gono

Merci de ta réponse rapide! Pour l'émulateur... je ne pense plus me balader sur Windows, donc je pense que ca va aller! Merci encore a toi et au forum

Bonjour a tous! Je change de système d'exploitation; de Windows a Linux (mandriva 2010.2), je veux transferer mes fichiers par disque dur externe mais je voudrai avoir vos avis d'abord. Au cas ou j'aurai un virus, est-ce que il va contaminer Linux? Voila merci en avance!!

Bonjour, Bonne année a tout le monde !! J'utilise Avira Antivir comme antivirus, Comodo en version "Firewall Security" et Spybot-SD Recident. Hier en passant par Zeboulon j'ai remarque que Comodo a sorti une nouvelle version de l'antivirus 5.3.17.. , j'ai décide donc de le mettre a jour. Comodo m'a demande de désinstaller la version antérieur et de relancer l'installation. Maintenant il est bien installe mais il me dit que le Pare-feu Réseau ne fonctionne pas correctement, il me propose d'exécuter un diagnostic, le voici: <?xml version="1.0" encoding="utf-16"?> <CisDiagReport Status="Failed" Version="5.3.174622.1216" OS="6.1.7600 SP 0.0 32 bit"><Registry Status="Failed"><RegKey Status="Ok" Path="HKEY_LOCAL_MACHINE:SYSTEM\Software\Comodo\Firewall Pro\Configurations"><RegValue Status="Ok" Name="InstallPath" Type="String(CaseInsensitive)" Expected="C:\Program Files\COMODO\COMODO Internet Security"/></RegKey><RegKey Status="Ok" Path="HKEY_LOCAL_MACHINE:SYSTEM\CurrentControlSet\Services\cmdHlp"><RegValue Status="Ok" Name="ImagePath" Type="String(CaseInsensitive)" Expected="System32\DRIVERS\cmdhlp.sys"/><RegValue Status="Ok" Name="Group" Type="String(CaseInsensitive)" Expected="PNP_TDI"/><RegValue Status="Ok" Name="DependOnService" Type="MultiString(CaseInsensitive)" Expected="Tcpip" Comparsion="IgnoreEmptyLines"/><RegValue Status="Ok" Name="Start" Type="DWORD" Expected="1"/><RegValue Status="Ok" Name="Type" Type="DWORD" Expected="1"/></RegKey><RegKey Status="Ok" Path="HKEY_LOCAL_MACHINE:SYSTEM\CurrentControlSet\Services\cmdGuard"><RegValue Status="Ok" Name="ImagePath" Type="String(CaseInsensitive)" Expected="System32\DRIVERS\cmdguard.sys"/><RegValue Status="Ok" Name="Group" Type="String(CaseInsensitive)" Expected="FSFilter Anti-Virus"/><RegValue Status="Ok" Name="DependOnService" Type="MultiString(CaseInsensitive)" Expected="FltMgr" Comparsion="IgnoreEmptyLines"/><RegValue Status="Ok" Name="Start" Type="DWORD" Expected="1"/><RegValue Status="Ok" Name="Type" Type="DWORD" Expected="2"/></RegKey><RegKey Status="Ok" Path="HKEY_LOCAL_MACHINE:SYSTEM\CurrentControlSet\Services\cmdGuard\Instances"><RegValue Status="Ok" Name="DefaultInstance" Type="String(CaseInsensitive)" Expected="GlobalAttach"/></RegKey><RegKey Status="Ok" Path="HKEY_LOCAL_MACHINE:SYSTEM\CurrentControlSet\Services\cmdGuard\Instances\GlobalAttach"><RegValue Status="Ok" Name="Altitude" Type="String(CaseInsensitive)" Expected="321200"/><RegValue Status="Ok" Name="Flags" Type="DWORD" Expected="0"/></RegKey><RegKey Status="Ok" Path="HKEY_LOCAL_MACHINE:SYSTEM\CurrentControlSet\Services\cmdAgent"><RegValue Status="Ok" Name="ImagePath" Type="String(CaseInsensitive)" Expected=""C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe""/><RegValue Status="Ok" Name="ObjectName" Type="String(CaseInsensitive)" Expected="LocalSystem"/><RegValue Status="Ok" Name="Group" Type="String(CaseInsensitive)" Expected="COM Infrastructure"/><RegValue Status="Ok" Name="Start" Type="DWORD" Expected="2"/><RegValue Status="Ok" Name="Type" Type="DWORD" Expected="272"/><RegValue Status="Ok" Name="DependOnService" Type="MultiString(CaseInsensitive)" Expected="RpcSs" Comparsion="IgnoreEmptyLines"/></RegKey><RegKey Status="Ok" Path="HKEY_LOCAL_MACHINE:SYSTEM\CurrentControlSet\Services\CryptSvc"><RegValue Status="Ok" Name="Group" Type="String(CaseInsensitive)" Expected="COM Infrastructure"/></RegKey><RegKey Status="Failed" Path="HKEY_LOCAL_MACHINE:SYSTEM\CurrentControlSet\Services\cmderd"><RegValue Status="Failed" Name="ImagePath" Type="String(CaseInsensitive)" Expected="System32\DRIVERS\cmderd.sys"/><RegValue Status="Failed" Name="Group" Type="String(CaseInsensitive)" Expected="Primary Disk"/><RegValue Status="Failed" Name="Start" Type="DWORD" Expected="1"/><RegValue Status="Failed" Name="Type" Type="DWORD" Expected="2"/></RegKey><RegKey Status="Ok" Path="HKEY_LOCAL_MACHINE:SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows"><RegValue Status="Ok" Name="LoadAppInit_DLLs" Type="DWORD" Expected="1"/><RegValue Status="Ok" Name="AppInit_DLLs" Type="String" Expected="C:\Windows\system32\guard32.dll" Comparsion="FindSubstring"/></RegKey></Registry><Files Status="Ok"><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\cfp.exe"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\themes\default.set"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\themes\default.theme"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\cfplogvw.exe"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\cfpupdat.exe"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\cavscan.exe"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\crashrep.exe"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\cfpver.dat"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\incompatsw.ini"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\eula.rtf"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\cmdinstall.exe"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\validation.list"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\msica.dll"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\framework.dll"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\platform.dll"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\signmgr.dll"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\scanners\common.cav"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\scanners\dosmz.cav"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\scanners\dunpack.cav"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\scanners\fileID.cav"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\scanners\first.cav"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\scanners\heur.cav"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\scanners\mach32.dll"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\scanners\mem.cav"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\scanners\pe.cav"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\scanners\pe32.cav"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\scanners\pkann.dll"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\scanners\script.cav"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\scanners\unarch.cav"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\scanners\unpack.cav"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\scanners\scrtemu.cav"/><File Status="Ok" Path="C:\Program Files\COMODO\COMODO Internet Security\scanners\white.cav"/><File Status="Ok" Path="C:\Windows\system32\drivers\cmdguard.sys"/><File Status="Ok" Path="C:\Windows\system32\drivers\cmderd.sys"/><File Status="Ok" Path="C:\Windows\system32\drivers\inspect.sys"/><File Status="Ok" Path="C:\Windows\system32\drivers\cmdhlp.sys"/><File Status="Ok" Path="C:\Windows\system32\guard32.dll"/></Files><Components Status="Failed"><NetComponent Status="Failed" Name="inspect"/><Com Status="Ok" Module="C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll"/><Service Status="Ok" Name="cmdagent"/></Components><Configurations Status="Ok"/><Options Status="Ok"/><IncompatibleSoftware><Software Name="avast! Internet Security"/><Software Name="avast! Free Antivirus"/></IncompatibleSoftware><Processes><Process Path="C:\Windows\system32\taskhost.exe"><Modules><Module Path="C:\Windows\SYSTEM32\ntdll.dll"/><Module Path="C:\Windows\system32\kernel32.dll"/><Module Path="C:\Windows\system32\KERNELBASE.dll"/><Module Path="C:\Windows\system32\msvcrt.dll"/><Module Path="C:\Windows\system32\ole32.dll"/><Module Path="C:\Windows\system32\GDI32.dll"/><Module Path="C:\Windows\system32\USER32.dll"/><Module Path="C:\Windows\system32\LPK.dll"/><Module Path="C:\Windows\system32\USP10.dll"/><Module Path="C:\Windows\system32\RPCRT4.dll"/><Module Path="C:\Windows\system32\OLEAUT32.dll"/><Module Path="C:\Windows\system32\IMM32.DLL"/><Module Path="C:\Windows\system32\MSCTF.dll"/><Module Path="C:\Windows\system32\guard32.dll"/><Module Path="C:\Windows\system32\ADVAPI32.dll"/><Module Path="C:\Windows\SYSTEM32\sechost.dll"/><Module Path="C:\Windows\system32\VERSION.dll"/><Module Path="C:\Windows\system32\fltlib.dll"/><Module Path="C:\Windows\system32\CRYPTBASE.dll"/><Module Path="C:\Windows\system32\dwmapi.dll"/><Module Path="C:\Windows\system32\CLBCatQ.DLL"/><Module Path="C:\Windows\System32\HotStartUserAgent.dll"/><Module Path="C:\Windows\system32\slc.dll"/><Module Path="C:\Windows\System32\PlaySndSrv.dll"/><Module Path="C:\Windows\system32\MsCtfMonitor.dll"/><Module Path="C:\Windows\system32\MSUTB.dll"/><Module Path="C:\Windows\system32\WINSTA.dll"/><Module Path="C:\Windows\system32\WTSAPI32.dll"/><Module Path="C:\Windows\system32\RpcRtRemote.dll"/><Module Path="C:\Windows\system32\uxtheme.dll"/><Module Path="C:\Windows\system32\WINMM.dll"/><Module Path="C:\Windows\system32\dimsjob.dll"/><Module Path="C:\Windows\system32\SHLWAPI.dll"/><Module Path="C:\Windows\system32\taskschd.dll"/><Module Path="C:\Windows\system32\SspiCli.dll"/><Module Path="C:\Windows\System32\netprofm.dll"/><Module Path="C:\Windows\system32\NSI.dll"/><Module Path="C:\Windows\System32\nlaapi.dll"/><Module Path="C:\Windows\system32\CRYPTSP.dll"/><Module Path="C:\Windows\system32\rsaenh.dll"/><Module Path="C:\Windows\System32\npmproxy.dll"/><Module Path="C:\Windows\system32\dsrole.dll"/><Module Path="C:\Windows\system32\MMDevAPI.DLL"/><Module Path="C:\Windows\system32\PROPSYS.dll"/><Module Path="C:\Windows\system32\wdmaud.drv"/><Module Path="C:\Windows\system32\ksuser.dll"/><Module Path="C:\Windows\system32\AVRT.dll"/><Module Path="C:\Windows\system32\SETUPAPI.dll"/><Module Path="C:\Windows\system32\CFGMGR32.dll"/><Module Path="C:\Windows\system32\DEVOBJ.dll"/><Module Path="C:\Windows\system32\AUDIOSES.DLL"/><Module Path="C:\Windows\system32\msacm32.drv"/><Module Path="C:\Windows\system32\MSACM32.dll"/><Module Path="C:\Windows\system32\midimap.dll"/></Modules></Process><Process Path="C:\Windows\system32\Dwm.exe"><Modules><Module Path="C:\Windows\SYSTEM32\ntdll.dll"/><Module Path="C:\Windows\system32\kernel32.dll"/><Module Path="C:\Windows\system32\KERNELBASE.dll"/><Module Path="C:\Windows\system32\GDI32.dll"/><Module Path="C:\Windows\system32\USER32.dll"/><Module Path="C:\Windows\system32\LPK.dll"/><Module Path="C:\Windows\system32\USP10.dll"/><Module Path="C:\Windows\system32\msvcrt.dll"/><Module Path="C:\Windows\system32\UxTheme.dll"/><Module Path="C:\Windows\system32\IMM32.dll"/><Module Path="C:\Windows\system32\MSCTF.dll"/><Module Path="C:\Windows\system32\dwmredir.dll"/><Module Path="C:\Windows\system32\dwmcore.dll"/><Module Path="C:\Windows\system32\ADVAPI32.dll"/><Module Path="C:\Windows\SYSTEM32\sechost.dll"/><Module Path="C:\Windows\system32\RPCRT4.dll"/><Module Path="C:\Windows\system32\WindowsCodecs.dll"/><Module Path="C:\Windows\system32\ole32.dll"/><Module Path="C:\Windows\system32\d3d10_1.dll"/><Module Path="C:\Windows\system32\d3d10_1core.dll"/><Module Path="C:\Windows\system32\dxgi.dll"/><Module Path="C:\Windows\system32\VERSION.dll"/><Module Path="C:\Windows\system32\dwmapi.dll"/><Module Path="C:\Windows\system32\guard32.dll"/><Module Path="C:\Windows\system32\fltlib.dll"/><Module Path="C:\Windows\system32\WINTRUST.dll"/><Module Path="C:\Windows\system32\CRYPT32.dll"/><Module Path="C:\Windows\system32\MSASN1.dll"/></Modules></Process><Process Path="C:\Windows\Explorer.EXE"><Modules><Module Path="C:\Windows\SYSTEM32\ntdll.dll"/><Module Path="C:\Windows\system32\kernel32.dll"/><Module Path="C:\Windows\system32\KERNELBASE.dll"/><Module Path="C:\Windows\system32\ADVAPI32.dll"/><Module Path="C:\Windows\system32\msvcrt.dll"/><Module Path="C:\Windows\SYSTEM32\sechost.dll"/><Module Path="C:\Windows\system32\RPCRT4.dll"/><Module Path="C:\Windows\system32\GDI32.dll"/><Module Path="C:\Windows\system32\USER32.dll"/><Module Path="C:\Windows\system32\LPK.dll"/><Module Path="C:\Windows\system32\USP10.dll"/><Module Path="C:\Windows\system32\SHLWAPI.dll"/><Module Path="C:\Windows\system32\SHELL32.dll"/><Module Path="C:\Windows\system32\ole32.dll"/><Module Path="C:\Windows\system32\OLEAUT32.dll"/><Module Path="C:\Windows\system32\EXPLORERFRAME.dll"/><Module Path="C:\Windows\system32\DUser.dll"/><Module Path="C:\Windows\system32\DUI70.dll"/><Module Path="C:\Windows\system32\IMM32.dll"/><Module Path="C:\Windows\system32\MSCTF.dll"/><Module Path="C:\Windows\system32\UxTheme.dll"/><Module Path="C:\Windows\system32\POWRPROF.dll"/><Module Path="C:\Windows\system32\SETUPAPI.dll"/><Module Path="C:\Windows\system32\CFGMGR32.dll"/><Module Path="C:\Windows\system32\DEVOBJ.dll"/><Module Path="C:\Windows\system32\dwmapi.dll"/><Module Path="C:\Windows\system32\slc.dll"/><Module Path="C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll"/><Module Path="C:\Windows\system32\Secur32.dll"/><Module Path="C:\Windows\system32\SSPICLI.DLL"/><Module Path="C:\Windows\system32\PROPSYS.dll"/><Module Path="C:\Windows\system32\guard32.dll"/><Module Path="C:\Windows\system32\VERSION.dll"/><Module Path="C:\Windows\system32\fltlib.dll"/><Module Path="C:\Windows\system32\CRYPTBASE.dll"/><Module Path="C:\Windows\system32\CLBCatQ.DLL"/><Module Path="C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll"/><Module Path="C:\Windows\system32\WindowsCodecs.dll"/><Module Path="C:\Windows\system32\profapi.dll"/><Module Path="C:\Windows\system32\apphelp.dll"/><Module Path="C:\Windows\system32\EhStorShell.dll"/><Module Path="C:\Windows\System32\cscui.dll"/><Module Path="C:\Windows\System32\CSCDLL.dll"/><Module Path="C:\Windows\system32\CSCAPI.dll"/><Module Path="C:\Windows\system32\ntshrui.dll"/><Module Path="C:\Windows\system32\srvcli.dll"/><Module Path="C:\Windows\system32\IconCodecService.dll"/><Module Path="C:\Windows\system32\CRYPTSP.dll"/><Module Path="C:\Windows\system32\rsaenh.dll"/><Module Path="C:\Windows\system32\RpcRtRemote.dll"/><Module Path="C:\Windows\system32\SndVolSSO.DLL"/><Module Path="C:\Windows\system32\HID.DLL"/><Module Path="C:\Windows\System32\MMDevApi.dll"/><Module Path="C:\Windows\system32\timedate.cpl"/><Module Path="C:\Windows\system32\ATL.DLL"/><Module Path="C:\Windows\system32\WINBRAND.dll"/><Module Path="C:\Windows\system32\actxprxy.dll"/><Module Path="C:\Windows\system32\ntmarta.dll"/><Module Path="C:\Windows\system32\WLDAP32.dll"/><Module Path="C:\Windows\System32\shdocvw.dll"/><Module Path="C:\Windows\system32\LINKINFO.dll"/><Module Path="C:\Windows\system32\msiltcfg.dll"/><Module Path="C:\Windows\system32\msi.dll"/><Module Path="C:\Windows\system32\msutb.dll"/><Module Path="C:\Windows\system32\USERENV.dll"/><Module Path="C:\Windows\System32\shacct.dll"/><Module Path="C:\Windows\system32\SAMLIB.dll"/><Module Path="C:\Windows\system32\samcli.dll"/><Module Path="C:\Windows\system32\netutils.dll"/><Module Path="C:\Windows\system32\msls31.dll"/><Module Path="C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll"/><Module Path="C:\Windows\system32\authui.dll"/><Module Path="C:\Windows\system32\CRYPTUI.dll"/><Module Path="C:\Windows\system32\CRYPT32.dll"/><Module Path="C:\Windows\system32\MSASN1.dll"/><Module Path="C:\Windows\system32\urlmon.dll"/><Module Path="C:\Windows\system32\iertutil.dll"/><Module Path="C:\Windows\system32\SearchFolder.dll"/><Module Path="C:\Windows\system32\XmlLite.dll"/><Module Path="C:\Windows\system32\thumbcache.dll"/><Module Path="C:\Windows\system32\PSAPI.DLL"/><Module Path="C:\Windows\system32\NetworkExplorer.dll"/><Module Path="C:\Windows\system32\WINMM.dll"/><Module Path="C:\Windows\system32\wdmaud.drv"/><Module Path="C:\Windows\system32\ksuser.dll"/><Module Path="C:\Windows\system32\AVRT.dll"/><Module Path="C:\Windows\system32\AUDIOSES.DLL"/><Module Path="C:\Windows\system32\msacm32.drv"/><Module Path="C:\Windows\system32\MSACM32.dll"/><Module Path="C:\Windows\system32\midimap.dll"/><Module Path="C:\Windows\system32\WININET.dll"/><Module Path="C:\Windows\system32\Normaliz.dll"/><Module Path="C:\Windows\System32\gameux.dll"/><Module Path="C:\Windows\System32\wer.dll"/><Module Path="C:\Windows\system32\stobject.dll"/><Module Path="C:\Windows\system32\BatMeter.dll"/><Module Path="C:\Windows\system32\WINSTA.dll"/><Module Path="C:\Windows\system32\WTSAPI32.dll"/><Module Path="C:\Windows\system32\WINTRUST.dll"/><Module Path="C:\Windows\system32\es.dll"/><Module Path="C:\Windows\system32\prnfldr.dll"/><Module Path="C:\Windows\system32\WINSPOOL.DRV"/><Module Path="C:\Windows\system32\dxp.dll"/><Module Path="C:\Windows\system32\Syncreg.dll"/><Module Path="C:\Windows\ehome\ehSSO.dll"/><Module Path="C:\Windows\System32\netshell.dll"/><Module Path="C:\Windows\System32\IPHLPAPI.DLL"/><Module Path="C:\Windows\system32\NSI.dll"/><Module Path="C:\Windows\System32\WINNSI.DLL"/><Module Path="C:\Windows\System32\nlaapi.dll"/><Module Path="C:\Windows\system32\wpdshserviceobj.dll"/><Module Path="C:\Windows\system32\PortableDeviceTypes.dll"/><Module Path="C:\Windows\system32\PortableDeviceApi.dll"/><Module Path="C:\Program Files\WinSCP\DragExt.dll"/><Module Path="C:\Windows\System32\cscobj.dll"/><Module Path="C:\Windows\System32\srchadmin.dll"/><Module Path="C:\Windows\System32\Actioncenter.dll"/><Module Path="C:\Windows\System32\wevtapi.dll"/><Module Path="C:\Windows\System32\AltTab.dll"/><Module Path="C:\Windows\system32\fxsst.dll"/><Module Path="C:\Windows\system32\FXSAPI.dll"/><Module Path="C:\Windows\system32\FXSRESM.DLL"/><Module Path="C:\Windows\System32\pnidui.dll"/><Module Path="C:\Windows\System32\QUtil.dll"/><Module Path="C:\Windows\System32\bthprops.cpl"/><Module Path="C:\Windows\system32\dhcpcsvc.DLL"/><Module Path="C:\Windows\system32\WS2_32.dll"/><Module Path="C:\Windows\system32\dhcpcsvc6.DLL"/><Module Path="C:\Windows\system32\OLEACC.dll"/><Module Path="C:\Windows\system32\DEVRTL.dll"/><Module Path="C:\Windows\System32\npmproxy.dll"/><Module Path="C:\Windows\system32\MPR.dll"/><Module Path="C:\Windows\system32\MsftEdit.dll"/><Module Path="C:\Windows\system32\SXS.DLL"/><Module Path="C:\Windows\System32\SyncCenter.dll"/><Module Path="C:\PROGRA~1\SPYBOT~1\SDHelper.dll"/><Module Path="C:\Windows\system32\comdlg32.dll"/><Module Path="C:\Windows\system32\wsock32.dll"/><Module