FORUMS  Forum d'informatique Forum jeux vidéos Forum loisirs  PROCESSUS WINDOWS  Processus Systèmes Processus Applicatifs Autres Processus Divers Processus  TELECHARGER  Logiciels Fichiers dll Pilotes  CONTACT  Gsiteg(à)gmail.com Renplacer (à) par @ Entrez les termes que vous recherchez. Web Gsiteg.com Envoyer un formulaire de recherche

FAQ   Rechercher   S'enregistrer   Profil   Se connecter pour vérifier ses messages privés   Connexion  Fenêtres pubs intempestives Aller à la page 1, 2  Suivante          GsiteG Index du Forum -> Sécurité Auteur Message swifer67 Inscrit le: 16 Avr 2007 Messages: 14 Posté le: Ven Fév 15, 2008 11:30 am    Sujet du message: Fenêtres pubs intempestives Bonjour tout le monde, Depuis quelques jours, à chaque fois que j'ouvre Mozilla Firefox, une fenêtre de pub s'ouvre, de type Gladiatus et puis quand je navigue, il y en a d'autre qui apparaissent de type "hopelessromantic.com" , casino , zedo.... Je ne sais pas du tout comment ça se fait. C'est pour ça que je viens demander de l'aide ici. Si quelqu'un trouve une solution, ça m'intéresserait beaucoup. Je remercie tous ceux qui m'aideront à résoudre le Problème. Sur ce Bonne journée à Tous. PS: Ces pubs ne s'affichent pas toute les 2 minutes je tiens à le préciser, mais c'est tout de même assez énervant. arba .. Inscrit le: 27 Jan 2008 Messages: 555 Posté le: Ven Fév 15, 2008 7:12 pm    Sujet du message: - : Fenêtres pubs intempestives salut - Télécharge le fichier executable Hijackthis V 2.02 http://www.trendsecure.com/portal/fr/tools/security_tools/hijackthis/download - Fais un double clic sur HJTInstall.exe afin de lancer l'installation - Clique sur Install ensuite sur I Accept - Clique sur Do a scan system and save log file - Notepad s'ouvrira fais un copier coller de tout son contenu ici dans ta prochaine réponse. - Aide à son installation : http://cybersecurite.xooit.com/t138[...]kThis-2-0-2.htm swifer67 Inscrit le: 16 Avr 2007 Messages: 14 Posté le: Ven Fév 15, 2008 7:48 pm    Sujet du message: - : Fenêtres pubs intempestives Voici le rapport : Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 20:36, on 15/02/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16608) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\Program Files\Executive Software\Diskeeper\DkService.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Network LookOut\Net Monitor for Employees Professional\bin\NLSAgentSvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Network LookOut\Net Monitor for Employees Professional\bin\NLSAgent.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe C:\Program Files\Microsoft Encarta\Microsoft Encarta 2007 - Collection DVD\EDICT.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\BitTorrent_DNA\dna.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\MSN Messenger\usnsvc.exe C:\Program Files\BitTorrent\bittorrent.exe C:\Program Files\Samsung\Samsung PC Studio 3\Launcher.exe C:\Program Files\Samsung\Samsung PC Studio 3\ConMgr.exe C:\Program Files\iTunes\iTunes.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceHelper.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\distnoted.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://www.google.fr/keyword/%s R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL O2 - BHO: BrowsingTool - {D0661233-42D4-F7F1-80E1-8A9E0E99E71D} - C:\Program Files\BrowsingTool\BrowsingTool-2.dll O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - HKLM\..\RunOnce: [WIAWizardMenu] RUNDLL32.EXE C:\WINDOWS\system32\sti_ci.dll,WiaCreateWizardMenu O4 - HKCU\..\Run: [E07FXLRD_38083015] "C:\Program Files\Microsoft Encarta\Microsoft Encarta 2007 - Collection DVD\EDICT.EXE" -m O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\BitTorrent_DNA\dna.exe" O4 - HKUS\S-1-5-19\..\Run: [UberIcon] "C:\Program Files\UberIcon\UberIcon Manager.exe" (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\Run: [VisualTaskTips] C:\Windows\System32\VisualTaskTips.exe (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\Run: [Vistadrv] C:\Windows\System32\Vistadrive\vsdrv.exe (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\Run: [TweakRAM] C:\Program Files\TweakRAM\TweakRAM.exe (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\Run: [LClock] C:\Program Files\LClock\lclock.exe (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVGFRE~1\avgw.exe /RUNONCE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\RunOnce: [nltide3] cmd.exe /C rundll32 advpack.dll,LaunchINFSection nLite.inf,C (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [UberIcon] "C:\Program Files\UberIcon\UberIcon Manager.exe" (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-20\..\RunOnce: [nltide3] cmd.exe /C rundll32 advpack.dll,LaunchINFSection nLite.inf,C (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [UberIcon] "C:\Program Files\UberIcon\UberIcon Manager.exe" (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\RunOnce: [nltide3] cmd.exe /C rundll32 advpack.dll,LaunchINFSection nLite.inf,C (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [UberIcon] "C:\Program Files\UberIcon\UberIcon Manager.exe" (User 'Default user') O4 - HKUS\.DEFAULT\..