no save
Identification
Assistance
Achat
News

Forum | virus/sécurité
soupçon virus : hijackthis
clara, le dim. 03 juin 2007 à 16:31:55
voilà, c'est fait, pour information, mon ordi ne veut plus lire les cd dans mon lecteur. peut être ça va se résoudre

CODE]

2007-06-03,16:28:53

System Repair Engineer 2.4.12.806
Smallfrogs (http://www.KZTechs.com)

Windows XP Home Edition Service Pack 2 (Build 2600) - Administrative User - Completed Functions Allowed

Follow item(s) have been choosed:
All Boot Items (Including Registry, Startup Folders, Services and so on)
Browser Add-ons
Runing Processes (Including process model information)
File Associations
Winsock Provider
Autorun.Inf
HOSTS File


Boot Items
Registry
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
<CTFMON.EXE><C:\WINDOWS\system32\ctfmon.exe> [(Verified)Microsoft Windows Publisher]
<Skype><"C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized> [(Verified)Skype Technologies SA]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<load><> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
<LaunchApp><Alaunch> [N/A]
<SoundMan><SOUNDMAN.EXE> [(Verified)Microsoft Windows Publisher]
<RemoteControl><"C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"> [Cyberlink Corp.]
<IMJPMIG8.1><"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32> [(Verified)Microsoft Windows Publisher]
<MSPY2002><C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC> [(Verified)Microsoft Windows XP Publisher]
<PHIME2002ASync><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC> [(Verified)Microsoft Windows Publisher]
<PHIME2002A><C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName> [(Verified)Microsoft Windows Publisher]
<AGRSMMSG><AGRSMMSG.exe> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<AspireService><C:\Program Files\Acer\Acer eMode Management\AspireService.exe> [Acer Inc.]
<MediaSync><C:\Program Files\Acer\Acer eConsole\MediaSync.exe> [Acer Inc.]
<Easy-PrintToolBox><C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon> [CANON INC.]
<snpstd><C:\WINDOWS\vsnpstd.exe> [(Verified)Microsoft Windows Hardware Compatibility Publisher]
<WOOWATCH><C:\PROGRA~1\WANADOO\Watch.exe> [France Télécom R&D]
<au><"C:\Program Files\Dealio\DealioAu.exe"> [N/A]
<avast!><C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe> [(Verified)ALWIL Software]
<QuickTime Task><"C:\Program Files\QuickTime\qttask.exe" -atboottime> [Apple Computer, Inc.]
<Ulead AutoDetector v2><C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe> [Ulead Systems, Inc.]
<SunJavaUpdateSched><"C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"> [(Verified)"Sun Microsystems, Inc."]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<shell><Explorer.exe> [(Verified)Microsoft Windows Publisher]
<Userinit><C:\WINDOWS\system32\userinit.exe,> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
<AppInit_DLLs><75.dll> [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
<UIHost><logonui.exe> [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
<{54D9498B-CF93-414F-8984-8CE7FDE0D391}><C:\Program Files\ewido anti-malware\shellhook.dll> []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
<WinlogonNotify: WgaLogon><WgaLogon.dll> [(Verified)Microsoft Corporation]

==================================
Startup Folders
[Logiciel Kodak EasyShare]
<C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logiciel Kodak EasyShare.lnk --> C:\PROGRA~1\Kodak\KODAKE~1\bin\EASYSH~1.EXE [Eastman Kodak Company]><N>
[KODAK Software Updater]
<C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\KODAK Software Updater.lnk --> C:\PROGRA~1\Kodak\KODAKS~1\7288971\Program\KODAKS~1.EXE [N/A]><N>
[BoontyBox 01net]
<C:\Documents and Settings\Anna\Menu Démarrer\Programmes\Démarrage\BoontyBox 01net.lnk --> C:\PROGRA~1\Boonty\BOONTY~1\BOONTY~1.EXE [BOONTY]><N>

