Symantec\Norton Ghost 2003\GhostStartService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Net Monitor for Employees Agent (NMEmployeesAgent) - Unknown owner - C:\Program Files\Network LookOut\Net Monitor for Employees Professional\bin\NLSAgentSvc.exe
--
End of file - 9176 bytes |
|
|
|
|
|
arba
..
Inscrit le: 27 Jan 2008
Messages: 864
|
| Posté le: Ven Fév 15, 2008 9:56 pm Sujet du message: - : Fenêtres pubs intempestives |
|
|
-telecharge navilog
-://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe
- Double clic sur Navilog1.exe afin de lancer l'installation
- Si le fix ne lance pas automatiquement aprés son installation
- Double clic sur le raccourci de navilog1 présent sur le bureau
- Appuie sur F ou f valide par Entrée
Fixnavilog est détecté par certains antivirus (faux positif) dans ce cas là désactive ton antivirus pendant la procédure
- Appuie sur une touche de ton clavier à chaque fois que cela est demandé, tu arriveras au menu des options
- Choisis l'option 1 appuie sur la touche Entrée pour valider ton choix.
- Patiente jusqu'au message : *** Analyse Termine le ..... ***
- Le scan fini un rapport portant ce fixnavi.txt sera affiché.
- Si le résultat du scan ne s'affiche pas tu le trouvera dans C:\fixnavi.txt.
-telcharge diag help
-://www.malekal.com/DiagHelp/DiagHelp.php
suis le tuto et valide l'option 1
- télécharge Antivir ( -://www.free-av.com . Une fois passé en mode sans echec, installe et paramétrer Antivir. Il est impératif de le configurer correctement afin de faire le meilleur scan possible --> voir la procédure ici (imprime la) : -://speedweb1.free.fr/frames2.php?page=tuto5
- télécharge Atf cleaner de Atribune ( -://www.atribune.org/content/view/19/2/)
- effectue les mises à jour pour Antivir et AVG antispywares
- désactiverla restauration système (click droit poste de travail, propriété, restauration système, coche désactiver restauration du système)
- redémarre le PC, impérativement en mode sans échec
-- au redémarrage de l'ordinateur, une fois le chargement du BIOS terminé, il y a un écran noir qui apparaît rapidement, appuie sur la touche [F8] ou [F5] jusqu'à l'affichage du menu des options avancées de Windows. Sélectionne "Mode sans échec" et appuie sur [Entrée].
-- à l'ouverture de session, choisi la session courante et non celle de l'administrateur
-lancer Atf cleaner (cocher la dernière case et faire "empty selected")
- recherche et élimination des parasites avec Antivir
lancer un scan complet du, ou des disques dur, et mettre en quarantaine tous les fichiers infectés (s'ils existent), éditer un rapport.
-- termine les processus suivants dans le gestionnaire des tâches (faire Ctrl+Alt+Suppr pour ouvrir la fenêtre puis cliquer sur l'onglet Processus) : AVGUARD.EXE - AVSCHED.EXE - AVWUPSRV.EXE et AVGNT.EXE puis, désinstalle Antivir dans ajout/suppression de programmes.
- recherche et élimination des pestes avec AVG antispywares (mettre en quarantaine) et édite un rapport
- Redémarre le PC en mode normal.
Poste les rapports navilog, diaghelp, antivir, avg antispywares. |
|
|
|
|
|
swifer67
Inscrit le: 16 Avr 2007
Messages: 14
|
| Posté le: Sam Fév 16, 2008 5:23 pm Sujet du message: - : Fenêtres pubs intempestives |
|
|
Navilog :
catchme 0.3.1319 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, -://www.gmer.net
Rootkit scan 2008-02-16 16:19:39
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden services & system hive ...
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:41,8e,f3,c6,12,89,de,12,fc,90,6a,95,3f,e8,bd,51,c6,99,4e,32,d6,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:41,8e,f3,c6,12,89,de,12,fc,90,6a,95,3f,e8,bd,51,c6,99,4e,32,d6,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet006\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet006\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet006\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet006\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet007\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet007\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet007\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet007\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet008\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet008\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet008\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet008\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet009\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet009\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet009\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet009\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet010\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet010\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet010\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet010\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet011\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet011\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet011\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet011\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet012\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet012\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet012\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet012\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet013\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet013\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet013\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet013\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet014\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet014\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet014\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet014\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet015\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet015\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet015\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet015\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet016\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet016\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet016\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet016\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet017\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet017\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet017\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet017\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet018\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet018\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet018\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet018\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet019\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet019\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet019\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet019\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
IPC error: 2 Le fichier spécifié est introuvable.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg]
"s1"=dword:2df9c43f