Path="C:\Windows\system32\msimg32.dll"/><Module Path="C:\Windows\system32\faultrep.dll"/><Module Path="C:\Windows\system32\olepro32.dll"/><Module Path="C:\Windows\system32\jsproxy.dll"/><Module Path="C:\Program Files\Internet Explorer\ieproxy.dll"/><Module Path="C:\Windows\system32\ieframe.DLL"/><Module Path="C:\Windows\System32\StructuredQuery.dll"/><Module Path="C:\Windows\system32\NetworkItemFactory.dll"/><Module Path="C:\Windows\system32\dtsh.dll"/><Module Path="C:\Windows\system32\FirewallAPI.dll"/><Module Path="C:\Program Files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll"/><Module Path="C:\Windows\System32\drprov.dll"/><Module Path="C:\Windows\System32\ntlanman.dll"/><Module Path="C:\Windows\System32\davclnt.dll"/><Module Path="C:\Windows\System32\DAVHLPR.dll"/><Module Path="C:\Windows\system32\wkscli.dll"/><Module Path="C:\Windows\system32\EhStorAPI.dll"/><Module Path="C:\Windows\system32\mssprxy.dll"/><Module Path="C:\Windows\System32\wscinterop.dll"/><Module Path="C:\Windows\System32\WSCAPI.dll"/><Module Path="C:\Windows\System32\wscui.cpl"/><Module Path="C:\Windows\System32\werconcpl.dll"/><Module Path="C:\Windows\System32\framedynos.dll"/><Module Path="C:\Windows\System32\wercplsupport.dll"/><Module Path="C:\Windows\system32\wbem\wbemprox.dll"/><Module Path="C:\Windows\system32\wbemcomn.dll"/><Module Path="C:\Windows\System32\msxml6.dll"/><Module Path="C:\Windows\system32\dnsapi.DLL"/><Module Path="C:\Windows\system32\wbem\wbemsvc.dll"/><Module Path="C:\Windows\system32\wbem\fastprox.dll"/><Module Path="C:\Windows\system32\NTDSAPI.dll"/><Module Path="C:\Windows\System32\hcproviders.dll"/><Module Path="C:\Windows\system32\FunDisc.dll"/><Module Path="C:\Windows\System32\fdwcn.dll"/><Module Path="C:\Windows\System32\wcnapi.dll"/><Module Path="C:\Windows\system32\fdWNet.dll"/><Module Path="C:\Windows\system32\dfscli.dll"/><Module Path="C:\Windows\system32\browcli.dll"/><Module Path="C:\Windows\system32\Wlanapi.dll"/><Module Path="C:\Windows\system32\wlanutil.dll"/><Module Path="C:\Windows\system32\wwanapi.dll"/><Module Path="C:\Windows\system32\wwapi.dll"/><Module Path="C:\Windows\System32\QAgent.dll"/><Module Path="C:\Windows\system32\imapi2.dll"/><Module Path="C:\Windows\System32\provsvc.dll"/><Module Path="C:\Windows\System32\hgcpl.dll"/><Module Path="C:\Windows\System32\netprofm.dll"/><Module Path="C:\Windows\system32\ddraw.dll"/><Module Path="C:\Windows\system32\DCIMAN32.dll"/><Module Path="C:\Windows\system32\MLANG.dll"/><Module Path="C:\Windows\System32\mf.dll"/><Module Path="C:\Windows\System32\MFPlat.DLL"/></Modules></Process><Process Path="C:\Program Files\Avira\AntiVir Desktop\avgnt.exe"><Modules><Module Path="C:\Windows\SYSTEM32\ntdll.dll"/><Module Path="C:\Windows\system32\kernel32.dll"/><Module Path="C:\Windows\system32\KERNELBASE.dll"/><Module Path="C:\Windows\WinSxS\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.4148_none_4bf5400abf9d60b7\mfc90u.dll"/><Module Path="C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4926_none_508ed732bcbc0e5a\MSVCR90.dll"/><Module Path="C:\Windows\system32\USER32.dll"/><Module Path="C:\Windows\system32\GDI32.dll"/><Module Path="C:\Windows\system32\LPK.dll"/><Module Path="C:\Windows\system32\USP10.dll"/><Module Path="C:\Windows\system32\msvcrt.dll"/><Module Path="C:\Windows\system32\SHLWAPI.dll"/><Module Path="C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\COMCTL32.dll"/><Module Path="C:\Windows\system32\MSIMG32.dll"/><Module Path="C:\Windows\system32\ADVAPI32.dll"/><Module Path="C:\Windows\SYSTEM32\sechost.dll"/><Module Path="C:\Windows\system32\RPCRT4.dll"/><Module Path="C:\Windows\system32\SHELL32.dll"/><Module Path="C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4926_none_508ed732bcbc0e5a\MSVCP90.dll"/><Module Path="C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll"/><Module Path="C:\Windows\system32\ole32.dll"/><Module Path="C:\Windows\system32\IMM32.DLL"/><Module Path="C:\Windows\system32\MSCTF.dll"/><Module Path="C:\Windows\system32\UxTheme.dll"/><Module Path="C:\Windows\system32\dwmapi.dll"/><Module Path="C:\Windows\WinSxS\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.4148_none_4973eb1d754a9dc9\MFC90ENU.DLL"/><Module Path="C:\Windows\system32\guard32.dll"/><Module Path="C:\Windows\system32\VERSION.dll"/><Module Path="C:\Windows\system32\fltlib.dll"/><Module Path="C:\Program Files\Avira\AntiVir Desktop\ccwkrlib.dll"/><Module Path="c:\program files\avira\antivir desktop\cfglib.dll"/><Module Path="C:\Windows\system32\profapi.dll"/><Module Path="C:\Windows\system32\SspiCli.dll"/><Module Path="c:\program files\avira\antivir desktop\ccgen.dll"/><Module Path="C:\Windows\system32\NETAPI32.dll"/><Module Path="C:\Windows\system32\netutils.dll"/><Module Path="C:\Windows\system32\srvcli.dll"/><Module Path="C:\Windows\system32\wkscli.dll"/><Module Path="C:\Windows\system32\SAMCLI.DLL"/><Module Path="C:\Windows\system32\OLEAUT32.dll"/><Module Path="c:\program files\avira\antivir desktop\ccgenrc.dll"/><Module Path="c:\program files\avira\antivir desktop\ccguard.dll"/><Module Path="C:\Windows\system32\PSAPI.DLL"/><Module Path="c:\program files\avira\antivir desktop\ccgrdrc.dll"/><Module Path="c:\program files\avira\antivir desktop\ccgrdw.dll"/><Module Path="C:\Program Files\Avira\AntiVir Desktop\avipc.dll"/><Module Path="c:\program files\avira\antivir desktop\ccupdate.dll"/><Module Path="c:\program files\avira\antivir desktop\ccupdrc.dll"/><Module Path="c:\program files\avira\antivir desktop\cclic.dll"/><Module Path="c:\program files\avira\antivir desktop\cclicrc.dll"/><Module Path="c:\program files\avira\antivir desktop\ccmsg.dll"/><Module Path="c:\program files\avira\antivir desktop\ccmsgrc.dll"/><Module Path="C:\Program Files\Avira\AntiVir Desktop\rcimage.dll"/><Module Path="C:\Windows\system32\WindowsCodecs.dll"/><Module Path="C:\Windows\system32\wtsapi32.dll"/><Module Path="C:\Windows\system32\WINSTA.dll"/><Module Path="c:\program files\avira\antivir desktop\ccmainrc.dll"/></Modules></Process><Process Path="C:\Program Files\COMODO\COMODO Internet Security\cfp.exe"><Modules><Module Path="C:\Windows\SYSTEM32\ntdll.dll"/><Module Path="C:\Windows\system32\kernel32.dll"/><Module Path="C:\Windows\system32\KERNELBASE.dll"/><Module Path="C:\Windows\system32\IPHLPAPI.DLL"/><Module Path="C:\Windows\system32\msvcrt.dll"/><Module Path="C:\Windows\system32\NSI.dll"/><Module Path="C:\Windows\system32\WINNSI.DLL"/><Module Path="C:\Windows\system32\RPCRT4.dll"/><Module Path="C:\Windows\system32\USER32.dll"/><Module Path="C:\Windows\system32\GDI32.dll"/><Module Path="C:\Windows\system32\LPK.dll"/><Module Path="C:\Windows\system32\USP10.dll"/><Module Path="C:\Windows\system32\COMDLG32.dll"/><Module Path="C:\Windows\system32\SHLWAPI.dll"/><Module Path="C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\COMCTL32.dll"/><Module Path="C:\Windows\system32\SHELL32.dll"/><Module Path="C:\Windows\system32\WINSPOOL.DRV"/><Module Path="C:\Windows\system32\ADVAPI32.dll"/><Module Path="C:\Windows\SYSTEM32\sechost.dll"/><Module Path="C:\Windows\system32\oledlg.dll"/><Module Path="C:\Windows\system32\ole32.dll"/><Module Path="C:\Windows\system32\OLEAUT32.dll"/><Module Path="C:\Windows\system32\WTSAPI32.dll"/><Module Path="C:\Windows\system32\FLTLIB.DLL"/><Module Path="C:\Windows\system32\dbghelp.dll"/><Module Path="C:\Windows\system32\WININET.dll"/><Module Path="C:\Windows\system32\Normaliz.dll"/><Module Path="C:\Windows\system32\urlmon.dll"/><Module Path="C:\Windows\system32\CRYPT32.dll"/><Module Path="C:\Windows\system32\MSASN1.dll"/><Module Path="C:\Windows\system32\iertutil.dll"/><Module Path="C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll"/><Module Path="C:\Windows\system32\PSAPI.DLL"/><Module Path="C:\Windows\system32\VERSION.dll"/><Module Path="C:\Windows\system32\USERENV.dll"/><Module Path="C:\Windows\system32\profapi.dll"/><Module Path="C:\Windows\system32\MPR.dll"/><Module Path="C:\Windows\system32\WS2_32.dll"/><Module Path="C:\Windows\system32\WINMM.dll"/><Module Path="C:\Windows\system32\msi.dll"/><Module Path="C:\Windows\system32\IMM32.DLL"/><Module Path="C:\Windows\system32\MSCTF.dll"/><Module Path="C:\Windows\system32\CRYPTBASE.dll"/><Module Path="C:\Windows\system32\UXTHEME.DLL"/><Module Path="C:\Program Files\COMODO\COMODO Internet Security\Themes\default.theme"/><Module Path="C:\Windows\system32\WindowsCodecs.dll"/><Module Path="C:\Windows\system32\apphelp.dll"/><Module Path="C:\Windows\system32\CLBCatQ.DLL"/><Module Path="C:\Windows\system32\EhStorShell.dll"/><Module Path="C:\Windows\system32\SETUPAPI.dll"/><Module Path="C:\Windows\system32\CFGMGR32.dll"/><Module Path="C:\Windows\system32\DEVOBJ.dll"/><Module Path="C:\Windows\system32\PROPSYS.dll"/><Module Path="C:\Windows\System32\cscui.dll"/><Module Path="C:\Windows\System32\CSCDLL.dll"/><Module Path="C:\Windows\system32\CSCAPI.dll"/><Module Path="C:\Windows\system32\ntshrui.dll"/><Module Path="C:\Windows\system32\srvcli.dll"/><Module Path="C:\Windows\system32\slc.dll"/><Module Path="C:\Windows\System32\msxml3.dll"/><Module Path="C:\Windows\system32\SspiCli.dll"/><Module Path="C:\Windows\system32\ntmarta.dll"/><Module Path="C:\Windows\system32\WLDAP32.dll"/><Module Path="C:\Windows\system32\dnsapi.DLL"/><Module Path="C:\Windows\system32\RICHED20.DLL"/><Module Path="C:\Windows\system32\msimg32.dll"/><Module Path="C:\Windows\system32\WINSTA.dll"/><Module Path="C:\Windows\system32\LINKINFO.dll"/><Module Path="C:\Windows\system32\CRYPTSP.dll"/><Module Path="C:\Windows\system32\rsaenh.dll"/></Modules></Process><Process Path="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe"><Modules><Module Path="C:\Windows\SYSTEM32\ntdll.dll"/><Module Path="C:\Windows\system32\kernel32.dll"/><Module Path="C:\Windows\system32\KERNELBASE.dll"/><Module Path="C:\Windows\system32\oleaut32.dll"/><Module Path="C:\Windows\system32\ole32.dll"/><Module Path="C:\Windows\system32\msvcrt.dll"/><Module Path="C:\Windows\system32\GDI32.dll"/><Module Path="C:\Windows\system32\USER32.dll"/><Module Path="C:\Windows\system32\LPK.dll"/><Module Path="C:\Windows\system32\USP10.dll"/><Module Path="C:\Windows\system32\RPCRT4.dll"/><Module Path="C:\Windows\system32\advapi32.dll"/><Module Path="C:\Windows\SYSTEM32\sechost.dll"/><Module Path="C:\Windows\system32\version.dll"/><Module Path="C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll"/><Module Path="C:\Windows\system32\SHLWAPI.dll"/><Module Path="C:\Windows\system32\shell32.dll"/><Module Path="C:\Windows\system32\winspool.drv"/><Module Path="C:\Windows\system32\wininet.dll"/><Module Path="C:\Windows\system32\Normaliz.dll"/><Module Path="C:\Windows\system32\urlmon.dll"/><Module Path="C:\Windows\system32\CRYPT32.dll"/><Module Path="C:\Windows\system32\MSASN1.dll"/><Module Path="C:\Windows\system32\iertutil.dll"/><Module Path="C:\Windows\system32\IMM32.DLL"/><Module Path="C:\Windows\system32\MSCTF.dll"/><Module Path="C:\Windows\system32\guard32.dll"/><Module Path="C:\Windows\system32\fltlib.dll"/><Module Path="C:\Windows\system32\msimg32.dll"/><Module Path="C:\Windows\system32\hhctrl.ocx"/><Module Path="C:\Windows\system32\CRYPTBASE.dll"/><Module Path="C:\Windows\system32\CLBCatQ.DLL"/><Module Path="C:\Windows\system32\SETUPAPI.dll"/><Module Path="C:\Windows\system32\CFGMGR32.dll"/><Module Path="C:\Windows\system32\DEVOBJ.dll"/><Module Path="C:\Windows\system32\propsys.dll"/><Module Path="C:\Windows\system32\ntmarta.dll"/><Module Path="C:\Windows\system32\WLDAP32.dll"/><Module Path="C:\Windows\system32\profapi.dll"/><Module Path="C:\Windows\system32\jsproxy.dll"/><Module Path="C:\Windows\system32\psapi.dll"/><Module Path="C:\Program Files\Spybot - Search & Destroy\advcheck.dll"/><Module Path="C:\Windows\system32\SspiCli.dll"/><Module Path="C:\Windows\system32\uxtheme.dll"/></Modules></Process><Process Path="C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe"><Modules><Module Path="C:\Windows\SYSTEM32\ntdll.dll"/><Module Path="C:\Windows\system32\kernel32.dll"/><Module Path="C:\Windows\system32\KERNELBASE.dll"/><Module Path="C:\Windows\system32\USER32.dll"/><Module Path="C:\Windows\system32\GDI32.dll"/><Module Path="C:\Windows\system32\LPK.dll"/><Module Path="C:\Windows\system32\USP10.dll"/><Module Path="C:\Windows\system32\msvcrt.dll"/><Module Path="C:\Windows\system32\ADVAPI32.dll"/><Module Path="C:\Windows\SYSTEM32\sechost.dll"/><Module Path="C:\Windows\system32\RPCRT4.dll"/><Module Path="C:\Windows\system32\SHELL32.dll"/><Module Path="C:\Windows\system32\SHLWAPI.dll"/><Module Path="C:\Windows\system32\ole32.dll"/><Module Path="C:\Windows\system32\OLEAUT32.dll"/><Module Path="C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\COMCTL32.dll"/><Module Path="C:\Windows\system32\PSAPI.DLL"/><Module Path="C:\Windows\system32\IMM32.DLL"/><Module Path="C:\Windows\system32\MSCTF.dll"/><Module Path="C:\Windows\system32\guard32.dll"/><Module Path="C:\Windows\system32\VERSION.dll"/><Module Path="C:\Windows\system32\fltlib.dll"/><Module Path="C:\Windows\system32\CRYPTBASE.dll"/><Module Path="C:\Windows\system32\CLBCatQ.DLL"/><Module Path="C:\Windows\system32\CRYPTSP.dll"/><Module Path="C:\Windows\system32\rsaenh.dll"/><Module Path="C:\Windows\system32\RpcRtRemote.dll"/><Module Path="C:\Windows\system32\SXS.DLL"/><Module Path="C:\Windows\system32\profapi.dll"/><Module Path="C:\Windows\system32\UxTheme.dll"/><Module Path="C:\Windows\system32\PROPSYS.dll"/><Module Path="C:\Windows\system32\ntmarta.dll"/><Module Path="C:\Windows\system32\WLDAP32.dll"/><Module Path="C:\Windows\system32\urlmon.dll"/><Module Path="C:\Windows\system32\CRYPT32.dll"/><Module Path="C:\Windows\system32\MSASN1.dll"/><Module Path="C:\Windows\system32\iertutil.dll"/><Module Path="C:\Windows\system32\WININET.dll"/><Module Path="C:\Windows\system32\Normaliz.dll"/><Module Path="C:\Windows\system32\SspiCli.dll"/><Module Path="C:\Windows\system32\SETUPAPI.dll"/><Module Path="C:\Windows\system32\CFGMGR32.dll"/><Module Path="C:\Windows\system32\DEVOBJ.dll"/><Module Path="C:\Windows\system32\MPR.dll"/></Modules></Process><Process Path="C:\Program Files\Mozilla Firefox\firefox.exe"><Modules><Module Path="C:\Windows\SYSTEM32\ntdll.dll"/><Module Path="C:\Windows\system32\kernel32.dll"/><Module Path="C:\Windows\system32\KERNELBASE.dll"/><Module Path="C:\Program Files\Mozilla Firefox\xul.dll"/><Module Path="C:\Program Files\Mozilla Firefox\sqlite3.dll"/><Module Path="C:\Program Files\Mozilla Firefox\MOZCRT19.dll"/><Module Path="C:\Windows\system32\msvcrt.dll"/><Module Path="C:\Program Files\Mozilla Firefox\js3250.dll"/><Module Path="C:\Program Files\Mozilla Firefox\nspr4.dll"/><Module Path="C:\Windows\system32\ADVAPI32.dll"/><Module Path="C:\Windows\SYSTEM32\sechost.dll"/><Module Path="C:\Windows\system32\RPCRT4.dll"/><Module Path="C:\Windows\system32\WSOCK32.dll"/><Module Path="C:\Windows\system32\WS2_32.dll"/><Module Path="C:\Windows\system32\NSI.dll"/><Module Path="C:\Windows\system32\WINMM.dll"/><Module Path="C:\Windows\system32\USER32.dll"/><Module Path="C:\Windows\system32\GDI32.dll"/><Module Path="C:\Windows\system32\LPK.dll"/><Module Path="C:\Windows\system32\USP10.dll"/><Module Path="C:\Program Files\Mozilla Firefox\smime3.dll"/><Module Path="C:\Program Files\Mozilla Firefox\nss3.dll"/><Module Path="C:\Program Files\Mozilla Firefox\nssutil3.dll"/><Module Path="C:\Program Files\Mozilla Firefox\plc4.dll"/><Module Path="C:\Program Files\Mozilla Firefox\plds4.dll"/><Module Path="C:\Program Files\Mozilla Firefox\ssl3.dll"/><Module Path="C:\Windows\system32\SHELL32.dll"/><Module Path="C:\Windows\system32\SHLWAPI.dll"/><Module Path="C:\Windows\system32\ole32.dll"/><Module Path="C:\Windows\system32\VERSION.dll"/><Module Path="C:\Windows\system32\WINSPOOL.DRV"/><Module Path="C:\Windows\system32\COMDLG32.dll"/><Module Path="C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\COMCTL32.dll"/><Module Path="C:\Windows\system32\IMM32.dll"/><Module Path="C:\Windows\system32\MSCTF.dll"/><Module Path="C:\Windows\system32\MSIMG32.dll"/><Module Path="C:\Windows\system32\OLEAUT32.dll"/><Module Path="C:\Program Files\Mozilla Firefox\MOZCPP19.dll"/><Module Path="C:\Program Files\Mozilla Firefox\xpcom.dll"/><Module Path="C:\Windows\system32\uxtheme.dll"/><Module Path="C:\Windows\system32\dwmapi.dll"/><Module Path="C:\Windows\system32\guard32.dll"/><Module Path="C:\Windows\system32\fltlib.dll"/><Module Path="C:\Windows\system32\dbghelp.dll"/><Module Path="C:\Windows\system32\CRYPTBASE.dll"/><Module Path="C:\Windows\system32\CLBCatQ.DLL"/><Module Path="C:\Windows\system32\propsys.dll"/><Module Path="C:\Windows\system32\ntmarta.dll"/><Module Path="C:\Windows\system32\WLDAP32.dll"/><Module Path="C:\Windows\system32\SETUPAPI.dll"/><Module Path="C:\Windows\system32\CFGMGR32.dll"/><Module Path="C:\Windows\system32\DEVOBJ.dll"/><Module Path="C:\Program Files\Mozilla Firefox\components\browserdirprovider.dll"/><Module Path="C:\Windows\system32\mswsock.dll"/><Module Path="C:\Windows\System32\wshtcpip.dll"/><Module Path="C:\Windows\system32\iphlpapi.dll"/><Module Path="C:\Windows\system32\WINNSI.DLL"/><Module Path="C:\Windows\system32\t2embed.dll"/><Module Path="C:\Program Files\Mozilla Firefox\components\brwsrcmp.dll"/><Module Path="C:\Windows\system32\NLAapi.dll"/><Module Path="C:\Windows\system32\DNSAPI.dll"/><Module Path="C:\Windows\System32\winrnr.dll"/><Module Path="C:\Windows\system32\napinsp.dll"/><Module Path="C:\Windows\system32\pnrpnsp.dll"/><Module Path="C:\Windows\system32\wshbth.dll"/><Module Path="C:\Program Files\Bonjour\mdnsNSP.dll"/><Module Path="C:\Windows\system32\WindowsCodecs.dll"/><Module Path="C:\Windows\system32\apphelp.dll"/><Module Path="C:\Windows\system32\EhStorShell.dll"/><Module Path="C:\Windows\System32\cscui.dll"/><Module Path="C:\Windows\System32\CSCDLL.dll"/><Module Path="C:\Windows\system32\CSCAPI.dll"/><Module Path="C:\Windows\system32\ntshrui.dll"/><Module Path="C:\Windows\system32\srvcli.dll"/><Module Path="C:\Windows\system32\slc.dll"/><Module Path="C:\Windows\system32\CRYPTSP.dll"/><Module Path="C:\Windows\system32\rsaenh.dll"/><Module Path="C:\Windows\system32\RpcRtRemote.dll"/><Module Path="C:\Windows\system32\shdocvw.dll"/><Module Path="C:\Program Files\Mozilla Firefox\softokn3.dll"/><Module Path="C:\Program Files\Mozilla Firefox\nssdbm3.dll"/><Module Path="C:\Program Files\Mozilla Firefox\freebl3.dll"/><Module Path="C:\Program Files\Mozilla Firefox\nssckbi.dll"/><Module Path="C:\Windows\System32\wship6.dll"/><Module Path="C:\Windows\system32\rasadhlp.dll"/><Module Path="C:\Windows\System32\fwpuclnt.dll"/><Module Path="C:\Windows\system32\mscms.dll"/><Module Path="C:\Windows\system32\USERENV.dll"/><Module Path="C:\Windows\system32\profapi.dll"/><Module Path="C:\Windows\system32\explorerframe.dll"/><Module Path="C:\Windows\system32\DUser.dll"/><Module Path="C:\Windows\system32\DUI70.dll"/></Modules></Process><Process Path="C:\Program Files\TuneUp Utilities 2011\integrator.exe"><Modules><Module Path="C:\Windows\SYSTEM32\ntdll.dll"/><Module Path="C:\Windows\system32\kernel32.dll"/><Module Path="C:\Windows\system32\KERNELBASE.dll"/><Module Path="C:\Program Files\TuneUp Utilities 2011\rtl120.bpl"/><Module Path="C:\Windows\system32\oleaut32.dll"/><Module Path="C:\Windows\system32\ole32.dll"/><Module Path="C:\Windows\system32\msvcrt.dll"/><Module Path="C:\Windows\system32\GDI32.dll"/><Module Path="C:\Windows\system32\USER32.dll"/><Module Path="C:\Windows\system32\LPK.dll"/><Module Path="C:\Windows\system32\USP10.dll"/><Module Path="C:\Windows\system32\RPCRT4.dll"/><Module Path="C:\Windows\system32\advapi32.dll"/><Module Path="C:\Windows\SYSTEM32\sechost.dll"/><Module Path="C:\Windows\system32\version.dll"/><Module Path="C:\Windows\system32\mpr.dll"/><Module Path="C:\Windows\system32\IMAGEHLP.DLL"/><Module Path="C:\Windows\system32\wsock32.dll"/><Module Path="C:\Windows\system32\WS2_32.dll"/><Module Path="C:\Windows\system32\NSI.dll"/><Module Path="C:\Windows\system32\oleacc.dll"/><Module Path="C:\Program Files\TuneUp Utilities 2011\ProgramRating.