alex89000

Membres

Afficher le profil Afficher son activité

Compteur de contenus
11
Inscription
le 9 novembre 2008
Dernière visite
le 15 novembre 2008

Type de contenu

Toute l’activité

Profils

Forums

Blogs

Tout ce qui a été posté par alex89000

pc lent besoin aide rapport hijackthis svp[résolu]

alex89000 a répondu à un(e) sujet de alex89000 dans Analyses et éradication malwares

un grand merci pour tout cela fait extrêmement plaisir de tomber sur des gens aussi serviable ....
- le 12 novembre 2008
- 19 réponses
pc lent besoin aide rapport hijackthis svp[résolu]

alex89000 a répondu à un(e) sujet de alex89000 dans Analyses et éradication malwares

message d'erreur au demarrage avgnt.exe le point d'entrée de la procedure?performselftest@cclib@@sa_NPBGOH@Z est introuvable dans la bibliotheque des liaisons cclib.dll.
- le 12 novembre 2008
- 19 réponses
pc lent besoin aide rapport hijackthis svp[résolu]

alex89000 a répondu à un(e) sujet de alex89000 dans Analyses et éradication malwares

merci merci !!! voici Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 09:28:25, on 12/11/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16735) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\HP\KBD\KBD.EXE C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe C:\Program Files\Logitech\QuickCam10\QuickCam10.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe C:\Program Files\Lexmark 1400 Series\lxdjamon.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\PROGRA~1\PRESAR~1\Presario\XPHWWRP4\plugin\bin\pchbutton.exe C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe C:\Program Files\IncrediMail\bin\IMApp.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\lxdjserv.exe C:\WINDOWS\system32\lxdjcoms.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe C:\WINDOWS\System32\nvsvc32.exe C:\Program Files\Packard Bell\Packard Bell Software Suite\PowerSave\HDPBSSS.exe C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Logitech\QuickCam10\COCIManager.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\IncrediMail\bin\IncMail.exe C:\Program Files\Windows Live\Messenger\usnsvc.exe C:\PROGRA~1\MOZILL~1\FIREFOX.EXE C:\Documents and Settings\Propriétaire\Bureau\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-qfr10.hpwis.com/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mystart.incredimail.com/french/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://srch-qfr10.hpwis.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" O4 - HKLM\..\Run: [HPHUPD05] c:\Program Files\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [updateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe" O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe O4 - HKLM\..\Run: [uSBToolTip] "C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe" O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" /hide O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [LVCOMSX] "C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [lxdjamon] "C:\Program Files\Lexmark 1400 Series\lxdjamon.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [Acme.PCHButton] C:\PROGRA~1\PRESAR~1\Presario\XPHWWRP4\plugin\bin\pchbutton.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount O4 - HKCU\..\Run: [incrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c O4 - HKCU\..\Run: [Packard Bell Data Secure] C:\Program Files\Packard Bell Data Secure\PBDataSecure.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - Startup: MSN Pictures Displayer.lnk = C:\Program Files\MSN Pictures Displayer\MSN Pictures Displayer.exe O8 - Extra context menu item: Add to AMV Converter... - C:\Program Files\MP3 Player Utilities 4.15\AMVConverter\grab.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.15\MediaManager\grab.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {1F83CD9E-505E-4F87-BECE-0832A763E36F} (Image Uploader 3.0 Control) - http://www.presslabo.com/importer/MypixUploader.cab O16 - DPF: {2EF3FB47-7B1E-4536-BA4D-51427BD45DFA} (PIXACO Drag and Drop upload plugin) - http://www.pixaco.fr/static/download/pixacodndupload.cab O16 - DPF: {3BFFE033-BF43-11D5-A271-00A024A51325} (iNotes6 Class) - https://messagerie.cg89.fr/iNotes6W.cab O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://www3.snapfish.fr/SnapfishActivia.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by118fd.bay118.hotmail.msn.com/resources/MsnPUpld.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.mypix.com/importer/ImageUploader4.cab O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.photoreflex.com/tools/ImageUplo...geUploader3.cab O16 - DPF: {A73BAEFA-EE65-494D-BEDB-DD3E5A34FA98} (Image Uploader) - http://www.extrafilm.fr/ImageUploader4.cab O16 - DPF: {AE2B937E-EA7D-4A8D-888C-B68D7F72A3C4} (IPSUploader4 Control) - http://as.photoprintit.de/ips-opdata/layou...PSUploader4.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O16 - DPF: {DEB21AD3-FDA4-42F6-B57D-EE696A675EE8} (IPSUploader Control) - http://as.photoprintit.de/ips-opdata/layou...IPSUploader.cab O16 - DPF: {FB90BA05-66E6-4C56-BCD3-D65B0F7EBA39} (Foto.com SpeedUploader 1.0 Control) - http://fotobook.foto.com/activex/SpeedUploader.cab O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\Logitech\SrvLnch\SrvLnch.exe O23 - Service: lxdjCATSCustConnectService - Lexmark International, Inc. - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxdjserv.exe O23 - Service: lxdj_device - - C:\WINDOWS\system32\lxdjcoms.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: Packard Bell Software Suite Service 1 (Service1) - Packard Bell Services - C:\Program Files\Packard Bell\Packard Bell Software Suite\PowerSave\HDPBSSS.exe O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- End of file - 11866 bytes
- le 12 novembre 2008
- 19 réponses
pc lent besoin aide rapport hijackthis svp[résolu]

alex89000 a répondu à un(e) sujet de alex89000 dans Analyses et éradication malwares

Logfile of HijackThis v1.99.1 Scan saved at 19:41:07, on 11/11/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16735) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe C:\HP\KBD\KBD.EXE C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe C:\Program Files\Logitech\QuickCam10\QuickCam10.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe C:\Program Files\Lexmark 1400 Series\lxdjamon.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\PROGRA~1\PRESAR~1\Presario\XPHWWRP4\plugin\bin\pchbutton.exe C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe C:\Program Files\IncrediMail\bin\IMApp.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\lxdjserv.exe C:\WINDOWS\system32\lxdjcoms.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe C:\WINDOWS\System32\nvsvc32.exe C:\Program Files\Packard Bell\Packard Bell Software Suite\PowerSave\HDPBSSS.exe C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Logitech\QuickCam10\COCIManager.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Java\jre1.6.0_02\bin\jucheck.exe C:\Program Files\IncrediMail\bin\IncMail.exe C:\PROGRA~1\MOZILL~1\FIREFOX.EXE C:\Documents and Settings\Propriétaire\Mes documents\internet\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-qfr10.hpwis.com/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mystart.incredimail.com/french/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://srch-qfr10.hpwis.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" O4 - HKLM\..\Run: [HPHUPD05] c:\Program Files\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [updateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe" O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe O4 - HKLM\..\Run: [uSBToolTip] "C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe" O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" /hide O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [LVCOMSX] "C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [lxdjamon] "C:\Program Files\Lexmark 1400 Series\lxdjamon.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [Acme.PCHButton] C:\PROGRA~1\PRESAR~1\Presario\XPHWWRP4\plugin\bin\pchbutton.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount O4 - HKCU\..\Run: [incrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c O4 - HKCU\..\Run: [Packard Bell Data Secure] C:\Program Files\Packard Bell Data Secure\PBDataSecure.exe O4 - Startup: MSN Pictures Displayer.lnk = C:\Program Files\MSN Pictures Displayer\MSN Pictures Displayer.exe O8 - Extra context menu item: Add to AMV Converter... - C:\Program Files\MP3 Player Utilities 4.15\AMVConverter\grab.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.15\MediaManager\grab.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O10 - Unknown file in Winsock LSP: c:\program files\bonjour\mdnsnsp.dll O11 - Options group: [iNTERNATIONAL] International* O16 - DPF: {1F83CD9E-505E-4F87-BECE-0832A763E36F} (Image Uploader 3.0 Control) - http://www.presslabo.com/importer/MypixUploader.cab O16 - DPF: {2EF3FB47-7B1E-4536-BA4D-51427BD45DFA} (PIXACO Drag and Drop upload plugin) - http://www.pixaco.fr/static/download/pixacodndupload.cab O16 - DPF: {3BFFE033-BF43-11D5-A271-00A024A51325} (iNotes6 Class) - https://messagerie.cg89.fr/iNotes6W.cab O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://www3.snapfish.fr/SnapfishActivia.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by118fd.bay118.hotmail.msn.com/resources/MsnPUpld.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.mypix.com/importer/ImageUploader4.cab O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.photoreflex.com/tools/ImageUplo...geUploader3.cab O16 - DPF: {A73BAEFA-EE65-494D-BEDB-DD3E5A34FA98} (Image Uploader) - http://www.extrafilm.fr/ImageUploader4.cab O16 - DPF: {AE2B937E-EA7D-4A8D-888C-B68D7F72A3C4} (IPSUploader4 Control) - http://as.photoprintit.de/ips-opdata/layou...PSUploader4.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O16 - DPF: {DEB21AD3-FDA4-42F6-B57D-EE696A675EE8} (IPSUploader Control) - http://as.photoprintit.de/ips-opdata/layou...IPSUploader.cab O16 - DPF: {FB90BA05-66E6-4C56-BCD3-D65B0F7EBA39} (Foto.com SpeedUploader 1.0 Control) - http://fotobook.foto.com/activex/SpeedUploader.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\Logitech\SrvLnch\SrvLnch.exe O23 - Service: lxdjCATSCustConnectService - Lexmark International, Inc. - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxdjserv.exe O23 - Service: lxdj_device - - C:\WINDOWS\system32\lxdjcoms.exe O23 - Service: MSSQL$PINNACLESYS - Unknown owner - C:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe" -sPINNACLESYS (file missing) O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: Packard Bell Software Suite Service 1 (Service1) - Packard Bell Services - C:\Program Files\Packard Bell\Packard Bell Software Suite\PowerSave\HDPBSSS.exe O23 - Service: SQLAgent$PINNACLESYS - Unknown owner - C:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlagent.EXE" -i PINNACLESYS (file missing) O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe par contre au demarrage j'ai des fenetres d'erreur !!!!
- le 11 novembre 2008
- 19 réponses
pc lent besoin aide rapport hijackthis svp[résolu]

alex89000 a répondu à un(e) sujet de alex89000 dans Analyses et éradication malwares

ComboFix 08-11-10.01 - Propriétaire 2008-11-11 10:46:22.2 - NTFSx86 Lancé depuis: c:\documents and settings\Propriétaire\Bureau\ComboFix.exe Commutateurs utilisés :: c:\documents and settings\Propriétaire\Bureau\CFScript.txt . Les fichiers ci-dessous ont été désactivés pendant l'exécution: c:\program files\Fichiers communs\Logitech\LVMVFM\LVPrcInj.dll (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . . ((((((((((((((((((((((((((((((((((((((( Pilotes/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Legacy_GAGP440P -------\Service_gAGP440p ((((((((((((((((((((((((((((( Fichiers créés du 2008-10-11 au 2008-11-11 )))))))))))))))))))))))))))))))))))) . 2008-11-09 16:39 . 2008-11-09 17:34 <REP> d-------- C:\Lop SD 2008-11-09 12:17 . 2008-11-09 12:17 <REP> d-------- c:\documents and settings\Propriétaire\Application Data\Malwarebytes 2008-11-09 12:15 . 2008-11-09 12:16 <REP> d-------- c:\program files\Malwarebytes' Anti-Malware 2008-11-09 12:15 . 2008-11-09 12:15 <REP> d-------- c:\documents and settings\All Users\Application Data\Malwarebytes 2008-11-09 12:15 . 2008-10-22 16:10 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys 2008-11-09 12:15 . 2008-10-22 16:10 15,504 --a------ c:\windows\system32\drivers\mbam.sys 2008-11-09 10:38 . 2008-11-09 10:39 <REP> d-------- C:\rsit 2008-11-09 10:38 . 2008-11-09 10:39 <REP> d-------- c:\program files\trend micro 2008-10-22 09:40 . 2008-10-22 09:40 446,976 --a------ c:\windows\system32\ShellMPD.dll 2008-10-22 08:57 . 2008-10-22 08:57 <REP> d-------- c:\windows\system32\fr 2008-10-22 08:57 . 2008-10-22 09:03 <REP> d-------- c:\windows\l2schemas 2008-10-22 08:49 . 2007-08-10 07:18 33,656 --a------ c:\windows\system32\sprecovr.exe 2008-10-22 08:44 . 2004-08-20 00:09 4,290,048 --a------ c:\windows\system32\dllcache\wmm2res.dll 2008-10-22 08:42 . 2008-08-14 14:44 2,182,400 --a------ c:\windows\system32\ntoskrnl.exe . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-11-11 09:46 --------- d-----w c:\program files\MSN Messenger 2008-11-10 17:12 --------- d-----w c:\program files\Windows Live Safety Center 2008-11-09 10:54 --------- d-----w c:\program files\Lx_cats 2008-11-07 09:17 --------- d-----w c:\program files\Spybot - Search & Destroy 2008-11-05 10:46 --------- d-----w c:\program files\AviSynth 2.5 2008-11-05 10:36 --------- d-----w c:\program files\Logitech 2008-10-22 08:40 --------- d-----w c:\program files\MSN Pictures Displayer 2008-10-20 18:35 --------- d-----w c:\documents and settings\All Users\Application Data\Bluetooth 2008-10-20 05:15 --------- d-----w c:\documents and settings\Propriétaire\Application Data\uTorrent 2008-10-16 19:41 --------- d-----w c:\program files\Weight Watchers FlexiPoints 2008-10-14 07:24 --------- d-----w c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy 2008-10-03 13:18 --------- d-----w c:\program files\IVT Corporation 2008-09-11 11:25 --------- d-----w c:\program files\Bonjour 2008-09-11 11:23 --------- d-----w c:\program files\QuickTime 2008-09-11 11:23 --------- d-----w c:\program files\Fichiers communs\Apple 2008-09-11 11:21 --------- d-----w c:\program files\Apple Software Update 2007-11-21 13:32 196,295 -c--a-w c:\documents and settings\Propriétaire\Application Data\mdb.bin 2006-05-29 14:40 7,296,000 ----a-w c:\program files\mozilla firefox\plugins\libvlc.dll 2007-12-18 06:34 594,944 ----a-w c:\program files\mozilla firefox\plugins\MannequinPlayer2.dll . ((((((((((((((((((((((((((((( snapshot@2008-11-11_10.01.10.21 ))))))))))))))))))))))))))))))))))))))))) . + 2008-01-07 18:19:46 221,184 -c--a-w c:\windows\SMINST\RECGUARD.EXE - 2004-08-19 23:09:51 15,360 ----a-w c:\windows\system32\ctfmon.exe + 2008-01-04 07:44:06 15,360 ----a-w c:\windows\system32\ctfmon.exe - 2004-08-19 23:09:51 15,360 ----a-w c:\windows\system32\dllcache\ctfmon.exe + 2008-01-04 07:44:06 15,360 -c--a-w c:\windows\system32\dllcache\ctfmon.exe + 2008-11-11 09:56:29 16,384 ----atw c:\windows\temp\Perflib_Perfdata_52c.dat . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-01-04 15360] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-01-06 68856] "Acme.PCHButton"="c:\progra~1\PRESAR~1\Presario\XPHWWRP4\plugin\bin\pchbutton.exe" [2008-01-06 159744] "MsnMsgr"="c:\program files\Windows Live\Messenger\MsnMsgr.Exe" [2007-10-18 5724184] "AlcoholAutomount"="c:\program files\Alcohol Soft\Alcohol 120\axcmd.exe" [2007-12-22 222080] "IncrediMail"="c:\program files\IncrediMail\bin\IncMail.exe" [2008-07-24 243072] "Packard Bell Data Secure"="c:\program files\Packard Bell Data Secure\PBDataSecure.exe" [2006-08-01 2363904] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SunJavaUpdateSched"="c:\program files\Java\jre1.6.0_02\bin\jusched.exe" [2008-01-07 132496] "HPHUPD05"="c:\program files\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe" [2008-01-07 49152] "KBD"="c:\hp\KBD\KBD.EXE" [2008-01-07 61440] "UpdateManager"="c:\program files\Fichiers communs\Sonic\Update Manager\sgtray.exe" [2008-01-07 110592] "Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2008-01-07 221184] "NvCplDaemon"="c:\windows\System32\NvCpl.dll" [2003-12-05 3022848] "LogitechCommunicationsManager"="c:\program files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe" [2008-01-06 497200] "LogitechVideoRepair"="c:\program files\Logitech\Video\ISStart.exe" [2008-01-06 188416] "LogitechVideoTray"="c:\program files\Logitech\Video\LogiTray.exe" [2008-01-06 65536] "USBToolTip"="c:\program files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe" [2008-01-06 192512] "LogitechQuickCamRibbon"="c:\program files\Logitech\QuickCam10\QuickCam10.exe" [2008-01-06 614960] "TkBellExe"="c:\program files\Fichiers communs\Real\Update_OB\realsched.exe" [2008-01-06 151597] "avgnt"="c:\program files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2007-12-30 249896] "LVCOMSX"="c:\program files\Fichiers communs\Logitech\LComMgr\LVComSX.exe" [2008-01-06 243248] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792] "lxdjamon"="c:\program files\Lexmark 1400 Series\lxdjamon.exe" [2007-03-05 20480] "QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-09-06 413696] "nwiz"="nwiz.exe" [2003-12-05 c:\windows\system32\nwiz.exe] "AlcxMonitor"="ALCXMNTR.EXE" [2003-04-03 c:\windows\ALCXMNTR.EXE] c:\documents and settings\Propri‚taire\Menu D‚marrer\Programmes\D‚marrage\ MSN Pictures Displayer.lnk - c:\program files\MSN Pictures Displayer\MSN Pictures Displayer.exe [2008-09-27 4571136] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "msacm.enc"= ITIG726.acm "MSACM.CEGSM"= mobilev.acm [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\WINDOWS\\system32\\mcoinstall.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe"= "c:\\WINDOWS\\system32\\rtcshare.exe"= "c:\\Program Files\\NetMeeting\\conf.exe"= "c:\program files\Microsoft ActiveSync\rapimgr.exe"= c:\program files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager "c:\\Program Files\\VideoLAN\\VLC\\vlc.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"= "c:\\WINDOWS\\system32\\lxdjcoms.exe"= "c:\\Program Files\\Lexmark 1400 Series\\lxdjamon.exe"= "c:\\Program Files\\Lexmark 1400 Series\\App4R.exe"= "c:\\Program Files\\Real\\RealOne Player\\realplay.exe"= "c:\\Program Files\\IncrediMail\\bin\\IncMail.exe"= "c:\\Program Files\\IncrediMail\\bin\\ImApp.exe"= "c:\\Program Files\\uTorrent\\uTorrent.exe"= "c:\\Program Files\\IncrediMail\\bin\\ImpCnt.exe"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\Messenger\\msmsgs.exe"= "c:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxdjwbgw.exe"= "c:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxdjpswx.exe"= "c:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxdjjswx.exe"= "c:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxdjtime.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service "44961:TCP"= 44961:TCP:torrent "44961:UDP"= 44961:UDP:utorrent R2 lxdjCATSCustConnectService;lxdjCATSCustConnectService;c:\windows\System32\spool\DRIVERS\W32X86\3\\lxdjserv.exe [2007-04-27 99248] S3 usbscan;Pilote de scanneur USB;c:\windows\system32\DRIVERS\usbscan.sys [2004-08-04 15104] S3 USBSTOR;Pilote de stockage de masse USB;c:\windows\system32\DRIVERS\USBSTOR.SYS [2004-08-04 26496] . Contenu du dossier 'Tâches planifiées' 2008-11-08 c:\windows\Tasks\AppleSoftwareUpdate.job - c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34] . - - - - ORPHELINS SUPPRIMES - - - - HKCU-Run-H/PC Connection Agent - c:\program files\Microsoft ActiveSync\wcescomm .exe HKCU-Run-TomTomHOME.exe - c:\program files\TomTom HOME 2\HOMERunner.exe HKCU-Run-eyeBeam SIP Client - (no file) HKLM-Run-lxdjmon.exe - c:\program files\Lexmark 1400 Series\lxdjmon.exe ************************************************************************** catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-11-11 11:04:24 Windows 5.1.2600 Service Pack 2 NTFS Recherche de processus cachés ... Recherche d'éléments en démarrage automatique cachés ... Recherche de fichiers cachés ... Scan terminé avec succès Fichiers cachés: 0 ************************************************************************** . ------------------------ Autres processus actifs ------------------------ . c:\program files\Fichiers communs\Logitech\LVMVFM\LVPrcSrv.exe c:\program files\Avira\AntiVir PersonalEdition Classic\avguard.exe c:\program files\Avira\AntiVir PersonalEdition Classic\sched.exe c:\program files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe c:\program files\Grisoft\AVG Anti-Spyware 7.5\guard.exe c:\program files\Bonjour\mDNSResponder.exe c:\windows\system32\spool\drivers\w32x86\3\lxdjserv.exe c:\windows\system32\lxdjcoms.exe c:\program files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE c:\program files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe c:\windows\system32\nvsvc32.exe c:\program files\Packard Bell\Packard Bell Software Suite\PowerSave\HDPBSSS.exe c:\program files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe c:\windows\system32\rundll32.exe c:\program files\Fichiers communs\Real\Update_OB\realevent.exe c:\program files\IncrediMail\bin\ImApp.exe c:\program files\Logitech\QuickCam10\COCIManager.exe c:\program files\Messenger\msmsgs.exe c:\program files\Java\jre1.6.0_02\bin\jucheck.exe . ************************************************************************** . Heure de fin: 2008-11-11 11:18:21 - La machine a redémarré ComboFix-quarantined-files.txt 2008-11-11 10:17:57 ComboFix2.txt 2008-11-11 09:04:47 Avant-CF: 32 417 497 088 octets libres Après-CF: 32,405,041,152 octets libres 181 --- E O F --- 2008-11-11 08:00:04 dis moi que c bon :P :P je reviens ce soir merci pour ton aide en tout cas
- le 11 novembre 2008
- 19 réponses
pc lent besoin aide rapport hijackthis svp[résolu]

alex89000 a répondu à un(e) sujet de alex89000 dans Analyses et éradication malwares