==================================
Services
[Acer Media Server / Acer Media Server][Running/Auto Start]
<"C:\Program Files\acer\Acer eConsole\MediaServerService.exe"><Acer Inc.>
[Gestion d'applications / AppMgmt][Stopped/Manual Start]
<C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\appmgmts.dll><N/A>
[ASP.NET State Service / aspnet_state][Stopped/Manual Start]
<C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe><Microsoft Corporation>
[avast! iAVS4 Control Service / aswUpdSv][Running/Auto Start]
<"C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe"><N/A>
[avast! Antivirus / avast! Antivirus][Running/Auto Start]
<"C:\Program Files\Alwil Software\Avast4\ashServ.exe"><>
[avast! Mail Scanner / avast! Mail Scanner][Running/Manual Start]
<"C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service><ALWIL Software>
[avast! Web Scanner / avast! Web Scanner][Running/Manual Start]
<"C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service><ALWIL Software>
[Boonty Games / Boonty Games][Stopped/Disabled]
<"C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe"><BOONTY>
[C-DillaCdaC11BA / C-DillaCdaC11BA][Running/Auto Start]
<C:\WINDOWS\system32\drivers\CDAC11BA.EXE><Macrovision>
[ewido security suite control / ewido security suite control][Running/Auto Start]
<C:\Program Files\ewido anti-malware\ewidoctrl.exe><ewido networks>
[ewido security suite guard / ewido security suite guard][Stopped/Disabled]
<C:\Program Files\ewido anti-malware\ewidoguard.exe><ewido networks>
[France Telecom Routing Table Service / FTRTSVC][Stopped/Disabled]
<C:\WINDOWS\System32\FTRTSVC.exe><France Telecom>
[Accès du périphérique d'interface utilisateur / HidServ][Stopped/Disabled]
<C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[InstallDriver Table Manager / IDriverT][Stopped/Disabled]
<"C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe"><Macrovision Corporation>
[NVIDIA Display Driver Service / NVSvc][Stopped/Disabled]
<C:\WINDOWS\system32\nvsvc32.exe><NVIDIA Corporation>