"s2"=dword:110480d0
"h0"=dword:00000002
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet021\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet021\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet021\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet021\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
scanning hidden registry entries ...
scanning hidden files ...
scan completed successfully
hidden services: 0
hidden files: 0
DiagHelp :
DiagHelp version v1.4 - -://www.malekal.com
excute le 16/02/2008 à 16:18:21,09
Liste des derniers fichies modifies/crees dans windir\system32 et prefetch
C:\WINDOWS\prefetch\NTOSBOOT-B00DFAAD.pf -->16/02/2008 11:38:48
C:\WINDOWS\prefetch\Layout.ini -->13/02/2008 14:13:59
C:\WINDOWS\System32\drivers\avg7core.sys -->01/01/2008 20:34:44
C:\WINDOWS\System32\drivers\avgmfx86.sys -->01/01/2008 20:34:43
C:\WINDOWS\System32\drivers\avgclean.sys -->01/01/2008 20:34:43
C:\WINDOWS\System32\drivers\avg7rsxp.sys -->01/01/2008 20:34:43
C:\WINDOWS\System32\drivers\avgtdi.sys -->26/12/2007 21:49:33
C:\WINDOWS\System32\drivers\avg7rsw.sys -->26/12/2007 21:49:32
C:\WINDOWS\System32\drivers\mrxdav.sys -->18/12/2007 10:51:35
C:\WINDOWS\System32\version69ie7fix.dll -->13/02/2008 12:20:06
C:\WINDOWS\System32\wpa.dbl -->12/02/2008 11:17:23
C:\WINDOWS\System32\mrt.exe -->05/02/2008 00:09:46
C:\WINDOWS\System32\pngfilt.dll -->11/01/2008 06:36:55
C:\WINDOWS\System32\QuickTimeVR.qtx -->10/01/2008 15:27:46
C:\WINDOWS\System32\QuickTime.qts -->10/01/2008 15:27:44
C:\WINDOWS\System32\PerfStringBackup.INI -->03/01/2008 20:59:36
C:\WINDOWS\System32\perfh00C.dat -->03/01/2008 20:59:36
C:\WINDOWS\System32\perfh009.dat -->03/01/2008 20:59:36
C:\WINDOWS\System32\perfc00C.dat -->03/01/2008 20:59:36
C:\WINDOWS\System32\perfc009.dat -->03/01/2008 20:59:36
C:\WINDOWS\System32\nscompat.tlb -->02/01/2008 13:24:12
C:\WINDOWS\System32\amcompat.tlb -->02/01/2008 13:24:12
C:\WINDOWS\System32\tmpA8B2A.FOT -->29/12/2007 14:15:38
C:\WINDOWS\System32\tmp7592A.FOT -->29/12/2007 14:15:38
C:\WINDOWS\System32\tmp5372A.FOT -->29/12/2007 14:15:37
C:\WINDOWS\System32\tmp2F42A.FOT -->29/12/2007 14:15:37
C:\WINDOWS\System32\tmp4022A.FOT -->29/12/2007 14:15:36
C:\WINDOWS\System32\tmpB6490.FOT -->28/12/2007 12:13:23
C:\WINDOWS\System32\tmp9B490.FOT -->28/12/2007 12:13:23
C:\WINDOWS\System32\tmp70590.FOT -->28/12/2007 12:13:23
C:\WINDOWS\System32\tmp56590.FOT -->28/12/2007 12:13:23
C:\WINDOWS\System32\tmp2C590.FOT -->28/12/2007 12:13:23
C:\WINDOWS\System32\CONFIG.NT -->26/12/2007 21:45:03
C:\WINDOWS\System32\FNTCACHE.DAT -->22/12/2007 12:02:26
C:\WINDOWS\WindowsUpdate.log -->16/02/2008 15:34:51
C:\WINDOWS\QTFont.qfn -->16/02/2008 11:37:56
C:\WINDOWS\0.log -->16/02/2008 11:37:48
C:\WINDOWS\wiadebug.log -->16/02/2008 11:36:11
C:\WINDOWS\wiaservc.log -->16/02/2008 11:36:07
C:\WINDOWS\SchedLgU.Txt -->16/02/2008 11:36:05
C:\WINDOWS\bootstat.dat -->16/02/2008 11:35:51
C:\WINDOWS\setupapi.log -->15/02/2008 22:32:55
C:\WINDOWS\QTFont.for -->15/02/2008 16:34:53
C:\WINDOWS\Sti_Trace.log -->15/02/2008 16:29:43
C:\WINDOWS\ntbtlog.txt -->15/02/2008 16:24:03
C:\WINDOWS\unins000.dat -->15/02/2008 14:07:32
C:\WINDOWS\unins000.exe -->15/02/2008 14:06:31
C:\WINDOWS\NeroDigital.ini -->13/02/2008 13:11:53
C:\WINDOWS\Composer.INI -->12/02/2008 13:36:47
winlogon.exe
Verified: Unsigned
svchost.exe
Verified: Signed
ws2_32.dll
Verified: Signed
user32.dll
Verified: Signed
tcpip.sys
Verified: Signed
ndis.sys
Verified: Signed
null.sys
Verified: Signed
ListDLLs v2.25 - DLL lister for Win9x/NT
Copyright (C) 1997-2004 Mark Russinovich
Sysinternals - www.sysinternals.com
------------------------------------------------------------------------------
explorer.exe pid: 1492
Command line: C:\WINDOWS\Explorer.EXE
Base Size Version Path
0x44080000 0xcf000 7.00.6000.16608 C:\WINDOWS\system32\WININET.dll
0x00400000 0x9000 6.00.5441.0000 C:\WINDOWS\system32\Normaliz.dll
0x43e00000 0x45000 7.00.6000.16608 C:\WINDOWS\system32\iertutil.dll
0x58b50000 0xdb000 5.82.2900.2982 C:\WINDOWS\system32\comctl32.dll
0x76f80000 0x7f000 2001.12.4414.0310 C:\WINDOWS\system32\CLBCATQ.DLL
0x01100000 0x188000 2001.12.4414.0258 C:\WINDOWS\system32\COMRes.dll
0x10000000 0x13000 7.05.0001.0036 C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll
0x44160000 0x127000 7.00.6000.16608 C:\WINDOWS\system32\urlmon.dll
0x44360000 0x5cd000 7.00.6000.16608 C:\WINDOWS\system32\ieframe.dll
0x01fe0000 0x21000 7.06.0000.0029 C:\Program Files\iTunes\iTunesMiniPlayer.dll
0x02080000 0xe000 7.06.0000.0021 C:\Program Files\iTunes\iTunesMiniPlayer.Resources\fr.lproj\iTunesMiniPlayerLocalized.dll
0x021b0000 0x23000 7.06.0000.0029 C:\Program Files\iTunes\iTunesMiniPlayer.Resources\iTunesMiniPlayer.dll
0x76ac0000 0x11000 3.05.2284.0000 C:\WINDOWS\system32\ATL.DLL
0x7d200000 0x2be000 3.01.4000.4039 C:\WINDOWS\system32\msi.dll
0x442b0000 0x3c000 7.00.6000.16608 C:\WINDOWS\system32\webcheck.dll
0x164a0000 0x23000 5.02.5721.5145 C:\WINDOWS\system32\WPDShServiceObj.dll
0x109c0000 0x2c000 5.02.5721.5145 C:\WINDOWS\system32\PortableDeviceTypes.dll
0x10930000 0x49000 5.02.5721.5145 C:\WINDOWS\system32\PortableDeviceApi.dll
0x02ea0000 0x5b000 8.01.0000.0000 C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.dll
0x78130000 0x9b000 8.00.50727.0762 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll
0x02f00000 0x4c000 8.00.0000.0000 C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.FRA
0x03290000 0x2c000 C:\Program Files\WinRAR\rarext.dll
0x00a90000 0x10000 8.00.0000.0456 C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
0x032c0000 0xd5000 1.04.0000.0000 C:\PROGRA~1\SPYBOT~1\SDHelper.dll
0x6d7c0000 0x79000 6.00.0020.0006 C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
0x7c340000 0x56000 7.10.3052.0004 C:\Program Files\Java\jre1.6.0_02\bin\MSVCR71.dll
0x325c0000 0x12000 11.00.5510.0000 C:\Program Files\Microsoft Office\OFFICE11\msohev.dll
ListDLLs v2.25 - DLL lister for Win9x/NT
Copyright (C) 1997-2004 Mark Russinovich
Sysinternals - www.sysinternals.com
------------------------------------------------------------------------------
winlogon.exe pid: 860
Command line: winlogon.exe
Base Size Version Path
0x01000000 0x81000 \??\C:\WINDOWS\system32\winlogon.exe
0x58b50000 0xdb000 5.82.2900.2982 C:\WINDOWS\system32\COMCTL32.dll
0x74730000 0x3d000 3.525.1117.0000 C:\WINDOWS\system32\ODBC32.dll
0x20000000 0x18000 3.525.1117.0000 C:\WINDOWS\system32\odbcint.dll
0x77000000 0x188000 2001.12.4414.0258 C:\WINDOWS\system32\COMRes.dll
0x76f80000 0x7f000 2001.12.4414.0310 C:\WINDOWS\system32\CLBCATQ.DLL
0x76010000 0x65000 6.02.3104.0000 C:\WINDOWS\system32\MSVCP60.dll
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 5CA0-33EB
Répertoire de C:\WINDOWS\system
28/05/2003 17:53 4 672 WOWPOST.EXE
1 fichier(s) 4 672 octets
0 Rép(s) 59 104 346 112 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 5CA0-33EB
Répertoire de C:\WINDOWS\system32
04/08/2004 01:54 6 144 csrss.exe
1 fichier(s) 6 144 octets
0 Rép(s) 59 104 346 112 octets libres
Contenu de Downloaded Program Files
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est 5CA0-33EB
Répertoire de C:\WINDOWS\Downloaded Program Files
15/02/2008 22:32 <REP> .