ComboFix 08-11-10.01 - Propriétaire 2008-11-11 9:35:34.1 - NTFSx86 Microsoft Windows XP Édition familiale 5.1.2600.2.1252.1.1036.18.12 [GMT 1:00] Lancé depuis: c:\documents and settings\Propriétaire\Bureau\ComboFix.exe . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . c:\windows\system32\sttss.ini c:\windows\system32\sttss.ini2 D:\Autorun.inf . ((((((((((((((((((((((((((((((((((((((( Pilotes/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Legacy_DOMAINSERVICE ((((((((((((((((((((((((((((( Fichiers créés du 2008-10-11 au 2008-11-11 )))))))))))))))))))))))))))))))))))) . 2008-11-09 16:39 . 2008-11-09 17:34 <REP> d-------- C:\Lop SD 2008-11-09 12:17 . 2008-11-09 12:17 <REP> d-------- c:\documents and settings\Propriétaire\Application Data\Malwarebytes 2008-11-09 12:15 . 2008-11-09 12:16 <REP> d-------- c:\program files\Malwarebytes' Anti-Malware 2008-11-09 12:15 . 2008-11-09 12:15 <REP> d-------- c:\documents and settings\All Users\Application Data\Malwarebytes 2008-11-09 12:15 . 2008-10-22 16:10 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys 2008-11-09 12:15 . 2008-10-22 16:10 15,504 --a------ c:\windows\system32\drivers\mbam.sys 2008-11-09 10:38 . 2008-11-09 10:39 <REP> d-------- C:\rsit 2008-11-09 10:38 . 2008-11-09 10:39 <REP> d-------- c:\program files\trend micro 2008-10-22 09:40 . 2008-10-22 09:40 446,976 --a------ c:\windows\system32\ShellMPD.dll 2008-10-22 08:57 . 2008-10-22 08:57 <REP> d-------- c:\windows\system32\fr 2008-10-22 08:57 . 2008-10-22 09:03 <REP> d-------- c:\windows\l2schemas 2008-10-22 08:49 . 2007-08-10 07:18 33,656 --a------ c:\windows\system32\sprecovr.exe 2008-10-22 08:44 . 2004-08-20 00:09 4,290,048 --a------ c:\windows\system32\dllcache\wmm2res.dll 2008-10-22 08:42 . 2008-08-14 14:44 2,182,400 --a------ c:\windows\system32\ntoskrnl.exe . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-11-10 17:12 --------- d-----w c:\program files\Windows Live Safety Center 2008-11-09 10:54 --------- d-----w c:\program files\Lx_cats 2008-11-07 09:17 --------- d-----w c:\program files\Spybot - Search & Destroy 2008-11-05 10:46 --------- d-----w c:\program files\AviSynth 2.5 2008-11-05 10:36 --------- d-----w c:\program files\Logitech 2008-10-22 08:40 --------- d-----w c:\program files\MSN Pictures Displayer 2008-10-22 08:14 69,632 ----a-w c:\windows\PCHealth\HelpCtr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\Presario\XPHWWRP4\plugin\bin\msxmlwrapper.dll 2008-10-20 18:35 --------- d-----w c:\documents and settings\All Users\Application Data\Bluetooth 2008-10-20 05:15 --------- d-----w c:\documents and settings\Propriétaire\Application Data\uTorrent 2008-10-16 19:41 --------- d-----w c:\program files\Weight Watchers FlexiPoints 2008-10-14 07:24 --------- d-----w c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy 2008-10-03 13:18 --------- d-----w c:\program files\IVT Corporation 2008-09-11 11:25 --------- d-----w c:\program files\Bonjour 2008-09-11 11:23 --------- d-----w c:\program files\QuickTime 2008-09-11 11:23 --------- d-----w c:\program files\Fichiers communs\Apple 2008-09-11 11:21 --------- d-----w c:\program files\Apple Software Update 2007-11-21 13:32 196,295 -c--a-w c:\documents and settings\Propriétaire\Application Data\mdb.bin 2006-05-29 14:40 7,296,000 ----a-w c:\program files\mozilla firefox\plugins\libvlc.dll 2007-12-18 06:34 594,944 ----a-w c:\program files\mozilla firefox\plugins\MannequinPlayer2.dll . <pre> -c--a-w 61,440 2008-01-07 18:19:39 c:\hp\KBD\KBD .EXE -c--a-w 249,896 2007-12-30 12:15:03 c:\program files\Avira\AntiVir PersonalEdition Classic\avgnt .exe ----a-w 20,811,776 2007-12-28 19:41:17 c:\program files\CounterPath\X-Lite\x-lite .exe -c--a-w 497,200 2008-01-06 17:15:26 c:\program files\Fichiers communs\Logitech\LComMgr\Communications_Helper .exe -c--a-w 243,248 2008-01-06 17:15:26 c:\program files\Fichiers communs\Logitech\LComMgr\LVComSX .exe -c--a-w 151,597 2008-01-06 17:16:12 c:\program files\Fichiers communs\Real\Update_OB\realsched .exe -c--a-w 110,592 2008-01-07 18:19:43 c:\program files\Fichiers communs\Sonic\Update Manager\sgtray .exe -c--a-w 68,856 2008-01-06 17:16:46 c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier .exe -c--a-w 49,152 2008-01-07 18:19:39 c:\program files\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05 .exe -c--a-w 132,496 2008-01-07 18:19:35 c:\program files\Java\jre1.6.0_02\bin\jusched .exe -c--a-w 614,960 2008-01-06 17:16:10 c:\program files\Logitech\QuickCam10\QuickCam10 .exe -c--a-w 188,416 2008-01-06 17:15:33 c:\program files\Logitech\Video\ISStart .exe -c--a-w 65,536 2008-01-06 17:15:51 c:\program files\Logitech\Video\LogiTray .exe ----a-w 5,674,352 2008-01-17 09:21:20 c:\program files\MSN Messenger\msnmsgr .exe -c--a-w 192,512 2008-01-06 17:16:03 c:\program files\Pinnacle\Shared Files\Programs\USBTip\USBTip .exe -c--a-w 159,744 2008-01-06 17:16:59 c:\program files\Presario PC Help\Presario\XPHWWRP4\plugin\bin\pchbutton .exe -c--a-w 221,184 2008-01-07 18:19:46 c:\windows\SMINST\RECGUARD .EXE ----a-w 15,360 2008-01-04 07:44:06 c:\windows\system32\ctfmon .exe </pre> ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2004-08-20 15360] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [N/A] "Acme.PCHButton"="c:\progra~1\PRESAR~1\Presario\XPHWWRP4\plugin\bin\pchbutton.exe" [N/A] "MsnMsgr"="c:\program files\Windows Live\Messenger\MsnMsgr.Exe" [2007-10-18 5724184] "H/PC Connection Agent"="c:\program files\Microsoft ActiveSync\wcescomm .exe" [N/A] "AlcoholAutomount"="c:\program files\Alcohol Soft\Alcohol 120\axcmd.exe" [2007-12-22 222080] "IncrediMail"="c:\program files\IncrediMail\bin\IncMail.exe" [2008-07-24 243072] "TomTomHOME.exe"="c:\program files\TomTom HOME 2\HOMERunner.exe" [N/A] "Packard Bell Data Secure"="c:\program files\Packard Bell Data Secure\PBDataSecure.exe" [2006-08-01 2363904] "eyeBeam SIP Client"="" [N/A] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SunJavaUpdateSched"="c:\program files\Java\jre1.6.0_02\bin\jusched.exe" [N/A] "HPHUPD05"="c:\program files\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe" [N/A] "KBD"="c:\hp\KBD\KBD.EXE" [N/A] "UpdateManager"="c:\program files\Fichiers communs\Sonic\Update Manager\sgtray.exe" [N/A] "Recguard"="c:\windows\SMINST\RECGUARD.EXE" [N/A] "NvCplDaemon"="c:\windows\System32\NvCpl.dll" [2003-12-05 3022848] "LogitechCommunicationsManager"="c:\program files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe" [2006-06-26 497200] "LogitechVideoRepair"="c:\program files\Logitech\Video\ISStart.exe" [N/A] "LogitechVideoTray"="c:\program files\Logitech\Video\LogiTray.exe" [N/A] "USBToolTip"="c:\program files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe" [N/A] "LogitechQuickCamRibbon"="c:\program files\Logitech\QuickCam10\QuickCam10.exe" [2006-06-26 614960] "TkBellExe"="c:\program files\Fichiers communs\Real\Update_OB\realsched.exe" [N/A] "avgnt"="c:\program files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-07-20 266497] "LVCOMSX"="c:\program files\Fichiers communs\Logitech\LComMgr\LVComSX.exe" [2006-06-26 243248] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792] "lxdjmon.exe"="c:\program files\Lexmark 1400 Series\lxdjmon.exe" [N/A] "lxdjamon"="c:\program files\Lexmark 1400 Series\lxdjamon.exe" [2007-03-05 20480] "QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-09-06 413696] "nwiz"="nwiz.exe" [2003-12-05 c:\windows\system32\nwiz.exe] "AlcxMonitor"="ALCXMNTR.EXE" [2003-04-03 c:\windows\ALCXMNTR.EXE] c:\documents and settings\Propri‚taire\Menu D‚marrer\Programmes\D‚marrage\ MSN Pictures Displayer.lnk - c:\program files\MSN Pictures Displayer\MSN Pictures Displayer.exe [2008-09-27 4571136] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "msacm.enc"= ITIG726.acm "MSACM.CEGSM"= mobilev.acm [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\WINDOWS\\system32\\mcoinstall.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe"= "c:\\WINDOWS\\system32\\rtcshare.exe"= "c:\\Program Files\\NetMeeting\\conf.exe"= "c:\program files\Microsoft ActiveSync\rapimgr.exe"= c:\program files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager "c:\\Program Files\\MSN Messenger\\msnmsgr .exe"= "c:\\Program Files\\CounterPath\\X-Lite\\x-lite .exe"= "c:\\Program Files\\VideoLAN\\VLC\\vlc.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"= "c:\\WINDOWS\\system32\\lxdjcoms.exe"= "c:\\Program Files\\Lexmark 1400 Series\\lxdjamon.exe"= "c:\\Program Files\\Lexmark 1400 Series\\App4R.exe"= "c:\\Program Files\\Real\\RealOne Player\\realplay.exe"= "c:\\Program Files\\IncrediMail\\bin\\IncMail.exe"= "c:\\Program Files\\IncrediMail\\bin\\ImApp.exe"= "c:\\Program Files\\uTorrent\\uTorrent.exe"= "c:\\Program Files\\IncrediMail\\bin\\ImpCnt.exe"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\Messenger\\msmsgs.exe"= "c:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxdjwbgw.exe"= "c:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxdjpswx.exe"= "c:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxdjjswx.exe"= "c:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\lxdjtime.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service "44961:TCP"= 44961:TCP:torrent "44961:UDP"= 44961:UDP:utorrent R2 lxdjCATSCustConnectService;lxdjCATSCustConnectService;c:\windows\System32\spool\DRIVERS\W32X86\3\\lxdjserv.exe [2007-04-27 99248] S3 gAGP440p;gAGP440p;c:\docume~1\PROPRI~1\LOCALS~1\Temp\gAGP440p.sys [ ] S3 usbscan;Pilote de scanneur USB;c:\windows\system32\DRIVERS\usbscan.sys [2004-08-04 15104] S3 USBSTOR;Pilote de stockage de masse USB;c:\windows\system32\DRIVERS\USBSTOR.SYS [2004-08-04 26496] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\D] \Shell\AutoRun\command - D:\Info.exe folder.htt 480 480 [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{6cdb7e39-86ab-11db-aa02-000c76faf7a7}] \Shell\AutoRun\command - I:\ReadMe.exe [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{858a7db0-969d-11dc-ab08-000c76faf7a7}] \Shell\AutoRun\command - I:\ClickMe.exe [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{cf7360d3-9723-11db-aa1c-000c76faf7a7}] \Shell\AutoRun\command - G:\welcome.exe [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{cf7360df-9723-11db-aa1c-000c76faf7a7}] \Shell\AutoRun\command - welcome.exe [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{fdf15b28-ea00-11dc-ab81-000c76faf7a7}] \Shell\AutoRun\command - I:\ClickMe.exe . Contenu du dossier 'Tâches planifiées' 2008-11-08 c:\windows\Tasks\AppleSoftwareUpdate.job - c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34] . - - - - ORPHELINS SUPPRIMES - - - - BHO-{C0D4A0E8-98EE-4A14-91A0-0E331A08FB07} - c:\windows\system32\sstts.dll Notify-dimsntfy - (no file) . ------- Examen supplémentaire ------- . FireFox -: Profile - c:\documents and settings\Propriétaire\Application Data\Mozilla\Firefox\Profiles\g64f06gt.default\ FireFox -: prefs.js - SEARCH.DEFAULTURL - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q= FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://www.google.com/ig . ************************************************************************** catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-11-11 09:51:50 Windows 5.1.2600 Service Pack 2 NTFS Recherche de processus cachés ... Recherche d'éléments en démarrage automatique cachés ... Recherche de fichiers cachés ... Scan terminé avec succès Fichiers cachés: 0 ************************************************************************** . ------------------------ Autres processus actifs ------------------------ . c:\program files\Fichiers communs\Logitech\LVMVFM\LVPrcSrv.exe c:\program files\Avira\AntiVir PersonalEdition Classic\avguard.exe c:\program files\Avira\AntiVir PersonalEdition Classic\sched.exe c:\program files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe c:\program files\Grisoft\AVG Anti-Spyware 7.5\guard.exe c:\program files\Bonjour\mDNSResponder.exe c:\windows\system32\spool\drivers\w32x86\3\lxdjserv.exe c:\windows\system32\lxdjcoms.exe c:\program files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE c:\program files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe c:\windows\system32\nvsvc32.exe c:\program files\Packard Bell\Packard Bell Software Suite\PowerSave\HDPBSSS.exe c:\program files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe c:\windows\system32\rundll32.exe c:\program files\IncrediMail\bin\ImApp.exe c:\program files\Messenger\msmsgs.exe c:\program files\Logitech\QuickCam10\COCIManager.exe . ************************************************************************** . Heure de fin: 2008-11-11 10:04:36 - La machine a redémarré ComboFix-quarantined-files.txt 2008-11-11 09:04:23 Avant-CF: 32 532 475 904 octets libres Après-CF: 32,450,314,240 octets libres 213 --- E O F --- 2008-11-11 08:00:04
- le 11 novembre 2008
- 19 réponses
pc lent besoin aide rapport hijackthis svp[résolu]

alex89000 a répondu à un(e) sujet de alex89000 dans Analyses et éradication malwares

merci pour l'aide --------------------\\ Lop S&D 4.2.4-9c XP/Vista Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2 X86-based PC ( Uniprocessor Free : Intel® Pentium® 4 CPU 2.80GHz ) BIOS : Phoenix - AwardBIOS v6.00PG USER : Propriétaire ( Administrator ) BOOT : Normal boot Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Not Activated) A:\ (USB) C:\ (Local Disk) - NTFS - Total:111 Go (Free:30 Go) D:\ (Local Disk) - FAT32 - Total:3 Go (Free:0 Go) E:\ (CD or DVD) F:\ (CD or DVD) G:\ (CD or DVD) H:\ (CD or DVD) "C:\Lop SD" ( MAJ : 01-11-2008|16:30 ) Option : [2] ( 09/11/2008|17:23 ) \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION Supprime! - C:\DOCUME~1\PROPRI~1\APPLIC~1\BitDownload\Data Supprime! - C:\WINDOWS\Tasks\815B765C9FE8E450.job Supprime! - C:\DOCUME~1\PROPRI~1\APPLIC~1\spamis~1 Supprime! - C:\Program Files\spamis~1 Supprime! - C:\DOCUME~1\PROPRI~1\APPLIC~1\Bitdownload - [ Fichier Hosts ] .. Restaure! \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ --------------------\\ Listing des dossiers dans APPLIC~1 [04/03/2008|19:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe [07/05/2008|08:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple [07/05/2008|08:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer [28/12/2007|17:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira [16/12/2007|10:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AVS4YOU [20/10/2008|19:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bluetooth [15/12/2007|16:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink [13/10/2006|18:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google [27/12/2007|22:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft [27/04/2008|13:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\IM [27/04/2008|13:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\IncrediMail [13/01/2007|13:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InterVideo [23/10/2006|16:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech [08/12/2006|11:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision [09/11/2008|12:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes [04/04/2008|06:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft [01/01/2004|11:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Motive [03/01/2008|19:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\OutilsWW [30/12/2006|17:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle [01/01/2004|09:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI [30/12/2006|20:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software [14/10/2008|08:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy [02/08/2008|12:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec [09/10/2006|17:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage [31/03/2008|17:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller [01/01/2004|08:55] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities [01/01/2004|09:54] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft [01/01/2004|11:52] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView [01/01/2004|11:14] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sonic [01/01/2004|09:58] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun [01/01/2004|08:08] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec [15/08/2008|13:54] C:\DOCUME~1\LOCALS~1\APPLIC~1\Adobe [15/08/2008|13:52] C:\DOCUME~1\LOCALS~1\APPLIC~1\Macromedia [04/04/2008|06:26] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft [30/12/2006|16:46] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft [04/03/2008|19:07] C:\DOCUME~1\PROPRI~1\APPLIC~1\Adobe [12/09/2007|12:47] C:\DOCUME~1\PROPRI~1\APPLIC~1\AdobeUM [07/05/2008|08:39] C:\DOCUME~1\PROPRI~1\APPLIC~1\Apple Computer [03/07/2007|12:26] C:\DOCUME~1\PROPRI~1\APPLIC~1\Arcsoft [20/01/2008|17:59] C:\DOCUME~1\PROPRI~1\APPLIC~1\DAEMON Tools [12/02/2008|13:15] C:\DOCUME~1\PROPRI~1\APPLIC~1\Google [07/10/2006|14:27] C:\DOCUME~1\PROPRI~1\APPLIC~1\Help [06/10/2006|15:45] C:\DOCUME~1\PROPRI~1\APPLIC~1\Identities [14/11/2006|17:03] C:\DOCUME~1\PROPRI~1\APPLIC~1\InterVideo [13/05/2007|12:51] C:\DOCUME~1\PROPRI~1\APPLIC~1\iShell [29/03/2007|08:24] C:\DOCUME~1\PROPRI~1\APPLIC~1\Lavasoft [07/10/2006|12:14] C:\DOCUME~1\PROPRI~1\APPLIC~1\Leadertech [28/12/2007|17:35] C:\DOCUME~1\PROPRI~1\APPLIC~1\Live-Prod [04/01/2007|09:56] C:\DOCUME~1\PROPRI~1\APPLIC~1\Macromedia [09/11/2008|12:17] C:\DOCUME~1\PROPRI~1\APPLIC~1\Malwarebytes [08/06/2008|22:35] C:\DOCUME~1\PROPRI~1\APPLIC~1\Microsoft [07/10/2006|12:00] C:\DOCUME~1\PROPRI~1\APPLIC~1\Microsoft Web Folders [21/05/2007|17:51] C:\DOCUME~1\PROPRI~1\APPLIC~1\Motive [29/07/2008|17:40] C:\DOCUME~1\PROPRI~1\APPLIC~1\Mozilla [24/08/2008|19:05] C:\DOCUME~1\PROPRI~1\APPLIC~1\MSN Pictures Displayer [07/11/2006|10:45] C:\DOCUME~1\PROPRI~1\APPLIC~1\Photoways [23/03/2007|08:47] C:\DOCUME~1\PROPRI~1\APPLIC~1\Pixum [01/06/2008|07:35] C:\DOCUME~1\PROPRI~1\APPLIC~1\Podmailing [03/07/2007|11:45] C:\DOCUME~1\PROPRI~1\APPLIC~1\Real [01/01/2004|11:52] C:\DOCUME~1\PROPRI~1\APPLIC~1\SampleView [08/10/2006|18:58] C:\DOCUME~1\PROPRI~1\APPLIC~1\Snapfish [30/12/2006|20:27] C:\DOCUME~1\PROPRI~1\APPLIC~1\Software [07/10/2006|12:15] C:\DOCUME~1\PROPRI~1\APPLIC~1\Sonic [01/01/2004|09:58] C:\DOCUME~1\PROPRI~1\APPLIC~1\Sun [01/01/2004|08:08] C:\DOCUME~1\PROPRI~1\APPLIC~1\Symantec [29/12/2007|13:37] C:\DOCUME~1\PROPRI~1\APPLIC~1\Talkback [29/07/2008|17:40] C:\DOCUME~1\PROPRI~1\APPLIC~1\TomTom [20/10/2008|06:15] C:\DOCUME~1\PROPRI~1\APPLIC~1\uTorrent [22/02/2008|21:25] C:\DOCUME~1\PROPRI~1\APPLIC~1\vlc [08/12/2006|14:36] C:\DOCUME~1\PROPRI~1\APPLIC~1\Vso --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks [08/11/2008 10:05][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job [21/09/2003 09:45][-rah-c---] C:\WINDOWS\tasks\desktop.ini [09/11/2008 10:24][--ah-----] C:\WINDOWS\tasks\SA.DAT --------------------\\ Listing des dossiers dans C:\Program Files [31/07/2008|17:10] C:\Program Files\Adobe [04/01/2008|09:11] C:\Program Files\Alcohol Soft [15/12/2006|12:54] C:\Program Files\Alwil Software [11/09/2008|12:21] C:\Program Files\Apple Software Update [18/12/2006|13:20] C:\Program Files\AvantGo Connect [28/12/2007|17:59] C:\Program Files\Avira [05/11/2008|11:46] C:\Program Files\AviSynth 2.5 [16/12/2007|10:37] C:\Program Files\AVS4YOU [08/10/2006|13:13] C:\Program Files\Bayo [11/09/2008|12:25] C:\Program Files\Bonjour [28/12/2007|17:53] C:\Program Files\CCleaner [07/01/2007|12:53] C:\Program Files\Codemasters [18/12/2006|13:20] C:\Program Files\Common Files [01/01/2004|08:52] C:\Program Files\ComPlus Applications [13/12/2007|18:56] C:\Program Files\CounterPath [20/01/2008|17:59] C:\Program Files\DAEMON Tools Lite [30/12/2006|15:48] C:\Program Files\DaemonTools_WhenUSave_Installer [23/10/2006|17:34] C:\Program Files\directx [19/08/2007|20:35] C:\Program Files\DivX [25/09/2007|21:52] C:\Program Files\Dnote Software [15/12/2007|14:07] C:\Program Files\DVD Shrink [29/03/2007|08:26] C:\Program Files\Easy Internet signup [02/08/2008|09:32] C:\Program Files\eChanblard [28/06/2007|08:00] C:\Program Files\Fastlab Print Service [05/11/2008|11:36] C:\Program Files\Fichiers communs [04/03/2008|18:24] C:\Program Files\Free Audio Pack [07/01/2007|13:03] C:\Program Files\GameSpy Arcade [20/02/2008|20:04] C:\Program Files\Geonaute KeyMaze 300 [18/08/2008|13:15] C:\Program Files\Google [27/03/2007|17:03] C:\Program Files\Grisoft [01/01/2004|10:49] C:\Program Files\HP [07/08/2008|22:52] C:\Program Files\IncrediMail [11/08/2008|15:53] C:\Program Files\InstallShield Installation Information [17/10/2008|02:17] C:\Program Files\Internet Explorer [29/03/2007|08:29] C:\Program Files\InterVideo [03/10/2008|14:18] C:\Program Files\IVT Corporation [28/08/2007|13:03] C:\Program Files\Java [07/01/2007|13:20] C:\Program Files\JoWooD [26/05/2008|11:49] C:\Program Files\Lexmark 1400 Series [28/12/2007|17:35] C:\Program Files\LiveKillCleanMessenger [05/11/2008|11:36] C:\Program Files\Logitech [18/05/2007|13:03] C:\Program Files\Lunchbreak Adventures [09/11/2008|11:54] C:\Program Files\Lx_cats [09/11/2008|12:16] C:\Program Files\Malwarebytes' Anti-Malware [22/10/2008|09:23] C:\Program Files\Messenger [22/07/2008|12:56] C:\Program Files\Microsoft ActiveSync [02/04/2008|02:05] C:\Program Files\Microsoft CAPICOM 2.1.0.2 [07/10/2006|11:59] C:\Program Files\microsoft frontpage [26/03/2008|18:02] C:\Program Files\Microsoft Office [30/12/2006|16:42] C:\Program Files\Microsoft SQL Server [26/03/2008|18:02] C:\Program Files\Microsoft Visual Studio [09/06/2008|23:52] C:\Program Files\Microsoft Works [26/03/2008|18:00] C:\Program Files\Microsoft.NET [15/08/2008|16:40] C:\Program Files\Mindscape [26/03/2007|07:40] C:\Program Files\monAlbumPhoto [10/12/2006|10:04] C:\Program Files\Monte Cristo [22/10/2008|09:17] C:\Program Files\Movie Maker [09/11/2008|10:29] C:\Program Files\Mozilla Firefox [15/04/2007|08:11] C:\Program Files\MP3 Player Utilities 3.67 [01/01/2004|08:51] C:\Program Files\MSN [01/01/2004|08:51] C:\Program Files\MSN Gaming Zone [31/03/2008|17:35] C:\Program Files\MSN Messenger [22/10/2008|09:40] C:\Program Files\MSN Pictures Displayer [17/11/2006|08:14] C:\Program Files\MSXML 4.0 [22/10/2008|09:17] C:\Program Files\NetMeeting [03/01/2008|19:52] C:\Program Files\OutilsWW [22/10/2008|09:17] C:\Program Files\Outlook Express [04/08/2008|20:34] C:\Program Files\Packard Bell [04/08/2008|21:11] C:\Program Files\Packard Bell Data Secure [15/07/2007|08:49] C:\Program Files\Palm [07/03/2007|12:59] C:\Program Files\PCFriendly [04/01/2008|21:46] C:\Program Files\PhotoCite Collection [08/12/2006|14:37] C:\Program Files\PhotoFiltre Studio [28/06/2007|08:01] C:\Program Files\PhotoMix [28/06/2007|07:57] C:\Program Files\Pinnacle [26/03/2007|07:40] C:\Program Files\PIXACO livrephoto [26/03/2007|07:40] C:\Program Files\Pixum AG [18/12/2006|15:57] C:\Program Files\POI-Warner MN4 Edition [02/10/2007|12:01] C:\Program Files\POI-Warner MN5 Edition [01/01/2004|11:43] C:\Program Files\Presario PC Help [28/05/2007|21:24] C:\Program Files\proDAD [11/09/2008|12:23] C:\Program Files\QuickTime [03/07/2007|11:43] C:\Program Files\Real [01/01/2004|11:14] C:\Program Files\RecordNow! [16/12/2007|20:23] C:\Program Files\Ripp-it_AM [13/05/2008|16:57] C:\Program Files\Safari [01/01/2004|11:49] C:\Program Files\Services en ligne [13/12/2007|18:59] C:\Program Files\SJphone 1.65 [04/01/2008|09:18] C:\Program Files\SlySoft [01/01/2004|11:14] C:\Program Files\Sonic [07/11/2008|10:17] C:\Program Files\Spybot - Search & Destroy [20/02/2008|12:26] C:\Program Files\StuffPlug3 [02/08/2008|12:30] C:\Program Files\Symantec [09/11/2008|10:39] C:\Program Files\trend micro [01/01/2004|11:02] C:\Program Files\Uninstall Information [15/04/2007|08:13] C:\Program Files\USBDisk [02/08/2008|09:27] C:\Program Files\uTorrent [22/02/2008|21:04] C:\Program Files\VideoLAN [17/04/2008|20:09] C:\Program Files\Weight Watchers [16/10/2008|20:41] C:\Program Files\Weight Watchers FlexiPoints [31/03/2008|17:34] C:\Program Files\Windows Live [30/10/2008|22:05] C:\Program Files\Windows Live Safety Center [17/04/2008|20:09] C:\Program Files\Windows Media Connect 2 [22/10/2008|09:17] C:\Program Files\Windows Media Player [22/10/2008|09:17] C:\Program Files\Windows NT [06/10/2006|14:24] C:\Program Files\WindowsUpdate [05/11/2008|11:03] C:\Program Files\WinRAR [03/10/2007|12:56] C:\Program Files\WinZip [01/01/2004|08:56] C:\Program Files\xerox [06/11/2006|17:44] C:\Program Files\Xvid [26/03/2007|07:40] C:\Program Files\Yahoo! [25/01/2008|20:42] C:\Program Files\Zero G Registry --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs [04/03/2008|19:14] C:\Program Files\Fichiers communs\Adobe [11/09/2008|12:23] C:\Program Files\Fichiers communs\Apple [16/12/2007|10:37] C:\Program Files\Fichiers communs\AVSMedia [26/03/2008|18:02] C:\Program Files\Fichiers communs\DESIGNER [01/01/2004|10:32] C:\Program Files\Fichiers communs\Hewlett-Packard [01/01/2004|10:33] C:\Program Files\Fichiers communs\HP [23/10/2006|16:24] C:\Program Files\Fichiers communs\InstallShield [12/01/2007|11:23] C:\Program Files\Fichiers communs\InterVideo [01/01/2004|09:57] C:\Program Files\Fichiers communs\Java [23/10/2006|16:24] C:\Program Files\Fichiers communs\Logitech [22/07/2008|12:55] C:\Program Files\Fichiers communs\Microsoft Shared [01/01/2004|08:53] C:\Program Files\Fichiers communs\MSSoap [01/01/2004|08:48] C:\Program Files\Fichiers communs\ODBC [03/01/2008|19:52] C:\Program Files\Fichiers communs\PC SOFT [03/07/2007|11:42] C:\Program Files\Fichiers communs\Real [06/10/2006|23:00] C:\Program Files\Fichiers communs\Services [01/01/2004|11:14] C:\Program Files\Fichiers communs\Sonic [01/01/2004|08:48] C:\Program Files\Fichiers communs\SpeechEngines [01/01/2004|11:14] C:\Program Files\Fichiers communs\SureThing Shared [02/08/2008|12:33] C:\Program Files\Fichiers communs\Symantec Shared [22/10/2008|09:17] C:\Program Files\Fichiers communs\System [30/12/2007|10:53] C:\Program Files\Fichiers communs\Vbox [31/03/2008|17:31] C:\Program Files\Fichiers communs\WindowsLiveInstaller [13/12/2007|18:56] C:\Program Files\Fichiers communs\Wise Installation Wizard [03/07/2007|11:42] C:\Program Files\Fichiers communs\xing shared --------------------\\ Process ( 46 Processes ) ... OK ! --------------------\\ Recherche avec S_Lop Aucun fichier / dossier Lop trouvé ! --------------------\\ Recherche de Fichiers / Dossiers Lop Aucun fichier / dossier Lop trouvé ! --------------------\\ Verification du Registre ..... OK ! --------------------\\ Verification du fichier Hosts Fichier Hosts PROPRE --------------------\\ Recherche de fichiers avec Catchme catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-11-09 17:27:13 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden files: 1787 --------------------\\ Recherche d'autres infections C:\WINDOWS\system32\sttss.ini C:\WINDOWS\system32\sttss.ini2 ==> VUNDO <== --------------------\\ Cracks & Keygens .. C:\DOCUME~1\PROPRI~1\Bureau\dossiers echanblard\Animation Shop 3.05 + crack + patch FR.rar C:\DOCUME~1\PROPRI~1\Bureau\dossiers echanblard\InterVideo WinProducer DVD Pro v3.0.1 incl. KeyGen.zip C:\DOCUME~1\PROPRI~1\Bureau\dossiers echanblard\Intervideo.WinProducer.3.x.keygen.exe C:\DOCUME~1\PROPRI~1\Bureau\dossiers echanblard\Pinnacle Studio 9 Plus Keygen Unlocker Keys Plugins Adorage Heroglyph Prodad Hfx Tutti Gli Effetti Sbloccati.rar C:\DOCUME~1\PROPRI~1\Bureau\dossiers echanblard\Pinnacle_Studio_Plus,_RTFx_Mega_Effects_Plugin_v9.3_0_serial_keygen.zip C:\DOCUME~1\PROPRI~1\Bureau\dossiers echanblard\proDAD Heroglyph v2.5.22\2 - Cracks C:\DOCUME~1\PROPRI~1\Bureau\dossiers echanblard\proDAD Heroglyph v2.5.22\2 - Cracks\Crack Infos.txt C:\DOCUME~1\PROPRI~1\Bureau\dossiers echanblard\proDAD Heroglyph v2.5.22\2 - Cracks\licence.mtkey C:\DOCUME~1\PROPRI~1\Mes documents\PINNACLE\SXPLUS2809_DISC1\CRACK C:\DOCUME~1\PROPRI~1\Mes documents\PINNACLE\SXPLUS2809_DISC1\CRACK\KEYGEN.EXE C:\DOCUME~1\PROPRI~1\Mes documents\PINNACLE\SXPLUS2809_DISC1\CRACK\README.TXT [F:754][D:5]-> C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp [F:9][D:0]-> C:\DOCUME~1\PROPRI~1\Cookies [F:81][D:4]-> C:\DOCUME~1\PROPRI~1\LOCALS~1\TEMPOR~1\content.IE5 1 - "C:\Lop SD\LopR_1.txt" - 09/11/2008|16:48 - Option : [1] 2 - "C:\Lop SD\LopR_2.txt" - 09/11/2008|17:34 - Option : [2] --------------------\\ Fin du rapport a 17:34:37
- le 10 novembre 2008
- 19 réponses
pc lent besoin aide rapport hijackthis svp[résolu]