==================================
Drivers
[PPdus ASPI Shell / Afc][Running/Manual Start]
<system32\drivers\Afc.sys><Arcsoft, Inc.>
[Agere Systems Soft Modem / AgereSoftModem][Running/Manual Start]
<system32\DRIVERS\AGRSM.sys><Agere Systems>
[Service for Realtek AC97 Audio (WDM) / ALCXWDM][Running/Manual Start]
<system32\drivers\ALCXWDM.SYS><Realtek Semiconductor Corp.>
[CdaC15BA / CdaC15BA][Running/Auto Start]
<\??\C:\WINDOWS\system32\drivers\CdaC15BA.SYS><Macrovision Europe Ltd>
[d347bus / d347bus][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\d347bus.sys><>
[d347prt / d347prt][Running/Boot Start]
<\SystemRoot\System32\Drivers\d347prt.sys><>
[ewido security suite driver / ewido security suite driver][Running/System Start]
<\??\C:\Program Files\ewido anti-malware\guard.sys><N/A>
[int15.sys / int15.sys][Running/Auto Start]
<\??\C:\Program Files\acer\eRecovery\int15.sys><N/A>
[Upper Class Filter Driver / NTIDrvr][Running/Manual Start]
<system32\DRIVERS\NTIDrvr.sys><NewTech Infosystems, Inc.>
[nv / nv][Running/Manual Start]
<system32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
[PCAMPR5 NDIS Protocol Driver / PCAMPR5][Stopped/Manual Start]
<\??\C:\WINDOWS\system32\PCAMPR5.SYS><N/A>
[PCANDIS5 NDIS Protocol Driver / PCANDIS5][Stopped/Manual Start]
<\??\C:\WINDOWS\system32\PCANDIS5.SYS><Printing Communications Assoc., Inc. (PCAUSA)>
[Pilote de liaison parallèle directe / Ptilink][Running/Manual Start]
<system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[PxHelp20 / PxHelp20][Running/Boot Start]
<\SystemRoot\System32\Drivers\PxHelp20.sys><Sonic Solutions>
[Realtek 10/100/1000 NIC Family all in one NDIS XP Driver / RTL8023xp][Running/Manual Start]
<system32\DRIVERS\Rtlnicxp.sys><Realtek Semiconductor Corporation>
[Pilote NT de carte Realtek PCI Fast Ethernet à base RTL8139(A/B/C) / rtl8139][Stopped/Manual Start]
<system32\DRIVERS\RTL8139.SYS><Realtek Semiconductor Corporation>
[Secdrv / Secdrv][Running/Auto Start]
<system32\DRIVERS\secdrv.sys><Macrovision Europe Ltd>
[StarForce Protection Environment Driver (version 1.x) / sfdrv01][Running/Boot Start]
<\SystemRoot\System32\drivers\sfdrv01.sys><Protection Technology (StarForce)>
[StarForce Protection Helper Driver (version 2.x) / sfhlp02][Running/Boot Start]
<\SystemRoot\System32\drivers\sfhlp02.sys><Protection Technology (StarForce)>
[StarForce Protection Synchronization Driver (version 4.x) / sfsync04][Running/Boot Start]
<\SystemRoot\System32\drivers\sfsync04.sys><Protection Technology (StarForce)>
[SiS163 usb Wireless LAN Adapter Driver / SIS163u][Stopped/Manual Start]
<system32\DRIVERS\sis163u.sys><SiS Corporation>
[Trust 150 Spacecam Portable / snpstd][Stopped/Manual Start]
<system32\DRIVERS\snpstd.sys><>
[SAMSUNG USB Composite Device driver (WDM) / sscdbus][Stopped/Manual Start]
<system32\DRIVERS\sscdbus.sys><MCCI>
[SAMSUNG CDMA Modem Filter / sscdmdfl][Stopped/Manual Start]
<system32\DRIVERS\sscdmdfl.sys><MCCI>
[SAMSUNG CDMA Modem Drivers / sscdmdm][Stopped/Manual Start]
<system32\DRIVERS\sscdmdm.sys><MCCI>
[SYMIDSCO / SYMIDSCO][Stopped/Manual Start]
<\??\C:\PROGRA~1\FICHIE~1\SYMANT~1\SymcData\IDS-DI~1\20050809.020\symidsco.sys><N/A>
[VIA AGP Filter / viaagp1][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\viaagp1.sys><VIA Technologies, Inc.>
[ViaIde / ViaIde][Running/Boot Start]
<\SystemRoot\system32\DRIVERS\viaide.sys><Microsoft Corporation>
[Codec Teletext standard / WSTCODEC][Stopped/Manual Start]
<system32\DRIVERS\WSTCODEC.SYS><Microsoft Corporation>