\RunOnce: [nltide3] cmd.exe /C rundll32 advpack.dll,LaunchINFSection nLite.inf,C (User 'Default user') O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Barre de recherche Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://go.divx.com/plugin/DivXBrowserPlugin.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O23 - Service: Diskeeper - Executive Software International, Inc. - C:\Program Files\Executive Software\Diskeeper\DkService.exe O23 - Service: GhostStartService - Symantec Corporation - C:\Program Files\Symantec\Norton Ghost 2003\GhostStartService.exe O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Net Monitor for Employees Agent (NMEmployeesAgent) - Unknown owner - C:\Program Files\Network LookOut\Net Monitor for Employees Professional\bin\NLSAgentSvc.exe -- End of file - 9176 bytes arba .. Inscrit le: 27 Jan 2008 Messages: 555 Posté le: Ven Fév 15, 2008 9:56 pm    Sujet du message: - : Fenêtres pubs intempestives -telecharge navilog http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe - Double clic sur Navilog1.exe afin de lancer l'installation - Si le fix ne lance pas automatiquement aprés son installation - Double clic sur le raccourci de navilog1 présent sur le bureau - Appuie sur F ou f valide par Entrée Fixnavilog est détecté par certains antivirus (faux positif) dans ce cas là désactive ton antivirus pendant la procédure - Appuie sur une touche de ton clavier à chaque fois que cela est demandé, tu arriveras au menu des options - Choisis l'option 1 appuie sur la touche Entrée pour valider ton choix. - Patiente jusqu'au message : *** Analyse Termine le ..... *** - Le scan fini un rapport portant ce fixnavi.txt sera affiché. - Si le résultat du scan ne s'affiche pas tu le trouvera dans C:\fixnavi.txt. -telcharge diag help http://www.malekal.com/DiagHelp/DiagHelp.php suis le tuto et valide l'option 1 - télécharge Antivir ( http://www.free-av.com . Une fois passé en mode sans echec, installe et paramétrer Antivir. Il est impératif de le configurer correctement afin de faire le meilleur scan possible --> voir la procédure ici (imprime la) : http://speedweb1.free.fr/frames2.php?page=tuto5 - télécharge Atf cleaner de Atribune ( http://www.atribune.org/content/view/19/2/) - effectue les mises à jour pour Antivir et AVG antispywares - désactiverla restauration système (click droit poste de travail, propriété, restauration système, coche désactiver restauration du système) - redémarre le PC, impérativement en mode sans échec -- au redémarrage de l'ordinateur, une fois le chargement du BIOS terminé, il y a un écran noir qui apparaît rapidement, appuie sur la touche [F8] ou [F5] jusqu'à l'affichage du menu des options avancées de Windows. Sélectionne "Mode sans échec" et appuie sur [Entrée]. -- à l'ouverture de session, choisi la session courante et non celle de l'administrateur -lancer Atf cleaner (cocher la dernière case et faire "empty selected") - recherche et élimination des parasites avec Antivir lancer un scan complet du, ou des disques dur, et mettre en quarantaine tous les fichiers infectés (s'ils existent), éditer un rapport. -- termine les processus suivants dans le gestionnaire des tâches (faire Ctrl+Alt+Suppr pour ouvrir la fenêtre puis cliquer sur l'onglet Processus) : AVGUARD.EXE - AVSCHED.EXE - AVWUPSRV.EXE et AVGNT.EXE puis, désinstalle Antivir dans ajout/suppression de programmes. - recherche et élimination des pestes avec AVG antispywares (mettre en quarantaine) et édite un rapport - Redémarre le PC en mode normal. Poste les rapports navilog, diaghelp, antivir, avg antispywares. swifer67 Inscrit le: 16 Avr 2007 Messages: 14 Posté le: Sam Fév 16, 2008 5:23 pm    Sujet du message: - : Fenêtres pubs intempestives Navilog : catchme 0.3.1319 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-02-16 16:19:39 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden services & system hive ... [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:41,8e,f3,c6,12,89,de,12,fc,90,6a,95,3f,e8,bd,51,c6,99,4e,32,d6,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:41,8e,f3,c6,12,89,de,12,fc,90,6a,95,3f,e8,bd,51,c6,99,4e,32,d6,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet006\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet006\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet006\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet006\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet007\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet007\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet007\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet007\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet008\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet008\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet008\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet008\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet009\