alex89000 a répondu à un(e) sujet de alex89000 dans Analyses et éradication malwares

--------------------\\ Lop S&D 4.2.4-9c XP/Vista Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2 X86-based PC ( Uniprocessor Free : Intel® Pentium® 4 CPU 2.80GHz ) BIOS : Phoenix - AwardBIOS v6.00PG USER : Propriétaire ( Administrator ) BOOT : Normal boot Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Not Activated) A:\ (USB) C:\ (Local Disk) - NTFS - Total:111 Go (Free:30 Go) D:\ (Local Disk) - FAT32 - Total:3 Go (Free:0 Go) E:\ (CD or DVD) F:\ (CD or DVD) G:\ (CD or DVD) H:\ (CD or DVD) "C:\Lop SD" ( MAJ : 01-11-2008|16:30 ) Option : [1] ( 09/11/2008|16:41 ) --------------------\\ Listing des dossiers dans APPLIC~1 [04/03/2008|19:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe [07/05/2008|08:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple [07/05/2008|08:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer [28/12/2007|17:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira [16/12/2007|10:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AVS4YOU [20/10/2008|19:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Bluetooth [15/12/2007|16:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink [13/10/2006|18:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google [27/12/2007|22:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft [27/04/2008|13:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\IM [27/04/2008|13:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\IncrediMail [13/01/2007|13:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InterVideo [23/10/2006|16:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech [08/12/2006|11:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision [09/11/2008|12:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes [04/04/2008|06:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft [01/01/2004|11:43] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Motive [03/01/2008|19:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\OutilsWW [30/12/2006|17:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Pinnacle [01/01/2004|09:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI [30/12/2006|20:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software [14/10/2008|08:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy [02/08/2008|12:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec [09/10/2006|17:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage [31/03/2008|17:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller [01/01/2004|08:55] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities [01/01/2004|09:54] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft [01/01/2004|11:52] C:\DOCUME~1\DEFAUL~1\APPLIC~1\SampleView [01/01/2004|11:14] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sonic [01/01/2004|09:58] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Sun [01/01/2004|08:08] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec [15/08/2008|13:54] C:\DOCUME~1\LOCALS~1\APPLIC~1\Adobe [15/08/2008|13:52] C:\DOCUME~1\LOCALS~1\APPLIC~1\Macromedia [04/04/2008|06:26] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft [30/12/2006|16:46] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft [04/03/2008|19:07] C:\DOCUME~1\PROPRI~1\APPLIC~1\Adobe [12/09/2007|12:47] C:\DOCUME~1\PROPRI~1\APPLIC~1\AdobeUM [07/05/2008|08:39] C:\DOCUME~1\PROPRI~1\APPLIC~1\Apple Computer [03/07/2007|12:26] C:\DOCUME~1\PROPRI~1\APPLIC~1\Arcsoft [24/01/2007|08:28] C:\DOCUME~1\PROPRI~1\APPLIC~1\BitDownload [20/01/2008|17:59] C:\DOCUME~1\PROPRI~1\APPLIC~1\DAEMON Tools [12/02/2008|13:15] C:\DOCUME~1\PROPRI~1\APPLIC~1\Google [07/10/2006|14:27] C:\DOCUME~1\PROPRI~1\APPLIC~1\Help [06/10/2006|15:45] C:\DOCUME~1\PROPRI~1\APPLIC~1\Identities [14/11/2006|17:03] C:\DOCUME~1\PROPRI~1\APPLIC~1\InterVideo [13/05/2007|12:51] C:\DOCUME~1\PROPRI~1\APPLIC~1\iShell [29/03/2007|08:24] C:\DOCUME~1\PROPRI~1\APPLIC~1\Lavasoft [07/10/2006|12:14] C:\DOCUME~1\PROPRI~1\APPLIC~1\Leadertech [28/12/2007|17:35] C:\DOCUME~1\PROPRI~1\APPLIC~1\Live-Prod [04/01/2007|09:56] C:\DOCUME~1\PROPRI~1\APPLIC~1\Macromedia [09/11/2008|12:17] C:\DOCUME~1\PROPRI~1\APPLIC~1\Malwarebytes [08/06/2008|22:35] C:\DOCUME~1\PROPRI~1\APPLIC~1\Microsoft [07/10/2006|12:00] C:\DOCUME~1\PROPRI~1\APPLIC~1\Microsoft Web Folders [21/05/2007|17:51] C:\DOCUME~1\PROPRI~1\APPLIC~1\Motive [29/07/2008|17:40] C:\DOCUME~1\PROPRI~1\APPLIC~1\Mozilla [24/08/2008|19:05] C:\DOCUME~1\PROPRI~1\APPLIC~1\MSN Pictures Displayer [07/11/2006|10:45] C:\DOCUME~1\PROPRI~1\APPLIC~1\Photoways [23/03/2007|08:47] C:\DOCUME~1\PROPRI~1\APPLIC~1\Pixum [01/06/2008|07:35] C:\DOCUME~1\PROPRI~1\APPLIC~1\Podmailing [03/07/2007|11:45] C:\DOCUME~1\PROPRI~1\APPLIC~1\Real [01/01/2004|11:52] C:\DOCUME~1\PROPRI~1\APPLIC~1\SampleView [08/10/2006|18:58] C:\DOCUME~1\PROPRI~1\APPLIC~1\Snapfish [30/12/2006|20:27] C:\DOCUME~1\PROPRI~1\APPLIC~1\Software [07/10/2006|12:15] C:\DOCUME~1\PROPRI~1\APPLIC~1\Sonic [27/03/2007|17:31] C:\DOCUME~1\PROPRI~1\APPLIC~1\spam iso [01/01/2004|09:58] C:\DOCUME~1\PROPRI~1\APPLIC~1\Sun [01/01/2004|08:08] C:\DOCUME~1\PROPRI~1\APPLIC~1\Symantec [29/12/2007|13:37] C:\DOCUME~1\PROPRI~1\APPLIC~1\Talkback [29/07/2008|17:40] C:\DOCUME~1\PROPRI~1\APPLIC~1\TomTom [20/10/2008|06:15] C:\DOCUME~1\PROPRI~1\APPLIC~1\uTorrent [22/02/2008|21:25] C:\DOCUME~1\PROPRI~1\APPLIC~1\vlc [08/12/2006|14:36] C:\DOCUME~1\PROPRI~1\APPLIC~1\Vso --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks [08/11/2008 10:05][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job [09/11/2008 16:00][--ah-----] C:\WINDOWS\tasks\815B765C9FE8E450.job [21/09/2003 09:45][-rah-c---] C:\WINDOWS\tasks\desktop.ini [09/11/2008 10:24][--ah-----] C:\WINDOWS\tasks\SA.DAT ( 815B765C9FE8E450.job )=( c:\docume~1\propri~1\applic~1\spamis~1\Sizemeowmanager.exe ) --------------------\\ Listing des dossiers dans C:\Program Files [31/07/2008|17:10] C:\Program Files\Adobe [04/01/2008|09:11] C:\Program Files\Alcohol Soft [15/12/2006|12:54] C:\Program Files\Alwil Software [11/09/2008|12:21] C:\Program Files\Apple Software Update [18/12/2006|13:20] C:\Program Files\AvantGo Connect [28/12/2007|17:59] C:\Program Files\Avira [05/11/2008|11:46] C:\Program Files\AviSynth 2.5 [16/12/2007|10:37] C:\Program Files\AVS4YOU [08/10/2006|13:13] C:\Program Files\Bayo [11/09/2008|12:25] C:\Program Files\Bonjour [28/12/2007|17:53] C:\Program Files\CCleaner [07/01/2007|12:53] C:\Program Files\Codemasters [18/12/2006|13:20] C:\Program Files\Common Files [01/01/2004|08:52] C:\Program Files\ComPlus Applications [13/12/2007|18:56] C:\Program Files\CounterPath [20/01/2008|17:59] C:\Program Files\DAEMON Tools Lite [30/12/2006|15:48] C:\Program Files\DaemonTools_WhenUSave_Installer [23/10/2006|17:34] C:\Program Files\directx [19/08/2007|20:35] C:\Program Files\DivX [25/09/2007|21:52] C:\Program Files\Dnote Software [15/12/2007|14:07] C:\Program Files\DVD Shrink [29/03/2007|08:26] C:\Program Files\Easy Internet signup [02/08/2008|09:32] C:\Program Files\eChanblard [28/06/2007|08:00] C:\Program Files\Fastlab Print Service [05/11/2008|11:36] C:\Program Files\Fichiers communs [04/03/2008|18:24] C:\Program Files\Free Audio Pack [07/01/2007|13:03] C:\Program Files\GameSpy Arcade [20/02/2008|20:04] C:\Program Files\Geonaute KeyMaze 300 [18/08/2008|13:15] C:\Program Files\Google [27/03/2007|17:03] C:\Program Files\Grisoft [01/01/2004|10:49] C:\Program Files\HP [07/08/2008|22:52] C:\Program Files\IncrediMail [11/08/2008|15:53] C:\Program Files\InstallShield Installation Information [17/10/2008|02:17] C:\Program Files\Internet Explorer [29/03/2007|08:29] C:\Program Files\InterVideo [03/10/2008|14:18] C:\Program Files\IVT Corporation [28/08/2007|13:03] C:\Program Files\Java [07/01/2007|13:20] C:\Program Files\JoWooD [26/05/2008|11:49] C:\Program Files\Lexmark 1400 Series [28/12/2007|17:35] C:\Program Files\LiveKillCleanMessenger [05/11/2008|11:36] C:\Program Files\Logitech [18/05/2007|13:03] C:\Program Files\Lunchbreak Adventures [09/11/2008|11:54] C:\Program Files\Lx_cats [09/11/2008|12:16] C:\Program Files\Malwarebytes' Anti-Malware [22/10/2008|09:23] C:\Program Files\Messenger [22/07/2008|12:56] C:\Program Files\Microsoft ActiveSync [02/04/2008|02:05] C:\Program Files\Microsoft CAPICOM 2.1.0.2 [07/10/2006|11:59] C:\Program Files\microsoft frontpage [26/03/2008|18:02] C:\Program Files\Microsoft Office [30/12/2006|16:42] C:\Program Files\Microsoft SQL Server [26/03/2008|18:02] C:\Program Files\Microsoft Visual Studio [09/06/2008|23:52] C:\Program Files\Microsoft Works [26/03/2008|18:00] C:\Program Files\Microsoft.NET [15/08/2008|16:40] C:\Program Files\Mindscape [26/03/2007|07:40] C:\Program Files\monAlbumPhoto [10/12/2006|10:04] C:\Program Files\Monte Cristo [22/10/2008|09:17] C:\Program Files\Movie Maker [09/11/2008|10:29] C:\Program Files\Mozilla Firefox [15/04/2007|08:11] C:\Program Files\MP3 Player Utilities 3.67 [01/01/2004|08:51] C:\Program Files\MSN [01/01/2004|08:51] C:\Program Files\MSN Gaming Zone [31/03/2008|17:35] C:\Program Files\MSN Messenger [22/10/2008|09:40] C:\Program Files\MSN Pictures Displayer [17/11/2006|08:14] C:\Program Files\MSXML 4.0 [22/10/2008|09:17] C:\Program Files\NetMeeting [03/01/2008|19:52] C:\Program Files\OutilsWW [22/10/2008|09:17] C:\Program Files\Outlook Express [04/08/2008|20:34] C:\Program Files\Packard Bell [04/08/2008|21:11] C:\Program Files\Packard Bell Data Secure [15/07/2007|08:49] C:\Program Files\Palm [07/03/2007|12:59] C:\Program Files\PCFriendly [04/01/2008|21:46] C:\Program Files\PhotoCite Collection [08/12/2006|14:37] C:\Program Files\PhotoFiltre Studio [28/06/2007|08:01] C:\Program Files\PhotoMix [28/06/2007|07:57] C:\Program Files\Pinnacle [26/03/2007|07:40] C:\Program Files\PIXACO livrephoto [26/03/2007|07:40] C:\Program Files\Pixum AG [18/12/2006|15:57] C:\Program Files\POI-Warner MN4 Edition [02/10/2007|12:01] C:\Program Files\POI-Warner MN5 Edition [01/01/2004|11:43] C:\Program Files\Presario PC Help [28/05/2007|21:24] C:\Program Files\proDAD [11/09/2008|12:23] C:\Program Files\QuickTime [03/07/2007|11:43] C:\Program Files\Real [01/01/2004|11:14] C:\Program Files\RecordNow! [16/12/2007|20:23] C:\Program Files\Ripp-it_AM [13/05/2008|16:57] C:\Program Files\Safari [01/01/2004|11:49] C:\Program Files\Services en ligne [13/12/2007|18:59] C:\Program Files\SJphone 1.65 [04/01/2008|09:18] C:\Program Files\SlySoft [01/01/2004|11:14] C:\Program Files\Sonic [24/01/2007|08:28] C:\Program Files\spam iso [07/11/2008|10:17] C:\Program Files\Spybot - Search & Destroy [20/02/2008|12:26] C:\Program Files\StuffPlug3 [02/08/2008|12:30] C:\Program Files\Symantec [09/11/2008|10:39] C:\Program Files\trend micro [01/01/2004|11:02] C:\Program Files\Uninstall Information [15/04/2007|08:13] C:\Program Files\USBDisk [02/08/2008|09:27] C:\Program Files\uTorrent [22/02/2008|21:04] C:\Program Files\VideoLAN [17/04/2008|20:09] C:\Program Files\Weight Watchers [16/10/2008|20:41] C:\Program Files\Weight Watchers FlexiPoints [31/03/2008|17:34] C:\Program Files\Windows Live [30/10/2008|22:05] C:\Program Files\Windows Live Safety Center [17/04/2008|20:09] C:\Program Files\Windows Media Connect 2 [22/10/2008|09:17] C:\Program Files\Windows Media Player [22/10/2008|09:17] C:\Program Files\Windows NT [06/10/2006|14:24] C:\Program Files\WindowsUpdate [05/11/2008|11:03] C:\Program Files\WinRAR [03/10/2007|12:56] C:\Program Files\WinZip [01/01/2004|08:56] C:\Program Files\xerox [06/11/2006|17:44] C:\Program Files\Xvid [26/03/2007|07:40] C:\Program Files\Yahoo! [25/01/2008|20:42] C:\Program Files\Zero G Registry --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs [04/03/2008|19:14] C:\Program Files\Fichiers communs\Adobe [11/09/2008|12:23] C:\Program Files\Fichiers communs\Apple [16/12/2007|10:37] C:\Program Files\Fichiers communs\AVSMedia [26/03/2008|18:02] C:\Program Files\Fichiers communs\DESIGNER [01/01/2004|10:32] C:\Program Files\Fichiers communs\Hewlett-Packard [01/01/2004|10:33] C:\Program Files\Fichiers communs\HP [23/10/2006|16:24] C:\Program Files\Fichiers communs\InstallShield [12/01/2007|11:23] C:\Program Files\Fichiers communs\InterVideo [01/01/2004|09:57] C:\Program Files\Fichiers communs\Java [23/10/2006|16:24] C:\Program Files\Fichiers communs\Logitech [22/07/2008|12:55] C:\Program Files\Fichiers communs\Microsoft Shared [01/01/2004|08:53] C:\Program Files\Fichiers communs\MSSoap [01/01/2004|08:48] C:\Program Files\Fichiers communs\ODBC [03/01/2008|19:52] C:\Program Files\Fichiers communs\PC SOFT [03/07/2007|11:42] C:\Program Files\Fichiers communs\Real [06/10/2006|23:00] C:\Program Files\Fichiers communs\Services [01/01/2004|11:14] C:\Program Files\Fichiers communs\Sonic [01/01/2004|08:48] C:\Program Files\Fichiers communs\SpeechEngines [01/01/2004|11:14] C:\Program Files\Fichiers communs\SureThing Shared [02/08/2008|12:33] C:\Program Files\Fichiers communs\Symantec Shared [22/10/2008|09:17] C:\Program Files\Fichiers communs\System [30/12/2007|10:53] C:\Program Files\Fichiers communs\Vbox [31/03/2008|17:31] C:\Program Files\Fichiers communs\WindowsLiveInstaller [13/12/2007|18:56] C:\Program Files\Fichiers communs\Wise Installation Wizard [03/07/2007|11:42] C:\Program Files\Fichiers communs\xing shared --------------------\\ Process ( 48 Processes ) ... OK ! --------------------\\ Recherche avec S_Lop C:\DOCUME~1\PROPRI~1\APPLIC~1\SPAMIS~1 --------------------\\ Recherche de Fichiers / Dossiers Lop C:\DOCUME~1\PROPRI~1\APPLIC~1\spamis~1 C:\Program Files\spamis~1 C:\DOCUME~1\PROPRI~1\APPLIC~1\Bitdownload C:\DOCUME~1\PROPRI~1\APPLIC~1\BitDownload C:\DOCUME~1\PROPRI~1\APPLIC~1\BitDownload\Data C:\WINDOWS\Tasks\815B765C9FE8E450.job --------------------\\ Verification du Registre [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\knob keep browse] "DisplayName"="CiD Help" "UninstallString"="C:\\DOCUME~1\\PROPRI~1\\APPLIC~1\\SPAMIS~1\\Burnantifile.exe -uninstall" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] --------------------\\ Verification du fichier Hosts Fichier Hosts MODIFIE 127.0.0.1 bin.errorprotector.com ## added by CiD 127.0.0.1 br.errorsafe.com ## added by CiD 127.0.0.1 br.winantivirus.com ## added by CiD 127.0.0.1 br.winfixer.com ## added by CiD 127.0.0.1 cdn.drivecleaner.com ## added by CiD 127.0.0.1 cdn.errorsafe.com ## added by CiD 127.0.0.1 cdn.winsoftware.com ## added by CiD 127.0.0.1 de.errorsafe.com ## added by CiD 127.0.0.1 de.winantivirus.com ## added by CiD 127.0.0.1 download.cdn.drivecleaner.com ## added by CiD 127.0.0.1 download.cdn.errorsafe.com ## added by CiD 127.0.0.1 download.cdn.winsoftware.com ## added by CiD 127.0.0.1 download.errorsafe.com ## added by CiD 127.0.0.1 download.systemdoctor.com ## added by CiD 127.0.0.1 download.winantispyware.com ## added by CiD 127.0.0.1 download.windrivecleaner.com ## added by CiD 127.0.0.1 download.winfixer.com ## added by CiD 127.0.0.1 drivecleaner.com ## added by CiD 127.0.0.1 dynamique.drivecleaner.com ## added by CiD 127.0.0.1 errorprotector.com ## added by CiD 127.0.0.1 errorsafe.com ## added by CiD 127.0.0.1 es.winantivirus.com ## added by CiD 127.0.0.1 fr.winantivirus.com ## added by CiD 127.0.0.1 fr.winfixer.com ## added by CiD 127.0.0.1 go.drivecleaner.com ## added by CiD 127.0.0.1 go.errorsafe.com ## added by CiD 127.0.0.1 go.winantispyware.com ## added by CiD 127.0.0.1 go.winantivirus.com ## added by CiD 127.0.0.1 hk.winantivirus.com ## added by CiD 127.0.0.1 instlog.errorsafe.com ## added by CiD 127.0.0.1 instlog.winantivirus.com ## added by CiD 127.0.0.1 instlog.winfixer.com ## added by CiD 127.0.0.1 jsp.drivecleaner.com ## added by CiD 127.0.0.1 kb.errorsafe.com ## added by CiD 127.0.0.1 kb.winantivirus.com ## added by CiD 127.0.0.1 nl.errorsafe.com ## added by CiD 127.0.0.1 se.errorsafe.com ## added by CiD 127.0.0.1 secure.drivecleaner.com ## added by CiD 127.0.0.1 secure.errorsafe.com ## added by CiD 127.0.0.1 secure.winantispam.com ## added by CiD 127.0.0.1 secure.winantispy.com ## added by CiD 127.0.0.1 secure.winantivirus.com ## added by CiD 127.0.0.1 support.winantivirus.com ## added by CiD 127.0.0.1 trial.updates.winsoftware.com ## added by CiD 127.0.0.1 ulog.winantivirus.com ## added by CiD 127.0.0.1 utils.errorsafe.com ## added by CiD 127.0.0.1 utils.winantivirus.com ## added by CiD 127.0.0.1 utils.winfixer.com ## added by CiD 127.0.0.1 winantispyware.com ## added by CiD 127.0.0.1 winantivirus.com ## added by CiD 127.0.0.1 winfixer.com ## added by CiD 127.0.0.1 winfixer2006.com ## added by CiD 127.0.0.1 winsoftware.com ## added by CiD 127.0.0.1 www.drivecleaner.com ## added by CiD 127.0.0.1 www.errorprotector.com ## added by CiD 127.0.0.1 www.errorsafe.com ## added by CiD 127.0.0.1 www.systemdoctor.com ## added by CiD 127.0.0.1 www.utils.winfixer.com ## added by CiD 127.0.0.1 www.win-anti-virus-pro.com ## added by CiD 127.0.0.1 www.win-virus-pro.com ## added by CiD 127.0.0.1 www.winantispam.com ## added by CiD 127.0.0.1 www.winantispy.com ## added by CiD 127.0.0.1 www.winantispyware.com ## added by CiD 127.0.0.1 www.winantivirus.com ## added by CiD 127.0.0.1 www.winantiviruspro.com ## added by CiD 127.0.0.1 www.windrivecleaner.com ## added by CiD 127.0.0.1 www.windrivesafe.com ## added by CiD 127.0.0.1 www.winfixer.com ## added by CiD 127.0.0.1 www.winfixer2006.com ## added by CiD 127.0.0.1 www.winsoftware.com ## added by CiD -> 8982 [ 70 ## added by CiD ] --------------------\\ Recherche de fichiers avec Catchme catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-11-09 16:43:09 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden files ... C:\DOCUME~1\PROPRI~1\LOCALS~1\APPLIC~1\Mozilla\Firefox\Profiles\g64f06gt.default\Cache\138F096Ad01 scan completed successfully hidden processes: 0 hidden files: 1788 --------------------\\ Recherche d'autres infections C:\WINDOWS\system32\sttss.ini C:\WINDOWS\system32\sttss.ini2 ==> VUNDO <== --------------------\\ Cracks & Keygens .. C:\DOCUME~1\PROPRI~1\Bureau\dossiers echanblard\Animation Shop 3.05 + crack + patch FR.rar C:\DOCUME~1\PROPRI~1\Bureau\dossiers echanblard\InterVideo WinProducer DVD Pro v3.0.1 incl. KeyGen.zip C:\DOCUME~1\PROPRI~1\Bureau\dossiers echanblard\Intervideo.WinProducer.3.x.keygen.exe C:\DOCUME~1\PROPRI~1\Bureau\dossiers echanblard\Pinnacle Studio 9 Plus Keygen Unlocker Keys Plugins Adorage Heroglyph Prodad Hfx Tutti Gli Effetti Sbloccati.rar C:\DOCUME~1\PROPRI~1\Bureau\dossiers echanblard\Pinnacle_Studio_Plus,_RTFx_Mega_Effects_Plugin_v9.3_0_serial_keygen.zip C:\DOCUME~1\PROPRI~1\Bureau\dossiers echanblard\proDAD Heroglyph v2.5.22\2 - Cracks C:\DOCUME~1\PROPRI~1\Bureau\dossiers echanblard\proDAD Heroglyph v2.5.22\2 - Cracks\Crack Infos.txt C:\DOCUME~1\PROPRI~1\Bureau\dossiers echanblard\proDAD Heroglyph v2.5.22\2 - Cracks\licence.mtkey C:\DOCUME~1\PROPRI~1\Mes documents\PINNACLE\SXPLUS2809_DISC1\CRACK C:\DOCUME~1\PROPRI~1\Mes documents\PINNACLE\SXPLUS2809_DISC1\CRACK\KEYGEN.EXE C:\DOCUME~1\PROPRI~1\Mes documents\PINNACLE\SXPLUS2809_DISC1\CRACK\README.TXT [F:750][D:5]-> C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp [F:8][D:0]-> C:\DOCUME~1\PROPRI~1\Cookies [F:78][D:4]-> C:\DOCUME~1\PROPRI~1\LOCALS~1\TEMPOR~1\content.IE5 1 - "C:\Lop SD\LopR_1.txt" - 09/11/2008|16:48 - Option : [1] --------------------\\ Fin du rapport a 16:48:10 merci
- le 9 novembre 2008
- 19 réponses
pc lent besoin aide rapport hijackthis svp[résolu]