15/02/2008 22:32 <REP> ..
07/12/2004 17:07 32 bdcore.dll
25/05/2006 01:21 118 784 bdupd.dll
26/04/2007 22:42 65 desktop.ini
02/07/2007 11:36 155 DivXPlugin.inf
20/11/2007 16:04 1 523 536 FP_AX_CAB_INSTALLER.exe
13/04/2007 02:14 382 344 GAME_UNO1.dll
17/01/2007 15:44 316 GAME_UNO1.INF
25/05/2006 01:21 53 248 ipsupd.dll
08/08/2006 11:45 576 kavwebscan.inf
16/03/2005 12:34 7 407 lang.ini
13/04/2007 14:27 367 LegitCheckControl.inf
07/12/2004 17:07 32 libfn.dll
21/01/2008 17:43 130 live.ini
22/02/2007 23:41 304 544 MessengerStatsPAClient.dll
29/10/2007 16:45 1 244 oscan8.inf
25/10/2007 16:54 471 040 oscan8.ocx
14/03/2005 14:58 7 073 scanoptions.tsi
14/02/2007 15:30 144 setup.inf
20/11/2007 15:50 247 swflash.inf
19 fichier(s) 2 871 284 octets
Total des fichiers listés :
19 fichier(s) 2 871 284 octets
2 Rép(s) 59 104 342 016 octets libres
Recherche de rootkit! (Merci S!Ri)
Recherche d'infections connues
Export des clefs sensibles..
Liste des fichiers en exception sur le pare-feu XP SP2
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Messenger"
"C:\\Program Files\\Mozilla Firefox\\firefox.exe"="C:\\Program Files\\Mozilla Firefox\\firefox.exe:*:Enabled:Firefox"
"C:\\Program Files\\adslTV\\adsltv.exe"="C:\\Program Files\\adslTV\\adsltv.exe:*:Enabled:adsltv"
"C:\\Program Files\\adslTV\\vlc.exe"="C:\\Program Files\\adslTV\\vlc.exe:*:Enabled:VLC media player"
"C:\\Program Files\\Veoh Networks\\Veoh\\VeohClient.exe"="C:\\Program Files\\Veoh Networks\\Veoh\\VeohClient.exe:*:Enabled:Veoh Client"
"C:\\Program Files\\MessengerDiscovery\\MessengerDiscovery Live.exe"="C:\\Program Files\\MessengerDiscovery\\MessengerDiscovery Live.exe:*:Enabled:MessengerDiscovery Live the Windows Live Messenger addon"
"C:\\Program Files\\LimeWire\\LimeWire.exe"="C:\\Program Files\\LimeWire\\LimeWire.exe:*:Enabled:LimeWire"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\Grisoft\\AVG Free\\avginet.exe"="C:\\Program Files\\Grisoft\\AVG Free\\avginet.exe:*:Enabled:avginet.exe"
"C:\\Program Files\\Grisoft\\AVG Free\\avgamsvr.exe"="C:\\Program Files\\Grisoft\\AVG Free\\avgamsvr.exe:*:Enabled:avgamsvr.exe"
"C:\\Program Files\\Grisoft\\AVG Free\\avgcc.exe"="C:\\Program Files\\Grisoft\\AVG Free\\avgcc.exe:*:Enabled:avgcc.exe"
"C:\\Program Files\\Grisoft\\AVG Free\\avgemc.exe"="C:\\Program Files\\Grisoft\\AVG Free\\avgemc.exe:*:Enabled:avgemc.exe"
"C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes"
"C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Call"
"C:\\Program Files\\BitTorrent_DNA\\dna.exe"="C:\\Program Files\\BitTorrent_DNA\\dna.exe:*:Enabled:BitTorrent DNA"
"C:\\Program Files\\BitTorrent\\bittorrent.exe"="C:\\Program Files\\BitTorrent\\bittorrent.exe:*:Enabled:BitTorrent"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
Export de la clef SharedTaskScheduler
[SharedTaskScheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant"
exports des policies
REGEDIT4
[system]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001
Export des clefs sensibles..
Rechercher adresses sensibles dans le fichier HOSTS...
catchme 0.3.1319 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, -://www.gmer.net
Rootkit scan 2008-02-16 16:19:39
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden services & system hive ...
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:41,8e,f3,c6,12,89,de,12,fc,90,6a,95,3f,e8,bd,51,c6,99,4e,32,d6,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:41,8e,f3,c6,12,89,de,12,fc,90,6a,95,3f,e8,bd,51,c6,99,4e,32,d6,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet006\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet006\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet006\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet006\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet007\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet007\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet007\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet007\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet008\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet008\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet008\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet008\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet009\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet009\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet009\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet009\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet010\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet010\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet010\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet010\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet011\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet011\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet011\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet011\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet012\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet012\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet012\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet012\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet013\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet013\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet013\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet013\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet014\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet014\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet014\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet014\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet015\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet015\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet015\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet015\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet016\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet016\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet016\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet016\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet017\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet017\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet017\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet017\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet018\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet018\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet018\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet018\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet019\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet019\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet019\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet019\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
IPC error: 2 Le fichier spécifié est introuvable.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg]
"s1"=dword:2df9c43f
"s2"=dword:110480d0
"h0"=dword:00000002
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet021\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04]
"h0"=dword:00000000
"ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet021\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"h0"=dword:00000001
"khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,..
"p0"="C:\Program Files\DAEMON Tools\"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet021\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,..
"khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet021\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,..
scanning hidden registry entries ...
scanning hidden files ...
scan completed successfully
hidden services: 0
hidden files: 0
KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg)
Process list by traversal of KiWaitListHead
4 - System
224 - NLSAgent.exe
444 - AppleMobileDevi
464 - guard.exe
488 - avgamsvr.exe
560 - avgemc.exe
600 - DkService.exe
664 - svchost.exe
800 - NLSAgentSvc.exe
824 - firefox.exe
832 - csrss.exe
860 - winlogon.exe
916 - services.exe
928 - lsass.exe
1104 - svchost.exe
1148 - svchost.exe
1196 - svchost.exe
1440 - EDICT.EXE
1492 - explorer.exe
1828 - aawservice.exe
1908 - iTunesHelper.ex
1956 - alg.exe
1992 - avgas.exe
2060 - dna.exe
2356 - iTunes.exe
2448 - iPodService.exe
2960 - bittorrent.exe
3044 - cmd.exe
3096 - DfrgNTFS.exe
3336 - usnsvc.exe
3624 - NOTEPAD.EXE
3968 - msnmsgr.exe
Total number of processes = 32
NOTE: Under WinXP, this will not show all processes.
KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg)
Driver/Module list by traversal of PsLoadedModuleList
804D7000 - \WINDOWS\system32\ntoskrnl.exe
806EC000 - \WINDOWS\system32\hal.dll
F801B000 - \WINDOWS\system32\KDCOM.DLL
F7F2B000 - \WINDOWS\system32\BOOTVID.dll
F7A10000 - sptd.sys
F801D000 - \WINDOWS\System32\Drivers\WMILIB.SYS
F79F8000 - \WINDOWS\System32\Drivers\SCSIPORT.SYS
F79C9000 - ACPI.sys
F79B8000 - pci.sys
F7B1B000 - isapnp.sys
F80E3000 - pciide.sys
F7D9B000 - \WINDOWS\system32\DRIVERS\PCIIDEX.SYS
F7B2B000 - MountMgr.sys
F7999000 - ftdisk.sys
F801F000 - dmload.sys
F7973000 - dmio.sys
F7DA3000 - PartMgr.sys
F7B3B000 - VolSnap.sys
F795B000 - atapi.sys
F7B4B000 - SiSRaid.sys
F7B5B000 - Si3112.sys
F794A000 - Si3132.sys
F7B6B000 - disk.sys
F7B7B000 - \WINDOWS\system32\DRIVERS\CLASSPNP.SYS
F792A000 - fltMgr.sys
F7913000 - KSecDD.sys
F7900000 - WudfPf.sys
F7873000 - Ntfs.sys
F7846000 - NDIS.sys
F7B8B000 - uagp35.sys
F782C000 - Mup.sys
F6F30000 - \SystemRoot\system32\DRIVERS\intelppm.sys
F6EE0000 - \SystemRoot\system32\DRIVERS\sisgrp.sys
F6ECC000 - \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
F6F20000 - \SystemRoot\system32\DRIVERS\cdrom.sys
F7BBB000 - \SystemRoot\system32\DRIVERS\redbook.sys
F6EA9000 - \SystemRoot\system32\DRIVERS\ks.sys
F7E2B000 - \SystemRoot\System32\Drivers\GEARAspiWDM.sys
F6AD4000 - \SystemRoot\system32\drivers\ALCXWDM.SYS
F6AB0000 - \SystemRoot\system32\drivers\portcls.sys
F7BDB000 - \SystemRoot\system32\drivers\drmk.sys
F7E33000 - \SystemRoot\system32\DRIVERS\usbohci.sys
F6A8D000 - \SystemRoot\system32\DRIVERS\USBPORT.SYS
F7E3B000 - \SystemRoot\system32\DRIVERS\usbehci.sys
F7E43000 - \SystemRoot\system32\DRIVERS\sisnic.sys
F6A7C000 - \SystemRoot\system32\DRIVERS\serial.sys
F8017000 - \SystemRoot\system32\DRIVERS\serenum.sys
F6A68000 - \SystemRoot\system32\DRIVERS\parport.sys
F7BEB000 - \SystemRoot\system32\DRIVERS\i8042prt.sys
F7E4B000 - \SystemRoot\system32\DRIVERS\kbdclass.sys
F8141000 - \SystemRoot\system32\DRIVERS\audstub.sys
F7BFB000 - \SystemRoot\system32\DRIVERS\rasl2tp.sys
F7808000 - \SystemRoot\system32\DRIVERS\ndistapi.sys
F6A51000 - \SystemRoot\system32\DRIVERS\ndiswan.sys
F7C0B000 - \SystemRoot\system32\DRIVERS\raspppoe.sys
F7C1B000 - \SystemRoot\system32\DRIVERS\raspptp.sys
F7E53000 - \SystemRoot\system32\DRIVERS\TDI.SYS
F6A40000 - \SystemRoot\system32\DRIVERS\psched.sys
F7C2B000 - \SystemRoot\system32\DRIVERS\msgpc.sys
F7E5B000 - \SystemRoot\system32\DRIVERS\ptilink.sys
F7E63000 - \SystemRoot\system32\DRIVERS\raspti.sys
F69E8000 - \SystemRoot\system32\DRIVERS\rdpdr.sys
F7C3B000 - \SystemRoot\system32\DRIVERS\termdd.sys
F7E6B000 - \SystemRoot\system32\DRIVERS\mouclass.sys
F8043000 - \SystemRoot\system32\DRIVERS\swenum.sys
F698F000 - \SystemRoot\system32\DRIVERS\update.sys
F77E0000 - \SystemRoot\system32\DRIVERS\mssmbios.sys
F7C4B000 - \SystemRoot\System32\Drivers\NDProxy.SYS
F7C6B000 - \SystemRoot\system32\DRIVERS\usbhub.sys
F8045000 - \SystemRoot\system32\DRIVERS\USBD.SYS
F8047000 - \SystemRoot\System32\Drivers\Fs_Rec.SYS
F814E000 - \SystemRoot\System32\Drivers\Null.SYS
F8049000 - \SystemRoot\System32\Drivers\Beep.SYS
F8154000 - \SystemRoot\System32\DRIVERS\AvgAsCln.sys
F8156000 - \SystemRoot\System32\Drivers\avgclean.sys
F7E93000 - \??\C:\Program Files\Symantec\Norton Ghost 2003\ghpciscan.sys
F7E9B000 - \SystemRoot\System32\drivers\vga.sys
F804B000 - \SystemRoot\System32\DRIVERS\RDPCDD.sys
F7EA3000 - \SystemRoot\System32\Drivers\Msfs.SYS
F7EAB000 - \SystemRoot\System32\Drivers\Npfs.SYS
F7FF3000 - \SystemRoot\system32\DRIVERS\rasacd.sys
B8FCD000 - \SystemRoot\system32\DRIVERS\ipsec.sys
B8F75000 - \SystemRoot\system32\DRIVERS\tcpip.sys
B8F4D000 - \SystemRoot\system32\DRIVERS\netbt.sys
B8F2B000 - \SystemRoot\System32\drivers\afd.sys
F7C7B000 - \SystemRoot\system32\DRIVERS\netbios.sys
F7EB3000 - \SystemRoot\System32\Drivers\StarOpen.SYS
F7FFB000 - \SystemRoot\system32\DRIVERS\srvkp.sys
B8F00000 - \SystemRoot\system32\DRIVERS\rdbss.sys
B8E69000 - \SystemRoot\system32\DRIVERS\mrxsmb.sys
F7C9B000 - \SystemRoot\System32\Drivers\Fips.SYS
B8E47000 - \SystemRoot\system32\DRIVERS\ipnat.sys
F7CAB000 - \SystemRoot\system32\DRIVERS\wanarp.sys
F6A34000 - \SystemRoot\system32\DRIVERS\hidusb.sys
F7CBB000 - \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
F7EBB000 - \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