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\vcl120.bpl"/><Module Path="C:\Windows\system32\msimg32.dll"/><Module Path="C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll"/><Module Path="C:\Windows\system32\SHLWAPI.dll"/><Module Path="C:\Windows\system32\shell32.dll"/><Module Path="C:\Windows\system32\comdlg32.dll"/><Module Path="C:\Windows\system32\winspool.drv"/><Module Path="C:\Windows\system32\oledlg.dll"/><Module Path="C:\Windows\system32\wininet.dll"/><Module Path="C:\Windows\system32\Normaliz.dll"/><Module Path="C:\Windows\system32\urlmon.dll"/><Module Path="C:\Windows\system32\CRYPT32.dll"/><Module Path="C:\Windows\system32\MSASN1.dll"/><Module Path="C:\Windows\system32\iertutil.dll"/><Module Path="C:\Program Files\TuneUp Utilities 2011\MainControls.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\GR32_D6.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\vclimg120.bpl"/><Module Path="C:\Windows\system32\winmm.dll"/><Module Path="C:\Program Files\TuneUp Utilities 2011\RegExp.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\XMLComponents.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\TUTransl.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\TUKernel.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\TUBasic.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\DEC.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\TUBase.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\TUCompression.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\vclx120.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\Html.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\SmallUnits.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\ntrtl60.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\SchedAgent_2007.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\VisControls.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\dxBarD12.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\dxCoreD12.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\dxComnD12.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\dxThemeD12.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\cxLibraryD12.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\dxGDIPlusD12.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\SysControls.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\ehs_d6.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\xmlrtl120.bpl"/><Module Path="C:\Windows\system32\Faultrep.dll"/><Module Path="C:\Windows\system32\PowrProf.dll"/><Module Path="C:\Windows\system32\SETUPAPI.dll"/><Module Path="C:\Windows\system32\CFGMGR32.dll"/><Module Path="C:\Windows\system32\DEVOBJ.dll"/><Module Path="C:\Program Files\TuneUp Utilities 2011\AppInitialization.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\tulic.dll"/><Module Path="C:\Windows\system32\SHFolder.dll"/><Module Path="C:\Program Files\TuneUp Utilities 2011\SysInfo.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\MSI_D6.bpl"/><Module Path="C:\Windows\system32\netapi32.dll"/><Module Path="C:\Windows\system32\netutils.dll"/><Module Path="C:\Windows\system32\srvcli.dll"/><Module Path="C:\Windows\system32\wkscli.dll"/><Module Path="C:\Program Files\TuneUp Utilities 2011\TUIcoEngineerDirTree.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\TUShell.bpl"/><Module Path="C:\Windows\system32\psapi.dll"/><Module Path="C:\Windows\system32\msi.dll"/><Module Path="C:\Windows\system32\IPHLPAPI.DLL"/><Module Path="C:\Windows\system32\WINNSI.DLL"/><Module Path="C:\Program Files\TuneUp Utilities 2011\TUShredder.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\TuningWizard.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\TUApps.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\TURar.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\TUApplications.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\TUOperaClass.bpl"/><Module Path="C:\Windows\system32\SAMCLI.DLL"/><Module Path="C:\Program Files\TuneUp Utilities 2011\Internet.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\Ics.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\TUTMSComponents.bpl"/><Module Path="C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll"/><Module Path="C:\Program Files\TuneUp Utilities 2011\dbrtl120.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\vcldb120.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\EmbeddedWebBrowser_D2006.bpl"/><Module Path="C:\Windows\system32\shdocvw.dll"/><Module Path="C:\Windows\system32\ieframe.DLL"/><Module Path="C:\Program Files\TuneUp Utilities 2011\TUDiskCleanerClass.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\IEControl.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\Traces.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\TUSafariClass.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\VirtualTreesR.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\CommonForms.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\dxBarExtItemsD12.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\dxSkinsCoreD12.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\dxDockingD12.bpl"/><Module Path="C:\Program Files\TuneUp Utilities 2011\dxRibbonD12.bpl"/><Module Path="C:\Windows\system32\IMM32.DLL"/><Module Path="C:\Windows\system32\MSCTF.dll"/><Module Path="C:\Windows\system32\guard32.dll"/><Module Path="C:\Windows\system32\fltlib.dll"/><Module Path="C:\Windows\system32\profapi.dll"/><Module Path="C:\Windows\system32\CRYPTBASE.dll"/><Module Path="C:\Windows\system32\uxtheme.dll"/><Module Path="C:\Windows\system32\wscapi.dll"/><Module Path="C:\Windows\system32\BROWCLI.DLL"/><Module Path="C:\Windows\system32\LOGONCLI.DLL"/><Module Path="C:\Windows\system32\CLBCatQ.DLL"/><Module Path="C:\Windows\system32\propsys.dll"/><Module Path="C:\Windows\system32\ntmarta.dll"/><Module Path="C:\Windows\system32\WLDAP32.dll"/><Module Path="C:\Windows\system32\wbem\wbemprox.dll"/><Module Path="C:\Windows\system32\wbemcomn.dll"/><Module Path="C:\Windows\system32\CRYPTSP.dll"/><Module Path="C:\Windows\system32\rsaenh.dll"/><Module Path="C:\Windows\system32\RpcRtRemote.dll"/><Module Path="C:\Windows\system32\wbem\wbemsvc.dll"/><Module Path="C:\Windows\system32\wbem\fastprox.dll"/><Module Path="C:\Windows\system32\NTDSAPI.dll"/><Module Path="C:\Program Files\TuneUp Utilities 2011\TUSqlDB32.dll"/><Module Path="C:\Windows\system32\olepro32.dll"/><Module Path="C:\Windows\system32\wtsapi32.dll"/><Module Path="C:\Windows\system32\SCHEDCLI.DLL"/><Module Path="C:\Windows\system32\SspiCli.dll"/><Module Path="C:\Windows\system32\cscapi.dll"/><Module Path="C:\Windows\system32\WINSTA.dll"/><Module Path="C:\Program Files\TuneUp Utilities 2011\TUPSAPI.dll"/><Module Path="C:\Windows\system32\irprops.cpl"/><Module Path="C:\Windows\system32\dwmapi.dll"/><Module Path="C:\Windows\system32\WindowsCodecs.dll"/><Module Path="C:\Windows\system32\SXS.DLL"/><Module Path="C:\Windows\system32\apphelp.dll"/><Module Path="C:\Windows\system32\EhStorShell.dll"/><Module Path="C:\Windows\System32\cscui.dll"/><Module Path="C:\Windows\System32\CSCDLL.dll"/><Module Path="C:\Windows\system32\ntshrui.dll"/><Module Path="C:\Windows\system32\slc.dll"/><Module Path="c:\Windows\system32\msxml4.dll"/><Module Path="C:\Windows\system32\SAMLIB.dll"/><Module Path="C:\Windows\system32\rasapi32.dll"/><Module Path="C:\Windows\system32\rasman.dll"/><Module Path="C:\Windows\system32\rtutils.dll"/><Module Path="C:\Program Files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll"/><Module Path="C:\Windows\System32\drprov.dll"/><Module Path="C:\Windows\System32\ntlanman.dll"/><Module Path="C:\Windows\System32\davclnt.dll"/><Module Path="C:\Windows\System32\DAVHLPR.dll"/><Module Path="C:\Windows\system32\dnsapi.DLL"/><Module Path="C:\Windows\System32\mshtml.dll"/><Module Path="C:\Windows\System32\msls31.dll"/><Module Path="C:\Windows\system32\mlang.dll"/><Module Path="C:\Windows\system32\msimtf.dll"/><Module Path="C:\Windows\system32\jscript.dll"/><Module Path="C:\Windows\system32\ImgUtil.dll"/><Module Path="C:\Windows\System32\pngfilt.dll"/><Module Path="C:\Windows\System32\Dxtrans.dll"/><Module Path="C:\Windows\System32\ATL.DLL"/><Module Path="C:\Windows\system32\ddrawex.dll"/><Module Path="C:\Windows\system32\DDRAW.dll"/><Module Path="C:\Windows\system32\DCIMAN32.dll"/><Module Path="C:\Windows\system32\igdumdx32.dll"/><Module Path="C:\Windows\system32\igdumd32.dll"/><Module Path="C:\Windows\System32\Dxtmsft.dll"/><Module Path="C:\Windows\System32\mstask.dll"/><Module Path="C:\Windows\system32\taskschd.dll"/><Module Path="C:\Windows\system32\XmlLite.dll"/><Module Path="C:\Windows\system32\wbem\wbemdisp.dll"/><Module Path="C:\Windows\system32\wbem\wmiutils.dll"/></Modules></Process><Process Path="C:\Program Files\COMODO\COMODO Internet Security\cfpconfg.exe"><Modules><Module Path="C:\Windows\SYSTEM32\ntdll.dll"/><Module Path="C:\Windows\system32\kernel32.dll"/><Module Path="C:\Windows\system32\KERNELBASE.dll"/><Module Path="C:\Windows\system32\msi.dll"/><Module Path="C:\Windows\system32\msvcrt.dll"/><Module Path="C:\Windows\system32\ADVAPI32.dll"/><Module Path="C:\Windows\SYSTEM32\sechost.dll"/><Module Path="C:\Windows\system32\RPCRT4.dll"/><Module Path="C:\Windows\system32\USER32.dll"/><Module Path="C:\Windows\system32\GDI32.dll"/><Module Path="C:\Windows\system32\LPK.dll"/><Module Path="C:\Windows\system32\USP10.dll"/><Module Path="C:\Windows\system32\SHLWAPI.dll"/><Module Path="C:\Windows\system32\ole32.dll"/><Module Path="C:\Windows\system32\COMDLG32.dll"/><Module Path="C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7600.16661_none_ebfb56996c72aefc\COMCTL32.dll"/><Module Path="C:\Windows\system32\SHELL32.dll"/><Module Path="C:\Windows\system32\WINSPOOL.DRV"/><Module Path="C:\Windows\system32\oledlg.dll"/><Module Path="C:\Windows\system32\OLEAUT32.dll"/><Module Path="C:\Windows\system32\WSOCK32.dll"/><Module Path="C:\Windows\system32\WS2_32.dll"/><Module Path="C:\Windows\system32\NSI.dll"/><Module Path="C:\Windows\system32\FLTLIB.DLL"/><Module Path="C:\Windows\system32\dbghelp.dll"/><Module Path="C:\Windows\system32\SETUPAPI.dll"/><Module Path="C:\Windows\system32\CFGMGR32.dll"/><Module Path="C:\Windows\system32\DEVOBJ.dll"/><Module Path="C:\Windows\system32\WINMM.dll"/><Module Path="C:\Windows\system32\PSAPI.DLL"/><Module Path="C:\Windows\system32\RASAPI32.dll"/><Module Path="C:\Windows\system32\rasman.dll"/><Module Path="C:\Windows\system32\MPR.dll"/><Module Path="C:\Windows\system32\CRYPT32.dll"/><Module Path="C:\Windows\system32\MSASN1.dll"/><Module Path="C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_72fc7cbf861225ca\gdiplus.dll"/><Module Path="C:\Windows\system32\VERSION.dll"/><Module Path="C:\Windows\system32\IMM32.DLL"/><Module Path="C:\Windows\system32\MSCTF.dll"/><Module Path="C:\Windows\system32\CRYPTBASE.dll"/><Module Path="C:\Windows\system32\profapi.dll"/><Module Path="C:\Windows\system32\UXTHEME.DLL"/><Module Path="C:\Program Files\COMODO\COMODO Internet Security\Themes\default.theme"/><Module Path="C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll"/><Module Path="C:\Windows\system32\WindowsCodecs.dll"/><Module Path="C:\Windows\system32\apphelp.dll"/><Module Path="C:\Windows\system32\CLBCatQ.DLL"/><Module Path="C:\Windows\system32\EhStorShell.dll"/><Module Path="C:\Windows\system32\PROPSYS.dll"/><Module Path="C:\Windows\System32\cscui.dll"/><Module Path="C:\Windows\System32\CSCDLL.dll"/><Module Path="C:\Windows\system32\CSCAPI.dll"/><Module Path="C:\Windows\system32\ntshrui.dll"/><Module Path="C:\Windows\system32\srvcli.dll"/><Module Path="C:\Windows\system32\slc.dll"/><Module Path="C:\Windows\System32\msxml3.dll"/><Module Path="C:\Windows\system32\urlmon.dll"/><Module Path="C:\Windows\system32\iertutil.dll"/><Module Path="C:\Windows\system32\WININET.dll"/><Module Path="C:\Windows\system32\Normaliz.dll"/><Module Path="C:\Windows\system32\SspiCli.dll"/><Module Path="C:\Windows\system32\dnsapi.DLL"/><Module Path="C:\Windows\system32\iphlpapi.DLL"/><Module Path="C:\Windows\system32\WINNSI.DLL"/><Module Path="C:\Windows\system32\RICHED32.DLL"/><Module Path="C:\Windows\system32\RICHED20.dll"/><Module Path="C:\Windows\system32\msimg32.dll"/><Module Path="C:\Windows\system32\netcfgx.dll"/><Module Path="C:\Windows\system32\devrtl.DLL"/><Module Path="C:\Windows\system32\rtutils.dll"/><Module Path="C:\Windows\system32\SPINF.dll"/><Module Path="C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll"/><Module Path="C:\Windows\system32\explorerframe.dll"/><Module Path="C:\Windows\system32\DUser.dll"/><Module Path="C:\Windows\system32\DUI70.dll"/><Module Path="C:\Windows\system32\dwmapi.dll"/><Module Path="C:\Windows\system32\msls31.dll"/><Module Path="C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll"/><Module Path="C:\Windows\system32\ntmarta.dll"/><Module Path="C:\Windows\system32\WLDAP32.dll"/><Module Path="C:\Windows\system32\XmlLite.dll"/><Module Path="C:\Windows\system32\LINKINFO.dll"/><Module Path="C:\Windows\system32\CRYPTSP.dll"/><Module Path="C:\Windows\system32\rsaenh.dll"/><Module Path="C:\Windows\system32\RpcRtRemote.dll"/><Module Path="C:\Windows\system32\SearchFolder.dll"/><Module Path="C:\Windows\System32\StructuredQuery.dll"/><Module Path="C:\Windows\System32\Secur32.dll"/><Module Path="C:\Windows\system32\IconCodecService.dll"/><Module Path="C:\Windows\system32\mssprxy.dll"/><Module Path="C:\Windows\system32\thumbcache.dll"/><Module Path="C:\Windows\system32\SHDOCVW.dll"/><Module Path="C:\Windows\system32\ieframe.DLL"/><Module Path="C:\Windows\system32\OLEACC.dll"/><Module Path="C:\Windows\system32\samcli.dll"/><Module Path="C:\Windows\system32\SAMLIB.dll"/><Module Path="C:\Windows\system32\netutils.dll"/><Module Path="C:\Windows\system32\NetworkExplorer.dll"/><Module Path="C:\Windows\system32\NetworkItemFactory.dll"/><Module Path="C:\Windows\system32\dtsh.dll"/><Module Path="C:\Windows\system32\FirewallAPI.dll"/><Module Path="C:\Program Files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll"/><Module Path="C:\Windows\System32\drprov.dll"/><Module Path="C:\Windows\System32\WINSTA.dll"/><Module Path="C:\Windows\System32\ntlanman.dll"/><Module Path="C:\Windows\System32\davclnt.dll"/><Module Path="C:\Windows\System32\DAVHLPR.dll"/><Module Path="C:\Windows\system32\wkscli.dll"/><Module Path="C:\Windows\system32\PortableDeviceApi.dll"/><Module Path="C:\Windows\system32\WINTRUST.dll"/><Module Path="C:\Windows\system32\PortableDeviceTypes.dll"/><Module Path="C:\Windows\system32\EhStorAPI.dll"/><Module Path="C:\Windows\system32\wbem\wbemprox.dll"/><Module Path="C:\Windows\system32\wbemcomn.dll"/><Module Path="C:\Windows\system32\wbem\wbemsvc.dll"/><Module Path="C:\Windows\system32\wbem\fastprox.dll"/><Module Path="C:\Windows\system32\NTDSAPI.dll"/><Module Path="C:\Windows\System32\npmproxy.dll"/><Module Path="C:\Windows\system32\FunDisc.dll"/><Module Path="C:\Windows\system32\ATL.DLL"/><Module Path="C:\Windows\System32\msxml6.dll"/><Module Path="C:\Windows\System32\fdwcn.dll"/><Module Path="C:\Windows\System32\wcnapi.dll"/><Module Path="C:\Windows\system32\fdWNet.dll"/><Module Path="C:\Windows\system32\dfscli.dll"/><Module Path="C:\Windows\system32\browcli.dll"/><Module Path="C:\Windows\system32\actxprxy.dll"/><Module Path="C:\Program Files\Internet Explorer\ieproxy.dll"/></Modules></Process><Process Path="C:\Program Files\VideoLAN\VLC\vlc.exe"><Modules><Module Path="C:\Windows\SYSTEM32\ntdll.dll"/><Module Path="C:\Windows\system32\kernel32.dll"/><Module Path="C:\Windows\system32\KERNELBASE.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\libvlc.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\libvlccore.dll"/><Module Path="C:\Windows\system32\ADVAPI32.DLL"/><Module Path="C:\Windows\system32\msvcrt.dll"/><Module Path="C:\Windows\SYSTEM32\sechost.dll"/><Module Path="C:\Windows\system32\RPCRT4.dll"/><Module Path="C:\Windows\system32\SHELL32.DLL"/><Module Path="C:\Windows\system32\SHLWAPI.dll"/><Module Path="C:\Windows\system32\GDI32.dll"/><Module Path="C:\Windows\system32\USER32.dll"/><Module Path="C:\Windows\system32\LPK.dll"/><Module Path="C:\Windows\system32\USP10.dll"/><Module Path="C:\Windows\system32\WINMM.DLL"/><Module Path="C:\Windows\system32\WS2_32.DLL"/><Module Path="C:\Windows\system32\NSI.dll"/><Module Path="C:\Windows\system32\WININET.DLL"/><Module Path="C:\Windows\system32\Normaliz.dll"/><Module Path="C:\Windows\system32\urlmon.dll"/><Module Path="C:\Windows\system32\ole32.dll"/><Module Path="C:\Windows\system32\OLEAUT32.dll"/><Module Path="C:\Windows\system32\CRYPT32.dll"/><Module Path="C:\Windows\system32\MSASN1.dll"/><Module Path="C:\Windows\system32\iertutil.dll"/><Module Path="C:\Windows\system32\IMM32.DLL"/><Module Path="C:\Windows\system32\MSCTF.dll"/><Module Path="C:\Windows\system32\guard32.dll"/><Module Path="C:\Windows\system32\VERSION.dll"/><Module Path="C:\Windows\system32\fltlib.dll"/><Module Path="C:\Windows\system32\profapi.