alex89000 a répondu à un(e) sujet de alex89000 dans Analyses et éradication malwares

Malwarebytes' Anti-Malware 1.30 Version de la base de données: 1375 Windows 5.1.2600 Service Pack 2 09/11/2008 12:49:24 mbam-log-2008-11-09 (12-49-24).txt Type de recherche: Examen rapide Eléments examinés: 55540 Temps écoulé: 25 minute(s), 40 second(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 3 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 2 Fichier(s) infecté(s): 2 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{d5792aa9-d373-4039-8670-2cdab6a71f15} (Trojan.Lop) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\WakeNet (Trojan.Adware) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\FCOVM (Trojan.Vundo) -> Quarantined and deleted successfully. Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): C:\Program Files\BitDownload (Trojan.Lop) -> Quarantined and deleted successfully. C:\Program Files\BitDownload\ZM (Trojan.Lop) -> Quarantined and deleted successfully. Fichier(s) infecté(s): C:\Program Files\BitDownload\BitDownload.TRC (Trojan.Lop) -> Quarantined and deleted successfully. C:\WINDOWS\system32\mcrh.tmp (Malware.Trace) -> Quarantined and deleted successfully. merci pour l'aide !!!!!!!!!!!!!!!
- le 9 novembre 2008
- 19 réponses
pc lent besoin aide rapport hijackthis svp[résolu]

alex89000 a répondu à un(e) sujet de alex89000 dans Analyses et éradication malwares