B8DF1000 - \SystemRoot\system32\DRIVERS\WlanUIG.sys
F6A30000 - \SystemRoot\system32\DRIVERS\mouhid.sys
B8D29000 - \SystemRoot\System32\Drivers\avg7core.sys
F804D000 - \SystemRoot\System32\Drivers\avg7rsw.sys
F7ECB000 - \SystemRoot\System32\Drivers\avg7rsxp.sys
F7CFB000 - \SystemRoot\System32\Drivers\Cdfs.SYS
F825D000 - \??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys
B8D11000 - \SystemRoot\System32\Drivers\dump_atapi.sys
F8067000 - \SystemRoot\System32\Drivers\dump_WMILIB.SYS
BF800000 - \SystemRoot\System32\win32k.sys
F697F000 - \SystemRoot\System32\drivers\Dxapi.sys
F7EFB000 - \SystemRoot\System32\watchdog.sys
BF9C3000 - \SystemRoot\System32\drivers\dxg.sys
F8199000 - \SystemRoot\System32\drivers\dxgthk.sys
BF9D5000 - \SystemRoot\System32\SiSGRV.dll
BFFA0000 - \SystemRoot\System32\ATMFD.DLL
B8B7D000 - \SystemRoot\system32\DRIVERS\ndisuio.sys
F8051000 - \SystemRoot\System32\Drivers\ParVdm.SYS
B89A1000 - \SystemRoot\System32\Drivers\Aspi32.SYS
F8059000 - \SystemRoot\System32\Drivers\avgtdi.sys
B8760000 - \SystemRoot\System32\Drivers\HTTP.sys
B8723000 - \SystemRoot\system32\drivers\wdmaud.sys
B88F1000 - \SystemRoot\system32\drivers\sysaudio.sys
B85E6000 - \SystemRoot\system32\DRIVERS\srv.sys
B8A89000 - \SystemRoot\system32\DRIVERS\secdrv.sys
B7CB2000 - \SystemRoot\system32\drivers\kmixer.sys
F7F1B000 * --[Hidden]--
F81EE000 - \SystemRoot\System32\DRIVERS\KProcCheck.sys
Total number of drivers = 124
Liste des programmes installes
Ad-Aware 2007
Adobe Flash Player ActiveX
Adobe Flash Player Plugin
Adobe Reader 8.1.2 - Français
Adobe Shockwave Player
adsl TV
Apple Mobile Device Support
Apple Software Update
Archiveur WinRAR
Audacity 1.2.6
AVG Anti-Spyware 7.5
AVG Free Edition
BrowsingTool
CCleaner (remove only)
Correctif pour Lecteur Windows Media 11 (KB939683)
Correctif pour Windows XP (KB914440)
Correctif pour Windows XP (KB918093)
CSI-Dark Motives
Diskeeper Professional Edition
DivX Content Uploader
DivX Web Player
EVEREST Ultimate Edition v4.00
FBrowsingAdvisor
HijackThis 2.0.2
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows XP (KB915865)
Hotfix for Windows XP (KB926239)
InterActual Player
iPod for Windows 2005-09-23
iPod for Windows 2005-09-23
iTunes
J2SE Runtime Environment 5.0 Update 3
Java(TM) 6 Update 2
Java(TM) SE Runtime Environment 6 Update 1
Kaspersky Online Scanner
Lecteur Windows Media 11
Les Experts - Las Vegas - Crimes en série 1.0
LimeWire 4.16.6
Messenger Plus! Live
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 French Language Pack
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Microsoft .NET Framework 2.0
Microsoft .NET Framework 2.0
Microsoft .NET Framework 2.0 Language Pack - FRA
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Encarta 2007 - Collection
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office Professional Edition 2003
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)
Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)
Mise à jour de sécurité pour Windows XP (KB918118)
Mise à jour de sécurité pour Windows XP (KB920213)
Mise à jour de sécurité pour Windows XP (KB921503)
Mise à jour de sécurité pour Windows XP (KB923694)
Mise à jour de sécurité pour Windows XP (KB923980)
Mise à jour de sécurité pour Windows XP (KB924270)
Mise à jour de sécurité pour Windows XP (KB924667)
Mise à jour de sécurité pour Windows XP (KB925902)
Mise à jour de sécurité pour Windows XP (KB926255)
Mise à jour de sécurité pour Windows XP (KB926436)
Mise à jour de sécurité pour Windows XP (KB927779)
Mise à jour de sécurité pour Windows XP (KB927802)
Mise à jour de sécurité pour Windows XP (KB928090)
Mise à jour de sécurité pour Windows XP (KB928255)
Mise à jour de sécurité pour Windows XP (KB928843)
Mise à jour de sécurité pour Windows XP (KB929123)
Mise à jour de sécurité pour Windows XP (KB929969)
Mise à jour de sécurité pour Windows XP (KB930178)
Mise à jour de sécurité pour Windows XP (KB931261)
Mise à jour de sécurité pour Windows XP (KB931768)
Mise à jour de sécurité pour Windows XP (KB931784)
Mise à jour de sécurité pour Windows XP (KB932168)
Mise à jour de sécurité pour Windows XP (KB933566)
Mise à jour de sécurité pour Windows XP (KB933729)
Mise à jour de sécurité pour Windows XP (KB935839)
Mise à jour de sécurité pour Windows XP (KB935840)
Mise à jour de sécurité pour Windows XP (KB936021)
Mise à jour de sécurité pour Windows XP (KB937143)
Mise à jour de sécurité pour Windows XP (KB937894)
Mise à jour de sécurité pour Windows XP (KB938127)
Mise à jour de sécurité pour Windows XP (KB938829)
Mise à jour de sécurité pour Windows XP (KB939653)
Mise à jour de sécurité pour Windows XP (KB941202)
Mise à jour de sécurité pour Windows XP (KB941568)
Mise à jour de sécurité pour Windows XP (KB941569)
Mise à jour de sécurité pour Windows XP (KB941644)
Mise à jour de sécurité pour Windows XP (KB943055)
Mise à jour de sécurité pour Windows XP (KB943460)
Mise à jour de sécurité pour Windows XP (KB943485)
Mise à jour de sécurité pour Windows XP (KB944653)
Mise à jour de sécurité pour Windows XP (KB946026)
Mise à jour pour Windows XP (KB927891)
Mise à jour pour Windows XP (KB930916)
Mise à jour pour Windows XP (KB931836)
Mise à jour pour Windows XP (KB933360)
Mise à jour pour Windows XP (KB936357)
Mise à jour pour Windows XP (KB938828)
Mise à jour pour Windows XP (KB942763)
Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA
Mozilla Fir |
|
|
|
|
|
arba
..