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libaout_directx_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libdirectx_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libdshow_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libskins2_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libwaveout_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libmemcpymmxext_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libaccess_bd_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libdvdnav_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libfilesystem_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libstream_filter_rar_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libzip_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libstream_filter_record_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libplaylist_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libtaglib_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\liblua_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libxml_plugin.dll"/><Module Path="C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll"/><Module Path="C:\Windows\system32\UxTheme.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libhotkeys_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libglobalhotkeys_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libmp4_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libavi_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libqt4_plugin.dll"/><Module Path="C:\Windows\system32\COMDLG32.DLL"/><Module Path="C:\Windows\system32\WINSPOOL.DRV"/><Module Path="C:\Windows\system32\WSOCK32.DLL"/><Module Path="C:\Windows\system32\CRYPTBASE.dll"/><Module Path="C:\Windows\system32\userenv.DLL"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libfolder_plugin.dll"/><Module Path="C:\Windows\system32\CRYPTSP.dll"/><Module Path="C:\Windows\system32\rsaenh.dll"/><Module Path="C:\Windows\system32\RpcRtRemote.dll"/><Module Path="C:\Windows\system32\CLBCatQ.DLL"/><Module Path="C:\Windows\system32\explorerframe.dll"/><Module Path="C:\Windows\system32\DUser.dll"/><Module Path="C:\Windows\system32\DUI70.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libfake_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libcdg_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libpng_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libschroedinger_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libflac_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libvorbis_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libspeex_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\liblibass_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libaraw_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libaes3_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libdts_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libfaad_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libtheora_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libmpeg_audio_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\liblpcm_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\liba52_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libfluidsynth_plugin.dll"/><Module Path="C:\Windows\system32\dsound.dll"/><Module Path="C:\Windows\system32\POWRPROF.dll"/><Module Path="C:\Windows\system32\SETUPAPI.dll"/><Module Path="C:\Windows\system32\CFGMGR32.dll"/><Module Path="C:\Windows\system32\DEVOBJ.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libavcodec_plugin.dll"/><Module Path="C:\Windows\System32\MMDevApi.dll"/><Module Path="C:\Windows\System32\PROPSYS.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libfreetype_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libi420_yuy2_sse2_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libi420_yuy2_mmx_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libswscale_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libi422_yuy2_sse2_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libi420_rgb_sse2_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libi422_yuy2_mmx_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libi420_rgb_mmx_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libi422_yuy2_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libyuy2_i420_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libi420_rgb_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libgrey_yuv_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libi420_yuy2_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libyuy2_i422_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libi422_i420_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libscale_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libyuvp_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libvout_wrapper_plugin.dll"/><Module Path="C:\Windows\system32\AUDIOSES.DLL"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libdirect3d_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libdrawable_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libblend_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libmpgatofixed32_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libdtstofloat32_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\liba52tofloat32_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libbandlimited_resampler_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libconverter_fixed_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libdtstospdif_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libsimple_channel_mixer_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\liba52tospdif_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libdolby_surround_decoder_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libugly_resampler_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libmono_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libtrivial_channel_mixer_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libaudio_format_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libfloat32_mixer_plugin.dll"/><Module Path="C:\Program Files\VideoLAN\VLC\plugins\libscaletempo_plugin.dll"/></Modules></Process></Processes><Drivers><Driver Path="\SystemRoot\system32\ntkrnlpa.exe"/><Driver Path="\SystemRoot\system32\halmacpi.dll"/><Driver Path="\SystemRoot\system32\kdcom.dll"/><Driver Path="\SystemRoot\system32\mcupdate_GenuineIntel.dll"/><Driver Path="\SystemRoot\system32\PSHED.dll"/><Driver Path="\SystemRoot\system32\BOOTVID.dll"/><Driver Path="\SystemRoot\system32\CLFS.SYS"/><Driver Path="\SystemRoot\system32\CI.dll"/><Driver Path="\SystemRoot\system32\drivers\Wdf01000.sys"/><Driver Path="\SystemRoot\system32\drivers\WDFLDR.SYS"/><Driver Path="\SystemRoot\system32\DRIVERS\ACPI.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\WMILIB.SYS"/><Driver Path="\SystemRoot\system32\DRIVERS\msisadrv.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\vdrvroot.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\pci.sys"/><Driver Path="\SystemRoot\System32\drivers\partmgr.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\compbatt.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\BATTC.SYS"/><Driver Path="\SystemRoot\system32\DRIVERS\volmgr.sys"/><Driver Path="\SystemRoot\System32\drivers\volmgrx.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\intelide.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\PCIIDEX.SYS"/><Driver Path="\SystemRoot\system32\DRIVERS\pcmcia.sys"/><Driver Path="\SystemRoot\System32\drivers\mountmgr.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\atapi.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\ataport.SYS"/><Driver Path="\SystemRoot\system32\DRIVERS\amdxata.sys"/><Driver Path="\SystemRoot\system32\drivers\fltmgr.sys"/><Driver Path="\SystemRoot\system32\drivers\fileinfo.sys"/><Driver Path="\SystemRoot\System32\Drivers\Ntfs.sys"/><Driver Path="\SystemRoot\System32\Drivers\msrpc.sys"/><Driver Path="\SystemRoot\System32\Drivers\ksecdd.sys"/><Driver Path="\SystemRoot\System32\Drivers\cng.sys"/><Driver Path="\SystemRoot\System32\drivers\pcw.sys"/><Driver Path="\SystemRoot\System32\Drivers\Fs_Rec.sys"/><Driver Path="\SystemRoot\system32\drivers\ndis.sys"/><Driver Path="\SystemRoot\system32\drivers\NETIO.SYS"/><Driver Path="\SystemRoot\System32\Drivers\ksecpkg.sys"/><Driver Path="\SystemRoot\System32\drivers\tcpip.sys"/><Driver Path="\SystemRoot\System32\drivers\fwpkclnt.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\vmstorfl.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\volsnap.sys"/><Driver Path="\SystemRoot\System32\Drivers\spldr.sys"/><Driver Path="\SystemRoot\System32\drivers\rdyboost.sys"/><Driver Path="\SystemRoot\System32\Drivers\mup.sys"/><Driver Path="\SystemRoot\System32\drivers\hwpolicy.sys"/><Driver Path="\SystemRoot\System32\DRIVERS\fvevol.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\disk.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\CLASSPNP.SYS"/><Driver Path="\SystemRoot\System32\Drivers\BtHidBus.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\cdrom.sys"/><Driver Path="\SystemRoot\System32\DRIVERS\cmdguard.sys"/><Driver Path="\SystemRoot\System32\Drivers\Null.SYS"/><Driver Path="\SystemRoot\System32\Drivers\Beep.SYS"/><Driver Path="\SystemRoot\System32\drivers\vga.sys"/><Driver Path="\SystemRoot\System32\drivers\VIDEOPRT.SYS"/><Driver Path="\SystemRoot\System32\drivers\watchdog.sys"/><Driver Path="\SystemRoot\System32\DRIVERS\RDPCDD.sys"/><Driver Path="\SystemRoot\system32\drivers\rdpencdd.sys"/><Driver Path="\SystemRoot\system32\drivers\rdprefmp.sys"/><Driver Path="\SystemRoot\System32\Drivers\Msfs.SYS"/><Driver Path="\SystemRoot\System32\Drivers\Npfs.SYS"/><Driver Path="\SystemRoot\system32\DRIVERS\tdx.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\TDI.SYS"/><Driver Path="\SystemRoot\System32\DRIVERS\cmdhlp.sys"/><Driver Path="\SystemRoot\system32\drivers\afd.sys"/><Driver Path="\SystemRoot\System32\DRIVERS\netbt.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\wfplwf.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\pacer.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\netbios.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\wanarp.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\termdd.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\ssmdrv.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\rdbss.sys"/><Driver Path="\SystemRoot\system32\drivers\nsiproxy.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\mssmbios.sys"/><Driver Path="\SystemRoot\System32\drivers\discache.sys"/><Driver Path="\SystemRoot\system32\drivers\csc.sys"/><Driver Path="\SystemRoot\System32\Drivers\dfsc.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\blbdrive.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\avipbb.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\tunnel.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\intelppm.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\CmBatt.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\igdkmd32.sys"/><Driver Path="\SystemRoot\System32\drivers\dxgkrnl.sys"/><Driver Path="\SystemRoot\System32\drivers\dxgmms1.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\usbuhci.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\USBPORT.SYS"/><Driver Path="\SystemRoot\system32\DRIVERS\usbehci.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\HDAudBus.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\netw5v32.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\Rt86win7.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\1394ohci.sys"/><Driver Path="\SystemRoot\system32\drivers\ti21sony.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\i8042prt.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\kbdclass.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\mouclass.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\SFEP.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\GEARAspiWDM.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\CompositeBus.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\AgileVpn.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\rasl2tp.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\ndistapi.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\ndiswan.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\raspppoe.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\raspptp.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\rassstp.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\rdpbus.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\swenum.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\ks.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\umbus.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\usbhub.sys"/><Driver Path="\SystemRoot\System32\Drivers\NDProxy.SYS"/><Driver Path="\SystemRoot\system32\drivers\RTKVHDA.sys"/><Driver Path="\SystemRoot\system32\drivers\portcls.sys"/><Driver Path="\SystemRoot\system32\drivers\drmk.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\VSTAZL3.SYS"/><Driver Path="\SystemRoot\system32\DRIVERS\VSTDPV3.SYS"/><Driver Path="\SystemRoot\system32\DRIVERS\VSTCNXT3.SYS"/><Driver Path="\SystemRoot\system32\drivers\modem.sys"/><Driver Path="\SystemRoot\System32\win32k.sys"/><Driver Path="\SystemRoot\System32\drivers\Dxapi.sys"/><Driver Path="\SystemRoot\System32\Drivers\crashdmp.sys"/><Driver Path="\SystemRoot\System32\Drivers\dump_dumpata.sys"/><Driver Path="\SystemRoot\System32\Drivers\dump_atapi.sys"/><Driver Path="\SystemRoot\System32\Drivers\dump_dumpfve.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\monitor.sys"/><Driver Path="\SystemRoot\System32\TSDDD.dll"/><Driver Path="\SystemRoot\System32\cdd.dll"/><Driver Path="\SystemRoot\System32\Drivers\BTHUSB.sys"/><Driver Path="\SystemRoot\System32\Drivers\bthport.sys"/><Driver Path="\SystemRoot\System32\Drivers\USBD.SYS"/><Driver Path="\SystemRoot\system32\DRIVERS\usbccgp.sys"/><Driver Path="\SystemRoot\System32\Drivers\5U870UVCx86.sys"/><Driver Path="\SystemRoot\System32\Drivers\STREAM.SYS"/><Driver Path="\SystemRoot\System32\ATMFD.DLL"/><Driver Path="\SystemRoot\system32\DRIVERS\rfcomm.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\BthEnum.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\bthpan.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\hidbth.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\HIDCLASS.SYS"/><Driver Path="\SystemRoot\system32\DRIVERS\HIDPARSE.SYS"/><Driver Path="\SystemRoot\system32\DRIVERS\mouhid.sys"/><Driver Path="\SystemRoot\system32\drivers\luafv.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\avgntflt.sys"/><Driver Path="\??\C:\Program Files\Microsoft Application Virtualization Client\drivers\sftvollh.sys"/><Driver Path="\SystemRoot\system32\drivers\WudfPf.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\lltdio.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\nwifi.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\ndisuio.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\rspndr.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\bowser.sys"/><Driver Path="\SystemRoot\System32\drivers\mpsdrv.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\mrxsmb.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\mrxsmb10.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\mrxsmb20.sys"/><Driver Path="\SystemRoot\System32\Drivers\SENTINEL.SYS"/><Driver Path="\SystemRoot\System32\Drivers\adfs.SYS"/><Driver Path="\??\C:\Windows\system32\drivers\hardlock.sys"/><Driver Path="\SystemRoot\System32\Drivers\fastfat.SYS"/><Driver Path="\SystemRoot\system32\drivers\HTTP.sys"/><Driver Path="\SystemRoot\system32\drivers\peauth.sys"/><Driver Path="\SystemRoot\System32\Drivers\secdrv.SYS"/><Driver Path="\??\C:\Program Files\Microsoft Application Virtualization Client\drivers\sftplaylh.sys"/><Driver Path="\SystemRoot\System32\DRIVERS\srvnet.sys"/><Driver Path="\??\C:\Windows\system32\SVKP.sys"/><Driver Path="\SystemRoot\System32\drivers\tcpipreg.sys"/><Driver Path="\SystemRoot\System32\DRIVERS\srv2.sys"/><Driver Path="\SystemRoot\System32\DRIVERS\srv.sys"/><Driver Path="\SystemRoot\System32\drivers\ipnat.sys"/><Driver Path="\SystemRoot\System32\drivers\rdpdr.sys"/><Driver Path="\SystemRoot\system32\drivers\tdtcp.sys"/><Driver Path="\SystemRoot\System32\DRIVERS\tssecsrv.sys"/><Driver Path="\SystemRoot\System32\Drivers\RDPWD.SYS"/><Driver Path="\??\C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys"/><Driver Path="\SystemRoot\system32\DRIVERS\WUDFRd.sys"/><Driver Path="\Windows\System32\ntdll.dll"/><Driver Path="\Windows\System32\smss.exe"/><Driver Path="\Windows\System32\apisetschema.dll"/><Driver Path="\Windows\System32\autochk.exe"/><Driver Path="\Windows\System32\normaliz.dll"/><Driver Path="\Windows\System32\shell32.dll"/><Driver Path="\Windows\System32\psapi.dll"/><Driver Path="\Windows\System32\imagehlp.dll"/><Driver Path="\Windows\System32\user32.dll"/><Driver Path="\Windows\System32\rpcrt4.dll"/><Driver Path="\Windows\System32\advapi32.dll"/><Driver Path="\Windows\System32\Wldap32.dll"/><Driver Path="\Windows\System32\kernel32.dll"/><Driver Path="\Windows\System32\oleaut32.dll"/><Driver Path="\Windows\System32\iertutil.dll"/><Driver Path="\Windows\System32\imm32.dll"/><Driver Path="\Windows\System32\sechost.dll"/><Driver Path="\Windows\System32\difxapi.dll"/><Driver Path="\Windows\System32\msvcrt.dll"/><Driver Path="\Windows\System32\gdi32.dll"/><Driver Path="\Windows\System32\comdlg32.dll"/><Driver Path="\Windows\System32\urlmon.dll"/><Driver Path="\Windows\System32\shlwapi.dll"/><Driver Path="\Windows\System32\wininet.dll"/><Driver Path="\Windows\System32\msctf.dll"/><Driver Path="\Windows\System32\nsi.dll"/><Driver Path="\Windows\System32\ws2_32.dll"/><Driver Path="\Windows\System32\clbcatq.dll"/><Driver Path="\Windows\System32\setupapi.dll"/><Driver Path="\Windows\System32\usp10.dll"/><Driver Path="\Windows\System32\ole32.dll"/><Driver Path="\Windows\System32\lpk.dll"/><Driver Path="\Windows\System32\devobj.dll"/><Driver Path="\Windows\System32\KernelBase.dll"/><Driver Path="\Windows\System32\comctl32.dll"/><Driver Path="\Windows\System32\crypt32.dll"/><Driver Path="\Windows\System32\cfgmgr32.dll"/><Driver Path="\Windows\System32\wintrust.dll"/><Driver Path="\Windows\System32\msasn1.dll"/></Drivers></CisDiagReport> Quelques idées ??? Merci en avance !!