rapport random's system information tool (RSIT) Logfile of random's system information tool 1.04 (written by random/random) Run by Propriétaire at 2008-11-09 10:38:43 Microsoft Windows XP Édition familiale Service Pack 2 System drive C: has 31 GB (27%) free of 114 GB Total RAM: 255 MB (13% free) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 10:39:13, on 09/11/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16735) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe C:\Program Files\Logitech\QuickCam10\QuickCam10.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe C:\Program Files\Lexmark 1400 Series\lxdjamon.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\MSN Pictures Displayer\MSN Pictures Displayer.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\IncrediMail\bin\IMApp.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\lxdjserv.exe C:\WINDOWS\system32\lxdjcoms.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\System32\nvsvc32.exe C:\Program Files\Packard Bell\Packard Bell Software Suite\PowerSave\HDPBSSS.exe C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\System32\svchost.exe C:\PROGRA~1\Mozilla Firefox\firefox.exe C:\Program Files\Logitech\QuickCam10\COCIManager.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\IncrediMail\bin\IncMail.exe C:\Documents and Settings\Propriétaire\Bureau\RSIT.exe C:\Program Files\trend micro\Propriétaire.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-qfr10.hpwis.com/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mystart.incredimail.com/french/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://srch-qfr10.hpwis.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local F3 - REG:win.ini: load=C:\WINDOWS\system32\sstts.exe O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O2 - BHO: (no name) - {C0D4A0E8-98EE-4A14-91A0-0E331A08FB07} - C:\WINDOWS\system32\sstts.dll (file missing) O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" O4 - HKLM\..\Run: [HPHUPD05] c:\Program Files\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [updateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe" O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe O4 - HKLM\..\Run: [uSBToolTip] "C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe" O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" /hide O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [LVCOMSX] "C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [lxdjmon.exe] "C:\Program Files\Lexmark 1400 Series\lxdjmon.exe" O4 - HKLM\..\Run: [lxdjamon] "C:\Program Files\Lexmark 1400 Series\lxdjamon.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [Acme.PCHButton] C:\PROGRA~1\PRESAR~1\Presario\XPHWWRP4\plugin\bin\pchbutton.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm .exe" O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount O4 - HKCU\..\Run: [incrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\HOMERunner.exe" O4 - HKCU\..\Run: [Packard Bell Data Secure] C:\Program Files\Packard Bell Data Secure\PBDataSecure.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - Startup: MSN Pictures Displayer.lnk = C:\Program Files\MSN Pictures Displayer\MSN Pictures Displayer.exe O8 - Extra context menu item: Add to AMV Converter... - C:\Program Files\MP3 Player Utilities 4.15\AMVConverter\grab.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.15\MediaManager\grab.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {1F83CD9E-505E-4F87-BECE-0832A763E36F} (Image Uploader 3.0 Control) - http://www.presslabo.com/importer/MypixUploader.cab O16 - DPF: {2EF3FB47-7B1E-4536-BA4D-51427BD45DFA} (PIXACO Drag and Drop upload plugin) - http://www.pixaco.fr/static/download/pixacodndupload.cab O16 - DPF: {3BFFE033-BF43-11D5-A271-00A024A51325} (iNotes6 Class) - https://messagerie.cg89.fr/iNotes6W.cab O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://www3.snapfish.fr/SnapfishActivia.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by118fd.bay118.hotmail.msn.com/resources/MsnPUpld.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.mypix.com/importer/ImageUploader4.cab O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.photoreflex.com/tools/ImageUplo...geUploader3.cab O16 - DPF: {A73BAEFA-EE65-494D-BEDB-DD3E5A34FA98} (Image Uploader) - http://www.extrafilm.fr/ImageUploader4.cab O16 - DPF: {AE2B937E-EA7D-4A8D-888C-B68D7F72A3C4} (IPSUploader4 Control) - http://as.photoprintit.de/ips-opdata/layou...PSUploader4.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O16 - DPF: {DEB21AD3-FDA4-42F6-B57D-EE696A675EE8} (IPSUploader Control) - http://as.photoprintit.de/ips-opdata/layou...IPSUploader.cab O16 - DPF: {FB90BA05-66E6-4C56-BCD3-D65B0F7EBA39} (Foto.com SpeedUploader 1.0 Control) - http://fotobook.foto.com/activex/SpeedUploader.cab O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\Logitech\SrvLnch\SrvLnch.exe O23 - Service: lxdjCATSCustConnectService - Lexmark International, Inc. - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxdjserv.exe O23 - Service: lxdj_device - - C:\WINDOWS\system32\lxdjcoms.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: Packard Bell Software Suite Service 1 (Service1) - Packard Bell Services - C:\Program Files\Packard Bell\Packard Bell Software Suite\PowerSave\HDPBSSS.exe O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- End of file - 12430 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\815B765C9FE8E450.job C:\WINDOWS\tasks\AppleSoftwareUpdate.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}] Adobe PDF Reader Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] SSVHelper Class - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll [2007-07-12 501136] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - c:\program files\google\googletoolbar4.dll [2007-01-19 2436160] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}] Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll [2007-07-31 325048] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C0D4A0E8-98EE-4A14-91A0-0E331A08FB07}] C:\WINDOWS\system32\sstts.dll [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar4.dll [2007-01-19 2436160] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe [] "HPHUPD05"=c:\Program Files\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe [] "KBD"=C:\HP\KBD\KBD.EXE [] "UpdateManager"=C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe /r [] "Recguard"=C:\WINDOWS\SMINST\RECGUARD.EXE [] "NvCplDaemon"=C:\WINDOWS\System32\NvCpl.dll [2003-12-05 3022848] "nwiz"=nwiz.exe /installquiet /keeploaded /nodetect [] "AlcxMonitor"=C:\WINDOWS\ALCXMNTR.EXE [2003-04-03 50176] "LogitechCommunicationsManager"=C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe [2006-06-26 497200] "LogitechVideoRepair"=C:\Program Files\Logitech\Video\ISStart.exe [] "LogitechVideoTray"=C:\Program Files\Logitech\Video\LogiTray.exe [] "USBToolTip"=C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe [] "LogitechQuickCamRibbon"=C:\Program Files\Logitech\QuickCam10\QuickCam10.exe [2006-06-26 614960] "TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe -osboot [] "avgnt"=C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-07-20 266497] "LVCOMSX"=C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe [2006-06-26 243248] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792] "lxdjmon.exe"=C:\Program Files\Lexmark 1400 Series\lxdjmon.exe [] "lxdjamon"=C:\Program Files\Lexmark 1400 Series\lxdjamon.exe [2007-03-05 20480] "QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2008-09-06 413696] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2004-08-20 15360] "swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [] "Acme.PCHButton"=C:\PROGRA~1\PRESAR~1\Presario\XPHWWRP4\plugin\bin\pchbutton.exe [] "MsnMsgr"=C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2007-10-18 5724184] "H/PC Connection Agent"=C:\Program Files\Microsoft ActiveSync\wcescomm .exe [] "eyeBeam SIP Client"= [] "AlcoholAutomount"=C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe [2007-12-22 222080] "IncrediMail"=C:\Program Files\IncrediMail\bin\IncMail.exe [2008-07-24 243072] "TomTomHOME.exe"=C:\Program Files\TomTom HOME 2\HOMERunner.exe [] "Packard Bell Data Secure"=C:\Program Files\Packard Bell Data Secure\PBDataSecure.exe [2006-08-01 2363904] C:\Documents and Settings\Propriétaire\Menu Démarrer\Programmes\Démarrage MSN Pictures Displayer.lnk - C:\Program Files\MSN Pictures Displayer\MSN Pictures Displayer.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\WINDOWS\system32\igfxsrvc.dll [2003-11-18 323584] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"=C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll [2007-12-27 79408] "{3B556978-10EB-4F71-A61E-A736354D1269}"= [] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa] "authentication packages"=msv1_0 C:\WINDOWS\system32\sstts "notification packages"= scecli [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Driver] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Guard] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AVG Anti-Spyware Driver] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AVG Anti-Spyware Guard] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"="C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe:*:Enabled:Kaspersky Anti-Virus" "C:\WINDOWS\system32\mcoinstall.exe"="C:\WINDOWS\system32\mcoinstall.exe:*:Enabled:mcoinstall" "C:\Program Files\Photoways\Photo2Design\Photo2Design.exe"="C:\Program Files\Photoways\Photo2Design\Photo2Design.exe:*:Enabled:Photo2Design" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:*:Enabled:ActiveSync Application" "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:*:Enabled:ActiveSync Connection Manager" "C:\Program Files\Pinnacle\Studio 10\programs\RM.exe"="C:\Program Files\Pinnacle\Studio 10\programs\RM.exe:*:Enabled:Render Manager" "C:\Program Files\Pinnacle\Studio 10\programs\Studio.exe"="C:\Program Files\Pinnacle\Studio 10\programs\Studio.exe:*:Enabled:Studio" "C:\Program Files\Pinnacle\Studio 10\programs\PMSRegisterFile.exe"="C:\Program Files\Pinnacle\Studio 10\programs\PMSRegisterFile.exe:*:Enabled:PMSRegisterFile" "C:\Program Files\Pinnacle\Studio 10\programs\umi.exe"="C:\Program Files\Pinnacle\Studio 10\programs\umi.exe:*:Enabled:umi" "C:\Program Files\BitDownload\BitDownload.exe"="C:\Program Files\BitDownload\BitDownload.exe:*:Enabled:Torrent P2P application" "C:\Program Files\Palm\HOTSYNC.EXE"="C:\Program Files\Palm\HOTSYNC.EXE:*:Enabled:HotSync® Manager Application" "C:\Program Files\Microsoft Office\Office\EXCEL.EXE"="C:\Program Files\Microsoft Office\Office\EXCEL.EXE:*:Enabled:Microsoft Excel for Windows" "C:\Program Files\Pando Networks\Pando\pando.exe"="C:\Program Files\Pando Networks\Pando\pando.exe:*:Disabled:pando" "C:\WINDOWS\system32\rtcshare.exe"="C:\WINDOWS\system32\rtcshare.exe:*:Enabled:Partage de l'application RTC" "C:\Program Files\NetMeeting\conf.exe"="C:\Program Files\NetMeeting\conf.exe:*:Enabled:Windows® NetMeeting®" "C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager" "C:\Program Files\SJphone 1.65\SJphone.exe"="C:\Program Files\SJphone 1.65\SJphone.exe:*:Enabled:SJphone 1.65" "C:\Program Files\CounterPath\X-Lite\x-lite.exe"="C:\Program Files\CounterPath\X-Lite\x-lite.exe:*:Enabled:X-Lite" "C:\Program Files\MSN Messenger\msnmsgr .exe"="C:\Program Files\MSN Messenger\msnmsgr .exe:*:Enabled:Messenger" "C:\Program Files\CounterPath\X-Lite\x-lite .exe"="C:\Program Files\CounterPath\X-Lite\x-lite .exe:*:Enabled:X-Lite" "C:\WINDOWS\system32\anxwvlcf.exe"="C:\WINDOWS\system32\anx" "C:\Program Files\VideoLAN\VLC\vlc.exe"="C:\Program Files\VideoLAN\VLC\vlc.exe:*:Enabled:VLC media player" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)" "C:\WINDOWS\system32\lxdjcoms.exe"="C:\WINDOWS\system32\lxdjcoms.exe:*:Enabled:Lexmark Communications System" "C:\Program Files\Lexmark 1400 Series\lxdjamon.exe"="C:\Program Files\Lexmark 1400 Series\lxdjamon.exe:*:Enabled:Lexmark Device Monitor" "C:\Program Files\Lexmark 1400 Series\App4R.exe"="C:\Program Files\Lexmark 1400 Series\App4R.exe:*:Enabled:Lexmark Imaging Studio" "C:\Program Files\Podmailing\podmailing.exe"="C:\Program Files\Podmailing\podmailing.exe:*:Enabled:Podmailing Beta" "C:\Program Files\Real\RealOne Player\realplay.exe"="C:\Program Files\Real\RealOne Player\realplay.exe:*:Enabled:RealOne Player" "C:\Program Files\eChanblard\emule.exe"="C:\Program Files\eChanblard\emule.exe:*:Enabled:eMule" "C:\Program Files\IncrediMail\bin\IncMail.exe"="C:\Program Files\IncrediMail\bin\IncMail.exe:*:Enabled:IncrediMail" "C:\Program Files\IncrediMail\bin\ImApp.exe"="C:\Program Files\IncrediMail\bin\ImApp.exe:*:Enabled:IncrediMail" "C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent" "C:\Documents and Settings\Propriétaire\Bureau\utorrent.exe"="C:\Documents and Settings\Propriétaire\Bureau\utorrent.exe:*:Enabled:µTorrent" "C:\Program Files\IncrediMail\bin\ImpCnt.exe"="C:\Program Files\IncrediMail\bin\ImpCnt.exe:*:Enabled:IncrediMail" "C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour" "C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe"="C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe:*:Enabled:BlueSoleil" "C:\Documents and Settings\Propriétaire\Local Settings\Temp\ImInstaller\FreeSkin_Installer.exe"="C:\Documents and Settings\Propriétaire\Local Settings\Temp\ImInstaller\FreeSkin_Installer.exe:*:Enabled:IncrediMail Installer" "C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger" "C:\WINDOWS\system32\spool\drivers\w32x86\3\lxdjwbgw.exe"="C:\WINDOWS\system32\spool\drivers\w32x86\3\lxdjwbgw.exe:*:Enabled: " "C:\WINDOWS\system32\spool\drivers\w32x86\3\lxdjpswx.exe"="C:\WINDOWS\system32\spool\drivers\w32x86\3\lxdjpswx.exe:*:Enabled: " "C:\WINDOWS\system32\spool\drivers\w32x86\3\lxdjjswx.exe"="C:\WINDOWS\system32\spool\drivers\w32x86\3\lxdjjswx.exe:*:Enabled: " "C:\WINDOWS\system32\spool\drivers\w32x86\3\lxdjtime.exe"="C:\WINDOWS\system32\spool\drivers\w32x86\3\lxdjtime.exe:*:Enabled: " [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program Files\Microsoft ActiveSync\rapimgr.exe"="C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager" "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager" "C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"="C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application" "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)" "C:\Program Files\Lexmark 1400 Series\app4r.exe"="C:\Program Files\Lexmark 1400 Series\app4r.exe:*:Enabled:Lexmark Imaging Studio" [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\D] shell\AutoRun\command - D:\Info.exe folder.htt 480 480 [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{6cdb7e39-86ab-11db-aa02-000c76faf7a7}] shell\AutoRun\command - I:\ReadMe.exe [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{858a7db0-969d-11dc-ab08-000c76faf7a7}] shell\AutoRun\command - I:\ClickMe.exe [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{cf7360d3-9723-11db-aa1c-000c76faf7a7}] shell\AutoRun\command - G:\welcome.exe [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{cf7360df-9723-11db-aa1c-000c76faf7a7}] shell\AutoRun\command - welcome.exe [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{fdf15b28-ea00-11dc-ab81-000c76faf7a7}] shell\AutoRun\command - I:\ClickMe.exe ======List of files/folders created in the last 1 months====== 2008-11-09 10:38:47 ----D---- C:\Program Files\trend micro 2008-11-09 10:38:43 ----D---- C:\rsit 2008-11-09 10:24:34 ----A---- C:\WINDOWS\SchedLgU.Txt 2008-10-24 02:02:04 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$ 2008-10-22 09:40:28 ----A---- C:\WINDOWS\system32\ShellMPD.dll 2008-10-22 09:33:18 ----D---- C:\WINDOWS\Prefetch 2008-10-22 08:57:43 ----D---- C:\WINDOWS\l2schemas 2008-10-22 08:57:42 ----D---- C:\WINDOWS\system32\fr 2008-10-22 08:49:38 ----A---- C:\WINDOWS\system32\sprecovr.exe 2008-10-22 08:45:44 ----A---- C:\WINDOWS\system32\mstscax.dll 2008-10-22 08:45:44 ----A---- C:\WINDOWS\system32\mstsc.exe 2008-10-22 08:45:43 ----A---- C:\WINDOWS\system32\xpsp3res.dll 2008-10-22 08:45:43 ----A---- C:\WINDOWS\system32\xpsp2res.dll 2008-10-22 08:45:43 ----A---- C:\WINDOWS\system32\xpsp1res.dll 2008-10-22 08:45:43 ----A---- C:\WINDOWS\system32\xpob2res.dll 2008-10-22 08:45:43 ----A---- C:\WINDOWS\system32\xmllite.dll 2008-10-22 08:45:43 ----A---- C:\WINDOWS\system32\verclsid.exe 2008-10-22 08:45:43 ----A---- C:\WINDOWS\system32\tzchange.exe 2008-10-22 08:45:39 ----A---- C:\WINDOWS\system32\p2pgasvc.dll 2008-10-22 08:45:39 ----A---- C:\WINDOWS\system32\kbdukx.dll 2008-10-22 08:45:39 ----A---- C:\WINDOWS\system32\dxdiagn.dll 2008-10-22 08:45:38 ----A---- C:\WINDOWS\system32\slcoinst.dll 2008-10-22 08:45:37 ----A---- C:\WINDOWS\system32\ir41_qc.dll 2008-10-22 08:45:37 ----A---- C:\WINDOWS\system32\encdec.dll 2008-10-22 08:45:36 ----A---- C:\WINDOWS\system32\slserv.exe 2008-10-22 08:45:36 ----A---- C:\WINDOWS\system32\logman.exe 2008-10-22 08:45:36 ----A---- C:\WINDOWS\system32\dsprpres.dll 2008-10-22 08:45:35 ----A---- C:\WINDOWS\system32\pnrpnsp.dll 2008-10-22 08:45:35 ----A---- C:\WINDOWS\system32\ati2cqag.dll 2008-10-22 08:45:33 ----A---- C:\WINDOWS\system32\wscntfy.exe 2008-10-22 08:45:33 ----A---- C:\WINDOWS\system32\w3ssl.dll 2008-10-22 08:45:32 ----A---- C:\WINDOWS\system32\p2psvc.dll 2008-10-22 08:45:32 ----A---- C:\WINDOWS\system32\bitsprx2.dll 2008-10-22 08:45:31 ----A---- C:\WINDOWS\system32\kbdsmsno.dll 2008-10-22 08:45:28 ----A---- C:\WINDOWS\system32\kbdfi1.dll 2008-10-22 08:45:28 ----A---- C:\WINDOWS\system32\ati2dvaa.dll 2008-10-22 08:45:27 ----A---- C:\WINDOWS\system32\spupdwxp.exe 2008-10-22 08:45:25 ----A---- C:\WINDOWS\system32\slgen.dll 2008-10-22 08:45:25 ----A---- C:\WINDOWS\system32\ir41_qcx.dll 2008-10-22 08:45:24 ----A---- C:\WINDOWS\system32\p2pgraph.dll 2008-10-22 08:45:24 ----A---- C:\WINDOWS\system32\ir50_qcx.dll 2008-10-22 08:45:23 ----A---- C:\WINDOWS\system32\sbe.dll 2008-10-22 08:45:21 ----A---- C:\WINDOWS\system32\kbdmlt47.dll 2008-10-22 08:45:20 ----A---- C:\WINDOWS\system32\sbeio.dll 2008-10-22 08:45:16 ----A---- C:\WINDOWS\system32\wshbth.dll 2008-10-22 08:45:15 ----A---- C:\WINDOWS\system32\s3gnb.dll 2008-10-22 08:45:15 ----A---- C:\WINDOWS\system32\msdadiag.dll 2008-10-22 08:45:15 ----A---- C:\WINDOWS\system32\ir50_32.dll 2008-10-22 08:45:15 ----A---- C:\WINDOWS\system32\httpapi.dll 2008-10-22 08:45:15 ----A---- C:\WINDOWS\system32\hccoin.dll 2008-10-22 08:45:14 ----A---- C:\WINDOWS\system32\smbinst.exe 2008-10-22 08:45:14 ----A---- C:\WINDOWS\system32\fwcfg.dll 2008-10-22 08:45:14 ----A---- C:\WINDOWS\system32\ati2dvag.dll 2008-10-22 08:45:13 ----A---- C:\WINDOWS\system32\proxycfg.exe 2008-10-22 08:45:13 ----A---- C:\WINDOWS\system32\d3d9.dll 2008-10-22 08:45:12 ----A---- C:\WINDOWS\system32\mtxparhd.dll 2008-10-22 08:45:12 ----A---- C:\WINDOWS\system32\mssap.dll 2008-10-22 08:45:12 ----A---- C:\WINDOWS\system32\ati3d1ag.dll 2008-10-22 08:45:11 ----A---- C:\WINDOWS\system32\twext.dll 2008-10-22 08:45:11 ----A---- C:\WINDOWS\system32\p2pnetsh.dll 2008-10-22 08:45:11 ----A---- C:\WINDOWS\system32\kbdinmal.dll 2008-10-22 08:45:10 ----A---- C:\WINDOWS\system32\xmlprovi.dll 2008-10-22 08:45:10 ----A---- C:\WINDOWS\system32\xmlprov.dll 2008-10-22 08:45:10 ----A---- C:\WINDOWS\system32\winbrand.dll 2008-10-22 08:45:10 ----A---- C:\WINDOWS\system32\spnpinst.exe 2008-10-22 08:45:10 ----A---- C:\WINDOWS\system32\kbdinbe1.dll 2008-10-22 08:45:08 ----A---- C:\WINDOWS\system32\cmsetacl.dll 2008-10-22 08:45:04 ----A---- C:\WINDOWS\system32\fsquirt.exe 2008-10-22 08:45:04 ----A---- C:\WINDOWS\system32\btpanui.dll 2008-10-22 08:45:03 ----A---- C:\WINDOWS\system32\slextspk.dll 2008-10-22 08:45:02 ----A---- C:\WINDOWS\system32\powercfg.exe 2008-10-22 08:45:02 ----A---- C:\WINDOWS\system32\bthci.dll 2008-10-22 08:45:02 ----A---- C:\WINDOWS\system32\ati3duag.dll 2008-10-22 08:45:01 ----A---- C:\WINDOWS\system32\winhttp.dll 2008-10-22 08:45:01 ----A---- C:\WINDOWS\system32\kbdsmsfi.dll 2008-10-22 08:45:01 ----A---- C:\WINDOWS\system32\bthserv.dll 2008-10-22 08:45:01 ----A---- C:\WINDOWS\system32\bitsprx3.dll 2008-10-22 08:45:00 ----A---- C:\WINDOWS\system32\winshfhc.dll 2008-10-22 08:44:59 ----A---- C:\WINDOWS\system32\faxpatch.exe 2008-10-22 08:44:58 ----A---- C:\WINDOWS\system32\wscsvc.dll 2008-10-22 08:44:58 ----A---- C:\WINDOWS\system32\kbdmlt48.dll 2008-10-22 08:44:58 ----A---- C:\WINDOWS\system32\encapi.dll 2008-10-22 08:44:57 ----A---- C:\WINDOWS\system32\p2p.dll 2008-10-22 08:44:57 ----A---- C:\WINDOWS\system32\kbdno1.dll 2008-10-22 08:44:57 ----A---- C:\WINDOWS\system32\ir50_qc.dll 2008-10-22 08:44:57 ----A---- C:\WINDOWS\system32\auditusr.exe 2008-10-22 08:44:57 ----A---- C:\WINDOWS\system32\ativtmxx.dll 2008-10-22 08:44:56 ----A---- C:\WINDOWS\system32\hsfcisp2.dll 2008-10-22 08:44:56 ----A---- C:\WINDOWS\system32\blastcln.exe 2008-10-22 08:44:56 ----A---- C:\WINDOWS\system32\ativvaxx.dll 2008-10-22 08:44:55 ----A---- C:\WINDOWS\system32\strmfilt.dll 2008-10-22 08:44:53 ----A---- C:\WINDOWS\system32\wuauserv.dll 2008-10-22 08:44:53 ----A---- C:\WINDOWS\system32\kbdmaori.dll 2008-10-22 08:44:53 ----A---- C:\WINDOWS\system32\kbdinben.dll 2008-10-22 08:44:51 ----A---- C:\WINDOWS\system32\sdhcinst.dll 2008-10-22 08:44:50 ----A---- C:\WINDOWS\system32\qmgr.dll 2008-10-22 08:44:49 ----A---- C:\WINDOWS\system32\pidgen.dll 2008-10-22 08:44:49 ----A---- C:\WINDOWS\system32\dpcdll.dll 2008-10-22 08:44:47 ----A---- C:\WINDOWS\system32\msftedit.dll 2008-10-22 08:44:47 ----A---- C:\WINDOWS\system32\fltlib.dll 2008-10-22 08:44:46 ----A---- C:\WINDOWS\system32\slrundll.exe 2008-10-22 08:44:46 ----A---- C:\WINDOWS\system32\ieencode.dll 2008-10-22 08:44:46 ----A---- C:\WINDOWS\slrundll.exe 2008-10-22 08:44:44 ----A---- C:\WINDOWS\system32\fltmc.exe 2008-10-22 08:44:14 ----A---- C:\WINDOWS\winhlp32.exe 2008-10-22 08:44:14 ----A---- C:\WINDOWS\twain_32.dll 2008-10-22 08:44:14 ----A---- C:\WINDOWS\regedit.exe 2008-10-22 08:44:14 ----A---- C:\WINDOWS\hh.exe 2008-10-22 08:44:14 ----A---- C:\WINDOWS\explorer.exe 2008-10-22 08:44:12 ----A---- C:\WINDOWS\system32\aclui.dll 2008-10-22 08:44:12 ----A---- C:\WINDOWS\system32\accwiz.exe 2008-10-22 08:44:12 ----A---- C:\WINDOWS\system32\6to4svc.dll 2008-10-22 08:44:11 ----A---- C:\WINDOWS\system32\asycfilt.dll 2008-10-22 08:44:11 ----A---- C:\WINDOWS\system32\apphelp.dll 2008-10-22 08:44:11 ----A---- C:\WINDOWS\system32\amstream.dll 2008-10-22 08:44:11 ----A---- C:\WINDOWS\system32\alrsvc.dll 2008-10-22 08:44:11 ----A---- C:\WINDOWS\system32\alg.exe 2008-10-22 08:44:11 ----A---- C:\WINDOWS\system32\ahui.exe 2008-10-22 08:44:11 ----A---- C:\WINDOWS\system32\adsnt.dll 2008-10-22 08:44:11 ----A---- C:\WINDOWS\system32\adsmsext.dll 2008-10-22 08:44:11 ----A---- C:\WINDOWS\system32\adsldpc.dll 2008-10-22 08:44:11 ----A---- C:\WINDOWS\system32\adsldp.dll 2008-10-22 08:44:11 ----A---- C:\WINDOWS\system32\actxprxy.dll 2008-10-22 08:44:11 ----A---- C:\WINDOWS\system32\actmovie.exe 2008-10-22 08:44:11 ----A---- C:\WINDOWS\system32\activeds.dll 2008-10-22 08:44:10 ----A---- C:\WINDOWS\system32\bidispl.dll 2008-10-22 08:44:10 ----A---- C:\WINDOWS\system32\batt.dll 2008-10-22 08:44:10 ----A---- C:\WINDOWS\system32\batmeter.dll 2008-10-22 08:44:10 ----A---- C:\WINDOWS\system32\basesrv.dll 2008-10-22 08:44:10 ----A---- C:\WINDOWS\system32\avifil32.dll 2008-10-22 08:44:10 ----A---- C:\WINDOWS\system32\autolfn.exe 2008-10-22 08:44:10 ----A---- C:\WINDOWS\system32\autofmt.exe 2008-10-22 08:44:10 ----A---- C:\WINDOWS\system32\authz.dll 2008-10-22 08:44:10 ----A---- C:\WINDOWS\system32\audiosrv.dll 2008-10-22 08:44:10 ----A---- C:\WINDOWS\system32\attrib.exe 2008-10-22 08:44:10 ----A---- C:\WINDOWS\system32\atmlib.dll 2008-10-22 08:44:10 ----A---- C:\WINDOWS\system32\atmfd.dll 2008-10-22 08:44:10 ----A---- C:\WINDOWS\system32\atmadm.exe 2008-10-22 08:44:10 ----A---- C:\WINDOWS\system32\atl.dll 2008-10-22 08:44:10 ----A---- C:\WINDOWS\system32\at.exe 2008-10-22 08:44:09 ----A---- C:\WINDOWS\system32\cdosys.dll 2008-10-22 08:44:09 ----A---- C:\WINDOWS\system32\cdfview.dll 2008-10-22 08:44:09 ----A---- C:\WINDOWS\system32\catsrvut.dll 2008-10-22 08:44:09 ----A---- C:\WINDOWS\system32\catsrvps.dll 2008-10-22 08:44:09 ----A---- C:\WINDOWS\system32\catsrv.dll 2008-10-22 08:44:09 ----A---- C:\WINDOWS\system32\capesnpn.dll 2008-10-22 08:44:09 ----A---- C:\WINDOWS\system32\camocx.dll 2008-10-22 08:44:09 ----A---- C:\WINDOWS\system32\cabview.dll 2008-10-22 08:44:09 ----A---- C:\WINDOWS\system32\cabinet.dll 2008-10-22 08:44:09 ----A---- C:\WINDOWS\system32\browsewm.dll 2008-10-22 08:44:09 ----A---- C:\WINDOWS\system32\browseui.dll 2008-10-22 08:44:09 ----A---- C:\WINDOWS\system32\browser.dll 2008-10-22 08:44:09 ----A---- C:\WINDOWS\system32\browselc.dll 2008-10-22 08:44:08 ----A---- C:\WINDOWS\system32\cliconfg.exe 2008-10-22 08:44:08 ----A---- C:\WINDOWS\system32\cliconfg.dll 2008-10-22 08:44:08 ----A---- C:\WINDOWS\system32\cleanmgr.exe 2008-10-22 08:44:08 ----A---- C:\WINDOWS\system32\clbcatq.dll 2008-10-22 08:44:08 ----A---- C:\WINDOWS\system32\clbcatex.dll 2008-10-22 08:44:08 ----A---- C:\WINDOWS\system32\cisvc.exe 2008-10-22 08:44:08 ----A---- C:\WINDOWS\system32\ciodm.dll 2008-10-22 08:44:08 ----A---- C:\WINDOWS\system32\cic.dll 2008-10-22 08:44:08 ----A---- C:\WINDOWS\system32\cfgmgr32.dll 2008-10-22 08:44:08 ----A---- C:\WINDOWS\system32\cfgbkend.dll 2008-10-22 08:44:08 ----A---- C:\WINDOWS\system32\certmgr.dll 2008-10-22 08:44:08 ----A---- C:\WINDOWS\system32\certcli.dll 2008-10-22 08:44:07 ----A---- C:\WINDOWS\system32\colbact.dll 2008-10-22 08:44:07 ----A---- C:\WINDOWS\system32\cnbjmon.dll 2008-10-22 08:44:07 ----A---- C:\WINDOWS\system32\cmutil.dll 2008-10-22 08:44:07 ----A---- C:\WINDOWS\system32\cmstp.exe 2008-10-22 08:44:07 ----A---- C:\WINDOWS\system32\cmprops.dll 2008-10-22 08:44:07 ----A---- C:\WINDOWS\system32\cmmon32.exe 2008-10-22 08:44:07 ----A---- C:\WINDOWS\system32\cmdl32.exe 2008-10-22 08:44:07 ----A---- C:\WINDOWS\system32\cmdial32.dll 2008-10-22 08:44:07 ----A---- C:\WINDOWS\system32\cmcfg32.dll 2008-10-22 08:44:07 ----A---- C:\WINDOWS\system32\clusapi.dll 2008-10-22 08:44:07 ----A---- C:\WINDOWS\system32\clipsrv.exe 2008-10-22 08:44:07 ----A---- C:\WINDOWS\system32\clipbrd.exe 2008-10-22 08:44:06 ----A---- C:\WINDOWS\system32\corpol.dll 2008-10-22 08:44:06 ----A---- C:\WINDOWS\system32\conime.exe 2008-10-22 08:44:06 ----A---- C:\WINDOWS\system32\confmsp.dll 2008-10-22 08:44:06 ----A---- C:\WINDOWS\system32\comuid.dll 2008-10-22 08:44:06 ----A---- C:\WINDOWS\system32\comsvcs.dll 2008-10-22 08:44:06 ----A---- C:\WINDOWS\system32\comsnap.dll 2008-10-22 08:44:06 ----A---- C:\WINDOWS\system32\comres.dll 2008-10-22 08:44:06 ----A---- C:\WINDOWS\system32\comrepl.dll 2008-10-22 08:44:06 ----A---- C:\WINDOWS\system32\compstui.dll 2008-10-22 08:44:06 ----A---- C:\WINDOWS\system32\compatui.dll 2008-10-22 08:44:06 ----A---- C:\WINDOWS\system32\comaddin.dll 2008-10-22 08:44:05 ----A---- C:\WINDOWS\system32\cscript.exe 2008-10-22 08:44:05 ----A---- C:\WINDOWS\system32\cscdll.dll 2008-10-22 08:44:05 ----A---- C:\WINDOWS\system32\cryptui.dll 2008-10-22 08:44:05 ----A---- C:\WINDOWS\system32\cryptsvc.dll 2008-10-22 08:44:05 ----A---- C:\WINDOWS\system32\cryptnet.dll 2008-10-22 08:44:05 ----A---- C:\WINDOWS\system32\cryptext.dll 2008-10-22 08:44:05 ----A---- C:\WINDOWS\system32\cryptdll.dll 2008-10-22 08:44:05 ----A---- C:\WINDOWS\system32\cryptdlg.dll 2008-10-22 08:44:05 ----A---- C:\WINDOWS\system32\crypt32.dll 2008-10-22 08:44:05 ----A---- C:\WINDOWS\system32\credui.dll 2008-10-22 08:44:04 ----A---- C:\WINDOWS\system32\danim.dll 2008-10-22 08:44:04 ----A---- C:\WINDOWS\system32\d3dim700.dll 2008-10-22 08:44:04 ----A---- C:\WINDOWS\system32\d3d8thk.dll 2008-10-22 08:44:04 ----A---- C:\WINDOWS\system32\d3d8.dll 2008-10-22 08:44:04 ----A---- C:\WINDOWS\system32\ctfmon.exe 2008-10-22 08:44:04 ----A---- C:\WINDOWS\system32\csrss.exe 2008-10-22 08:44:04 ----A---- C:\WINDOWS\system32\cscui.dll 2008-10-22 08:44:03 ----A---- C:\WINDOWS\system32\dcomcnfg.exe 2008-10-22 08:44:03 ----A---- C:\WINDOWS\system32\dciman32.dll 2008-10-22 08:44:03 ----A---- C:\WINDOWS\system32\dbnmpntw.dll 2008-10-22 08:44:03 ----A---- C:\WINDOWS\system32\dbnetlib.dll 2008-10-22 08:44:03 ----A---- C:\WINDOWS\system32\dbmsrpcn.dll 2008-10-22 08:44:03 ----A---- C:\WINDOWS\system32\dbghelp.dll 2008-10-22 08:44:03 ----A---- C:\WINDOWS\system32\davclnt.dll 2008-10-22 08:44:03 ----A---- C:\WINDOWS\system32\datime.dll 2008-10-22 08:44:03 ----A---- C:\WINDOWS\system32\dataclen.dll 2008-10-22 08:44:02 ----A---- C:\WINDOWS\system32\dinput8.dll 2008-10-22 08:44:02 ----A---- C:\WINDOWS\system32\dinput.dll 2008-10-22 08:44:02 ----A---- C:\WINDOWS\system32\digest.dll 2008-10-22 08:44:02 ----A---- C:\WINDOWS\system32\diantz.exe 2008-10-22 08:44:02 ----A---- C:\WINDOWS\system32\dhcpmon.dll 2008-10-22 08:44:02 ----A---- C:\WINDOWS\system32\dgnet.dll 2008-10-22 08:44:02 ----A---- C:\WINDOWS\system32\dfsshlex.dll 2008-10-22 08:44:02 ----A---- C:\WINDOWS\system32\dfrgui.dll 2008-10-22 08:44:02 ----A---- C:\WINDOWS\system32\dfrgsnap.dll 2008-10-22 08:44:02 ----A---- C:\WINDOWS\system32\dfrgntfs.exe 2008-10-22 08:44:02 ----A---- C:\WINDOWS\system32\dfrgfat.exe 2008-10-22 08:44:02 ----A---- C:\WINDOWS\system32\devmgr.dll 2008-10-22 08:44:02 ----A---- C:\WINDOWS\system32\devenum.dll 2008-10-22 08:44:02 ----A---- C:\WINDOWS\system32\defrag.exe 2008-10-22 08:44:02 ----A---- C:\WINDOWS\system32\ddrawex.dll 2008-10-22 08:44:02 ----A---- C:\WINDOWS\system32\ddraw.dll 2008-10-22 08:44:02 ----A---- C:\WINDOWS\system32\ddeshare.exe 2008-10-22 08:44:01 ----A---- C:\WINDOWS\system32\dmusic.dll 2008-10-22 08:44:01 ----A---- C:\WINDOWS\system32\dmsynth.dll 2008-10-22 08:44:01 ----A---- C:\WINDOWS\system32\dmstyle.dll 2008-10-22 08:44:01 ----A---- C:\WINDOWS\system32\dmserver.dll 2008-10-22 08:44:01 ----A---- C:\WINDOWS\system32\dmscript.dll 2008-10-22 08:44:01 ----A---- C:\WINDOWS\system32\dmremote.exe 2008-10-22 08:44:01 ----A---- C:\WINDOWS\system32\dmloader.dll 2008-10-22 08:44:01 ----A---- C:\WINDOWS\system32\dmime.dll 2008-10-22 08:44:01 ----A---- C:\WINDOWS\system32\dmdskmgr.dll 2008-10-22 08:44:01 ----A---- C:\WINDOWS\system32\dmdlgs.dll 2008-10-22 08:44:01 ----A---- C:\WINDOWS\system32\dmcompos.dll 2008-10-22 08:44:01 ----A---- C:\WINDOWS\system32\dmband.dll 2008-10-22 08:44:01 ----A---- C:\WINDOWS\system32\dmadmin.exe 2008-10-22 08:44:01 ----A---- C:\WINDOWS\system32\dllhost.exe 2008-10-22 08:44:01 ----A---- C:\WINDOWS\system32\dispex.dll 2008-10-22 08:44:01 ----A---- C:\WINDOWS\system32\diskpart.exe 2008-10-22 08:44:01 ----A---- C:\WINDOWS\system32\diskcopy.dll 2008-10-22 08:44:00 ----A---- C:\WINDOWS\system32\dpvsetup.exe 2008-10-22 08:44:00 ----A---- C:\WINDOWS\system32\dpvoice.dll 2008-10-22 08:44:00 ----A---- C:\WINDOWS\system32\dpvacm.dll 2008-10-22 08:44:00 ----A---- C:\WINDOWS\system32\dpnsvr.exe 2008-10-22 08:44:00 ----A---- C:\WINDOWS\system32\dpnlobby.dll 2008-10-22 08:44:00 ----A---- C:\WINDOWS\system32\dpnhupnp.dll 2008-10-22 08:44:00 ----A---- C:\WINDOWS\system32\dpnhpast.dll 2008-10-22 08:44:00 ----A---- C:\WINDOWS\system32\dpnet.dll 2008-10-22 08:44:00 ----A---- C:\WINDOWS\system32\dpnaddr.dll 2008-10-22 08:44:00 ----A---- C:\WINDOWS\system32\dpmodemx.dll 2008-10-22 08:44:00 ----A---- C:\WINDOWS\system32\dplayx.dll 2008-10-22 08:44:00 ----A---- C:\WINDOWS\system32\dplaysvr.exe 2008-10-22 08:44:00 ----A---- C:\WINDOWS\system32\docprop2.dll 2008-10-22 08:44:00 ----A---- C:\WINDOWS\system32\dnsrslvr.dll 2008-10-22 08:44:00 ----A---- C:\WINDOWS\system32\dnsapi.dll 2008-10-22 08:44:00 ----A---- C:\WINDOWS\system32\dmutil.dll 2008-10-22 08:43:59 ----A---- C:\WINDOWS\system32\dsquery.dll 2008-10-22 08:43:59 ----A---- C:\WINDOWS\system32\dsprop.dll 2008-10-22 08:43:59 ----A---- C:\WINDOWS\system32\dsound3d.dll 2008-10-22 08:43:59 ----A---- C:\WINDOWS\system32\dsound.dll 2008-10-22 08:43:59 ----A---- C:\WINDOWS\system32\dskquoui.dll 2008-10-22 08:43:59 ----A---- C:\WINDOWS\system32\dskquota.dll 2008-10-22 08:43:59 ----A---- C:\WINDOWS\system32\dsdmoprp.dll 2008-10-22 08:43:59 ----A---- C:\WINDOWS\system32\dsdmo.dll 2008-10-22 08:43:59 ----A---- C:\WINDOWS\system32\ds32gt.dll 2008-10-22 08:43:59 ----A---- C:\WINDOWS\system32\drprov.dll 2008-10-22 08:43:59 ----A---- C:\WINDOWS\system32\dpwsockx.dll 2008-10-22 08:43:59 ----A---- C:\WINDOWS\system32\dpvvox.dll 2008-10-22 08:43:58 ----A---- C:\WINDOWS\system32\dx7vb.dll 2008-10-22 08:43:58 ----A---- C:\WINDOWS\system32\dwwin.exe 2008-10-22 08:43:58 ----A---- C:\WINDOWS\system32\dvdupgrd.exe 2008-10-22 08:43:58 ----A---- C:\WINDOWS\system32\duser.dll 2008-10-22 08:43:58 ----A---- C:\WINDOWS\system32\dumprep.exe 2008-10-22 08:43:58 ----A---- C:\WINDOWS\system32\dswave.dll 2008-10-22 08:43:58 ----A---- C:\WINDOWS\system32\dsuiext.dll 2008-10-22 08:43:58 ----A---- C:\WINDOWS\system32\dssenh.dll 2008-10-22 08:43:58 ----A---- C:\WINDOWS\system32\dssec.dll 2008-10-22 08:43:57 ----A---- C:\WINDOWS\system32\expsrv.dll 2008-10-22 08:43:57 ----A---- C:\WINDOWS\system32\eventlog.dll 2008-10-22 08:43:57 ----A---- C:\WINDOWS\system32\eudcedit.exe 2008-10-22 08:43:57 ----A---- C:\WINDOWS\system32\esent.dll 2008-10-22 08:43:57 ----A---- C:\WINDOWS\system32\es.dll 2008-10-22 08:43:57 ----A---- C:\WINDOWS\system32\ersvc.dll 2008-10-22 08:43:57 ----A---- C:\WINDOWS\system32\els.dll 2008-10-22 08:43:57 ----A---- C:\WINDOWS\system32\dxmasf.dll 2008-10-22 08:43:57 ----A---- C:\WINDOWS\system32\dxdiag.exe 2008-10-22 08:43:57 ----A---- C:\WINDOWS\system32\dx8vb.dll 2008-10-22 08:43:56 ----A---- C:\WINDOWS\system32\fxsapi.dll 2008-10-22 08:43:56 ----A---- C:\WINDOWS\system32\framebuf.dll 2008-10-22 08:43:56 ----A---- C:\WINDOWS\system32\forcedos.exe 2008-10-22 08:43:56 ----A---- C:\WINDOWS\system32\fontview.exe 2008-10-22 08:43:56 ----A---- C:\WINDOWS\system32\fontsub.dll 2008-10-22 08:43:56 ----A---- C:\WINDOWS\system32\fontext.dll 2008-10-22 08:43:56 ----A---- C:\WINDOWS\system32\fldrclnr.dll 2008-10-22 08:43:56 ----A---- C:\WINDOWS\system32\findstr.exe 2008-10-22 08:43:56 ----A---- C:\WINDOWS\system32\filemgmt.dll 2008-10-22 08:43:56 ----A---- C:\WINDOWS\system32\feclient.dll 2008-10-22 08:43:56 ----A---- C:\WINDOWS\system32\faultrep.dll 2008-10-22 08:43:56 ----A---- C:\WINDOWS\system32\exts.dll 2008-10-22 08:43:56 ----A---- C:\WINDOWS\system32\extrac32.exe 2008-10-22 08:43:55 ----A---- C:\WINDOWS\system32\fxstiff.dll 2008-10-22 08:43:55 ----A---- C:\WINDOWS\system32\fxst30.dll 2008-10-22 08:43:55 ----A---- C:\WINDOWS\system32\fxssvc.exe 2008-10-22 08:43:55 ----A---- C:\WINDOWS\system32\fxsst.dll 2008-10-22 08:43:55 ----A---- C:\WINDOWS\system32\fxsres.dll 2008-10-22 08:43:55 ----A---- C:\WINDOWS\system32\fxsperf.dll 2008-10-22 08:43:55 ----A---- C:\WINDOWS\system32\fxsmon.dll 2008-10-22 08:43:55 ----A---- C:\WINDOWS\system32\fxsext32.dll 2008-10-22 08:43:55 ----A---- C:\WINDOWS\system32\fxsevent.dll 2008-10-22 08:43:55 ----A---- C:\WINDOWS\system32\fxsdrv.dll 2008-10-22 08:43:55 ----A---- C:\WINDOWS\system32\fxscover.exe 2008-10-22 08:43:55 ----A---- C:\WINDOWS\system32\fxscomex.dll 2008-10-22 08:43:55 ----A---- C:\WINDOWS\system32\fxscom.dll 2008-10-22 08:43:55 ----A---- C:\WINDOWS\system32\fxsclnt.exe 2008-10-22 08:43:54 ----A---- C:\WINDOWS\system32\help.exe 2008-10-22 08:43:54 ----A---- C:\WINDOWS\system32\h323msp.dll 2008-10-22 08:43:54 ----A---- C:\WINDOWS\system32\grpconv.exe 2008-10-22 08:43:54 ----A---- C:\WINDOWS\system32\gpkrsrc.dll 2008-10-22 08:43:54 ----A---- C:\WINDOWS\system32\glu32.dll 2008-10-22 08:43:54 ----A---- C:\WINDOWS\system32\gdi32.dll 2008-10-22 08:43:54 ----A---- C:\WINDOWS\system32\fxsxp32.dll 2008-10-22 08:43:54 ----A---- C:\WINDOWS\system32\fxswzrd.dll 2008-10-22 08:43:54 ----A---- C:\WINDOWS\system32\fxsui.dll 2008-10-22 08:43:53 ----A---- C:\WINDOWS\system32\icm32.dll 2008-10-22 08:43:53 ----A---- C:\WINDOWS\system32\iccvid.dll 2008-10-22 08:43:53 ----A---- C:\WINDOWS\system32\icaapi.dll 2008-10-22 08:43:53 ----A---- C:\WINDOWS\system32\iasrad.dll 2008-10-22 08:43:53 ----A---- C:\WINDOWS\system32\hypertrm.dll 2008-10-22 08:43:53 ----A---- C:\WINDOWS\system32\htui.dll 2008-10-22 08:43:53 ----A---- C:\WINDOWS\system32\hotplug.dll 2008-10-22 08:43:53 ----A---- C:\WINDOWS\system32\hnetwiz.dll 2008-10-22 08:43:53 ----A---- C:\WINDOWS\system32\hnetcfg.dll 2008-10-22 08:43:53 ----A---- C:\WINDOWS\system32\hlink.dll 2008-10-22 08:43:53 ----A---- C:\WINDOWS\system32\hid.dll 2008-10-22 08:43:53 ----A---- C:\WINDOWS\system32\hhsetup.dll 2008-10-22 08:43:52 ----A---- C:\WINDOWS\system32\inetcomm.dll 2008-10-22 08:43:52 ----A---- C:\WINDOWS\system32\inetcfg.dll 2008-10-22 08:43:52 ----A---- C:\WINDOWS\system32\imm32.dll 2008-10-22 08:43:52 ----A---- C:\WINDOWS\system32\imeshare.dll 2008-10-22 08:43:52 ----A---- C:\WINDOWS\system32\imapi.exe 2008-10-22 08:43:52 ----A---- C:\WINDOWS\system32\ils.dll 2008-10-22 08:43:52 ----A---- C:\WINDOWS\system32\igmpagnt.dll 2008-10-22 08:43:52 ----A---- C:\WINDOWS\system32\ifmon.dll 2008-10-22 08:43:52 ----A---- C:\WINDOWS\system32\iexpress.exe 2008-10-22 08:43:52 ----A---- C:\WINDOWS\system32\idq.dll 2008-10-22 08:43:52 ----A---- C:\WINDOWS\system32\icwphbk.dll 2008-10-22 08:43:52 ----A---- C:\WINDOWS\system32\icwdial.dll 2008-10-22 08:43:52 ----A---- C:\WINDOWS\system32\icmp.dll 2008-10-22 08:43:51 ----A---- C:\WINDOWS\system32\iprtrmgr.dll 2008-10-22 08:43:51 ----A---- C:\WINDOWS\system32\ippromon.dll 2008-10-22 08:43:51 ----A---- C:\WINDOWS\system32\ipnathlp.dll 2008-10-22 08:43:51 ----A---- C:\WINDOWS\system32\ipmontr.dll 2008-10-22 08:43:51 ----A---- C:\WINDOWS\system32\iphlpapi.dll 2008-10-22 08:43:51 ----A---- C:\WINDOWS\system32\ipconfig.exe 2008-10-22 08:43:51 ----A---- C:\WINDOWS\system32\input.dll 2008-10-22 08:43:51 ----A---- C:\WINDOWS\system32\initpki.dll 2008-10-22 08:43:51 ----A---- C:\WINDOWS\system32\inetres.dll 2008-10-22 08:43:51 ----A---- C:\WINDOWS\system32\inetppui.dll 2008-10-22 08:43:51 ----A---- C:\WINDOWS\system32\inetpp.dll 2008-10-22 08:43:51 ----A---- C:\WINDOWS\system32\inetmib1.dll 2008-10-22 08:43:50 ----A---- C:\WINDOWS\system32\iyuv_32.dll 2008-10-22 08:43:50 ----A---- C:\WINDOWS\system32\ixsso.dll 2008-10-22 08:43:50 ----A---- C:\WINDOWS\system32\itss.dll 2008-10-22 08:43:50 ----A---- C:\WINDOWS\system32\itircl.dll 2008-10-22 08:43:50 ----A---- C:\WINDOWS\system32\isrdbg32.dll 2008-10-22 08:43:50 ----A---- C:\WINDOWS\system32\isign32.dll 2008-10-22 08:43:50 ----A---- C:\WINDOWS\system32\ipxwan.dll 2008-10-22 08:43:50 ----A---- C:\WINDOWS\system32\ipxroute.exe 2008-10-22 08:43:50 ----A---- C:\WINDOWS\system32\ipv6mon.dll 2008-10-22 08:43:50 ----A---- C:\WINDOWS\system32\ipv6.exe 2008-10-22 08:43:50 ----A---- C:\WINDOWS\system32\ipsmsnap.dll 2008-10-22 08:43:50 ----A---- C:\WINDOWS\system32\ipsecsvc.dll 2008-10-22 08:43:50 ----A---- C:\WINDOWS\system32\ipsecsnp.dll 2008-10-22 08:43:49 ----A---- C:\WINDOWS\system32\ksuser.dll 2008-10-22 08:43:49 ----A---- C:\WINDOWS\system32\keymgr.dll 2008-10-22 08:43:49 ----A---- C:\WINDOWS\system32\kerberos.dll 2008-10-22 08:43:49 ----A---- C:\WINDOWS\system32\kd1394.dll 2008-10-22 08:43:49 ----A---- C:\WINDOWS\system32\kbdnec.dll 2008-10-22 08:43:49 ----A---- C:\WINDOWS\system32\jscript.dll 2008-10-22 08:43:49 ----A---- C:\WINDOWS\system32\jgpl400.dll 2008-10-22 08:43:49 ----A---- C:\WINDOWS\system32\jgdw400.dll 2008-10-22 08:43:48 ----A---- C:\WINDOWS\system32\lpk.dll 2008-10-22 08:43:48 ----A---- C:\WINDOWS\system32\logonui.exe 2008-10-22 08:43:48 ----A---- C:\WINDOWS\system32\localui.dll 2008-10-22 08:43:48 ----A---- C:\WINDOWS\system32\localsec.dll 2008-10-22 08:43:48 ----A---- C:\WINDOWS\system32\loadperf.dll 2008-10-22 08:43:48 ----A---- C:\WINDOWS\system32\lmrt.dll 2008-10-22 08:43:48 ----A---- C:\WINDOWS\system32\linkinfo.dll 2008-10-22 08:43:48 ----A---- C:\WINDOWS\system32\licwmi.dll 2008-10-22 08:43:48 ----A---- C:\WINDOWS\system32\licdll.dll 2008-10-22 08:43:47 ----A---- C:\WINDOWS\system32\mfc40u.dll 2008-10-22 08:43:47 ----A---- C:\WINDOWS\system32\mf3216.dll 2008-10-22 08:43:47 ----A---- C:\WINDOWS\system32\mdminst.dll 2008-10-22 08:43:47 ----A---- C:\WINDOWS\system32\mciwave.dll 2008-10-22 08:43:47 ----A---- C:\WINDOWS\system32\mciseq.dll 2008-10-22 08:43:47 ----A---- C:\WINDOWS\system32\mciqtz32.dll 2008-10-22 08:43:47 ----A---- C:\WINDOWS\system32\mciavi32.dll 2008-10-22 08:43:47 ----A---- C:\WINDOWS\system32\mcastmib.dll 2008-10-22 08:43:47 ----A---- C:\WINDOWS\system32\makecab.exe 2008-10-22 08:43:47 ----A---- C:\WINDOWS\system32\magnify.exe 2008-10-22 08:43:47 ----A---- C:\WINDOWS\system32\lsass.exe 2008-10-22 08:43:47 ----A---- C:\WINDOWS\system32\lprhelp.dll 2008-10-22 08:43:46 ----A---- C:\WINDOWS\system32\mmfutil.dll 2008-10-22 08:43:46 ----A---- C:\WINDOWS\system32\mmcshext.dll 2008-10-22 08:43:46 ----A---- C:\WINDOWS\system32\mmcndmgr.dll 2008-10-22 08:43:46 ----A---- C:\WINDOWS\system32\mmcbase.dll 2008-10-22 08:43:46 ----A---- C:\WINDOWS\system32\mmc.exe 2008-10-22 08:43:46 ----A---- C:\WINDOWS\system32\mlang.dll 2008-10-22 08:43:46 ----A---- C:\WINDOWS\system32\mimefilt.dll 2008-10-22 08:43:46 ----A---- C:\WINDOWS\system32\miglibnt.dll 2008-10-22 08:43:46 ----A---- C:\WINDOWS\system32\midimap.dll 2008-10-22 08:43:46 ----A---- C:\WINDOWS\system32\mfcsubs.dll 2008-10-22 08:43:46 ----A---- C:\WINDOWS\system32\mfc42.dll 2008-10-22 08:43:45 ----A---- C:\WINDOWS\system32\msacm32.dll 2008-10-22 08:43:45 ----A---- C:\WINDOWS\system32\mprdim.dll 2008-10-22 08:43:45 ----A---- C:\WINDOWS\system32\mprapi.dll 2008-10-22 08:43:45 ----A---- C:\WINDOWS\system32\mpr.dll 2008-10-22 08:43:45 ----A---- C:\WINDOWS\system32\mplay32.exe 2008-10-22 08:43:45 ----A---- C:\WINDOWS\system32\moricons.dll 2008-10-22 08:43:45 ----A---- C:\WINDOWS\system32\more.com 2008-10-22 08:43:45 ----A---- C:\WINDOWS\system32\modemui.dll 2008-10-22 08:43:45 ----A---- C:\WINDOWS\system32\mobsync.exe 2008-10-22 08:43:45 ----A---- C:\WINDOWS\system32\mobsync.dll 2008-10-22 08:43:45 ----A---- C:\WINDOWS\system32\mnmsrvc.exe 2008-10-22 08:43:45 ----A---- C:\WINDOWS\system32\mnmdd.dll 2008-10-22 08:43:44 ----A---- C:\WINDOWS\system32\msdtclog.dll 2008-10-22 08:43:44 ----A---- C:\WINDOWS\system32\msdtc.exe 2008-10-22 08:43:44 ----A---- C:\WINDOWS\system32\msdmo.dll 2008-10-22 08:43:44 ----A---- C:\WINDOWS\system32\msdart.dll 2008-10-22 08:43:44 ----A---- C:\WINDOWS\system32\msctfp.dll 2008-10-22 08:43:44 ----A---- C:\WINDOWS\system32\msctf.dll 2008-10-22 08:43:44 ----A---- C:\WINDOWS\system32\mscpxl32.dll 2008-10-22 08:43:44 ----A---- C:\WINDOWS\system32\mscpx32r.dll 2008-10-22 08:43:44 ----A---- C:\WINDOWS\system32\msconf.dll 2008-10-22 08:43:44 ----A---- C:\WINDOWS\system32\mscms.dll 2008-10-22 08:43:44 ----A---- C:\WINDOWS\system32\msasn1.dll 2008-10-22 08:43:44 ----A---- C:\WINDOWS\system32\msapsspc.dll 2008-10-22 08:43:44 ----A---- C:\WINDOWS\system32\msafd.dll 2008-10-22 08:43:43 ----A---- C:\WINDOWS\system32\msdtcuiu.dll 2008-10-22 08:43:43 ----A---- C:\WINDOWS\system32\msdtctm.dll 2008-10-22 08:43:43 ----A---- C:\WINDOWS\system32\msdtcprx.dll 2008-10-22 08:43:42 ----A---- C:\WINDOWS\system32\msieftp.dll 2008-10-22 08:43:42 ----A---- C:\WINDOWS\system32\msidle.dll 2008-10-22 08:43:42 ----A---- C:\WINDOWS\system32\msident.dll 2008-10-22 08:43:42 ----A---- C:\WINDOWS\system32\msi.dll 2008-10-22 08:43:42 ----A---- C:\WINDOWS\system32\msgina.dll 2008-10-22 08:43:42 ----A---- C:\WINDOWS\system32\msdxmlc.dll 2008-10-22 08:43:41 ----A---- C:\WINDOWS\system32\mspaint.exe 2008-10-22 08:43:41 ----A---- C:\WINDOWS\system32\msorcl32.dll 2008-10-22 08:43:41 ----A---- C:\WINDOWS\system32\msorc32r.dll 2008-10-22 08:43:41 ----A---- C:\WINDOWS\system32\msoert2.dll 2008-10-22 08:43:41 ----A---- C:\WINDOWS\system32\msoeacct.dll 2008-10-22 08:43:41 ----A---- C:\WINDOWS\system32\msnsspc.dll 2008-10-22 08:43:41 ----A---- C:\WINDOWS\system32\mslbui.dll 2008-10-22 08:43:41 ----A---- C:\WINDOWS\system32\msisip.dll 2008-10-22 08:43:41 ----A---- C:\WINDOWS\system32\msimtf.dll 2008-10-22 08:43:41 ----A---- C:\WINDOWS\system32\msimsg.dll 2008-10-22 08:43:41 ----A---- C:\WINDOWS\system32\msimg32.dll 2008-10-22 08:43:41 ----A---- C:\WINDOWS\system32\msihnd.dll 2008-10-22 08:43:41 ----A---- C:\WINDOWS\system32\msiexec.exe 2008-10-22 08:43:40 ----A---- C:\WINDOWS\system32\msvbvm60.dll 2008-10-22 08:43:40 ----A---- C:\WINDOWS\system32\msutb.dll 2008-10-22 08:43:40 ----A---- C:\WINDOWS\system32\mstlsapi.dll 2008-10-22 08:43:40 ----A---- C:\WINDOWS\system32\mstinit.exe 2008-10-22 08:43:40 ----A---- C:\WINDOWS\system32\mstask.dll 2008-10-22 08:43:40 ----A---- C:\WINDOWS\system32\msrle32.dll 2008-10-22 08:43:40 ----A---- C:\WINDOWS\system32\msprivs.dll 2008-10-22 08:43:40 ----A---- C:\WINDOWS\system32\mspatcha.dll 2008-10-22 08:43:39 ----A---- C:\WINDOWS\system32\msxml.dll 2008-10-22 08:43:39 ----A---- C:\WINDOWS\system32\mswsock.dll 2008-10-22 08:43:39 ----A---- C:\WINDOWS\system32\mswebdvd.dll 2008-10-22 08:43:39 ----A---- C:\WINDOWS\system32\msw3prt.dll 2008-10-22 08:43:39 ----A---- C:\WINDOWS\system32\msvidctl.dll 2008-10-22 08:43:39 ----A---- C:\WINDOWS\system32\msvfw32.dll 2008-10-22 08:43:39 ----A---- C:\WINDOWS\system32\msvcrt40.dll 2008-10-22 08:43:39 ----A---- C:\WINDOWS\system32\msvcrt.dll 2008-10-22 08:43:39 ----A---- C:\WINDOWS\system32\msvcp60.dll 2008-10-22 08:43:39 ----A---- C:\WINDOWS\system32\msvcirt.dll 2008-10-22 08:43:38 ----A---- C:\WINDOWS\system32\nddenb32.dll 2008-10-22 08:43:38 ----A---- C:\WINDOWS\system32\nddeapir.exe 2008-10-22 08:43:38 ----A---- C:\WINDOWS\system32\nddeapi.dll 2008-10-22 08:43:38 ----A---- C:\WINDOWS\system32\ncobjapi.dll 2008-10-22 08:43:38 ----A---- C:\WINDOWS\system32\narrator.exe 2008-10-22 08:43:38 ----A---- C:\WINDOWS\system32\mydocs.dll 2008-10-22 08:43:38 ----A---- C:\WINDOWS\system32\mtxoci.dll 2008-10-22 08:43:38 ----A---- C:\WINDOWS\system32\mtxlegih.dll 2008-10-22 08:43:38 ----A---- C:\WINDOWS\system32\mtxex.dll 2008-10-22 08:43:38 ----A---- C:\WINDOWS\system32\mtxdm.dll 2008-10-22 08:43:38 ----A---- C:\WINDOWS\system32\mtxclu.dll 2008-10-22 08:43:38 ----A---- C:\WINDOWS\system32\msyuv.dll 2008-10-22 08:43:38 ----A---- C:\WINDOWS\system32\msxml3.dll 2008-10-22 08:43:38 ----A---- C:\WINDOWS\system32\msxml2.dll 2008-10-22 08:43:37 ----A---- C:\WINDOWS\system32\netsh.exe 2008-10-22 08:43:37 ----A---- C:\WINDOWS\system32\netsetup.exe 2008-10-22 08:43:37 ----A---- C:\WINDOWS\system32\netrap.dll 2008-10-22 08:43:37 ----A---- C:\WINDOWS\system32\netplwiz.dll 2008-10-22 08:43:37 ----A---- C:\WINDOWS\system32\netman.dll 2008-10-22 08:43:37 ----A---- C:\WINDOWS\system32\netlogon.dll 2008-10-22 08:43:37 ----A---- C:\WINDOWS\system32\netid.dll 2008-10-22 08:43:37 ----A---- C:\WINDOWS\system32\netdde.exe 2008-10-22 08:43:37 ----A---- C:\WINDOWS\system32\netcfgx.dll 2008-10-22 08:43:37 ----A---- C:\WINDOWS\system32\netapi32.dll 2008-10-22 08:43:37 ----A---- C:\WINDOWS\system32\net1.exe 2008-10-22 08:43:37 ----A---- C:\WINDOWS\system32\net.exe 2008-10-22 08:43:36 ----A---- C:\WINDOWS\system32\ntmsmgr.dll 2008-10-22 08:43:36 ----A---- C:\WINDOWS\system32\ntmsdba.dll 2008-10-22 08:43:36 ----A---- C:\WINDOWS\system32\ntmsapi.dll 2008-10-22 08:43:36 ----A---- C:\WINDOWS\system32\ntmarta.dll 2008-10-22 08:43:36 ----A---- C:\WINDOWS\system32\ntlanman.dll 2008-10-22 08:43:36 ----A---- C:\WINDOWS\system32\ntdsapi.dll 2008-10-22 08:43:36 ----A---- C:\WINDOWS\system32\npptools.dll 2008-10-22 08:43:36 ----A---- C:\WINDOWS\system32\notepad.exe 2008-10-22 08:43:36 ----A---- C:\WINDOWS\system32\nmmkcert.dll 2008-10-22 08:43:36 ----A---- C:\WINDOWS\system32\nlhtml.dll 2008-10-22 08:43:36 ----A---- C:\WINDOWS\system32\newdev.dll 2008-10-22 08:43:36 ----A---- C:\WINDOWS\system32\netui1.dll 2008-10-22 08:43:36 ----A---- C:\WINDOWS\system32\netui0.dll 2008-10-22 08:43:36 ----A---- C:\WINDOWS\system32\netstat.exe 2008-10-22 08:43:36 ----A---- C:\WINDOWS\system32\netshell.dll 2008-10-22 08:43:36 ----A---- C:\WINDOWS\notepad.exe 2008-10-22 08:43:35 ----A---- C:\WINDOWS\system32\odbcint.dll 2008-10-22 08:43:35 ----A---- C:\WINDOWS\system32\odbccu32.dll 2008-10-22 08:43:35 ----A---- C:\WINDOWS\system32\odbccr32.dll 2008-10-22 08:43:35 ----A---- C:\WINDOWS\system32\odbccp32.dll 2008-10-22 08:43:35 ----A---- C:\WINDOWS\system32\odbcconf.exe 2008-10-22 08:43:35 ----A---- C:\WINDOWS\system32\odbcconf.dll 2008-10-22 08:43:35 ----A---- C:\WINDOWS\system32\odbcbcp.dll 2008-10-22 08:43:35 ----A---- C:\WINDOWS\system32\odbcad32.exe 2008-10-22 08:43:35 ----A---- C:\WINDOWS\system32\odbc32gt.dll 2008-10-22 08:43:35 ----A---- C:\WINDOWS\system32\odbc32.dll 2008-10-22 08:43:35 ----A---- C:\WINDOWS\system32\ocmanage.dll 2008-10-22 08:43:35 ----A---- C:\WINDOWS\system32\objsel.dll 2008-10-22 08:43:35 ----A---- C:\WINDOWS\system32\oakley.dll 2008-10-22 08:43:35 ----A---- C:\WINDOWS\system32\ntvdmd.dll 2008-10-22 08:43:35 ----A---- C:\WINDOWS\system32\ntshrui.dll 2008-10-22 08:43:35 ----A---- C:\WINDOWS\system32\ntmssvc.dll 2008-10-22 08:43:34 ----A---- C:\WINDOWS\system32\oledlg.dll 2008-10-22 08:43:34 ----A---- C:\WINDOWS\system32\olecli32.dll 2008-10-22 08:43:34 ----A---- C:\WINDOWS\system32\ole32.dll 2008-10-22 08:43:34 ----A---- C:\WINDOWS\system32\offfilt.dll 2008-10-22 08:43:34 ----A---- C:\WINDOWS\system32\odtext32.dll 2008-10-22 08:43:34 ----A---- C:\WINDOWS\system32\odpdx32.dll 2008-10-22 08:43:34 ----A---- C:\WINDOWS\system32\odfox32.dll 2008-10-22 08:43:34 ----A---- C:\WINDOWS\system32\odexl32.dll 2008-10-22 08:43:34 ----A---- C:\WINDOWS\system32\oddbse32.dll 2008-10-22 08:43:34 ----A---- C:\WINDOWS\system32\odbctrac.dll 2008-10-22 08:43:34 ----A---- C:\WINDOWS\system32\odbcp32r.dll 2008-10-22 08:43:34 ----A---- C:\WINDOWS\system32\odbcjt32.dll 2008-10-22 08:43:34 ----A---- C:\WINDOWS\system32\odbcji32.dll 2008-10-22 08:43:33 ----A---- C:\WINDOWS\system32\ping.exe 2008-10-22 08:43:33 ----A---- C:\WINDOWS\system32\pid.dll 2008-10-22 08:43:33 ----A---- C:\WINDOWS\system32\photowiz.dll 2008-10-22 08:43:33 ----A---- C:\WINDOWS\system32\perfproc.dll 2008-10-22 08:43:33 ----A---- C:\WINDOWS\system32\perfos.dll 2008-10-22 08:43:33 ----A---- C:\WINDOWS\system32\perfnet.dll 2008-10-22 08:43:33 ----A---- C:\WINDOWS\system32\perfmon.exe 2008-10-22 08:43:33 ----A---- C:\WINDOWS\system32\perfdisk.dll 2008-10-22 08:43:33 ----A---- C:\WINDOWS\system32\pdh.dll 2008-10-22 08:43:33 ----A---- C:\WINDOWS\system32\pautoenr.dll 2008-10-22 08:43:33 ----A---- C:\WINDOWS\system32\packager.exe 2008-10-22 08:43:33 ----A---- C:\WINDOWS\system32\osuninst.dll 2008-10-22 08:43:33 ----A---- C:\WINDOWS\system32\osk.exe 2008-10-22 08:43:33 ----A---- C:\WINDOWS\system32\opengl32.dll 2008-10-22 08:43:33 ----A---- C:\WINDOWS\system32\olepro32.dll 2008-10-22 08:43:33 ----A---- C:\WINDOWS\system32\oleprn.dll 2008-10-22 08:43:32 ----A---- C:\WINDOWS\system32\pstorsvc.dll 2008-10-22 08:43:32 ----A---- C:\WINDOWS\system32\pstorec.dll 2008-10-22 08:43:32 ----A---- C:\WINDOWS\system32\psisdecd.dll 2008-10-22 08:43:32 ----A---- C:\WINDOWS\system32\psbase.dll 2008-10-22 08:43:32 ----A---- C:\WINDOWS\system32\psapi.dll 2008-10-22 08:43:32 ----A---- C:\WINDOWS\system32\proquota.exe 2008-10-22 08:43:32 ----A---- C:\WINDOWS\system32\progman.exe 2008-10-22 08:43:32 ----A---- C:\WINDOWS\system32\profmap.dll 2008-10-22 08:43:32 ----A---- C:\WINDOWS\system32\powrprof.dll 2008-10-22 08:43:32 ----A---- C:\WINDOWS\system32\polstore.dll 2008-10-22 08:43:32 ----A---- C:\WINDOWS\system32\pjlmon.dll 2008-10-22 08:43:31 ----A---- C:\WINDOWS\system32\rasppp.dll 2008-10-22 08:43:31 ----A---- C:\WINDOWS\system32\rasphone.exe 2008-10-22 08:43:31 ----A---- C:\WINDOWS\system32\rasmans.dll 2008-10-22 08:43:31 ----A---- C:\WINDOWS\system32\raschap.dll 2008-10-22 08:43:31 ----A---- C:\WINDOWS\system32\rasadhlp.dll 2008-10-22 08:43:31 ----A---- C:\WINDOWS\system32\racpldlg.dll 2008-10-22 08:43:31 ----A---- C:\WINDOWS\system32\query.dll 2008-10-22 08:43:31 ----A---- C:\WINDOWS\system32\quartz.dll 2008-10-22 08:43:31 ----A---- C:\WINDOWS\system32\qprocess.exe 2008-10-22 08:43:31 ----A---- C:\WINDOWS\system32\qmgrprxy.dll 2008-10-22 08:43:31 ----A---- C:\WINDOWS\system32\qedwipes.dll 2008-10-22 08:43:31 ----A---- C:\WINDOWS\system32\qedit.dll 2008-10-22 08:43:31 ----A---- C:\WINDOWS\system32\qdvd.dll 2008-10-22 08:43:31 ----A---- C:\WINDOWS\system32\qdv.dll 2008-10-22 08:43:31 ----A---- C:\WINDOWS\system32\qcap.dll 2008-10-22 08:43:30 ----A---- C:\WINDOWS\system32\reg.exe 2008-10-22 08:43:30 ----A---- C:\WINDOWS\system32\rdshost.exe 2008-10-22 08:43:30 ----A---- C:\WINDOWS\system32\rdsaddin.exe 2008-10-22 08:43:30 ----A---- C:\WINDOWS\system32\rdpwsx.dll 2008-10-22 08:43:30 ----A---- C:\WINDOWS\system32\rdpsnd.dll 2008-10-22 08:43:30 ----A---- C:\WINDOWS\system32\rdpdd.dll 2008-10-22 08:43:30 ----A---- C:\WINDOWS\system32\rdpclip.exe 2008-10-22 08:43:30 ----A---- C:\WINDOWS\system32\rdchost.dll 2008-10-22 08:43:30 ----A---- C:\WINDOWS\system32\rcp.exe 2008-10-22 08:43:30 ----A---- C:\WINDOWS\system32\rcimlby.exe 2008-10-22 08:43:30 ----A---- C:\WINDOWS\system32\rcbdyctl.dll 2008-10-22 08:43:30 ----A---- C:\WINDOWS\system32\rastls.dll 2008-10-22 08:43:30 ----A---- C:\WINDOWS\system32\rassapi.dll 2008-10-22 08:43:29 ----A---- C:\WINDOWS\system32\rtutils.dll 2008-10-22 08:43:29 ----A---- C:\WINDOWS\system32\rtipxmib.dll 2008-10-22 08:43:29 ----A---- C:\WINDOWS\system32\rtcshare.exe 2008-10-22 08:43:29 ----A---- C:\WINDOWS\system32\rsvpsp.dll 2008-10-22 08:43:29 ----A---- C:\WINDOWS\system32\rsmps.dll 2008-10-22 08:43:29 ----A---- C:\WINDOWS\system32\rsh.exe 2008-10-22 08:43:29 ----A---- C:\WINDOWS\system32\rsaenh.dll 2008-10-22 08:43:29 ----A---- C:\WINDOWS\system32\rpcss.dll 2008-10-22 08:43:29 ----A---- C:\WINDOWS\system32\rpcrt4.dll 2008-10-22 08:43:29 ----A---- C:\WINDOWS\system32\riched20.dll 2008-10-22 08:43:29 ----A---- C:\WINDOWS\system32\rexec.exe 2008-10-22 08:43:29 ----A---- C:\WINDOWS\system32\resutils.dll 2008-10-22 08:43:29 ----A---- C:\WINDOWS\system32\remotepg.dll 2008-10-22 08:43:29 ----A---- C:\WINDOWS\system32\regwizc.dll 2008-10-22 08:43:29 ----A---- C:\WINDOWS\system32\regsvr32.exe 