Inscrit le: 27 Jan 2008
Messages: 864
|
| Posté le: Sam Fév 16, 2008 5:52 pm Sujet du message: - : Fenêtres pubs intempestives |
|
|
réactive ta restauration systeme (ce qui aura pour effet de créer un nouveau point de restauration),puis :
- telecharge btfix
-://www.clubic.com/telecharger-fiche42579-btfix.html
extrait l'archive sur le bureau, fais un scan (recherche) puis nettoyer.
poste le rapport créé dans l'archive.
- Télécharge combofix.exe (de sUBs) de l'un de ces liens
-://download.bleepingcomputer.co[...]Bs/ComboFix.exe
-://subs.geekstogo.com/ComboFix.exe
-://www.forospyware.com/sUBs/ComboFix.exe enregistre ce fichier sur le bureau (impératif)
* Double clique combofix.exe tape 1 valide par Entrée pour lancer le scan
* Lorsque le scan sera complété, un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse.
NOTE : Le rapport se trouve également ici : C:\Combofix.txt
*** Combofix est détecté par certains antivirus comme une infection, il s'agit d'un "faux positif"
Vérifie si problèmes persistent. |
|
|
|
|
|
swifer67
Inscrit le: 16 Avr 2007
Messages: 14
|
| Posté le: Dim Fév 17, 2008 3:50 pm Sujet du message: - : Fenêtres pubs intempestives |
|
|
BTFix 1.060 (par bibi26) - 17/02/2008 16:32:03 - Nettoyage - Mode sans échec
Lancé depuis C:\Documents and Settings\Administrateur\Bureau\BTFix\BTFix.exe
---> Fichiers/dossiers supprimés
- Fichiers temporaires effacés
- C:\Documents and Settings\Administrateur\Application Data\WhenU
---> Nettoyage terminé
=============================================
ComboFix 08-02-17.2 - Administrateur 2008-02-17 16:39:43.2 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.253 [GMT 1:00]
Endroit: C:\Documents and Settings\Administrateur\Bureau\ComboFix.exe
* Création d'un nouveau point de restauration
AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !!
.
((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-01-17 to 2008-02-17 ))))))))))))))))))))))))))))))))))))
.
2008-02-16 22:55 . 2008-02-16 22:55 9,057,446 --a------ C:\upload_moi_JOHANNA.tar.gz
2008-02-16 16:33 . 2008-02-16 18:09 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Avira
2008-02-15 23:00 . 2008-02-17 16:16 <REP> d-------- C:\Program Files\Navilog1
2008-02-15 22:32 . 2008-02-16 15:59 <REP> d-------- C:\WINDOWS\BDOSCAN8
2008-02-15 20:35 . 2008-02-15 20:35 <REP> d-------- C:\Program Files\Trend Micro
2008-02-15 16:34 . 2008-02-17 16:44 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-02-15 16:34 . 2008-02-15 16:34 1,409 --a------ C:\WINDOWS\QTFont.for
2008-02-15 14:10 . 2008-02-15 14:10 <REP> d-------- C:\Documents and Settings\Administrateur\Application Data\Grisoft
2008-02-15 14:10 . 2007-05-30 13:10 10,872 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2008-02-15 14:07 . 2008-02-15 14:06 691,545 --a------ C:\WINDOWS\unins000.exe
2008-02-15 14:07 . 2008-02-15 14:07 3,458 --a------ C:\WINDOWS\unins000.dat
2008-02-15 14:01 . 2008-02-15 14:06 <REP> d-------- C:\Program Files\Spybot - Search & Destroy
2008-02-15 13:57 . 2008-02-15 13:57 <REP> d-------- C:\Program Files\Lavasoft
2008-02-15 13:57 . 2008-02-15 13:57 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-02-15 13:56 . 2008-02-15 13:56 <REP> d-------- C:\Program Files\Fichiers communs\Wise Installation Wizard
2008-02-15 13:53 . 2008-02-15 13:53 <REP> d-------- C:\Program Files\CCleaner
2008-02-15 11:47 . 2008-02-15 11:47 <REP> d-------- C:\Program Files\BitTorrent
2008-02-13 12:22 . 2007-12-18 10:51 179,584 -----c--- C:\WINDOWS\system32\dllcache\mrxdav.sys
2008-02-12 20:21 . 2008-02-15 16:27 <REP> d-------- C:\Program Files\PlayMP3z
2008-02-12 20:21 . 2008-02-15 12:27 <REP> d-------- C:\Program Files\FBrowsingAdvisor
2008-02-12 20:21 . 2008-02-12 20:21 <REP> d-------- C:\Program Files\FBrowserAdvisor
2008-02-12 20:21 . 2008-02-17 12:31 <REP> d-------- C:\Program Files\BrowsingTool
2008-02-12 17:55 . 2008-02-12 17:55 <REP> d-------- C:\Program Files\Audacity
2008-02-12 13:36 . 2008-02-12 13:36 54 --a------ C:\WINDOWS\Composer.INI
2008-02-12 12:55 . 2008-02-12 12:55 <REP> d-------- C:\Program Files\Notation
2008-02-11 19:59 . 2008-02-11 19:59 <REP> d-------- C:\Program Files\Network LookOut
2008-02-11 12:07 . 2008-02-17 16:42 <REP> d-------- C:\Documents and Settings\Administrateur\Application Data\BitTorrent
2008-02-11 12:06 . 2008-02-11 12:06 <REP> d-------- C:\Program Files\BitTorrent_DNA
2008-02-11 12:06 . 2008-02-17 16:42 <REP> d-------- C:\Documents and Settings\Administrateur\Application Data\BitTorrent DNA
2008-02-09 20:24 . 2008-02-10 22:42 <REP> d-------- C:\Program Files\HT Photo DVD 3.0 Trial
2008-02-09 15:57 . 1999-11-19 00:00 284,032 --a------ C:\WINDOWS\system32\XceedZip.dll
2008-02-06 21:23 . 2008-02-10 22:41 <REP> d-------- C:\Program Files\AtomixMP3
2008-02-05 13:01 . 2008-02-12 20:13 <REP> d-------- C:\Program Files\LimeWire
2008-01-27 16:12 . 2008-01-27 16:12 0 --a------ C:\WINDOWS\iPlayer.INI
2008-01-27 16:10 . 2008-01-27 16:10 <REP> d-------- C:\Program Files\InterActual
2008-01-18 21:50 . 2008-01-18 21:50 268 --ah----- C:\sqmdata01.sqm
2008-01-18 21:50 . 2008-01-18 21:50 172 --ah----- C:\sqmnoopt01.sqm
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-02-17 11:23 --------- d-----w C:\Documents and Settings\Administrateur\Application Data\AVG7
2008-02-15 14:24 --------- d-----w C:\Program Files\adslTV
2008-02-15 13:55 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-02-13 11:26 --------- d-----w C:\Documents and Settings\Administrateur\Application Data\LimeWire
2008-02-10 21:44 --------- d-----w C:\Program Files\K-Lite Codec Pack
2008-02-09 22:12 --------- d-----w C:\Program Files\Fichiers communs\Adobe
2008-02-09 19:24 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-01-26 13:31 --------- d-----w C:\Program Files\iTunes
2008-01-26 13:29 --------- d-----w C:\Program Files\iPod
2008-01-26 13:25 --------- d-----w C:\Program Files\QuickTime
2008-01-02 21:03 --------- d-----w C:\Program Files\DivX
2008-01-02 12:24 --------- d-----w C:\Program Files\Windows Media Connect 2
2008-01-02 11:42 12,424,199 ------w C:\AVG7QT.DAT