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet009\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet009\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet009\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet010\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet010\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet010\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet010\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet011\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet011\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet011\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet011\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet012\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet012\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet012\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet012\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet013\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet013\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet013\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet013\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet014\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet014\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet014\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet014\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet015\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet015\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet015\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet015\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet016\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet016\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet016\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet016\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet017\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet017\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet017\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet017\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet018\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet018\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet018\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet018\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet019\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet019\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet019\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet019\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. IPC error: 2 Le fichier spécifié est introuvable. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg] "s1"=dword:2df9c43f "s2"=dword:110480d0 "h0"=dword:00000002 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet021\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet021\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet021\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet021\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. scanning hidden registry entries ... scanning hidden files ... scan completed successfully hidden services: 0 hidden files: 0 DiagHelp : DiagHelp version v1.4 - http://www.malekal.com excute le 16/02/2008 à 16:18:21,09 Liste des derniers fichies modifies/crees dans windir\system32 et prefetch C:\WINDOWS\prefetch\NTOSBOOT-B00DFAAD.pf -->16/02/2008 11:38:48 C:\WINDOWS\prefetch\Layout.ini -->13/02/2008 14:13:59 C:\WINDOWS\System32\drivers\avg7core.sys -->01/01/2008 20:34:44 C:\WINDOWS\System32\drivers\avgmfx86.sys -->01/01/2008 20:34:43 C:\WINDOWS\System32\drivers\avgclean.sys -->01/01/2008 20:34:43 C:\WINDOWS\System32\drivers\avg7rsxp.sys -->01/01/2008 20:34:43 C:\WINDOWS\System32\drivers\avgtdi.sys -->26/12/2007 21:49:33 C:\WINDOWS\System32\drivers\avg7rsw.sys -->26/12/2007 21:49:32 C:\WINDOWS\System32\drivers\mrxdav.sys -->18/12/2007 10:51:35 C:\WINDOWS\System32\version69ie7fix.dll -->13/02/2008 12:20:06 C:\WINDOWS\System32\wpa.dbl -->12/02/2008 11:17:23 C:\WINDOWS\System32\mrt.exe -->05/02/2008 00:09:46 C:\WINDOWS\System32\pngfilt.dll -->11/01/2008 06:36:55 C:\WINDOWS\System32\QuickTimeVR.qtx -->10/01/2008 15:27:46 C:\WINDOWS\System32\QuickTime.qts -->10/01/2008 15:27:44 C:\WINDOWS\System32\PerfStringBackup.INI -->03/01/2008 20:59:36 C:\WINDOWS\System32\perfh00C.dat -->03/01/2008 20:59:36 C:\WINDOWS\System32\perfh009.dat -->03/01/2008 20:59:36 C:\WINDOWS\System32\perfc00C.dat -->03/01/2008 20:59:36 C:\WINDOWS\System32\perfc009.dat -->03/01/2008 20:59:36 C:\WINDOWS\System32\nscompat.tlb -->02/01/2008 13:24:12 C:\WINDOWS\System32\amcompat.tlb -->02/01/2008 13:24:12 C:\WINDOWS\System32\tmpA8B2A.FOT -->29/12/2007 14:15:38 C:\WINDOWS\System32\tmp7592A.FOT -->29/12/2007 14:15:38 C:\WINDOWS\System32\tmp5372A.FOT -->29/12/2007 14:15:37 C:\WINDOWS\System32\tmp2F42A.FOT -->29/12/2007 14:15:37 C:\WINDOWS\System32\tmp4022A.FOT -->29/12/2007 14:15:36 C:\WINDOWS\System32\tmpB6490.FOT -->28/12/2007 12:13:23 C:\WINDOWS\System32\tmp9B490.FOT -->28/12/2007 12:13:23 C:\WINDOWS\System32\tmp70590.FOT -->28/12/2007 12:13:23 C:\WINDOWS\System32\tmp56590.FOT -->28/12/2007 12:13:23 C:\WINDOWS\System32\tmp2C590.FOT -->28/12/2007 12:13:23 C:\WINDOWS\System32\CONFIG.NT -->26/12/2007 21:45:03 C:\WINDOWS\System32\FNTCACHE.DAT -->22/12/2007 12:02:26 C:\WINDOWS\WindowsUpdate.log -->16/02/2008 15:34:51 C:\WINDOWS\QTFont.qfn -->16/02/2008 11:37:56 C:\WINDOWS\0.log -->16/02/2008 11:37:48 C:\WINDOWS\wiadebug.log -->16/02/2008 11:36:11 C:\WINDOWS\wiaservc.log -->16/02/2008 11:36:07 C:\WINDOWS\SchedLgU.Txt -->16/02/2008 11:36:05 C:\WINDOWS\bootstat.dat -->16/02/2008 11:35:51 C:\WINDOWS\setupapi.log -->15/02/2008 22:32:55 C:\WINDOWS\QTFont.for -->15/02/2008 16:34:53 C:\WINDOWS\Sti_Trace.log -->15/02/2008 16:29:43 C:\WINDOWS\ntbtlog.txt -->15/02/2008 16:24:03 C:\WINDOWS\unins000.dat -->15/02/2008 14:07:32 C:\WINDOWS\unins000.exe -->15/02/2008 14:06:31 C:\WINDOWS\NeroDigital.ini -->13/02/2008 13:11:53 C:\WINDOWS\Composer.INI -->12/02/2008 13:36:47 winlogon.exe Verified: Unsigned svchost.exe Verified: Signed ws2_32.dll Verified: Signed user32.dll Verified: Signed tcpip.sys Verified: Signed ndis.sys Verified: Signed null.sys Verified: Signed ListDLLs v2.25 - DLL lister for Win9x/NT Copyright (C) 1997-2004 Mark Russinovich Sysinternals - www.sysinternals.com ------------------------------------------------------------------------------ explorer.exe pid: 1492 Command line: C:\WINDOWS\Explorer.EXE Base Size Version Path 0x44080000 0xcf000 7.00.6000.16608 C:\WINDOWS\system32\WININET.dll 0x00400000 0x9000 6.00.5441.0000 C:\WINDOWS\system32\Normaliz.dll 0x43e00000 0x45000 7.00.6000.16608 C:\WINDOWS\system32\iertutil.dll 0x58b50000 0xdb000 5.82.2900.2982 C:\WINDOWS\system32\comctl32.dll 0x76f80000 0x7f000 2001.12.4414.0310 C:\WINDOWS\system32\CLBCATQ.DLL 0x01100000 0x188000 2001.12.4414.0258 C:\WINDOWS\system32\COMRes.dll 0x10000000 0x13000 7.05.0001.0036 C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll 0x44160000 0x127000 7.00.6000.16608 C:\WINDOWS\system32\urlmon.dll 0x44360000 0x5cd000 7.00.6000.16608 C:\WINDOWS\system32\ieframe.dll 0x01fe0000 0x21000 7.06.0000.0029 C:\Program Files\iTunes\iTunesMiniPlayer.dll 0x02080000 0xe000 7.06.0000.0021 C:\Program Files\iTunes\iTunesMiniPlayer.Resources\fr.lproj\iTunesMiniPlayerLocalized.dll 0x021b0000 0x23000 7.06.0000.0029 C:\Program Files\iTunes\iTunesMiniPlayer.Resources\iTunesMiniPlayer.dll 0x76ac0000 0x11000 3.05.2284.0000 C:\WINDOWS\system32\ATL.DLL 0x7d200000 0x2be000 3.01.4000.4039 C:\WINDOWS\system32\msi.dll 0x442b0000 0x3c000 7.00.6000.16608 C:\WINDOWS\system32\webcheck.dll 0x164a0000 0x23000 5.02.5721.5145 C:\WINDOWS\system32\WPDShServiceObj.dll 0x109c0000 0x2c000 5.02.5721.5145 C:\WINDOWS\system32\PortableDeviceTypes.dll 0x10930000 0x49000 5.02.5721.5145 C:\WINDOWS\system32\PortableDeviceApi.dll 0x02ea0000 0x5b000 8.01.0000.0000 C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.dll 0x78130000 0x9b000 8.00.50727.0762 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll 0x02f00000 0x4c000 8.00.0000.0000 C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.FRA 0x03290000 0x2c000 C:\Program Files\WinRAR\rarext.dll 0x00a90000 0x10000 8.00.0000.0456 C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll 0x032c0000 0xd5000 1.04.0000.0000 C:\PROGRA~1\SPYBOT~1\SDHelper.dll 0x6d7c0000 0x79000 6.00.0020.0006 C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll 0x7c340000 0x56000 7.10.3052.0004 C:\Program Files\Java\jre1.6.0_02\bin\MSVCR71.dll 0x325c0000 0x12000 11.00.5510.0000 C:\Program Files\Microsoft Office\OFFICE11\msohev.dll ListDLLs v2.25 - DLL lister for Win9x/NT Copyright (C) 1997-2004 Mark Russinovich Sysinternals - www.sysinternals.com ------------------------------------------------------------------------------ winlogon.exe pid: 860 Command line: winlogon.exe Base Size Version Path 0x01000000 0x81000 \??\C:\WINDOWS\system32\winlogon.exe 0x58b50000 0xdb000 5.82.2900.2982 C:\WINDOWS\system32\COMCTL32.dll 0x74730000 0x3d000 3.525.1117.0000 C:\WINDOWS\system32\ODBC32.dll 0x20000000 0x18000 3.525.1117.0000 C:\WINDOWS\system32\odbcint.dll 0x77000000 0x188000 2001.12.4414.0258 C:\WINDOWS\system32\COMRes.dll 0x76f80000 0x7f000 2001.12.4414.0310 C:\WINDOWS\system32\CLBCATQ.DLL 0x76010000 0x65000 6.02.3104.0000 C:\WINDOWS\system32\MSVCP60.dll Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est 5CA0-33EB Répertoire de C:\WINDOWS\system 28/05/2003 17:53 4 672 WOWPOST.EXE 1 fichier(s) 4 672 octets 0 Rép(s) 59 104 346 112 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est 5CA0-33EB Répertoire de C:\WINDOWS\system32 04/08/2004 01:54 6 144 csrss.exe 1 fichier(s) 6 144 octets 0 Rép(s) 59 104 346 112 octets libres Contenu de Downloaded Program Files Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est 5CA0-33EB Répertoire de C:\WINDOWS\Downloaded Program Files 15/02/2008 22:32 <REP> . 15/02/2008 22:32 <REP> .. 