2008-10-22 08:43:29 ----A---- C:\WINDOWS\system32\regsvc.dll 2008-10-22 08:43:29 ----A---- C:\WINDOWS\system32\regapi.dll 2008-10-22 08:43:28 ----A---- C:\WINDOWS\system32\security.dll 2008-10-22 08:43:28 ----A---- C:\WINDOWS\system32\secur32.dll 2008-10-22 08:43:28 ----A---- C:\WINDOWS\system32\seclogon.dll 2008-10-22 08:43:28 ----A---- C:\WINDOWS\system32\sdbinst.exe 2008-10-22 08:43:28 ----A---- C:\WINDOWS\system32\scrrun.dll 2008-10-22 08:43:28 ----A---- C:\WINDOWS\system32\scrobj.dll 2008-10-22 08:43:28 ----A---- C:\WINDOWS\system32\sclgntfy.dll 2008-10-22 08:43:28 ----A---- C:\WINDOWS\system32\schedsvc.dll 2008-10-22 08:43:28 ----A---- C:\WINDOWS\system32\scesrv.dll 2008-10-22 08:43:28 ----A---- C:\WINDOWS\system32\scecli.dll 2008-10-22 08:43:28 ----A---- C:\WINDOWS\system32\sccsccp.dll 2008-10-22 08:43:28 ----A---- C:\WINDOWS\system32\scarddlg.dll 2008-10-22 08:43:28 ----A---- C:\WINDOWS\system32\safrslv.dll 2008-10-22 08:43:28 ----A---- C:\WINDOWS\system32\safrdm.dll 2008-10-22 08:43:28 ----A---- C:\WINDOWS\system32\safrcdlg.dll 2008-10-22 08:43:28 ----A---- C:\WINDOWS\system32\runonce.exe 2008-10-22 08:43:28 ----A---- C:\WINDOWS\system32\rundll32.exe 2008-10-22 08:43:27 ----A---- C:\WINDOWS\system32\shdoclc.dll 2008-10-22 08:43:27 ----A---- C:\WINDOWS\system32\sfcfiles.dll 2008-10-22 08:43:27 ----A---- C:\WINDOWS\system32\sfc_os.dll 2008-10-22 08:43:27 ----A---- C:\WINDOWS\system32\sfc.dll 2008-10-22 08:43:27 ----A---- C:\WINDOWS\system32\setup.exe 2008-10-22 08:43:27 ----A---- C:\WINDOWS\system32\sethc.exe 2008-10-22 08:43:27 ----A---- C:\WINDOWS\system32\servdeps.dll 2008-10-22 08:43:27 ----A---- C:\WINDOWS\system32\sensapi.dll 2008-10-22 08:43:27 ----A---- C:\WINDOWS\system32\sens.dll 2008-10-22 08:43:27 ----A---- C:\WINDOWS\system32\sendmail.dll 2008-10-22 08:43:27 ----A---- C:\WINDOWS\system32\sendcmsg.dll 2008-10-22 08:43:26 ----A---- C:\WINDOWS\system32\shdocvw.dll 2008-10-22 08:43:21 ----A---- C:\WINDOWS\system32\shimgvw.dll 2008-10-22 08:43:21 ----A---- C:\WINDOWS\system32\shimeng.dll 2008-10-22 08:43:21 ----A---- C:\WINDOWS\system32\shgina.dll 2008-10-22 08:43:21 ----A---- C:\WINDOWS\system32\shfolder.dll 2008-10-22 08:43:21 ----A---- C:\WINDOWS\system32\shell32.dll 2008-10-22 08:43:20 ----A---- C:\WINDOWS\system32\shscrap.dll 2008-10-22 08:43:20 ----A---- C:\WINDOWS\system32\shrpubw.exe 2008-10-22 08:43:20 ----A---- C:\WINDOWS\system32\shmgrate.exe 2008-10-22 08:43:20 ----A---- C:\WINDOWS\system32\shmedia.dll 2008-10-22 08:43:20 ----A---- C:\WINDOWS\system32\shlwapi.dll 2008-10-22 08:43:19 ----A---- C:\WINDOWS\system32\skeys.exe 2008-10-22 08:43:19 ----A---- C:\WINDOWS\system32\sigverif.exe 2008-10-22 08:43:19 ----A---- C:\WINDOWS\system32\sigtab.dll 2008-10-22 08:43:19 ----A---- C:\WINDOWS\system32\shutdown.exe 2008-10-22 08:43:19 ----A---- C:\WINDOWS\system32\shsvcs.dll 2008-10-22 08:43:18 ----A---- C:\WINDOWS\system32\snmpapi.dll 2008-10-22 08:43:18 ----A---- C:\WINDOWS\system32\sndrec32.exe 2008-10-22 08:43:18 ----A---- C:\WINDOWS\system32\smlogsvc.exe 2008-10-22 08:43:18 ----A---- C:\WINDOWS\system32\smlogcfg.dll 2008-10-22 08:43:18 ----A---- C:\WINDOWS\system32\slbiop.dll 2008-10-22 08:43:18 ----A---- C:\WINDOWS\system32\slayerxp.dll 2008-10-22 08:43:17 ----A---- C:\WINDOWS\system32\spoolsv.exe 2008-10-22 08:43:17 ----A---- C:\WINDOWS\system32\spoolss.dll 2008-10-22 08:43:17 ----A---- C:\WINDOWS\system32\spider.exe 2008-10-22 08:43:17 ----A---- C:\WINDOWS\system32\sort.exe 2008-10-22 08:43:17 ----A---- C:\WINDOWS\system32\snmpsnap.dll 2008-10-22 08:43:16 ----A---- C:\WINDOWS\system32\srrstr.dll 2008-10-22 08:43:16 ----A---- C:\WINDOWS\system32\srclient.dll 2008-10-22 08:43:16 ----A---- C:\WINDOWS\system32\sqlunirl.dll 2008-10-22 08:43:16 ----A---- C:\WINDOWS\system32\sqlsrv32.dll 2008-10-22 08:43:15 ----A---- C:\WINDOWS\system32\ssdpapi.dll 2008-10-22 08:43:15 ----A---- C:\WINDOWS\system32\srsvc.dll 2008-10-22 08:43:14 ----A---- C:\WINDOWS\system32\stimon.exe 2008-10-22 08:43:14 ----A---- C:\WINDOWS\system32\sti_ci.dll 2008-10-22 08:43:14 ----A---- C:\WINDOWS\system32\sti.dll 2008-10-22 08:43:14 ----A---- C:\WINDOWS\system32\stclient.dll 2008-10-22 08:43:14 ----A---- C:\WINDOWS\system32\ssdpsrv.dll 2008-10-22 08:43:13 ----A---- C:\WINDOWS\system32\tapisrv.dll 2008-10-22 08:43:13 ----A---- C:\WINDOWS\system32\tapi32.dll 2008-10-22 08:43:13 ----A---- C:\WINDOWS\system32\tapi3.dll 2008-10-22 08:43:13 ----A---- C:\WINDOWS\system32\t2embed.dll 2008-10-22 08:43:13 ----A---- C:\WINDOWS\system32\sysocmgr.exe 2008-10-22 08:43:13 ----A---- C:\WINDOWS\system32\syncui.dll 2008-10-22 08:43:13 ----A---- C:\WINDOWS\system32\synceng.dll 2008-10-22 08:43:13 ----A---- C:\WINDOWS\system32\sxs.dll 2008-10-22 08:43:13 ----A---- C:\WINDOWS\system32\svchost.exe 2008-10-22 08:43:13 ----A---- C:\WINDOWS\system32\strmdll.dll 2008-10-22 08:43:13 ----A---- C:\WINDOWS\system32\storprop.dll 2008-10-22 08:43:13 ----A---- C:\WINDOWS\system32\stobject.dll 2008-10-22 08:43:12 ----A---- C:\WINDOWS\system32\txflog.dll 2008-10-22 08:43:12 ----A---- C:\WINDOWS\system32\tsddd.dll 2008-10-22 08:43:12 ----A---- C:\WINDOWS\system32\tscfgwmi.dll 2008-10-22 08:43:12 ----A---- C:\WINDOWS\system32\trkwks.dll 2008-10-22 08:43:12 ----A---- C:\WINDOWS\system32\tree.com 2008-10-22 08:43:12 ----A---- C:\WINDOWS\system32\tracert.exe 2008-10-22 08:43:12 ----A---- C:\WINDOWS\system32\tourstart.exe 2008-10-22 08:43:12 ----A---- C:\WINDOWS\system32\themeui.dll 2008-10-22 08:43:12 ----A---- C:\WINDOWS\system32\termsrv.dll 2008-10-22 08:43:12 ----A---- C:\WINDOWS\system32\termmgr.dll 2008-10-22 08:43:12 ----A---- C:\WINDOWS\system32\telnet.exe 2008-10-22 08:43:12 ----A---- C:\WINDOWS\system32\tcpmon.dll 2008-10-22 08:43:12 ----A---- C:\WINDOWS\system32\tcpmib.dll 2008-10-22 08:43:12 ----A---- C:\WINDOWS\system32\taskmgr.exe 2008-10-22 08:43:11 ----A---- C:\WINDOWS\system32\userenv.dll 2008-10-22 08:43:11 ----A---- C:\WINDOWS\system32\user32.dll 2008-10-22 08:43:11 ----A---- C:\WINDOWS\system32\usbui.dll 2008-10-22 08:43:11 ----A---- C:\WINDOWS\system32\usbmon.dll 2008-10-22 08:43:11 ----A---- C:\WINDOWS\system32\ups.exe 2008-10-22 08:43:11 ----A---- C:\WINDOWS\system32\upnpui.dll 2008-10-22 08:43:11 ----A---- C:\WINDOWS\system32\upnphost.dll 2008-10-22 08:43:11 ----A---- C:\WINDOWS\system32\upnpcont.exe 2008-10-22 08:43:11 ----A---- C:\WINDOWS\system32\upnp.dll 2008-10-22 08:43:11 ----A---- C:\WINDOWS\system32\uniplat.dll 2008-10-22 08:43:11 ----A---- C:\WINDOWS\system32\unimdmat.dll 2008-10-22 08:43:11 ----A---- C:\WINDOWS\system32\umpnpmgr.dll 2008-10-22 08:43:11 ----A---- C:\WINDOWS\system32\umandlg.dll 2008-10-22 08:43:11 ----A---- C:\WINDOWS\system32\udhisapi.dll 2008-10-22 08:43:10 ----A---- C:\WINDOWS\system32\w32time.dll 2008-10-22 08:43:10 ----A---- C:\WINDOWS\system32\vssvc.exe 2008-10-22 08:43:10 ----A---- C:\WINDOWS\system32\vssapi.dll 2008-10-22 08:43:10 ----A---- C:\WINDOWS\system32\vfwwdm32.dll 2008-10-22 08:43:10 ----A---- C:\WINDOWS\system32\version.dll 2008-10-22 08:43:10 ----A---- C:\WINDOWS\system32\verifier.dll 2008-10-22 08:43:10 ----A---- C:\WINDOWS\system32\vdmredir.dll 2008-10-22 08:43:10 ----A---- C:\WINDOWS\system32\vdmdbg.dll 2008-10-22 08:43:10 ----A---- C:\WINDOWS\system32\vbscript.dll 2008-10-22 08:43:10 ----A---- C:\WINDOWS\system32\vbajet32.dll 2008-10-22 08:43:10 ----A---- C:\WINDOWS\system32\uxtheme.dll 2008-10-22 08:43:10 ----A---- C:\WINDOWS\system32\utilman.exe 2008-10-22 08:43:10 ----A---- C:\WINDOWS\system32\usp10.dll 2008-10-22 08:43:09 ----A---- C:\WINDOWS\system32\winipsec.dll 2008-10-22 08:43:09 ----A---- C:\WINDOWS\system32\wiavideo.dll 2008-10-22 08:43:09 ----A---- C:\WINDOWS\system32\wiashext.dll 2008-10-22 08:43:09 ----A---- C:\WINDOWS\system32\wiaservc.dll 2008-10-22 08:43:09 ----A---- C:\WINDOWS\system32\wiascr.dll 2008-10-22 08:43:09 ----A---- C:\WINDOWS\system32\wiadss.dll 2008-10-22 08:43:09 ----A---- C:\WINDOWS\system32\wiadefui.dll 2008-10-22 08:43:09 ----A---- C:\WINDOWS\system32\wiaacmgr.exe 2008-10-22 08:43:09 ----A---- C:\WINDOWS\system32\wextract.exe 2008-10-22 08:43:09 ----A---- C:\WINDOWS\system32\webvw.dll 2008-10-22 08:43:09 ----A---- C:\WINDOWS\system32\webclnt.dll 2008-10-22 08:43:09 ----A---- C:\WINDOWS\system32\wdigest.dll 2008-10-22 08:43:09 ----A---- C:\WINDOWS\system32\wavemsp.dll 2008-10-22 08:43:08 ----A---- C:\WINDOWS\system32\wmi.dll 2008-10-22 08:43:08 ----A---- C:\WINDOWS\system32\wlnotify.dll 2008-10-22 08:43:08 ----A---- C:\WINDOWS\system32\wldap32.dll 2008-10-22 08:43:08 ----A---- C:\WINDOWS\system32\winver.exe 2008-10-22 08:43:08 ----A---- C:\WINDOWS\system32\wintrust.dll 2008-10-22 08:43:08 ----A---- C:\WINDOWS\system32\winsta.dll 2008-10-22 08:43:08 ----A---- C:\WINDOWS\system32\winsrv.dll 2008-10-22 08:43:08 ----A---- C:\WINDOWS\system32\winscard.dll 2008-10-22 08:43:08 ----A---- C:\WINDOWS\system32\winrnr.dll 2008-10-22 08:43:08 ----A---- C:\WINDOWS\system32\winntbbu.dll 2008-10-22 08:43:08 ----A---- C:\WINDOWS\system32\winmm.dll 2008-10-22 08:43:08 ----A---- C:\WINDOWS\system32\winlogon.exe 2008-10-22 08:43:07 ----A---- C:\WINDOWS\system32\wshext.dll 2008-10-22 08:43:07 ----A---- C:\WINDOWS\system32\wshcon.dll 2008-10-22 08:43:07 ----A---- C:\WINDOWS\system32\wscript.exe 2008-10-22 08:43:07 ----A---- C:\WINDOWS\system32\ws2help.dll 2008-10-22 08:43:07 ----A---- C:\WINDOWS\system32\ws2_32.dll 2008-10-22 08:43:07 ----A---- C:\WINDOWS\system32\wpnpinst.exe 2008-10-22 08:43:07 ----A---- C:\WINDOWS\system32\wpabaln.exe 2008-10-22 08:43:07 ----A---- C:\WINDOWS\system32\wow32.dll 2008-10-22 08:43:07 ----A---- C:\WINDOWS\system32\wmstream.dll 2008-10-22 08:43:07 ----A---- C:\WINDOWS\system32\wmsdmoe.dll 2008-10-22 08:43:07 ----A---- C:\WINDOWS\system32\wmpui.dll 2008-10-22 08:43:07 ----A---- C:\WINDOWS\system32\wmpcore.dll 2008-10-22 08:43:07 ----A---- C:\WINDOWS\system32\wmpcd.dll 2008-10-22 08:43:06 ----A---- C:\WINDOWS\system32\zipfldr.dll 2008-10-22 08:43:06 ----A---- C:\WINDOWS\system32\xolehlp.dll 2008-10-22 08:43:06 ----A---- C:\WINDOWS\system32\xcopy.exe 2008-10-22 08:43:06 ----A---- C:\WINDOWS\system32\xactsrv.dll 2008-10-22 08:43:06 ----A---- C:\WINDOWS\system32\wzcsvc.dll 2008-10-22 08:43:06 ----A---- C:\WINDOWS\system32\wzcsapi.dll 2008-10-22 08:43:06 ----A---- C:\WINDOWS\system32\wzcdlg.dll 2008-10-22 08:43:06 ----A---- C:\WINDOWS\system32\wtsapi32.dll 2008-10-22 08:43:06 ----A---- C:\WINDOWS\system32\wstdecod.dll 2008-10-22 08:43:06 ----A---- C:\WINDOWS\system32\wsock32.dll 2008-10-22 08:43:06 ----A---- C:\WINDOWS\system32\wsnmp32.dll 2008-10-22 08:43:06 ----A---- C:\WINDOWS\system32\wshtcpip.dll 2008-10-22 08:43:06 ----A---- C:\WINDOWS\system32\wshrm.dll 2008-10-22 08:43:06 ----A---- C:\WINDOWS\system32\wship6.dll 2008-10-22 08:43:04 ----A---- C:\WINDOWS\system32\csrsrv.dll 2008-10-22 08:43:04 ----A---- C:\WINDOWS\system32\comdlg32.dll 2008-10-22 08:43:04 ----A---- C:\WINDOWS\system32\comctl32.dll 2008-10-22 08:43:04 ----A---- C:\WINDOWS\system32\cmd.exe 2008-10-22 08:43:04 ----A---- C:\WINDOWS\system32\cacls.exe 2008-10-22 08:43:04 ----A---- C:\WINDOWS\system32\autoconv.exe 2008-10-22 08:43:04 ----A---- C:\WINDOWS\system32\autochk.exe 2008-10-22 08:43:04 ----A---- C:\WINDOWS\system32\advapi32.dll 2008-10-22 08:43:03 ----A---- C:\WINDOWS\system32\mgmtapi.dll 2008-10-22 08:43:03 ----A---- C:\WINDOWS\system32\lsasrv.dll 2008-10-22 08:43:03 ----A---- C:\WINDOWS\system32\locator.exe 2008-10-22 08:43:03 ----A---- C:\WINDOWS\system32\localspl.dll 2008-10-22 08:43:03 ----A---- C:\WINDOWS\system32\lmhsvc.dll 2008-10-22 08:43:03 ----A---- C:\WINDOWS\system32\kernel32.dll 2008-10-22 08:43:03 ----A---- C:\WINDOWS\system32\imagehlp.dll 2008-10-22 08:43:03 ----A---- C:\WINDOWS\system32\ftp.exe 2008-10-22 08:43:03 ----A---- C:\WINDOWS\system32\format.com 2008-10-22 08:43:03 ----A---- C:\WINDOWS\system32\dhcpcsvc.dll 2008-10-22 08:43:02 ----A---- C:\WINDOWS\system32\olecnv32.dll 2008-10-22 08:43:02 ----A---- C:\WINDOWS\system32\oleaut32.dll 2008-10-22 08:43:02 ----A---- C:\WINDOWS\system32\nwprovau.dll 2008-10-22 08:43:02 ----A---- C:\WINDOWS\system32\ntvdm.exe 2008-10-22 08:43:02 ----A---- C:\WINDOWS\system32\ntprint.dll 2008-10-22 08:43:02 ----A---- C:\WINDOWS\system32\ntlsapi.dll 2008-10-22 08:43:02 ----A---- C:\WINDOWS\system32\ntdll.dll 2008-10-22 08:43:02 ----A---- C:\WINDOWS\system32\nslookup.exe 2008-10-22 08:43:02 ----A---- C:\WINDOWS\system32\msv1_0.dll 2008-10-22 08:43:02 ----A---- C:\WINDOWS\system32\msgsvc.dll 2008-10-22 08:43:01 ----A---- C:\WINDOWS\system32\savedump.exe 2008-10-22 08:43:01 ----A---- C:\WINDOWS\system32\samsrv.dll 2008-10-22 08:43:01 ----A---- C:\WINDOWS\system32\samlib.dll 2008-10-22 08:43:01 ----A---- C:\WINDOWS\system32\rshx32.dll 2008-10-22 08:43:01 ----A---- C:\WINDOWS\system32\rastapi.dll 2008-10-22 08:43:01 ----A---- C:\WINDOWS\system32\rasman.dll 2008-10-22 08:43:01 ----A---- C:\WINDOWS\system32\rasdlg.dll 2008-10-22 08:43:01 ----A---- C:\WINDOWS\system32\rasauto.dll 2008-10-22 08:43:01 ----A---- C:\WINDOWS\system32\rasapi32.dll 2008-10-22 08:43:01 ----A---- C:\WINDOWS\system32\printui.dll 2008-10-22 08:43:01 ----A---- C:\WINDOWS\system32\perfctrs.dll 2008-10-22 08:43:00 ----A---- C:\WINDOWS\system32\tcpmonui.dll 2008-10-22 08:43:00 ----A---- C:\WINDOWS\system32\syssetup.dll 2008-10-22 08:43:00 ----A---- C:\WINDOWS\system32\srvsvc.dll 2008-10-22 08:43:00 ----A---- C:\WINDOWS\system32\smss.exe 2008-10-22 08:43:00 ----A---- C:\WINDOWS\system32\setupapi.dll 2008-10-22 08:43:00 ----A---- C:\WINDOWS\system32\sessmgr.exe 2008-10-22 08:43:00 ----A---- C:\WINDOWS\system32\services.exe 2008-10-22 08:43:00 ----A---- C:\WINDOWS\system32\schannel.dll 2008-10-22 08:43:00 ----A---- C:\WINDOWS\system32\scardsvr.exe 2008-10-22 08:42:59 ----A---- C:\WINDOWS\system32\wkssvc.dll 2008-10-22 08:42:59 ----A---- C:\WINDOWS\system32\win32spl.dll 2008-10-22 08:42:59 ----A---- C:\WINDOWS\system32\userinit.exe 2008-10-22 08:42:59 ----A---- C:\WINDOWS\system32\untfs.dll 2008-10-22 08:42:59 ----A---- C:\WINDOWS\system32\ulib.dll 2008-10-22 08:42:48 ----A---- C:\WINDOWS\system32\ntkrnlpa.exe 2008-10-22 08:42:48 ----A---- C:\WINDOWS\system32\hal.dll 2008-10-22 08:42:47 ----A---- C:\WINDOWS\system32\ntoskrnl.exe 2008-10-22 08:42:47 ----A---- C:\WINDOWS\system32\asfsipc.dll 2008-10-17 02:18:49 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$ 2008-10-17 02:18:38 ----HDC---- C:\WINDOWS\$NtUninstallKB956391$ 2008-10-17 02:18:27 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$ 2008-10-17 02:10:40 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$ 2008-10-17 02:10:00 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$ 2008-10-13 18:50:23 ----A---- C:\WINDOWS\ModemLog_Bluetooth DUN Modem.txt ======List of files/folders modified in the last 1 months====== 2008-11-09 10:38:47 ----RD---- C:\Program Files 2008-11-09 10:29:03 ----D---- C:\Program Files\Mozilla Firefox 2008-11-09 10:28:26 ----D---- C:\WINDOWS 2008-11-09 10:25:14 ----D---- C:\WINDOWS\Temp 2008-11-09 10:10:42 ----HD---- C:\WINDOWS\inf 2008-11-09 03:10:48 ----D---- C:\WINDOWS\system32\CatRoot2 2008-11-08 09:39:21 ----D---- C:\Program Files\Lx_cats 2008-11-07 10:17:09 ----D---- C:\Program Files\Spybot - Search & Destroy 2008-11-05 11:46:07 ----D---- C:\Program Files\AviSynth 2.5 2008-11-05 11:45:51 ----D---- C:\WINDOWS\system32 2008-11-05 11:36:47 ----D---- C:\Program Files\Logitech 2008-11-05 11:36:45 ----D---- C:\Program Files\Fichiers communs 2008-11-05 11:33:52 ----SHD---- C:\WINDOWS\Installer 2008-11-05 11:24:18 ----DC---- C:\WINDOWS\system32\DRVSTORE 2008-11-05 11:24:18 ----D---- C:\WINDOWS\system32\drivers 2008-11-05 11:19:06 ----D---- C:\Python22 2008-11-05 11:03:10 ----D---- C:\Program Files\WinRAR 2008-10-30 22:05:07 ----D---- C:\Program Files\Windows Live Safety Center 2008-10-28 13:55:37 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2008-10-24 02:02:08 ----RSHDC---- C:\WINDOWS\system32\dllcache 2008-10-24 02:01:10 ----HD---- C:\WINDOWS\$hf_mig$ 2008-10-22 09:40:24 ----D---- C:\Program Files\MSN Pictures Displayer 2008-10-22 09:32:47 ----D---- C:\WINDOWS\system32\wbem 2008-10-22 09:32:47 ----D---- C:\WINDOWS\AppPatch 2008-10-22 09:32:43 ----RSD---- C:\WINDOWS\Fonts 2008-10-22 09:32:06 ----D---- C:\WINDOWS\security 2008-10-22 09:30:28 ----D---- C:\WINDOWS\system32\CatRoot 2008-10-22 09:30:18 ----D---- C:\WINDOWS\ServicePackFiles 2008-10-22 09:24:00 ----D---- C:\WINDOWS\WinSxS 2008-10-22 09:23:57 ----D---- C:\WINDOWS\system32\bits 2008-10-22 09:23:27 ----D---- C:\Program Files\Messenger 2008-10-22 09:23:23 ----D---- C:\WINDOWS\system32\usmt 2008-10-22 09:23:20 ----D---- C:\WINDOWS\system32\Setup 2008-10-22 09:23:19 ----D---- C:\WINDOWS\system32\Restore 2008-10-22 09:23:18 ----D---- C:\WINDOWS\system32\oobe 2008-10-22 09:23:17 ----D---- C:\WINDOWS\system32\npp 2008-10-22 09:22:28 ----D---- C:\WINDOWS\system32\Com 2008-10-22 09:20:42 ----D---- C:\WINDOWS\system 2008-10-22 09:20:41 ----D---- C:\WINDOWS\srchasst 2008-10-22 09:17:54 ----D---- C:\WINDOWS\peernet 2008-10-22 09:17:53 ----D---- C:\WINDOWS\network diagnostic 2008-10-22 09:17:51 ----D---- C:\WINDOWS\msagent 2008-10-22 09:17:41 ----D---- C:\WINDOWS\ime 2008-10-22 09:17:40 ----D---- C:\WINDOWS\Help 2008-10-22 09:17:33 ----D---- C:\Program Files\Windows NT 2008-10-22 09:17:33 ----D---- C:\Program Files\Windows Media Player 2008-10-22 09:17:32 ----D---- C:\Program Files\Outlook Express 2008-10-22 09:17:30 ----D---- C:\Program Files\NetMeeting 2008-10-22 09:17:28 ----D---- C:\Program Files\Movie Maker 2008-10-22 09:17:18 ----D---- C:\Program Files\Fichiers communs\System 2008-10-22 09:14:19 ----SD---- C:\WINDOWS\Tasks 2008-10-22 09:03:23 ----D---- C:\WINDOWS\system32\fr-fr 2008-10-22 08:47:55 ----D---- C:\WINDOWS\system32\ReinstallBackups 2008-10-22 08:41:55 ----D---- C:\WINDOWS\EHome 2008-10-22 05:54:04 ----D---- C:\WINDOWS\system32\CatRoot_bak 2008-10-20 19:35:10 ----D---- C:\Documents and Settings\All Users\Application Data\Bluetooth 2008-10-20 06:15:11 ----D---- C:\Documents and Settings\Propriétaire\Application Data\uTorrent 2008-10-17 09:35:10 ----D---- C:\WINDOWS\Debug 2008-10-17 02:17:40 ----D---- C:\Program Files\Internet Explorer 2008-10-17 02:17:26 ----D---- C:\WINDOWS\ie7updates 2008-10-17 02:15:39 ----A---- C:\WINDOWS\win.ini 2008-10-16 20:41:37 ----D---- C:\Program Files\Weight Watchers FlexiPoints 2008-10-14 08:24:07 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R1 AFS2K;AFS2k; C:\WINDOWS\system32\drivers\AFS2K.sys [2004-01-01 43488] R1 AVG Anti-Spyware Driver;AVG Anti-Spyware Driver; \??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys [] R1 AvgAsCln;AVG Anti-Spyware Clean Driver; C:\WINDOWS\System32\DRIVERS\AvgAsCln.sys [2006-09-05 3968] R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys [] R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2008-07-20 75072] R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2004-08-19 40320] R1 SiSkp;SiSkp; C:\WINDOWS\System32\DRIVERS\srvkp.sys [2003-12-05 11392] R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2007-03-01 28352] R2 mdmxsdk;mdmxsdk; C:\WINDOWS\System32\DRIVERS\mdmxsdk.sys [2003-04-09 11043] R3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\ALCXSENS.SYS [2003-12-12 391424] R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2003-12-12 538236] R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\System32\DRIVERS\arp1394.sys [2004-08-04 60800] R3 avgntflt;avgntflt; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys [] R3 HidUsb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600] R3 HSF_DP;HSF_DP; C:\WINDOWS\System32\DRIVERS\HSF_DP.sys [2003-11-14 1042816] R3 HSFHWBS2;HSFHWBS2; C:\WINDOWS\System32\DRIVERS\HSFHWBS2.sys [2003-11-14 210304] R3 Iviaspi;IVI ASPI Shell; C:\WINDOWS\system32\drivers\iviaspi.sys [2003-09-11 21060] R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\WINDOWS\system32\drivers\LVPr2Mon.sys [2006-06-26 23472] R3 MarvinBus;Pinnacle Marvin Bus; C:\WINDOWS\system32\DRIVERS\MarvinBus.sys [2005-06-02 171008] R3 mouhid;Pilote HID de souris; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-23 12288] R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\System32\DRIVERS\nic1394.sys [2004-08-04 61824] R3 nv;nv; C:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2003-12-05 1619243] R3 Pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2003-09-19 10368] R3 PhilCam8116;Logitech QuickCam Pro 3000(PID_08B0); C:\WINDOWS\system32\DRIVERS\CamDrL21.sys [2002-12-10 236121] R3 Ps2;PS2; C:\WINDOWS\System32\DRIVERS\PS2.sys [2002-07-29 23808] R3 SISNIC;SiS PCI Fast Ethernet Adapter Driver; C:\WINDOWS\System32\DRIVERS\sisnic.sys [2003-07-11 32768] R3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2004-08-04 59264] R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2004-08-04 31616] R3 usbehci;Pilote miniport de contrôleur hôte amélioré USB 2.0 Microsoft; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2004-08-04 26624] R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2004-08-04 57600] R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbohci.sys [2004-08-04 17024] R3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2004-08-04 25856] R3 winachsf;winachsf; C:\WINDOWS\System32\DRIVERS\HSF_CNXT.sys [2003-11-14 679808] S3 {6080A529-897E-4629-A488-ABA0C29B635E};Intel® Graphics Platform (SoftBIOS) Driver; C:\WINDOWS\system32\drivers\ialmsbw.sys [2003-11-20 122110] S3 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91};Intel® Graphics Chipset (KCH) Driver; C:\WINDOWS\system32\drivers\ialmkchw.sys [2003-11-20 99002] S3 61883;Pilote d'unité 61883; C:\WINDOWS\System32\DRIVERS\61883.sys [2004-08-04 48128] S3 af7m27jl;af7m27jl; C:\WINDOWS\system32\drivers\af7m27jl.sys [] S3 Avc;Périphérique AVC; C:\WINDOWS\System32\DRIVERS\avc.sys [2004-08-04 38912] S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys [] S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys [] S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys [] S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys [] S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [2004-08-04 17024] S3 DSDrv4;DSDrv4; \??\C:\PROGRA~1\K!TV\Plugins\S_Bt8x8\DSDrv4.sys [] S3 EL90XBC;Pilote de la carte EtherLink XL 90XB/C 3Com; C:\WINDOWS\System32\DRIVERS\el90xbc5.sys [2001-08-18 66591] S3 gAGP440p;gAGP440p; \??\C:\DOCUME~1\PROPRI~1\LOCALS~1\Temp\gAGP440p.sys [] S3 ialm;ialm; C:\WINDOWS\System32\DRIVERS\ialmnt5.sys [2003-11-20 95579] S3 LVcKap;Logitech AEC Driver; C:\WINDOWS\system32\DRIVERS\LVcKap.sys [2006-06-26 1587632] S3 LVMVDrv;Logitech Machine Vision Engine Loader; C:\WINDOWS\system32\DRIVERS\LVMVDrv.sys [2006-06-26 1952816] S3 MSDV;Microsoft DV Camera and VCR; C:\WINDOWS\System32\DRIVERS\msdv.sys [2004-08-04 51328] S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-04 5504] S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys [2004-08-04 85376] S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [2004-08-04 10880] S3 PalmUSBD;PalmUSBD; C:\WINDOWS\system32\drivers\PalmUSBD.sys [] S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2003-09-22 5888] S3 SE2Bbus;Sony Ericsson Device 043 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\SE2Bbus.sys [2006-11-10 61600] S3 SE2Bmdfl;Sony Ericsson Device 043 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\SE2Bmdfl.sys [2006-11-10 9360] S3 SE2Bmdm;Sony Ericsson Device 043 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\SE2Bmdm.sys [2006-11-10 97184] S3 SE2Bobex;Sony Ericsson Device 043 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\SE2Bobex.sys [2006-11-10 86560] S3 Ser2pl;Prolific2 Serial port driver; C:\WINDOWS\system32\DRIVERS\ser2pl.sys [2005-07-25 48640] S3 SiS315;SiS315; C:\WINDOWS\System32\DRIVERS\sisgrp.sys [2003-12-06 429440] S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\System32\DRIVERS\SLIP.sys [2004-08-04 11136] S3 streamip;BDA IPSink; C:\WINDOWS\System32\DRIVERS\StreamIP.sys [2004-08-04 15360] S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\System32\DRIVERS\usbscan.sys [2004-08-04 15104] S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2004-08-04 26496] S3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2004-08-04 20480] S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys [] S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys [] S3 viagfx;viagfx; C:\WINDOWS\System32\DRIVERS\vtmini.sys [2003-10-16 117760] S3 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2006-04-10 104576] S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528] S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS [2004-08-04 19328] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AntiVirScheduler;AntiVir PersonalEdition Classic Scheduler; C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe [2008-10-23 68865] R2 AntiVirService;AntiVir PersonalEdition Classic Guard; C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe [2008-10-23 151297] R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-09-05 116040] R2 AVG Anti-Spyware Guard;AVG Anti-Spyware Guard; C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe [2007-12-27 312880] R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888] R2 LVPrcSrv;Logitech Process Monitor; c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe [2006-06-26 99888] R2 lxdj_device;lxdj_device; C:\WINDOWS\system32\lxdjcoms.exe [2007-04-27 537520] R2 lxdjCATSCustConnectService;lxdjCATSCustConnectService; C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxdjserv.exe [2007-04-27 99248] R2 MDM;Machine Debug Manager; C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120] R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\System32\nvsvc32.exe [2003-12-05 77824] R2 Service1;Packard Bell Software Suite Service 1; C:\Program Files\Packard Bell\Packard Bell Software Suite\PowerSave\HDPBSSS.exe [2008-06-18 987456] R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968] R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-20 14336] S2 LVSrvLauncher;LVSrvLauncher; C:\Program Files\Fichiers communs\Logitech\SrvLnch\SrvLnch.exe [2006-06-26 91696] S2 MSSQL$PINNACLESYS;MSSQL$PINNACLESYS; C:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe [2008-05-25 9154560] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144] S3 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2004-08-20 268800] S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-03-31 138168] S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632] S3 MSSQLServerADHelper;MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [2005-05-03 73728] S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136] S3 SQLAgent$PINNACLESYS;SQLAgent$PINNACLESYS; C:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlagent.EXE [2005-05-03 323584] S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328] S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240] S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-11-03 918016] -----------------EOF-----------------
- le 9 novembre 2008
- 19 réponses
pc lent besoin aide rapport hijackthis svp[résolu]