Salut ! le lien de la page Kaspersky n'est pas valide, apparemment ils sont en train de réactualiser leur scanner en ligne... est-ce que le scan en ligne de bitdefender est-il équivalent?

Bonsoir, J'ai suivi au pied de la lettre les indication mais le logiciel a plante des le debut, voici le rapport 18:50:35: FOPS - DeviceIoControl Error! Error Code = 0xc0000024 Extended Info (0x000000dc) 18:50:35: DeviceIoControl Error! Error Code = 0x1e7 18:50:35: FOPS - DeviceIoControl Error! Error Code = 0xc0000024 Extended Info (0x000000dc) et aussi 18:52:00: DeviceIoControl Error! Error Code = 0x0 18:52:00: DeviceIoControl Error! Error Code = 0x0 18:52:00: DeviceIoControl Error! Error Code = 0x0 18:52:00: DeviceIoControl Error! Error Code = 0x0 18:52:00: DeviceIoControl Error! Error Code = 0x0 18:52:00: DeviceIoControl Error! Error Code = 0x0 18:52:00: Could not scan drive C (error 0xc0000024) 18:52:04: Could not get the name for PID 4. 18:52:04: Could not get the name for PID 300. 18:52:04: Could not get the name for PID 420. 18:52:04: Could not get the name for PID 472. 18:52:04: Could not get the name for PID 528. 18:52:04: Could not get the name for PID 544. 18:52:04: Could not get the name for PID 552. 18:52:04: Could not get the name for PID 668. 18:52:04: Could not get the name for PID 816. 18:52:04: Could not get the name for PID 872. 18:52:04: Could not get the name for PID 1024. 18:52:04: Could not get the name for PID 1068. 18:52:04: Could not get the name for PID 1112. 18:52:04: Could not get the name for PID 1140. 18:52:04: Could not get the name for PID 1220. 18:52:04: Could not get the name for PID 1304. 18:52:04: Could not get the name for PID 1584. 18:52:04: Could not get the name for PID 1612. 18:52:04: Could not get the name for PID 1640. 18:52:04: Could not get the name for PID 1760. 18:52:04: Could not get the name for PID 1792. 18:52:04: Could not get the name for PID 1816. 18:52:04: Could not get the name for PID 1848. 18:52:04: Could not get the name for PID 1880. 18:52:04: Could not get the name for PID 1936. 18:52:04: Could not get the name for PID 1944. 18:52:04: Could not get the name for PID 348. 18:52:04: Could not get the name for PID 1400. 18:52:04: Could not get the name for PID 1868. 18:52:04: Could not get the name for PID 1348. 18:52:04: Could not get the name for PID 2180. 18:52:04: Could not get the name for PID 3492. 18:52:04: Could not get the name for PID 3752. 18:52:04: Could not get the name for PID 3904. 18:52:04: Could not get the name for PID 4044. 18:52:04: Could not get the name for PID 3648. 18:52:04: Could not get the name for PID 956. 18:52:04: Could not get the name for PID 2568. 18:52:04: Could not get the name for PID 3956. 18:52:04: Could not get the name for PID 1344. 18:52:04: Could not get the name for PID 3848. 18:52:04: Could not get the name for PID 2888. 18:52:04: Could not get the name for PID 648. 18:52:04: Could not get the name for PID 3420. 18:52:04: Could not get the name for PID 744. 18:52:04: Could not get the name for PID 3344. 18:52:04: Could not get the name for PID 4012. 18:52:04: Could not get the name for PID 3816. 18:52:04: Could not get the name for PID 1680. 18:52:04: Could not get the name for PID 2848. 18:52:04: DeviceIoControl Error! Error Code = 0xc0000024 18:52:04: DeviceIoControl Error! Error Code = 0xc0000024 18:52:06: Warning - the number of SSDT entries from the kernel and the number on-disk are different (0 and 401). 18:52:06: DeviceIoControl Error! Error Code = 0x0 18:52:06: WARNING: The SSDT in our driver has been faked (0x00000250)! 18:52:06: DeviceIoControl Error! Error Code = 0x0 18:52:06: Could not get loaded modules! 18:52:06: DeviceIoControl Error! Error Code = 0x0 18:52:06: FOPS - DeviceIoControl Error! Error Code = 0xc0000024 Extended Info (0x000000dc) 18:52:06: Could not read system registry! Please contact the author! 18:52:06: DeviceIoControl Error! Error Code = 0x0 ROOTREPEAL CRASH REPORT ------------------------- Windows Version: Windows Vista SP0 Exception Code: 0xc0000005 Exception Address: 0x00422bf2 Attempt to read from address: 0x00000004

Par contre le scanne avec GMER rootkit n'a pas marcher, l'ordinateur a plante a chaque fois(5), j'ai tout désactivé( spybot, antivirus, firewall et malwarebyts)... j'ai essaie aussi en tant qu'administrateur mais sans résultat. Cordialement,

Bonjour, Merci pour ta réponse aussi rapide. En fait on se servi de ma carte bancaire pour acheter sur internet aux environ de 1000 euros, pourtant je pense que ca viens de mon ordinateur puisque ma carte "NET" je la promène pas avec moi et elle est soigneusement garde chez moi(j'habite seul). J'ai déjà fait opposition et il y a une enquête en cours par ma banque, néanmoins je veux corriger le problème pour ne pas me faire hacker mes e-mails, comptes... enfin, les information personnelles. Donc j'ai fait les tests, voici les resultats de RSIT: Log.txt Logfile of random's system information tool 1.08 (written by random/random) Run by David at 2010-10-11 15:28:00 Microsoft Windows 7 Ultimate Service Pack 3 System drive C: has 75 GB (41%) free of 183 GB Total RAM: 2038 MB (42% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 15:30:01, on 11/10/2010 Platform: Windows 7 (WinNT 6.00.3504) MSIE: Internet Explorer v8.00 (8.00.7600.16385) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\system32\taskhost.exe C:\Windows\Explorer.EXE C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe C:\Program Files\COMODO\COMODO Internet Security\cfp.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\Users\David\Desktop\RSIT.exe C:\Program Files\trend micro\David.exe C:\Windows\system32\SearchFilterHost.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = CRIJ Toulouse Midi-Pyrénées R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8118 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MIF5BA~1\Office14\GROOVEEX.DLL O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MIF5BA~1\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O8 - Extra context menu item: &Enviar a OneNote - res:///105 O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MIF5BA~1\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~1\MIF5BA~1\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_A54B7D6FB1DA63EA.dll/cmsidewiki.html O8 - Extra context menu item: Translate this web page with Babylon - res://C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm O8 - Extra context menu item: Translate with Babylon - res://C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm O9 - Extra button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe (file missing) O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: ArcSoft Connect Daemon (ACDaemon) - Unknown owner - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (file missing) O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe O23 - Service: @C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe -- End of file - 7318 bytes ======Scheduled tasks folder====== C:\Windows\tasks\GoogleUpdateTaskMachineCore.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}] Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\PROGRA~1\MIF5BA~1\Office14\GROOVEEX.DLL [2009-10-29 4150160] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~1\MIF5BA~1\Office14\URLREDIR.DLL [2009-11-03 556432] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-01-13 41760] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cfp.exe [2010-09-10 2500552] "avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2010-08-17 281768] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760] "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288] "Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2010-04-29 437584] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-03-05 2260480] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\Windows\system32\igfxdev.dll [2009-09-23 218112] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\VESWinlogon] C:\Windows\system32\VESWinlogon.dll [2007-05-16 73728] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MIF5BA~1\Office14\GROOVEEX.DLL [2009-10-29 4150160] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AppInfo] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\BFE] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\bowser] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\dfsc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Dot3Svc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Eaphost] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\EFS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\IKEEXT] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\KeyIso] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSDrv] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MPSSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb10] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mrxsmb20] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NativeWifiP] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ndiscap] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\netprofm] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NlaSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Nsi] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nsiproxy.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NTDS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PolicyAgent] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Power] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\ProfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdbss] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rdpencdd.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\RpcEptMapper] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sacsvr] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SCardSvr] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SWPRV] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TabletInputService] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TBS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TrustedInstaller] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VaultSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\VDS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\vmms] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgr.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\volmgrx.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wlansvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=0 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "PromptOnSecureDesktop"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDrives"=0 "NoDriveAutoRun"=0 "NoDriveTypeAutoRun"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDrives"=0 "NoDriveAutoRun"=0 "NoDriveTypeAutoRun"=0 "LoginPrompt"=9D829D829988998C [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 ======List of files/folders created in the last 1 months====== 2010-10-11 01:40:42 ----D---- C:\Users\David\AppData\Roaming\OpenOffice.org 2010-10-10 22:59:06 ----D---- C:\Program Files\OpenOffice.org 3 2010-10-10 18:23:48 ----D---- C:\Program Files\7-Zip 2010-10-10 18:23:27 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys 2010-10-10 18:23:23 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2010-10-10 18:23:23 ----A---- C:\Windows\system32\drivers\mbam.sys 2010-10-10 13:49:18 ----D---- C:\Users\David\AppData\Roaming\Avira 2010-10-10 13:38:14 ----A---- C:\Windows\system32\drivers\ssmdrv.sys 2010-10-10 13:38:12 ----A---- C:\Windows\system32\drivers\avipbb.sys 2010-10-10 13:38:11 ----D---- C:\ProgramData\Avira 2010-10-10 13:38:11 ----D---- C:\Program Files\Avira 2010-10-10 12:50:50 ----SHD---- C:\$RECYCLE.BIN 2010-10-10 12:50:45 ----A---- C:\ComboFix.txt 2010-10-10 12:33:42 ----A---- C:\Windows\zip.exe 2010-10-10 12:33:42 ----A---- C:\Windows\SWSC.exe 2010-10-10 12:33:42 ----A---- C:\Windows\SWREG.exe 2010-10-10 12:33:42 ----A---- C:\Windows\sed.exe 2010-10-10 12:33:42 ----A---- C:\Windows\PEV.exe 2010-10-10 12:33:42 ----A---- C:\Windows\NIRCMD.exe 2010-10-10 12:33:42 ----A---- C:\Windows\MBR.exe 2010-10-10 12:33:42 ----A---- C:\Windows\grep.exe 2010-10-10 12:33:22 ----D---- C:\Windows\ERDNT 2010-10-10 12:31:13 ----A---- C:\Windows\SWXCACLS.exe 2010-10-10 11:47:57 ----D---- C:\Qoobox 2010-10-10 00:39:39 ----D---- C:\Windows\Sun 2010-10-10 00:36:34 ----D---- C:\Users\David\AppData\Roaming\QuickScan 2010-10-07 20:47:04 ----A---- C:\Windows\system32\uxtuneup.dll 2010-10-07 20:47:04 ----A---- C:\Windows\system32\authuitu.dll 2010-10-07 00:59:16 ----D---- C:\VritualRoot 2010-10-07 00:45:55 ----D---- C:\Program Files\COMODO 2010-10-07 00:30:56 ----D---- C:\ProgramData\Comodo 2010-10-06 23:40:50 ----D---- C:\Program Files\Alwil Software 2010-10-04 13:08:16 ----D---- C:\Program Files\Trend Micro 2010-09-29 11:11:46 ----A---- C:\Windows\system32\drivers\usbvideo.sys 2010-09-29 11:11:46 ----A---- C:\Windows\system32\drivers\ks.sys 2010-09-29 10:47:10 ----A---- C:\Windows\system32\tzres.dll 2010-09-15 14:52:13 ----A---- C:\Windows\system32\spoolsv.exe ======List of files/folders modified in the last 1 months====== 2010-10-11 15:28:55 ----D---- C:\Windows\Temp 2010-10-11 15:27:25 ----D---- C:\Windows\Prefetch 2010-10-11 15:25:55 ----D---- C:\rsit 2010-10-11 14:54:05 ----D---- C:\ProgramData 2010-10-11 10:15:04 ----D---- C:\Windows\system32\config 2010-10-11 09:53:40 ----D---- C:\Program Files\WinRAR 2010-10-11 02:20:38 ----D---- C:\Windows 2010-10-11 02:16:16 ----D---- C:\ProgramData\Spybot - Search & Destroy 2010-10-10 23:03:57 ----SHD---- C:\Windows\Installer 2010-10-10 23:02:45 ----RSD---- C:\Windows\assembly 2010-10-10 23:00:34 ----RSD---- C:\Windows\Fonts 2010-10-10 22:59:06 ----RD---- C:\Program Files 2010-10-10 22:58:36 ----SHD---- C:\System Volume Information 2010-10-10 18:23:27 ----D---- C:\Windows\system32\drivers 2010-10-10 17:54:06 ----D---- C:\Program Files\Common Files\Adobe 2010-10-10 17:54:05 ----D---- C:\ProgramData\Adobe 2010-10-10 17:54:02 ----D---- C:\Program Files\Adobe 2010-10-10 17:53:28 ----D---- C:\Windows\System32 2010-10-10 14:31:00 ----D---- C:\PerfLogs 2010-10-10 12:47:24 ----A---- C:\Windows\system.ini 2010-10-10 12:47:02 ----D---- C:\Windows\system32\drivers\etc 2010-10-10 12:44:24 ----D---- C:\Windows\AppPatch 2010-10-10 12:44:23 ----D---- C:\Program Files\Common Files 2010-10-09 21:51:03 ----D---- C:\Users\David\AppData\Roaming\uTorrent 2010-10-09 13:23:31 ----D---- C:\Windows\Microsoft.NET 2010-10-08 15:34:27 ----D---- C:\Users\David\AppData\Roaming\U3 2010-10-08 12:01:15 ----D---- C:\Windows\system32\wdi 2010-10-08 00:29:23 ----A---- C:\Windows\system32\PerfStringBackup.INI 2010-10-08 00:29:22 ----D---- C:\Windows\inf 2010-10-07 20:46:57 ----D---- C:\Program Files\TuneUp Utilities 2010 2010-10-07 19:17:14 ----D---- C:\Windows\winsxs 2010-10-07 01:57:24 ----D---- C:\Windows\system32\Tasks 2010-10-07 00:46:54 ----D---- C:\Windows\system32\DriverStore 2010-10-07 00:46:54 ----D---- C:\Windows\system32\catroot 2010-10-07 00:41:34 ----D---- C:\Windows\system32\catroot2 2010-10-06 23:30:42 ----D---- C:\ProgramData\Alwil Software 2010-10-06 22:38:02 ----D---- C:\Windows\system32\LogFiles 2010-10-06 21:23:34 ----D---- C:\Windows\Tasks 2010-10-06 21:23:34 ----D---- C:\Windows\system32\wfp 2010-10-06 21:23:29 ----D---- C:\Windows\system32\wbem 2010-10-06 21:22:25 ----D---- C:\Windows\system32\NDF 2010-10-06 21:22:07 ----D---- C:\Windows\AppCompat 2010-10-06 21:21:56 ----D---- C:\Windows\registration 2010-10-05 22:03:49 ----D---- C:\Users\David\AppData\Roaming\Sony Corporation 2010-10-05 22:03:48 ----D---- C:\Program Files\Sony 2010-10-04 21:15:38 ----D---- C:\Windows\rescache 2010-10-03 15:16:19 ----D---- C:\Users\David\AppData\Roaming\Spotify 2010-10-03 12:09:23 ----D---- C:\Program Files\Common Files\ArcSoft 2010-09-30 17:15:06 ----A---- C:\Windows\system32\TURegOpt.exe 2010-09-30 03:00:54 ----D---- C:\Program Files\Internet Explorer 2010-09-29 21:26:12 ----D---- C:\Users\David\AppData\Roaming\Skype 2010-09-29 20:03:34 ----D---- C:\Users\David\AppData\Roaming\skypePM 2010-09-29 19:56:39 ----D---- C:\Program Files\Microsoft Silverlight 2010-09-29 19:55:04 ----D---- C:\Windows\system32\fr-FR 2010-09-29 19:55:04 ----D---- C:\Windows\system32\en-US 2010-09-28 17:09:21 ----D---- C:\Program Files\CCleaner 2010-09-28 02:20:21 ----D---- C:\Program Files\DVD Shrink 2010-09-22 00:21:38 ----D---- C:\Windows\debug 2010-09-20 12:38:21 ----D---- C:\Cartes 2010-09-17 11:33:26 ----D---- C:\Program Files\Mozilla Firefox 2010-09-15 14:52:52 ----A---- C:\Windows\system32\MRT.exe ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 amdxata;amdxata; C:\Windows\system32\DRIVERS\amdxata.sys [2009-07-14 23616] R0 BtHidBus;Bluetooth HID Bus Service; C:\Windows\System32\Drivers\BtHidBus.sys [2009-01-07 20744] R0 CLFS;@%SystemRoot%\system32\clfs.sys,-100; C:\Windows\System32\CLFS.sys [2009-07-14 249408] R0 CNG;CNG; C:\Windows\System32\Drivers\cng.sys [2009-07-14 369568] R0 FileInfo;@%SystemRoot%\system32\drivers\fileinfo.sys,-100; C:\Windows\system32\drivers\fileinfo.sys [2009-07-14 58448] R0 fvevol;@%SystemRoot%\system32\drivers\fvevol.sys,-100; C:\Windows\System32\DRIVERS\fvevol.sys [2009-09-26 194488] R0 hwpolicy;@%systemroot%\system32\drivers\hwpolicy.sys,-101; C:\Windows\System32\drivers\hwpolicy.sys [2009-07-14 13904] R0 KSecPkg;KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [2009-12-11 133720] R0 msisadrv;msisadrv; C:\Windows\system32\DRIVERS\msisadrv.sys [2009-07-14 13888] R0 pcw;Performance Counters for Windows Driver; C:\Windows\System32\drivers\pcw.sys [2009-07-14 43088] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648] R0 spldr;Security Processor Loader Driver; C:\Windows\system32\drivers\spldr.sys [2009-07-14 17472] R0 storflt;@%SystemRoot%\system32\vmstorfltres.dll,-1000; C:\Windows\system32\DRIVERS\vmstorfl.sys [2009-07-14 40896] R0 vdrvroot;Pilote d’énumérateur de lecteur virtuel Microsoft; C:\Windows\system32\DRIVERS\vdrvroot.sys [2009-07-14 32832] R0 volmgr;Pilote du Gestionnaire de volume; C:\Windows\system32\DRIVERS\volmgr.sys [2009-07-14 53312] R0 volmgrx;@%SystemRoot%\system32\drivers\volmgrx.sys,-100; C:\Windows\System32\drivers\volmgrx.sys [2009-07-14 297040] R0 Wdf01000;Kernel Mode Driver Frameworks service; C:\Windows\system32\drivers\Wdf01000.sys [2009-07-14 445008] R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2010-08-17 126856] R1 blbdrive;blbdrive; C:\Windows\system32\DRIVERS\blbdrive.sys [2009-07-14 35328] R1 cmderd;COMODO Internet Security Eradication Driver; C:\Windows\System32\DRIVERS\cmderd.sys [2010-09-10 17256] R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\System32\DRIVERS\cmdguard.sys [2010-09-10 236088] R1 cmdHlp;COMODO Internet Security Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys [2010-09-10 30112] R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584] R1 DfsC;@%systemroot%\system32\drivers\dfsc.sys,-101; C:\Windows\System32\Drivers\dfsc.sys [2009-07-14 78336] R1 discache;@%systemroot%\system32\drivers\discache.sys,-102; C:\Windows\System32\drivers\discache.sys [2009-07-14 32256] R1 inspect;COMODO Internet Security Firewall Driver; C:\Windows\system32\DRIVERS\inspect.sys [2010-09-10 78504] R1 nsiproxy;@%SystemRoot%\system32\drivers\nsiproxy.sys,-2; C:\Windows\system32\drivers\nsiproxy.sys [2009-07-14 16896] R1 RDPENCDD;@%systemroot%\system32\drivers\RDPENCDD.sys,-101; C:\Windows\system32\drivers\rdpencdd.sys [2009-07-14 6656] R1 RDPREFMP;@%systemroot%\system32\drivers\RdpRefMp.sys,-101; C:\Windows\system32\drivers\rdprefmp.sys [2009-07-14 7168] R1 ssmdrv;ssmdrv; C:\Windows\system32\DRIVERS\ssmdrv.sys [2010-06-17 28520] R1 tdx;@%SystemRoot%\system32\tcpipcfg.dll,-50004; C:\Windows\system32\DRIVERS\tdx.sys [2009-07-14 74240] R1 Wanarpv6;@%systemroot%\system32\rascfg.dll,-32012; C:\Windows\system32\DRIVERS\wanarp.sys [2009-07-14 63488] R1 WfpLwf;WFP Lightweight Filter; C:\Windows\system32\DRIVERS\wfplwf.sys [2009-07-14 9728] R2 adfs;adfs; C:\Windows\system32\drivers\adfs.sys [2008-08-14 74720] R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2010-08-17 60936] R2 Hardlock;Hardlock; \??