07/12/2004 17:07 32 bdcore.dll 25/05/2006 01:21 118 784 bdupd.dll 26/04/2007 22:42 65 desktop.ini 02/07/2007 11:36 155 DivXPlugin.inf 20/11/2007 16:04 1 523 536 FP_AX_CAB_INSTALLER.exe 13/04/2007 02:14 382 344 GAME_UNO1.dll 17/01/2007 15:44 316 GAME_UNO1.INF 25/05/2006 01:21 53 248 ipsupd.dll 08/08/2006 11:45 576 kavwebscan.inf 16/03/2005 12:34 7 407 lang.ini 13/04/2007 14:27 367 LegitCheckControl.inf 07/12/2004 17:07 32 libfn.dll 21/01/2008 17:43 130 live.ini 22/02/2007 23:41 304 544 MessengerStatsPAClient.dll 29/10/2007 16:45 1 244 oscan8.inf 25/10/2007 16:54 471 040 oscan8.ocx 14/03/2005 14:58 7 073 scanoptions.tsi 14/02/2007 15:30 144 setup.inf 20/11/2007 15:50 247 swflash.inf 19 fichier(s) 2 871 284 octets Total des fichiers listés : 19 fichier(s) 2 871 284 octets 2 Rép(s) 59 104 342 016 octets libres Recherche de rootkit! (Merci S!Ri) Recherche d'infections connues Export des clefs sensibles.. Liste des fichiers en exception sur le pare-feu XP SP2 "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Messenger" "C:\\Program Files\\Mozilla Firefox\\firefox.exe"="C:\\Program Files\\Mozilla Firefox\\firefox.exe:*:Enabled:Firefox" "C:\\Program Files\\adslTV\\adsltv.exe"="C:\\Program Files\\adslTV\\adsltv.exe:*:Enabled:adsltv" "C:\\Program Files\\adslTV\\vlc.exe"="C:\\Program Files\\adslTV\\vlc.exe:*:Enabled:VLC media player" "C:\\Program Files\\Veoh Networks\\Veoh\\VeohClient.exe"="C:\\Program Files\\Veoh Networks\\Veoh\\VeohClient.exe:*:Enabled:Veoh Client" "C:\\Program Files\\MessengerDiscovery\\MessengerDiscovery Live.exe"="C:\\Program Files\\MessengerDiscovery\\MessengerDiscovery Live.exe:*:Enabled:MessengerDiscovery Live the Windows Live Messenger addon" "C:\\Program Files\\LimeWire\\LimeWire.exe"="C:\\Program Files\\LimeWire\\LimeWire.exe:*:Enabled:LimeWire" "%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\\Program Files\\Grisoft\\AVG Free\\avginet.exe"="C:\\Program Files\\Grisoft\\AVG Free\\avginet.exe:*:Enabled:avginet.exe" "C:\\Program Files\\Grisoft\\AVG Free\\avgamsvr.exe"="C:\\Program Files\\Grisoft\\AVG Free\\avgamsvr.exe:*:Enabled:avgamsvr.exe" "C:\\Program Files\\Grisoft\\AVG Free\\avgcc.exe"="C:\\Program Files\\Grisoft\\AVG Free\\avgcc.exe:*:Enabled:avgcc.exe" "C:\\Program Files\\Grisoft\\AVG Free\\avgemc.exe"="C:\\Program Files\\Grisoft\\AVG Free\\avgemc.exe:*:Enabled:avgemc.exe" "C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes" "C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Call" "C:\\Program Files\\BitTorrent_DNA\\dna.exe"="C:\\Program Files\\BitTorrent_DNA\\dna.exe:*:Enabled:BitTorrent DNA" "C:\\Program Files\\BitTorrent\\bittorrent.exe"="C:\\Program Files\\BitTorrent\\bittorrent.exe:*:Enabled:BitTorrent" "%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" Export de la clef SharedTaskScheduler [SharedTaskScheduler] "{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui" "{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant" exports des policies REGEDIT4 [system] "dontdisplaylastusername"=dword:00000000 "legalnoticecaption"="" "legalnoticetext"="" "shutdownwithoutlogon"=dword:00000001 "undockwithoutlogon"=dword:00000001 Export des clefs sensibles.. Rechercher adresses sensibles dans le fichier HOSTS... catchme 0.3.1319 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-02-16 16:19:39 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden services & system hive ... [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:41,8e,f3,c6,12,89,de,12,fc,90,6a,95,3f,e8,bd,51,c6,99,4e,32,d6,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:41,8e,f3,c6,12,89,de,12,fc,90,6a,95,3f,e8,bd,51,c6,99,4e,32,d6,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet005\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet006\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet006\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet006\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet006\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet007\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet007\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet007\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet007\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet008\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet008\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet008\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet008\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet009\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet009\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet009\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet009\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet010\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet010\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet010\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet010\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet011\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet011\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet011\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet011\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet012\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet012\