alex89000 a posté un sujet dans Analyses et éradication malwares

voici le rapport est ce que quelqu'un peu m'aider ? merci d'avance Logfile of HijackThis v1.99.1 Scan saved at 10:23:02, on 09/11/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16735) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Documents and Settings\Propriétaire\Mes documents\internet\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-qfr10.hpwis.com/ R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mystart.incredimail.com/french/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://srch-qfr10.hpwis.com/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local F3 - REG:win.ini: load=C:\WINDOWS\system32\sstts.exe O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O2 - BHO: (no name) - {C0D4A0E8-98EE-4A14-91A0-0E331A08FB07} - C:\WINDOWS\system32\sstts.dll (file missing) O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" O4 - HKLM\..\Run: [HPHUPD05] c:\Program Files\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [updateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\Logitech\LComMgr\Communications_Helper.exe" O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe O4 - HKLM\..\Run: [uSBToolTip] "C:\Program Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.exe" O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" /hide O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [LVCOMSX] "C:\Program Files\Fichiers communs\Logitech\LComMgr\LVComSX.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [lxdjmon.exe] "C:\Program Files\Lexmark 1400 Series\lxdjmon.exe" O4 - HKLM\..\Run: [lxdjamon] "C:\Program Files\Lexmark 1400 Series\lxdjamon.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [Acme.PCHButton] C:\PROGRA~1\PRESAR~1\Presario\XPHWWRP4\plugin\bin\pchbutton.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm .exe" O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount O4 - HKCU\..\Run: [incrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\HOMERunner.exe" O4 - HKCU\..\Run: [Packard Bell Data Secure] C:\Program Files\Packard Bell Data Secure\PBDataSecure.exe O4 - Startup: MSN Pictures Displayer.lnk = C:\Program Files\MSN Pictures Displayer\MSN Pictures Displayer.exe O8 - Extra context menu item: Add to AMV Converter... - C:\Program Files\MP3 Player Utilities 4.15\AMVConverter\grab.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 4.15\MediaManager\grab.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~3\INetRepl.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O10 - Unknown file in Winsock LSP: c:\program files\bonjour\mdnsnsp.dll O11 - Options group: [iNTERNATIONAL] International* O16 - DPF: {1F83CD9E-505E-4F87-BECE-0832A763E36F} (Image Uploader 3.0 Control) - http://www.presslabo.com/importer/MypixUploader.cab O16 - DPF: {2EF3FB47-7B1E-4536-BA4D-51427BD45DFA} (PIXACO Drag and Drop upload plugin) - http://www.pixaco.fr/static/download/pixacodndupload.cab O16 - DPF: {3BFFE033-BF43-11D5-A271-00A024A51325} (iNotes6 Class) - https://messagerie.cg89.fr/iNotes6W.cab O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://www3.snapfish.fr/SnapfishActivia.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by118fd.bay118.hotmail.msn.com/resources/MsnPUpld.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan8/oscan8.cab O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.mypix.com/importer/ImageUploader4.cab O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.photoreflex.com/tools/ImageUplo...geUploader3.cab O16 - DPF: {A73BAEFA-EE65-494D-BEDB-DD3E5A34FA98} (Image Uploader) - http://www.extrafilm.fr/ImageUploader4.cab O16 - DPF: {AE2B937E-EA7D-4A8D-888C-B68D7F72A3C4} (IPSUploader4 Control) - http://as.photoprintit.de/ips-opdata/layou...PSUploader4.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab O16 - DPF: {DEB21AD3-FDA4-42F6-B57D-EE696A675EE8} (IPSUploader Control) - http://as.photoprintit.de/ips-opdata/layou...IPSUploader.cab O16 - DPF: {FB90BA05-66E6-4C56-BCD3-D65B0F7EBA39} (Foto.com SpeedUploader 1.0 Control) - http://fotobook.foto.com/activex/SpeedUploader.cab O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL O20 - Winlogon Notify: dimsntfy - C:\WINDOWS\ O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\fichiers communs\logitech\lvmvfm\LVPrcSrv.exe O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\Logitech\SrvLnch\SrvLnch.exe O23 - Service: lxdjCATSCustConnectService - Lexmark International, Inc. - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxdjserv.exe O23 - Service: lxdj_device - - C:\WINDOWS\system32\lxdjcoms.exe O23 - Service: MSSQL$PINNACLESYS - Unknown owner - C:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe" -sPINNACLESYS (file missing) O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: Packard Bell Software Suite Service 1 (Service1) - Packard Bell Services - C:\Program Files\Packard Bell\Packard Bell Software Suite\PowerSave\HDPBSSS.exe O23 - Service: SQLAgent$PINNACLESYS - Unknown owner - C:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlagent.EXE" -i PINNACLESYS (file missing) O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
- le 9 novembre 2008
- 19 réponses

Connexion

alex89000

Compteur de contenus

Inscription

Dernière visite

Type de contenu

Profils

Forums

Blogs

Tout ce qui a été posté par alex89000

pc lent besoin aide rapport hijackthis svp[résolu]

pc lent besoin aide rapport hijackthis svp[résolu]

pc lent besoin aide rapport hijackthis svp[résolu]

pc lent besoin aide rapport hijackthis svp[résolu]

pc lent besoin aide rapport hijackthis svp[résolu]

pc lent besoin aide rapport hijackthis svp[résolu]

pc lent besoin aide rapport hijackthis svp[résolu]

pc lent besoin aide rapport hijackthis svp[résolu]

pc lent besoin aide rapport hijackthis svp[résolu]

pc lent besoin aide rapport hijackthis svp[résolu]

pc lent besoin aide rapport hijackthis svp[résolu]

Zebulon

Outils en ligne

Naviguer