2008-01-01 19:34 --------- d-----w C:\Documents and Settings\All Users\Application Data\avg7
2008-01-01 19:18 --------- d-----w C:\Program Files\Fichiers communs\InstallShield
2008-01-01 15:43 --------- d-----w C:\Documents and Settings\Administrateur\Application Data\dvdcss
2007-12-29 20:35 --------- d-----w C:\Program Files\Ubisoft
2007-12-28 22:09 --------- d-----w C:\Program Files\SLD Codec Pack
2007-12-28 16:53 --------- d-----w C:\Program Files\XviD
2007-12-28 16:53 --------- d-----w C:\Program Files\The Playa
2007-12-28 16:52 --------- d-----w C:\Program Files\DivXCodec
2007-12-22 11:07 --------- d-----w C:\Program Files\MSN Messenger
2007-12-22 11:07 --------- d-----w C:\Program Files\Messenger Plus! Live
2007-12-21 20:30 --------- d-----w C:\Program Files\Gabest
2007-12-21 19:14 --------- d-----w C:\Documents and Settings\Administrateur\Application Data\Media Player Classic
2007-12-18 09:51 179,584 ----a-w C:\WINDOWS\system32\drivers\mrxdav.sys
2006-07-29 17:18 112 --sha-w C:\WINDOWS\system32\Vistadrive\unistl.cmd
.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D0661233-42D4-F7F1-80E1-8A9E0E99E71D}]
2007-12-30 21:48 1019904 --a------ C:\Program Files\BrowsingTool\BrowsingTool-2.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"E07FXLRD_38083015"="C:\Program Files\Microsoft Encarta\Microsoft Encarta 2007 - Collection DVD\EDICT.exe" [2006-06-13 17:11 351000]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 01:54 15360]
"DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" [ ]
"BitTorrent DNA"="C:\Program Files\BitTorrent_DNA\dna.exe" [2008-02-11 12:06 286016]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AVG7_CC"="C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe" [2008-01-01 20:34 406016]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2008-01-10 15:27 385024]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2008-01-15 03:22 267048]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 22:16 39792]
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-11 10:25 6731312]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"WIAWizardMenu"="C:\WINDOWS\system32\sti_ci.dll" [2006-09-08 14:12 678912]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"UberIcon"="C:\Program Files\UberIcon\UberIcon Manager.exe" [2005-08-12 19:52 180224]
"VisualTaskTips"="C:\Windows\System32\VisualTaskTips.exe" [2006-07-05 03:23 36864]
"Vistadrv"="C:\Windows\System32\Vistadrive\vsdrv.exe" [2006-07-30 02:37 121089]
"TweakRAM"="C:\Program Files\TweakRAM\TweakRAM.exe" [2006-04-15 17:07 907264]
"LClock"="C:\Program Files\LClock\lclock.exe" [2004-09-19 19:27 65536]
"AVG7_Run"="C:\PROGRA~1\Grisoft\AVGFRE~1\avgw.exe" [2008-01-01 20:34 146432]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nltide3"="cmd.exe" [2006-06-20 11:15 403968 C:\WINDOWS\system32\cmd.exe]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"DisableRegistryTools"= 0 (0x0)
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Sweex WiFi LAN 140 Nitro XM Utility.lnk]
path=C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Sweex WiFi LAN 140 Nitro XM Utility.lnk
backup=C:\WINDOWS\pss\Sweex WiFi LAN 140 Nitro XM Utility.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
--a------ 2008-01-11 22:16 39792 C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avast!]
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG7_CC]
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DiskeeperSystray]
--a------ 2005-07-26 16:52 184408 C:\Program Files\Executive Software\Diskeeper\DkIcon.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\E07FXLRD_19172968]
--a------ 2006-06-13 17:11 351000 C:\Program Files\Microsoft Encarta\Microsoft Encarta 2007 - Collection DVD\EDICT.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\E07FXLRD_25320921]
--a------ 2006-06-13 17:11 351000 C:\Program Files\Microsoft Encarta\Microsoft Encarta 2007 - Collection DVD\EDICT.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\E07FXLRD_29803734]
--a------ 2006-06-13 17:11 351000 C:\Program Files\Microsoft Encarta\Microsoft Encarta 2007 - Collection DVD\EDICT.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\E07FXLRD_3488515]
--a------ 2006-06-13 17:11 351000 C:\Program Files\Microsoft Encarta\Microsoft Encarta 2007 - Collection DVD\EDICT.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
--a------ 2008-01-15 03:22 267048 C:\Program Files\iTunes\iTunesHelper.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LClock]
--a------ 2004-09-19 19:27 65536 C:\Program Files\LClock\lclock.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Look 'n' Stop]
--a------ 2006-03-28 00:53 25474 C:\Program Files\Soft4Ever\looknstop\looknstop.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2008-01-10 15:27 385024 C:\Program Files\QuickTime\QTTask.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SiSPower]
--a------ 2006-03-09 02:04 49152 C:\WINDOWS\system32\SiSPower.dll
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
--a------ 2006-10-09 00:33 577536 C:\WINDOWS\SOUNDMAN.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
--a------ 2007-07-12 03:00 132496 C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TweakRAM]
--a------ 2006-04-15 17:07 907264 C:\Program Files\TweakRAM\TweakRAM.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UberIcon]
--a------ 2005-08-12 19:52 180224 C:\Program Files\UberIcon\UberIcon Manager.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Veoh]
--a------ 2007-12-03 13:21 3461120 C:\Program Files\Veoh Networks\Veoh\VeohClient.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Vistadrv]
--a------ 2006-07-30 02:37 121089 C:\WINDOWS\system32\Vistadrive\vsdrv.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VisualTaskTips]
--a------ 2006-07-05 03:23 36864 C:\Windows\System32\VisualTaskTips.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WINSOS VERIFY]
C:\Program Files\WINSOS\WINSOS.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"AVGEMS"=2 (0x2)
"Avg7UpdSvc"=2 (0x2)
"Avg7Alrt"=2 (0x2)
.