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet012\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet012\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet013\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet013\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet013\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet013\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet014\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet014\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet014\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet014\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet015\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet015\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet015\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet015\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet016\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet016\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet016\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet016\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet017\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet017\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet017\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet017\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet018\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet018\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet018\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet018\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet019\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet019\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet019\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet019\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. IPC error: 2 Le fichier spécifié est introuvable. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg] "s1"=dword:2df9c43f "s2"=dword:110480d0 "h0"=dword:00000002 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet021\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04] "h0"=dword:00000000 "ujdew"=hex:30,77,ae,91,39,7b,b7,91,75,1f,11,44,4e,89,4f,c7,fe,f6,62,44,3c,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet021\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000001 "khjeh"=hex:51,e6,6f,c3,c9,40,49,a8,3c,e5,b1,95,d0,bc,86,c6,dc,75,3a,8d,55,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet021\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,32,f2,17,51,8b,df,00,39,86,9d,de,a9,32,7d,ea,a0,84,.. "khjeh"=hex:d0,62,32,49,3d,d0,87,d7,76,6b,9e,99,22,e9,54,7a,cf,65,0b,24,ed,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet021\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:78,2a,c0,d5,e7,f1,c7,ea,f2,de,1b,f6,5f,27,74,c7,94,19,ba,46,89,.. scanning hidden registry entries ... scanning hidden files ... scan completed successfully hidden services: 0 hidden files: 0 KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg) Process list by traversal of KiWaitListHead 4 - System 224 - NLSAgent.exe 444 - AppleMobileDevi 464 - guard.exe 488 - avgamsvr.exe 560 - avgemc.exe 600 - DkService.exe 664 - svchost.exe 800 - NLSAgentSvc.exe 824 - firefox.exe 832 - csrss.exe 860 - winlogon.exe 916 - services.exe 928 - lsass.exe 1104 - svchost.exe 1148 - svchost.exe 1196 - svchost.exe 1440 - EDICT.EXE 1492 - explorer.exe 1828 - aawservice.exe 1908 - iTunesHelper.ex 1956 - alg.exe 1992 - avgas.exe 2060 - dna.exe 2356 - iTunes.exe 2448 - iPodService.exe 2960 - bittorrent.exe 3044 - cmd.exe 3096 - DfrgNTFS.exe 3336 - usnsvc.exe 3624 - NOTEPAD.EXE 3968 - msnmsgr.exe Total number of processes = 32 NOTE: Under WinXP, this will not show all processes. KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg) Driver/Module list by traversal of PsLoadedModuleList 804D7000 - \WINDOWS\system32\ntoskrnl.exe 806EC000 - \WINDOWS\system32\hal.dll F801B000 - \WINDOWS\system32\KDCOM.DLL F7F2B000 - \WINDOWS\system32\BOOTVID.dll F7A10000 - sptd.sys F801D000 - \WINDOWS\System32\Drivers\WMILIB.SYS F79F8000 - \WINDOWS\System32\Drivers\SCSIPORT.SYS F79C9000 - ACPI.sys F79B8000 - pci.sys F7B1B000 - isapnp.sys F80E3000 - pciide.sys F7D9B000 - \WINDOWS\system32\DRIVERS\PCIIDEX.SYS F7B2B000 - MountMgr.sys F7999000 - ftdisk.sys F801F000 - dmload.sys F7973000 - dmio.sys F7DA3000 - PartMgr.sys F7B3B000 - VolSnap.sys F795B000 - atapi.sys F7B4B000 - SiSRaid.sys F7B5B000 - Si3112.sys F794A000 - Si3132.sys F7B6B000 - disk.sys F7B7B000 - \WINDOWS\system32\DRIVERS\CLASSPNP.SYS F792A000 - fltMgr.sys F7913000 - KSecDD.sys F7900000 - WudfPf.sys F7873000 - Ntfs.sys F7846000 - NDIS.sys F7B8B000 - uagp35.sys F782C000 - Mup.sys F6F30000 - \SystemRoot\system32\DRIVERS\intelppm.sys F6EE0000 - \SystemRoot\system32\DRIVERS\sisgrp.sys F6ECC000 - \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS F6F20000 - \SystemRoot\system32\DRIVERS\cdrom.sys F7BBB000 - \SystemRoot\system32\DRIVERS\redbook.sys F6EA9000 - \SystemRoot\system32\DRIVERS\ks.sys F7E2B000 - \SystemRoot\System32\Drivers\GEARAspiWDM.sys