Format du document : text/plain
Prévisualisation
O51 - MPSK:{b7102f4d-6e53-11e2-bc22-08edb9394866}\AutoRun\command. (...) -- E:\autoplay.exe (.not file.) => Infection USB (Trojan.USB)
O87 - FAEL: "{B18CBBD3-A681-44E7-97A8-010328537D0A}" |Out - None - P17 - TRUE | .(...) -- C:\Users\Administrateur\AppData\Roaming\server.exe (.not file.)
O87 - FAEL: "{E665FB1F-922E-4E03-ACDF-462DEE3D6AD6}" |In - None - P17 - TRUE | .(...) -- C:\Users\Administrateur\AppData\Roaming\server.exe (.not file.)
Malware (3)
O87 - FAEL: "{26F2CABC-1832-4C33-A27A-4AEE42DCFBF4}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{0B66C9F6-A1FE-4C04-B6B2-7FA1F8D7681A}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files\Bonjour\mDNSResponder.exe
O87 - FAEL: "{9262A9F9-35DF-4058-9450-CC8F8C13AD4E}" | In - Public - P6 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O87 - FAEL: "{91E8CF9B-ED7E-46AE-AD5F-E4A09FCFFE43}" | In - Public - P17 - TRUE | .(.Apple Inc. - Bonjour Service.) -- C:\Program Files (x86)\Bonjour\mDNSResponder.exe
Inutile (4)
[MD5.B5A4EBA9487F08BECC843A87422B8052] - (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [3825176] [PID.6012]
[MD5.206387AB881E93A1A6EB89966C8651F1] - (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1103392] [PID.2260]
[MD5.A529CFE32565C0B145578FFB2B32C9A5] - (.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1369624] [PID.2660]
[MD5.CB63BDB77BB86549FC3303C2F11EDC18] - (.Safer-Networking Ltd. - Windows Security Center integration..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [168384] [PID.2948]
[MD5.452DB84283EB2F043827AC95D62CE19C] - (.Safer-Networking Ltd. - Update.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe [3487240] [PID.6364]
O2 - BHO: Spybot-S&D IE Protection [64Bits] - {53707962-6F74-2D53-2644-206D7942484F} . (.Safer-Networking Ltd. - Blocks URLs that could install spyware, mal.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
O4 - HKLM\..\Wow6432Node\Run: [SDTray] . (.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
O4 - Global Startup: C:\Users\Administrateur\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\�Torrent.lnk . (.BitTorrent, Inc..) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
O23 - Service: McAfee Application Installer Cleanup (02 (0266901360597239mcinstcleanup) . (...) - C:\Users\ADMINI~1\AppData\Local\Temp\026690~1.exe (.not file.)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) . (.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) . (.Safer-Networking Ltd. - Windows Security Center integration..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
[MD5.452DB84283EB2F043827AC95D62CE19C] [APT] [Check for updates] (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
[MD5.36A82C214B46787385F3B0CD02ECAA88] [APT] [Refresh immunization] (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
[MD5.E4A0900CF535888DDD85B10040CA3E34] [APT] [Scan the system] (.Safer-Networking Ltd..) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
O42 - Logiciel: Minecraft Beta Cracked - (.Pas de propri�taire.) [HKLM][64Bits] -- Minecraft Beta Cracked => Crack, KeyGen, Keymaker - Possible Malware
O42 - Logiciel: Spybot - Search & Destroy - (.Safer-Networking Ltd..) [HKLM][64Bits] -- {B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1
O42 - Logiciel: �Torrent - (.BitTorrent Inc..) [HKLM][64Bits] -- uTorrent
[HKCU\Software\BitTorrent]
O43 - CFD: 11/02/2013 - 21:21:51 - [159,363] ----D C:\Program Files (x86)\Spybot - Search & Destroy 2
O43 - CFD: 25/01/2013 - 11:59:47 - [0,924] ----D C:\Program Files (x86)\uTorrent
O43 - CFD: 27/12/2012 - 12:06:57 - [0,001] ----D C:\ProgramData\PMB Files => Sony Corporation
O43 - CFD: 13/02/2013 - 10:30:17 - [0,108] ----D C:\ProgramData\Spybot - Search & Destroy
O43 - CFD: 10/02/2013 - 00:35:58 - [2,092] ----D C:\Users\Administrateur\AppData\Roaming\uTorrent
O43 - CFD: 26/12/2012 - 23:01:35 - [0,198] ----D C:\Users\Administrateur\AppData\Local\PMB Files => Sony Corporation
O43 - CFD: 08/02/2013 - 22:52:08 - [0,002] ----D C:\Users\Administrateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft Beta Cracked => Crack, KeyGen, Keymaker - Possible Malware
O44 - LFC:[MD5.23948829C6D049B8ADE0E0FB87305AC3] - 11/02/2013 - 21:21:45 ---A- . (.Safer Networking Limited - Pas de description.) -- C:\Windows\SysNative\sdnclean64.exe [17272]
O44 - LFC:[MD5.1959E6B1C3654A479483AE46169C5039] - 03/02/2013 - 00:04:30 ---A- . (...) -- C:\Windows\SysNative\TmInstall.log [2872]
O44 - LFC:[MD5.1959E6B1C3654A479483AE46169C5039] - 03/02/2013 - 00:04:30 ---A- . (...) -- C:\Windows\System32\TmInstall.log [2872]
O44 - LFC:[MD5.23948829C6D049B8ADE0E0FB87305AC3] - 25/01/2009 - 12:14:02 . (...) -- C:\Windows\System32\sdnclean64.exe [394166] => Safer Networking Limited - Spybot S&D
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe" [Enabled] .(.Safer-Networking Ltd. - Spybot - Search & Destroy tray access.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe" [Enabled] .(.Safer-Networking Ltd. - Spybot-S&D 2 Scanner Service.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe" [Enabled] .(.Safer-Networking Ltd. - Update.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
O47 - AAKE:Key Export SP - "C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe" [Enabled] .(.Safer-Networking Ltd. - Spybot-S&D 2 Background update service.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O87 - FAEL: "{29D1AB34-4351-4F17-AA02-4DBA1762AE2D}" | In - None - P6 - TRUE | .(.BitTorrent, Inc. - �Torrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
O87 - FAEL: "{D3D3FB9C-C87C-4482-80A2-6C04C0E23DC8}" | In - None - P17 - TRUE | .(.BitTorrent, Inc. - �Torrent.) -- C:\Program Files (x86)\uTorrent\uTorrent.exe
O90 - PUC: "30138F7BC38C18049B7B05CFA6F629E9" . (.Logiciel de base du p�riph�rique HP Deskjet 2050 J510 series.) -- C:\Windows\Installer\{B7F83103-C83C-4081-B9B7-50FC6A6F929E}\ARP_Icon
SS - | Auto 0 | (0266901360597239mcinstcleanup) . (...) - C:\Users\ADMINI~1\AppData\Local\Temp\026690~1.exe
SR - | Auto 13/11/2012 1103392 | (SDScannerService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
SR - | Auto 13/11/2012 1369624 | (SDUpdateService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
SR - | Auto 13/11/2012 168384 | (SDWSCService) . (.Safer-Networking Ltd..) - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
Superflu (41)