\C:\Windows\system32\drivers\hardlock.sys [2005-07-28 685056] R2 lltdio;Link-Layer Topology Discovery Mapper I/O Driver; C:\Windows\system32\DRIVERS\lltdio.sys [2009-07-14 48128] R2 luafv;@%systemroot%\system32\drivers\luafv.sys,-100; C:\Windows\system32\drivers\luafv.sys [2009-07-14 86528] R2 PEAUTH;PEAUTH; C:\Windows\system32\drivers\peauth.sys [2009-07-14 586752] R2 rspndr;Link-Layer Topology Discovery Responder; C:\Windows\system32\DRIVERS\rspndr.sys [2009-07-14 60928] R2 Sentinel;Sentinel; C:\Windows\System32\Drivers\SENTINEL.SYS [2001-06-21 73728] R2 SVKP;SVKP; \??\C:\Windows\system32\SVKP.sys [2010-07-31 2368] R2 tcpipreg;TCP/IP Registry Compatibility; C:\Windows\System32\drivers\tcpipreg.sys [2009-07-14 34816] R3 1394ohci;Contrôleur d’hôte compatible OHCI 1394; C:\Windows\system32\DRIVERS\1394ohci.sys [2009-07-14 163328] R3 5U870UVC;Sony Visual Communication Camera VGP-VCC6; C:\Windows\System32\Drivers\5U870UVCx86.sys [2007-10-31 67840] R3 bowser;@%systemroot%\system32\browser.dll,-102; C:\Windows\system32\DRIVERS\bowser.sys [2009-07-14 69632] R3 BthEnum;Service d'énumérateur Bluetooth; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816] R3 BthPan;Périphérique Bluetooth (réseau personnel); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696] R3 BTHUSB;Pilote USB radio Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 58880] R3 CompositeBus;Pilote de l’énumérateur de bus composite; C:\Windows\system32\DRIVERS\CompositeBus.sys [2009-07-14 31232] R3 DXGKrnl;LDDM Graphics Subsystem; C:\Windows\System32\drivers\dxgkrnl.sys [2009-10-02 728648] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-01-15 23848] R3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2009-07-14 304128] R3 HDAudBus;Pilote de bus UAA Microsoft pour High Definition Audio; C:\Windows\system32\DRIVERS\HDAudBus.sys [2009-07-14 108544] R3 HidBth;Miniport HID Microsoft Bluetooth; C:\Windows\system32\DRIVERS\hidbth.sys [2009-07-14 91136] R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2009-09-23 4808192] R3 intelppm;Pilote de processeur Intel; C:\Windows\system32\DRIVERS\intelppm.sys [2009-07-14 53760] R3 MarvinBus;Pinnacle Marvin Bus; C:\Windows\system32\DRIVERS\MarvinBus.sys [2005-09-24 171520] R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2010-04-29 20952] R3 monitor;Service Pilote de fonction de classe Moniteur Microsoft; C:\Windows\system32\DRIVERS\monitor.sys [2009-07-14 23552] R3 mouhid;Pilote HID de souris; C:\Windows\system32\DRIVERS\mouhid.sys [2009-07-14 26112] R3 mpsdrv;@%SystemRoot%\system32\FirewallAPI.dll,-23092; C:\Windows\System32\drivers\mpsdrv.sys [2009-07-14 60416] R3 mrxsmb10;@%systemroot%\system32\wkssvc.dll,-1004; C:\Windows\system32\DRIVERS\mrxsmb10.sys [2010-02-27 221696] R3 mrxsmb20;@%systemroot%\system32\wkssvc.dll,-1006; C:\Windows\system32\DRIVERS\mrxsmb20.sys [2010-02-27 95744] R3 NativeWifiP;NativeWiFi Filter; C:\Windows\system32\DRIVERS\nwifi.sys [2009-07-14 267264] R3 netw5v32;Pilote de carte de liaison WiFi sans fil Intel® 5000 Series pour Windows Vista 32 bits; C:\Windows\system32\DRIVERS\netw5v32.sys [2009-07-14 4231168] R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2010-04-26 47360] R3 RasAgileVpn;WAN Miniport (IKEv2); C:\Windows\system32\DRIVERS\AgileVpn.sys [2009-07-14 49152] R3 RasSstp;@%systemroot%\system32\sstpsvc.dll,-202; C:\Windows\system32\DRIVERS\rassstp.sys [2009-07-14 75264] R3 rdpbus;Remote Desktop Device Redirector Bus Driver; C:\Windows\system32\DRIVERS\rdpbus.sys [2009-07-14 18944] R3 RFCOMM;Périphérique Bluetooth (TDI protocole RFCOMM); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536] R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-03-02 139776] R3 SFEP;Sony Firmware Extension Parser; C:\Windows\system32\DRIVERS\SFEP.sys [2007-08-03 9344] R3 sftfs;sftfs; \??\C:\Program Files\Microsoft Application Virtualization Client\drivers\sftfslh.sys [2009-09-23 543064] R3 sftplay;sftplay; \??\C:\Program Files\Microsoft Application Virtualization Client\drivers\sftplaylh.sys [2009-09-23 190312] R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2009-09-23 21848] R3 sftvol;sftvol; \??\C:\Program Files\Microsoft Application Virtualization Client\drivers\sftvollh.sys [2009-09-23 14680] R3 srv2;@%systemroot%\system32\srvsvc.dll,-104; C:\Windows\System32\DRIVERS\srv2.sys [2010-06-22 307200] R3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-14 207360] R3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-14 980992] R3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-14 661504] R3 srvnet;srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [2010-06-22 113664] R3 ti21sony;ti21sony; C:\Windows\system32\drivers\ti21sony.sys [2007-04-23 812544] R3 tssecsrv;@%SystemRoot%\System32\DRIVERS\tssecsrv.sys,-101; C:\Windows\System32\DRIVERS\tssecsrv.sys [2009-07-14 30208] R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [2009-10-14 10064] R3 tunnel;Pilote de carte miniport Microsoft Tunnel; C:\Windows\system32\DRIVERS\tunnel.sys [2009-07-14 108544] R3 umbus;Pilote d’énumérateur UMBus; C:\Windows\system32\DRIVERS\umbus.sys [2009-07-14 39936] R3 usbccgp;Pilote parent générique USB Microsoft; C:\Windows\system32\DRIVERS\usbccgp.sys [2009-07-14 75264] R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\Windows\system32\DRIVERS\usbuhci.sys [2009-07-14 24064] S2 DS1410D;DS1410D; \??\C:\Windows\system32\drivers\ds1410d.sys [] S3 AcpiPmi;ACPI Power Meter Driver; C:\Windows\system32\DRIVERS\acpipmi.sys [2009-07-14 9728] S3 adp94xx;adp94xx; C:\Windows\system32\DRIVERS\adp94xx.sys [2009-07-14 422976] S3 adpahci;adpahci; C:\Windows\system32\DRIVERS\adpahci.sys [2009-07-14 297552] S3 adpu320;adpu320; C:\Windows\system32\DRIVERS\adpu320.sys [2009-07-14 146512] S3 agp440;Intel AGP Bus Filter; C:\Windows\system32\DRIVERS\agp440.sys [2009-07-14 53312] S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312] S3 amdide;amdide; C:\Windows\system32\DRIVERS\amdide.sys [2009-07-14 14912] S3 AmdK8;AMD K8 Processor Driver; C:\Windows\system32\DRIVERS\amdk8.sys [2009-07-14 55296] S3 AmdPPM;AMD Processor Driver; C:\Windows\system32\DRIVERS\amdppm.sys [2009-07-14 52736] S3 amdsata;amdsata; C:\Windows\system32\DRIVERS\amdsata.sys [2009-07-14 79952] S3 amdsbs;amdsbs; C:\Windows\system32\DRIVERS\amdsbs.sys [2009-07-14 159312] S3 AppID;@%systemroot%\system32\appidsvc.dll,-102; C:\Windows\system32\drivers\appid.sys [2009-07-14 50176] S3 arc;arc; C:\Windows\system32\DRIVERS\arc.sys [2009-07-14 76368] S3 arcsas;arcsas; C:\Windows\system32\DRIVERS\arcsas.sys [2009-07-14 86608] S3 b06bdrv;Broadcom NetXtreme II VBD; C:\Windows\system32\DRIVERS\bxvbdx.sys [2009-07-14 430080] S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888] S3 BrFiltLo;Brother USB Mass-Storage Lower Filter Driver; C:\Windows\system32\DRIVERS\BrFiltLo.sys [2009-07-14 13568] S3 BrFiltUp;Brother USB Mass-Storage Upper Filter Driver; C:\Windows\system32\DRIVERS\BrFiltUp.sys [2009-07-14 5248] S3 Brserid;Brother MFC Serial Port Interface Driver (WDM); C:\Windows\System32\Drivers\Brserid.sys [2009-07-14 272128] S3 BrSerWdm;Brother WDM Serial driver; C:\Windows\System32\Drivers\BrSerWdm.sys [2009-07-14 62336] S3 BrUsbMdm;Brother MFC USB Fax Only Modem; C:\Windows\System32\Drivers\BrUsbMdm.sys [2009-07-14 12160] S3 BrUsbSer;Brother MFC USB Serial WDM Driver; C:\Windows\System32\Drivers\BrUsbSer.sys [2009-07-14 11904] S3 BT;Bluetooth PAN Network Adapter; C:\Windows\system32\DRIVERS\btnetdrv.sys [] S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\Windows\System32\Drivers\btcusb.sys [] S3 BTHMODEM;Bluetooth Serial Communications Driver; C:\Windows\system32\DRIVERS\bthmodem.sys [2009-07-14 56320] S3 BTHPORT;Pilote de port Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 392704] S3 btnetBUs;Bluetooth PAN Bus Service; C:\Windows\System32\Drivers\btnetBus.sys [2008-12-07 30088] S3 catchme;catchme; \??\C:\Users\David\AppData\Local\Temp\catchme.sys [] S3 circlass;Consumer IR Devices; C:\Windows\system32\DRIVERS\circlass.sys [2009-07-14 37888] S3 ebdrv;Broadcom NetXtreme II 10 GigE VBD; C:\Windows\system32\DRIVERS\evbdx.sys [2009-07-14 3100160] S3 elxstor;elxstor; C:\Windows\system32\DRIVERS\elxstor.sys [2009-07-14 453712] S3 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\DRIVERS\errdev.sys [2009-07-14 7168] S3 exfat;exFAT File System Driver; C:\Windows\system32\drivers\exfat.sys [2009-07-14 142336] S3 Filetrace;@%SystemRoot%\system32\drivers\filetrace.sys,-10001; C:\Windows\system32\drivers\filetrace.sys [2009-07-14 28160] S3 FsDepends;@%SystemRoot%\system32\drivers\fsdepends.sys,-10001; C:\Windows\System32\drivers\FsDepends.sys [2009-07-14 46160] S3 gagp30kx;Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms; C:\Windows\system32\DRIVERS\gagp30kx.sys [2009-07-14 57936] S3 hcw85cir;Hauppauge Consumer Infrared Receiver; C:\Windows\system32\drivers\hcw85cir.sys [2009-07-14 26624] S3 HidBatt;HID UPS Battery Driver; C:\Windows\system32\DRIVERS\HidBatt.sys [2009-07-14 21504] S3 HidIr;Microsoft Infrared HID Driver; C:\Windows\system32\DRIVERS\hidir.sys [2009-07-14 37888] S3 HidUsb;Pilote de classe HID Microsoft; C:\Windows\system32\DRIVERS\hidusb.sys [2009-07-14 24064] S3 HpSAMD;HpSAMD; C:\Windows\system32\DRIVERS\HpSAMD.sys [2009-07-14 67152] S3 iaStorV;iaStorV; C:\Windows\system32\DRIVERS\iaStorV.sys [2009-07-14 332352] S3 iirsp;iirsp; C:\Windows\system32\DRIVERS\iirsp.sys [2009-07-14 41040] S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [] S3 IPMIDRV;IPMIDRV; C:\Windows\system32\DRIVERS\IPMIDrv.sys [2009-07-14 65536] S3 iScsiPrt;iScsiPort Driver; C:\Windows\system32\DRIVERS\msiscsi.sys [2009-07-14 186960] S3 IvtBtBUs;IVT Bluetooth Bus Service; C:\Windows\System32\Drivers\IvtBtBus.sys [2008-07-02 26248] S3 kbdhid;Keyboard HID Driver; C:\Windows\system32\DRIVERS\kbdhid.sys [2009-07-14 28160] S3 LSI_FC;LSI_FC; C:\Windows\system32\DRIVERS\lsi_fc.sys [2009-07-14 95824] S3 LSI_SAS;LSI_SAS; C:\Windows\system32\DRIVERS\lsi_sas.sys [2009-07-14 89168] S3 LSI_SAS2;LSI_SAS2; C:\Windows\system32\DRIVERS\lsi_sas2.sys [2009-07-14 54864] S3 LSI_SCSI;LSI_SCSI; C:\Windows\system32\DRIVERS\lsi_scsi.sys [2009-07-14 96848] S3 megasas;megasas; C:\Windows\system32\DRIVERS\megasas.sys [2009-07-14 30800] S3 MegaSR;MegaSR; C:\Windows\system32\DRIVERS\MegaSR.sys [2009-07-14 235584] S3 mpio;mpio; C:\Windows\system32\DRIVERS\mpio.sys [2009-07-14 130624] S3 msahci;msahci; C:\Windows\system32\DRIVERS\msahci.sys [2009-07-14 27712] S3 msdsm;msdsm; C:\Windows\system32\DRIVERS\msdsm.sys [2009-07-14 115792] S3 mshidkmdf;@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100; C:\Windows\System32\drivers\mshidkmdf.sys [2009-07-14 4096] S3 MsRPC;MsRPC; C:\Windows\system32\drivers\MsRPC.sys [2009-07-14 162896] S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2009-07-14 6144] S3 MTConfig;Microsoft Input Configuration Driver; C:\Windows\system32\DRIVERS\MTConfig.sys [2009-07-14 12288] S3 NdisCap;NDIS Capture LightWeight Filter; C:\Windows\system32\DRIVERS\ndiscap.sys [2009-07-14 27136] S3 nfrd960;nfrd960; C:\Windows\system32\DRIVERS\nfrd960.sys [2009-07-14 44624] S3 nv_agp;NVIDIA nForce AGP Bus Filter; C:\Windows\system32\DRIVERS\nv_agp.sys [2009-07-14 105024] S3 nvraid;nvraid; C:\Windows\system32\DRIVERS\nvraid.sys [2009-07-14 117312] S3 nvstor;nvstor; C:\Windows\system32\DRIVERS\nvstor.sys [2009-07-14 142416] S3 ohci1394;1394 OHCI Compliant Host Controller (Legacy); C:\Windows\system32\DRIVERS\ohci1394.sys [2009-07-14 62464] S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [] S3 ql2300;ql2300; C:\Windows\system32\DRIVERS\ql2300.sys [2009-07-14 1383488] S3 ql40xx;ql40xx; C:\Windows\system32\DRIVERS\ql40xx.sys [2009-07-14 106064] S3 QWAVEdrv;@%SystemRoot%\system32\drivers\qwavedrv.sys,-1; C:\Windows\system32\drivers\qwavedrv.sys [2009-07-14 31744] S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632] S3 sbp2port;sbp2port; C:\Windows\system32\DRIVERS\sbp2port.sys [2009-07-14 85568] S3 scfilter;@%SystemRoot%\System32\drivers\scfilter.sys,-11; C:\Windows\System32\DRIVERS\scfilter.sys [2009-07-14 26624] S3 sermouse;Serial Mouse Driver; C:\Windows\system32\DRIVERS\sermouse.sys [2009-07-14 19968] S3 sffdisk;SFF Storage Class Driver; C:\Windows\system32\DRIVERS\sffdisk.sys [2009-07-14 11264] S3 sffp_mmc;SFF Storage Protocol Driver for MMC; C:\Windows\system32\DRIVERS\sffp_mmc.sys [2009-07-14 12288] S3 sffp_sd;SFF Storage Protocol Driver for SDBus; C:\Windows\system32\DRIVERS\sffp_sd.sys [2009-07-14 12800] S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304] S3 SiSRaid2;SiSRaid2; C:\Windows\system32\DRIVERS\SiSRaid2.sys [2009-07-14 40016] S3 SiSRaid4;SiSRaid4; C:\Windows\system32\DRIVERS\sisraid4.sys [2009-07-14 77888] S3 Smb;@%SystemRoot%\system32\tcpipcfg.dll,-50005; C:\Windows\system32\DRIVERS\smb.sys [2009-07-14 71168] S3 Sntnlusb;Rainbow USB SuperPro; C:\Windows\system32\DRIVERS\SNTNLUSB.SYS [2001-06-21 20032] S3 StarOpen;StarOpen; C:\Windows\system32\drivers\StarOpen.sys [] S3 stexstor;stexstor; C:\Windows\system32\DRIVERS\stexstor.sys [2009-07-14 21072] S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224] S3 TCPIP6;Microsoft IPv6 Protocol Driver; C:\Windows\system32\DRIVERS\tcpip.sys [2010-06-14 1286016] S3 uagp35;Microsoft AGPv3.5 Filter; C:\Windows\system32\DRIVERS\uagp35.sys [2009-07-14 55888] S3 uliagpkx;Uli AGP Bus Filter; C:\Windows\system32\DRIVERS\uliagpkx.sys [2009-07-14 57424] S3 UmPass;Pilote Microsoft UMPass; C:\Windows\system32\DRIVERS\umpass.sys [2009-07-14 8192] S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2010-04-19 41984] S3 usbcir;eHome Infrared Receiver (USBCIR); C:\Windows\system32\DRIVERS\usbcir.sys [2009-07-14 86016] S3 usbprint;Classe d’imprimantes USB Microsoft; C:\Windows\system32\DRIVERS\usbprint.sys [2009-07-14 19968] S3 usbscan;Pilote de scanneur USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840] S3 USBSTOR;Pilote de stockage de masse USB; C:\Windows\system32\DRIVERS\USBSTOR.SYS [2009-07-14 74752] S3 usbvideo;Périphérique vidéo USB (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2010-03-04 146304] S3 VComm;Virtual Serial port driver; C:\Windows\system32\DRIVERS\VComm.sys [] S3 VcommMgr;Bluetooth VComm Manager Service; C:\Windows\System32\Drivers\VcommMgr.sys [] S3 VDSDK;VDSDK; \??\C:\Users\David\AppData\Local\Temp\vdsdk.sys [] S3 vga;vga; C:\Windows\system32\DRIVERS\vgapnp.sys [2009-07-14 26112] S3 vhdmp;vhdmp; C:\Windows\system32\DRIVERS\vhdmp.sys [2009-07-14 159824] S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328] S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736] S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824] S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920] S3 vsmraid;vsmraid; C:\Windows\system32\DRIVERS\vsmraid.sys [2009-07-14 141904] S3 vwifibus;@%SystemRoot%\System32\drivers\vwifibus.sys,-257; C:\Windows\System32\drivers\vwifibus.sys [2009-07-14 19968] S3 WacomPen;Wacom Serial Pen HID Driver; C:\Windows\system32\DRIVERS\wacompen.sys [2009-07-14 21632] S3 Wd;Wd; C:\Windows\system32\DRIVERS\wd.sys [2009-07-14 19024] S3 WIMMount;WIMMount; C:\Windows\system32\drivers\wimmount.sys [2009-07-14 19008] S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944] S3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2009-07-14 11264] S4 crcdisk;Crcdisk Filter Driver; C:\Windows\system32\DRIVERS\crcdisk.sys [2009-07-14 22096] S4 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-07-26 697328] S4 ws2ifsl;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\Windows\system32\drivers\ws2ifsl.sys [2009-07-14 16384] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2010-08-17 135336] R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2010-08-17 267944] R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2010-06-10 144176] R2 AudioEndpointBuilder;@%SystemRoot%\system32\audiosrv.dll,-204; C:\Windows\System32\svchost.exe [2009-07-14 20992] R2 BFE;@%SystemRoot%\system32\bfe.dll,-1001; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 Bonjour Service;Service Bonjour; C:\Program Files\Bonjour\mDNSResponder.exe [2010-05-18 345376] R2 bthserv;Bluetooth Support Service; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2010-09-10 1901056] R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992] R2 cvhsvc;Client Virtualization Handler; C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2009-09-26 819600] R2 DPS;@%systemroot%\system32\dps.dll,-500; C:\Windows\System32\svchost.exe [2009-07-14 20992] R2 fdPHost;@%systemroot%\system32\fdPHost.