==================================
Browser Add-ons
[AcroIEHlprObj Class]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 5.0 CE\Reader\ActiveX\AcroIEHelper.ocx, >
[]
{53707962-6F74-2D53-2644-206D7942484F} <C:\PROGRA~1\SPYBOT~1\SDHelper.dll, Safer Networking Limited>
[DealioBHO Class]
{6A87B991-A31F-4130-AE72-6D0C294BF082} <C:\Program Files\Dealio\Dealio.dll, N/A>
[SSVHelper Class]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll, Sun Microsystems, Inc.>
[Java Plug-in 1.6.0_01]
{08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll, Sun Microsystems, Inc.>
[&Rechercher]
{92780B25-18CC-41C8-B9BE-3C9C571A8263} <C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL, Microsoft Corporation>
[&Organise-notes Encarta]
{9455301C-CF6B-11D3-A266-00C04F689C50} <C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Researcher\EROPROJ.DLL, Microsoft Corporation>
[Barre de recherche Encarta]
{B205A35E-1FC4-4CE3-818B-899DBBB3388C} <C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL, Microsoft Corporation>
[DealioToolbarHelper Class]
{E908B145-C847-4e85-B315-07E2E70DECF8} <C:\Program Files\Dealio\Dealio.dll, N/A>
[Messager Wanadoo]
{FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\PROGRA~1\WANADO~1\Wanadoo Messager.exe, France Telecom>
[Wanadoo]
{1462651F-F4BA-4C76-A001-C4284D0FE16E} <http://www.wanadoo.fr, N/A>
[Easy-WebPrint]
{327C2873-E90D-4c37-AA9D-10AC9BABA46C} <C:\Program Files\Canon\Easy-WebPrint\Toolband.dll, >
[Dealio]
{E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} <C:\Program Files\Dealio\Dealio.dll, N/A>
[Java Plug-in 1.5.0_11]
{8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll, Sun Microsystems, Inc.>
[ActiveScan Installer Class]
{9A9307A0-7DA4-4DAF-B042-5009F29E09E1} <C:\WINDOWS\Downloaded Program Files\asinst.dll, Panda Software>
[Java Plug-in 1.5.0_06]
{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll, Sun Microsystems, Inc.>
[Java Plug-in 1.5.0_09]
{CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll, Sun Microsystems, Inc.>
[Java Plug-in 1.5.0_10]
{CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll, Sun Microsystems, Inc.>
[Java Plug-in 1.5.0_11]
{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll, Sun Microsystems, Inc.>
[Java Plug-in 1.6.0_01]
{CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll, Sun Microsystems, Inc.>
[Java Plug-in 1.6.0_01]
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll, Sun Microsystems, Inc.>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx, Macromedia, Inc.>
[AcroIEHlprObj Class]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 5.0 CE\Reader\ActiveX\AcroIEHelper.ocx, >
[DHTML Edit Control Safe for Scripting for IE5]
{2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Fichiers communs\Microsoft Shared\Triedit\dhtmled.ocx, Microsoft Corporation>
[Easy-WebPrint]
{327C2873-E90D-4C37-AA9D-10AC9BABA46C} <C:\Program Files\Canon\Easy-WebPrint\Toolband.dll, >
[]
{53707962-6F74-2D53-2644-206D7942484F} <C:\PROGRA~1\SPYBOT~1\SDHelper.dll, Safer Networking Limited>
[DealioBHO Class]
{6A87B991-A31F-4130-AE72-6D0C294BF082} <C:\Program Files\Dealio\Dealio.dll, N/A>
[Windows Media Player]
{6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[SSVHelper Class]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll, Sun Microsystems, Inc.>
[&Organise-notes Encarta]
{9455301C-CF6B-11D3-A266-00C04F689C50} <C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Researcher\EROPROJ.DLL, Microsoft Corporation>
[Shockwave Flash Object]
{D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash8b.ocx, Macromedia, Inc.>
[Dealio]
{E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} <C:\Program Files\Dealio\Dealio.dll, N/A>
[Compare Prices with &Dealio]
<C:\Program Files\Dealio\res\DealioSearch.html, N/A>
[E&xporter vers Microsoft Excel]
<res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000, N/A>
[Easy-WebPrint Ajouter à la liste d'impressions]
<res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html, N/A>
[Easy-WebPrint Impression rapide]
<res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html, N/A>
[Easy-WebPrint Imprimer]
<res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html, N/A>
[Easy-WebPrint Prévisualiser]
<res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html, N/A>