F6AD4000 - \SystemRoot\system32\drivers\ALCXWDM.SYS F6AB0000 - \SystemRoot\system32\drivers\portcls.sys F7BDB000 - \SystemRoot\system32\drivers\drmk.sys F7E33000 - \SystemRoot\system32\DRIVERS\usbohci.sys F6A8D000 - \SystemRoot\system32\DRIVERS\USBPORT.SYS F7E3B000 - \SystemRoot\system32\DRIVERS\usbehci.sys F7E43000 - \SystemRoot\system32\DRIVERS\sisnic.sys F6A7C000 - \SystemRoot\system32\DRIVERS\serial.sys F8017000 - \SystemRoot\system32\DRIVERS\serenum.sys F6A68000 - \SystemRoot\system32\DRIVERS\parport.sys F7BEB000 - \SystemRoot\system32\DRIVERS\i8042prt.sys F7E4B000 - \SystemRoot\system32\DRIVERS\kbdclass.sys F8141000 - \SystemRoot\system32\DRIVERS\audstub.sys F7BFB000 - \SystemRoot\system32\DRIVERS\rasl2tp.sys F7808000 - \SystemRoot\system32\DRIVERS\ndistapi.sys F6A51000 - \SystemRoot\system32\DRIVERS\ndiswan.sys F7C0B000 - \SystemRoot\system32\DRIVERS\raspppoe.sys F7C1B000 - \SystemRoot\system32\DRIVERS\raspptp.sys F7E53000 - \SystemRoot\system32\DRIVERS\TDI.SYS F6A40000 - \SystemRoot\system32\DRIVERS\psched.sys F7C2B000 - \SystemRoot\system32\DRIVERS\msgpc.sys F7E5B000 - \SystemRoot\system32\DRIVERS\ptilink.sys F7E63000 - \SystemRoot\system32\DRIVERS\raspti.sys F69E8000 - \SystemRoot\system32\DRIVERS\rdpdr.sys F7C3B000 - \SystemRoot\system32\DRIVERS\termdd.sys F7E6B000 - \SystemRoot\system32\DRIVERS\mouclass.sys F8043000 - \SystemRoot\system32\DRIVERS\swenum.sys F698F000 - \SystemRoot\system32\DRIVERS\update.sys F77E0000 - \SystemRoot\system32\DRIVERS\mssmbios.sys F7C4B000 - \SystemRoot\System32\Drivers\NDProxy.SYS F7C6B000 - \SystemRoot\system32\DRIVERS\usbhub.sys F8045000 - \SystemRoot\system32\DRIVERS\USBD.SYS F8047000 - \SystemRoot\System32\Drivers\Fs_Rec.SYS F814E000 - \SystemRoot\System32\Drivers\Null.SYS F8049000 - \SystemRoot\System32\Drivers\Beep.SYS F8154000 - \SystemRoot\System32\DRIVERS\AvgAsCln.sys F8156000 - \SystemRoot\System32\Drivers\avgclean.sys F7E93000 - \??\C:\Program Files\Symantec\Norton Ghost 2003\ghpciscan.sys F7E9B000 - \SystemRoot\System32\drivers\vga.sys F804B000 - \SystemRoot\System32\DRIVERS\RDPCDD.sys F7EA3000 - \SystemRoot\System32\Drivers\Msfs.SYS F7EAB000 - \SystemRoot\System32\Drivers\Npfs.SYS F7FF3000 - \SystemRoot\system32\DRIVERS\rasacd.sys B8FCD000 - \SystemRoot\system32\DRIVERS\ipsec.sys B8F75000 - \SystemRoot\system32\DRIVERS\tcpip.sys B8F4D000 - \SystemRoot\system32\DRIVERS\netbt.sys B8F2B000 - \SystemRoot\System32\drivers\afd.sys F7C7B000 - \SystemRoot\system32\DRIVERS\netbios.sys F7EB3000 - \SystemRoot\System32\Drivers\StarOpen.SYS F7FFB000 - \SystemRoot\system32\DRIVERS\srvkp.sys B8F00000 - \SystemRoot\system32\DRIVERS\rdbss.sys B8E69000 - \SystemRoot\system32\DRIVERS\mrxsmb.sys F7C9B000 - \SystemRoot\System32\Drivers\Fips.SYS B8E47000 - \SystemRoot\system32\DRIVERS\ipnat.sys F7CAB000 - \SystemRoot\system32\DRIVERS\wanarp.sys F6A34000 - \SystemRoot\system32\DRIVERS\hidusb.sys F7CBB000 - \SystemRoot\system32\DRIVERS\HIDCLASS.SYS F7EBB000 - \SystemRoot\system32\DRIVERS\HIDPARSE.SYS B8DF1000 - \SystemRoot\system32\DRIVERS\WlanUIG.sys F6A30000 - \SystemRoot\system32\DRIVERS\mouhid.sys B8D29000 - \SystemRoot\System32\Drivers\avg7core.sys F804D000 - \SystemRoot\System32\Drivers\avg7rsw.sys F7ECB000 - \SystemRoot\System32\Drivers\avg7rsxp.sys F7CFB000 - \SystemRoot\System32\Drivers\Cdfs.SYS F825D000 - \??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys B8D11000 - \SystemRoot\System32\Drivers\dump_atapi.sys F8067000 - \SystemRoot\System32\Drivers\dump_WMILIB.SYS BF800000 - \SystemRoot\System32\win32k.sys F697F000 - \SystemRoot\System32\drivers\Dxapi.sys F7EFB000 - \SystemRoot\System32\watchdog.sys BF9C3000 - \SystemRoot\System32\drivers\dxg.sys F8199000 - \SystemRoot\System32\drivers\dxgthk.sys BF9D5000 - \SystemRoot\System32\SiSGRV.dll BFFA0000 - \SystemRoot\System32\ATMFD.DLL B8B7D000 - \SystemRoot\system32\DRIVERS\ndisuio.sys F8051000 - \SystemRoot\System32\Drivers\ParVdm.SYS B89A1000 - \SystemRoot\System32\Drivers\Aspi32.SYS F8059000 - \SystemRoot\System32\Drivers\avgtdi.sys B8760000 - \SystemRoot\System32\Drivers\HTTP.sys B8723000 - \SystemRoot\system32\drivers\wdmaud.sys B88F1000 - \SystemRoot\system32\drivers\sysaudio.sys B85E6000 - \SystemRoot\system32\DRIVERS\srv.sys B8A89000 - \SystemRoot\system32\DRIVERS\secdrv.sys B7CB2000 - \SystemRoot\system32\drivers\kmixer.sys F7F1B000 * --[Hidden]-- F81EE000 - \SystemRoot\System32\DRIVERS\KProcCheck.sys Total number of drivers = 124 Liste des programmes installes Ad-Aware 2007 Adobe Flash Player ActiveX Adobe Flash Player Plugin Adobe Reader 8.1.2 - Français Adobe Shockwave Player adsl TV Apple Mobile Device Support Apple Software Update Archiveur WinRAR Audacity 1.2.6 AVG Anti-Spyware 7.5 AVG Free Edition BrowsingTool CCleaner (remove only) Correctif pour Lecteur Windows Media 11 (KB939683) Correctif pour Windows XP (KB914440) Correctif pour Windows XP (KB918093) CSI-Dark Motives Diskeeper Professional Edition DivX Content Uploader DivX Web Player EVEREST Ultimate Edition v4.00 FBrowsingAdvisor HijackThis 2.0.2 Hotfix for Windows