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 FDResPub;@%systemroot%\system32\fdrespub.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 gpsvc;@gpapi.dll,-112; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 HomeGroupProvider;@%SystemRoot%\System32\provsvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992] R2 IKEEXT;@%SystemRoot%\system32\ikeext.dll,-501; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 IPBusEnum;@%systemroot%\system32\IPBusEnum.dll,-102; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 iphlpsvc;@%SystemRoot%\system32\iphlpsvc.dll,-500; C:\Windows\System32\svchost.exe [2009-07-14 20992] R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2010-04-29 304464] R2 Mcx2Svc;Media Center Extender Service; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 MMCSS;@%systemroot%\system32\mmcss.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 MpsSvc;@%SystemRoot%\system32\FirewallAPI.dll,-23090; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 netprofm;@%SystemRoot%\system32\netprofm.dll,-202; C:\Windows\System32\svchost.exe [2009-07-14 20992] R2 NlaSvc;@%SystemRoot%\System32\nlasvc.dll,-1; C:\Windows\System32\svchost.exe [2009-07-14 20992] R2 nsi;@%SystemRoot%\system32\nsisvc.dll,-200; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 Power;@%SystemRoot%\system32\umpo.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 ProfSvc;@%systemroot%\system32\profsvc.dll,-300; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 RpcEptMapper;@%windir%\system32\RpcEpMap.dll,-1001; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 SBSDWSCService;SBSD Security Center Service; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368] R2 sftlist;Application Virtualization Client; C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe [2009-09-23 447832] R2 SysMain;@%SystemRoot%\system32\sysmain.dll,-1000; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2010-09-30 1051968] R2 UxSms;@%SystemRoot%\system32\dwm.exe,-2000; C:\Windows\System32\svchost.exe [2009-07-14 20992] R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 20992] R2 VAIO Event Service;VAIO Event Service; C:\Program Files\Sony\VAIO Event Service\VESMgr.exe [2007-05-16 176128] R2 WinDefend;@%ProgramFiles%\Windows Defender\MsMpRes.dll,-103; C:\Windows\System32\svchost.exe [2009-07-14 20992] R2 Wlansvc;@%SystemRoot%\System32\wlansvc.dll,-257; C:\Windows\system32\svchost.exe [2009-07-14 20992] R2 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\wmpnetwk.exe [2009-07-14 1121280] R2 WSearch;@%systemroot%\system32\SearchIndexer.exe,-103; C:\Windows\system32\SearchIndexer.exe [2009-07-14 428032] R3 AeLookupSvc;@%SystemRoot%\system32\aelupsvc.dll,-1; C:\Windows\system32\svchost.exe [2009-07-14 20992] R3 Appinfo;@%systemroot%\system32\appinfo.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992] R3 CertPropSvc;@%SystemRoot%\System32\certprop.dll,-11; C:\Windows\system32\svchost.exe [2009-07-14 20992] R3 KeyIso;@keyiso.dll,-100; C:\Windows\system32\lsass.exe [2009-07-14 22528] R3 PcaSvc;@%SystemRoot%\system32\pcasvc.dll,-1; C:\Windows\system32\svchost.exe [2009-07-14 20992] R3 SessionEnv;@%SystemRoot%\System32\SessEnv.dll,-1026; C:\Windows\System32\svchost.exe [2009-07-14 20992] R3 sftvsa;Application Virtualization Service Agent; C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe [2009-09-23 203608] R3 SstpSvc;@%SystemRoot%\system32\sstpsvc.dll,-200; C:\Windows\system32\svchost.exe [2009-07-14 20992] R3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992] R3 wcncsvc;@%SystemRoot%\system32\wcncsvc.dll,-3; C:\Windows\System32\svchost.exe [2009-07-14 20992] R3 WdiServiceHost;@%systemroot%\system32\wdi.dll,-502; C:\Windows\System32\svchost.exe [2009-07-14 20992] R3 WinHttpAutoProxySvc;@%SystemRoot%\system32\winhttp.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992] R3 WPDBusEnum;@%SystemRoot%\system32\wpdbusenum.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 gupdate;Service Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-02-04 135664] S2 sppsvc;@%SystemRoot%\system32\sppsvc.exe,-101; C:\Windows\system32\sppsvc.exe [2009-07-14 3179520] S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [] S3 AppIDSvc;@%systemroot%\system32\appidsvc.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 aspnet_state;Service d'état ASP.NET; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2009-06-10 31064] S3 AxInstSV;@%SystemRoot%\system32\AxInstSV.dll,-103; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 BDESVC;@%SystemRoot%\system32\bdesvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 clr_optimization_v2.0.50727_32;Microsoft .NET Framework NGEN v2.0.50727_X86; C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2009-06-10 66384] S3 defragsvc;@%SystemRoot%\system32\defragsvc.dll,-101; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 EFS;@%SystemRoot%\system32\efssvc.dll,-100; C:\Windows\System32\lsass.exe [2009-07-14 22528] S3 ehRecvr;@%SystemRoot%\ehome\ehrecvr.exe,-101; C:\Windows\ehome\ehRecvr.exe [2010-05-09 556032] S3 ehSched;@%SystemRoot%\ehome\ehsched.exe,-101; C:\Windows\ehome\ehsched.exe [2009-07-14 94720] S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\Windows\system32\fxssvc.exe [2009-07-14 522752] S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2009-12-08 655624] S3 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2009-06-10 42856] S3 HomeGroupListener;@%SystemRoot%\System32\ListSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 idsvc;@%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8193; C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2009-06-10 878416] S3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2010-07-21 540968] S3 KtmRm;@comres.dll,-2946; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 lltdsvc;@%SystemRoot%\system32\lltdres.dll,-1; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2009-10-29 30603640] S3 MSiSCSI;@%SystemRoot%\system32\iscsidsc.dll,-5000; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2009-09-26 149336] S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2009-09-26 4639136] S3 p2pimsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8004; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 p2psvc;@%SystemRoot%\system32\p2psvc.dll,-8006; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 pla;@%systemroot%\system32\pla.dll,-500; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 PNRPAutoReg;@%SystemRoot%\system32\pnrpauto.dll,-8002; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 PNRPsvc;@%SystemRoot%\system32\pnrpsvc.dll,-8000; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 QWAVE;@%SystemRoot%\system32\qwave.dll,-1; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 SCPolicySvc;@%SystemRoot%\System32\certprop.dll,-13; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 SDRSVC;@%SystemRoot%\system32\sdrsvc.dll,-107; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 SensrSvc;@%SystemRoot%\System32\sensrsvc.dll,-1000; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 SNMPTRAP;@%SystemRoot%\system32\snmptrap.exe,-3; C:\Windows\System32\snmptrap.exe [2009-07-14 12800] S3 sppuinotify;@%SystemRoot%\system32\sppuinotify.dll,-103; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 TabletInputService;@%SystemRoot%\system32\TabSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 TBS;@%SystemRoot%\system32\tbssvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 TeamViewer5;TeamViewer 5; C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe [2010-04-16 173352] S3 THREADORDER;@%systemroot%\system32\mmcss.dll,-102; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 TrustedInstaller;@%SystemRoot%\servicing\TrustedInstaller.exe,-100; C:\Windows\servicing\TrustedInstaller.exe [2009-07-14 204800] S3 TuneUp.Defrag;@C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1; C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe [2010-10-07 435008] S3 UI0Detect;@%SystemRoot%\system32\ui0detect.exe,-101; C:\Windows\system32\UI0Detect.exe [2009-07-14 35840] S3 VaultSvc;@%SystemRoot%\system32\vaultsvc.dll,-1003; C:\Windows\system32\lsass.exe [2009-07-14 22528] S3 vds;@%SystemRoot%\system32\vds.exe,-100; C:\Windows\System32\vds.exe [2009-07-14 452608] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-06-11 1343400] S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\Windows\system32\wbengine.exe [2009-07-14 1202688] S3 WbioSrvc;@%systemroot%\system32\wbiosrvc.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 WcsPlugInService;@%SystemRoot%\system32\WcsPlugInService.dll,-200; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 WdiSystemHost;@%systemroot%\system32\wdi.dll,-500; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 Wecsvc;@%SystemRoot%\system32\wecsvc.dll,-200; C:\Windows\system32\svchost.exe [2009-07-14 20992] S3 wercplsupport;@%SystemRoot%\System32\wercplsupport.dll,-101; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 WerSvc;@%SystemRoot%\System32\wersvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 WinRM;@%Systemroot%\system32\wsmsvc.dll,-101; C:\Windows\System32\svchost.exe [2009-07-14 20992] S3 WPCSvc;@%SystemRoot%\system32\wpcsvc.dll,-100; C:\Windows\system32\svchost.exe [2009-07-14 20992] S4 NetTcpPortSharing;@%systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8201; C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2009-06-10 128848] -----------------EOF----------------- info.txt info.txt logfile of random's system information tool 1.06 2010-03-09 01:26:26 ======Uninstall list====== µTorrent-->"C:\Program Files\uTorrent\uTorrent.exe" /UNINSTALL Adobe Anchor Service CS4-->MsiExec.exe /I{1618734A-3957-4ADD-8199-F973763109A8} Adobe Bridge CS4-->MsiExec.exe /I{83877DB1-8B77-45BC-AB43-2BAC22E093E0} Adobe CMaps CS4-->MsiExec.exe /I{94D398EB-D2FD-4FD1-B8C4-592635E8A191} Adobe Color - Photoshop Specific CS4-->MsiExec.exe /I{3D2C9DE6-9ADE-4252-A241-E43723B0CE02} Adobe Color EU Extra Settings CS4-->MsiExec.exe /I{5570C7F0-43D0-4916-8A9E-AEDD52FA86F4} Adobe Color JA Extra Settings CS4-->MsiExec.exe /I{0D6013AB-A0C7-41DC-973C-E93129C9A29F} Adobe Color NA Recommended Settings CS4-->MsiExec.exe /I{00ADFB20-AE75-46F4-AD2C-F48B15AC3100} Adobe Color Video Profiles CS CS4-->MsiExec.exe /I{63C24A08-70F3-4C8E-B9FB-9F21A903801D} Adobe CSI CS4-->MsiExec.exe /I{0F723FC1-7606-4867-866C-CE80AD292DAF} Adobe Default Language CS4-->MsiExec.exe /I{C52E3EC1-048C-45E1-8D53-10B0C6509683} Adobe Device Central CS4-->MsiExec.exe /I{67F0E67A-8E93-4C2C-B29D-47C48262738A} Adobe Drive CS4-->MsiExec.exe /I{16E16F01-2E2D-4248-A42F-76261C147B6C} Adobe ExtendScript Toolkit CS4-->MsiExec.exe /I{F8EF2B3F-C345-4F20-8FE4-791A20333CD5} Adobe Extension Manager CS4-->MsiExec.exe /I{054EFA56-2AC1-48F4-A883-0AB89874B972} Adobe Flash Player 10 ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe Adobe Flash Player 10 Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe Adobe Fonts All-->MsiExec.exe /I{FCDD51BB-CAD0-4BB1-B7DF-CE86D1032794} Adobe Linguistics CS4-->MsiExec.exe /I{931AB7EA-3656-4BB7-864D-022B09E3DD67} Adobe Output Module-->MsiExec.exe /I{BB4E33EC-8181-4685-96F7-8554293DEC6A} Adobe PDF Library Files CS4-->MsiExec.exe /I{F93C84A6-0DC6-42AF-89FA-776F7C377353} Adobe Photoshop CS4 Support-->MsiExec.exe /I{63E5CDBF-8214-4F03-84F8-CD3CE48639AD} Adobe Photoshop CS4-->C:\Program Files\Common Files\Adobe\Installers\faf656ef605427ee2f42989c3ad31b8\Setup.exe --uninstall=1 Adobe Photoshop CS4-->MsiExec.exe /I{B65BA85C-0A27-4BC0-A22D-A66F0E5B9494} Adobe Photoshop CS4-->MsiExec.exe /I{E4848436-0345-47E2-B648-8B522FCDA623} Adobe Reader 9.2 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A92000000001} Adobe Search for Help-->MsiExec.exe /I{F0E64E2E-3A60-40D8-A55D-92F6831875DA} Adobe Service Manager Extension-->MsiExec.exe /I{4943EFF5-229F-435D-BEA9-BE3CAEA783A7} Adobe Setup-->MsiExec.exe /I{0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23} Adobe Type Support CS4-->MsiExec.exe /I{820D3F45-F6EE-4AAF-81EF-CE21FF21D230} Adobe Update Manager CS4-->MsiExec.exe /I{05308C4E-7285-4066-BAE3-6B50DA6ED755} Adobe WinSoft Linguistics Plugin-->MsiExec.exe /I{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF} Adobe XMP Panels CS4-->MsiExec.exe /I{3A4E8896-C2E7-4084-A4A4-B8FD1894E739} AdobeColorCommonSetCMYK-->MsiExec.exe /I{68243FF8-83CA-466B-B2B8-9F99DA5479C4} AdobeColorCommonSetRGB-->MsiExec.exe /I{16E6D2C1-7C90-4309-8EC4-D2212690AAA4} Apple Application Support-->MsiExec.exe /I{3FA365DF-2D68-45ED-8F83-8C8A33E65143} Apple Mobile Device Support-->MsiExec.exe /I{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE} Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033} Autodesk DirectConnect 2.0-->MsiExec.exe /I{28C74612-2C48-4421-BF67-3949CD90748E} avast! Free Antivirus-->C:\Program Files\Alwil Software\Avast5\aswRunDll.exe "C:\Program Files\Alwil Software\Avast5\Setup\setiface.dll" RunSetup Bonjour-->MsiExec.exe /I{07287123-B8AC-41CE-8346-3D777245C35B} Connect-->MsiExec.exe /I{B29AD377-CC12-490A-A480-1452337C618D} Free FLV Converter V 6.7.4-->"C:\Program Files\Free FLV Converter\unins000.exe" Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall ICQ6.5-->"C:\Program Files\InstallShield Installation Information\{60DE4033-9503-48D1-A483-7846BD217CA9}\setup.exe" -runfromtemp -l0x0009 -removeonly Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe Installation Windows Live-->MsiExec.exe /I{46ABBC54-1872-4AA3-95E2-F2C063A63F31} Intel® Graphics Media Accelerator Driver-->C:\Windows\system32\igxpun.exe -uninstall iTunes-->MsiExec.exe /I{A6FDF86A-F541-4E7B-AEA0-8849A2A700D5} Java 6 Update 17-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216017FF} kuler-->MsiExec.exe /I{098727E1-775A-4450-B573-3F441F1CA243} Logiciel d'archivage WinRAR-->C:\Program Files\WinRAR\uninstall.exe Magic ISO Maker v5.5 (build 0276)-->C:\PROGRA~1\MagicISO\UNWISE.EXE C:\PROGRA~1\MagicISO\INSTALL.LOG Maya 8.5 Documentation (en_US)-->MsiExec.exe /I{81525B87-9344-4834-883C-C6A9D78EA1DF} Maya 8.5-->MsiExec.exe /I{A1E0E88A-F5E9-4414-A0D7-31940E965EC5} Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C8A0C4D570} Microsoft Office Click-to-Run 2010 (Beta)-->"C:\PROGRA~1\COMMON~1\MICROS~1\VIRTUA~1\CVHBS.EXE" /removeall Microsoft Office Click-to-Run 2010 (Beta)-->MsiExec.exe /I{20140000-006D-040C-0000-0000000FF1CE} Microsoft Office Home and Business 2010 (Beta) - Français-->C:\Program Files\Common Files\microsoft shared\virtualization handler\cvhbs.exe /uninstall {20140062-0062-040C-0000-0000000FF1CE} Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053-->MsiExec.exe /X{770657D0-A123-3C07-8E44-1C83EC895118} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989} MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94} MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71} MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC} Orbit Downloader-->"C:\Program Files\Orbitdownloader\unins000.exe" PDF Settings CS4-->MsiExec.exe /I{35D94F92-1D3A-43C5-8605-EA268B1A7BD9} Photoshop Camera Raw-->MsiExec.exe /I{CC75AB5C-2110-4A7F-AF52-708680D22FE8} Pilote vidéo Pinnacle-->MsiExec.exe /X{5EB90C06-964F-4195-B83E-BD7E55C88415} Pinnacle Instant DVD Recorder-->MsiExec.exe /X{C1212AE3-DBB9-4365-8473-F8ABC7B06BBB} Pinnacle Studio 12 Ultimate Plugins-->MsiExec.exe /I{D1860E6E-520E-4380-8433-E58E8F88B473} Pinnacle Studio 12-->MsiExec.exe /I{D041EB9E-890A-4098-8F94-51DA194AC72A} QuickTime-->MsiExec.exe /I{1451DE6B-ABE1-4F62-BE9A-B363A17588A2} Sentinel System Driver-->C:\WINDOWS\SYSTEM32\RNBOSENT\SETUPX86.EXE /U /q Skype™ 4.1-->MsiExec.exe /X{D103C4BA-F905-437A-8049-DB24763BBE36} Spotify-->"C:\Program Files\Spotify\uninstall.exe" Suite Shared Configuration CS4-->MsiExec.exe /I{842B4B72-9E8F-4962-B3C1-1C422A5C4434} TeamViewer 5-->C:\Program Files\TeamViewer\Version5\uninstall.exe TuneUp Utilities-->C:\Program Files\TuneUp Utilities 2010\TUInstallHelper.exe --Trigger-Uninstall VLC media player 1.0.3-->C:\Program Files\VideoLAN\VLC\uninstall.exe Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41} Windows Live Communications Platform-->MsiExec.exe /I{ED00D08A-3C5F-488D-93A0-A04F21F23956} Windows Live Messenger-->MsiExec.exe /X{770F1BEC-2871-4E70-B837-FB8525FFA3B1} WinSCP 4.2.3 beta-->"C:\Program Files\WinSCP\unins000.exe" ======Hosts File====== 127.0.0.1 activate.adobe.com 127.0.0.1 practivate.adobe.com 127.0.0.1 ereg.adobe.com 127.0.0.1 activate.wip3.adobe.com 127.0.0.1 wip3.adobe.com 127.0.0.1 3dns-3.adobe.com 127.0.0.1 3dns-2.adobe.com 127.0.0.1 adobe-dns.adobe.com 127.0.0.1 adobe-dns-2.adobe.com 127.0.0.1 adobe-dns-3.adobe.com ======System event log====== Computer Name: David-PC Event Code: 51 Message: An error was detected on device \Device\CdRom0 during a paging operation. Record Number: 4393 Source Name: cdrom Time Written: 20091116165242.437688-000 Event Type: Warning User: Computer Name: David-PC Event Code: 51 Message: An error was detected on device \Device\CdRom0 during a paging operation. Record Number: 4392 Source Name: cdrom Time Written: 20091116165238.324453-000 Event Type: Warning User: Computer Name: David-PC Event Code: 51 Message: An error was detected on device \Device\CdRom0 during a paging operation. Record Number: 4391 Source Name: cdrom Time Written: 20091116165234.392228-000 Event Type: Warning User: Computer Name: David-PC Event Code: 51 Message: An error was detected on device \Device\CdRom0 during a paging operation. Record Number: 4390 Source Name: cdrom Time Written: 20091116165110.292418-000 Event Type: Warning User: Computer Name: David-PC Event Code: 51 Message: An error was detected on device \Device\CdRom0 during a paging operation. Record Number: 4389 Source Name: cdrom Time Written: 20091116165110.229414-000 Event Type: Warning User: =====Application event log===== Computer Name: David-PC Event Code: 11 Message: Possible Memory Leak. Application (C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted) (PID: 760) has passed a non-NULL pointer to RPC for an [out] parameter marked [allocate(all_nodes)]. [allocate(all_nodes)] parameters are always reallocated; if the original pointer contained the address of valid memory, that memory will be leaked. The call originated on the interface with UUID ({3F31C91E-2545-4B7B-9311-9529E8BFFEF6}), Method number (10). User