==================================
Running Processes
[PID: 448][\SystemRoot\System32\smss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 512][\??\C:\WINDOWS\system32\csrss.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 536][\??\C:\WINDOWS\system32\winlogon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\WINDOWS\system32\WgaLogon.dll] [Microsoft Corporation, 1.5.0540.0]
[C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 1260][C:\WINDOWS\Explorer.EXE] [Microsoft Corporation, 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)]
[C:\Program Files\ewido anti-malware\shellhook.dll] [N/A, ]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[C:\DOCUME~1\Anna\LOCALS~1\Temp\IadHide5.dll] [BackWeb, Version 6.3.2 (Build 62R)]
[C:\Program Files\WinRAR\rarext.dll] [N/A, ]
[C:\Program Files\ewido anti-malware\context.dll] [ewido networks, 1.0.0.1]
[C:\Program Files\ewido anti-malware\lang.dll] [privat, 1, 0, 0, 1]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\DivX\Dr.DivX\EncodeDivXExt.dll] [, ]
[C:\Program Files\Alwil Software\Avast4\ashShell.dll] [ALWIL Software, 4, 7, 936, 0]
[C:\PROGRA~1\A-SQUA~1\A2CONT~1.DLL] [N/A, ]
[C:\Program Files\Adobe\Acrobat 5.0 CE\Reader\ActiveX\AcroIEHelper.ocx] [, 1, 0, 0, 1]
[C:\PROGRA~1\SPYBOT~1\SDHelper.dll] [Safer Networking Limited, 1, 4, 0, 0]
[c:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll] [Adobe Systems, Inc., 7.0.0.0]
[C:\Program Files\Microsoft Office\OFFICE11\msohev.dll] [Microsoft Corporation, 11.0.5510]
[PID: 2320][C:\WINDOWS\SOUNDMAN.EXE] [Realtek Semiconductor Corp., 5.1.0.39]
[PID: 2328][C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe] [Cyberlink Corp., 5.00.0000]
[C:\Program Files\CyberLink\Shared Files\CLRCEngine2.dll] [CyberLink Corp., 3.20.0000]
[PID: 2392][C:\WINDOWS\AGRSMMSG.exe] [Agere Systems, 2.1.41.10 2.1.41.10 06/29/2004 09:06:35]
[PID: 2404][C:\Program Files\Acer\Acer eMode Management\AspireService.exe] [Acer Inc., 2, 0, 9, 0]
[C:\Program Files\Acer\Acer eMode Management\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Acer\Acer eMode Management\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[PID: 2412][C:\Program Files\Acer\Acer eConsole\MediaSync.exe] [Acer Inc., 1, 2, 19, 0]
[C:\Program Files\Acer\Acer eConsole\ILibN.dll] [Acer Inc., 1, 0, 1, 1]
[C:\Program Files\Acer\Acer eConsole\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\Acer\Acer eConsole\xDB.dll] [Acer Inc., 2, 1, 7, 0]
[C:\Program Files\Acer\Acer eConsole\MediaClass.dll] [Acer, 2, 2, 6, 0]
[C:\Program Files\Acer\Acer eConsole\extResource.dll] [acer, 1, 1, 8, 0]
[C:\Program Files\Acer\Acer eConsole\MFC71U.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Acer\Acer eConsole\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\Acer\Acer eConsole\xDaoUtil.dll] [Acer Inc., 1, 1, 0, 0]
[C:\Program Files\Acer\Acer eConsole\MediaUtil.dll] [, 0, 9, 8, 2]
[C:\WINDOWS\system32\MFC71FRA.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\DOCUME~1\Anna\LOCALS~1\Temp\IadHide5.dll] [BackWeb, Version 6.3.2 (Build 62R)]