Media Format 11 SDK (KB929399) Hotfix for Windows XP (KB915865) Hotfix for Windows XP (KB926239) InterActual Player iPod for Windows 2005-09-23 iPod for Windows 2005-09-23 iTunes J2SE Runtime Environment 5.0 Update 3 Java(TM) 6 Update 2 Java(TM) SE Runtime Environment 6 Update 1 Kaspersky Online Scanner Lecteur Windows Media 11 Les Experts - Las Vegas - Crimes en série 1.0 LimeWire 4.16.6 Messenger Plus! Live Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 French Language Pack Microsoft .NET Framework 1.1 Hotfix (KB928366) Microsoft .NET Framework 2.0 Microsoft .NET Framework 2.0 Microsoft .NET Framework 2.0 Language Pack - FRA Microsoft Compression Client Pack 1.0 for Windows XP Microsoft Encarta 2007 - Collection Microsoft Internationalized Domain Names Mitigation APIs Microsoft National Language Support Downlevel APIs Microsoft Office Professional Edition 2003 Microsoft User-Mode Driver Framework Feature Pack 1.0 Microsoft Visual C++ 2005 Redistributable Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782) Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398) Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127) Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615) Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533) Mise à jour de sécurité pour Windows XP (KB918118) Mise à jour de sécurité pour Windows XP (KB920213) Mise à jour de sécurité pour Windows XP (KB921503) Mise à jour de sécurité pour Windows XP (KB923694) Mise à jour de sécurité pour Windows XP (KB923980) Mise à jour de sécurité pour Windows XP (KB924270) Mise à jour de sécurité pour Windows XP (KB924667) Mise à jour de sécurité pour Windows XP (KB925902) Mise à jour de sécurité pour Windows XP (KB926255) Mise à jour de sécurité pour Windows XP (KB926436) Mise à jour de sécurité pour Windows XP (KB927779) Mise à jour de sécurité pour Windows XP (KB927802) Mise à jour de sécurité pour Windows XP (KB928090) Mise à jour de sécurité pour Windows XP (KB928255) Mise à jour de sécurité pour Windows XP (KB928843) Mise à jour de sécurité pour Windows XP (KB929123) Mise à jour de sécurité pour Windows XP (KB929969) Mise à jour de sécurité pour Windows XP (KB930178) Mise à jour de sécurité pour Windows XP (KB931261) Mise à jour de sécurité pour Windows XP (KB931768) Mise à jour de sécurité pour Windows XP (KB931784) Mise à jour de sécurité pour Windows XP (KB932168) Mise à jour de sécurité pour Windows XP (KB933566) Mise à jour de sécurité pour Windows XP (KB933729) Mise à jour de sécurité pour Windows XP (KB935839) Mise à jour de sécurité pour Windows XP (KB935840) Mise à jour de sécurité pour Windows XP (KB936021) Mise à jour de sécurité pour Windows XP (KB937143) Mise à jour de sécurité pour Windows XP (KB937894) Mise à jour de sécurité pour Windows XP (KB938127) Mise à jour de sécurité pour Windows XP (KB938829) Mise à jour de sécurité pour Windows XP (KB939653) Mise à jour de sécurité pour Windows XP (KB941202) Mise à jour de sécurité pour Windows XP (KB941568) Mise à jour de sécurité pour Windows XP (KB941569) Mise à jour de sécurité pour Windows XP (KB941644) Mise à jour de sécurité pour Windows XP (KB943055) Mise à jour de sécurité pour Windows XP (KB943460) Mise à jour de sécurité pour Windows XP (KB943485) Mise à jour de sécurité pour Windows XP (KB944653) Mise à jour de sécurité pour Windows XP (KB946026) Mise à jour pour Windows XP (KB927891) Mise à jour pour Windows XP (KB930916) Mise à jour pour Windows XP (KB931836) Mise à jour pour Windows XP (KB933360) Mise à jour pour Windows XP (KB936357) Mise à jour pour Windows XP (KB938828) Mise à jour pour Windows XP (KB942763) Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA Mozilla Fir arba .. Inscrit le: 27 Jan 2008 Messages: 555 Posté le: Sam Fév 16, 2008 5:52 pm    Sujet du message: - : Fenêtres pubs intempestives réactive ta restauration systeme (ce qui aura pour effet de créer un nouveau point de restauration),puis : - telecharge btfix http://www.clubic.com/telecharger-fiche42579-btfix.html extrait l'archive sur le bureau, fais un scan (recherche) puis nettoyer. poste le rapport créé dans l'archive. - Télécharge combofix.exe (de sUBs) de l'un de ces liens http://download.bleepingcomputer.co[...]Bs/ComboFix.exe http://subs.geekstogo.com/ComboFix.exe http://www.forospyware.com/sUBs/ComboFix.exe enregistre ce fichier sur le bureau (impératif) * Double clique combofix.exe tape 1 valide par Entrée pour lancer le scan * Lorsque le scan sera complété, un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse. NOTE : Le rapport se trouve également ici : C:\Combofix.txt *** Combofix est détecté par certains antivirus comme une infection, il s'agit d'un "faux positif" Vérifie si problèmes persistent. swifer67 Inscrit le: 16 Avr 2007 Messages: 14 Posté le: Dim Fév 17, 2008 3:50 pm    Sujet du message: - : Fenêtres pubs intempestives BTFix 1.060 (par bibi26) - 17/02/2008 16:32:03 - Nettoyage - Mode sans échec Lancé depuis C:\Documents and Settings\Administrateur\Bureau\BTFix\BTFix.exe ---> Fichiers/dossiers suppr