Action: Contact your application vendor for an updated version of the application. Record Number: 329 Source Name: Microsoft-Windows-RPC-Events Time Written: 20091012171002.204425-000 Event Type: Warning User: AUTORITE NT\SERVICE LOCAL Computer Name: David-PC Event Code: 1015 Message: Detailed HRESULT. Returned hr=0xC004F022, Original hr=0x80049E00 Record Number: 227 Source Name: Microsoft-Windows-Security-SPP Time Written: 20091011172742.000000-000 Event Type: Warning User: Computer Name: David-PC Event Code: 1015 Message: Detailed HRESULT. Returned hr=0xC004F022, Original hr=0x80049E00 Record Number: 203 Source Name: Microsoft-Windows-Security-SPP Time Written: 20091011155036.000000-000 Event Type: Warning User: Computer Name: David-PC Event Code: 1530 Message: Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards. DETAIL - 1 user registry handles leaked from \Registry\User\S-1-5-21-3124447177-4104293458-4095993158-1000: Process 428 (\Device\HarddiskVolume2\Windows\System32\winlogon.exe) has opened key \REGISTRY\USER\S-1-5-21-3124447177-4104293458-4095993158-1000 Record Number: 194 Source Name: Microsoft-Windows-User Profiles Service Time Written: 20091011154752.235016-000 Event Type: Warning User: AUTORITE NT\Système Computer Name: David-PC Event Code: 1008 Message: The Windows Search Service is starting up and attempting to remove the old search index {Reason: Réinitialisation totale de l’index}. Record Number: 92 Source Name: Microsoft-Windows-Search Time Written: 20091011153641.000000-000 Event Type: Warning User: =====Security event log===== Computer Name: 37L4247D28-05 Event Code: 4735 Message: A security-enabled local group was changed. Subject: Security ID: S-1-5-18 Account Name: 37L4247D28-05$ Account Domain: WORKGROUP Logon ID: 0x3e7 Group: Security ID: S-1-5-32-551 Group Name: Opérateurs de sauvegarde Group Domain: Builtin Changed Attributes: SAM Account Name: - SID History: - Additional Information: Privileges: - Record Number: 5 Source Name: Microsoft-Windows-Security-Auditing Time Written: 20091011152949.002465-000 Event Type: Audit Success User: Computer Name: 37L4247D28-05 Event Code: 4731 Message: A security-enabled local group was created. Subject: Security ID: S-1-5-18 Account Name: 37L4247D28-05$ Account Domain: WORKGROUP Logon ID: 0x3e7 New Group: Security ID: S-1-5-32-551 Group Name: Opérateurs de sauvegarde Group Domain: Builtin Attributes: SAM Account Name: Opérateurs de sauvegarde SID History: - Additional Information: Privileges: - Record Number: 4 Source Name: Microsoft-Windows-Security-Auditing Time Written: 20091011152948.971265-000 Event Type: Audit Success User: Computer Name: 37L4247D28-05 Event Code: 4902 Message: The Per-user audit policy table was created. Number of Elements: 0 Policy ID: 0x23fc5 Record Number: 3 Source Name: Microsoft-Windows-Security-Auditing Time Written: 20091011152948.534465-000 Event Type: Audit Success User: Computer Name: 37L4247D28-05 Event Code: 4624 Message: An account was successfully logged on. Subject: Security ID: S-1-0-0 Account Name: - Account Domain: - Logon ID: 0x0 Logon Type: 0 New Logon: Security ID: S-1-5-18 Account Name: Système Account Domain: AUTORITE NT Logon ID: 0x3e7 Logon GUID: {00000000-0000-0000-0000-000000000000} Process Information: Process ID: 0x4 Process Name: Network Information: Workstation Name: - Source Network Address: - Source Port: - Detailed Authentication Information: Logon Process: - Authentication Package: - Transited Services: - Package Name (NTLM only): - Key Length: 0 This event is generated when a logon session is created. It is generated on the computer that was accessed. The subject fields indicate the account on the local system which requested the logon. This is most commonly a service such as the Server service, or a local process such as Winlogon.exe or Services.exe. The logon type field indicates the kind of logon that occurred. The most common types are 2 (interactive) and 3 (network). The New Logon fields indicate the account for whom the new logon was created, i.e. the account that was logged on. The network fields indicate where a remote logon request originated. Workstation name is not always available and may be left blank in some cases. The authentication information fields provide detailed information about this specific logon request. - Logon GUID is a unique identifier that can be used to correlate this event with a KDC event. - Transited services indicate which intermediate services have participated in this logon request. - Package name indicates which sub-protocol was used among the NTLM protocols. - Key length indicates the length of the generated session key. This will be 0 if no session key was requested. Record Number: 2 Source Name: Microsoft-Windows-Security-Auditing Time Written: 20091011152946.163260-000 Event Type: Audit Success User: Computer Name: 37L4247D28-05 Event Code: 4608 Message: Windows is starting up. This event is logged when LSASS.EXE starts and the auditing subsystem is initialized. Record Number: 1 Source Name: Microsoft-Windows-Security-Auditing Time Written: 20091011152946.054060-000 Event Type: Audit Success User: ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Pinnacle\Shared Files\;C:\Program Files\QuickTime\QTSystem\ "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC "PROCESSOR_ARCHITECTURE"=x86 "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP "USERNAME"=SYSTEM "windir"=%SystemRoot% "PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\ "NUMBER_OF_PROCESSORS"=2 "PROCESSOR_LEVEL"=6 "PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 11, GenuineIntel "PROCESSOR_REVISION"=0f0b "CLASSPATH"=.;C:\Program Files\QuickTime\QTSystem\QTJava.zip "QTJAVA"=C:\Program Files\QuickTime\QTSystem\QTJava.zip -----------------EOF-----------------

Petite precision, j'ai bien desactive l'antivirus, firewall, windows defender ainsi que Resident sur Spybot avant de lancer Combofix.

Bonjour a tout le monde! Je me permets de creer un nouveau sujet car je m'ai fais hacke ma compte bancaire recement, la seul source de cette probleme est mon ordi. J'aimere que vous m'aidiez a savoir si j'ai un malware ou spyware ou ....?? Donc j'ai deja fais quelques analyses sur mon antivirus Comodo , Malwalwarebytes et Spybot. Ce qui n'a rien donne. Voici le rapport de HijackThis: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 12:57:44, on 10/10/2010 Platform: Unknown Windows (WinNT 6.01.3504) MSIE: Internet Explorer v8.00 (8.00.7600.16385) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\system32\taskhost.exe C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe C:\Windows\explorer.exe C:\Program Files\COMODO\COMODO Internet Security\cfp.exe C:\Windows\system32\SearchFilterHost.exe C:\Users\David\Downloads\Norton_Removal_Tool.exe C:\Users\David\AppData\Local\temp\7zSF6FB.tmp\SymNRT.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe C:\Windows\system32\SearchProtocolHost.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = CRIJ Toulouse Midi-Pyrénées R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 127.0.0.1:8118 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MIF5BA~1\Office14\GROOVEEX.DLL O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MIF5BA~1\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray O8 - Extra context menu item: &Enviar a OneNote - res:///105 O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MIF5BA~1\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\PROGRA~1\MIF5BA~1\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_A54B7D6FB1DA63EA.dll/cmsidewiki.html O8 - Extra context menu item: Translate this web page with Babylon - res://C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm O8 - Extra context menu item: Translate with Babylon - res://C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm O9 - Extra button: Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Enviar a OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: Notas &vinculadas de OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe (file missing) O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: ArcSoft Connect Daemon (ACDaemon) - Unknown owner - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Service Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe O23 - Service: @C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\Sony\VAIO Event Service\VESMgr.exe -- End of file - 6566 bytes Ainsi que le rapport de COMBOFIX: ComboFix 10-10-09.04 - David 10/10/2010 12:39:48.1.2 - x86 Microsoft Windows 7 Ultimate 6.1.7600.0.1252.33.1036.18.2038.1333 [GMT 2:00] Lancé depuis: c:\users\David\Desktop\CCM.EXE.exe SP: Spybot - Search and Destroy *disabled* (Updated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9} . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . c:\users\David\AppData\Roaming\inst.exe . ((((((((((((((((((((((((((((( Fichiers créés du 2010-09-10 au 2010-10-10 )))))))))))))))))))))))))))))))))))) . 2010-10-10 10:46 . 2010-10-10 10:46 -------- d-----w- c:\users\Mcx1-DAVID-PC.David-PC\AppData\Local\temp 2010-10-10 10:46 . 2010-10-10 10:46 -------- d-----w- c:\users\Default\AppData\Local\temp 2010-10-10 10:46 . 2010-10-10 10:46 -------- d-----w- c:\users\David\AppData\Local\temp 2010-10-09 22:39 . 2010-10-09 22:39 -------- d-----w- c:\windows\Sun 2010-10-09 22:36 . 2010-10-09 22:37 -------- d-----w- c:\users\David\AppData\Roaming\QuickScan 2010-10-09 21:08 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2010-10-09 21:08 . 2010-10-09 21:08 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2010-10-09 21:08 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-10-08 10:06 . 2010-09-09 22:52 6084944 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{2AB21815-2399-4E20-BEA2-928D70FD2FDF}\mpengine.dll 2010-10-07 18:47 . 2010-09-30 15:09 21312 ----a-w- c:\windows\system32\authuitu.dll 2010-10-07 18:47 . 2010-09-30 15:09 30016 ----a-w- c:\windows\system32\uxtuneup.dll 2010-10-07 00:00 . 2010-10-07 00:00 -------- d-----w- c:\users\David\AppData\Local\COMODO 2010-10-06 22:59 . 2010-10-06 22:59 -------- d-----w- C:\VritualRoot 2010-10-06 22:49 . 2010-10-10 10:24 1474832 ----a-w- c:\windows\system32\drivers\sfi.dat 2010-10-06 22:45 . 2010-10-06 22:45 -------- d-----w- c:\program files\COMODO 2010-10-06 22:30 . 2010-10-06 22:50 -------- d-----w- c:\programdata\Comodo 2010-10-06 21:40 . 2010-10-06 22:41 -------- d-----w- c:\program files\Alwil Software 2010-10-06 21:30 . 2010-06-28 20:57 38848 ----a-w- c:\windows\avastSS.scr 2010-10-04 11:08 . 2010-10-04 11:08 -------- d-----w- c:\program files\Trend Micro 2010-09-29 09:11 . 2010-03-04 04:04 146304 ----a-w- c:\windows\system32\drivers\usbvideo.sys 2010-09-29 09:11 . 2010-03-04 03:57 190976 ----a-w- c:\windows\system32\drivers\ks.sys 2010-09-29 08:47 . 2010-06-19 06:15 2048 ----a-w- c:\windows\system32\tzres.dll 2010-09-29 08:47 . 2010-08-27 05:30 13312 ----a-w- c:\program files\Internet Explorer\iecompat.dll 2010-09-15 12:52 . 2010-08-21 05:32 316928 ----a-w- c:\windows\system32\spoolsv.exe 2010-09-10 21:41 . 2010-09-10 21:41 285480 ----a-w- c:\windows\system32\guard32.dll 2010-09-10 21:40 . 2010-09-10 21:40 78504 ----a-w- c:\windows\system32\drivers\inspect.sys 2010-09-10 21:40 . 2010-09-10 21:40 30112 ----a-w- c:\windows\system32\drivers\cmdhlp.sys 2010-09-10 21:40 . 2010-09-10 21:40 236088 ----a-w- c:\windows\system32\drivers\cmdGuard.sys 2010-09-10 21:40 . 2010-09-10 21:40 17256 ----a-w- c:\windows\system32\drivers\cmderd.sys . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp.exe" [2010-09-10 2500552] "Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2010-04-29 437584] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 0 (0x0) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableLUA"= 0 (0x0) "EnableUIADesktopToggle"= 0 (0x0) "PromptOnSecureDesktop"= 0 (0x0) [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "LoginPrompt"= 9D829D829988998C [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon] 2007-05-16 18:50 73728 ----a-w- c:\windows\System32\VESWinlogon.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" "ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" -start "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" "BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" /DelayServices "AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin "IgfxTray"=c:\windows\system32\igfxtray.exe "HotKeysCmds"=c:\windows\system32\hkcmd.exe "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" -atboottime R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 gupdate;Service Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-02-03 135664] R3 btnetBUs;Bluetooth PAN Bus Service;c:\windows\system32\Drivers\btnetBus.sys [2008-12-07 30088] R3 IvtBtBUs;IVT Bluetooth Bus Service;c:\windows\system32\Drivers\IvtBtBus.sys [2008-07-02 26248] R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2009-10-29 30603640] R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2009-09-26 4639136] R3 TeamViewer5;TeamViewer 5;c:\program files\TeamViewer\Version5\TeamViewer_Service.exe [2010-04-16 173352] R3 VDSDK;VDSDK;c:\users\David\AppData\Local\Temp\vdsdk.sys [x] R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-06-11 1343400] R4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys [2010-07-26 697328] S0 BtHidBus;Bluetooth HID Bus Service;c:\windows\System32\Drivers\BtHidBus.sys [2009-01-07 20744] S1 cmderd;COMODO Internet Security Eradication Driver;c:\windows\system32\DRIVERS\cmderd.sys [2010-09-10 17256] S1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\DRIVERS\cmdguard.sys [2010-09-10 236088] S1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\DRIVERS\cmdhlp.sys [2010-09-10 30112] S2 cvhsvc;Client Virtualization Handler;c:\program files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2009-09-26 819600] S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2010-04-29 304464] S2 SBSDWSCService;SBSD Security Center Service;c:\program files\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368] S2 sftlist;Application Virtualization Client;c:\program files\Microsoft Application Virtualization Client\sftlist.exe [2009-09-23 447832] S2 SVKP;SVKP;c:\windows\system32\SVKP.sys [2010-07-30 2368] S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2010-09-30 1051968] S3 5U870UVC;Sony Visual Communication Camera VGP-VCC6;c:\windows\system32\Drivers\5U870UVCx86.sys [2007-10-31 67840] S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2010-04-29 20952] S3 netw5v32;Pilote de carte de liaison WiFi sans fil Intel® 5000 Series pour Windows Vista 32 bits;c:\windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168] S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-03-01 139776] S3 SFEP;Sony Firmware Extension Parser;c:\windows\system32\DRIVERS\SFEP.sys [2007-08-03 9344] S3 sftfs;sftfs;c:\program files\Microsoft Application Virtualization Client\drivers\sftfslh.sys [2009-09-23 543064] S3 sftplay;sftplay;c:\program files\Microsoft Application Virtualization Client\drivers\sftplaylh.sys [2009-09-23 190312] S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [2009-09-23 21848] S3 sftvol;sftvol;c:\program files\Microsoft Application Virtualization Client\drivers\sftvollh.sys [2009-09-23 14680] S3 sftvsa;Application Virtualization Service Agent;c:\program files\Microsoft Application Virtualization Client\sftvsa.exe [2009-09-23 203608] S3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360] S3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992] S3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504] S3 ti21sony;ti21sony;c:\windows\system32\drivers\ti21sony.sys [2007-04-23 812544] S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [2009-10-14 10064] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs UxTuneUp . Contenu du dossier 'Tâches planifiées' 2010-10-10 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-02-03 22:00] 2010-10-10 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-02-03 22:00] . . ------- Examen supplémentaire ------- . uStart Page = hxxp://www.crij.org/ uInternet Settings,ProxyServer = 127.0.0.1:8118 uInternet Settings,ProxyOverride = *.local IE: &Enviar a OneNote - /105 IE: E&xport to Microsoft Excel - c:\progra~1\MIF5BA~1\Office12\EXCEL.EXE/3000 IE: E&xportar a Microsoft Excel - c:\progra~1\MIF5BA~1\Office14\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_A54B7D6FB1DA63EA.dll/cmsidewiki.html IE: Translate this web page with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm IE: Translate with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL FF - ProfilePath - c:\users\David\AppData\Roaming\Mozilla\Firefox\Profiles\ikppsygi.default\ FF - prefs.js: browser.search.selectedEngine - Google FF - prefs.js: browser.startup.homepage - hxxp://www.univ-tlse2.fr/1283851917240/0/fiche___actualite/&RH=01Universite FF - plugin: c:\progra~1\MIF5BA~1\Office14\NPAUTHZ.DLL FF - plugin: c:\progra~1\MIF5BA~1\Office14\NPSPWRAP.DLL FF - plugin: c:\program files\Google\Update\1.2.183.29\npGoogleOneClick8.dll ---- PARAMETRES FIREFOX ---- FF - user.js: network.http.max-persistent-connections-per-server - 4 FF - user.js: nglayout.initialpaint.delay - 600 FF - user.js: content.notify.interval - 600000 FF - user.js: content.max.tokenizing.time - 1800000 FF - user.js: content.switch.threshold - 600000 c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true); c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false); . . --------------------- CLES DE REGISTRE BLOQUEES --------------------- [HKEY_USERS\S-1-5-21-3124447177-4104293458-4095993158-1000\Software\SecuROM\License information*] "datasecu"=hex:17,d6,97,ce,be,11,3c,40,f4,bf,31,e9,f0,fe,89,07,f7,63,0d,40,a8, d9,63,db,f4,3b,58,6b,eb,2e,94,6e,3a,88,b8,f8,10,01,53,2e,a2,4e,a2,0f,35,14,\ "rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . --------------------- DLLs chargées dans les processus actifs --------------------- - - - - - - - > 'lsass.exe'(540) c:\windows\system32\guard32.dll . Heure de fin: 2010-10-10 12:50:45 ComboFix-quarantined-files.txt 2010-10-10 10:50 Avant-CF: 55 400 873 984 bytes free Après-CF: 63 926 079 488 bytes free - - End Of File - - 5A36E90906DD87D74BBB4EB3F20A894F Voila, merci pour vos responses en avance. cordialement,