[PID: 2460][C:\WINDOWS\vsnpstd.exe] [, 1, 0, 1, 0]
[PID: 2476][C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe] [, 4, 7, 936, 0]
[C:\PROGRA~1\ALWILS~1\Avast4\aswCmnOS.dll] [ALWIL Software, 4, 7, 936, 0]
[C:\WINDOWS\system32\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\PROGRA~1\ALWILS~1\Avast4\ashBase.dll] [ALWIL Software, 4, 7, 936, 0]
[C:\PROGRA~1\ALWILS~1\Avast4\aswCmnB.dll] [ALWIL Software, 4, 7, 936, 0]
[C:\PROGRA~1\ALWILS~1\Avast4\aswCmnS.dll] [ALWIL Software, 4, 7, 936, 0]
[C:\PROGRA~1\ALWILS~1\Avast4\ashTask.dll] [ALWIL Software, 4, 7, 936, 0]
[C:\PROGRA~1\ALWILS~1\Avast4\aswAux.dll] [ALWIL Software, 4, 7, 936, 0]
[C:\PROGRA~1\ALWILS~1\Avast4\Aavm4h.dll] [ALWIL Software, 4, 7, 936, 0]
[C:\Program Files\Alwil Software\Avast4\French\Base.dll] [ALWIL Software, 4, 7, 936, 0]
[C:\Program Files\Alwil Software\Avast4\French\Lang.dll] [ALWIL Software, 4, 7, 936, 0]
[C:\WINDOWS\system32\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\WINDOWS\system32\MFC71FRA.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\PROGRA~1\ALWILS~1\Avast4\AavmRpch.dll] [ALWIL Software, 4, 7, 936, 0]
[c:\program files\alwil software\avast4\ahruimai.dll] [ALWIL Software, 4, 7, 936, 0]
[C:\PROGRA~1\ALWILS~1\Avast4\ashUInt.dll] [ALWIL Software, 4, 7, 936, 0]
[C:\PROGRA~1\ALWILS~1\Avast4\XT1922.dll] [Codejock Software, 1, 9, 4, 0]
[c:\program files\alwil software\avast4\ahruimes.dll] [ALWIL Software, 4, 7, 936, 0]
[c:\program files\alwil software\avast4\ahruins.dll] [ALWIL Software, 4, 7, 936, 0]
[c:\program files\alwil software\avast4\ahruiout.dll] [ALWIL Software, 4, 7, 936, 0]
[C:\WINDOWS\system32\MAPI32.dll] [Microsoft Corporation, 1.0.2536.0 (XPClient.010817-1148)]
[c:\program files\alwil software\avast4\ahruip2p.dll] [ALWIL Software, 4, 7, 936, 0]
[c:\program files\alwil software\avast4\ahruistd.dll] [ALWIL Software, 4, 7, 936, 0]
[c:\program files\alwil software\avast4\ahruiws.dll] [ALWIL Software, 4, 7, 936, 0]
[C:\DOCUME~1\Anna\LOCALS~1\Temp\IadHide5.dll] [BackWeb, Version 6.3.2 (Build 62R)]
[PID: 2528][C:\Program Files\QuickTime\qttask.exe] [Apple Computer, Inc., 7.0.3]
[PID: 2544][C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\monitor.exe] [Ulead Systems, Inc., 2.1.0.1]
[C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\u32Comm.dll] [Ulead Systems, Inc., 8.0.0.0]
[C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\DetMethod.dll] [, 2, 0, 0, 1]
[C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\Monitor_Res.dll] [Ulead Systems, Inc., 2.0.0.0]
[C:\DOCUME~1\Anna\LOCALS~1\Temp\IadHide5.dll] [BackWeb, Version 6.3.2 (Build 62R)]
[PID: 2560][C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe] [Sun Microsystems, Inc., 6.0.10.6]
[C:\Program Files\Java\jre1.6.0_01\bin\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[PID: 2572][C:\WINDOWS\system32\ctfmon.exe] [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 2684][C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe] [N/A, ]