Contenu du dossier 'Scheduled Tasks/Tƒches planifi‚es'
"2008-02-14 13:21:08 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
.
**************************************************************************
catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, -://www.gmer.net
Rootkit scan 2008-02-17 16:44:35
Windows 5.1.2600 Service Pack 2 NTFS
Balayage processus cach‚s ...
Balayage cach‚ autostart entries ...
Balayage des fichiers cach‚s ...
Scan termin‚ avec succŠs
Les fichiers cach‚s: 0
**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Program Files\Executive Software\Diskeeper\DkService.exe
C:\Program Files\Network LookOut\Net Monitor for Employees Professional\bin\NLSAgentSvc.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Network LookOut\Net Monitor for Employees Professional\bin\NLSAgent.exe
.
**************************************************************************
.
Temps d'accomplissement: 2008-02-17 16:46:57 - machine was rebooted
ComboFix-quarantined-files.txt 2008-02-17 15:46:54
.
2008-02-13 23:00:01 --- E O F --- |
|
|
|
|
|
arba
..
Inscrit le: 27 Jan 2008
Messages: 864
|
| Posté le: Dim Fév 17, 2008 4:16 pm Sujet du message: - : Fenêtres pubs intempestives |
|
|
re
les soucis d'affichages persistent ils?
Si c'est le cas reposte un nouveau log hijackthis. |
|
|
|
|
|
swifer67
Inscrit le: 16 Avr 2007
Messages: 14
|
| Posté le: Dim Fév 17, 2008 4:35 pm Sujet du message: - : Fenêtres pubs intempestives |
|
|
Je crois qu'il y en a toujours un peti tpeu
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:34, on 17/02/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\Program Files\Executive Software\Diskeeper\DkService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Network LookOut\Net Monitor for Employees Professional\bin\NLSAgentSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Microsoft Encarta\Microsoft Encarta 2007 - Collection DVD\EDICT.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\BitTorrent_DNA\dna.exe
C:\WINDOWS\explorer.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Network LookOut\Net Monitor for Employees Professional\bin\NLSAgent.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\BitTorrent\bittorrent.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceHelper.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\distnoted.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = -://www.google.fr/keyword/%s
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O2 - BHO: BrowsingTool - {D0661233-42D4-F7F1-80E1-8A9E0E99E71D} - C:\Program Files\BrowsingTool\BrowsingTool-2.dll
O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\RunOnce: [WIAWizardMenu] RUNDLL32.EXE C:\WINDOWS\system32\sti_ci.dll,WiaCreateWizardMenu
O4 - HKCU\..\Run: [E07FXLRD_38083015] "C:\Program Files\Microsoft Encarta\Microsoft Encarta 2007 - Collection DVD\EDICT.EXE" -m
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\BitTorrent_DNA\dna.exe"
O4 - HKUS\S-1-5-19\..\Run: [UberIcon] "C:\Program Files\UberIcon\UberIcon Manager.exe" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [VisualTaskTips] C:\Windows\System32\VisualTaskTips.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [Vistadrv] C:\Windows\System32\Vistadrive\vsdrv.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [TweakRAM] C:\Program Files\TweakRAM\TweakRAM.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [LClock] C:\Program Files\LClock\lclock.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVGFRE~1\avgw.exe /RUNONCE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nltide3] cmd.exe /C rundll32 advpack.dll,LaunchINFSection nLite.inf,C (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [UberIcon] "C:\Program Files\UberIcon\UberIcon Manager.exe" (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [nltide3] cmd.exe /C rundll32 advpack.dll,LaunchINFSection nLite.inf,C (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [UberIcon] "C:\Program Files\UberIcon\UberIcon Manager.exe" (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide3] cmd.exe /C rundll32 advpack.dll,LaunchINFSection nLite.inf,C (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [UberIcon] "C:\Program Files\UberIcon\UberIcon Manager.exe" (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide3] cmd.exe /C rundll32 advpack.dll,LaunchINFSection nLite.inf,C (User 'Default user')
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - -://webscanner.kaspersky.fr/kavwebscan_unicode.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - -://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - -://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - -://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - -://go.divx.com/plugin/DivXBrowserPlugin.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - -://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - -://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\Diskeeper\DkService.exe
O23 - Service: GhostStartService - Symantec Corporation - C:\Program Files\Symantec\Norton Ghost 2003\GhostStartService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Net Monitor for Employees Agent (NMEmployeesAgent) - Unknown owner - C:\Program Files\Network LookOut\Net Monitor for Employees Professional\bin\NLSAgentSvc.exe
--
End of file - 8966 bytes |
|
|
|
|
|
arba
..
Inscrit le: 27 Jan 2008
Messages: 864
|
| Posté le: Dim Fév 17, 2008 4:46 pm Sujet du message: - : Fenêtres pubs intempestives |
|
|
execute hijacthis puis do a system scan and save a logfile et coche cette ligne :
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
fais fix checked
cette ligne n'est pas infectée mais superflue.
Es tu sur d'avoir toujours des affichages intempestifs car ton log est propre.
Verifie.
Si c'est le cas donne moi leurs noms complets. |
|
|
|
|
|
swifer67
Inscrit le: 16 Avr 2007
Messages: 14
|
| Posté le: Dim Fév 17, 2008 4:54 pm Sujet du message: - : Fenêtres pubs intempestives |
|
|
| Merci pour tout vraiment. Pour l'instant ça va, mais si j'en ai de nouveau je te fais signe et je te donne leur nom, mais vraiment Merci beaucoup ! |
|
|
|
|
|
arba
..
Inscrit le: 27 Jan 2008
Messages: 864
|
| Posté le: Dim Fév 17, 2008 5:00 pm Sujet du message: - : Fenêtres pubs intempestives |
|
|
| Pas de probleme swifer67 ! |
|
|
|
|
|
mars games
Inscrit le: 17 Fév 2008
Messages: 16
|
| Posté le: Dim Fév 17, 2008 9:12 pm Sujet du message: - : Fenêtres pubs intempestives |
|
|
| Sinon télécharge spybot, télécharge les MAJs et lance une recherche. |
|
|
|
|
|
swifer67
Inscrit le: 16 Avr 2007
Messages: 14
|
| Posté le: Dim Fév 17, 2008 9:18 pm Sujet du message: - : Fenêtres pubs intempestives |
|
|
| Merci mars games mais c'est bon pour l'instant ça ne le fais plus donc ça va. |
|
|
|
|
|
mars games
Inscrit le: 17 Fév 2008
Messages: 16
|
| Posté le: Dim Fév 17, 2008 10:43 pm Sujet du message: - : Fenêtres pubs intempestives |
|
|
| ok |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
FAQ
Rechercher
S'enregistrer
Profil
Se connecter pour vérifier ses messages privés
Connexion