[C:\Program Files\Kodak\Kodak Software Updater\7288971\6.3.2.62-7288971L\Program\backWeb.dll] [BackWeb Technologies Inc., Version 6.3.2 (Build 62R)]
[C:\Program Files\Kodak\Kodak Software Updater\7288971\6.3.2.62-7288971L\Program\bwsec.dll] [BackWeb, Version 6.3.2 (Build 62R)]
[C:\Program Files\Kodak\Kodak Software Updater\7288971\6.3.2.62-7288971L\Program\clntutil.dll] [N/A, ]
[C:\PROGRA~1\Kodak\KODAKS~1\7288971\632~1.62-\program\EN\ClientRC.dll] [BackWeb Technologies Inc., Version 6.3.2 (Build 62R)]
[C:\Program Files\KODAK\KODAK Software Updater\7288971\Program\BWfiles-7288971.dll] [N/A, ]
[C:\Program Files\Kodak\Kodak Software Updater\7288971\6.3.2.62-7288971L\Program\BWfiles.dll] [, Version 6.3.2 (Build 62R)]
[C:\DOCUME~1\Anna\LOCALS~1\Temp\IadHide5.dll] [BackWeb, Version 6.3.2 (Build 62R)]
[C:\Program Files\KODAK\KODAK Software Updater\7288971\Program\frext-7288971.dll] [N/A, ]
[C:\Program Files\Kodak\Kodak Software Updater\7288971\6.3.2.62-7288971L\Program\frext.dll] [, Version 6.3.2 (Build 62R)]
[C:\Program Files\KODAK\KODAK Software Updater\7288971\Program\bwclext.dll] [Eastman Kodak Company, 1.0.0.5]
[C:\Program Files\KODAK\KODAK Software Updater\7288971\Program\BWTargetInf.dll] [, 1, 0, 0, 1]
[C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[PID: 3380][C:\Program Files\acer\eRecovery\Monitor.exe] [acer Inc., 1, 2, 11, 0]
[C:\Program Files\acer\eRecovery\Data32.dll] [NewTech Infosystems, Inc., 2, 0, 0, 49]
[C:\Program Files\acer\eRecovery\Cdrw32.dll] [NewTech Infosystems, Inc., 3, 1, 0, 61]
[C:\Program Files\acer\eRecovery\CdrMmc32.dll] [NewTech Infosystems, Inc., 3, 1, 0, 146]
[C:\Program Files\acer\eRecovery\CdrwEx32.dll] [NewTech Infosystems, Inc., 3, 1, 0, 78]
[C:\Program Files\acer\eRecovery\ImagFile.dll] [NewTech Infosystems, Inc., 1, 0, 0, 4]
[C:\Program Files\acer\eRecovery\MFC71.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\Program Files\acer\eRecovery\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\Program Files\acer\eRecovery\NtiAspi.dll] [NewTech Infosystems, Inc., 2, 5, 0, 2]
[C:\WINDOWS\system32\MFC71FRA.DLL] [Microsoft Corporation, 7.10.3077.0]
[C:\DOCUME~1\Anna\LOCALS~1\Temp\IadHide5.dll] [BackWeb, Version 6.3.2 (Build 62R)]
[C:\Program Files\acer\eRecovery\extResource.dll] [acer, 1, 1, 7, 0]
[C:\Program Files\acer\eRecovery\MSVCP71.dll] [Microsoft Corporation, 7.10.3077.0]
[PID: 3596][C:\WINDOWS\system32\wuauclt.exe] [Microsoft Corporation, 5.8.0.2469 built by: lab01_n(wmbla)]
[C:\DOCUME~1\Anna\LOCALS~1\Temp\IadHide5.dll] [BackWeb, Version 6.3.2 (Build 62R)]
[C:\WINDOWS\system32\wups2.dll] [Microsoft Corporation, 5.8.0.2469 built by: lab01_n(wmbla)]
[PID: 168][C:\Program Files\Maxthon\Maxthon.exe] [Maxthon International Ltd., 1, 5, 9, 80]
[C:\Program Files\Maxthon\maxzlib.dll] [ , 1, 0, 0, 2]
[C:\DOCUME~1\Anna\LOCALS~1\Temp\IadHide5.dll] [BackWeb, Version 6.3.2 (Build 62R)]
[C:\Program Files\Maxthon\Plugin\ViewSource\ViewSrc.dll] [, 1, 0, 0, 1]
[C:\Program Files\Maxthon\Services\RealTime\real_time.dll] [, 1, 0, 0, 1]
[C:\WINDOWS\system32\msacm32.drv] [Microsoft Corporation, 5.1.2600.0 (xpclient.010817-1148)]
[C:\WINDOWS\system32\mscoree.dll] [Microsoft Corporation, 1.1.4322.573]
[C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorie.dll] [Microsoft Corporation, 1.1.4322.573]
[C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\MSVCR71.dll] [Microsoft Corporation, 7.10.3052.4]
[C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\mscorld.dll] [Microsoft Corporation, 1.1.4322.573]
[C:\PROGRA~1\WANADOO\SEARCH~1.DLL] [, 1, 0, 0, 1]
[C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll] [Sun Microsystems, Inc., 6.0.10.6]
[C:\Program Files\Java\jre1.6.0_01\bin\jpiexp.dll] [JavaSoft / Sun Microsystems, 6, 0, 0, 6]
[C:\Program Files\Java\jre1.6.0_01\bin\deploy.dll] [Sun Microsystems, Inc., 6.0.10.6]
[C:\Program Files\Java\jre1.6.0_01\bin\jpishare.dll] [Sun Microsystems, Inc., 6.0.10.6]
[C:\PROGRA~1\Java\JRE16~1.0_0\bin\client\jvm.dll] [Sun Microsystems, Inc., 6.0.10.6]
[C:\PROGRA~1\Java\JRE16~1.0_0\bin\hpi.dll] [Sun Microsystems, Inc., 6.0.10.6]
[C:\PROGRA~1\Java\JRE16~1.0_0\bin\verify.dll] [Sun Microsystems, Inc., 6.0.10.6]
[C:\PROGRA~1\Java\JRE16~1.0_0\bin\java.dll] [Sun Microsystems, Inc., 6.0.10.6]
[C:\PROGRA~1\Java\JRE16~1.0_0\bin\zip.dll] [Sun Microsystems, Inc., 6.0.10.6]
[C:\Program Files\Java\jre1.6.0_01\bin\awt.dll] [Sun Microsystems, Inc., 6.0.10.6]
[C:\Program Files\Java\jre1.6.0_01\bin\fontmanager.dll] [Sun Microsystems, Inc., 6.0.10.6]
[C:\Program Files\Java\jre1.6.0_01\bin\jpicom.dll] [Sun Microsystems, Inc., 6.0.10.6]
[C:\Program Files\Java\jre1.6.0_01\bin\regutils.dll] [Sun Microsystems, Inc., 6.0.10.6]
[C:\Program Files\Java\jre1.6.0_01\bin\net.dll] [Sun Microsystems, Inc., 6.0.10.6]
[C:\Program Files\Java\jre1.6.0_01\bin\nio.dll] [Sun Microsystems, Inc., 6.0.10.6]
[C:\Program Files\Java\jre1.6.0_01\bin\dcpr.dll] [Sun Microsystems, Inc., 6.0.10.6]
[PID: 3488][C:\Documents and Settings\Anna\Bureau\sreng2\SREng.EXE] [Smallfrogs Studio, 2.4.12.806]
[C:\DOCUME~1\Anna\LOCALS~1\Temp\IadHide5.dll] [BackWeb, Version 6.3.2 (Build 62R)]

==================================
File Associations
.TXT OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE OK. ["%1" %*]
.COM OK. ["%1" %*]
.PIF OK. ["%1" %*]
.REG OK. [regedit.exe "%1"]
.BAT OK. ["%1" %*]
.SCR OK. ["%1" /S]
.CHM OK. ["C:\WINDOWS\hh.exe" %1]
.HLP OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock Provider
N/A

==================================
Autorun.Inf
N/A

==================================
HOSTS File
127.0.0.1 localhost

==================================
API HOOK
N/A

==================================
Hidden Process
N/A

==================================


[/CODE]
PrécédentFillPCA
juin 07
FillPCA
juin 07
Suivant
REPONSES
FillPCA
mai 07
clara
juin 07
FillPCA
juin 07
clara
juin 07
FillPCA
juin 07
clara
juin 07
FillPCA
juin 07
clara
juin 07
FillPCA
juin 07
Version Web
Mentions légales (c)2009
Réalisé par RedShift
no save